turnhub.net/?affid=597hggfdujy22&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&transaction=63babb416ba95da6405e2af7
104.18.2.184301 Moved Permanently 0 B URL HTTP/1.1 turnhub.net/?affid=597hggfdujy22&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&transaction=63babb416ba95da6405e2af7
IP 104.18.2.184:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?affid=597hggfdujy22&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&transaction=63babb416ba95da6405e2af7 HTTP/1.1
Host: turnhub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 08 Jan 2023 18:50:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 08 Jan 2023 19:50:44 GMT
Location: https://turnhub.net/?affid=597hggfdujy22&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&transaction=63babb416ba95da6405e2af7
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78671edc2ca2b509-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7890
Expires: Sun, 08 Jan 2023 21:02:14 GMT
Date: Sun, 08 Jan 2023 18:50:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 516b9d6951b09439a51d5284994ed92f
5c78edb38bae36caa8e2db8ed6635a32e46c91dd
eaaf4ebc59d2a06d02b552154c5adb7c713ffc4a7f5caabcff1c2b4cd6ec5c7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EAAF4EBC59D2A06D02B552154C5ADB7C713FFC4A7F5CAABCFF1C2B4CD6EC5C7B"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8494
Expires: Sun, 08 Jan 2023 21:12:18 GMT
Date: Sun, 08 Jan 2023 18:50:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 89a058935fd04697c87e9441fbb466a9
59b5b08119374b1da34cff7e43a7c6dc80103f6e
3a3261f495323ff0f60067b2930b8d0e5e4e5cd6ae9b14929a88047587b735da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A3261F495323FF0F60067B2930B8D0E5E4E5CD6AE9B14929A88047587B735DA"
Last-Modified: Sat, 07 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7556
Expires: Sun, 08 Jan 2023 20:56:40 GMT
Date: Sun, 08 Jan 2023 18:50:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 08 Jan 2023 18:41:30 GMT
content-type: application/json
age: 554
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DMwsJZYgZFfR8kiU9AcK0Oo4XhjXV0IqONb+9eOuiaFVxeKMVPrNDy3SK7qElOf4SY7JjfWd9Fs=
x-amz-request-id: 7B40QC109JF8V9GB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 08 Jan 2023 18:00:55 GMT
age: 2989
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 03134487055f04f3c5b96b4c2eb8a5cb
27b105da1c20c8044ff4711c5aa5812d33b708bc
a474490e2645d40199d9eb7ae8af022a6eb54c812e887d58aaa5dddc885e6437
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4104
Cache-Control: max-age=153033
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:44 GMT
Etag: "63bab345-118"
Expires: Tue, 10 Jan 2023 13:21:17 GMT
Last-Modified: Sun, 08 Jan 2023 12:12:53 GMT
Server: ECS (amb/6BA9)
X-Cache: HIT
Content-Length: 280
turnhub.net/?affid=597hggfdujy22&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&transaction=63babb416ba95da6405e2af7
104.18.2.184302 Found 0 B URL HTTP/2 turnhub.net/?affid=597hggfdujy22&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&transaction=63babb416ba95da6405e2af7
IP 104.18.2.184:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?affid=597hggfdujy22&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&transaction=63babb416ba95da6405e2af7 HTTP/1.1
Host: turnhub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Sun, 08 Jan 2023 18:50:44 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
location: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
set-cookie: data=eyJzaXRlIjoiZW50ZXJ0YWluemVyLmNvbSIsInJlcXVlc3RlZFRoZW1lIjoibS0yLXBhbnRoZXIiLCJyb3V0ZWRUaGVtZSI6Im0tMi1wYW50aGVyMlgiLCJ2aXNpdG9ySWQiOiJmYjdjNTEyMy0yMjVmLTNkMzktODg1ZC0wZTkyZjYwMDk3MDEifQ==; Max-Age=3600; Expires=Sun, 08 Jan 2023 18:50:48 GMT;
vary: Accept-Encoding
server: cloudflare
cf-ray: 78671ede4d8db527-OSL
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 08 Jan 2023 18:50:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/QKxsORCtmfU
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/QKxsORCtmfU
IP 216.58.211.3:0
Hash e7983d64982b9eda9263b53706cdf76e
a4f5f74d84116c156fde6c0447f0631e82eccb99
1dd389680de51d112f4b3296c75fd5774864ea20f4182045d3cef582927da0dd
POST /s/gts1p5/QKxsORCtmfU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:44 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
entertainzer.com/img/logos/entertainment/min/entertainzer.png
104.18.26.216200 OK 1.3 kB URL HTTP/2 entertainzer.com/img/logos/entertainment/min/entertainzer.png
IP 104.18.26.216:0
File type PNG image data, 250 x 60, 8-bit colormap, non-interlaced\012- data
Hash e6219598a2c2991debd2027b3ce0230a
cdc8fcf27a700b79af816e783f4a1fddc40d9b91
