leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
137.74.206.99200 OK 4.7 kB URL HTTP/1.1 leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
IP 137.74.206.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1261), with CRLF, LF line terminators
Hash 6125c11a737010963f37a986b8846d5c
448f99fb85127b5c2841df69f3fb7ef72a077355
6dcf03be00af46554fad0ef9c3345218316f4d5f992ba9ad124fe37234511f01
Analyzer Verdict Alert quad9 Sinkholed
GET /ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:20 GMT
Server: Apache/2.4.38
Cache-Control: private, no-cache="set-cookie"
Expires: 0
Pragma: no-cache
Set-Cookie: phpbb3_pbmeu_u=1; expires=Fri, 26-Jan-2024 17:30:20 GMT; path=/; domain=leonartmotors.space-forums.net; HttpOnly
phpbb3_pbmeu_k=; expires=Fri, 26-Jan-2024 17:30:20 GMT; path=/; domain=leonartmotors.space-forums.net; HttpOnly
phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4; expires=Fri, 26-Jan-2024 17:30:20 GMT; path=/; domain=leonartmotors.space-forums.net; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4681
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2744
Expires: Thu, 26 Jan 2023 18:16:04 GMT
Date: Thu, 26 Jan 2023 17:30:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14943
Expires: Thu, 26 Jan 2023 21:39:23 GMT
Date: Thu, 26 Jan 2023 17:30:20 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 16:42:55 GMT
content-type: application/json
age: 2846
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12096
Expires: Thu, 26 Jan 2023 20:51:57 GMT
Date: Thu, 26 Jan 2023 17:30:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: d9d9l1DYYHfZoH+3/LK+y6JM71QFs1rs1njxP7WRGi+B6MjKBZ6WCmGkexzGUxqz3KZFH2rb2es=
x-amz-request-id: 4YEK14JVF85CENN6
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 16:49:03 GMT
age: 2478
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:30:21 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/google_service.js
142.250.74.34200 OK 373 B URL HTTP/1.1 partner.googleadservices.com/gampad/google_service.js
IP 142.250.74.34:0
Hash 661854aeecf12ceec3a47608501233da
f7b52c94982b73a5c5559dc166250c18e3af1ba6
12755200a7e22a322f3e6f9231be4a200dbac47873eafc18aecafe32e9dad068
GET /gampad/google_service.js HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 373
X-XSS-Protection: 0
Date: Thu, 26 Jan 2023 16:52:09 GMT
Expires: Thu, 26 Jan 2023 17:52:09 GMT
Cache-Control: public, max-age=3600
Age: 2292
ETag: 953604975598805376
Content-Type: text/javascript; charset=UTF-8
adf.ly/js/link-converter.js
104.20.66.244200 OK 11 kB URL HTTP/1.1 adf.ly/js/link-converter.js
IP 104.20.66.244:0
File type ASCII text, with very long lines (24590)
Hash a9d75b7bd46c34771667449479f06d0d
bf539dc98ca8fed1ef064557305d9a26d8f5442f
b84cfa9a1114f418b7600e993e8c9d99a1ccf40e2efccd0484a365e43129d4f0
GET /js/link-converter.js HTTP/1.1
Host: adf.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Content-Type: application/x-javascript
Content-Length: 11182
Connection: keep-alive
cache-control: public, max-age=604800
expires: Thu, 02 Feb 2023 17:29:57 GMT
last-modified: Sun, 15 Jan 2023 00:59:02 GMT
etag: "7b7a-63c34fd6-bb6751cf487a3302;gz"
content-encoding: gzip
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 24
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 78faf9daf9fd0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
leonartmotors.space-forums.net/styles/AutumnsColor/template/styleswitcher.js
137.74.206.99200 OK 764 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/template/styleswitcher.js
IP 137.74.206.99:0
Hash 76c492515058999f09d3ad125d1015be
2985cbf51fe641e24c4249120296ebb3876a5698
5448fee6897c041ccee00ba44a21599ac3c119c1fc2049e75918953a138ca58b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /styles/AutumnsColor/template/styleswitcher.js HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:07 GMT
ETag: "9e0-4b330cbde7ac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 764
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
leonartmotors.space-forums.net/styles/AutumnsColor/theme/normal.css
137.74.206.99200 OK 26 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/normal.css
IP 137.74.206.99:0
Hash e1f795344a879fd7226eb57456510578
9a5e9c81930b6bc6f52d5452361e169b88cef170
3c376f761737ce269813b94ce2a79a005497db440350d659ea54837f1d30e54f
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/normal.css HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:27 GMT
ETag: "1a-4b330cd0fa7c0"
Accept-Ranges: bytes
Content-Length: 26
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
tags.clickintext.net/jZE9GUcMZdOus
151.80.200.209200 OK 1.9 kB URL HTTP/1.1 tags.clickintext.net/jZE9GUcMZdOus
IP 151.80.200.209:0
File type Non-ISO extended-ASCII text
Hash ff33281254e1e309c3a86405201c1d50
7d55f44c728091e1d303a078ff476183b529ca7e
c79c7eb77180c8ed3429b6863138093d489b8100ac2c6f5c526bfa5b61985b05
GET /jZE9GUcMZdOus HTTP/1.1
Host: tags.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:21 GMT
Content-Type: application/x-javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CUR ADM OUR NOR STA NID"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: witchServeur-7=107; expires=Thu, 26-Jan-2023 22:30:21 GMT; Max-Age=18000; path=/; secure; SameSite=None; domain=.clickintext.net
Content-Encoding: gzip
tags.clickintext.net/jtgVcVctkgLJH
151.80.200.209200 OK 1.1 kB URL HTTP/1.1 tags.clickintext.net/jtgVcVctkgLJH
IP 151.80.200.209:0
File type ASCII text, with very long lines (316)
Hash b73063b4a9b0d55d5d733298e424286b
7d06da6ebc26eee05a2f589f70761d4ed9faa975
c05d08746bb8988c0e12e83c4a9df1917a387c426c210b280e9ef52e691360cd
GET /jtgVcVctkgLJH HTTP/1.1
Host: tags.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:21 GMT
