firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 30 Aug 2022 20:26:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: miz-Qlj7K7fuJUb6QIpc0xb_39HbD06ucPf-Gnk-zuZKoksqUsmBlw==
Age: 2609
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 517693963cc46e7a35a054296d0edfd5
11dfcd7e118e5f8d31e664e56ac29c57f973b8b3
ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5463
Expires: Tue, 30 Aug 2022 22:40:34 GMT
Date: Tue, 30 Aug 2022 21:09:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 29 Aug 2022 22:35:59 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: JRXt1HuPQn6MQHcXZ-TCSfs26XGrK-OvxNNbJ9i7vOgyNmFIHxAPvg==
age: 81213
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:09:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
eu.gotbstgifts.click/sk/s22i13/brand/heureka/?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=77149161-07cb-43e9-8488-1c6ddd73ec00&osv=macOS%2010.15.7&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYxODkzNzU0IiwiaGFzaCI6IjMxZjI3MTM5MWE0ZjBkODljOTg3NTM3NDU3NDY0YWUwOGI2MTA5ODQifQ==&td=ss.redirectsstm.click&bemobdata=c=5bd4198c-8aa2-4962-a1b3-41fedfcefd28..l=77149161-07cb-43e9-8488-1c6ddd73ec00..a=0..b=4..r=ss.redirectsstm.click
164.92.232.111302 Found 0 B URL HTTP/1.1 eu.gotbstgifts.click/sk/s22i13/brand/heureka/?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=77149161-07cb-43e9-8488-1c6ddd73ec00&osv=macOS%2010.15.7&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYxODkzNzU0IiwiaGFzaCI6IjMxZjI3MTM5MWE0ZjBkODljOTg3NTM3NDU3NDY0YWUwOGI2MTA5ODQifQ==&td=ss.redirectsstm.click&bemobdata=c=5bd4198c-8aa2-4962-a1b3-41fedfcefd28..l=77149161-07cb-43e9-8488-1c6ddd73ec00..a=0..b=4..r=ss.redirectsstm.click
IP 164.92.232.111:0
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sk/s22i13/brand/heureka/?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=77149161-07cb-43e9-8488-1c6ddd73ec00&osv=macOS%2010.15.7&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYxODkzNzU0IiwiaGFzaCI6IjMxZjI3MTM5MWE0ZjBkODljOTg3NTM3NDU3NDY0YWUwOGI2MTA5ODQifQ==&td=ss.redirectsstm.click&bemobdata=c=5bd4198c-8aa2-4962-a1b3-41fedfcefd28..l=77149161-07cb-43e9-8488-1c6ddd73ec00..a=0..b=4..r=ss.redirectsstm.click HTTP/1.1
Host: eu.gotbstgifts.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 30 Aug 2022 21:09:32 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Location: https://7ktpj.bemobtrcks.com/go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=77149161-07cb-43e9-8488-1c6ddd73ec00&osv=macOS%2010.15.7&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYxODkzNzU0IiwiaGFzaCI6IjMxZjI3MTM5MWE0ZjBkODljOTg3NTM3NDU3NDY0YWUwOGI2MTA5ODQifQ==&td=ss.redirectsstm.click&bemobdata=c=5bd4198c-8aa2-4962-a1b3-41fedfcefd28..l=77149161-07cb-43e9-8488-1c6ddd73ec00..a=0..b=4..r=ss.redirectsstm.click
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4d5ad5ba3e6df1244552ec373a9621d1
3d3197c8bdc2f67fea4ee74e94f7ecc16d8c048a
68ea321c552c34435a25f078328ee769051db1bc8e31e21306acf66fcea5b901
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "68EA321C552C34435A25F078328EE769051DB1BC8E31E21306ACF66FCEA5B901"
Last-Modified: Tue, 30 Aug 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14146
Expires: Wed, 31 Aug 2022 01:05:18 GMT
Date: Tue, 30 Aug 2022 21:09:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 30 Aug 2022 20:17:12 GMT
Expires: Tue, 30 Aug 2022 20:26:51 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: eOeoAuMNd_ajzgY1M8MS7pI9ZfrkRr8Et5H975eAOPYhPdfATpdtTQ==
Age: 3140
7ktpj.bemobtrcks.com/go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=77149161-07cb-43e9-8488-1c6ddd73ec00&osv=macOS%2010.15.7&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYxODkzNzU0IiwiaGFzaCI6IjMxZjI3MTM5MWE0ZjBkODljOTg3NTM3NDU3NDY0YWUwOGI2MTA5ODQifQ==&td=ss.redirectsstm.click&bemobdata=c=5bd4198c-8aa2-4962-a1b3-41fedfcefd28..l=77149161-07cb-43e9-8488-1c6ddd73ec00..a=0..b=4..r=ss.redirectsstm.click
3.70.16.242302 Found 260 B URL HTTP/2 7ktpj.bemobtrcks.com/go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=77149161-07cb-43e9-8488-1c6ddd73ec00&osv=macOS%2010.15.7&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYxODkzNzU0IiwiaGFzaCI6IjMxZjI3MTM5MWE0ZjBkODljOTg3NTM3NDU3NDY0YWUwOGI2MTA5ODQifQ==&td=ss.redirectsstm.click&bemobdata=c=5bd4198c-8aa2-4962-a1b3-41fedfcefd28..l=77149161-07cb-43e9-8488-1c6ddd73ec00..a=0..b=4..r=ss.redirectsstm.click
IP 3.70.16.242:0
File type HTML document, ASCII text, with no line terminators
Hash 2a5b5f878abc771f5499a912b9a3a38d
dc98264bf48ff8d2d8a3a553d722cfb0f1748a48
2dfe3a2d0f33e36a167824f464ac365867f0c2091762cc29724079028be4cf2b
GET /go/75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3?ts=08e29a07-b84a-41cf-a9c0-1cb114072fbc&camp=&zone=&landid=77149161-07cb-43e9-8488-1c6ddd73ec00&osv=macOS%2010.15.7&isp=Google%20Cloud&tid=08e29a07-b84a-41cf-a9c0-1cb114072fbc&key=eyJ0aW1lc3RhbXAiOiIxNjYxODkzNzU0IiwiaGFzaCI6IjMxZjI3MTM5MWE0ZjBkODljOTg3NTM3NDU3NDY0YWUwOGI2MTA5ODQifQ==&td=ss.redirectsstm.click&bemobdata=c=5bd4198c-8aa2-4962-a1b3-41fedfcefd28..l=77149161-07cb-43e9-8488-1c6ddd73ec00..a=0..b=4..r=ss.redirectsstm.click HTTP/1.1
Host: 7ktpj.bemobtrcks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: openresty
date: Tue, 30 Aug 2022 21:09:32 GMT
content-type: text/html; charset=utf-8
content-length: 260
access-control-allow-origin: *
location: https://ungroudonchan.com/4/4598789?ymid=2N51guBPknAcaxz357JvP2&var=074b5bba-80ab-4a33-86df-edbd736e35eb
set-cookie: bemob-uniq-visit:75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3=1; Domain=7ktpj.bemobtrcks.com; Path=/; Expires=Wed, 31 Aug 2022 21:09:32 GMT; HttpOnly; Secure; SameSite=None
bemob-rotation:75ef24d0-aa3e-4f3b-86d4-929dd1c8dad3:random:bcad9fbed5d562e339b2ddf45707a26c=0-0-10; Domain=7ktpj.bemobtrcks.com; Path=/; Expires=Wed, 31 Aug 2022 21:09:32 GMT; HttpOnly; Secure; SameSite=None