937cb83e99191feb41e67d7273db2f3a406f249e2b23509978a3969afc7d3f93
GET /img/logos/entertainment/min/entertainzer.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 1333
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-535"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2994
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0d9a3b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/ar.png
104.18.26.216200 OK 318 B URL HTTP/2 entertainzer.com/img/flags/min/ar.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash b11bcada2c51b6e5e299245db87bec18
56dc40f41854e76cbdf12683721763b674fbef14
59fae4a2c45ab3f79b6e012c3bc435bad3d83de43cd8b5cb9ec792bbdc71e034
GET /img/flags/min/ar.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 318
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-13e"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2570
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0d9a9b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/en.png
104.18.26.216200 OK 481 B URL HTTP/2 entertainzer.com/img/flags/min/en.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 2b936acc8c146a32951e38be063165d3
c379684310743ece93501b7fcdf396359f577cdb
1b959a0f3a63cc646af532327035df4c4ebc6b91ac86fc5384fe60283e26132a
GET /img/flags/min/en.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 481
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-1e1"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2570
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0d9a8b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/cs.png
104.18.26.216200 OK 355 B URL HTTP/2 entertainzer.com/img/flags/min/cs.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 1dce874aa08b4056fcbea8bed2bc0a5f
71d96821168f0f67bfe9ca168db09373d99e57bc
4df39f91b4133cc13f1248a5583917f8841afa615d9dd605aa3b15ccdff23245
GET /img/flags/min/cs.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 355
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-163"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 908
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0d9abb51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/da.png
104.18.26.216200 OK 298 B URL HTTP/2 entertainzer.com/img/flags/min/da.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash c34a7583b5e01b331ee79386d8cebf95
fd0d1f826a6619d278fe962292b63ae91bf61170
5c80542e1988370b38fae869c8adc6edbb449b91e87d0544b4c5074e191d6916
GET /img/flags/min/da.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 298
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-12a"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 908
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0d9b1b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/es.png
104.18.26.216200 OK 365 B URL HTTP/2 entertainzer.com/img/flags/min/es.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 9790f666586897cf09b4e2ff5e11f674
bbeedd0fd9332b6534a259e71a6b871b7dea16e0
52f9f4b06302262227ccfcbd5bc1f1a8be31b554167a48e8b90bb8b569743bfc
GET /img/flags/min/es.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 365
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-16d"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2570
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0d9b4b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/de.png
104.18.26.216200 OK 464 B URL HTTP/2 entertainzer.com/img/flags/min/de.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 3babff7961e39e8cd594b9678f7ce728
ea40638d6af4722c8b0e4314e95d64ae059a3ae0
7319b0ebaea7239bf208e9bbf05c5756659be88767ad0424eca017aacf7940eb
GET /img/flags/min/de.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 464
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-1d0"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 908
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0d9b2b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/it.png
104.18.26.216200 OK 316 B URL HTTP/2 entertainzer.com/img/flags/min/it.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash acab890d6d5eb20e38f22aba425c3d34
ec0be0f24e663759356e817bd73a7e7569663bb6
f6f0eb8b370c334ab172fa69fb55ec7b72c6bd3d137c0bbd750d0fc788f433b0
GET /img/flags/min/it.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 316
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-13c"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 908
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0e9ceb51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/fr.png
104.18.26.216200 OK 369 B URL HTTP/2 entertainzer.com/img/flags/min/fr.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 83d2595ea3031de73b98f2c57ad88949
