hubturn.info/?affid=6584sadgb11&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869
104.18.20.191301 Moved Permanently 0 B URL HTTP/1.1 hubturn.info/?affid=6584sadgb11&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869
IP 104.18.20.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?affid=6584sadgb11&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869 HTTP/1.1
Host: hubturn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 07 Dec 2022 08:24:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 07 Dec 2022 09:24:43 GMT
Location: https://hubturn.info/?affid=6584sadgb11&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 775bddda7b391bfe-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5ceaca9fd4ad000cb435820812fc69c8
8168397aaf7b572c89a9c83f46c0b65e4ac509f2
9c4e52e7e17158307d752db0bc3d1fbedae4f305cc301fd73b260f73ab796492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C4E52E7E17158307D752DB0BC3D1FBEDAE4F305CC301FD73B260F73AB796492"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17092
Expires: Wed, 07 Dec 2022 13:09:36 GMT
Date: Wed, 07 Dec 2022 08:24:44 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f83c5e33ba42e312ee398848bbb711f5
caa1fd23b1fbbe883292ded04404c1cfd861eb09
106d08fba45f1e13f85b4b5abc456594878494238933e54b6a06e21ed8a52bc9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5567
Cache-Control: max-age=99561
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:44 GMT
Etag: "638f19f6-1d7"
Expires: Thu, 08 Dec 2022 12:04:05 GMT
Last-Modified: Tue, 06 Dec 2022 10:31:18 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 08:18:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 358
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a0abf10fb7e96c1c98dacf2f013a68b4
acdd839bce85eadc78a8e821e32e00a958d5c0c8
b85d98f8df05431777d96c767ce4c152302ec3f653cdf6e61c8c3fa9574f3255
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B85D98F8DF05431777D96C767CE4C152302EC3F653CDF6E61C8C3FA9574F3255"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17017
Expires: Wed, 07 Dec 2022 13:08:21 GMT
Date: Wed, 07 Dec 2022 08:24:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5Lp5lFDTGtlWXn8Np5SkcmS5IuUAgXqpj7FZRCa0fDVf++KEMKFqJ+BNlDM1cyKP9PwUG6agomg=
x-amz-request-id: C61GS3H3XP2S3Y69
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 07:47:25 GMT
age: 2239
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
hubturn.info/?affid=6584sadgb11&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869
104.18.21.191302 Found 0 B URL HTTP/2 hubturn.info/?affid=6584sadgb11&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869
IP 104.18.21.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?affid=6584sadgb11&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869 HTTP/1.1
Host: hubturn.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
location: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
set-cookie: data=eyJzaXRlIjoiZW50ZXJ0YWluemVyLmNvbSIsInJlcXVlc3RlZFRoZW1lIjoibS0yLWdvdHpuZXQiLCJyb3V0ZWRUaGVtZSI6Im0tMi1wYW50aGVyIiwidmlzaXRvcklkIjoiMGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4In0=; Max-Age=3600; Expires=Wed, 07 Dec 2022 08:24:47 GMT;
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddbe82afabc-OSL
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/fr.png
104.18.27.216200 OK 369 B URL HTTP/2 entertainzer.com/img/flags/min/fr.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 83d2595ea3031de73b98f2c57ad88949
32bd0c5b029e8b75bef13eeb532917d9a56f61c9
0ec28fba482645dc252afe2be19282beebab6162300c9291c16a31138694cca0
GET /img/flags/min/fr.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 369
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-171"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf2ec8b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
104.18.27.216200 OK 8.3 kB URL HTTP/2 entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
IP 104.18.27.216:0
Hash 6ea662f93a5a1d9d6202c2edb9480931
e46585cd9884c3bc79872f39e1f9af406be71280
9472816e6ff2d3cf79f24031563ea7f1464b296aaf7fdef14fa92df236c1836e
GET /registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11 HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: text/html
