r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3144
Expires: Wed, 30 Nov 2022 13:36:20 GMT
Date: Wed, 30 Nov 2022 12:43:56 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3722
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:56 GMT
Last-Modified: Wed, 30 Nov 2022 11:41:54 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19126
Expires: Wed, 30 Nov 2022 18:02:42 GMT
Date: Wed, 30 Nov 2022 12:43:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 12:19:41 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1455
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IJp5pRqCgXlj+cvGptyTy4uARGGosMm+aAFmQ8FM//pIEl9C4G3Ev30fCAEdfCiKHPyCeaSiVJU=
x-amz-request-id: 6602E5AQ4BCSRRWZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 11:45:13 GMT
age: 3523
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:43:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
it.weblipy.com/
184.168.96.8200 OK 12 kB IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1767), with CRLF line terminators
Hash e6368bf9e40521404dc1ce142a0babed
69cc475cd5211d837d8e51cae654ae61606a6e19
6f705b305ceb578d198f5912ef34e5d484872bab5955a119ee04972869926ba0
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:56 GMT
Server: Apache
X-Powered-By: PHP/7.3.33
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11777
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.js
216.58.211.10200 OK 80 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.js
IP 216.58.211.10:0
Hash 921e91eea6dfd371f2204689eb9b1a27
c85321a072ff3571d557455a33a28f0698ed094f
5523139c4f5ed6bc2e87237ed7e56814348e7495de2124fd6914b7652b3b9635
GET /ajax/libs/jquery/1.9.1/jquery.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 80018
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 02:12:34 GMT
Expires: Thu, 30 Nov 2023 02:12:34 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 37883
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
28 kB URL cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP :0
Hash d900ca08873ee57d40616d39a44cc0aa
7ab3ac8b1504b7b914a6e94c979b8390bb492f6a
1eea479cc0abe04a0846f41031207f9511f12ffef017a6109d4efb6f5523465b
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
cdnjs.cloudflare.com/ajax/libs/jquery.isotope/3.0.6/isotope.pkgd.min.js
104.17.25.14200 OK 8.8 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.isotope/3.0.6/isotope.pkgd.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (32019)
Hash ee112bef988f5aff16159bf8ed7d9604
8861344820e25d12dbe16a3bceb58288bb4846fb
a93dc993b27dd4a8cc8325796f95eec16a2c8b96ebc89f21151c9aba6081a5a6
GET /ajax/libs/jquery.isotope/3.0.6/isotope.pkgd.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 8847
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-8a75"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1698094
expires: Mon, 20 Nov 2023 12:43:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Hxw2bgmkAwojpK0oHfVtqwuckSANIi8PWeuqYDvfvOsHKRs4gWYo3%2FPBpptuh33MGnfLPFjLWanYjCpGswbGfCwaU6x1su6RMUumwC%2BcI%2BKxpzSepyjuLx0RYZ0OGKIvLeP75ZH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7723abf18a4eb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/wow/1.1.2/wow.min.js
104.17.25.14200 OK 2.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/wow/1.1.2/wow.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (8152)
Hash 97c687af34ccd69fdfe48fbca70afec2
ab75720b2143215335378849e4f295a290d4d41f
748b1da138fb49f26c67ae1eaa8908da0b8c9625ad0ece81d704a7fb9a7d07b5
GET /ajax/libs/wow/1.1.2/wow.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 2346
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04033-1ff6"
last-modified: Mon, 04 May 2020 16:17:55 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1273105
expires: Mon, 20 Nov 2023 12:43:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zeqefsmyHYTZSqktjxK05JbOFXACfxQceBGcf0bYvOg5RGCbcV%2BB1UuWPg%2BNDVzo0cq7%2BL0QqoBOlxRU3Rx92GwpZs3yPEaFKaQAr9M9LiKeIU4VOdqclsH0%2B%2FDPtMsixAwRxADv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7723abf18a50b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/magnific-popup.js/1.1.0/jquery.magnific-popup.min.js
104.17.25.14200 OK 6.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/magnific-popup.js/1.1.0/jquery.magnific-popup.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (20087)
Hash 6cfa1ffc4889c0035506daea0275c825
2dcc44c7670dd51b8e8c7c12088d24cdffa64237
02abade26ab9e805db1edf9ccd3067e49eeff131adf44fdfd6c3aae8ca3c1581
GET /ajax/libs/magnific-popup.js/1.1.0/jquery.magnific-popup.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 6546
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed4-4ef8"
last-modified: Mon, 04 May 2020 16:12:04 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 8524258
expires: Mon, 20 Nov 2023 12:43:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CJMj1VxJqrF14yfqXaiF6FL1g7M1I4wNONbupkM1AlrE3xIPEs1xKboPBsfwx%2FDyGzjtlWNsxQoXvP7IsmqWYbUb6nhcmzOrJRJVmKq9QlGbIn5epqjISle3tKQ3vgJ3o%2BrKJKWo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7723abf18a4bb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-nice-select/1.1.0/js/jquery.nice-select.min.js
104.17.25.14200 OK 893 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-nice-select/1.1.0/js/jquery.nice-select.min.js
IP 104.17.25.14:0
File type Unicode text, UTF-8 text, with very long lines (2822)
Hash 84dcde557cbc41f76148d59f982dbf0b
38a6f447048b5378a86789d5f91b8e7efa72d680
829b66d80f14164d53485d1500990aea3fc602c027ff8fcbf735b4b8286cb6d7
GET /ajax/libs/jquery-nice-select/1.1.0/js/jquery.nice-select.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 893