bemob-click-id=2N51guBPknAcaxz357JvP2; Domain=7ktpj.bemobtrcks.com; Path=/; Expires=Wed, 31 Aug 2022 21:09:32 GMT; HttpOnly; Secure; SameSite=None
vary: Accept
x-response-time: 21.764ms
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bb4efe4a3025ec7072ba8fe68ba458b1
a0080af5408c446298564aea4b76c7f176b3938d
054b91f5b31bebc073ef0d5ab73284bd5a4728e7375c8488ccafa95b4b04ff7d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "054B91F5B31BEBC073EF0D5AB73284BD5A4728E7375C8488CCAFA95B4B04FF7D"
Last-Modified: Sun, 28 Aug 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15847
Expires: Wed, 31 Aug 2022 01:33:39 GMT
Date: Tue, 30 Aug 2022 21:09:32 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f67e41cdd7e5f2aa8f93d031979c9109
5f4c0093f9bf8f8e48e0d7f56ed31aba0c6f43f6
608e2b7d208977f18da12165c9eb1539656d7754dc49f3f687736151a4810e06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2041
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:09:32 GMT
Last-Modified: Tue, 30 Aug 2022 20:35:31 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ungroudonchan.com/favicon.ico
139.45.197.238204 No Content 0 B URL HTTP/2 ungroudonchan.com/favicon.ico
IP 139.45.197.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: ungroudonchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: OAID=d874b628e7234f66877c246d6e107e35; oaidts=1661889677
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 30 Aug 2022 21:09:32 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
pragma: public
cache-control: max-age=315360000, public, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.212.156.122101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.212.156.122:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zxQOTNWE51sgfc1CaRiFGg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pIUMGTfpmcrzJRe7Ldgun8aC8ow=
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 9bff5b388e91cc067521e4269f699c96
d20d93c4ed1b30a5e65d3a37c8873836a2e5c291
3eea78d8113b58b2df1579c2b97582cfa5a3fe5617254666cf7dce18ae78ae8e
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 30 Aug 2022 21:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 29 Aug 2022 06:25:19 GMT
Expires: Mon, 05 Sep 2022 06:25:18 GMT
Etag: "d20d93c4ed1b30a5e65d3a37c8873836a2e5c291"
Cache-Control: max-age=464745,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743082100e3cb52d-OSL
my.rtmark.net/img.gif?f=merge&userId=d874b628e7234f66877c246d6e107e35
139.45.195.8200 OK 43 B URL HTTP/2 my.rtmark.net/img.gif?f=merge&userId=d874b628e7234f66877c246d6e107e35
IP 139.45.195.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
POST /img.gif?f=merge&userId=d874b628e7234f66877c246d6e107e35 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Cookie: ID=d874b628e7234f66877c246d6e107e35
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:09:33 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: null
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=d874b628e7234f66877c246d6e107e35; expires=Wed, 30 Aug 2023 21:09:33 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ungroudonchan.com/4/4598789?ymid=2N51guBPknAcaxz357JvP2&var=074b5bba-80ab-4a33-86df-edbd736e35eb
139.45.197.238200 OK 825 B URL HTTP/2 ungroudonchan.com/4/4598789?ymid=2N51guBPknAcaxz357JvP2&var=074b5bba-80ab-4a33-86df-edbd736e35eb
IP 139.45.197.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (378)
Hash d3b450139d2ad0d65301f353330a1b55
661f7702a648e1d1d7abae26780cda552d364d86
82273e5ed47925af899c8734b8662668c5928c0721d7f1b2fe32d72ea72193a5
Analyzer Verdict Alert quad9 Sinkholed
GET /4/4598789?ymid=2N51guBPknAcaxz357JvP2&var=074b5bba-80ab-4a33-86df-edbd736e35eb HTTP/1.1
Host: ungroudonchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: OAID=d874b628e7234f66877c246d6e107e35; oaidts=1661889677
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 21:09:32 GMT
content-type: text/html; charset=utf8
x-trace-id: cfea3d80541fbf2abe465d01e3ecc822
link: <https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://my.rtmark.net>; rel="preconnect dns-prefetch", <https://cpaleed.click>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-credentials: true
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=d874b628e7234f66877c246d6e107e35; expires=Wed, 30 Aug 2023 21:09:32 GMT; path=/; secure; SameSite=None
oaidts=1661889677; expires=Wed, 30 Aug 2023 21:09:32 GMT; path=/; secure; SameSite=None
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *, *
access-control-allow-methods: GET, POST, OPTIONS, POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Accept, Content-Type, Content-Length, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5b8960faf76d38e7d3065e70ce82d2f8
f33cb1a19987ed9419000ae07daaff5e0f669c34
ac12e3c944c97860554ff46bffb97c94667e25fb3fe01d9ad9697aecf10946e2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 30 Aug 2022 21:09:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 27 Aug 2022 21:49:48 GMT
Expires: Sat, 03 Sep 2022 21:49:47 GMT
Etag: "f33cb1a19987ed9419000ae07daaff5e0f669c34"
Cache-Control: max-age=347413,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74308213f9c1b52d-OSL
health-beauty.shop/simple-chicken-sausage/
63.250.43.15200 OK 10 kB URL HTTP/2 health-beauty.shop/simple-chicken-sausage/
IP 63.250.43.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 710b070065b2b8c0efe25da305666619
d44539ceef864731571a68281134cccb0fade23f
8f0d2511187aebf275457d4118427fd67c51dce1da0c7279d1eb674fd2cc54fe
GET /simple-chicken-sausage/ HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:22 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-pingback: https://health-beauty.shop/xmlrpc.php