cf-ray: 775bdddd7cf4b4ee-OSL
age: 139083
cache-control: public, max-age=604800
expires: Wed, 14 Dec 2022 08:24:44 GMT
last-modified: Mon, 05 Dec 2022 17:46:41 GMT
strict-transport-security: max-age=0; includeSubDomains
vary: Accept-Encoding
cf-cache-status: HIT
cache-tag: 1642,entertainzer.com,/registration,NO,m-2-panther,eng,,hubturn.info
set-cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[capoUrl]=aHVidHVybi5pbmZv; Path=/; Secure; Max-Age=9999999
CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; Path=/; Secure; Max-Age=9999999
CakeCookie[entityId]=Mg%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[lang]=eng; Path=/; Secure; Max-Age=9999999
CakeCookie[pubid]=MTY0ODY5; Path=/; Secure; Max-Age=9999999
CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4; Path=/; Secure; Max-Age=9999999
x-cache-url: https://entertainzer.com/registration?lang=eng&theme=m-2-panther&cacheHash=MTY0MixlbnRlcnRhaW56ZXIuY29tLC9yZWdpc3RyYXRpb24sTk8sbS0yLXBhbnRoZXIsZW5nLCxodWJ0dXJuLmluZm8=
x-frame-options: SAMEORIGIN
x-fruit: banana
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
entertainzer.com/img/logos/entertainment/min/entertainzer.png
104.18.27.216200 OK 1.3 kB URL HTTP/2 entertainzer.com/img/logos/entertainment/min/entertainzer.png
IP 104.18.27.216:0
File type PNG image data, 250 x 60, 8-bit colormap, non-interlaced\012- data
Hash e6219598a2c2991debd2027b3ce0230a
cdc8fcf27a700b79af816e783f4a1fddc40d9b91
937cb83e99191feb41e67d7273db2f3a406f249e2b23509978a3969afc7d3f93
GET /img/logos/entertainment/min/entertainzer.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 1333
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-535"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf2eb7b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/ar.png
104.18.27.216200 OK 318 B URL HTTP/2 entertainzer.com/img/flags/min/ar.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash b11bcada2c51b6e5e299245db87bec18
56dc40f41854e76cbdf12683721763b674fbef14
59fae4a2c45ab3f79b6e012c3bc435bad3d83de43cd8b5cb9ec792bbdc71e034
GET /img/flags/min/ar.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 318
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-13e"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf2ebbb4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/cs.png
104.18.27.216200 OK 355 B URL HTTP/2 entertainzer.com/img/flags/min/cs.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 1dce874aa08b4056fcbea8bed2bc0a5f
71d96821168f0f67bfe9ca168db09373d99e57bc
4df39f91b4133cc13f1248a5583917f8841afa615d9dd605aa3b15ccdff23245
GET /img/flags/min/cs.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 355
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-163"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf2ec1b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/de.png
104.18.27.216200 OK 464 B URL HTTP/2 entertainzer.com/img/flags/min/de.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 3babff7961e39e8cd594b9678f7ce728
ea40638d6af4722c8b0e4314e95d64ae059a3ae0
7319b0ebaea7239bf208e9bbf05c5756659be88767ad0424eca017aacf7940eb
GET /img/flags/min/de.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 464
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-1d0"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf2ec5b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/da.png
104.18.27.216200 OK 298 B URL HTTP/2 entertainzer.com/img/flags/min/da.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash c34a7583b5e01b331ee79386d8cebf95
fd0d1f826a6619d278fe962292b63ae91bf61170
5c80542e1988370b38fae869c8adc6edbb449b91e87d0544b4c5074e191d6916
GET /img/flags/min/da.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 298
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-12a"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf2ec4b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/es.png
104.18.27.216200 OK 365 B URL HTTP/2 entertainzer.com/img/flags/min/es.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 9790f666586897cf09b4e2ff5e11f674
bbeedd0fd9332b6534a259e71a6b871b7dea16e0