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-b7e"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5929311
expires: Mon, 20 Nov 2023 12:43:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D6ZsSvflNFGUYI%2Fzd8QgBwFJen%2BpgUwgEKYJv5o4%2F53J5A%2FDv8cHq%2BkcoE4sU96XtAggKdOVy7pwLx15qACjiaWm%2Bj%2B49yr%2FY56%2Fnimqk97FVyKaATZfgrzubdy69n5RcnDL2c6P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7723abf18a4cb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.appear/0.4.1/jquery.appear.min.js
104.17.25.14200 OK 463 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.appear/0.4.1/jquery.appear.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (1008), with no line terminators
Hash 785e25de6c4224dfc764d01157ea4daa
8b248b291c7393521b3dd39ad21e0c925547e16a
764dc2cf6bec5d8dd27fa08bed504d02dc86fe9da7c82b2c1f610d840df04e5d
GET /ajax/libs/jquery.appear/0.4.1/jquery.appear.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 463
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-3f0"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4811551
expires: Mon, 20 Nov 2023 12:43:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=51TNXB4zNazeHNu0nR57QBuAt1KfCvb5NmyBJRzsL0fKXNIlsAYutiapWnJmt3GD4mV2NdyI54BG0krARPomWrcETXkIBRn8%2BhcdBCf9J%2B%2F3UpB0tfxm2IQF4NbINjZbGtlgARBG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7723abf18a5ab4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0f6a5643bab31f69c3efcc184522fb28
ab25a7973bc389db5f7f3118fd991625af4fc51a
eaa7763ccbacfb0d63bb812497643fa785fe47172bfe8db9d3af115d915815f0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3729
Cache-Control: max-age=97996
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:57 GMT
Etag: "63861d48-117"
Expires: Thu, 01 Dec 2022 15:57:13 GMT
Last-Modified: Tue, 29 Nov 2022 14:55:04 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/popper.js/2.9.2/umd/popper.min.js
104.17.25.14200 OK 6.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/2.9.2/umd/popper.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (18506)
Hash 96b71577861def4c5ea9f856125de654
5660758f120f10e8b90a86082551f1fd7603e9c4
f74f07950175f58cfdda03d1119e37f53fb27cc0e4b17080a539355344a51908
GET /ajax/libs/popper.js/2.9.2/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 6002
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6065f4e2-48a2"
last-modified: Thu, 01 Apr 2021 16:29:22 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 10694581
expires: Mon, 20 Nov 2023 12:43:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QtrZcWHuxI9AZlZADncIYP%2FquLIgz1D8plR%2BZ8Oci2qF%2BFFZK8B%2B70KQbuIt%2FWLNDu3mz2Un0UctGtJK5QP90SKFBqjRHwNfrvya1lfjrRHxJJmVEhQvTQ0ol%2BX53XgKz8AXXw5m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7723abf18a5fb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/waypoints/4.0.0/jquery.waypoints.min.js
104.17.25.14200 OK 2.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/waypoints/4.0.0/jquery.waypoints.min.js
IP 104.17.25.14:0
File type Unicode text, UTF-8 text, with very long lines (8668)
Hash 839cd47458cbc3fb6b67e285f4cfd804
74621afc559368dc12a55fd25f17f50ff9aac632
3f0dd10c59250edba7baa4ad423e402641aa88d43735973012c8ec50eebb8443
GET /ajax/libs/waypoints/4.0.0/jquery.waypoints.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://it.weblipy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 2415
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb0402f-2281"
last-modified: Mon, 04 May 2020 16:17:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2918448
expires: Mon, 20 Nov 2023 12:43:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1VpXjNbuDODw8naQZuZmpks01nTl9DKEolISPdkc2nGhFthuGkWa2jS6w7A3AXQjIGdLtk8l%2F%2Fwz%2F9tzFAl5bY4%2B28pdQ5i8KG5cutvwERvZgPKnc3g360GtS8C29QfddwQyDWdl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7723abf1abafb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/bootstrap-v4-rtl/4.6.0-3/js/bootstrap.min.js
104.17.25.14200 OK 13 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/bootstrap-v4-rtl/4.6.0-3/js/bootstrap.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (59787)
Hash f9945e018c9a999ca751780b91d0ff74
6689246c1d14f45ce651980b3c8962e5bfa041fb
7e4ab1f4b784eb0a09bfd6e20f1a0038f970a264f8c2507856409367242854b9
GET /ajax/libs/bootstrap-v4-rtl/4.6.0-3/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 13007
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "614297c6-32cf"
last-modified: Thu, 16 Sep 2021 01:03:02 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2076691
expires: Mon, 20 Nov 2023 12:43:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5iOOv0fE5SsME51CXkLBFuHtfhFnX5MMX6CW39lIeaokA4CeIucrYArTDW%2BGEQjL0XKyGOKIdbbFUtSnp2SDdeyOmsTSF4Dpg15oBs8g1k2Z1NeUoZgXAylbaQQ9z%2BpkptF2b715"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7723abf19a66b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js
104.17.25.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (31997)
Hash da09af9c30411ac4ea58fa932c2bcdf1
3021a222be0168efcad5db279a305485935aeff5
19e819601b91eb75c0609dd6343a344f280a94b83e06e58595bafff5b12ca7f4
GET /ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 10158
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf0-ad36"
last-modified: Mon, 04 May 2020 16:04:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3613289
expires: Mon, 20 Nov 2023 12:43:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CetBDnAX%2BNw9Tx6BI5LrGlzQWf71N0VngGBXnqoYpPQLwzG3TTdbBbcXpD5S%2FCh1R5uyfV4Px5f4uN5pkMlapq7AUsmjbSrpif0fEPHSLRAS4Uk8HEKbds7QG1I5AoDHBgbv0DT2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7723abf19a67b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/Counter-Up/1.0.0/jquery.counterup.min.js