Content-Type: application/x-javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CUR ADM OUR NOR STA NID"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: witchServeur-7=107; expires=Thu, 26-Jan-2023 18:30:21 GMT; Max-Age=3600; path=/; secure; SameSite=None; domain=.clickintext.net
Content-Encoding: gzip
leonartmotors.space-forums.net/styles/AutumnsColor/template/forum_fn.js
137.74.206.99200 OK 1.9 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/template/forum_fn.js
IP 137.74.206.99:0
Hash ee767c98111e8e9c5d85d9a389ffce18
a58c408a8985c4569f8aaff19eab4d71c6be3cd6
df7a7b765f57eb9b0a71d76351c872a2fcd3efe28d96b95862a7a676e6e353fd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /styles/AutumnsColor/template/forum_fn.js HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:20:49 GMT
ETag: "1260-4b330cacbd240-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1860
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
leonartmotors.space-forums.net/includes/adfly.js
137.74.206.99200 OK 1.6 kB URL HTTP/1.1 leonartmotors.space-forums.net/includes/adfly.js
IP 137.74.206.99:0
File type ASCII text, with very long lines (3867)
Hash b64e5a34c5d3838bbc31a17d88017671
ff8f98fa7c482d1c5477163f1d8489d3772bc5a7
b60e7df2a0e08d001c636bcbabcfc3667e1552202b0f1ffec0f6bbc8034488c1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /includes/adfly.js HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Tue, 12 Mar 2019 10:30:12 GMT
ETag: "f54-583e32c8ff500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1637
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
tags.clickintext.net/j2xic25gS17SN
151.80.200.209200 OK 1.6 kB URL HTTP/1.1 tags.clickintext.net/j2xic25gS17SN
IP 151.80.200.209:0
File type HTML document, ASCII text, with very long lines (436)
Hash 76c0fae6bbdf0d2b215cfe26e10b96c7
de6b466782cf34a40437b290f8863b0a144697b2
e06dd127108172cb3e61b678ba178bafa33aa8b96cc5e14de8cf1c49345eb446
GET /j2xic25gS17SN HTTP/1.1
Host: tags.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:21 GMT
Content-Type: application/x-javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CUR ADM OUR NOR STA NID"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: witchServeur-7=107; expires=Thu, 26-Jan-2023 18:30:21 GMT; Max-Age=3600; path=/; secure; SameSite=None; domain=.clickintext.net
Content-Encoding: gzip
leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
137.74.206.99200 OK 14 kB URL HTTP/1.1 leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
IP 137.74.206.99:0
Hash 891f7748f4c6918ff9a7bf6e216bfeda
b2b0be109337d49e5fbc4517876c9d53365619b4
390a19576bbd6d50c39f8410b082722ee29b7bbca5cf4bd9c3ef705951295463
Analyzer Verdict Alert quad9 Sinkholed
GET /style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Expires: Thu, 02 Feb 2023 17:30:21 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13745
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 715f2a2c57230b2e1aedef83c76e0cbc
df5a219b8564a6c8fbe802e574ba625be7f204ca
ca239808557d30d1df2527ae94987866734b640bfd631282414a39eac87b872c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:30:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.affilizr.com/js/affilizr.js
81.171.22.4200 OK 494 B URL HTTP/1.1 script.affilizr.com/js/affilizr.js
IP 81.171.22.4:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (494), with no line terminators
Hash 1c39f8d8dfcd170d9394859868239d24
dd02e1f09bcffc359e29f356c1c3ec9c5f984d3e
ef9beb3d43adcc1238a6490f42ca23de0b44933f3ea40c50a741c75b50442827
Analyzer Verdict Alert fortinet Malware
GET /js/affilizr.js HTTP/1.1
Host: script.affilizr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 494
content-type: text/html; charset=utf-8
date: Thu, 26 Jan 2023 17:30:20 GMT
server: nginx
set-cookie: sid=1c014f9e-9d9f-11ed-b698-be1704ae6287; path=/; domain=.affilizr.com; expires=Tue, 13 Feb 2091 20:44:28 GMT; max-age=2147483647; HttpOnly
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
142.250.74.74200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 05:15:15 GMT
expires: Wed, 24 Jan 2024 05:15:15 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 216906
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 715f2a2c57230b2e1aedef83c76e0cbc
df5a219b8564a6c8fbe802e574ba625be7f204ca
ca239808557d30d1df2527ae94987866734b640bfd631282414a39eac87b872c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:30:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a01.adoptima.com/GP2416568cf32e64545
3.130.253.23302 Found 0 B URL HTTP/1.1 a01.adoptima.com/GP2416568cf32e64545
IP 3.130.253.23:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /GP2416568cf32e64545 HTTP/1.1
Host: a01.adoptima.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 302 Found
content-length: 0
date: Thu, 26 Jan 2023 17:30:21 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=adoptima.com
leonartmotors.space-forums.net/space9.gif
137.74.206.99200 OK 86 B URL HTTP/1.1 leonartmotors.space-forums.net/space9.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 863fd9bdbd047fcb20a2123389fc0e88
00af66f8505d7c39a33b7cbf3d1dddc710d5bda1
dcf947aa1a918152a620f6cfe960a66c1ba0a6d301e6cbfccc9212d3e69da761
Analyzer Verdict Alert quad9 Sinkholed
GET /space9.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/large.css
137.74.206.99200 OK 26 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/large.css
IP 137.74.206.99:0
Hash 57db84d40f8bbfe5ad1c76e56b740a9f
c8deafaaf5f96b8b01e4d93de7ec11239a83cace
9e6edda7bd0383f746d0a1eeed496a77fb9a68d661a050aa094afe153d4ab505
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/large.css HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:26 GMT
ETag: "1a-4b330cd006580"
Accept-Ranges: bytes
Content-Length: 26
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
leonartmotors.space-forums.net/styles/AutumnsColor/theme/print.css
137.74.206.99200 OK 1.1 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/print.css