52f9f4b06302262227ccfcbd5bc1f1a8be31b554167a48e8b90bb8b569743bfc
GET /img/flags/min/es.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 365
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-16d"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf2ec6b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/en.png
104.18.27.216200 OK 481 B URL HTTP/2 entertainzer.com/img/flags/min/en.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 2b936acc8c146a32951e38be063165d3
c379684310743ece93501b7fcdf396359f577cdb
1b959a0f3a63cc646af532327035df4c4ebc6b91ac86fc5384fe60283e26132a
GET /img/flags/min/en.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 481
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-1e1"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf2eb8b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/nl.png
104.18.27.216200 OK 328 B URL HTTP/2 entertainzer.com/img/flags/min/nl.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash c055c14b8f44b006b32261e71be3324f
34ccf4e9f9d0f18b86fabafe477d5cc76d6ca725
ad2583d30cae6dfdba4e48dedbdb623305fb0e5a310cf84deedb75cb8e7214a2
GET /img/flags/min/nl.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 328
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-148"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf3ed1b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/ja.png
104.18.27.216200 OK 266 B URL HTTP/2 entertainzer.com/img/flags/min/ja.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash f8d5d965c5ac8014d2e0293d67f893a4
476ddbaaa32dc435e1c1aa04104c88c9771c5fbe
f8876ab39504d02b6fb905eef77c4ad8d181a563105609bed0b57fc279352ef0
GET /img/flags/min/ja.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 266
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-10a"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf3ed0b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/it.png
104.18.27.216200 OK 316 B URL HTTP/2 entertainzer.com/img/flags/min/it.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash acab890d6d5eb20e38f22aba425c3d34
ec0be0f24e663759356e817bd73a7e7569663bb6
f6f0eb8b370c334ab172fa69fb55ec7b72c6bd3d137c0bbd750d0fc788f433b0
GET /img/flags/min/it.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 316
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-13c"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf3ecfb4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/no.png
104.18.27.216200 OK 334 B URL HTTP/2 entertainzer.com/img/flags/min/no.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash c48ab8c65139f9647fee8710c4b3b66c
df412e417270d78833a1efacdc61529abb7ad03c
79ca4cda3faf0379f6fb2df3f82b896393291eede7c9c7e09b5199572de06d5c
GET /img/flags/min/no.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 334
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-14e"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf3ed3b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/hu.png
104.18.27.216200 OK 303 B URL HTTP/2 entertainzer.com/img/flags/min/hu.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 70006a59a0a303c96b772f500a287f70
d7afc45fa97725ebaac57726d5d45f602ac7bfef
940b53ff3a42a200817ce9c4d1c8c4d1563853486b628d199b2d4b1f12fd255f
GET /img/flags/min/hu.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 303
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-12f"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf3ecdb4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/pt.png
104.18.27.216200 OK 427 B URL HTTP/2 entertainzer.com/img/flags/min/pt.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 86b64a6009b9fda3f62281760c1dd4f0
c536dff21701618654328b21773e69a7508c4c85
28d682eed12d0786c32613e2c4c54c144975c7160f2584380d1839d9dc04f824
GET /img/flags/min/pt.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 427
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-1ab"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf5efcb4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/sv.png
104.18.27.216200 OK 342 B URL HTTP/2 entertainzer.com/img/flags/min/sv.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 0f13dc11fccbdd9a587353905c836b16