32bd0c5b029e8b75bef13eeb532917d9a56f61c9
0ec28fba482645dc252afe2be19282beebab6162300c9291c16a31138694cca0
GET /img/flags/min/fr.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 369
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-171"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2570
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0d9c6b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/hu.png
104.18.26.216200 OK 303 B URL HTTP/2 entertainzer.com/img/flags/min/hu.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 70006a59a0a303c96b772f500a287f70
d7afc45fa97725ebaac57726d5d45f602ac7bfef
940b53ff3a42a200817ce9c4d1c8c4d1563853486b628d199b2d4b1f12fd255f
GET /img/flags/min/hu.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 303
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-12f"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2570
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0e9cbb51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/nl.png
104.18.26.216200 OK 328 B URL HTTP/2 entertainzer.com/img/flags/min/nl.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash c055c14b8f44b006b32261e71be3324f
34ccf4e9f9d0f18b86fabafe477d5cc76d6ca725
ad2583d30cae6dfdba4e48dedbdb623305fb0e5a310cf84deedb75cb8e7214a2
GET /img/flags/min/nl.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 328
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-148"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2570
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0fa18b51b-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
entertainzer.com/img/flags/min/ja.png
104.18.26.216200 OK 266 B URL HTTP/2 entertainzer.com/img/flags/min/ja.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash f8d5d965c5ac8014d2e0293d67f893a4
476ddbaaa32dc435e1c1aa04104c88c9771c5fbe
f8876ab39504d02b6fb905eef77c4ad8d181a563105609bed0b57fc279352ef0
GET /img/flags/min/ja.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 266
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-10a"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2570
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0e9d3b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/no.png
104.18.26.216200 OK 334 B URL HTTP/2 entertainzer.com/img/flags/min/no.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash c48ab8c65139f9647fee8710c4b3b66c
df412e417270d78833a1efacdc61529abb7ad03c
79ca4cda3faf0379f6fb2df3f82b896393291eede7c9c7e09b5199572de06d5c
GET /img/flags/min/no.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 334
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-14e"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2570
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0fa1bb51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/pl.png
104.18.26.216200 OK 256 B URL HTTP/2 entertainzer.com/img/flags/min/pl.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 0bf391411c6f06bef68cc4c369b9eba0
7773847a6c110241864cdb7760fc80c76011978b
51f29fd11cad81a8cbe246c0ee8d4f97fd8a04859fbf6a4517b7cce931e8ba34
GET /img/flags/min/pl.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 256
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-100"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2570
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0fa21b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/sv.png
104.18.26.216200 OK 342 B URL HTTP/2 entertainzer.com/img/flags/min/sv.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 0f13dc11fccbdd9a587353905c836b16
dbf9faf4f7d227c11a5ba77fd3ae09af52763b8c
ebd9138caa9f44e33b54636bdf819ae6ece1f72a1405e58f37724273f187adc4
GET /img/flags/min/sv.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 342
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-156"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 908
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee10a36b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/pt.png
104.18.26.216200 OK 427 B URL HTTP/2 entertainzer.com/img/flags/min/pt.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 86b64a6009b9fda3f62281760c1dd4f0
c536dff21701618654328b21773e69a7508c4c85
28d682eed12d0786c32613e2c4c54c144975c7160f2584380d1839d9dc04f824
GET /img/flags/min/pt.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 427
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-1ab"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2570
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee10a35b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/zh.png
104.18.26.216200 OK 290 B URL HTTP/2 entertainzer.com/img/flags/min/zh.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 329cca45f3a4c46ec249638ca4f8d6e0