link: <https://health-beauty.shop/wp-json/>; rel="https://api.w.org/", <https://health-beauty.shop/wp-json/wp/v2/posts/12>; rel="alternate"; type="application/json", <https://health-beauty.shop/?p=12>; rel=shortlink
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public
referrer-policy: strict-origin-when-cross-origin
content-encoding: gzip
x-cacheable: YES
age: 30850
x-cache: HIT
accept-ranges: bytes
content-length: 10115
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fe244465a99d48f257a3dda7ab28c6b8
69c89374520ca54adda7fd15ccb069def5fb3663
8f9938ffef09d02563d617ac9ff1ce97b05c5bf52b64f6724b9f19a5e90965f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:09:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fe244465a99d48f257a3dda7ab28c6b8
69c89374520ca54adda7fd15ccb069def5fb3663
8f9938ffef09d02563d617ac9ff1ce97b05c5bf52b64f6724b9f19a5e90965f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:09:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fe244465a99d48f257a3dda7ab28c6b8
69c89374520ca54adda7fd15ccb069def5fb3663
8f9938ffef09d02563d617ac9ff1ce97b05c5bf52b64f6724b9f19a5e90965f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:09:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Jost%3Aital%2Cwght%400%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C100%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900&ver=6.0.1
142.250.74.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Jost%3Aital%2Cwght%400%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C100%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900&ver=6.0.1
IP 142.250.74.10:0
Hash 74d201ac6aafadeb0b81fb4fc6218449
e810933bcee99889519985c66a26d5c31bbbd9d4
e0e30234b785261942eec5012d7bd2135359cc16a9424e1ee72d8ce3b4336a66
GET /css?family=Jost%3Aital%2Cwght%400%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C100%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900&ver=6.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 30 Aug 2022 21:09:33 GMT
date: Tue, 30 Aug 2022 21:09:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
health-beauty.shop/wp-includes/css/dist/block-library/style.min.css?ver=6.0.1
63.250.43.15200 OK 12 kB URL HTTP/2 health-beauty.shop/wp-includes/css/dist/block-library/style.min.css?ver=6.0.1
IP 63.250.43.15:0
File type ASCII text, with very long lines (43771)
Hash 88f413500303dc21250157a6aa913a32
ca138ec102d96e6d7b30bf83b7dab60a16f0b5d6
65e072ca8d53bf38d5dde355a039a61f6c7204206a9a58ded75d2d2730cc0999
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Thu, 11 Aug 2022 12:21:01 GMT
vary: Accept-Encoding
etag: W/"62f4f42d-15b64"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 11683
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8118
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:09:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8118
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:09:34 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Playfair%20Display%3Aital%2Cwght%400%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900%7CJost%3Aital%2Cwght%400%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C100%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900
142.250.74.10200 OK 1.5 kB URL HTTP/2 fonts.googleapis.com/css?family=Playfair%20Display%3Aital%2Cwght%400%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900%7CJost%3Aital%2Cwght%400%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C100%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900
IP 142.250.74.10:0
Hash 4d0b7bd55540308be72a144bdb79b6d4
27731b1d7506a4eae4ca30880cf44882c9e87923
fb8c748f2b57fc06f2c28516e71faaa3a42fd974d69fc66d5371c44f76174419
GET /css?family=Playfair%20Display%3Aital%2Cwght%400%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900%7CJost%3Aital%2Cwght%400%2C100%3B0%2C200%3B0%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C100%3B1%2C200%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 30 Aug 2022 21:09:33 GMT
date: Tue, 30 Aug 2022 21:09:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8483eb99dbd130593ed0072e2fbaccf9
fcb83f0b4a448f0b94b0bf9db431cc802413dacd
5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74"
Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8118
Expires: Tue, 30 Aug 2022 23:24:52 GMT
Date: Tue, 30 Aug 2022 21:09:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91310bc1fb5ae0efa502a9bafe046399
ec2a4baf0a21c1738a541d89756cccd6f3bef5fd
5fe0511116c6bd2d6e668c69764905c3a5c93fa23a4dc207b0f4b1604783ceb6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5925
x-amzn-requestid: fa7479ef-c5db-45ce-a973-a8831df14931
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpS-ZFH1IAMFsFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d31f5-1a9b0a43065d731b4cc61ed3;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 21:39:01 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: DBxGjmVUCTjHUrOzLWp37FwLUUo_5CykjgxAeCAaw1TlodWSmbnCrA==
via: 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 29 Aug 2022 21:46:33 GMT
age: 84181
etag: "ec2a4baf0a21c1738a541d89756cccd6f3bef5fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87425d52d274ccbc12298aa7a47395f2
b2866f84f93b73d97e9aecfa2293ff47131b6d67
2284c74b04493c7a67907b2477bac252832f3550c6a7e57c221abefc45a12549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8478
x-amzn-requestid: 99612ef5-edb6-4e49-87bf-6ecd3071f5de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpSwNG0IIAMFqkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d319a-58b190387602d9643315f916;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7lkRCgMl7VuI6UsFWnL0VCvy9XZ-Du8MJZS7HWzmr6S88CjzENGurw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 29 Aug 2022 21:50:47 GMT
age: 83927