dbf9faf4f7d227c11a5ba77fd3ae09af52763b8c
ebd9138caa9f44e33b54636bdf819ae6ece1f72a1405e58f37724273f187adc4
GET /img/flags/min/sv.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 342
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-156"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf5f08b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/pl.png
104.18.27.216200 OK 256 B URL HTTP/2 entertainzer.com/img/flags/min/pl.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 0bf391411c6f06bef68cc4c369b9eba0
7773847a6c110241864cdb7760fc80c76011978b
51f29fd11cad81a8cbe246c0ee8d4f97fd8a04859fbf6a4517b7cce931e8ba34
GET /img/flags/min/pl.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 256
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-100"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf5efbb4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/zh.png
104.18.27.216200 OK 290 B URL HTTP/2 entertainzer.com/img/flags/min/zh.png
IP 104.18.27.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 329cca45f3a4c46ec249638ca4f8d6e0
98b23617ef88d3a4cd632839fe4180b0ee05a697
9c70b1a563b14ee447b6fc9c00532a73a1e09c500660ce8063d6b3fbce48ae47
GET /img/flags/min/zh.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: image/png
content-length: 290
last-modified: Tue, 06 Dec 2022 15:39:39 GMT
etag: "638f623b-122"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddfaf5fb4ee-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f7dcaa590e32cfd1c075255188d5f06
d4bb4954fefdb3b59560b54adf500e806e252e39
195795c2511b31519134f5eb4442d8708918ecaff72f8e821a5473ad7c97c448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5544
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:44 GMT
Last-Modified: Wed, 07 Dec 2022 06:52:20 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a4acd48df178d17fa1c0d0b5efdbf934
4a26acacfa9dba379aca98007fbe6cc2baf0aba3
e1d1488a8815657e7c828976d26cc5d9727630cb966be27999e801213eb29e76
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5306
Cache-Control: max-age=86701
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:44 GMT
Etag: "638ee8bf-116"
Expires: Thu, 08 Dec 2022 08:29:45 GMT
Last-Modified: Tue, 06 Dec 2022 07:01:19 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 642672
expires: Mon, 27 Nov 2023 08:24:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hnWwGs8u2CVc1quX2RaE%2BK0iLFPc6%2Fg%2F1W%2BBd%2Bd3JyXLZZPBBQQu8e3gPhHrKaNoQrqj3w2pSqbR%2FHkKUopGN44YsRV5k04NtnEqu0fIb5xImEK2iAKbDSG6C8ynZhcHNwF2aiqC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 775bdde048600b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash ca0163b98fe08400ca256eab5d2c4aa6
9f98a05573d6618a68e19da6f9b323bff4383193
49dc62f616be2b0f8db1221efc5885d66e53c5d96633d4fffb9f98a153bc40c9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4958
Cache-Control: max-age=104690
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:44 GMT
Etag: "638f3060-117"
Expires: Thu, 08 Dec 2022 13:29:34 GMT
Last-Modified: Tue, 06 Dec 2022 12:06:56 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
104.18.10.207200 OK 22 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (65325)
Hash 445424e9f58f0351f65405a1c6492110
0ca1b2040707c8974e75cdbce479f1420919850b
23e591f90480e9ddf7aa530d82b7c285f90211d5ef2325850f992eb6c7251154
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:36:43
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 077760acbd183a927852103cd8828058
cdn-cache: HIT
cf-cache-status: HIT
age: 3519250
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 775bdde0dd63b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato
142.250.74.106200 OK 607 B URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 142.250.74.106:0
Hash 32d8d244abd643c2063fb08c0f42cd88
c9356a4c60f0dcec17b4e5a440309e66685865ce
aeeabda89d783d18d05b3b588565d988ea1f3b200f711afa8383b697f4749818
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.191.210.155101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.191.210.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CxOZITye/K3RHM/dQIS81g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vKjy9+ZiYIYXNd0FV+m+CCLE+H4=
