forum.800mb.ro/index.php?action=profile;u=275592
82.79.145.227301 Moved Permanently 344 B URL HTTP/1.1 forum.800mb.ro/index.php?action=profile;u=275592
IP 82.79.145.227:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c311911a80e2c43d631278e18c0797ce
8c64769724d602d65fe3693220d8e5c9024d6807
e365823e6863ea02be8ed763baad675d578896d5732eeaf53771a405dce06304
GET /index.php?action=profile;u=275592 HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 28 Sep 2022 04:03:10 GMT
Server: Apache/2.4.29 (Ubuntu)
Location: https://forum.800mb.ro/index.php?action=profile;u=275592
Content-Length: 344
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 03:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: p6PvVRD5R4c2jMnQTuaOFDL2Wlm0nzWfdtOqZj1s-NvUDGGn9CUpFQ==
Age: 2851
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2387
Expires: Wed, 28 Sep 2022 04:42:57 GMT
Date: Wed, 28 Sep 2022 04:03:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1017811d25642601e984edc1676d118d
c177c4f7a897584bf91347fa4990c83d6bfd0321
f35bb3a8c877dd8d3c5920f3c917722f12b157aff398e2ec30fab51fa6caa2ef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F35BB3A8C877DD8D3C5920F3C917722F12B157AFF398E2EC30FAB51FA6CAA2EF"
Last-Modified: Mon, 26 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9583
Expires: Wed, 28 Sep 2022 06:42:53 GMT
Date: Wed, 28 Sep 2022 04:03:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rl5kWCf5eIdVOTN4nCoAqC0Ghx2i00OMiXxrNbUfsPe8XjJCwVPYqpupTHjdPY8A+JXisXYyaeU=
x-amz-request-id: 9X5W02B96B4YSQPY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Sep 2022 03:47:14 GMT
age: 956
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 04:03:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c10a8c5d6c1fcf77c589a0f11c117c6e
efd352f616d339b30967a51a2882b7bb835f6e09
209221dbf95228a431c25ff2b9f1e7d41ab57125dc0744d665c3defc556704e2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "209221DBF95228A431C25FF2B9F1E7D41AB57125DC0744D665C3DEFC556704E2"
Last-Modified: Wed, 28 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 28 Sep 2022 10:03:10 GMT
Date: Wed, 28 Sep 2022 04:03:10 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 03:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 04:12:55 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PE13uF_WGwyUVb5tHurw0qbs2kt-HhoZrJ88-QdRBlbJ-Ag4trKkhQ==
Age: 2017
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3887
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 04:03:11 GMT
Last-Modified: Wed, 28 Sep 2022 02:58:24 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
forum.800mb.ro/index.php?action=profile;u=275592
82.79.145.227200 OK 3.7 kB URL HTTP/1.1 forum.800mb.ro/index.php?action=profile;u=275592
IP 82.79.145.227:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (400), with CRLF, LF line terminators
Hash 8c03c0bfffe4d194afcba1c0e8212bed
39f1de778f23bdb819b1d1d6b896abc8104fbb2f
1e0eed19adad141e00c915b71b08b5c3f8af43541f2cdce0a00b32e19ee8a647
GET /index.php?action=profile;u=275592 HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:10 GMT
Server: Apache/2.4.29 (Ubuntu)
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1
X-Content-Type-Options: nosniff
Set-Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um; path=/
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Cache-Control: private
Pragma: no-cache
Last-Modified: Wed, 28 Sep 2022 04:03:11 GMT
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 3714
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
forum.800mb.ro/Themes/default/css/index.css?fin20
82.79.145.227200 OK 12 kB URL HTTP/1.1 forum.800mb.ro/Themes/default/css/index.css?fin20
IP 82.79.145.227:0
Hash 5289d8ce6efaf0d8beb717e72597905f
4822988c22629acfe92c9f35ade424502a296506
bc7093029a1b6ea85af1307287214de622d44be416a66994bbd2086c3aad562e
GET /Themes/default/css/index.css?fin20 HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:11 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sun, 16 Jan 2022 22:11:38 GMT
ETag: "dcb1-5d5ba51e52fd8-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12534
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
52.41.98.34101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.98.34:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rpXD0NGVYxqFUdfMVuZFrQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DxHCgcVCrs0p8/b17QPIAqrYEzc=