etag: "b2866f84f93b73d97e9aecfa2293ff47131b6d67"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19e4053-4c42-4436-ba83-5e76fd16f5a4.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19e4053-4c42-4436-ba83-5e76fd16f5a4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0502c5060f29d82fd10f9f79459e2ce0
110f2eecf72c6b89f250ebefeff5ef664dc2f3f6
f722656c432bbec2baa63b6edc4116c1996850462864456105d9fea9c3bc7ff4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb19e4053-4c42-4436-ba83-5e76fd16f5a4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10056
x-amzn-requestid: 2eb7bbf2-47ad-4f80-98e8-ecb45e98961b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xguh2H_woAMFXnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309c472-7dda060b4e7c81262aef3421;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 07:14:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1cunCq4Z1J-oQSmTlcAtgfXO0A4_XpHKl2UHpRCbf75--3eHEIgZGQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 07:36:27 GMT
age: 48787
etag: "110f2eecf72c6b89f250ebefeff5ef664dc2f3f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa91a5094-5af6-430d-993d-243427b324ba.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa91a5094-5af6-430d-993d-243427b324ba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82bc1c69018845280d29653d6b2d6f8d
0c122f15422cab7ee3461e8fa657183ae54adcc5
e221638eff281c27ef4656f76e64963718186285c57e50a8958bd3065e662674
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa91a5094-5af6-430d-993d-243427b324ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9980
x-amzn-requestid: b9f6b930-9c47-41b9-879d-ce239e39f033
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpTMGHlNoAMFuoA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d324d-72ea52c010dff34438bbca28;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: orq6ucCez7UBzTSPTyJR8u8ZYf1VOV_zPOLsJFvGD2jfiW0YJmxVSg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 29 Aug 2022 21:47:30 GMT
age: 84124
etag: "0c122f15422cab7ee3461e8fa657183ae54adcc5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac04243-b8b9-46aa-ad1f-285d333e6c88.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac04243-b8b9-46aa-ad1f-285d333e6c88.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9f9132960db725a095b0db1773dc6f69
bf1d4347e1641da5aebe6ae438c0431232ae6242
0e0b84df674d48517a04819604deb555c904518f093784691de4914b6ddb9e9d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac04243-b8b9-46aa-ad1f-285d333e6c88.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10672
x-amzn-requestid: 9044b578-ffc7-4890-a16f-bf6d5e242f46
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XnTWcEUnoAMF_UA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630c65c2-4397932f1417f6ab2463c4b0;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 07:07:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vqHJR_zF8qR54qyIPx-Dqsh6kwjgRmcSF8imM4PLacc4PjhyxvI6ww==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 30 Aug 2022 07:44:52 GMT
age: 48282
etag: "bf1d4347e1641da5aebe6ae438c0431232ae6242"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67641144-189e-4213-b00d-7d27d45f0e9b.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67641144-189e-4213-b00d-7d27d45f0e9b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4aa2a22c2851d082acd55c1c9782cee9
20b6a116eb4d8a7c1321e09c7ad4d8aa1269603e
d0d6a3cc781786f5377191e2b1f3495ac76f4f8af7c56291f761a49a167b8726
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67641144-189e-4213-b00d-7d27d45f0e9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8684
x-amzn-requestid: b1f808e9-a765-453f-a7cb-2054d3dd45e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XpTRyGxKIAMFXkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630d3271-79de3e365428be651400d407;Sampled=0
x-amzn-remapped-date: Mon, 29 Aug 2022 21:41:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ciFN36F5h8hh3JPmeHR2WtZQcb4F1OUZFUnwntZfTwgST3EkV9Vy1Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Mon, 29 Aug 2022 21:52:03 GMT
age: 83851
etag: "20b6a116eb4d8a7c1321e09c7ad4d8aa1269603e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
health-beauty.shop/wp-includes/css/dashicons.min.css?ver=6.0.1
63.250.43.15200 OK 36 kB URL HTTP/2 health-beauty.shop/wp-includes/css/dashicons.min.css?ver=6.0.1
IP 63.250.43.15:0
File type ASCII text, with very long lines (58981)
Hash 8feeb31c2c2b1eac8f5dac3b20f6016d
9d9797e1a9e800bb6f9c5aea9eb9a0a1172a11fe
ea7991c406d76572a7d81ea53e3f78d70b4327fd50f759fd941047d66bf9b754
GET /wp-includes/css/dashicons.min.css?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Wed, 15 Jun 2022 13:01:57 GMT
vary: Accept-Encoding
etag: W/"62a9d845-e688"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 35749
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/plugins/post-views-counter/css/frontend.css?ver=1.3.11
63.250.43.15200 OK 201 B URL HTTP/2 health-beauty.shop/wp-content/plugins/post-views-counter/css/frontend.css?ver=1.3.11
IP 63.250.43.15:0
File type ASCII text, with CR line terminators
Hash defa99f71ec3ae214e291b8538bc3312
979abd43365a35b2e2cfd9e50d434d785ed4e13f
a30f387093fbab843cf9d43be1e3b80320060196a16b6fa78c81726a15bbb1b2
GET /wp-content/plugins/post-views-counter/css/frontend.css?ver=1.3.11 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Thu, 11 Aug 2022 12:26:26 GMT
vary: Accept-Encoding
etag: W/"62f4f572-121"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 201
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0
63.250.43.15200 OK 652 B URL HTTP/2 health-beauty.shop/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0
IP 63.250.43.15:0
Hash 4e37be0c8c25be4f6179bcc153976542
91f476f1fad3fdccdc1a9f14203c92eb854d4331
cd5c1f1dcaf44b74b63c4135a4c647fcae6c9d07a866f2c0bad7b7bf416c92bc
