GET /forums/profile/ambroseorsini90/ HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Connection: Keep-Alive
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Link: <http://135.148.164.91/wp-json/>; rel="https://api.w.org/", <http://135.148.164.91/?p=14>; rel=shortlink
Etag: "3886882-1669608177;gz"
X-LiteSpeed-Cache: hit
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Wed, 30 Nov 2022 00:15:12 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5067
Expires: Wed, 30 Nov 2022 01:39:39 GMT
Date: Wed, 30 Nov 2022 00:15:12 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
Age: 5959
Cache-Control: public, max-age=1209600
Date: Wed, 30 Nov 2022 00:15:12 GMT
Etag: "63866b9a-37"
Last-Modified: Tue, 29 Nov 2022 20:29:14 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 55
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 23:17:56 GMT
cache-control: public,max-age=3600
age: 3436
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2274
Expires: Wed, 30 Nov 2022 00:53:07 GMT
Date: Wed, 30 Nov 2022 00:15:13 GMT
Connection: keep-alive
|
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: ClKehbY2aKbVPqbC84M2T+VUWbz8RgOOsvKmpiAvA9CPXpKeKXlwqksOIHJopJSBynG3QYqQ6lE=
x-amz-request-id: KH5XGEEHBPVCSEYV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 23:45:00 GMT
age: 1813
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Wed, 30 Nov 2022 00:15:13 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /css?family=Open+Sans%3A400%2C600%2C700%2C400italic%2C300%7CRoboto%3A400%2C500%2C700%2C300%2C400italic&ver=5.3.14 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
142.250.74.106
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 30 Nov 2022 00:15:13 GMT
Date: Wed, 30 Nov 2022 00:15:13 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
|
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.14 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 11 Jun 2020 02:13:18 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 6110
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-includes/css/dist/block-library/theme.min.css?ver=5.3.14 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Sun, 17 Nov 2019 08:34:48 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 636
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /hyWIOj5.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
 151.101.244.193
HTTP/2 200 OK
content-type: image/gif
last-modified: Thu, 07 Jul 2022 05:16:46 GMT
etag: "b417c8aecce435bcc3167f54fc700660"
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 30 Nov 2022 00:15:13 GMT
age: 4264707
x-served-by: cache-iad-kjyo7100173-IAD, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 11655, 1
x-timer: S1669767313.302962,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 88055
X-Firefox-Spdy: h2
|
GET /LAKDhsm.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
151.101.244.193
HTTP/2 200 OK
content-type: image/gif
last-modified: Thu, 07 Jul 2022 05:19:28 GMT
etag: "f09d66fc9019a3081f42bd798c3e4b40"
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 30 Nov 2022 00:15:13 GMT
age: 1871872
x-served-by: cache-iad-kcgs7200081-IAD, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 2276, 1
x-timer: S1669767313.303744,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 128817
X-Firefox-Spdy: h2
|
GET /wp-content/plugins/kentooz-socializer/public/css/kentooz-socializer-public.css?ver=1.0.0 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Mon, 20 Aug 2018 13:10:36 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2131
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/plugins/wpforo/wpf-assets/css/font-awesome/css/fontawesome-all.min.css?ver=5.11.2 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 02 Apr 2020 07:05:25 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 12312
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/themes/vmag/css/lightslider.css?ver=1.1.5 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 08 Aug 2019 12:49:57 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1622
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/themes/vmag/css/font-awesome.css?ver=4.5.0 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 08 Aug 2019 12:49:57 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 6542
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/themes/vmag/css/animate.css?ver=3.5.1 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 08 Aug 2019 12:49:57 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 4450
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/themes/vmag/css/responsive.css?ver=1.1.6 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 08 Aug 2019 12:49:57 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2438