forum.800mb.ro/Themes/default/css/responsive.css?fin20
82.79.145.227200 OK 2.6 kB URL HTTP/1.1 forum.800mb.ro/Themes/default/css/responsive.css?fin20
IP 82.79.145.227:0
File type ASCII text, with CRLF line terminators
Hash ff81b8dd9d35c97cd9569a10901a0482
7a36fb8cf24e8ad06576c291b89aa0a3c64d26dd
7cbfc2b026dfa9a74f777cc37aba9d947eaaef14d075e1aef849291480c786c7
GET /Themes/default/css/responsive.css?fin20 HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:11 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Sat, 08 Jan 2022 22:32:43 GMT
ETag: "26ae-5d519ae937d78-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2597
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
forum.800mb.ro/Themes/default/scripts/theme.js?fin20
82.79.145.227200 OK 1.4 kB URL HTTP/1.1 forum.800mb.ro/Themes/default/scripts/theme.js?fin20
IP 82.79.145.227:0
File type HTML document, ASCII text
Hash e4fdb1d31bdd9370906ef3e45f33cf8e
8336e54eb1e607ca2bef845105ceb3c41809bbae
1dd75d0c9b98ae71635cb9058b476f1edfd7bf43552910411cca280e2f8694da
GET /Themes/default/scripts/theme.js?fin20 HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:11 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:37 GMT
ETag: "e68-5d4b97136ac40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1417
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
forum.800mb.ro/Themes/default/scripts/sha1.js
82.79.145.227200 OK 2.2 kB URL HTTP/1.1 forum.800mb.ro/Themes/default/scripts/sha1.js
IP 82.79.145.227:0
Hash 124bf5a5dfa9f177e0d3c02145046f5e
19b849e7e8d79cfaebe259a73344e064d6066ab9
7194c3aa6f57f7ad2c68876e78401ca3f97975543a9b26393339383f4dc91328
GET /Themes/default/scripts/sha1.js HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:11 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:37 GMT
ETag: "154b-5d4b97136ac40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2218
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
forum.800mb.ro/Themes/default/scripts/script.js?fin20
82.79.145.227200 OK 13 kB URL HTTP/1.1 forum.800mb.ro/Themes/default/scripts/script.js?fin20
IP 82.79.145.227:0
File type ASCII text, with very long lines (796)
Hash f3278a95d49f7ee973ecf3ff398aef99
e8989ec7c20eb747a410245d7f277d25f2e733ce
8f4cdd32d51e265ea6a0a8142c1dc18bc61d05db2c4ceb80e4827e1682304343
GET /Themes/default/scripts/script.js?fin20 HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:11 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:37 GMT
ETag: "bbc5-5d4b97136ac40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13315
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8e26232d4e715a202c93e874b4a85f4
cd9926c2fcf4043e9717d63ec2ea2580dec63467
c7517a4670c8fe9d76032d16b72e58b541aab5f4525913bb22bd5e5bb84a80a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C7517A4670C8FE9D76032D16B72E58B541AAB5F4525913BB22BD5E5BB84A80A1"
Last-Modified: Tue, 27 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21536
Expires: Wed, 28 Sep 2022 10:02:07 GMT
Date: Wed, 28 Sep 2022 04:03:11 GMT
Connection: keep-alive
broadsheetspikesnick.com/d7/f9/80/d7f980dc8197dbeb54539a546a8ea313.js
192.243.59.13200 OK 20 kB URL HTTP/1.1 broadsheetspikesnick.com/d7/f9/80/d7f980dc8197dbeb54539a546a8ea313.js
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (59379), with no line terminators
Hash b31bcef2039af8db8c07c72a0b4d2a4b
46bdd19ee88955a7bd384b7903f2641b3c5b6496
2a971fb9b9c9d8dfe618b15e6c48e510535762e4cd670545e64afe1e0bb9f5e4
GET /d7/f9/80/d7f980dc8197dbeb54539a546a8ea313.js HTTP/1.1
Host: broadsheetspikesnick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 28 Sep 2022 04:03:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 63b8bbfd59944639cc429fc8a83f3798
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
forum.800mb.ro/Smileys/default/smiley.gif
82.79.145.227200 OK 1.0 kB URL HTTP/1.1 forum.800mb.ro/Smileys/default/smiley.gif
IP 82.79.145.227:0
File type GIF image data, version 89a, 15 x 15\012- data
Hash f6f1f44d72a3026fe1b379025c96da90
32120407abcad3c17e69ab954634a4f10607b7c2
87204e0328f897da069829888d5b98972fa437ea6cba31144f3994dbdaaba4c8
GET /Smileys/default/smiley.gif HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:27 GMT