GET /wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Thu, 11 Aug 2022 12:28:19 GMT
vary: Accept-Encoding
etag: W/"62f4f5e3-a99"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 652
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/css/bootstrap.css?ver=6.0.1
63.250.43.15200 OK 23 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/css/bootstrap.css?ver=6.0.1
IP 63.250.43.15:0
File type ASCII text, with very long lines (683), with CRLF line terminators
Hash 6bfe6c7964f87384f0d68848f159cb18
7e2f24e13a168b4f9eb0c5ff58d1f4c625f18ed7
ccec13b28d842e62156a0e25a082ce34708bbd6715943ea272b11bf5b94abeba
GET /wp-content/themes/beauty-salon-spa/assets/css/bootstrap.css?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
vary: Accept-Encoding
etag: W/"62f4f68d-31136"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 22592
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-hair-salon/style.css?ver=6.0.1
63.250.43.15200 OK 2.9 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-hair-salon/style.css?ver=6.0.1
IP 63.250.43.15:0
File type Unicode text, UTF-8 text, with very long lines (1230)
Hash 26f406ec298d45be5ba9129c00f7c627
9082b17bf53ce9581528d8f3dd2013483764d4da
f0c5bdf7b91ac4ff03d7b5c86f22aba134bd99f79fb8ca7c6e0236f02f6824c0
GET /wp-content/themes/beauty-hair-salon/style.css?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Thu, 11 Aug 2022 12:31:08 GMT
vary: Accept-Encoding
etag: W/"62f4f68c-1f9c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 2885
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/css/fontawesome-all.css?ver=6.0.1
63.250.43.15200 OK 8.0 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/css/fontawesome-all.css?ver=6.0.1
IP 63.250.43.15:0
File type ASCII text, with very long lines (317), with CRLF line terminators
Hash 054efa1802af22243322b59a1de3bbd6
938af2c96e1e642e914778b9708d0351b47b00bc
b4c23870b85c156d53b2be88d100d6b9d40f4e252474b2e48f73f778ce8c146b
GET /wp-content/themes/beauty-salon-spa/assets/css/fontawesome-all.css?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
vary: Accept-Encoding
etag: W/"62f4f68d-b350"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 8016
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/css/owl.carousel.css?ver=6.0.1
63.250.43.15200 OK 1.4 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/css/owl.carousel.css?ver=6.0.1
IP 63.250.43.15:0
Hash c4f140e9c23c8fea3e35a73aaf166d20
da5e7d62ee8a1ca5b6f47d84d39a0336e6a9e72b
9df7553202b710155aeb66167d387ee65e8a96b7fe1323a73bcd89e2a733d040
GET /wp-content/themes/beauty-salon-spa/assets/css/owl.carousel.css?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
vary: Accept-Encoding
etag: W/"62f4f68d-1288"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 1387
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/css/blocks.css?ver=6.0.1
63.250.43.15200 OK 3.0 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/css/blocks.css?ver=6.0.1
IP 63.250.43.15:0
File type ASCII text, with CRLF line terminators
Hash aeec3fede7ecfbe79c590e05cc016472
5c8f4c8d31eaaeaa6a6afcf54be1c6414e4e6bca
15901bc2935db1cc4f8fd28fca477d37606e7131557790886e26a57c0eab318d
GET /wp-content/themes/beauty-salon-spa/assets/css/blocks.css?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
vary: Accept-Encoding
etag: W/"62f4f68d-3ab8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 2961
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/style.css?ver=6.0.1
63.250.43.15200 OK 8.4 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/style.css?ver=6.0.1
IP 63.250.43.15:0
File type ASCII text, with very long lines (988), with CRLF line terminators
Hash 363aa5d23afe58dab1fe9cf273ca70af
b2aae406befba44b1f548579071d3685eb527f90
bc92d72731cdca152d2b6fbecb119f0ddfc332057c429c124e50ebd4a4c17d3c
GET /wp-content/themes/beauty-salon-spa/style.css?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
vary: Accept-Encoding
etag: W/"62f4f68d-89d4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 8391
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-hair-salon/style.css?ver=1.0.0
63.250.43.15200 OK 2.9 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-hair-salon/style.css?ver=1.0.0
IP 63.250.43.15:0
File type Unicode text, UTF-8 text, with very long lines (1230)
Hash 26f406ec298d45be5ba9129c00f7c627
9082b17bf53ce9581528d8f3dd2013483764d4da
f0c5bdf7b91ac4ff03d7b5c86f22aba134bd99f79fb8ca7c6e0236f02f6824c0
GET /wp-content/themes/beauty-hair-salon/style.css?ver=1.0.0 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: text/css
last-modified: Thu, 11 Aug 2022 12:31:08 GMT
vary: Accept-Encoding
etag: W/"62f4f68c-1f9c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 2885
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
63.250.43.15200 OK 31 kB URL HTTP/2 health-beauty.shop/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 63.250.43.15:0
File type ASCII text, with very long lines (65447)
Hash 7a6e4a1e4a67fac0cd39ca1dd1982f47
a8bf880e5db17a703293d5a3c92623a97d5a1df1
daf4bcb15594deb268cc05f030ccaf8dfe4acab417758dd16a6f3b2d86d2908f
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: application/javascript
last-modified: Wed, 15 Jun 2022 13:01:59 GMT
vary: Accept-Encoding
etag: W/"62a9d847-15db1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 30953
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
63.250.43.15200 OK 4.2 kB URL HTTP/2 health-beauty.shop/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 63.250.43.15:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: application/javascript
last-modified: Wed, 15 Jun 2022 13:01:59 GMT
vary: Accept-Encoding
etag: W/"62a9d847-2bd8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 4169
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.0.1