use.fontawesome.com/releases/v5.0.13/css/all.css
172.64.132.15200 OK 9.5 kB URL HTTP/2 use.fontawesome.com/releases/v5.0.13/css/all.css
IP 172.64.132.15:0
File type ASCII text, with very long lines (40884)
Hash 067a310d3df8ee3a1ebbd85ea7a9c1e0
9024d7a6a48e1f7aca73212b513c28788cf4e841
e0807811c00809db74e257de94db575c2121e6d0557ee644cbf905b9ce73cf4a
GET /releases/v5.0.13/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: text/css
x-amz-id-2: Jyt6zH/PDLrIETJLzAeOqO1m96HVCO+VCcgRpUENW2lIduShZzV5xN0ZieNV05dHGMDO/VBL/+Y=
x-amz-request-id: Z1M3EDAXGCNPM92B
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:27:31 GMT
etag: W/"d61bfe9b56c13ecff5313ee3abb45e8b"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 840788
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GAtrrR99Xq159CmSPWZzyleOiGBvW8uPjWOPwzjBe7hPNZo7VWkNf8mF51chI%2BtQfbi2ywy74bv7s6BLeRgHKNvwraYfMtnM9kg58t0ds3e%2B8V5bzzCNUFVV8AGJ6o2AZ40HRaf7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 775bdde10d377417-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/img/sprites/connsmythe-sprites.png
104.18.27.216200 OK 15 kB URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/img/sprites/connsmythe-sprites.png
IP 104.18.27.216:0
File type PNG image data, 300 x 213, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f6f69116ce39f0b56b9c9f7aa080d9b
2db6c7f5747315867afe28e0204fb59fd849bcef
5ca26ee807f7e5c6cb1a3e716efbe1ae68acc0a389fb78f2e525bb589db8726c
GET /theme/Master/SubscriptionPages/img/sprites/connsmythe-sprites.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:45 GMT
content-type: image/png
content-length: 14990
last-modified: Tue, 06 Dec 2022 15:39:38 GMT
etag: "638f623a-3a8e"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2703
expires: Wed, 07 Dec 2022 12:24:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdde21a2fb4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.1ca912b8.js
104.18.27.216200 OK 207 kB URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.1ca912b8.js
IP 104.18.27.216:0
Size 207 kB (207386 bytes)
Hash 8cdf87d524efc00c9f847d21e4cc48b9
4a09d3c27087223413c7564744a8449ae5fceed4
02a94319a951f2d9edb52d53a57c98701e5900fc2462e69af768c51b9a19ecb5
GET /theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.1ca912b8.js HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 06 Dec 2022 15:39:38 GMT
etag: W/"638f623a-6b8ea"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddfaf6bb4ee-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z
142.250.74.40200 OK 57 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z
IP 142.250.74.40:0
File type ASCII text, with very long lines (3788)
Hash 581a7e29338c911081189b97cbeb7d98
d8211cd66e27fb6bb61fa97824bc973ab4d4b936
7e8716522f78e3dde449634a7a9739cee395708c65c2b3c6c88b22ace2eb0694
GET /gtm.js?id=GTM-MMPL24Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Dec 2022 08:24:45 GMT
expires: Wed, 07 Dec 2022 08:24:45 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 56628
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
142.250.74.35200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:55 GMT
expires: Tue, 05 Dec 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 135110
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 08:24:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
entertainzer.com/theme/Master/SubscriptionPages/img/bg/connsmythe.jpg
104.18.27.216200 OK 229 kB URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/img/bg/connsmythe.jpg
IP 104.18.27.216:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 729x748, components 3\012- data
Size 229 kB (229330 bytes)
Hash 5565a68b343a9390bf655af103bea6b8
674ad59b51fad494071bb25692a557215256a24c
27ac17d4718b60d19207373dfcabeac8227bcd9192f99a5c2955b3b37b57e415
GET /theme/Master/SubscriptionPages/img/bg/connsmythe.jpg HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:45 GMT
content-type: image/jpeg
content-length: 229330
cf-bgj: h2pri
etag: "638f623a-37fd2"
last-modified: Tue, 06 Dec 2022 15:39:38 GMT
x-fruit: banana
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
expires: Wed, 07 Dec 2022 12:24:45 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdde20a0fb4ee-OSL