IP 137.74.206.99:0
Hash 7e386e48adef7b84e03a1b06e84ec234
fd59bee9318a900c4a28f50317825b7250b5ff80
0e8c0a981a0cbd61e20b5d8c8e819045301e0213d79dda2335206709e8eeb399
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/print.css HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:28 GMT
ETag: "be6-4b330cd1eea00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1137
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
leonartmotors.space-forums.net/styles/AutumnsColor/theme/medium.css
137.74.206.99200 OK 26 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/medium.css
IP 137.74.206.99:0
Hash dacdeddec5e576d812d346b8e226f856
d855a63c09ebe3e814fd4941e6ef60b3b0058109
231d478a52d58d653f33a2014607b1434b659e9e0afff0e7d528fe813a4ab99b
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/medium.css HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:26 GMT
ETag: "1a-4b330cd006580"
Accept-Ranges: bytes
Content-Length: 26
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
leonartmotors.space-forums.net/espace.gif
137.74.206.99404 Not Found 196 B URL HTTP/1.1 leonartmotors.space-forums.net/espace.gif
IP 137.74.206.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert quad9 Sinkholed
GET /espace.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 404 Not Found
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Content-Length: 196
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 02c51a49bc0ce885218d05732e7ebcce
4432acb986d59895203bd30c2385c424f04d9ff3
fa40396024a20b7d06a28b4401473fb1031eba7ccbc27488a66fba1ff980b0f8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1729
Cache-Control: max-age=143236
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:30:21 GMT
Etag: "63d23e70-116"
Expires: Sat, 28 Jan 2023 09:17:37 GMT
Last-Modified: Thu, 26 Jan 2023 08:48:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 278
leonartmotors.space-forums.net/space6.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space6.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space6.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space8.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space8.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space8.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space4.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space4.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space4.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space13.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space13.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space13.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space3.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space3.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space3.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space11.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space11.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space11.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space7.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space7.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space7.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/images/chat.png
137.74.206.99200 OK 1.0 kB URL HTTP/1.1 leonartmotors.space-forums.net/images/chat.png
IP 137.74.206.99:0
File type PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ed08af132b7758cac5dd6205c0ca77e
7560b733824955b090ca8a2e651efbe49ee76b98
fc6acca2cccbf3b31f3408f3ab0f7a8ffc538949b5cd6d13edf94e7f727de57d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/chat.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Mon, 15 Mar 2010 10:35:33 GMT
ETag: "417-481d470d68740"
Accept-Ranges: bytes
Content-Length: 1047
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/images/iphone.png
137.74.206.99200 OK 1.1 kB URL HTTP/1.1 leonartmotors.space-forums.net/images/iphone.png
IP 137.74.206.99:0
File type PNG image data, 13 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 3bb78d80beb34f0a4b8c3dce9b95bebe
b35169f481a15972413247812bc8aab553b3b5bf
94d07af681c3f1bee72095da0efbc52c8a3a3cd004bf10fcf6e8e3ba46a3ea8b
Analyzer Verdict Alert quad9 Sinkholed
GET /images/iphone.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Thu, 11 Mar 2010 17:20:09 GMT
ETag: "42d-48189a06f6440"
Accept-Ranges: bytes
Content-Length: 1069
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/space5.gif
137.74.206.99200 OK 86 B URL HTTP/1.1 leonartmotors.space-forums.net/space5.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 863fd9bdbd047fcb20a2123389fc0e88
00af66f8505d7c39a33b7cbf3d1dddc710d5bda1
dcf947aa1a918152a620f6cfe960a66c1ba0a6d301e6cbfccc9212d3e69da761
Analyzer Verdict Alert quad9 Sinkholed
GET /space5.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space2.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space2.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space2.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/cron.php?cron_type=tidy_warnings&sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/cron.php?cron_type=tidy_warnings&sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /cron.php?cron_type=tidy_warnings&sid=86a5eb6cc4f31417d8a5ff9c4b1031c4 HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Cache-Control: no-cache
Content-length: 43
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/gif
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 16:49:01 GMT
age: 2480
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
leonartmotors.space-forums.net/forums/2010-07/leonartmotors/images/site_logo.png
137.74.206.99200 OK 248 kB URL HTTP/1.1 leonartmotors.space-forums.net/forums/2010-07/leonartmotors/images/site_logo.png
IP 137.74.206.99:0
File type PNG image data, 800 x 212, 8-bit/color RGB, non-interlaced\012- data
Size 248 kB (247700 bytes)
Hash 31fe69263f50892615ab7f2e7f4ebb3e