63.250.43.15200 OK 381 B URL HTTP/2 health-beauty.shop/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.0.1
IP 63.250.43.15:0
Hash 12eb5e9944774d723d7f904df78ce3eb
613234a194e8af7fa0f5075050d88bd50ab9ae7e
1648ddca27333bb1d731f1f00ca98d7e52d369ebb5b02431e1562d3deabac2d4
GET /wp-content/plugins/wp-automatic/js/main-front.js?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: application/javascript
last-modified: Thu, 11 Aug 2022 12:28:20 GMT
vary: Accept-Encoding
etag: W/"62f4f5e4-3f9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 381
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/js/navigation-focus.js?ver=1
63.250.43.15200 OK 297 B URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/js/navigation-focus.js?ver=1
IP 63.250.43.15:0
File type ASCII text, with CRLF line terminators
Hash 83ccd1442ed5f4579e9abd431fb8e634
3ea3353dce5ec61b31cde641146f5e97e489584d
71f317cb49c692e649892068e0e917f9bf2eb210104c67d6fdace9ab764673cd
GET /wp-content/themes/beauty-salon-spa/assets/js/navigation-focus.js?ver=1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: application/javascript
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
vary: Accept-Encoding
etag: W/"62f4f68d-34a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 297
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/js/jquery.superfish.js?ver=1
63.250.43.15200 OK 2.4 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/js/jquery.superfish.js?ver=1
IP 63.250.43.15:0
Hash 4e7f1acf05fa3d3a9d72be0e99e67175
fbb0007cd42b62def2964b686a6c6c1d4d4bc3bb
dbc9638fef407f34f63c8f6f8ca6ca85a47a0fd8fbe43e397d34a1c034c4f2bd
GET /wp-content/themes/beauty-salon-spa/assets/js/jquery.superfish.js?ver=1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: application/javascript
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
vary: Accept-Encoding
etag: W/"62f4f68d-1cff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 2374
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-includes/js/comment-reply.min.js?ver=6.0.1
63.250.43.15200 OK 1.4 kB URL HTTP/2 health-beauty.shop/wp-includes/js/comment-reply.min.js?ver=6.0.1
IP 63.250.43.15:0
File type ASCII text, with very long lines (2946)
Hash 28214bc78b9edfcfbc9c7b651fb4f56c
fb0847abdb33dd943a2dcda4c4b905fb5cdd116c
11691bc1acc1f3a7ab8ef7c67fb720ca58fb72e52f510009f7b0cbc2589d45e0
GET /wp-includes/js/comment-reply.min.js?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:37 GMT
content-type: application/javascript
last-modified: Wed, 15 Jun 2022 13:02:00 GMT
vary: Accept-Encoding
etag: W/"62a9d848-ba5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30836
x-cache: HIT
accept-ranges: bytes
content-length: 1351
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/js/owl.carousel.js?ver=1
63.250.43.15200 OK 20 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/js/owl.carousel.js?ver=1
IP 63.250.43.15:0
File type ASCII text, with very long lines (360)
Hash 2ccae3d4019f7d40f7561012198bd48b
27f38c196a1e5bbc33d63021bc9465cf0483c17f
4a3f7203a8450a16408aa0479ef5898ba87a911f1cfc00381aed3e194ef02872
GET /wp-content/themes/beauty-salon-spa/assets/js/owl.carousel.js?ver=1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: application/javascript
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
vary: Accept-Encoding
etag: W/"62f4f68d-15f88"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 20036
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/js/bootstrap.js?ver=1
63.250.43.15200 OK 20 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/js/bootstrap.js?ver=1
IP 63.250.43.15:0
File type ASCII text, with very long lines (315)
Hash 48b6be0ac1d4aae497460b9771ac2f1d
7c1fa4d111a7f4550dcce43e9fde8b37429e8ba3
d99acc64cea134434a73bee0320f94ac648f81c0344ffb6983656d14af15292c
GET /wp-content/themes/beauty-salon-spa/assets/js/bootstrap.js?ver=1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: application/javascript
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
vary: Accept-Encoding
etag: W/"62f4f68d-1c168"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 20137
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/js/theme-script.js?ver=1
63.250.43.15200 OK 747 B URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/js/theme-script.js?ver=1
IP 63.250.43.15:0
File type ASCII text, with CRLF line terminators
Hash bc784af37368d27155b10b97ee6ff7d2
a87098e2d9341d2a8e0eeb9f40b8b8973a9ab162
c238fc854d45bf7535e3697852634f5dc82c02c541349a5304e434f480b56736
GET /wp-content/themes/beauty-salon-spa/assets/js/theme-script.js?ver=1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:30 GMT
content-type: application/javascript
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
vary: Accept-Encoding
etag: W/"62f4f68d-70d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30843
x-cache: HIT
accept-ranges: bytes
content-length: 747
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-includes/js/wp-emoji-release.min.js?ver=6.0.1
63.250.43.15200 OK 5.0 kB URL HTTP/2 health-beauty.shop/wp-includes/js/wp-emoji-release.min.js?ver=6.0.1
IP 63.250.43.15:0
File type ASCII text, with very long lines (15660)
Hash 1b982d290af16dac5885f21a198aaa66
f847ca85d23c2f240938bbde0135f3de97925759
0b6e238cc0728a0bace390dfff472ff8bb5a5fd4714bcfcdac7c28621d67b8dc
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.1 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:37 GMT
content-type: application/javascript
last-modified: Wed, 15 Jun 2022 13:01:59 GMT
vary: Accept-Encoding
etag: W/"62a9d847-48b9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
content-encoding: gzip
x-cacheable: YES
age: 30836
x-cache: HIT
accept-ranges: bytes
content-length: 5004