ETag: "3f1-5d4b9709e15c0"
Accept-Ranges: bytes
Content-Length: 1009
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
forum.800mb.ro/Themes/default/images/upshrink.png
82.79.145.227200 OK 638 B URL HTTP/1.1 forum.800mb.ro/Themes/default/images/upshrink.png
IP 82.79.145.227:0
File type PNG image data, 20 x 20, 8-bit colormap, non-interlaced\012- data
Hash a9af8b5cd5f2eb06f02c6b636fc4a730
e9a02c2bfb2653e95de50475e0efaebabaaec6da
14f45ab3f8a6b9685f10a09518ee23b1d11a175044b27b5a6c85efb8c609d557
GET /Themes/default/images/upshrink.png HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:34 GMT
ETag: "27e-5d4b97108e580"
Accept-Ranges: bytes
Content-Length: 638
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
forum.800mb.ro/Themes/default/images/useroff.gif
82.79.145.227200 OK 70 B URL HTTP/1.1 forum.800mb.ro/Themes/default/images/useroff.gif
IP 82.79.145.227:0
File type GIF image data, version 89a, 12 x 11\012- data
Hash 04edeecb7c1e615bc1c2935596d01684
c78f4a906966cfe758ad23b41acad14a145e08db
a971d72ad43c5a07d6b458fb35cf9a348d4a007add1026b8058224df51803165
GET /Themes/default/images/useroff.gif HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:34 GMT
ETag: "46-5d4b97108e580"
Accept-Ranges: bytes
Content-Length: 70
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
forum.800mb.ro/Themes/default/images/www_sm.gif
82.79.145.227200 OK 292 B URL HTTP/1.1 forum.800mb.ro/Themes/default/images/www_sm.gif
IP 82.79.145.227:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash b2c0898e005ce0afd35b0f732ba10f07
314f929c9c8aca00a701cac0521c2ea5c4641965
1bf8f0e79f601ddee22f5157455605e0f8e18d6b07db924585de22270e39a4da
GET /Themes/default/images/www_sm.gif HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:34 GMT
ETag: "124-5d4b97108e580"
Accept-Ranges: bytes
Content-Length: 292
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
forum.800mb.ro/Themes/default/scripts/profile.js
82.79.145.227200 OK 624 B URL HTTP/1.1 forum.800mb.ro/Themes/default/scripts/profile.js
IP 82.79.145.227:0
Hash 983f9500ea5b74f0cf4872931ae4009e
093ce283516ca07fb6bfd3b9a8a7a680aba7930f
cbe53a73ce6bcde36d594e05d48c6e54337babace68db0ede0379d4e475729c2
GET /Themes/default/scripts/profile.js HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:37 GMT
ETag: "4aa-5d4b97136ac40-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 624
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
forum.800mb.ro/Themes/default/images/icons/profile_sm.gif
82.79.145.227200 OK 166 B URL HTTP/1.1 forum.800mb.ro/Themes/default/images/icons/profile_sm.gif
IP 82.79.145.227:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 4ec9f761f270141c73b18e1f5708209d
7f163a83b5e987f6b8c2eddb1b95ab54b5319e18
48e422cc6f93bfed65430340784bfe4b6959486055b37f08370706d54d4cd356
GET /Themes/default/images/icons/profile_sm.gif HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:35 GMT
ETag: "a6-5d4b9711827c0"
Accept-Ranges: bytes
Content-Length: 166
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/gif
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2917b8abe74403bc4f20b2eed1ac39a2
8421735ad0b1729a0f3467a5fb0fe06db7a6a5fc
6389a79fa621d32138dab9c0fab190c515288ef534b023cc909a156979fcef39
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "6389A79FA621D32138DAB9C0FAB190C515288EF534B023CC909A156979FCEF39"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19192
Expires: Wed, 28 Sep 2022 09:23:04 GMT
Date: Wed, 28 Sep 2022 04:03:12 GMT
Connection: keep-alive
forum.800mb.ro/Themes/default/images/theme/backdrop.png
82.79.145.227200 OK 370 B URL HTTP/1.1 forum.800mb.ro/Themes/default/images/theme/backdrop.png
IP 82.79.145.227:0
File type PNG image data, 13 x 477, 8-bit/color RGB, non-interlaced\012- data
Hash 5a259e914028db6f89757a2be6797ca7
955917c46f3c7355779f42b12af069aefc738947
c0f213c74ce9d94ff0257a0e98a706e96674b76db868789590221a89fa0217c7
GET /Themes/default/images/theme/backdrop.png HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/Themes/default/css/index.css?fin20
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:36 GMT
ETag: "172-5d4b971276a00"
Accept-Ranges: bytes
Content-Length: 370
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
forum.800mb.ro/Themes/default/images/theme/submit_bg.png