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-5.8.0-min.gz.js
54.230.245.185200 OK 18 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-5.8.0-min.gz.js
IP 54.230.245.185:0
File type ASCII text, with very long lines (58159)
Hash 208999c2bfaa80353f3f37c256fd3a3d
b980b8388a475167ed9c0bf908275e5ed6b9df0e
f01fc32845b584dea4dffebe4aaa74979b46798398de2cc98a4263d1bfbf5cf5
GET /libs/amplitude-5.8.0-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 18497
date: Thu, 27 Oct 2022 14:50:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 06 Dec 2019 21:57:52 GMT
etag: "208999c2bfaa80353f3f37c256fd3a3d"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: JayGW0K7hcKEk8hUb5nZ1QRH3tobN7O9
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YelLY9lhZtdQF6E1pSP0Hv_r64-Lddjsu1nm6GYJxTDUgkB3CoboNQ==
age: 3519265
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-916387.js?sv=7
143.204.55.84200 OK 72 kB URL HTTP/2 static.hotjar.com/c/hotjar-916387.js?sv=7
IP 143.204.55.84:0
File type ASCII text, with very long lines (5908)
Hash 2c13734e9ba863a15e89de4ae7b31127
420c77159a15aa4dfbc7da45ed2cf5086c3b9304
502620263ce4ad368d27c97e03b480f5719f55cae670dc4f1146c9f56b8b7837
GET /c/hotjar-916387.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Wed, 07 Dec 2022 08:24:45 GMT
cache-control: max-age=60
etag: W/2a3cf7ea4d8e645c197c6c205c6bafef
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wUvUNlNVXGSmbSeBa0gGnWHCcuj78qjfgap9ohLppS2hgOgyjjfdDQ==
age: 59
X-Firefox-Spdy: h2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.20200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.20:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rKCTxTfE7e3FW7-RQoFsyNhXNh7vmxzShVNrpyt-ag6oMlJRgPSnfg==
age: 1192479
X-Firefox-Spdy: h2
vc.hotjar.io/sessions/916387?s=0.25&r=0.18954006799735013
54.230.111.64204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/916387?s=0.25&r=0.18954006799735013
IP 54.230.111.64:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/916387?s=0.25&r=0.18954006799735013 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Wed, 07 Dec 2022 08:24:45 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: D5hZHjRiEt01flxlnjpqdRFi3CLYSH9Ih_oJLD2fLMRUzdGB3xNDyw==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash fb5ba15917a8e541ae8a4b4b5e492d30
4a1b0bdb1ec017a1450254f8e724169aaff9707c
4dada0192ab052a3611e4dfa9cf18cdd530a24d272e0dc719407f2285c5c3388
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 07 Dec 2022 08:24:45 GMT
Last-Modified: Wed, 07 Dec 2022 06:53:49 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -0EUhoSiGdeslcifr67kt6ran1SNB7LeYu7TxG5fKXhjOdI8SfNdPA==
Age: 5456
region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X>m=2oebu0&_p=2059550260&cid=1282442961.1670401485&ul=en-us&sr=1280x1024&_s=1&sid=1670401485&sct=1&seg=0&dl=https%3A%2F%2Fentertainzer.com%2Fregistration%3Ftheme%3Dm-2-panther%26v_id%3D0d131fc2-26d1-468f-4828-e2d2668645f8%26capo%3DaHVidHVybi5pbmZv%26entityId%3D2%26capoUrl%3Dhubturn.info%26page%3Dm-2-gotznet%26clickid%3Df9c8a360-722c-11ed-870b-0b57c13b8db6%26pubid%3D164869%26a_aid%3D6584sadgb11&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X>m=2oebu0&_p=2059550260&cid=1282442961.1670401485&ul=en-us&sr=1280x1024&_s=1&sid=1670401485&sct=1&seg=0&dl=https%3A%2F%2Fentertainzer.com%2Fregistration%3Ftheme%3Dm-2-panther%26v_id%3D0d131fc2-26d1-468f-4828-e2d2668645f8%26capo%3DaHVidHVybi5pbmZv%26entityId%3D2%26capoUrl%3Dhubturn.info%26page%3Dm-2-gotznet%26clickid%3Df9c8a360-722c-11ed-870b-0b57c13b8db6%26pubid%3D164869%26a_aid%3D6584sadgb11&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MGKXPW4W8X>m=2oebu0&_p=2059550260&cid=1282442961.1670401485&ul=en-us&sr=1280x1024&_s=1&sid=1670401485&sct=1&seg=0&dl=https%3A%2F%2Fentertainzer.com%2Fregistration%3Ftheme%3Dm-2-panther%26v_id%3D0d131fc2-26d1-468f-4828-e2d2668645f8%26capo%3DaHVidHVybi5pbmZv%26entityId%3D2%26capoUrl%3Dhubturn.info%26page%3Dm-2-gotznet%26clickid%3Df9c8a360-722c-11ed-870b-0b57c13b8db6%26pubid%3D164869%26a_aid%3D6584sadgb11&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://entertainzer.com