946640bffb47f6c7a799a3e41e16a3debe12b5ed
fce8f824506f4609240b8e5608b3c5026de326f8ee1cbe879254e72242b3c757
Analyzer Verdict Alert quad9 Sinkholed
GET /forums/2010-07/leonartmotors/images/site_logo.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Wed, 29 Jan 2020 15:09:06 GMT
ETag: "3c794-59d48b8bab925"
Accept-Ranges: bytes
Content-Length: 247700
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/autumn_background.jpg
137.74.206.99200 OK 148 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/autumn_background.jpg
IP 137.74.206.99:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1600x1200, components 3\012- data
Size 148 kB (147663 bytes)
Hash 2551085daf22a8a32f858f2c72e48096
6cefde2f3127d2c78f325205ec5b2847c2966844
a405aa3e1eba5db6735174c06b7143c14a7e6be999c8466c1f9f1dd142338814
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/autumn_background.jpg HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:21 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:47 GMT
ETag: "240cf-4b330ce40d4c0"
Accept-Ranges: bytes
Content-Length: 147663
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15892
Expires: Thu, 26 Jan 2023 21:55:14 GMT
Date: Thu, 26 Jan 2023 17:30:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8e6758280066e8fddfa398330c61702e
c6ae78c7319a57f6eb41fbd2bff585b2415e34d6
fdf2326978e7f6fbc4ae0cecb61609ca7be81b9bd308d80d16658de39feaa8de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDF2326978E7F6FBC4AE0CECB61609CA7BE81B9BD308D80D16658DE39FEAA8DE"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16020
Expires: Thu, 26 Jan 2023 21:57:22 GMT
Date: Thu, 26 Jan 2023 17:30:22 GMT
Connection: keep-alive
leonartmotors.space-forums.net/espace.gif
137.74.206.99404 Not Found 196 B URL HTTP/1.1 leonartmotors.space-forums.net/espace.gif
IP 137.74.206.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert quad9 Sinkholed
GET /espace.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 404 Not Found
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Content-Length: 196
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/top_border.png
137.74.206.99200 OK 26 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/top_border.png
IP 137.74.206.99:0
File type PNG image data, 937 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 85ebdb62151afeaa30d8d00805efb5c6
077597e6c6fe4ff140bb0d77f540cb2e82bd8f18
87b0fab818b247166a5e53486b99d3fc4f12d5f6ec3c3489581f18087382e73b
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/top_border.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:57 GMT
ETag: "653f-4b330ced96b40"
Accept-Ranges: bytes
Content-Length: 25919
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/mid_border.png
137.74.206.99200 OK 25 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/mid_border.png
IP 137.74.206.99:0
File type PNG image data, 937 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 404a8209762f13a61be45ba4383caf20
d4affc94822510b3f85b723ebf84625bb5d07e2a
bc44e16f1001f85b239609ea152ebb5a10da1807f577f4cd8501c31e456e16fe
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/mid_border.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:54 GMT
ETag: "62a6-4b330ceaba480"
Accept-Ranges: bytes
Content-Length: 25254
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/corners_left.png
137.74.206.99200 OK 173 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/corners_left.png
IP 137.74.206.99:0
File type PNG image data, 6 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 0de39e3aaac51526d179d77cc437cc0c
d844a32372af48a795c6c06ff9f2c9c280a707a5
f4d4734ab640e1ca98cf10a6c2542703c71115e55a90918e5c62db420d76eea6
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/corners_left.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:41 GMT
ETag: "ad-4b330cde54740"
Accept-Ranges: bytes
Content-Length: 173
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/corners_right.png
137.74.206.99200 OK 160 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/corners_right.png
IP 137.74.206.99:0
File type PNG image data, 6 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 63182bb8e56788c327ba4d04193e98a2
748a6e15c9960936494251c82d9fa6f767e590bc
8ce17c33eb19b7485fed46f3bf8a2abc588d8aec564f54e39355bb1e7a5188d1
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/corners_right.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:44 GMT
ETag: "a0-4b330ce130e00"
Accept-Ranges: bytes
Content-Length: 160
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_textbox_search.gif
137.74.206.99200 OK 564 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_textbox_search.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 14 x 14\012- data
Hash 0ca8ee5ab952ed9cb276fca20fc4b4bb
25466ff57318491a64d7ffc5ad9b6cf0f1b47fba
c77f739e3cbe51c932348e7a014471e1a80d3504c2a05808ace5d3c0b00d0e7b
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_textbox_search.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:53 GMT
ETag: "234-4b330ce9c6240"
Accept-Ranges: bytes
Content-Length: 564
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/bg_button.gif
137.74.206.99200 OK 41 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/bg_button.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 4 x 24\012- data
Hash 6002895efcf8bd6a3e7e346b564bba3b
94f56c8ecbaef7c3e1bbcb21361bdd4eee133d6f
004e77538cf63d55371cf1918bb11c14b79c1b5eaae8304b097ce70155b66793
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/bg_button.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:36 GMT
ETag: "29-4b330cd98fc00"
Accept-Ranges: bytes
Content-Length: 41
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_home.gif
137.74.206.99200 OK 630 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_home.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 4a67953e7a666eb331d6bb088506f14c