98b23617ef88d3a4cd632839fe4180b0ee05a697
9c70b1a563b14ee447b6fc9c00532a73a1e09c500660ce8063d6b3fbce48ae47
GET /img/flags/min/zh.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 290
last-modified: Wed, 21 Dec 2022 17:26:46 GMT
etag: "63a341d6-122"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 908
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee11a4eb51b-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 166665
expires: Fri, 29 Dec 2023 18:50:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bXmOl%2Fgr7t%2BxXo4QlV3r6%2FSmC4N3zWJmtaO17hCqco74Z7xugFpZ4Bd9gy7WM5zSmsSt12V5KYuhjU1KaAtFNGpCospCW5ALCxtniHH8Nwa81j8y55Pf2rgWC0o%2FTlIYxrCoYopD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78671ee188d8b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.27c23153.js
104.18.26.216200 OK 1.5 kB URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.27c23153.js
IP 104.18.26.216:0
Hash 168e88f1abd315aaeee68bb209ad0826
714d09d466934c6d45a66047f21603f270660e8b
f3f3a362805b34d923e49e2f13f5c8efa3f0a35a403dc1300fddcee4c7894d1f
Analyzer Verdict Alert fortinet Phishing
GET /theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.27c23153.js HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 21 Dec 2022 17:26:45 GMT
etag: W/"63a341d5-13fb"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 908
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee12a6bb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 63bccc1f66ce9e92e4b40dfb3d397e96
b256695f795919c1fa3d0de461cf4d44fb7573f3
739ed63c77b8f2f8ae1e929d2e6ce784986ea0d3230d2a65cc9f733837c8a581
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 910a40f97a47dbb12642a83f23e72f4b
1c9b94bdb9b17fff60bfc0e890898dd27f672b90
eddea63a2f6bed789ca03710a6a266fe18e597b4e4661446de4f2bf0599783ae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3461
Cache-Control: max-age=118560
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Etag: "63ba2f20-118"
Expires: Tue, 10 Jan 2023 03:46:45 GMT
Last-Modified: Sun, 08 Jan 2023 02:49:04 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 315edeafe1715f46de7d38be371473a8
25e357166d0ddfff3e60f9042d56f37c1ab7163a
9869582721de4f610dca5030b9a703863d2eae2667061b2f722aebdaf60468e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
entertainzer.com/theme/Master/SubscriptionPages/img/bg/connsmythe.jpg
104.18.26.216200 OK 229 kB URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/img/bg/connsmythe.jpg
IP 104.18.26.216:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 729x748, components 3\012- data
Size 229 kB (229330 bytes)
Hash 5565a68b343a9390bf655af103bea6b8
674ad59b51fad494071bb25692a557215256a24c
27ac17d4718b60d19207373dfcabeac8227bcd9192f99a5c2955b3b37b57e415
GET /theme/Master/SubscriptionPages/img/bg/connsmythe.jpg HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/jpeg
content-length: 229330
cf-bgj: h2pri
etag: "63a341d5-37fd2"
last-modified: Wed, 21 Dec 2022 17:26:45 GMT
x-fruit: banana
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 726
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee2bc24b51b-OSL
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/img/sprites/connsmythe-sprites.png
104.18.26.216200 OK 15 kB URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/img/sprites/connsmythe-sprites.png
IP 104.18.26.216:0
File type PNG image data, 300 x 213, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f6f69116ce39f0b56b9c9f7aa080d9b
2db6c7f5747315867afe28e0204fb59fd849bcef
5ca26ee807f7e5c6cb1a3e716efbe1ae68acc0a389fb78f2e525bb589db8726c
GET /theme/Master/SubscriptionPages/img/sprites/connsmythe-sprites.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: image/png
content-length: 14990
last-modified: Wed, 21 Dec 2022 17:26:45 GMT
etag: "63a341d5-3a8e"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 726
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee2bc36b51b-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z
142.250.74.72200 OK 58 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z
IP 142.250.74.72:0
File type ASCII text, with very long lines (3788)
Hash afd06f43bb2d8c9f454ded15e8ffe764
61e99ef9e6564ec62e532351a5c1eeb468a64734
c17495190905d7e252066f58c7e334757514468736ff8d5941aa2036e3e54d72
GET /gtm.js?id=GTM-MMPL24Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 08 Jan 2023 18:50:45 GMT
expires: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=900
last-modified: Sun, 08 Jan 2023 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 58340
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