82.79.145.227200 OK 487 B URL HTTP/1.1 forum.800mb.ro/Themes/default/images/theme/submit_bg.png
IP 82.79.145.227:0
File type PNG image data, 500 x 262, 8-bit colormap, non-interlaced\012- data
Hash f2c1781437c2e461dfc02592ae272609
dae047bf40000dbbcf32daadef220ccba99c1598
25e91d095edc1ff9693e7f67fb82cb5e84f12c061067c313162d91e4e51424d8
GET /Themes/default/images/theme/submit_bg.png HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/Themes/default/css/index.css?fin20
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:36 GMT
ETag: "1e7-5d4b971276a00"
Accept-Ranges: bytes
Content-Length: 487
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
forum.800mb.ro/Themes/default/images/theme/frame_repeat.png
82.79.145.227200 OK 113 B URL HTTP/1.1 forum.800mb.ro/Themes/default/images/theme/frame_repeat.png
IP 82.79.145.227:0
File type PNG image data, 2300 x 8, 1-bit colormap, non-interlaced\012- data
Hash 3a13feae0ad702736377b845affa1991
06e12645921dc8cea39fbcb196489d767204dacb
a32a3884f983037b3e6f93ea10fc0281da61861e5508507ef7ffcfe569f9b0a0
GET /Themes/default/images/theme/frame_repeat.png HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/Themes/default/css/index.css?fin20
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:36 GMT
ETag: "71-5d4b971276a00"
Accept-Ranges: bytes
Content-Length: 113
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
forum.800mb.ro/Themes/default/images/theme/menu_gfx.png
82.79.145.227200 OK 2.1 kB URL HTTP/1.1 forum.800mb.ro/Themes/default/images/theme/menu_gfx.png
IP 82.79.145.227:0
File type PNG image data, 682 x 430, 8-bit colormap, non-interlaced\012- data
Hash 602a5c178d0752203bbeebd7a5580144
03f983a84faa268f62274b5e69ef9d81f7ce6e0b
738a961868131ed84df2b25322001e762b27e86ff82ce121970dc5ac692ae247
GET /Themes/default/images/theme/menu_gfx.png HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/Themes/default/css/index.css?fin20
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:36 GMT
ETag: "819-5d4b971276a00"
Accept-Ranges: bytes
Content-Length: 2073
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
forum.800mb.ro/Smileys/default/undecided.gif
82.79.145.227200 OK 405 B URL HTTP/1.1 forum.800mb.ro/Smileys/default/undecided.gif
IP 82.79.145.227:0
File type GIF image data, version 89a, 15 x 15\012- data
Hash 70267ac3e8d6a51f0443a6b25caacda9
f65fb58ed0592137d2b70ac30cece56fd958170a
0e62c2f90b28689333072420e54766e9759e6d2aef883e947bff901548b1a3dc
GET /Smileys/default/undecided.gif HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:27 GMT
ETag: "195-5d4b9709e15c0"
Accept-Ranges: bytes
Content-Length: 405
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
forum.800mb.ro/Smileys/default/angry.gif
82.79.145.227200 OK 1.0 kB URL HTTP/1.1 forum.800mb.ro/Smileys/default/angry.gif
IP 82.79.145.227:0
File type GIF image data, version 89a, 15 x 15\012- data
Hash cd793527ebed5d2430f887df8a74e509
748f0ccabfecbacfde700ae7d3023aeb057855ba
fc095eb8f813ed026be9317a335bb51396f57b0475e1f1d4ce2e173c0f8f1d5a
GET /Smileys/default/angry.gif HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:27 GMT
ETag: "3ec-5d4b9709e15c0"
Accept-Ranges: bytes
Content-Length: 1004
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash b3d6b07e3998c6d4341acb2b263e609e
12e3561297d635de3fbd5212e2ae66a6e91ac673
534a36edebee87dbf492d6b5895e47385e65849b261348ab3623a8e17dc323cc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 04:03:12 GMT
Last-Modified: Wed, 28 Sep 2022 02:28:42 GMT
Server: ECS (nyb/1D2B)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: hgeBd3ApEDSMoTvPQG955xCNg5oNPmyDNFO1j72Dtdf_ugz_TIneVA==
Age: 5670
forum.800mb.ro/Themes/default/images/upshrink2.png
82.79.145.227200 OK 639 B URL HTTP/1.1 forum.800mb.ro/Themes/default/images/upshrink2.png
IP 82.79.145.227:0
File type PNG image data, 20 x 20, 8-bit colormap, non-interlaced\012- data
Hash 1e4f70621664830ea19b4fb28ca4d8d2
cb2f6e6f01142e7011d49566b626f6be6200a1e7
ff86471fc24810cdd71a4a105d5c9e976dc52c4b68a026f2a775d54cd12e214b
GET /Themes/default/images/upshrink2.png HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:34 GMT
ETag: "27f-5d4b97108e580"
Accept-Ranges: bytes
Content-Length: 639
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