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/themes/vmag/style.css?ver=1.1.6 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 08 Aug 2019 12:53:57 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 15204
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/plugins/wpforo/wpf-themes/classic/colors.css?ver=1.7.2.8507b4375ab084621fa727c5167c591b HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 02 Apr 2020 07:05:41 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 7092
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Fri, 20 May 2016 06:11:28 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 4034
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/plugins/kentooz-socializer/public/js/kentooz-socializer-default-public.js?ver=1.0.0 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Mon, 20 Aug 2018 13:10:36 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 569
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/plugins/kentooz-socializer/public/js/kentooz-socializer-public.js?ver=1.0.0 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Mon, 20 Aug 2018 13:10:36 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2234
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/plugins/kentooz-socializer/public/js/custom-js-public.js?ver=1.0.0 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Mon, 20 Aug 2018 13:10:36 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 666
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/plugins/wp-postviews/postviews-cache.js?ver=1.68 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Fri, 23 Aug 2019 06:15:34 GMT
Accept-Ranges: bytes
Content-Length: 133
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 08 Aug 2019 12:42:43 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 33836
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/plugins/wpforo/wpf-assets/js/frontend.js?ver=1.7.2 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 02 Apr 2020 07:05:25 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 8607
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-includes/js/jquery/suggest.min.js?ver=1.1-20110113 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Wed, 13 Jan 2016 17:22:27 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1341
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 00:15:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /wp-content/plugins/wpforo/wpf-assets/js/ajax.js?ver=1.7.2 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 02 Apr 2020 07:05:25 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 7152
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /gtm.js?id=GTM-KVKFR6R HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 00:15:13 GMT
expires: Wed, 30 Nov 2022 00:15:13 GMT
cache-control: private, max-age=900
last-modified: Wed, 30 Nov 2022 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37732
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /wp-content/themes/vmag/js/wow.js?ver=1.1.2 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 08 Aug 2019 12:49:57 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 3534
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-includes/js/wp-embed.min.js?ver=5.3.14 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Wed, 28 Jul 2021 13:19:14 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 743
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/themes/vmag/js/vmag-custom.js?ver=1.1.6 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 08 Aug 2019 12:49:57 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1147
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/plugins/wpforo/wpf-themes/classic/widgets.css?ver=1.7.2 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 02 Apr 2020 07:05:25 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 2422
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.14 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: application/javascript
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Wed, 28 Jul 2021 13:19:14 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 4628
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 00:15:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /wp-content/plugins/wpforo/wpf-themes/classic/style.css?ver=1.7.2 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/css
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 02 Apr 2020 07:05:25 GMT
Accept-Ranges: bytes
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 28355
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 00:11:13 GMT
cache-control: public,max-age=3600
age: 240
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 346
ETag: "6918D97D23CD4A088DB73525562B385019B6036C014EA751A8499CCCA9B1C67A"