104.18.26.216200 OK 85 kB URL HTTP/2 entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
IP 104.18.26.216:0
Hash a9a74c42282a975bc3913d72dfd575a4
2a3c91889c6c087a4ed84a39037542b5d764200a
d03b05fee1450b3694c338b1ddd2b23dabe6307b5dd52dceda6eac483bdd08a2
GET /registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22 HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: text/html
cf-ray: 78671edf1e90b51b-OSL
age: 518816
cache-control: public, max-age=604800
expires: Sun, 15 Jan 2023 18:50:44 GMT
last-modified: Mon, 02 Jan 2023 18:43:48 GMT
strict-transport-security: max-age=0; includeSubDomains
vary: Accept-Encoding
cf-cache-status: HIT
cache-tag: 1662,entertainzer.com,/registration,NO,m-2-panther2X,eng,,turnhub.net
set-cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; Path=/; Secure; Max-Age=9999999
CakeCookie[entityId]=Mg%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[lang]=eng; Path=/; Secure; Max-Age=9999999
CakeCookie[pubid]=NzQyMA%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx; Path=/; Secure; Max-Age=9999999
x-cache-url: https://entertainzer.com/registration?lang=eng&theme=m-2-panther2X&cacheHash=MTY2MixlbnRlcnRhaW56ZXIuY29tLC9yZWdpc3RyYXRpb24sTk8sbS0yLXBhbnRoZXIyWCxlbmcsLHR1cm5odWIubmV0
x-frame-options: SAMEORIGIN
x-fruit: banana
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 315edeafe1715f46de7d38be371473a8
25e357166d0ddfff3e60f9042d56f37c1ab7163a
9869582721de4f610dca5030b9a703863d2eae2667061b2f722aebdaf60468e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 6845714035871de50607bf6185f94f64
c8b0da305ef4c6a587307d87224ce7ae19ac31dc
75d805e1f96447b58ac3f8226c16c4b13d4e664e1e508be26e9968510145017a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 02 Jan 2023 18:52:55 GMT
expires: Tue, 02 Jan 2024 18:52:55 GMT
cache-control: public, max-age=31536000
age: 518270
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-5.8.0-min.gz.js
54.230.245.185200 OK 18 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-5.8.0-min.gz.js
IP 54.230.245.185:0
File type ASCII text, with very long lines (58159)
Hash 208999c2bfaa80353f3f37c256fd3a3d
b980b8388a475167ed9c0bf908275e5ed6b9df0e
f01fc32845b584dea4dffebe4aaa74979b46798398de2cc98a4263d1bfbf5cf5
GET /libs/amplitude-5.8.0-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 18497
date: Thu, 27 Oct 2022 14:50:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 06 Dec 2019 21:57:52 GMT
etag: "208999c2bfaa80353f3f37c256fd3a3d"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: JayGW0K7hcKEk8hUb5nZ1QRH3tobN7O9
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F2I8NxUklSQmXKk5BHzvZVAR9ie44l3VI53oJnOr9KmbDWH_7dFvzA==
age: 6321625
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 08 Jan 2023 18:17:21 GMT
age: 2004
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 6845714035871de50607bf6185f94f64
c8b0da305ef4c6a587307d87224ce7ae19ac31dc
75d805e1f96447b58ac3f8226c16c4b13d4e664e1e508be26e9968510145017a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 54ac41a005cad66e958c904071ea1d4f
66932889be57eb15ab99237a69d292b12090c68d
52545e144a7ca5c37c5369d5f5b566b4e5e820b1920ab7fe8e413e7fe022e21b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2798
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 08 Jan 2023 18:50:45 GMT
Last-Modified: Sun, 08 Jan 2023 18:04:07 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
script.hotjar.com/modules.b4ac87d27a338f616dd7.js
143.204.55.40200 OK 69 kB URL HTTP/2 script.hotjar.com/modules.b4ac87d27a338f616dd7.js
IP 143.204.55.40:0
File type Unicode text, UTF-8 text, with very long lines (48638)
Hash 1af6d1b4202cd7568a42d42e427f4e4f
a58920bba80580f6e2042513642e7425b7d41073
86ce7f3a1599d843b55e78ce294697c6fd84d4271cf4d49130ad0708a48a2340
GET /modules.b4ac87d27a338f616dd7.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68846
date: Fri, 06 Jan 2023 10:13:59 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "1af6d1b4202cd7568a42d42e427f4e4f"
last-modified: Fri, 06 Jan 2023 10:13:14 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t7zuC-gwY6Bz6_0MKUS3MsG9Cs9QhycS7O3oQJe0__4QN1ZpCprqlQ==
age: 203806
X-Firefox-Spdy: h2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.105200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: CxSbY1J8Hi-OUw27_l4u10Hx23wEt4TR2FP0dwf5BS7t1WPaqz1D0A==
age: 3994840
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.162.52.254101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.52.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /dXYBF+34b7mdAHZy/wgBg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ioZ3WpG4WL8yCUSTexC50sMk5hw=
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 1d8dc86fecf6e7d5a9ccbac9281a810b