4984164153f37b7c92b23ef46f02fb96511ead6a
9166e639ddd8165550fb8536f898ae44b164b25b7a20bb72643e62cc303a4d27
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_home.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:49 GMT
ETag: "276-4b330ce5f5940"
Accept-Ranges: bytes
Content-Length: 630
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_fontsize.gif
137.74.206.99200 OK 328 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_fontsize.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 29 x 36\012- data
Hash bde88e850aa719ab441611e7eb325581
fec58b4f8ca8b1bc2c5b11c8366d53b94b0a9150
82d7a17bc5f76d41212a1e33f9ccb0893e8dd4090beb4c7c3aa51e43bd5e0fbd
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_fontsize.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:49 GMT
ETag: "148-4b330ce5f5940"
Accept-Ranges: bytes
Content-Length: 328
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_faq.gif
137.74.206.99200 OK 589 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_faq.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 16 x 12\012- data
Hash c1ffffb9fda33d5d3cbe19b4eb4d05a1
2d2464cda8b61f9b308b86e466e473ff32317930
2bceacf0e95ebf68831350efc4bc4d3959e3f929e4eb64dc3bafca97c20f35e2
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_faq.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:49 GMT
ETag: "24d-4b330ce5f5940"
Accept-Ranges: bytes
Content-Length: 589
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_register.gif
137.74.206.99200 OK 582 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_register.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 14 x 13\012- data
Hash 19925b28ee56f02704e3f8948c067f31
06cad86c918f5a4e3a51078848d503a2a4d65e88
b88423f3b20777eb67790461dae6bb4a625fa841eb9a0d7ba12b33b9f3f45da3
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_register.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:51 GMT
ETag: "246-4b330ce7dddc0"
Accept-Ranges: bytes
Content-Length: 582
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_logout.gif
137.74.206.99200 OK 604 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_logout.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 14 x 14\012- data
Hash c32955ce32815f05dc0cd396ae6cdc12
9942b2be9fcccde31d7eb44b16f2683a4552939f
309ed44778121e98011a04a9de16d17fc585497087eacf6414acc6dc536853a4
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_logout.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:49 GMT
ETag: "25c-4b330ce5f5940"
Accept-Ranges: bytes
Content-Length: 604
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/bottom_border.png
137.74.206.99200 OK 26 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/bottom_border.png
IP 137.74.206.99:0
File type PNG image data, 937 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash 80a78dfab52948b2768d034704a423b3
29b0ef0386d157bf62fb08934a234d2e967d8300
201ae0687734a2af9016e7a6a57538d031fde32e34921a77e549687f1e3052d8
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/bottom_border.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:42 GMT
ETag: "63f7-4b330cdf48980"
Accept-Ranges: bytes
Content-Length: 25591
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/autumn_header.jpg
137.74.206.99200 OK 78 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/autumn_header.jpg
IP 137.74.206.99:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 900x300, components 3\012- data
Hash afb99cd8b6e7ab1da47e81df2043d708
513e5c3769b0cad3c59157d8c1e0a44b56d519ae
878d0040e6bdc1e02ab99ae23da51b7fd870ea3e3dbb03a292b5004938157013
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/autumn_header.jpg HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=86a5eb6cc4f31417d8a5ff9c4b1031c4&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:43 GMT
ETag: "13080-4b330ce03cbc0"
Accept-Ranges: bytes
Content-Length: 77952
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
push.services.mozilla.com/
52.89.20.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.20.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: y/1Mfg8SZXiPMdx/HPGD4A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: B6Mf83bKPf3acP1PCZLnmp1o4mM=
stats.g.doubleclick.net/dc.js
173.194.221.155200 OK 17 kB URL HTTP/1.1 stats.g.doubleclick.net/dc.js
IP 173.194.221.155:0
File type ASCII text, with very long lines (1305)
Hash 5f65521f6c6223e1e18cb161832bea2a
f03800023e7bbe2579cd24e122cdf8c6ecf8b4c6
787b69b93681cf41784dfa8655cbdafe8a56ecc62f0112a6ea2241a284a0e3c9
GET /dc.js HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17093
Date: Thu, 26 Jan 2023 16:15:02 GMT
Expires: Thu, 26 Jan 2023 18:15:02 GMT
Cache-Control: public, max-age=7200
Age: 4520
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
leonartmotors.space-forums.net/favicon.ico
137.74.206.99200 OK 1.4 kB URL HTTP/1.1 leonartmotors.space-forums.net/favicon.ico
IP 137.74.206.99:0
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Hash 25771d142316f29c820c7ee06a296053
1242c859c8e2b602ffc83251e57d768df825ccf7
90d3d777ef181682e46d1e8927af8ed9a93157a208912f221debe4b957a9cd41
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php?mode=login&sid=befbbbec02847387c39ff315e673ecdd
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=86a5eb6cc4f31417d8a5ff9c4b1031c4
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.38
Last-Modified: Fri, 30 Oct 2009 12:41:26 GMT
ETag: "57e-47726589d2980"
Accept-Ranges: bytes
Content-Length: 1406
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
www-107-slidein.clickintext.net/interstitiel/exec.php?a=3827&zone=17447&zk=jtgVcVctkgLJH&apicitIdPAPXTime=042adcff3e93a852a6116526865f4746&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0
46.105.104.203200 OK 919 B URL HTTP/1.1 www-107-slidein.clickintext.net/interstitiel/exec.php?a=3827&zone=17447&zk=jtgVcVctkgLJH&apicitIdPAPXTime=042adcff3e93a852a6116526865f4746&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0