Last-Modified: Mon, 28 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18499
Expires: Wed, 30 Nov 2022 05:23:32 GMT
Date: Wed, 30 Nov 2022 00:15:13 GMT
Connection: keep-alive
|
GET /wp-content/uploads/2019/10/gisella-anastasia_20170922_191217-320x224.jpg HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: image/jpeg
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Tue, 22 Oct 2019 16:32:55 GMT
Accept-Ranges: bytes
Content-Length: 13933
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x224, components 3\012- data
Size: 13933
Md5: 5a47621e65043d2296567ab8b755cbb6
Sha1: 50529af3a5bd5c2ff2ad02c2821b53630903b52b
Sha256: 7b9ed01ceaad41ea592ae107124e49d9a1dc992739be35b7b6ded30d61d48045
Alerts:
Blocklists:
- quad9: Sinkholed
|
GET /wp-content/uploads/2018/12/dflmfsfsd-320x224.jpg HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: image/jpeg
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Sat, 22 Dec 2018 15:48:41 GMT
Accept-Ranges: bytes
Content-Length: 9011
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x224, components 3\012- data
Size: 9011
Md5: 94e59e4ae52032b8db72303cae9283c0
Sha1: 44361e59e34d1e4da3f767e3f3b23cdc462e22f5
Sha256: 831951fd130c174f0c86c7d209a8995f0b4d5d9e3fc2ea09bb3874df26890fe4
Alerts:
Blocklists:
- quad9: Sinkholed
|
GET /wp-content/uploads/2018/03/NB-1-300x77.png HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: image/png
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 08 Mar 2018 10:33:36 GMT
Accept-Ranges: bytes
Content-Length: 20252
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/uploads/2018/12/llmfdfsdfs-320x224.jpg HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: image/jpeg
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Sat, 22 Dec 2018 15:36:40 GMT
Accept-Ranges: bytes
Content-Length: 10978
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x224, components 3\012- data
Size: 10978
Md5: 0c9d93dbb0bdb413e527bd59bb9cd6d3
Sha1: b9f2e79c59f6b4669e4fa2d89173ab429ba72c40
Sha256: 176d516031748f593349d9a7a8d2ae91576d788bc50f8b728e3e0c6f2c43f51f
Alerts:
Blocklists:
- quad9: Sinkholed
|
GET /wp-content/plugins/wpforo/wpf-assets/images/wpforo-info.png HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: image/png
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 02 Apr 2020 07:05:25 GMT
Accept-Ranges: bytes
Content-Length: 555
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/uploads/2018/03/cropped-NB.png HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: image/png
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Thu, 08 Mar 2018 10:32:53 GMT
Accept-Ranges: bytes
Content-Length: 26289
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: text/html
Accept-Ranges: bytes
Age: 5905
Cache-Control: public, max-age=1209600
Date: Wed, 30 Nov 2022 00:15:14 GMT
Etag: "63866b9a-37"
Last-Modified: Tue, 29 Nov 2022 20:29:14 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 55
|
GET /widget-send-button/js/init.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
95.216.228.15
HTTP/1.1 302 Moved Temporarily
Content-Type: text/html
Server: nginx/1.16.0
Date: Wed, 30 Nov 2022 00:15:14 GMT
Content-Length: 145
Connection: keep-alive
Location: https://static.getbutton.io/widget/bundle.js
|
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://135.148.164.91
Connection: keep-alive
Referer: http://fonts.googleapis.com/
|
search
216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff2
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 21:13:25 GMT
Expires: Thu, 23 Nov 2023 21:13:25 GMT
Cache-Control: public, max-age=31536000
Age: 529309
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
|
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://135.148.164.91
Connection: keep-alive
Referer: http://fonts.googleapis.com/
|
search
216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff2
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15920
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 21:14:50 GMT
Expires: Thu, 23 Nov 2023 21:14:50 GMT
Cache-Control: public, max-age=31536000
Age: 529224
Last-Modified: Wed, 11 May 2022 19:24:45 GMT
|
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://135.148.164.91
Connection: keep-alive
Referer: http://fonts.googleapis.com/
|
search
216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff2
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 28 Nov 2022 19:26:02 GMT
Expires: Tue, 28 Nov 2023 19:26:02 GMT
Cache-Control: public, max-age=31536000
Age: 103752
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
|
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 345
ETag: "27C30431AEBF14A9DC134881CC55ABBBA3E4AB1FF6D7C1D2E9DDF8D3E2DC592D"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18798