forum.800mb.ro/Themes/default/images/theme/main_block.png
82.79.145.227200 OK 18 kB URL HTTP/1.1 forum.800mb.ro/Themes/default/images/theme/main_block.png
IP 82.79.145.227:0
File type PNG image data, 2300 x 864, 8-bit colormap, non-interlaced\012- data
Hash 8dcb8a63e3f83a10dbcfbf2a24998ca8
79f1b859a3eaf7251709aadb722d15092dd00af2
51052d2f3eb29c4bf99d94a35d308bf5e8c5e204bf96f17959c8a35ab9710c72
GET /Themes/default/images/theme/main_block.png HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/Themes/default/css/index.css?fin20
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Tue, 04 Jan 2022 03:43:36 GMT
ETag: "466c-5d4b971276a00"
Accept-Ranges: bytes
Content-Length: 18028
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
simplewebanalysis.com/stats
52.29.95.124200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.29.95.124:0
File type ASCII text, with no line terminators
Hash 0a98613cb586196f1f760c025e17b335
4a8f94a82038671c5e4a5db43ba640d534206194
fe450ff449b028cb876d873d4f99b2334f741a50aefe3a7f85231d3630783d97
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://forum.800mb.ro
Connection: keep-alive
Referer: https://forum.800mb.ro/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 04:03:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://forum.800mb.ro
access-control-allow-credentials: true
set-cookie: uid_id2=5c942adb-37c6-46b0-bb47-a8429dd47f6d:1:1; expires=Sat, 25 Sep 2032 04:03:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2917b8abe74403bc4f20b2eed1ac39a2
8421735ad0b1729a0f3467a5fb0fe06db7a6a5fc
6389a79fa621d32138dab9c0fab190c515288ef534b023cc909a156979fcef39
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "6389A79FA621D32138DAB9C0FAB190C515288EF534B023CC909A156979FCEF39"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19192
Expires: Wed, 28 Sep 2022 09:23:04 GMT
Date: Wed, 28 Sep 2022 04:03:12 GMT
Connection: keep-alive
forum.800mb.ro/favicon.ico
82.79.145.227200 OK 12 kB URL HTTP/1.1 forum.800mb.ro/favicon.ico
IP 82.79.145.227:0
File type MS Windows icon resource - 3 icons, 48x48, 24 bits/pixel, 32x32, 24 bits/pixel\012- data
Hash 53d624bf8b73bac5afdc13cc50295593
5e554a54bffc503c0faa468b8d5d96136c43c74f
c4282f154076fdd9a6b99c8726c22f5e33699a7427848fe4387046d8ff46671f
GET /favicon.ico HTTP/1.1
Host: forum.800mb.ro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/index.php?action=profile;u=275592
Cookie: PHPSESSID=as56lnco29b9vvc16pa3r1f4um
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Server: Apache/2.4.29 (Ubuntu)
Last-Modified: Mon, 10 Jan 2022 08:08:06 GMT
ETag: "2eee-5d535d620a580"
Accept-Ranges: bytes
Content-Length: 12014
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8255
Expires: Wed, 28 Sep 2022 06:20:47 GMT
Date: Wed, 28 Sep 2022 04:03:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8255
Expires: Wed, 28 Sep 2022 06:20:47 GMT
Date: Wed, 28 Sep 2022 04:03:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 139d64e28724086d1d5ab6d2f534ff25
2c717905e83564a17bd8ca61dd934133416f629b
a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8255
Expires: Wed, 28 Sep 2022 06:20:47 GMT
Date: Wed, 28 Sep 2022 04:03:12 GMT
Connection: keep-alive
player.vimeo.com/video/666348896
162.159.128.61200 OK 6.1 kB URL HTTP/1.1 player.vimeo.com/video/666348896
IP 162.159.128.61:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (18678)
Hash 9d2c7555bc7cb5e534954eb14dab88a3
e41f5a118d2a2a38806a116e3c1b184030f8a687
8cfd266864c193a2bc7227e741c6c4be68175e823a1ed423874cd36c53654597
GET /video/666348896 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 04:03:12 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Wed, 28 Sep 2022 04:13:12 GMT
x-host: player-74cdb576d6-2qmkr
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-4
x-backend-proxy: playproxy5
x-bapp-server: player-74cdb576d6-2qmkr
Age: 0
X-Served-By: cache-bma1644-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1664337792.259101,VS0,VE298
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=baBgzfFy.EEyvVg6xOhpgpDSUC7XZDKKczTTCXRz7Pc-1664337792-0-ATtUfvkvyuVywgBvjTyZS4hUByMVvUdoau1zemId8V4xQoLQzs9+3qaZimXdgt55ZTe6IBQifFEr4dyhrwB+h1c=; path=/; expires=Wed, 28-Sep-22 04:33:12 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 751996818b68fab8-OSL