IP 46.105.104.203:0
Hash 1aa5f4f29d686114bd8764f076b69701
9acb0d2649c7d451167173c102e7133c8ff3e484
cfe61c211f3483dfe51ca67d929e75b04030c9aefb20323fb6211cff6f8f79a2
GET /interstitiel/exec.php?a=3827&zone=17447&zk=jtgVcVctkgLJH&apicitIdPAPXTime=042adcff3e93a852a6116526865f4746&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0 HTTP/1.1
Host: www-107-slidein.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: application/x-javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CUR ADM OUR NOR STA NID"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
www-107-slidein.clickintext.net/exec.dev.php?a=3827&zk=j2xic25gS17SN&apicitIdPAPXTime=042adcff3e93a852a6116526865f4746&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0&mobile=0
46.105.104.203200 OK 20 B URL HTTP/1.1 www-107-slidein.clickintext.net/exec.dev.php?a=3827&zk=j2xic25gS17SN&apicitIdPAPXTime=042adcff3e93a852a6116526865f4746&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0&mobile=0
IP 46.105.104.203:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /exec.dev.php?a=3827&zk=j2xic25gS17SN&apicitIdPAPXTime=042adcff3e93a852a6116526865f4746&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0&mobile=0 HTTP/1.1
Host: www-107-slidein.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: application/x-javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CUR ADM OUR NOR STA NID"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1050a1c28b1ff4e91b7994e1d4ce75e6
2f1ab510e078384e814b1de4bc81d9d799c8089c
7440d4eac919d5d4d28acfd3dc23298e48dfa5ef1b38632538dd80f56b0edb5c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7440D4EAC919D5D4D28ACFD3DC23298E48DFA5EF1B38632538DD80F56B0EDB5C"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6682
Expires: Thu, 26 Jan 2023 19:21:44 GMT
Date: Thu, 26 Jan 2023 17:30:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1050a1c28b1ff4e91b7994e1d4ce75e6
2f1ab510e078384e814b1de4bc81d9d799c8089c
7440d4eac919d5d4d28acfd3dc23298e48dfa5ef1b38632538dd80f56b0edb5c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7440D4EAC919D5D4D28ACFD3DC23298E48DFA5EF1B38632538DD80F56B0EDB5C"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17873
Expires: Thu, 26 Jan 2023 22:28:15 GMT
Date: Thu, 26 Jan 2023 17:30:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1050a1c28b1ff4e91b7994e1d4ce75e6
2f1ab510e078384e814b1de4bc81d9d799c8089c
7440d4eac919d5d4d28acfd3dc23298e48dfa5ef1b38632538dd80f56b0edb5c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7440D4EAC919D5D4D28ACFD3DC23298E48DFA5EF1B38632538DD80F56B0EDB5C"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13017
Expires: Thu, 26 Jan 2023 21:07:19 GMT
Date: Thu, 26 Jan 2023 17:30:22 GMT
Connection: keep-alive
fr.clickintext.net/js.min/cit.kelkoo.utf8.js?4
87.98.175.165200 OK 8.6 kB URL HTTP/1.1 fr.clickintext.net/js.min/cit.kelkoo.utf8.js?4
IP 87.98.175.165:0
File type Non-ISO extended-ASCII text, with very long lines (31182), with LF, NEL line terminators
Hash cdf548bbc6ce9d6da64e5fcfdc8bf49f
37b07f073fdbc4ada23608a37f0c60936af40621
5068b63dbf92b8bc15e40e758d0c612695e894b11b9e10cc47cd6a9657fd4a84
GET /js.min/cit.kelkoo.utf8.js?4 HTTP/1.1
Host: fr.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:30:22 GMT
Server: Apache/2.4.25 (Debian) PHP/5.6.33-0+deb8u1 OpenSSL/1.0.2u
Last-Modified: Tue, 17 Nov 2020 08:24:08 GMT
ETag: "9b3a-5b44937f91e19-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8616
Connection: close
Content-Type: application/javascript; charset=utf-8
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4da10e787317338d487bb3e663d7052a
d3b0cdc42ff0eb7afc349c47415abfeb37a831f2
9afa80c4f59c61d240894683d0426c777b0d4da1dbb0db2283233dd88ace0e64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AFA80C4F59C61D240894683D0426C777B0D4DA1DBB0DB2283233DD88ACE0E64"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9527
Expires: Thu, 26 Jan 2023 20:09:09 GMT
Date: Thu, 26 Jan 2023 17:30:22 GMT
Connection: keep-alive
www-107.clickintext.net/pics/popup2/b2.gif
46.105.104.203200 OK 701 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/b2.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 327 x 24\012- data
Hash 1f558e636eb4d8a4b7cdb84e93292bc1
88c7686b61ed11ac345439b2d70071c692e71673
eaa59823ac37227dddffbb5eac097d2c217048bbef6ff2eabb651e263a153062
GET /pics/popup2/b2.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86965-2a1"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/tlbg.png
46.105.104.203200 OK 1.9 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/tlbg.png
IP 46.105.104.203:0
File type PNG image data, 59 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash 70a97d4a377e07f7f16bbc6077309458
1c2a6c21aefe50bb29d6eac059adf2cc2f492ad6
52bc32fd72b9b58b79b00568bb1fdf3490052a5496fff8afe51e7ad570bc7072
GET /pics/popup2/tlbg.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d747fc-768"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/extraintext/optimize.php?r=1&a=50270&jQuery=2
46.105.104.203200 OK 1.9 kB URL HTTP/2 www-107.clickintext.net/extraintext/optimize.php?r=1&a=50270&jQuery=2
IP 46.105.104.203:0
Hash 48e55bc57fbc1fe3bd00db6acc63d130
20997a412c30db8ebb8aa3daf9ba172e1d5b5705
ab21908d1a414d85a252c71f361c2e2e07e3eb28429b704fe0443c9cb9942f24
GET /extraintext/optimize.php?r=1&a=50270&jQuery=2 HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:30:22 GMT
content-type: application/javascript
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www-107.clickintext.net/pics/popup2/top.png
46.105.104.203200 OK 4.3 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/top.png
IP 46.105.104.203:0
File type PNG image data, 345 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 6205b5b79f3e93335c4c28418ec87be2