104.17.25.14200 OK 473 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/Counter-Up/1.0.0/jquery.counterup.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (917)
Hash 511734e424b4d3e27f92c7f10afe2602
7efe59544cb2b34d6324f2d893e398090ea1d74f
b7fdf837ee12832b58b7263f552c63b58f04168bc13a197a7e832f7609b675dd
GET /ajax/libs/Counter-Up/1.0.0/jquery.counterup.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 473
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cee-42b"
last-modified: Mon, 04 May 2020 16:03:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 8281261
expires: Mon, 20 Nov 2023 12:43:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oJp54gNxa5%2BHOKEMQMSYD0h0G3IlMoImyPnXC3eP%2BlAElo17nViGWtnWBGgAt4AhwSA4Mmq%2FgxAwe6hCgBOqDme1zvUXBzuEaSOxVCOaClxMrUYYOleZwOzHefeQymWhCapeji2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7723abf1aa7bb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 12:08:56 GMT
cache-control: public,max-age=3600
age: 2101
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
img1.wsimg.com/traffic-assets/js/tccl-tti.min.js
23.36.79.43302 Found 0 B URL HTTP/2 img1.wsimg.com/traffic-assets/js/tccl-tti.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /traffic-assets/js/tccl-tti.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://it.weblipy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
cache-control: max-age=1800
expires: Wed, 30 Nov 2022 13:13:57 GMT
date: Wed, 30 Nov 2022 12:43:57 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/traffic-assets/js/tccl.min.js
23.36.79.43302 Found 0 B URL HTTP/2 img1.wsimg.com/traffic-assets/js/tccl.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /traffic-assets/js/tccl.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://it.weblipy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://img6.wsimg.com/wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl.min.js
cache-control: max-age=1800
expires: Wed, 30 Nov 2022 13:13:57 GMT
date: Wed, 30 Nov 2022 12:43:57 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
it.weblipy.com/assets/css/animate.min.css
184.168.96.8200 OK 4.3 kB URL HTTP/1.1 it.weblipy.com/assets/css/animate.min.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (57790)
Hash ee777e634ba2463f5f4a161dde14dcbe
a4ecf77a2c47390e3aecb2b912130cbcc421733e
cd82447b75b27668be76ec8b86546aafabdc1ddf952e07bcf8f25ef7387fa21f
GET /assets/css/animate.min.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 05:52:36 GMT
ETag: "540023f-e283-5d58468e83100-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4324
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
23.36.79.43200 OK 7.5 kB URL HTTP/2 img6.wsimg.com/wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (24676)
Hash b8a5a228a358454084c34dd1cf431c61
37aa5fe6e083b8147156ca66a1993a7bd74e8a61
06fae5ccf58a27a8e2ae6a0e7722f42db507c1873751f587cddd090810d94492
GET /wrhs/ce554d2333f3801abafb32da18213ff7/tti.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://it.weblipy.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "ce554d2333f3801abafb32da18213ff7"
last-modified: Mon, 17 Jan 2022 17:21:37 GMT
vary: Accept-Encoding
x-edgeconnect-midmile-rtt: 8
x-edgeconnect-origin-mex-latency: 357
x-amz-id-2: nldPfdb2FYbpxPRfMYRSd83AOL7ZmlBdZQSm5hguJELKdfn8+sza0oLEpTYjiKd2JeD3gDplFHw=
x-amz-request-id: RJ3J3PMANG6125DE
x-amz-server-side-encryption: AES256
x-amz-version-id: F4fYptXBkP0fCCCWFLfVGE1HXlZmORny
content-length: 7498
x-edgeconnect-cache-status: 1
cache-control: max-age=31536000
date: Wed, 30 Nov 2022 12:43:57 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img6.wsimg.com/wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl.min.js
23.36.79.43200 OK 11 kB URL HTTP/2 img6.wsimg.com/wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl.min.js
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (45837)
Hash 645b88efa25fd10bf181698e5f994175
c702cebb7ad47f0839332bedae7c7913d7113b25
9555a4ec4987438fc2d5ffd29e91bec3e1829e3f765e700f8d8941412e5eb520
GET /wrhs/5c3e20ad749ddb088afc84b1b7ff009e/tccl.min.js HTTP/1.1
Host: img6.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://it.weblipy.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
etag: "5c3e20ad749ddb088afc84b1b7ff009e"
last-modified: Tue, 29 Nov 2022 21:26:18 GMT
vary: Accept-Encoding
x-amz-id-2: vfCRznBpTwUzsQTqqHQrPBdgJL8bd9m6fgJ2RsnQ7TUvg/tSMOpz6ogFdrj21JebiN+bK0g/VZM=
x-amz-request-id: FH0P3E93SF8PA32Y
x-amz-server-side-encryption: AES256
x-amz-version-id: sTnOEJpl_Bn63xNm3Yru0HbQaHbS55CR
content-length: 11347
cache-control: max-age=31536000
date: Wed, 30 Nov 2022 12:43:57 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
it.weblipy.com/assets/css/meanmenu.min.css
184.168.96.8200 OK 848 B URL HTTP/1.1 it.weblipy.com/assets/css/meanmenu.min.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2408), with CRLF line terminators
Hash 4e20c1ddfb8b7593817c7989763dff6f
e50bb01d9b51605c2fd29b927331ddd4e09d482f
48d77fe6ab752b5138cd3410329c06fad565f778a01101ac0b32782f6b001b9e
GET /assets/css/meanmenu.min.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 14 Jan 2022 09:06:10 GMT
ETag: "54019fc-a37-5d5871d2f8a86-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 848
Keep-Alive: timeout=5
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3720
Cache-Control: max-age=163494
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:57 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 10:08:51 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
it.weblipy.com/assets/css/meanmenu.css