e23838dabfe20202c0907f3dae03a6c2f5d2d350
809ae6ecf4d70db47f851f023cd6e3e3861b5d77b4de87630e5990881ebd5376
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 08 Jan 2023 18:50:46 GMT
Last-Modified: Sun, 08 Jan 2023 18:23:12 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: E6rcCvrDjhRBqk1bB22MDMGxkZzmFJdWaO8kAB2q6SgWUHt7c_Pvqg==
Age: 1655
region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X>m=2oe120&_p=1739204565&cid=1652844275.1673203834&ul=en-us&sr=1280x1024&_s=1&sid=1673203833&sct=1&seg=0&dl=https%3A%2F%2Fentertainzer.com%2Fregistration%3Ftheme%3Dm-2-panther2X%26v_id%3Dfb7c5123-225f-3d39-885d-0e92f6009701%26capo%3DdHVybmh1Yi5uZXQ%3D%26entityId%3D2%26capoUrl%3Dturnhub.net%26clickid%3D63babb416ba95da6405e2af7%26page%3Dm-2-panther%26pubid%3D7420%26a_aid%3D597hggfdujy22&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X>m=2oe120&_p=1739204565&cid=1652844275.1673203834&ul=en-us&sr=1280x1024&_s=1&sid=1673203833&sct=1&seg=0&dl=https%3A%2F%2Fentertainzer.com%2Fregistration%3Ftheme%3Dm-2-panther2X%26v_id%3Dfb7c5123-225f-3d39-885d-0e92f6009701%26capo%3DdHVybmh1Yi5uZXQ%3D%26entityId%3D2%26capoUrl%3Dturnhub.net%26clickid%3D63babb416ba95da6405e2af7%26page%3Dm-2-panther%26pubid%3D7420%26a_aid%3D597hggfdujy22&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MGKXPW4W8X>m=2oe120&_p=1739204565&cid=1652844275.1673203834&ul=en-us&sr=1280x1024&_s=1&sid=1673203833&sct=1&seg=0&dl=https%3A%2F%2Fentertainzer.com%2Fregistration%3Ftheme%3Dm-2-panther2X%26v_id%3Dfb7c5123-225f-3d39-885d-0e92f6009701%26capo%3DdHVybmh1Yi5uZXQ%3D%26entityId%3D2%26capoUrl%3Dturnhub.net%26clickid%3D63babb416ba95da6405e2af7%26page%3Dm-2-panther%26pubid%3D7420%26a_aid%3D597hggfdujy22&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://entertainzer.com
date: Sun, 08 Jan 2023 18:50:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7990
Expires: Sun, 08 Jan 2023 21:03:57 GMT
Date: Sun, 08 Jan 2023 18:50:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7990
Expires: Sun, 08 Jan 2023 21:03:57 GMT
Date: Sun, 08 Jan 2023 18:50:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10434
Expires: Sun, 08 Jan 2023 21:44:41 GMT
Date: Sun, 08 Jan 2023 18:50:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10434
Expires: Sun, 08 Jan 2023 21:44:41 GMT
Date: Sun, 08 Jan 2023 18:50:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 11aea3c23fce2f77cadf7a551f4e8b17
4963aafedcf3fc5f28f1b4a6b0212abfd5526702
d2ada7d592878b58921cd0568efa62abefd7423d40bec16133886e2c67a791b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2ADA7D592878B58921CD0568EFA62ABEFD7423D40BEC16133886E2C67A791B3"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10434
Expires: Sun, 08 Jan 2023 21:44:41 GMT
Date: Sun, 08 Jan 2023 18:50:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4c877ef-76ec-4130-a623-3cfe6579a770.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4c877ef-76ec-4130-a623-3cfe6579a770.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30c53ae078b112f7186e910c38898233
d3c58c28f0734f98bed64a26ede077464c3ad3f2
8f7dd1cf9f1472468a7caaf67a8f9c15bfe8836badcfb3249a9a8a7a6c3c0533
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4c877ef-76ec-4130-a623-3cfe6579a770.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13787
x-amzn-requestid: 2598b4fe-a032-47d7-8e6c-cfdcfbe9d64a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDvYE35IAMF1Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e662-574eb7370aac63dd531d6b75;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hoqjdZug31XPMxkMVZ0LWQsA62rGeP8GYXr-pe9rmkmzlGKeGSkNFQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 21:51:20 GMT
age: 75567
etag: "d3c58c28f0734f98bed64a26ede077464c3ad3f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWHMZErbIAMF6sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: H3uGFYbyPSwFZQCvn99EtVQw1Xz9DBbTgrK2FmfoKYBcZXkj60CbuQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 08 Jan 2023 13:24:11 GMT
age: 19596
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc647e729-b53f-49f8-a6ab-2ce5f8545fb6.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc647e729-b53f-49f8-a6ab-2ce5f8545fb6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72302799dca34901be4db1c732277abb
34c149aa1986ba9bbefeddae4f19ff58f4b5093b
f017823817627b30cc424f10babc7cea1470158788026a06ef537435bf7d495c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc647e729-b53f-49f8-a6ab-2ce5f8545fb6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6536