Expires: Wed, 30 Nov 2022 05:28:32 GMT
Date: Wed, 30 Nov 2022 00:15:14 GMT
Connection: keep-alive
|
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://135.148.164.91
Connection: keep-alive
Referer: http://fonts.googleapis.com/
|
search
216.58.207.227
HTTP/1.1 200 OK
Content-Type: font/woff2
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17820
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 29 Nov 2022 02:44:16 GMT
Expires: Wed, 29 Nov 2023 02:44:16 GMT
Cache-Control: public, max-age=31536000
Age: 77458
Last-Modified: Mon, 15 Aug 2022 18:13:12 GMT
|
GET /wp-content/uploads/2019/03/Ilustrasi-film-superhero-di-tahun-2019-@CBR-320x224.jpg HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: image/jpeg
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:13 GMT
Last-Modified: Fri, 15 Mar 2019 09:07:13 GMT
Accept-Ranges: bytes
Content-Length: 22878
Date: Wed, 30 Nov 2022 00:15:13 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x224, components 3\012- data
Size: 22878
Md5: b365a1742ae30a16de0126d7b04850f5
Sha1: 1a755577bbf7d42e8736b7912ddf85d23203ed31
Sha256: b103dec45c1c519b815dd935fc274e09ebbccc71c61231f08376149d7ed28922
|
GET /wp-content/uploads/2018/12/dsfnldmfsd-320x224.jpg HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: image/jpeg
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:14 GMT
Last-Modified: Sat, 22 Dec 2018 15:55:47 GMT
Accept-Ranges: bytes
Content-Length: 11129
Date: Wed, 30 Nov 2022 00:15:14 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 320x224, components 3\012- data
Size: 11129
Md5: 5dc15ac296b6a2d6591725defeb71aab
Sha1: b9c9eac217c9d4ae337903476ab2ca4eec85dedc
Sha256: 459dbe971b3a380c1afc3fc935316ec47ffb3eea2b33859e90ea4187176e2098
Alerts:
Blocklists:
- quad9: Sinkholed
|
GET /wp-content/plugins/wpforo/wpf-assets/css/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://135.148.164.91/wp-content/plugins/wpforo/wpf-assets/css/font-awesome/css/fontawesome-all.min.css?ver=5.11.2
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: font/woff2
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:14 GMT
Last-Modified: Thu, 02 Apr 2020 07:05:25 GMT
Accept-Ranges: bytes
Content-Length: 13584
Date: Wed, 30 Nov 2022 00:15:14 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-admin/admin-ajax.php?postviews_id=14&action=postviews&_=1669767312904 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Connection: Keep-Alive
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN,SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
X-LiteSpeed-Cache-Control: no-cache
Content-Length: 27
Content-Encoding: gzip
Vary: Accept-Encoding
Date: Wed, 30 Nov 2022 00:15:14 GMT
Server: LiteSpeed
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "CD400E3788096655A47A0805FB0550E7DA38BF3730483BAC6E125F306F3B5969"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8904
Expires: Wed, 30 Nov 2022 02:43:38 GMT
Date: Wed, 30 Nov 2022 00:15:14 GMT
Connection: keep-alive
|
GET /wp-content/plugins/wpforo/wpf-assets/css/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://135.148.164.91/wp-content/plugins/wpforo/wpf-assets/css/font-awesome/css/fontawesome-all.min.css?ver=5.11.2
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: font/woff2
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:14 GMT
Last-Modified: Thu, 02 Apr 2020 07:05:25 GMT
Accept-Ranges: bytes
Content-Length: 75728
Date: Wed, 30 Nov 2022 00:15:14 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/themes/vmag/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://135.148.164.91/wp-content/themes/vmag/css/font-awesome.css?ver=4.5.0
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: font/woff2
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:14 GMT
Last-Modified: Thu, 08 Aug 2019 12:49:57 GMT
Accept-Ranges: bytes
Content-Length: 66624
Date: Wed, 30 Nov 2022 00:15:14 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /widget/bundle.js HTTP/1.1
Host: static.getbutton.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://135.148.164.91/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
95.216.228.15
HTTP/1.1 200 OK
Content-Type: application/javascript
Server: nginx/1.16.0
Date: Wed, 30 Nov 2022 00:15:14 GMT
Last-Modified: Wed, 16 Nov 2022 07:07:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63748c32-4a576"
Expires: Wed, 30 Nov 2022 03:15:14 GMT
Cache-Control: max-age=10800
Access-Control-Allow-Origin: *
Content-Encoding: gzip
|
GET /wp-content/plugins/wpforo/wpf-assets/css/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://135.148.164.91/wp-content/plugins/wpforo/wpf-assets/css/font-awesome/css/fontawesome-all.min.css?ver=5.11.2