184.168.96.8200 OK 944 B URL HTTP/1.1 it.weblipy.com/assets/css/meanmenu.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 0d459db6bd4da74ae9f12959b69df1ce
763f2220482c5b05e8f67f550d5cff122a6b770d
03c5206c82268897790b6e563cfd311c7159dbd674135ef1395d53b5d97ff827
GET /assets/css/meanmenu.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 14 Jan 2022 09:45:10 GMT
ETag: "5401980-bc1-5d587a8abeea2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 944
Keep-Alive: timeout=5
Content-Type: text/css
it.weblipy.com/assets/css/magnific-popup.min.css
184.168.96.8200 OK 1.6 kB URL HTTP/1.1 it.weblipy.com/assets/css/magnific-popup.min.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (5259), with no line terminators
Hash 5e3fb66f957e87adb1030748be39ec12
f947937864725452687d58a7546d5ca34843f4cb
123795002a63c52c46c8f57d0c23b0b46757b6f380c7d420388a304b7bf902cb
GET /assets/css/magnific-popup.min.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 14 Jan 2022 05:52:52 GMT
ETag: "540038b-148b-5d58469dc5500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1566
Keep-Alive: timeout=5
Content-Type: text/css
it.weblipy.com/assets/css/bootstrap.min.css
184.168.96.8200 OK 24 kB URL HTTP/1.1 it.weblipy.com/assets/css/bootstrap.min.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65324)
Hash 2f2b1adb7dbeabdf52f7dc065058dc69
f26f2a2e63b940c376e0a865998627d80345ffe8
27def738aa01ebeb3ca7c93e2488c63de64e81350ad8d53dafc832436f7adeae
GET /assets/css/bootstrap.min.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 14 Jan 2022 05:52:42 GMT
ETag: "540027b-26eed-5d5846943be80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 23647
Keep-Alive: timeout=5
Content-Type: text/css
it.weblipy.com/assets/css/swiper.min.css
184.168.96.8200 OK 4.1 kB URL HTTP/1.1 it.weblipy.com/assets/css/swiper.min.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (13411)
Hash 387aaa62f494db74a85f17f2942610db
55f8b048d956215ee9bff9f423f07f14b1170932
5d582b34f56361ecb58ec2d82ac2b65fa66220313d045c02f1c93cbff064231e
GET /assets/css/swiper.min.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 05:53:52 GMT
ETag: "5400821-3562-5d5846d6fdc00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4126
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
it.weblipy.com/assets/css/nice-select.min.css
184.168.96.8200 OK 1.0 kB URL HTTP/1.1 it.weblipy.com/assets/css/nice-select.min.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (3055)
Hash 402d0bbf4ef69b45bc81912439faf56a
dbf062237c61f3cdd8ff99453d380dbb42bd2da4
3780d77a77a8aa3da8aaa1ed11b25f376e6db609fa263debb0762f83ddbf86be
GET /assets/css/nice-select.min.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 14 Jan 2022 05:52:58 GMT
ETag: "540077b-c62-5d5846a37e280-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1006
Keep-Alive: timeout=5
Content-Type: text/css
it.weblipy.com/assets/css/owl.carousel.min.css
184.168.96.8200 OK 1.3 kB URL HTTP/1.1 it.weblipy.com/assets/css/owl.carousel.min.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3186)
Hash 478cf2635377d644b9604884d02df1a2
2c62623716cc646b5391fb2970a82b70ef84a091
c6ebd94a4d2b82af2953b087f22dd155f8d0733b8e496d3f059c00ed46c87c07
GET /assets/css/owl.carousel.min.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 05:53:42 GMT
ETag: "540079d-1069-5d5846cd74580-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1284
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
it.weblipy.com/assets/css/flaticon.css
184.168.96.8200 OK 730 B URL HTTP/1.1 it.weblipy.com/assets/css/flaticon.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 219183e9d0b9e7988f94e2c9f9d92a3f
40a5a94dc5d8a21d5d5ee70dd2672be56c91c0b0
1724fff14ac1b745e5b5f4ac4f81002a1eee134cc6e42988f5c8db34996d9d7a
GET /assets/css/flaticon.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 05:52:46 GMT
ETag: "54002ea-bfb-5d5846980c780-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 730
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
it.weblipy.com/assets/css/style.css
184.168.96.8200 OK 12 kB URL HTTP/1.1 it.weblipy.com/assets/css/style.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (535)
Hash 8f7490e855bc4db9e2daefc027d83a31
388ca138df84e884daa2ea262649f3bfde9ca7c0
0e5732da867b34f0828c77263c709e1505983c45d5957be3344372a4acfe9a05
GET /assets/css/style.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 05:53:48 GMT
ETag: "540081a-15295-5d5846d32d300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12035
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
it.weblipy.com/assets/css/responsive.css
184.168.96.8200 OK 2.3 kB URL HTTP/1.1 it.weblipy.com/assets/css/responsive.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type assembler source, ASCII text
Hash 960e2a59165e8b6f59682ae994f5fe16
6cede391916690250114cec67febb739df653081
59537241b44f8c716e58c174df63e1487c7171aed8bac95f398b5615c14761c6
GET /assets/css/responsive.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 05:53:46 GMT
ETag: "5400819-3708-5d5846d144e80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2280
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
it.weblipy.com/assets/css/fontawesome.min.css
184.168.96.8200 OK 12 kB URL HTTP/1.1 it.weblipy.com/assets/css/fontawesome.min.css
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (54884)
Hash ac3277a4e62e4f6fa2d9a3fe889c784c
4d6e1aafc35f5a71205c8b26c0efe8dc06568725
b8390d434244f2a989eafd9ab4b648e94ab6cd305facb3bb0274f758c99395fa
GET /assets/css/fontawesome.min.css HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 14 Jan 2022 05:52:50 GMT
ETag: "5400368-d71d-5d58469bdd080-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12063