x-amzn-requestid: 231fb617-4d68-4069-9627-135017be4a93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDufFHeIAMFiYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e65c-53903c7d05368c07629f4156;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CgCLMZPEe18AbIV0uxNOAC2kvwDiy-myo9Q103jA2IS-l0ANK0_EhQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 21:42:39 GMT
age: 76088
etag: "34c149aa1986ba9bbefeddae4f19ff58f4b5093b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ca4618f-6a71-4ec2-a5ca-de382d389417.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ca4618f-6a71-4ec2-a5ca-de382d389417.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0146cae6edad6011c47f44fb03277839
b6813e83720deba540bfbd7b469aa74b591d2f95
1cf46ba1abeb0533a36297e16789764b05e4bd8e989bb31d1d4c2897e81edd77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ca4618f-6a71-4ec2-a5ca-de382d389417.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4946
x-amzn-requestid: f6c37ccb-08b2-4c4e-917a-02be4ac06ca0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDvWEJeoAMFXgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e662-45a9e95a0213e1bc23044927;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wcgeUZbWS02iObvDp6Zha-9yNLj61Up5boN0zNQAv77pL_NYf3bvtw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 21:47:03 GMT
age: 75824
etag: "b6813e83720deba540bfbd7b469aa74b591d2f95"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff46c6dc4-4e33-494e-b1dd-d2da59accb42.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff46c6dc4-4e33-494e-b1dd-d2da59accb42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b9822ea0495a55cff2c979c1abf85e9
67f2888ed156e249c97ba1fe12df18c850b7c019
94c9114c3b17c2ecc5783c3da644b2cdd9eb83ae8cd705e78a99bc4d5a5e9514
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff46c6dc4-4e33-494e-b1dd-d2da59accb42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6455
x-amzn-requestid: 758a4992-bb36-41ca-8152-7b1497319108
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDxEFraIAMFYjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e66d-458a3fc7350017c32a591ee0;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: h6txsv3ugb5bvJFyNil78fwaoYyhrAaNiYqE-3ALMRFcj4hFJE6G9g==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 22:08:05 GMT
age: 74562
etag: "67f2888ed156e249c97ba1fe12df18c850b7c019"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facf2ac81-adf8-49be-856e-9b8af1161086.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facf2ac81-adf8-49be-856e-9b8af1161086.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0546bef00f303b12de4354291c504cad
2c8e60803dee7d21b198a92aa187b23a4dce2f43
736bad079c239fa69fab918c209ba3b2a8b7b15616a49871e527d5694670df67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facf2ac81-adf8-49be-856e-9b8af1161086.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8127
x-amzn-requestid: 8111f713-0a7a-4b10-ade5-1c7aa6e06677
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZDvCE_ooAMF7gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b9e660-2b422a7d2dc4a28b24125d1e;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x9CvhN7gV1khrxZcqj0YNitX-lo8v5XenKootYcuZzJnq4azpuwU9w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 07 Jan 2023 21:49:31 GMT
age: 75676
etag: "2c8e60803dee7d21b198a92aa187b23a4dce2f43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.0.13/css/all.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.0.13/css/all.css
IP 172.64.132.15:0
GET /releases/v5.0.13/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: text/css
x-amz-id-2: sSHGJ3sQX8em3pCawu1wOP0tVHMJOCCzleBeGooOeKTJzqxyDu7nUHGd/9VqeWyYrBWbGB63j5U=
x-amz-request-id: 875PAW2D43BAAQP0
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:27:31 GMT
etag: W/"d61bfe9b56c13ecff5313ee3abb45e8b"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 964779
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l0eAO0lQUzEddyDiXTG2KRRUEjovhtrJmkBupcKqKQ1vQ%2FQICbcO%2FUMBIfbUu%2B6UWopHSCgh%2FKhx0O%2FasVV0MVfSsiNtObwBHHrUG6BNbaw0aazVF7dfXgsgIFfXY8nsYUb%2Fhv%2FS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78671ee1ac0e7777-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.95eefa89.css
104.18.26.216200 OK 0 B URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.95eefa89.css
IP 104.18.26.216:0
GET /theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.95eefa89.css HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: text/css
last-modified: Wed, 21 Dec 2022 17:26:44 GMT
vary: Accept-Encoding
etag: W/"63a341d4-5d15"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: HIT
age: 2619
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0a96fb51b-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans
IP 216.58.207.202:0