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9715fa-0606-41f2-b3fa-1c7048f24b48.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9715fa-0606-41f2-b3fa-1c7048f24b48.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c761355e3b9bdf64113c92591306b959
5dcf4fbd065e0850c2602a5e8791ba7af1999d9f
03464d30ae3a3199bb3b19e1c730385fc8f68444d41eb0099542bd83108e6ed5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9715fa-0606-41f2-b3fa-1c7048f24b48.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9710
x-amzn-requestid: 38e078fa-bad5-4593-b4f7-ffab77c1d3cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDCF9GWeoAMF-5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633116f2-29b4342e3c7700924d65a273;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 03:05:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dA8uT96jM1QIn89Jw-8vMlGaNrr8xjUBjhg1usiZqFMf0SO12IA4Kg==
via: 1.1 ce74b5c96395745bcb8206d6c9ee0962.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 03:18:43 GMT
age: 2669
etag: "5dcf4fbd065e0850c2602a5e8791ba7af1999d9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 22729
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 9f410158-cd1a-45a9-9e86-4005b25577e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4Hw7oAMFpAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-70683c681f22a3b6103fcb4a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l9IinQYCcQV_iymSArIEnOWgbmLlmVqz94402zcsmga5Bp3Sty7QRg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:49 GMT
age: 22943
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1fa8cb4f4be5057788cd1a2a4d0e76d6
1aec1d67a36867bee8069a144fb1b0d95ff2cb54
5193131db8040ef254554d59109002ec7b8cfc2eab1e872b63e5f65db7cf5105
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc40456fc-e6ad-484b-8754-8b2b0e7abc7c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5944
x-amzn-requestid: 040b4452-4120-4ae5-9ad2-c5b341abbb13
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI34BFdmIAMFmew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cff-103adde82b57535e4f3fb16a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:37:04 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: q03mXCSikJcsTBGqk1Xq7452EiDz4t9PFbp5Qj4xwobiFgqtPwGCBw==
via: 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 23:06:54 GMT
age: 17778
etag: "1aec1d67a36867bee8069a144fb1b0d95ff2cb54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccfb4931d41ca01aa55b4b8e9ef6b4e1
2351d2547f4bd0aac45bb21a5aa8277e80ef15f2
89de9954ee2874b476c907810189812efe13234a46910180f34f68082429260f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7020
x-amzn-requestid: 1258ee7b-987a-4454-8963-e76b7c1470f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4EVxIAMFrmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7a1fbaa251600686757f9583;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VLZucSrpwv4p9vPso373WdFZsbrj-savmu1WPx7nkUuTDaZJ6NWzwg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 22569
etag: "2351d2547f4bd0aac45bb21a5aa8277e80ef15f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 22722
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4b382dabfb199ab9c98eed1bb1c1610e
5517aed771283fb9f23d9ebd0e162213ad907c9c
173d63372ea8071ca1c7f6d6bc2856b3a1a666b51458f981a9c4b22ca21fe553
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "173D63372EA8071CA1C7F6D6BC2856B3A1A666B51458F981A9C4B22CA21FE553"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4265
Expires: Wed, 28 Sep 2022 05:14:17 GMT
Date: Wed, 28 Sep 2022 04:03:12 GMT
Connection: keep-alive
f.vimeocdn.com/p/4.10.1/css/player.css
151.101.86.109200 OK 20 kB URL HTTP/2 f.vimeocdn.com/p/4.10.1/css/player.css
IP 151.101.86.109:0
File type ASCII text, with very long lines (65495)
Hash 674ea13d207a5c2820c92eb236796548
439a3a05f926e21e43ed043e47197aec6c02358f
99105d0c1f2a3eee4823bc2f2151f1747c3f7fa45df401596bc2273328abc22f
GET /p/4.10.1/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 28 Sep 2022 04:03:12 GMT
age: 635140
x-served-by: cache-iad-kjyo7100154-IAD, cache-bma1653-BMA
x-cache: HIT, HIT
x-cache-hits: 61, 122586
x-timer: S1664337793.637353,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20284
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