Keep-Alive: timeout=5
Content-Type: text/css
push.services.mozilla.com/
35.163.49.154101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.49.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CgEujtO9AJ64DUHx4q0FEw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fTIJsrWqRrPxn0WQaJULTRsIOcw=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/catamaran/v17/o-0IIpQoyXQa2RxT7-5r5TRA.woff2
216.58.207.227200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/catamaran/v17/o-0IIpQoyXQa2RxT7-5r5TRA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 32936, version 1.0\012- data
Hash aa75d579aa645838875e1695b85c37ef
80cf51631e0800ff73b4613ac9980e5962c43b47
1446d98a31453a4fd4d5af36e11831aa7b52cbc92cbd001fdf4e062e0cabe461
GET /s/catamaran/v17/o-0IIpQoyXQa2RxT7-5r5TRA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://it.weblipy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32936
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 12:31:46 GMT
expires: Fri, 24 Nov 2023 12:31:46 GMT
cache-control: public, max-age=31536000
age: 519131
last-modified: Fri, 24 Jun 2022 18:45:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2
216.58.207.227200 OK 29 kB URL HTTP/2 fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 29436, version 1.0\012- data
Hash 4e29aceac72b453671f585e88f69c24a
35115af67eca17e02698954f1533b69515ecbbf9
b9d88c1280c412b1bccb32e6d99da3369feeb3fae8b64900e7066a1829385699
GET /s/dosis/v27/HhyaU5sn9vOmLzloC_U.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://it.weblipy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 15:03:06 GMT
expires: Sun, 26 Nov 2023 15:03:06 GMT
cache-control: public, max-age=31536000
age: 337251
last-modified: Mon, 11 Jul 2022 20:56:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:43:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
it.weblipy.com/assets/img/home-bottom-shape.png
184.168.96.8200 OK 22 kB URL HTTP/1.1 it.weblipy.com/assets/img/home-bottom-shape.png
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 1920 x 418, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e0bedeae4624e3d3157d572835d36a9
fe38928f104654cc667cb1104b483e44021dbc4d
b824fe02e433e37bbf550e89ee54a2591425e1859073da36a60cca169fc6bc9f
GET /assets/img/home-bottom-shape.png HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:06:30 GMT
ETag: "540192e-57c7-5d5849a9e0580"
Accept-Ranges: bytes
Content-Length: 22471
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
it.weblipy.com/assets/img/blog/blog-1.jpg
184.168.96.8200 OK 29 kB URL HTTP/1.1 it.weblipy.com/assets/img/blog/blog-1.jpg
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 450x370, components 3\012- data
Hash d43f3969ca071d8e733a1fcd656a7ef5
83735c47e6da774deacee2cef58a9e060ab1a2aa
9827664dbf5c6c5091ec900fa03f7124d12d4c40374ff21a4ab44822b8fe34b1
GET /assets/img/blog/blog-1.jpg HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:07:28 GMT
ETag: "5401925-6fa4-5d5849e130800"
Accept-Ranges: bytes
Content-Length: 28580
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
it.weblipy.com/assets/img/blog/blog-2.jpg
184.168.96.8200 OK 48 kB URL HTTP/1.1 it.weblipy.com/assets/img/blog/blog-2.jpg
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 450x370, components 3\012- data
Hash 9752f331550db44babba5c684d5d12f4
739517a653de887aa0a0b9f289a56bfa2d9eb808
3eb3a2b3c127bdc55ecb6f580cc45b60f79a87bf10581ddf4f04b3dec224f5dc
GET /assets/img/blog/blog-2.jpg HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:07:40 GMT
ETag: "5401926-bafb-5d5849eca2300"
Accept-Ranges: bytes
Content-Length: 47867
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
it.weblipy.com/assets/img/home-font.png
184.168.96.8200 OK 53 kB URL HTTP/1.1 it.weblipy.com/assets/img/home-font.png
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 600 x 593, 8-bit colormap, non-interlaced\012- data
Hash 9c165301fa564aece256800a16e96a76
489a31ac46af995057ffbe945bc3b41ed305f611
f345c269cc3b1300119183cd6bb6b6ecaca0c03e934ebc4962f8eaa258c67967
GET /assets/img/home-font.png HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:06:38 GMT
ETag: "540192f-ce90-5d5849b181780"
Accept-Ranges: bytes
Content-Length: 52880
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
it.weblipy.com/assets/img/choose-1.jpg
184.168.96.8200 OK 56 kB URL HTTP/1.1 it.weblipy.com/assets/img/choose-1.jpg
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 635x575, components 3\012- data
Hash 8d0f73547b17db01c3d13d2424c464d2
916c3ec04442c272a5b249bd07b4d6bbf2c8331e
c348c1d636dbff39daf90e05de25768628995adab1b4b35c470b7facdb08a2e4
GET /assets/img/choose-1.jpg HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:06:16 GMT
ETag: "5401928-d9b9-5d58499c86600"
Accept-Ranges: bytes
Content-Length: 55737
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
it.weblipy.com/assets/fonts/flaticon.ttf?b014d13cd529ac70e334da0872eecc24
184.168.96.8200 OK 51 kB URL HTTP/1.1 it.weblipy.com/assets/fonts/flaticon.ttf?b014d13cd529ac70e334da0872eecc24
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type TrueType Font data, 11 tables, 1st "GSUB", 16 names, Macintosh, type 1 string, flaticonRegularflaticonflaticonVersion 1.0flaticonGenerated by svg2ttf from Fontello project.htt\012- data
Hash 9fbc44501f4c80160142c3bd45a96295
26c30c76e80b7fbe20e9c6153e986cacb641c186
d258895f1bca2d1f600f2132153cb74b10f1731c475eb826a7c5d73f070d9c87
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/flaticon.ttf?b014d13cd529ac70e334da0872eecc24 HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/assets/css/flaticon.css