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: font/woff2
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:14 GMT
Last-Modified: Thu, 02 Apr 2020 07:05:25 GMT
Accept-Ranges: bytes
Content-Length: 75336
Date: Wed, 30 Nov 2022 00:15:14 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: elLgT9Y8IrVCXMArbxf3/Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
54.203.75.56
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fryRx4AJfiOggFoVGlcKYRmb8bs=
|
GET /ads/alds.php?kat=3bokep&referer=http%3A%2F%2F135.148.164.91%2Fforums%2Fprofile%2Fambroseorsini90%2F HTTP/1.1
Host: bebasads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://135.148.164.91
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
172.67.180.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Date: Wed, 30 Nov 2022 00:15:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.8
Vary: Accept-Encoding
X-Turbo-Charged-By: LiteSpeed
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R1n%2BPTim5Kum1i9ULIg1C0cI9d9YSv7KeM5mScSCU68wpSBsd0TT8WINKCH9gNHFti9S17o290V24wO06l2qGq%2BXhOWPi76fRgTqAACs4CibFBLB1fi612Xu0Wbgs0Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 771f6331080ab4f4-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /ads/alds.php?kat=3bokep&referer=http%3A%2F%2F135.148.164.91%2Fforums%2Fprofile%2Fambroseorsini90%2F HTTP/1.1
Host: bebasads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://135.148.164.91
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
172.67.180.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Date: Wed, 30 Nov 2022 00:15:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.8
Vary: Accept-Encoding
X-Turbo-Charged-By: LiteSpeed
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5SNmGuGZO7h1jmBEB2sX44JdEMxREr1MxRoWD0LFeY6u0bUFGaYS0Wj6Sad4dezuzZoHwLkmwxEiHOh41NS3uEzwgvNmo%2F1mVyEAVqtVlRILvS4NRlnQ99i8f%2F0599I%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 771f63310c91b517-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /ads/alds.php?kat=3bokep&referer=http%3A%2F%2F135.148.164.91%2Fforums%2Fprofile%2Fambroseorsini90%2F HTTP/1.1
Host: bebasads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://135.148.164.91
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
172.67.180.1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Date: Wed, 30 Nov 2022 00:15:14 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.8
Vary: Accept-Encoding
X-Turbo-Charged-By: LiteSpeed
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7qrOFonEesopG3GF3XByeEwgqXkBcZ6URtpUcGI2mocAUDeN1m7lZJ%2Bj6nRUByM5hdOE2X%2FpqIFsOxGAh8YVwLZ3GN5MFQbMsMF6yYw5cxdumVHBdBWsQSOgIJ3KQbk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 771f633108bdb506-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
|
GET /wp-content/uploads/2019/10/Erina-1.jpg?lm=1669608177 HTTP/1.1
Host: dollwives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
104.26.14.4
HTTP/2 200 OK
content-type: image/jpeg
date: Wed, 30 Nov 2022 00:15:14 GMT
content-length: 47957
last-modified: Wed, 11 Dec 2019 17:46:56 GMT
etag: "5df12b90-bb55"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J%2Bq9s7aa2wi2tQxpuMBaltwxGSZ684XPuU7ahiVGdUnenzM3DLOXByULpcOdUdCgVDCJqN8cM5PA7j8Q6Z82hk02zIfH2eITt9DOUQxgbtQT0F4ddKQxZ797AZlfzV4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771f63303b59b524-OSL
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 00:15:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /wp-content/uploads/2019/10/Hina-1.jpg HTTP/1.1
Host: dollwives.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
104.26.14.4
HTTP/2 200 OK
content-type: image/jpeg
date: Wed, 30 Nov 2022 00:15:14 GMT
content-length: 53341
last-modified: Wed, 11 Dec 2019 17:46:57 GMT
etag: "5df12b91-d05d"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZFo51Oq3yGPSHTo8A3x7HZuxFwxYK9aybzCx4XKmW%2Fsqgk4efOaSowYh2JMXEQokBpsbx9Idpn0Ad9KpKGmtwwpG7v9hTqDpM2Iq6KX%2Fs7qR%2BIM6xlsZYOf%2FsRxF35g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771f6330dbc1b524-OSL
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 595x893, components 3\012- data
Size: 53341
Md5: fb2b05277180ed16d9f63956dbc6cd27
Sha1: a68c6f912d49e0347ca511ead766f77e5d05c80b
Sha256: 3657db539c5f923291396b93fad564b044708df6ef4ff1ae44c28cadee5d1129
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 00:15:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 00:15:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /-223ZjUVnLaU/YQha6GMfgRI/AAAAAAAAMIY/2-c76nqdE4obwl-9qkWLlEK_dQqS6JaPgCLcBGAsYHQ/s300/JAVCROT.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
access-control-expose-headers: Content-Length
content-disposition: inline;filename="JAVCROT.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 36734