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Abel
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Abel
IP 216.58.207.202:0
GET /css?family=Abel HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 216.58.207.202:0
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway:400,400i&display=swap
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway:400,400i&display=swap
IP 216.58.207.202:0
GET /css?family=Raleway:400,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat
IP 216.58.207.202:0
GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
104.18.26.216200 OK 0 B URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
IP 104.18.26.216:0
GET /theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: text/css
last-modified: Wed, 21 Dec 2022 17:26:44 GMT
vary: Accept-Encoding
etag: W/"63a341d4-9837"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: HIT
age: 727
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee0a972b51b-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Anton
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Anton
IP 216.58.207.202:0
GET /css?family=Anton HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Candal
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Candal
IP 216.58.207.202:0
Analyzer Verdict Alert fortinet Malware
GET /css?family=Candal HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900
IP 216.58.207.202:0
GET /css?family=Roboto:100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Libre+Baskerville:400,400i&display=swap
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Libre+Baskerville:400,400i&display=swap
IP 216.58.207.202:0
GET /css?family=Libre+Baskerville:400,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Noto+Sans
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans
IP 216.58.207.202:0
GET /css?family=Noto+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP 104.18.11.207:0
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:36:43
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 077760acbd183a927852103cd8828058
cdn-cache: HIT
cf-cache-status: HIT
age: 6321611
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 78671ee1ca110b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-916387.js?sv=7
143.204.55.98200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-916387.js?sv=7
IP 143.204.55.98:0
GET /c/hotjar-916387.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 08 Jan 2023 18:50:33 GMT
cache-control: max-age=60
etag: W/099f980c43f04124da7ea4ef5de5c1db
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n7Pqgcb1oRjvXhg7Lvd3tOwbmZ9UBRVygXOwVSDZSIHVPfUfdMpXJg==
age: 35
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.1ca912b8.js
104.18.26.216200 OK 0 B URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.1ca912b8.js
IP 104.18.26.216:0
Analyzer Verdict Alert fortinet Phishing
GET /theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.1ca912b8.js HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther2X&v_id=fb7c5123-225f-3d39-885d-0e92f6009701&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&clickid=63babb416ba95da6405e2af7&page=m-2-panther&pubid=7420&a_aid=597hggfdujy22
Cookie: CakeCookie[a_aid]=NTk3aGdnZmR1ankyMg%3D%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=NjNiYWJiNDE2YmE5NWRhNjQwNWUyYWY3; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=NzQyMA%3D%3D; CakeCookie[v_id]=ZmI3YzUxMjMtMjI1Zi0zZDM5LTg4NWQtMGU5MmY2MDA5NzAx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:45 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 21 Dec 2022 17:26:45 GMT
etag: W/"63a341d5-6b8ea"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 908
expires: Sun, 08 Jan 2023 22:50:45 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 78671ee11a5bb51b-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Yanone+Kaffeesatz
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Yanone+Kaffeesatz
IP 216.58.207.202:0
GET /css?family=Yanone+Kaffeesatz HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:200,300,400
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:200,300,400
IP 216.58.207.202:0
GET /css?family=Oswald:200,300,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 08 Jan 2023 18:50:45 GMT
date: Sun, 08 Jan 2023 18:50:45 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/916387/visit-data?sv=7
34.241.157.30200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/916387/visit-data?sv=7
IP 34.241.157.30:0
POST /api/v2/client/sites/916387/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 148
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 08 Jan 2023 18:50:46 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2