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:58 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:02:14 GMT
ETag: "54018f0-c848-5d5848b5bc580"
Accept-Ranges: bytes
Content-Length: 51272
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/ttf
it.weblipy.com/assets/fonts/fa-regular-400.woff2
184.168.96.8200 OK 14 kB URL HTTP/1.1 it.weblipy.com/assets/fonts/fa-regular-400.woff2
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 13552, version 329.-17761\012- data
Hash e6257a726a0cf6ec8c6fec22821c055f
8583a4f0dd12e15a48b3395593307a84d971cc33
ccf4db1eeb68c96e05e74f8ebfa75cc60c3a0fed862dae6b0ad85d4e1b5b4e4f
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/fa-regular-400.woff2 HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://it.weblipy.com/assets/css/fontawesome.min.css
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:58 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:01:06 GMT
ETag: "5401815-34f0-5d584874e2c80"
Accept-Ranges: bytes
Content-Length: 13552
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8043
Expires: Wed, 30 Nov 2022 14:58:01 GMT
Date: Wed, 30 Nov 2022 12:43:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8043
Expires: Wed, 30 Nov 2022 14:58:01 GMT
Date: Wed, 30 Nov 2022 12:43:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8043
Expires: Wed, 30 Nov 2022 14:58:01 GMT
Date: Wed, 30 Nov 2022 12:43:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acb1e555533322dbfeb8e0d8c956c43d
e1eec39299f081b53c647953b57da4f2f1ba10bc
579d2fd6aab6bba72a405bb1d0259856878adc90671a88b2b0edf5a284dba1f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fcfcea6-8f79-45f4-b081-2b90a5d95f8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5492
x-amzn-requestid: 4b09d9a8-09fa-40e5-a996-8a6ad9f8283e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgE9E5TIAMF6ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1f-2f17467d7a6318796d01fd2e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:11 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6QhRECWKI2TAlt2bgVuKlQPCeyzkes1_5i5kJ4FQYD591KBADY9qVg==
via: 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:52:45 GMT
age: 53473
etag: "e1eec39299f081b53c647953b57da4f2f1ba10bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5508d05a290b663fd89ead9b58f2efd8
53650399f9a986ba54addd668b4557109d12003b
65704a961410fdd318c491fedf002c8e9b184cd34b76fe1b67026d42ce21be3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ym_L3s5E6MLy6BxqNkVxok6L6hA4c-ilSsEqt42j2IbiXYPb4c6-VQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:52:51 GMT
age: 53467
etag: "53650399f9a986ba54addd668b4557109d12003b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59baec8db5ced0210ab766ea5636a5fd
f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QhUrNKIJUxXTYFTgfCwizAd9L4PdLMVLbqv1sHmmnrWya0xz1MTSiw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:08:46 GMT
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
content-type: image/jpeg
age: 52512
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05196ec43964cf559caa0c0279148d62
6170d6776615503e3e29f86783febc3e3e78ca66
47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9051
x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEMNIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IMaVlQblNnh9mFKwb2LG7hw7h_f1_nVYqO4aEUqY01a2HofnnQqcFQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:49:31 GMT
age: 53667
etag: "6170d6776615503e3e29f86783febc3e3e78ca66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbe350ea797a0fec5a19a450fc5de4b4
2f3a39a528d3b759060203931de33c12303592e1
4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9330
x-amzn-requestid: 3fad352d-7664-43e0-9395-e840f671ca61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFQFIdoAMFSmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a21-5e9847852f8435231d401fe6;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mCEtSOenWKxay4vNy5mN9cexxXKXKt7TMuLaLw-M86tLKwQ2MwuxPg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:00:54 GMT
age: 52984
etag: "2f3a39a528d3b759060203931de33c12303592e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 777ce44582c70bf01a31da4cab366f36
57e1d34f146d5ccd9943aa97bcc3158f7103bb07
fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gCt9oHpZ68tLCYHIYpI1XLtADkScxwf12kDFnU0o5WoQIVSzWlqozw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:16:52 GMT
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
content-type: image/jpeg
age: 52026
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
it.weblipy.com/assets/fonts/fa-brands-400.woff2
184.168.96.8200 OK 75 kB URL HTTP/1.1 it.weblipy.com/assets/fonts/fa-brands-400.woff2
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 74768, version 329.-17761\012- data
Hash 5e2f92123d241cabecf0b289b9b08d4a
7f6c682ade204e641aed8f471064c56b6eddc263
dc64d7192f84497cacad5c10aef682562c24aa6124270f85fe247e223607f3ed
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/fa-brands-400.woff2 HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://it.weblipy.com/assets/css/fontawesome.min.css
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:58 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:00:04 GMT
ETag: "5401814-12410-5d584839c2100"
Accept-Ranges: bytes
Content-Length: 74768
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2
it.weblipy.com/assets/img/weblipy.svg
184.168.96.8200 OK 4.8 kB URL HTTP/1.1 it.weblipy.com/assets/img/weblipy.svg
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (4832), with no line terminators
Hash cfa07fc0fbc28291505c94d79906051e
9d230774e4fcbdc8d68453aefb6d427ee0e90978
bb7cba863d5b86ce7d610f0d6532ae41993ae19ea88202542dfc7925a36b72a5