151.101.86.109200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (1839)
Hash a726e1c270a0429ccce67d981a12ac33
7319cca36fa04ee8d74ea677a0bb5dd113649011
2601818bf89176145a614b0d50b1ef1cd95272a5bc6be5526d54c464f6172dbf
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 28 Sep 2022 04:03:12 GMT
age: 729953
x-served-by: cache-iad-kiad7000169-IAD, cache-bma1653-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 120679
x-timer: S1664337793.650223,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.10.1/js/player.js
151.101.86.109200 OK 212 kB URL HTTP/2 f.vimeocdn.com/p/4.10.1/js/player.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (64649)
Size 212 kB (212091 bytes)
Hash 0178a74556a8c2ae4b0adc1e5896add3
a2187164dbe08839a3bed391ee10f5b3ef24542b
0ab6e243b2068c5ba3620a078364c9b73c7075d70f8e73a00be48fad7bf707ae
GET /p/4.10.1/js/player.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 28 Sep 2022 04:03:12 GMT
age: 635141
x-served-by: cache-iad-kcgs7200127-IAD, cache-bma1653-BMA
x-cache: HIT, HIT
x-cache-hits: 52, 15127
x-timer: S1664337793.650115,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
content-length: 212091
X-Firefox-Spdy: h2
dictatepantry.com/pixel/purst?dl=0&th=0&sc=0&rs=1862&rd=1862&fd=936&bv=22.8.v.1&tmpl=70
192.243.59.13200 OK 0 B URL HTTP/1.1 dictatepantry.com/pixel/purst?dl=0&th=0&sc=0&rs=1862&rd=1862&fd=936&bv=22.8.v.1&tmpl=70
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1862&rd=1862&fd=936&bv=22.8.v.1&tmpl=70 HTTP/1.1
Host: dictatepantry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 28 Sep 2022 04:03:12 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bf270d8d16a1ec6ea1d489320f6f04c9
eb510c01136cdb1f79aae200730a6d2b798489df
4bdbb015229744095c9f75a84aefb115f57e0d363e8d9af43268e66592971cb4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDBB015229744095C9F75A84AEFB115F57E0D363E8D9AF43268E66592971CB4"
Last-Modified: Mon, 26 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18074
Expires: Wed, 28 Sep 2022 09:04:26 GMT
Date: Wed, 28 Sep 2022 04:03:12 GMT
Connection: keep-alive
banquetunarmedgrater.com/advertisers.js
192.243.59.12200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 28 Sep 2022 04:03:13 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a09b0f2d69fa403aa86f7043627126e7
Strict-Transport-Security: max-age=0; includeSubdomains
i.vimeocdn.com/video/1348977523-60ac945cea431c735bfafae40522ed388833cf3d6770b6351b140e18d6c8c1bd-d.jpg?mw=80&q=85
151.101.86.109200 OK 1.8 kB URL HTTP/2 i.vimeocdn.com/video/1348977523-60ac945cea431c735bfafae40522ed388833cf3d6770b6351b140e18d6c8c1bd-d.jpg?mw=80&q=85
IP 151.101.86.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Hash 1fa805c863e5278f1669e50cb4db3f6a
bcb3e9cc679e42fe2d66d495708cc46010feb4ee
ebc4eb611ba831c602612edee7a4b3085503f78259c774db8e3799a3d865e1a1
GET /video/1348977523-60ac945cea431c735bfafae40522ed388833cf3d6770b6351b140e18d6c8c1bd-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: 1fa805c863e5278f1669e50cb4db3f6a
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-5jbs
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 28 Sep 2022 04:03:13 GMT
age: 0
x-served-by: cache-dfw-kdfw8210084-DFW, cache-bma1653-BMA
x-cache: miss, MISS, MISS
x-cache-hits: 0, 0
x-timer: S1664337793.649990,VS0,VE552
content-length: 1759
X-Firefox-Spdy: h2
i.vimeocdn.com/video/1348977523-60ac945cea431c735bfafae40522ed388833cf3d6770b6351b140e18d6c8c1bd-d?mw=640&mh=360
151.101.86.109200 OK 57 kB URL HTTP/2 i.vimeocdn.com/video/1348977523-60ac945cea431c735bfafae40522ed388833cf3d6770b6351b140e18d6c8c1bd-d?mw=640&mh=360
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash 96ac6d89a20f288058041cdee3fab50f
52d5303010dac1f5c9112c5d81c1d4d1f32ae07c
360f1cc4673e52e6df31719faca8dc6c4d70ca559a8699264ca92e77f88179ce
GET /video/1348977523-60ac945cea431c735bfafae40522ed388833cf3d6770b6351b140e18d6c8c1bd-d?mw=640&mh=360 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 96ac6d89a20f288058041cdee3fab50f
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-14j0
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 28 Sep 2022 04:03:13 GMT
age: 0
x-served-by: cache-dfw-kdfw8210086-DFW, cache-bma1653-BMA
x-cache: miss, MISS, MISS
x-cache-hits: 0, 0
x-timer: S1664337793.907977,VS0,VE648