date: Wed, 07 Dec 2022 08:24:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2467
Expires: Wed, 07 Dec 2022 09:05:53 GMT
Date: Wed, 07 Dec 2022 08:24:46 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2467
Expires: Wed, 07 Dec 2022 09:05:53 GMT
Date: Wed, 07 Dec 2022 08:24:46 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2467
Expires: Wed, 07 Dec 2022 09:05:53 GMT
Date: Wed, 07 Dec 2022 08:24:46 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2467
Expires: Wed, 07 Dec 2022 09:05:53 GMT
Date: Wed, 07 Dec 2022 08:24:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: va_vly0iX6rzm_aTWrryPRjoTWlI-_0m6rpS6VrTx-nsd71dk1cSZw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 08:32:46 GMT
age: 85920
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tGtiCE9C3j0BUruNaFN2j1mKxCSouLmocmTXpmLMBJaLNyVwkXu1gQ==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 20:49:34 GMT
age: 41712
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b92721cbe24623f1713a5248d6a7c1b2
3628390c62642dcc375b28f58c9b48180c4abd73
37d0451c03bc7cf0253aba6d3204cbf38502692a0fbc751a3ead01b07e9a65d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9613
x-amzn-requestid: 31270e51-34df-4980-9221-e21a5521b3de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clZQYHzvoAMFvdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ba268-509300b867fcbfb71a7cf6ad;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 19:24:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xk1sLSRBl1t872eGrnw1dVjQO7XvAM4NDFd5Y0wKjdvkKtaqDneEKg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:01:54 GMT
age: 37372
etag: "3628390c62642dcc375b28f58c9b48180c4abd73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F849e6cc4-2b6a-4e78-ba2e-d46bfbadd6ba.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F849e6cc4-2b6a-4e78-ba2e-d46bfbadd6ba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0a317faf49d8e057d1da40f9441b6c30
f01497a3eef693b70b18885156f63c9c7305ed7e
5687e273eefa9ba3733fabe234e52bc7db87b4ec6244d12077c5816ae7961576
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F849e6cc4-2b6a-4e78-ba2e-d46bfbadd6ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12259
x-amzn-requestid: db1b424e-af8a-4a6f-92dc-27ccf3256d25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: coKPCHc9oAMFygg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638cbd93-56c293d73368cab66819d31e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 15:32:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VsWEwb3ynI-AP3uWwVHM6I7aY3f0TBLvge2Znt7hNIXlNtMbvpKmBQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:00:53 GMT
age: 1433
etag: "f01497a3eef693b70b18885156f63c9c7305ed7e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e484ee7-12d9-41dc-b674-890c51c30626.png
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e484ee7-12d9-41dc-b674-890c51c30626.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b079607b368263e3517dd30250f5f2af
a1b7863c70f1d501560a5b2fb4442f4835f94341
e7ed3ed2aca312d82fb017e06c6493fafffff9a603d1498c9c05355c08b444e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e484ee7-12d9-41dc-b674-890c51c30626.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5913
x-amzn-requestid: 355ca338-7d8e-4a60-a491-0509d0ff32d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cvlirF3DIAMF-vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638fb610-5bff7b5b3984102e1ef0e737;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RlnA4SSUIbIVtGBxqBtabKw58aXWE-jGIKLZ4DnoTiGzvH5bzBOUbA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 21:57:19 GMT
etag: "a1b7863c70f1d501560a5b2fb4442f4835f94341"
content-type: image/jpeg
age: 37647
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/916387/visit-data?sv=7
99.80.127.52200 OK 10 kB URL HTTP/2 in.hotjar.com/api/v2/client/sites/916387/visit-data?sv=7
IP 99.80.127.52:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 34f446b444bb7ade20074e5196395dd2
c53045d5c445b66d511c059f13847528570fd9dd
f94193a40ffcd1b289f577a94eb6f562ff716015045da87a93d0c30ea569fe79
POST /api/v2/client/sites/916387/visit-data?sv=7 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 148