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:09:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:09:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:09:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/jost/v14/92zJtBhPNqw73oHH7BbQp4-B6XlrZu0FBIokng.woff2
142.250.74.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zJtBhPNqw73oHH7BbQp4-B6XlrZu0FBIokng.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 10628, version 1.0\012- data
Hash adb5032769548ba53a787c6f1c19d540
ddd897593f80fe89d714c4107321a541fb5ef5aa
f462b8de6ec84d417324d2c283a34b70c115bc56311fd363cff8bb37d083cd0c
GET /s/jost/v14/92zJtBhPNqw73oHH7BbQp4-B6XlrZu0FBIokng.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://health-beauty.shop
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 20:05:23 GMT
expires: Tue, 29 Aug 2023 20:05:23 GMT
cache-control: public, max-age=31536000
age: 90251
last-modified: Mon, 11 Jul 2022 20:33:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:09:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7myRJTVBNIg.woff2
142.250.74.163200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7myRJTVBNIg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 10012, version 1.0\012- data
Hash ad57e7c303c98c098069883f76c6f4b6
67e09576458b4f21321fdc9715844b0a9d020841
c99aaa9d35986f17f4b940fdb18ad3eb19eaa6afca98f0ca60b3477c4bd0f819
GET /s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7myRJTVBNIg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://health-beauty.shop
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10012
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Aug 2022 06:11:42 GMT
expires: Fri, 25 Aug 2023 06:11:42 GMT
cache-control: public, max-age=31536000
age: 485872
last-modified: Mon, 11 Jul 2022 20:35:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:09:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKebunDXbtM.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKebunDXbtM.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 21172, version 1.0\012- data
Hash 0020e4d3674b3f5932555041a49fc908
52e67d4a4413eb048653a73950db8cef3db90844
a9f91ad2b8f5bf5fac0387ac411ed3429bf9fc6d22d37784bb8aeceb68101434
GET /s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKebunDXbtM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://health-beauty.shop
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:30:52 GMT
expires: Tue, 29 Aug 2023 21:30:52 GMT
cache-control: public, max-age=31536000
age: 85122
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 19860, version 1.0\012- data
Hash a95e391373ad634c3b7dbaf77de3f40e
ddc4638bc28c21a400fcd2df94448743f198a257
fa3d5a0422c9b413abb4c78f8ff80de8a8ed58766f7110c82febf5296e899b47
GET /s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://health-beauty.shop
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 22:46:25 GMT
expires: Tue, 29 Aug 2023 22:46:25 GMT
cache-control: public, max-age=31536000
age: 80589
last-modified: Mon, 18 Jul 2022 19:06:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7mwjIjVBNIg.woff2
142.250.74.163200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7mwjIjVBNIg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 10004, version 1.0\012- data
Hash 7b618847fabc711601b771e3043b4afd
db1c40088181c6591b841b5a69ac20747946299d
7fc2f305a921527b2ab30ca18ae847de10bef47debd8c499e6240e78e3193e9c
GET /s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7mwjIjVBNIg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://health-beauty.shop
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10004
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 Aug 2022 18:12:56 GMT
expires: Fri, 25 Aug 2023 18:12:56 GMT
cache-control: public, max-age=31536000
age: 442598
last-modified: Mon, 11 Jul 2022 20:29:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7myjJTVBNIg.woff2
142.250.74.163200 OK 9.0 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7myjJTVBNIg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 9028, version 1.0\012- data
Hash 62922dbbe2094d4609ebeff8e841bbf3
c6eb565c83de92b2fb2bc7321d2a92fa32373f65
a25da21fa46f9ef2ca9d169f57fbf9f605c976f9dfe924a27706900dc3228a8b
GET /s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7myjJTVBNIg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://health-beauty.shop
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Aug 2022 15:33:42 GMT
expires: Sat, 26 Aug 2023 15:33:42 GMT
cache-control: public, max-age=31536000
age: 365752
last-modified: Mon, 11 Jul 2022 20:29:32 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtM.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtM.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 20968, version 1.0\012- data
Hash 726ce483f9627699bb178e053afbd3a4
3840d4461253413a4d71d2702c39cf4edfb89753
6454829f91def11ae630252985f686e8553c439ee0ee4d20b0e6dda0429fd30d
GET /s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKeiunDXbtM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://health-beauty.shop
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20968
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:24:19 GMT
expires: Tue, 29 Aug 2023 21:24:19 GMT
cache-control: public, max-age=31536000
age: 85515
last-modified: Mon, 18 Jul 2022 19:02:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7mx9IjVBNIg.woff2
142.250.74.163200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7mx9IjVBNIg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 10012, version 1.0\012- data
Hash 880a1bad36ccfed8ea3eb3b2fb5ba20c
31ecbb6a948bf16d99ac6eeba0cd57d8c80f5369
2761f1c34d9535a6c31ebfdfd28eaad9c3e43af682a36cbe40aca17fbece0174
GET /s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7mx9IjVBNIg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://health-beauty.shop
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10012