vary: Accept
content-length: 56659
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP 142.250.74.3:0
Hash fb8b2e9d86428d08cd3d06607f0a3037
e0a252fef7a383dabcf237057c2b5ac72b1cf194
93c6543088d39c6e57abb0d0aca560563028a0fd700dbe123ce0cffc8bbec455
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 04:03:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP 142.250.74.3:0
Hash fb8b2e9d86428d08cd3d06607f0a3037
e0a252fef7a383dabcf237057c2b5ac72b1cf194
93c6543088d39c6e57abb0d0aca560563028a0fd700dbe123ce0cffc8bbec455
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 04:03:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.vimeocdn.com/portrait/defaults-blue_60x60
151.101.86.109200 OK 824 B URL HTTP/2 i.vimeocdn.com/portrait/defaults-blue_60x60
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash 66013b5a319fcb01a162582684197d4d
9ecdfafb6978901087ccd067387a69a77974844c
5e53d68858be2cf9aaa779ac8f8cda4be920b1defe25698e96fb07635159f805
GET /portrait/defaults-blue_60x60 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 66013b5a319fcb01a162582684197d4d
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-n4wq
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 28 Sep 2022 04:03:13 GMT
age: 2483210
x-served-by: cache-dfw-kdfw8210103-DFW, cache-bma1653-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 156, 499
x-timer: S1664337794.602838,VS0,VE0
vary: Accept
content-length: 824
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Wed, 28 Sep 2022 04:03:13 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=440f23fa8a2ad008eeb4e96f2e6dd11b240fbeb41664337792
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=440f23fa8a2ad008eeb4e96f2e6dd11b240fbeb41664337792
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=440f23fa8a2ad008eeb4e96f2e6dd11b240fbeb41664337792 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1422
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Wed, 28 Sep 2022 04:03:13 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/5Ylu76wHhgo
IP 142.250.74.3:0
Hash fb8b2e9d86428d08cd3d06607f0a3037
e0a252fef7a383dabcf237057c2b5ac72b1cf194
93c6543088d39c6e57abb0d0aca560563028a0fd700dbe123ce0cffc8bbec455
POST /s/gts1d4/5Ylu76wHhgo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 04:03:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b56134771794748d7d8788b4f4e677c2
104d818d4b9ef1f1bd8e96c860766d021fc628f5
da1ae9892ad3e3453af5b255d0c5a3cd145f45e1444a1406cbbb5e663959c2b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA1AE9892AD3E3453AF5B255D0C5A3CD145F45E1444A1406CBBB5E663959C2B3"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7750
Expires: Wed, 28 Sep 2022 06:12:24 GMT
Date: Wed, 28 Sep 2022 04:03:14 GMT
Connection: keep-alive
unseenreport.com/pxf.gif?uuid=5c942adb-37c6-46b0-bb47-a8429dd47f6d&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=d7f980dc8197dbeb54539a546a8ea313&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4
192.243.59.13200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=5c942adb-37c6-46b0-bb47-a8429dd47f6d&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=d7f980dc8197dbeb54539a546a8ea313&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=5c942adb-37c6-46b0-bb47-a8429dd47f6d&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=d7f980dc8197dbeb54539a546a8ea313&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 28 Sep 2022 04:03:14 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 07346f22fb3e60a9c94823a7991a27f7
Strict-Transport-Security: max-age=0; includeSubdomains
addresseepaper.com/sfp.js
104.21.234.254200 OK 0 B URL HTTP/2 addresseepaper.com/sfp.js
IP 104.21.234.254:0
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://forum.800mb.ro/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 04:03:12 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: cd0cb33273c96228fb9fec3dd9bf1f67
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 28 Sep 2022 04:03:12 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sXrzky%2BZRg5gZgeVa5OPRansprqyTNGznEPsj2kSHrDYIFsMalaQIWAF0eUYwcJ3sSyrQJwBZlhWE3l9zLTUsAzenrVg6pep%2BHwy41LS8wj1rvee3jgT0Uut6E7d61EBSgStygI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751996817cc97692-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2