x-xss-protection: 0
date: Tue, 29 Nov 2022 20:22:46 GMT
expires: Wed, 23 Nov 2022 16:17:02 GMT
cache-control: public, max-age=86400, no-transform
age: 13948
etag: "v308d"
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x250, components 3\012- data
Size: 36734
Md5: 2cbc00ad642eddb1afbaa73ae3c9d4df
Sha1: 6a346801ed200d1f47d0c9ceb05c17b909909101
Sha256: d871949331dc7ea075da50a69dea6cf3b6ecf15adee8b1d0e4e38bd5003f351d
|
GET /-SHU8F_YJHB4/YQha6jYySVI/AAAAAAAAMIc/8ANJjmOyWKEpdzWceA-IjLdBMm5BzVVLACLcBGAsYHQ/s300/MEMEKRAPET.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
access-control-expose-headers: Content-Length
content-disposition: inline;filename="MEMEKRAPET.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 33806
x-xss-protection: 0
date: Tue, 29 Nov 2022 23:53:52 GMT
expires: Wed, 30 Nov 2022 23:53:52 GMT
cache-control: public, max-age=86400, no-transform
etag: "v308e"
age: 1282
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x250, components 3\012- data
Size: 33806
Md5: 96ebba6c4facece9c5ce7e16a4f421b0
Sha1: 7cc97123b11e4d15712998f78f00f939aebdc503
Sha256: 658b9b3586626c869f21113c1ee2d07084de03e823804f874dff8715f7c2e4b5
|
GET /-1pJaqUq8cLI/YQha62W3DrI/AAAAAAAAMIk/M3vcWH86hn4dmYuHJF0tt4mbWctqNG3QACLcBGAsYHQ/s300/VIDEOBOKEPEROPA.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.161
HTTP/2 200 OK
content-type: image/jpeg
access-control-expose-headers: Content-Length
content-disposition: inline;filename="VIDEOBOKEPEROPA.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 38529
x-xss-protection: 0
date: Wed, 30 Nov 2022 00:15:14 GMT
expires: Sat, 26 Nov 2022 19:21:23 GMT
cache-control: public, max-age=86400, no-transform
etag: "v308d"
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
--- Additional Info ---
Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 300x250, components 3\012- data
Size: 38529
Md5: 83c1fc4ecfb1ae09b629a4cbbd6878e6
Sha1: a93349d700fbbce36416aa0245a30f3c307dffb8
Sha256: a7073fbb7802a83d2e8bd2ab1710c0cf209d33b7600a4379baee6155fce195d8
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 00:15:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
 31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: a8e0e9feb1e48000676d25f6af70e016
ETag: "d9ed4c3715e1852bc23110cc167100d2"
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Wed, 30 Nov 2022 00:25:49 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: TnHACtfKWXVWS+Mi0IaolA==
X-FB-Debug: SNcLdlLWBcaunPXUqRDv5Qmi3WmHYKEXemqgcwxyPCEvyz+2/hfYB/YwvuIjGIPB7bvk9m8vX7J5jfAcvCJa0w==
Priority: u=3,i
X-FB-TRIP-ID: 1904183273
Date: Wed, 30 Nov 2022 00:15:14 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1687
|
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
192.229.233.25
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 305
Cache-Control: public, max-age=1800
Date: Wed, 30 Nov 2022 00:15:14 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
|
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
216.239.32.178
HTTP/2 200 OK
content-type: text/javascript
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 29 Nov 2022 22:41:08 GMT
expires: Wed, 30 Nov 2022 00:41:08 GMT
cache-control: public, max-age=7200
age: 5646
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
 46.105.201.240
HTTP/1.1 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 30 Nov 2022 00:06:35 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 580976756
etag: W/"-375139978"
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4547
x-iplb-request-id: 5B5A2A9A:1AA2_2E69C9F0:0050_6386A092_0145:1F1F1
x-iplb-instance: 42474
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 5764
Cache-Control: max-age=125476
Date: Wed, 30 Nov 2022 00:15:14 GMT
Etag: "6385d132-1d7"
Expires: Thu, 01 Dec 2022 11:06:30 GMT
Last-Modified: Tue, 29 Nov 2022 09:30:26 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
|
GET /wp-content/uploads/2018/03/cropped-NB-ICON-32x32.png HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: image/png
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:14 GMT
Last-Modified: Thu, 08 Mar 2018 10:36:40 GMT
Accept-Ranges: bytes
Content-Length: 1842
Date: Wed, 30 Nov 2022 00:15:14 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /wp-content/uploads/2018/03/cropped-NB-ICON-192x192.png HTTP/1.1
Host: 135.148.164.91
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/forums/profile/ambroseorsini90/
|
search
135.148.164.91
HTTP/1.1 200 OK
Content-Type: image/png
Connection: Keep-Alive
Cache-Control: public, max-age=604800
Expires: Wed, 07 Dec 2022 00:15:14 GMT
Last-Modified: Thu, 08 Mar 2018 10:36:39 GMT
Accept-Ranges: bytes
Content-Length: 28070
Date: Wed, 30 Nov 2022 00:15:14 GMT
Server: LiteSpeed