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Aug 2022 15:27:32 GMT
expires: Sat, 26 Aug 2023 15:27:32 GMT
cache-control: public, max-age=31536000
age: 366122
last-modified: Mon, 11 Jul 2022 20:29:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7mxEIjVBNIg.woff2
142.250.74.163200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7mxEIjVBNIg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 10056, version 1.0\012- data
Hash f62ba83f3cfa9202fb0b9b5817aa8825
ee75dafa8d03afdcd5cfe59f390b11e9626885a8
50e9b11979e71bd4f39d607163bc058e2a01b250fc259944ccd7b061067f01f5
GET /s/jost/v14/92zPtBhPNqw79Ij1E865zBUv7mxEIjVBNIg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://health-beauty.shop
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Aug 2022 21:59:14 GMT
expires: Sat, 26 Aug 2023 21:59:14 GMT
cache-control: public, max-age=31536000
age: 342620
last-modified: Mon, 11 Jul 2022 20:35:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9829f3ffea1f304be0e54c722f9d5d40
f9609aa9bc142c1cff0788772b2bb1f9abc1dd70
1dcac98963add83d0646205786f56cc701574b69208cce02bb3ba1b080f8db73
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 30 Aug 2022 21:09:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/images/icon1.png
63.250.43.15200 OK 184 B URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/images/icon1.png
IP 63.250.43.15:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash cae36e5b16d723c2c14d300c1ff74c62
8edb8549c3e15282f627d39eab67ca249d18b3d0
1c584f2ff1482b5ef9e40734e47c528d06c35dc49fbd02cbe08196c34f32f83e
GET /wp-content/themes/beauty-salon-spa/assets/images/icon1.png HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://health-beauty.shop/wp-content/themes/beauty-salon-spa/style.css?ver=6.0.1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:39 GMT
content-type: image/png
content-length: 184
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
etag: "62f4f68d-b8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 30835
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/webfonts/fa-regular-400.woff2
63.250.43.15200 OK 12 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/webfonts/fa-regular-400.woff2
IP 63.250.43.15:0
File type Web Open Font Format (Version 2), TrueType, length 12220, version 1.0\012- data
Hash 032ba2e0f134a35ed87df1564936d352
92ff7d462421c5a70520d3fe1403e57a5d044b34
a36d4f83add2176a3c6243bd57a32a387a1906227e286689530ff878de1994eb
GET /wp-content/themes/beauty-salon-spa/assets/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/css/fontawesome-all.css?ver=6.0.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:39 GMT
content-type: font/woff2
content-length: 12220
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
etag: "62f4f68d-2fbc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://health-beauty.shop
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 30835
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/webfonts/fa-solid-900.woff2
63.250.43.15200 OK 39 kB URL HTTP/2 health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/webfonts/fa-solid-900.woff2
IP 63.250.43.15:0
File type Web Open Font Format (Version 2), TrueType, length 38784, version 1.0\012- data
Hash f9b85c9463af7103b9b24bbbf09a06ed
d28d7222bcbeb8ea701a771e85f7efe006e62fb1
62554277d07b20c6bfae7c6267b3198b4846f604a37d4085bf9f54c392210b56
GET /wp-content/themes/beauty-salon-spa/assets/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://health-beauty.shop/wp-content/themes/beauty-salon-spa/assets/css/fontawesome-all.css?ver=6.0.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:35:39 GMT
content-type: font/woff2
content-length: 38784
last-modified: Thu, 11 Aug 2022 12:31:09 GMT
etag: "62f4f68d-9780"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: https://health-beauty.shop
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 30835
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
health-beauty.shop/favicon.ico
63.250.43.15204 No Content 0 B URL HTTP/2 health-beauty.shop/favicon.ico
IP 63.250.43.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 30 Aug 2022 12:35:39 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-type: image/png
age: 30835
x-cache: HIT
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playfair+Display%3Aital%2Cwght%400%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900&ver=6.0.1
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Playfair+Display%3Aital%2Cwght%400%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900&ver=6.0.1
IP 142.250.74.10:0
GET /css?family=Playfair+Display%3Aital%2Cwght%400%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B0%2C900%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800%3B1%2C900&ver=6.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 30 Aug 2022 21:09:33 GMT
date: Tue, 30 Aug 2022 21:09:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
health-beauty.shop/wp-content/uploads/2022/08/salpicao-de-frango-simples.jpg
63.250.43.15200 OK 0 B URL HTTP/2 health-beauty.shop/wp-content/uploads/2022/08/salpicao-de-frango-simples.jpg
IP 63.250.43.15:0
GET /wp-content/uploads/2022/08/salpicao-de-frango-simples.jpg HTTP/1.1
Host: health-beauty.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://health-beauty.shop/simple-chicken-sausage/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 30 Aug 2022 12:36:10 GMT
content-type: image/jpeg
content-length: 92346
last-modified: Thu, 11 Aug 2022 12:56:38 GMT
etag: "62f4fc86-168ba"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-credentials: true
access-control-allow-headers: User-Agent,Keep-Alive,Content-Type
x-cacheable: YES
age: 30803
x-cache: HIT
accept-ranges: bytes
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2