c6db2bb4c5f840a6a68782216d1af20a63a352a3
2468db31c8c0a8b7c1a52c1e94aea7a9f9f742965e11e47f94556100ac609ebb
GET /pics/popup2/top.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86fd8-10a7"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/top.gif
46.105.104.203200 OK 3.5 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/top.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 345 x 28\012- data
Hash 562554573d4bb1e3058883cd78624d02
8e338292ce32178ce00bbd084e2a43c45158af62
945708e08ea6ea68e0dde988353a902f5d25b60d5d9abbc0ca72c95d89ea4c24
GET /pics/popup2/top.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86fe3-ded"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
tags.clickintext.net/takeasafe/?t=1674754222&k=31addf&h=leonartmotors.space-forums.net&
151.80.200.209200 OK 750 B URL HTTP/2 tags.clickintext.net/takeasafe/?t=1674754222&k=31addf&h=leonartmotors.space-forums.net&
IP 151.80.200.209:0
Hash def65e7a2c4f11e5e0d300eb186d35cd
b7247ceb3cd9a42b3992c2648f135373f0a2bf6b
fd7681dd76a8a579b4f488c9501a9a2c0580277e66cc163e9d44cb92df277b9b
GET /takeasafe/?t=1674754222&k=31addf&h=leonartmotors.space-forums.net& HTTP/1.1
Host: tags.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:30:22 GMT
content-type: text/html; charset=ISO-8859-1
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www-107.clickintext.net/pics/popup2/lp_fr.gif
46.105.104.203200 OK 449 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/lp_fr.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 78 x 12\012- data
Hash 8345e14288e0c70296eea83c6ea3c591
9dd6ed0149aadf25405254a817c4d5bf965ef9a9
0c850ebaacfd082e7343306fb805c85bbed982faf16a6c5d9580684b19025982
GET /pics/popup2/lp_fr.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86966-1c9"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/middle.png
46.105.104.203200 OK 235 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/middle.png
IP 46.105.104.203:0
File type PNG image data, 345 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 92ad639d82faefda1de28f4d0d02d341
f5a82d1d0474d8b4acd3b355b645075cdf500763
be8cdc51a2916ab22e0deb1916698aad1974cc94fbefabee0c995c9f80916f9d
GET /pics/popup2/middle.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d747fb-d9"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/middle.gif
46.105.104.203200 OK 138 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/middle.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 345 x 1\012- data
Hash 4eec88f9e9c04594312eea92daa8eff0
b5cde59e700c5a0808cc50fd3903c5401df8c2a3
ce848e0ed42079389736188528843cb140f7980963b498dd1190a61047db9803
GET /pics/popup2/middle.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86966-76"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/bm.gif
46.105.104.203200 OK 133 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/bm.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 345 x 1\012- data
Hash fe7d0ca8bdae9709fe15dbf09705efc4
62a0349e779a156a5a0bfd8c6693e2450d269466
09148714081c74a3840aa1c1b39b79847c8b746032bded69ab1b1c96ba17ceb3
GET /pics/popup2/bm.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86966-75"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/b2.png
46.105.104.203200 OK 1.5 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/b2.png
IP 46.105.104.203:0
File type PNG image data, 327 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash fca481620f2d9e7c708095b84cf19268
4c611748b063a9555832c03f67cadaf5ae9cb868
b0c04662dbed0fed1ffba5255d60144fb4203f2f75587ea216a6bfb2dc87a849
GET /pics/popup2/b2.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d747fb-5eb"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/b1.png
46.105.104.203200 OK 2.5 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/b1.png
IP 46.105.104.203:0
File type PNG image data, 345 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash f56bba3fe4d9a4851889d2a398a2d11f
395d3eaba69ce3da7803a6fde293d9766f134dc3
109d432a7659c17dca6a5030caf723c3f81929baf86db6efd7ddb67eeaeaeb46
GET /pics/popup2/b1.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d747fa-981"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/bm.png
46.105.104.203200 OK 598 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/bm.png
IP 46.105.104.203:0
File type PNG image data, 345 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c2061ff947fbea76dc4a800d22dae33
dbec9f940d0f3d23e4a2f3f24606f0c375b47dac
3d7bbe591b62305156c9004881e7ff5fb1739631ab156ac877720b8e036dbad5
GET /pics/popup2/bm.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d75164-23c"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/b1.gif
46.105.104.203200 OK 2.8 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/b1.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 345 x 20\012- data
Hash b87d558b1c96600e42b146ee36f337b9
fc1166869ed99290170611d63ea33ff4aa3ee0f9
fa2359f1505a070d402599ddf1781c34e55752ea8b19e3fe0302e847470cefa9
GET /pics/popup2/b1.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:30:22 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86965-ba5"
Expires: Fri, 27 Jan 2023 17:30:22 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7264
Expires: Thu, 26 Jan 2023 19:31:27 GMT
Date: Thu, 26 Jan 2023 17:30:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7264
Expires: Thu, 26 Jan 2023 19:31:27 GMT
Date: Thu, 26 Jan 2023 17:30:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7264
Expires: Thu, 26 Jan 2023 19:31:27 GMT
Date: Thu, 26 Jan 2023 17:30:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17e1b6f3caa98b0e0972802408dd3f93
07e48bf3565e00d093d72dd4ada606f5d39a4838
7094ef64e04573bea7a81bbcc8ab59d721c5ef433e3fa9203e5861040ced549c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9285
x-amzn-requestid: 526bd945-31d8-490e-af9d-5e6fc6ea3561