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=3600; includeSubDomains; preload
|
GET /en_US/sdk.js?hash=b7397c124ad70e4587f83f47006a6ad7 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://135.148.164.91
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
31.13.72.12
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ec8cf32304c7504ecfeeeec42392cf22
etag: "273d85883b2d63fccff7f7c613d25299"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 29 Nov 2023 22:11:50 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: fdP4P+9NKCF5COsPSvmXzg==
x-fb-debug: HgZeLP9t7MMXDG9HioILZQVuFYjuZ+TWn73UH1wbsfpsJbPbhezkVk1zPO+bvRySiwfGM7OPML5FSRZrcbTlLw==
content-length: 86894
x-fb-trip-id: 2074150462
date: Wed, 30 Nov 2022 00:15:14 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 1303
Cache-Control: 'max-age=158059'
Date: Wed, 30 Nov 2022 00:15:14 GMT
Last-Modified: Tue, 29 Nov 2022 23:53:31 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "815B297511094288F745F230C7F3CB097F8F823C9CF67DE63713AECEAF98D356"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10392
Expires: Wed, 30 Nov 2022 03:08:27 GMT
Date: Wed, 30 Nov 2022 00:15:15 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3369
Cache-Control: max-age=107240
Date: Wed, 30 Nov 2022 00:15:15 GMT
Etag: "63859352-139"
Expires: Thu, 01 Dec 2022 06:02:35 GMT
Last-Modified: Tue, 29 Nov 2022 05:06:26 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 313
|
GET /settings?session_id=c0cc48158d1abbbdfa96aa8fc92872645e01e2b5 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
|
search
104.244.42.136
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Wed, 30 Nov 2022 00:15:14 GMT
perf: 7626143928
vary: Origin
server: tsa_o
cache-control: must-revalidate, max-age=600
last-modified: Wed, 30 Nov 2022 00:15:15 GMT
content-length: 374
content-encoding: gzip
x-transaction-id: d1c96a3a244832a4
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 108
x-connection-hash: a33645f25a65d6fc84b8c12665c769575a5e52b4cae6133d853f8a2cf41ada28
X-Firefox-Spdy: h2
|
GET /stats/0.php?4295219&@f16&@g1&@h1&@i1&@j1669767313900&@k0&@l1&@mTime-tested%20Ways%20To%20Sexdoll%20Sale%20Your%20Customers%20%E2%80%93%20Profile%20%E2%80%93%20Forum%20Ngentot%20Bareng&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-116814046&@b3:1669767314&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2F135.148.164.91%2Fforums%2Fprofile%2Fambroseorsini90%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
 149.56.240.27
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
Date: Wed, 30 Nov 2022 00:15:15 GMT
Content-Length: 47
Connection: close
|
GET /in.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
95.101.11.57
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=UTF-8
Server: Play
Expires: Wed, 30 Nov 2022 00:20:46 GMT
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Content-Length: 163354
X-Li-Fabric: prod-ltx1
Report-To: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
NEL: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
X-Li-Pop: prod-ltx1-x
X-LI-Proto: http/1.1
X-LI-UUID: AAXupDzVjzOeJ2Qcazg+TA==
Date: Wed, 30 Nov 2022 00:15:15 GMT
Connection: keep-alive
Vary: Accept-Encoding
X-CDN-CLIENT-IP-VERSION: IPV4
X-CDN: AKAM
|
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
31.13.72.12
HTTP/1.1 200 OK
Content-Type: application/x-javascript; charset=utf-8
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 4cbae51522e1b4ece9151ee1c53496e7
ETag: "c8c4c661bea40b3d1ff730dcd5762c20"
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Wed, 30 Nov 2022 00:16:18 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: SThMHBot8+h4XzW8GtxfSw==
X-FB-Debug: X1YIQugugmd4eNQ+nu+hF0UjnMESpVp8BhoQiCPOC/pLYh2P1Zs+LiXXkatRAFmcWPzMKHeMCBoB0GZVwh3wKA==
Priority: u=3,i
X-FB-TRIP-ID: 1904183273
Date: Wed, 30 Nov 2022 00:15:15 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1686
|
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
192.229.233.25
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 1476
Cache-Control: public, max-age=1800
Date: Wed, 30 Nov 2022 00:15:15 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F712)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
|
GET /js/pinit.js HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://135.148.164.91/
|
search
2.18.172.195
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
ETag: "82bfd941d2c9b3b9e0650a27c9d11737"
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Length: 290
Cache-Control: max-age=217
Connection: keep-alive
Vary: Accept-Encoding, Origin
X-CDN: akamai
Access-Control-Max-Age: 86400
Access-Control-Expose-Headers: X-CDN
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
|
GET /js/pinit_main.js?0.26762881761296886 HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