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:46 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Libre+Baskerville:400,400i&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Libre+Baskerville:400,400i&display=swap
IP 142.250.74.106:0
GET /css?family=Libre+Baskerville:400,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans
IP 142.250.74.106:0
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.27c23153.js
104.18.27.216200 OK 0 B URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.27c23153.js
IP 104.18.27.216:0
GET /theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.27c23153.js HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: application/javascript; charset=utf-8
last-modified: Tue, 06 Dec 2022 15:39:38 GMT
etag: W/"638f623a-13fb"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 2702
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddfaf6cb4ee-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:200,300,400
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:200,300,400
IP 142.250.74.106:0
GET /css?family=Oswald:200,300,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.95eefa89.css
104.18.27.216200 OK 0 B URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.95eefa89.css
IP 104.18.27.216:0
GET /theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.95eefa89.css HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: text/css
last-modified: Tue, 06 Dec 2022 15:39:38 GMT
vary: Accept-Encoding
etag: W/"638f623a-5d15"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: HIT
age: 2703
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf0ea1b4ee-OSL
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
104.18.27.216200 OK 0 B URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
IP 104.18.27.216:0
GET /theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-panther&v_id=0d131fc2-26d1-468f-4828-e2d2668645f8&capo=aHVidHVybi5pbmZv&entityId=2&capoUrl=hubturn.info&page=m-2-gotznet&clickid=f9c8a360-722c-11ed-870b-0b57c13b8db6&pubid=164869&a_aid=6584sadgb11
Cookie: CakeCookie[a_aid]=NjU4NHNhZGdiMTE%3D; CakeCookie[capo]=YUhWaWRIVnliaTVwYm1adg%3D%3D; CakeCookie[capoUrl]=aHVidHVybi5pbmZv; CakeCookie[clickid]=ZjljOGEzNjAtNzIyYy0xMWVkLTg3MGItMGI1N2MxM2I4ZGI2; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTY0ODY5; CakeCookie[v_id]=MGQxMzFmYzItMjZkMS00NjhmLTQ4MjgtZTJkMjY2ODY0NWY4
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 08:24:44 GMT
content-type: text/css
last-modified: Tue, 06 Dec 2022 15:39:38 GMT
vary: Accept-Encoding
etag: W/"638f623a-9837"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: HIT
age: 2703
expires: Wed, 07 Dec 2022 12:24:44 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 775bdddf0ea3b4ee-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Abel
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Abel
IP 142.250.74.106:0
GET /css?family=Abel HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Yanone+Kaffeesatz
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Yanone+Kaffeesatz
IP 142.250.74.106:0
GET /css?family=Yanone+Kaffeesatz HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat
IP 142.250.74.106:0
GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,200,300,400,500,600,700,800,900
IP 142.250.74.106:0
GET /css?family=Roboto:100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway:400,400i&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway:400,400i&display=swap
IP 142.250.74.106:0
GET /css?family=Raleway:400,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Candal
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Candal
IP 142.250.74.106:0
Analyzer Verdict Alert fortinet Malware
GET /css?family=Candal HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Anton
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Anton
IP 142.250.74.106:0
GET /css?family=Anton HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Noto+Sans
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans
IP 142.250.74.106:0
GET /css?family=Noto+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 08:24:44 GMT
date: Wed, 07 Dec 2022 08:24:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2