Analyzer Verdict Alert fortinet Malware
GET /assets/img/weblipy.svg HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:58 GMT
Server: Apache
Last-Modified: Sun, 05 Dec 2021 05:10:54 GMT
ETag: "5401946-12e0-5d25f2a1fb380"
Accept-Ranges: bytes
Content-Length: 4832
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/svg+xml
it.weblipy.com/assets/img/about.jpg
184.168.96.8200 OK 100 kB URL HTTP/1.1 it.weblipy.com/assets/img/about.jpg
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x665, components 3\012- data
Hash 13cfe3a00e3b341945d50967519be48f
24e06d6a056c942c26cb70e8b90773d62ee492f1
78aaea988b45d274e941ea4c5142bdd344c6beab8b69da5694f5716a9d1a4506
GET /assets/img/about.jpg HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:04:14 GMT
ETag: "54018f3-18583-5d5849282d380"
Accept-Ranges: bytes
Content-Length: 99715
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
it.weblipy.com/assets/fonts/fa-solid-900.woff2
184.168.96.8200 OK 74 kB URL HTTP/1.1 it.weblipy.com/assets/fonts/fa-solid-900.woff2
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761\012- data
Hash 418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe
Analyzer Verdict Alert fortinet Malware
GET /assets/fonts/fa-solid-900.woff2 HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://it.weblipy.com/assets/css/fontawesome.min.css
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:58 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:01:28 GMT
ETag: "5401816-12210-5d584889dde00"
Accept-Ranges: bytes
Content-Length: 74256
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: font/woff2
it.weblipy.com/assets/img/blog/blog-3.jpg
184.168.96.8200 OK 40 kB URL HTTP/1.1 it.weblipy.com/assets/img/blog/blog-3.jpg
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 450x370, components 3\012- data
Hash 031d7c72cf6de8dad0b5418366dfc920
5be4b651a49335c844e2faadff9820fbec4f9520
ce1843b4adc0cdfae97f45929dc3141eb79f444330389093dead048f9dd6eafc
GET /assets/img/blog/blog-3.jpg HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:59 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:07:34 GMT
ETag: "5401927-9bd5-5d5849e6e9580"
Accept-Ranges: bytes
Content-Length: 39893
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
it.weblipy.com/assets/img/choose-2.jpg
184.168.96.8200 OK 51 kB URL HTTP/1.1 it.weblipy.com/assets/img/choose-2.jpg
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 635x575, components 3\012- data
Hash cf17a770c08c74f7f8be92717fdf959a
57ae29463db088e7dc9dc29b0a7b45ef9bfa10ad
221382f2a05c164a35016a10a2a9e842c847399472d12e71a46a3872530342fa
GET /assets/img/choose-2.jpg HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:58 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:06:24 GMT
ETag: "5401929-c58d-5d5849a427800"
Accept-Ranges: bytes
Content-Length: 50573
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
it.weblipy.com/assets/img/favicon.png
184.168.96.8404 Not Found 315 B URL HTTP/1.1 it.weblipy.com/assets/img/favicon.png
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a34ac19f4afae63adc5d2f7bc970c07f
a82190fc530c265aa40a045c21770d967f4767b8
d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3
GET /assets/img/favicon.png HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/
Cookie: _tccl_visitor=f801f238-12d3-54a4-a28e-e873e19218bf; _tccl_visit=f801f238-12d3-54a4-a28e-e873e19218bf
HTTP/1.1 404 Not Found
Date: Wed, 30 Nov 2022 12:43:59 GMT
Server: Apache
Content-Length: 315
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
it.weblipy.com/assets/img/slider-2.jpg
184.168.96.8200 OK 198 kB URL HTTP/1.1 it.weblipy.com/assets/img/slider-2.jpg
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1080, components 3\012- data
Size 198 kB (197859 bytes)
Hash 44728cd606ca7d56e3901faba35dbe08
a31f4ae8955f6840879ce620e6e7ae38ca42be16
2330e07bc8ece45dff980cade64cd0c92868c8cb54e82ef7b7e14fd6ebe46e9f
GET /assets/img/slider-2.jpg HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/assets/css/style.css
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:57 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 14 Jan 2022 06:07:08 GMT
ETag: "5401937-304e3-5d5849ce1db00"
Accept-Ranges: bytes
Content-Length: 197859
Keep-Alive: timeout=5
Content-Type: image/jpeg
it.weblipy.com/assets/img/banner-bg.jpg
184.168.96.8200 OK 597 kB URL HTTP/1.1 it.weblipy.com/assets/img/banner-bg.jpg
IP 184.168.96.8:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1280, components 3\012- data
Size 597 kB (596566 bytes)
Hash 72ad3c4959796c1dbcbe78e5d5b50c1c
57932e3aafe51d8a6c3f6376cf103d6bf0026488
770631b85ed50bbe6795f866417f004ae8e2d86f6040cd971368d4bd32cb6588
GET /assets/img/banner-bg.jpg HTTP/1.1
Host: it.weblipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.weblipy.com/assets/css/style.css
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 12:43:59 GMT
Server: Apache
Last-Modified: Fri, 14 Jan 2022 06:06:08 GMT
ETag: "5401923-91a56-5d584994e5400"
Accept-Ranges: bytes
Content-Length: 596566
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
events.api.secureserver.net/t/1/tl/event?cts=1669812236780&dh=it.weblipy.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1024927096&cv=2.0.1&z=1030072478&vg=f801f238-12d3-54a4-a28e-e873e19218bf&vtg=f801f238-12d3-54a4-a28e-e873e19218bf&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22sg2plzcpnl466825%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%227820739%22%7D&hit_id=c33f42e1-f364-57fa-93bd-3e94e2275779&ht=pageview