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYT2HzvoAMFYYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0e5-6812fe4354bbdac4472e7e81;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QEH9CmjfV8QZFNxFz_tEk06i_ELUSNC2QjdTF4K3xc3vS651BZ3NlQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:52:28 GMT
age: 70675
etag: "07e48bf3565e00d093d72dd4ada606f5d39a4838"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 653bf5a34e9f99c9eef73a21d98d792f
c70d46aa2210c4f7c397fa20e1225b7d0734ac35
9f928ec6f194340e5543a4bf757aac31d545def67a56ae804a2039a3effd3fe0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10379
x-amzn-requestid: 419e5a80-cb6d-4904-9545-a0f815149701
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYMREwmIAMFhQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0b4-64c49f7d49687d9e5324ec64;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rZHSgPIPZyea2griEvL-3semlrUDichGSL8Rin4YeYKN909f9e0lyQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:41:09 GMT
age: 71354
etag: "c70d46aa2210c4f7c397fa20e1225b7d0734ac35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f62e9b7bdca82d18c945851912d8fea8
a7ca44d337c43bc5c6145b26778661c71cc50484
5da02cc405c1cada55813ffe376844375f1d6ad222cbb63405348b1f5132a0b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a8a63ec-e0a4-4297-b143-649ad3968ae8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9595
x-amzn-requestid: c257bfbe-1bd7-4540-bbfa-e4c49a2624a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXwfGigoAMFvBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a002-226c08656eeefbfa3c2dddb6;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k9njnQmggD7UkVJzZqSzo90HJJjTjGK0QIoPU0HWYKrSstjM6s1rOw==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:57:18 GMT
age: 70385
etag: "a7ca44d337c43bc5c6145b26778661c71cc50484"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cfe699b31f96add9f1439af1ff1191eb
f77a833a69b69eef4a39e404c102f624e96b52c0
44312979ac13221e5c3328ad590f0f3dc7da00380c07c433382cd81c47b717f8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14856
x-amzn-requestid: e7d931f7-d086-42b9-a1f3-c8253b82eba6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSY_OHw7IAMFj6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d52e-4fd95c5f5a64861720a1ee60;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2yzeIjHl8sUO9s5n2sZfN6DSWOVDVQl-xdSrNmHu-yWXj_7VJJk5qA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:39:30 GMT
age: 35453
etag: "f77a833a69b69eef4a39e404c102f624e96b52c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mjK4GJ3UCEuHk4XqmXdZCWHTVvJeX8Z2HFaem2GYzqfqlPSd_h6DfA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:33:59 GMT
age: 35784
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VATQ0SjZfM_btXwR4M5keLmd-EE6717EHEiXrF2zpHNrli93EhN6Rw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:48:42 GMT
age: 70901
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.hugedomains.com/domain_profile.cfm?d=adoptima.com
104.26.6.37200 OK 0 B URL HTTP/2 www.hugedomains.com/domain_profile.cfm?d=adoptima.com
IP 104.26.6.37:0
GET /domain_profile.cfm?d=adoptima.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://leonartmotors.space-forums.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:30:21 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Sun, 21-Jan-2024 17:30:21 GMT; path=/
site_version=HDv3; expires=Sun, 21-Jan-2024 17:30:21 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4jbPSTu5x9vYOzDaiUDxs2PfaccGEAd3tB%2FCnH9Df2wBQX4jTEfTVQGJxEdSq%2BCg3W9hvIEROrEjF2K%2BlV5EDk%2F9QY4TSM4QCt1SEeXL3X%2B6o%2BcVlXWs8%2BVlgVOejw5wAKsPu2s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78faf9dd5c3e1c0e-OSL
content-encoding: br
X-Firefox-Spdy: h2
lb.apicit.net/loader.v8.php?apicitDatas=1%2Fsli%2Fcit3827&RK=CIT&zid=50270&call=document.onapicitCall&jQ=
151.80.200.208200 OK 0 B URL HTTP/2 lb.apicit.net/loader.v8.php?apicitDatas=1%2Fsli%2Fcit3827&RK=CIT&zid=50270&call=document.onapicitCall&jQ=
IP 151.80.200.208:0
GET /loader.v8.php?apicitDatas=1%2Fsli%2Fcit3827&RK=CIT&zid=50270&call=document.onapicitCall&jQ= HTTP/1.1
Host: lb.apicit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:30:22 GMT
content-type: application/javascript
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: apicit=042adcff3e93a852a6116526865f4746; expires=Fri, 26-Jan-2024 17:30:22 GMT; path=/; secure; SameSite=None; domain=.apicit.net; secure; SameSite=None
sw=294175822; expires=Fri, 26-Jan-2024 17:30:22 GMT; path=/; secure; SameSite=None; domain=.apicit.net; secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
www-107.clickintext.net/execs/cit.php?a=3827&zk=jZE9GUcMZdOus&17x30x22&v3plus=&apicitIdPAPXTime=042adcff3e93a852a6116526865f4746&apicitIdPAPXTimeMore=sw%5B0%5D&rEfFir=http%3A%2F%2Fleonartmotors.space-forums.net%2Fucp.php%3Fmode%3Dlogin%26sid%3Dbefbbbec02847387c39ff315e673ecdd
46.105.104.203200 OK 0 B URL HTTP/2 www-107.clickintext.net/execs/cit.php?a=3827&zk=jZE9GUcMZdOus&17x30x22&v3plus=&apicitIdPAPXTime=042adcff3e93a852a6116526865f4746&apicitIdPAPXTimeMore=sw%5B0%5D&rEfFir=http%3A%2F%2Fleonartmotors.space-forums.net%2Fucp.php%3Fmode%3Dlogin%26sid%3Dbefbbbec02847387c39ff315e673ecdd
IP 46.105.104.203:0
GET /execs/cit.php?a=3827&zk=jZE9GUcMZdOus&17x30x22&v3plus=&apicitIdPAPXTime=042adcff3e93a852a6116526865f4746&apicitIdPAPXTimeMore=sw%5B0%5D&rEfFir=http%3A%2F%2Fleonartmotors.space-forums.net%2Fucp.php%3Fmode%3Dlogin%26sid%3Dbefbbbec02847387c39ff315e673ecdd HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:30:22 GMT
content-type: application/x-javascript;charset=ISO-8859-1
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: mySimsNetwork=95762; expires=Sat, 25-Feb-2023 17:30:22 GMT; path=/; domain=.clickintext.net; secure; SameSite=None; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2