2.18.172.195
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
etag: "3725764cf05d1a0938de73d398772331"
content-encoding: br
accept-ranges: bytes
content-length: 18679
cache-control: max-age=254
vary: Accept-Encoding, Origin
x-cdn: akamai
access-control-max-age: 86400
access-control-expose-headers: X-CDN
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 00:15:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
172.217.21.174
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 51072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:33:12 GMT
expires: Wed, 29 Nov 2023 13:33:12 GMT
cache-control: public, max-age=31536000
age: 38523
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7291
Expires: Wed, 30 Nov 2022 02:16:46 GMT
Date: Wed, 30 Nov 2022 00:15:15 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7291
Expires: Wed, 30 Nov 2022 02:16:46 GMT
Date: Wed, 30 Nov 2022 00:15:15 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7291
Expires: Wed, 30 Nov 2022 02:16:46 GMT
Date: Wed, 30 Nov 2022 00:15:15 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7291
Expires: Wed, 30 Nov 2022 02:16:46 GMT
Date: Wed, 30 Nov 2022 00:15:15 GMT
Connection: keep-alive
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 00:15:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37883a10-064d-451d-9dd4-bca0a5594e96.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 11466
x-amzn-requestid: 40ae63d3-397e-4118-90b2-d48b1f4014c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHUxIAMFxWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-2b309a0a5e93f68312a26fa1;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G2_x26WJ_ISQDsWfV3RzC_jCy5FLNLpblRk_GvuCn4i-ETBAsaKBjQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:52:45 GMT
age: 8550
etag: "49a82390cbf2139bf681d896f9467ab736e0b337"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F966ff24e-ea85-4a2e-aead-22f1a723c59f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 9674
x-amzn-requestid: 7e7d0183-9667-462a-8d44-d125998c1ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgEoHVAoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a1d-280ba97e3fe1bf7244cbde35;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ym_L3s5E6MLy6BxqNkVxok6L6hA4c-ilSsEqt42j2IbiXYPb4c6-VQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:52:51 GMT
age: 8544
etag: "53650399f9a986ba54addd668b4557109d12003b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2F135.148.164.91 HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
search
192.229.233.25
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 2339661
Cache-Control: public, max-age=315360000
Date: Wed, 30 Nov 2022 00:15:14 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QhUrNKIJUxXTYFTgfCwizAd9L4PdLMVLbqv1sHmmnrWya0xz1MTSiw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:08:46 GMT
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
age: 7589
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gCt9oHpZ68tLCYHIYpI1XLtADkScxwf12kDFnU0o5WoQIVSzWlqozw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:16:52 GMT
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
age: 7103
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde294fb7-e851-4e57-83be-aa3374862dcb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7971
x-amzn-requestid: e47d10e4-2b60-4998-b5fa-5b145e60aac2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhgWHgGoAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867c68-5b9710a07b0a59730e73dce4;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OURSF_raDXrHV3-3ScaEdorNpW9ZKSIQjv6WUCQYHhruGz372BU_QA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:58:15 GMT
age: 8220
etag: "87447d20e9c0a6a6aeefe6ca107f93cd3598cd0d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /?type=pidget&guid=ca3x_Jd7N5gi&tv=2021110201&event=init&sub=www&button_count=0&follow_count=0&pin_count=0&profile_count=0&board_count=0§ion_count=0&lang=en&nvl=en-US&via=http%3A%2F%2F135.148.164.91%2Fforums%2Fprofile%2Fambroseorsini90%2F&viaSrc=canonical HTTP/1.1
Host: log.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://135.148.164.91/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
151.101.0.84
HTTP/2 200 OK
cache-control: no-cache,no-store,must-revalidate,max-age=0
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-envoy-upstream-service-time: 1
server: envoy
x-pinterest-rid: 1220997077631486
accept-ranges: bytes
date: Wed, 30 Nov 2022 00:15:16 GMT
via: 1.1 varnish
x-served-by: cache-bma1639-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669767317.581248,VS0,VE41
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
content-length: 0
X-Firefox-Spdy: h2
|