23.72.139.72200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1669812236780&dh=it.weblipy.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1024927096&cv=2.0.1&z=1030072478&vg=f801f238-12d3-54a4-a28e-e873e19218bf&vtg=f801f238-12d3-54a4-a28e-e873e19218bf&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22sg2plzcpnl466825%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%227820739%22%7D&hit_id=c33f42e1-f364-57fa-93bd-3e94e2275779&ht=pageview
IP 23.72.139.72:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1669812236780&dh=it.weblipy.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1024927096&cv=2.0.1&z=1030072478&vg=f801f238-12d3-54a4-a28e-e873e19218bf&vtg=f801f238-12d3-54a4-a28e-e873e19218bf&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22sg2plzcpnl466825%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%227820739%22%7D&hit_id=c33f42e1-f364-57fa-93bd-3e94e2275779&ht=pageview HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Referer: http://it.weblipy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: http://it.weblipy.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Wed, 30 Nov 2022 12:44:01 GMT
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1669812239714&dh=it.weblipy.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1024927096&cv=2.0.1&z=2118056738&vg=f801f238-12d3-54a4-a28e-e873e19218bf&vtg=f801f238-12d3-54a4-a28e-e873e19218bf&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22sg2plzcpnl466825%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%227820739%22%7D&hit_id=f5b24d2b-8032-52f9-b260-219e6df106d8&ht=perf&tce=1669812235344&tcs=1669812235100&tdc=1669812239703&tdclee=1669812236813&tdcles=1669812236781&tdi=1669812236781&tdl=1669812235652&tdle=1669812235100&tdls=1669812235038&tfs=1669812235038&tns=1669812235043&trqs=1669812235345&tre=1669812235599&trps=1669812235598&tles=1669812239703&tlee=0&nt=navigate&nav_type=hard
23.72.139.72200 OK 43 B URL HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1669812239714&dh=it.weblipy.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1024927096&cv=2.0.1&z=2118056738&vg=f801f238-12d3-54a4-a28e-e873e19218bf&vtg=f801f238-12d3-54a4-a28e-e873e19218bf&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22sg2plzcpnl466825%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%227820739%22%7D&hit_id=f5b24d2b-8032-52f9-b260-219e6df106d8&ht=perf&tce=1669812235344&tcs=1669812235100&tdc=1669812239703&tdclee=1669812236813&tdcles=1669812236781&tdi=1669812236781&tdl=1669812235652&tdle=1669812235100&tdls=1669812235038&tfs=1669812235038&tns=1669812235043&trqs=1669812235345&tre=1669812235599&trps=1669812235598&tles=1669812239703&tlee=0&nt=navigate&nav_type=hard
IP 23.72.139.72:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1669812239714&dh=it.weblipy.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=1024927096&cv=2.0.1&z=2118056738&vg=f801f238-12d3-54a4-a28e-e873e19218bf&vtg=f801f238-12d3-54a4-a28e-e873e19218bf&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22sg2plzcpnl466825%22%2C%22dcenter%22%3A%22sg2%22%2C%22id%22%3A%227820739%22%7D&hit_id=f5b24d2b-8032-52f9-b260-219e6df106d8&ht=perf&tce=1669812235344&tcs=1669812235100&tdc=1669812239703&tdclee=1669812236813&tdcles=1669812236781&tdi=1669812236781&tdl=1669812235652&tdle=1669812235100&tdls=1669812235038&tfs=1669812235038&tns=1669812235043&trqs=1669812235345&tre=1669812235599&trps=1669812235598&tles=1669812239703&tlee=0&nt=navigate&nav_type=hard HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://it.weblipy.com
Connection: keep-alive
Referer: http://it.weblipy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: http://it.weblipy.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Wed, 30 Nov 2022 12:44:01 GMT
X-Firefox-Spdy: h2
unpkg.com/swiper@7.4.1/swiper-bundle.min.js
104.16.124.175200 OK 0 B URL HTTP/2 unpkg.com/swiper@7.4.1/swiper-bundle.min.js
IP 104.16.124.175:0
GET /swiper@7.4.1/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://it.weblipy.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"212e8-+9I9CUbhY1/BprAUcnI5oGYQ/d0"
via: 1.1 fly.io
fly-request-id: 01G4XGYFFRBMSG82JZ2H3KRTZA-fra
cf-cache-status: HIT
age: 15258962
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7723abf27e2db4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Dosis:wght@400;500;600;700;800&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Dosis:wght@400;500;600;700;800&display=swap
IP 142.250.74.74:0
GET /css2?family=Dosis:wght@400;500;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://it.weblipy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 12:43:57 GMT
date: Wed, 30 Nov 2022 12:43:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Catamaran:wght@300;400;500;600;700;800;900&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Catamaran:wght@300;400;500;600;700;800;900&display=swap
IP 142.250.74.74:0
GET /css2?family=Catamaran:wght@300;400;500;600;700;800;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://it.weblipy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 12:43:57 GMT
date: Wed, 30 Nov 2022 12:43:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unpkg.com/swiper@7/swiper-bundle.min.js
104.16.124.175302 Found 0 B URL HTTP/2 unpkg.com/swiper@7/swiper-bundle.min.js
IP 104.16.124.175:0
GET /swiper@7/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://it.weblipy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 30 Nov 2022 12:43:57 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@7.4.1/swiper-bundle.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GK48ZNXQGDGXTJHZ8GPGC4FG-fra
cf-cache-status: HIT
age: 57
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7723abf21dbeb4ed-OSL
X-Firefox-Spdy: h2