r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c7a8ba48383a0e56baca8c8c41b81a04
b04c1f1e730a71f17ff639c9db697c532d4e5421
7860552382285e6eddddc5226c6f6400caa3f6fc3cb4b8a2d550c6fc653f78bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7860552382285E6EDDDDC5226C6F6400CAA3F6FC3CB4B8A2D550C6FC653F78BB"
Last-Modified: Sun, 06 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18080
Expires: Sun, 06 Nov 2022 18:58:44 GMT
Date: Sun, 06 Nov 2022 13:57:24 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 05978511215be8462d0b69e33b3a91a3
61535ba131d547f1c5108d9e7763ee3fc8d8c824
cfdbf0f9e88e3c1ae8eb03e46c352633a75d4b2edbfbd57c1c6b52ff1623a109
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5839
Cache-Control: max-age=166258
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:57:24 GMT
Etag: "63678ce7-1d7"
Expires: Tue, 08 Nov 2022 12:08:22 GMT
Last-Modified: Sun, 06 Nov 2022 10:31:03 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
fngml.com/31509
198.54.125.239301 Moved Permanently 707 B IP 198.54.125.239:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /31509 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 06 Nov 2022 13:57:24 GMT
server: LiteSpeed
location: https://fngml.com/31509
x-turbo-charged-by: LiteSpeed
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9a21dcd6794c5ba4178522096f695511
d731cf49db5e048d0d820d5cee03417cdd8c1c7b
c4981ce849fcfce045d1c9eeb2978767d87fcbf6087626f3d6541ec8b1938a37
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C4981CE849FCFCE045D1C9EEB2978767D87FCBF6087626F3D6541EC8B1938A37"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10845
Expires: Sun, 06 Nov 2022 16:58:09 GMT
Date: Sun, 06 Nov 2022 13:57:24 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yEr39xHHEdUec++tgKc4xRUiH0hN4PUNcLiL+2hNkSGGPhIYiagkVZ60SehCgeWK0CUGvqKw57o=
x-amz-request-id: MCWH8DPQQD9WS533
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 06 Nov 2022 13:10:27 GMT
age: 2817
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash a8744a8e316447afea2924b2fb5c9c99
fe8fcca6b45790844cb322fcdb3d52bb20d09a8a
a5f1336734c8d1dfd3afbf9858e7e94097af4303848b80b13a40643c2613bbc4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 06 Nov 2022 13:57:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 03 Nov 2022 11:04:48 GMT
Expires: Thu, 10 Nov 2022 11:04:47 GMT
Etag: "fe8fcca6b45790844cb322fcdb3d52bb20d09a8a"
Cache-Control: max-age=334642,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 765e568eba71b4ee-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d862f992e9902530594e7aca425f129b
25b414fe833d30b52928535d659a1ee281b82e3a
0c6286152fe8bb5fdf1505f2001d530a65ee53aa6d9601bbb1eecb683036071d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1441
Cache-Control: max-age=156807
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:57:25 GMT
Etag: "6367792b-1d7"
Expires: Tue, 08 Nov 2022 09:30:52 GMT
Last-Modified: Sun, 06 Nov 2022 09:06:51 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
fngml.com/31509
198.54.125.239200 OK 11 kB IP 198.54.125.239:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash a3f2facb5e439cd23e63b5258d50bbd6
435866bf1eb62ea62cb8b3a650e4f5a9464f1023
d5d8296d7a0e33a40ff01443462534e4e68d636409f1d5fd2c736e599355dd84
GET /31509 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
content-type: text/html; charset=UTF-8
link: <https://fngml.com/wp-json/>; rel="https://api.w.org/", <https://fngml.com/wp-json/wp/v2/posts/31509>; rel="alternate"; type="application/json", <https://fngml.com/?p=31509>; rel=shortlink
etag: "21424-1667724949;br"
x-litespeed-cache: hit
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11198
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.42.74.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.74.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fmrN2EknUqej06fdecJ8fg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cmFh6U2kKk2jeLbkn8I3aTO4Sww=
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e13e65ad7f6f12300b12d6cd6936d621
575faf606b5c5e39e0fbbef59998bcd3625aa141
10787f99c02b63d52b9b74fcec9497108d67c56c4a9436e0e3c9a7129d727dda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-163864574-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-163864574-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 8b27387b09fec421e89e12542b1a9cde
cd1ffb6d0b1a9fcfebaaeb77300533df0a74f89c
3e7ae77215a221427a268bd233e9fb03ad9661b1fa4dc61a7133ea25b6fd4ea6
GET /gtag/js?id=UA-163864574-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 06 Nov 2022 13:57:25 GMT
expires: Sun, 06 Nov 2022 13:57:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44778
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fngml.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
198.54.125.239200 OK 12 kB URL HTTP/2 fngml.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1
IP 198.54.125.239:0
File type ASCII text, with very long lines (47826)
Hash 3f7f7fa954242b63cf5127c14417c6e5
712c7c9ea049d297e3fb27d3c805be5c5867c4d4
e274dc85b6107cb6054dbee83ddb1e3dda3162ca8f93b16b2d692a451cf9511d
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 06:27:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 11601
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-includes/css/classic-themes.min.css?ver=1
198.54.125.239200 OK 217 B URL HTTP/2 fngml.com/wp-includes/css/classic-themes.min.css?ver=1
IP 198.54.125.239:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 06:27:54 GMT
accept-ranges: bytes
content-length: 217
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash e13e65ad7f6f12300b12d6cd6936d621
575faf606b5c5e39e0fbbef59998bcd3625aa141
10787f99c02b63d52b9b74fcec9497108d67c56c4a9436e0e3c9a7129d727dda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:57:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fngml.com/wp-includes/css/dashicons.min.css?ver=6.1
198.54.125.239200 OK 35 kB URL HTTP/2 fngml.com/wp-includes/css/dashicons.min.css?ver=6.1
IP 198.54.125.239:0
File type ASCII text, with very long lines (58981)
Hash 54c5bfb8a890d87139d9abfe01662c83
f9eddf5b8a3269e6d6fa40b4f13083705e6267c6
9685e5cabe4efc8c85e986725af8009b306416aad3ecc9086ca5bb12b84ce4ef
GET /wp-includes/css/dashicons.min.css?ver=6.1 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 10:09:25 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 35110
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/plugins/post-views-counter/css/frontend.min.css?ver=1.3.12
198.54.125.239200 OK 215 B URL HTTP/2 fngml.com/wp-content/plugins/post-views-counter/css/frontend.min.css?ver=1.3.12
IP 198.54.125.239:0
File type ASCII text, with no line terminators
Hash 60419aaff3f8433f5cdc9095893afd0c
6c643123aa00fb531c0732857cba091386af39a4
ed70c2cf61d0f24d03299ffc5896c7abd86bb858501987dc10e3afec086c01df
GET /wp-content/plugins/post-views-counter/css/frontend.min.css?ver=1.3.12 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: text/css
last-modified: Wed, 02 Nov 2022 06:28:32 GMT
accept-ranges: bytes
content-length: 215
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/themes/enjoyvideo/style.css?ver=20210902
198.54.125.239200 OK 12 kB URL HTTP/2 fngml.com/wp-content/themes/enjoyvideo/style.css?ver=20210902
IP 198.54.125.239:0
File type ASCII text, with very long lines (328)
Hash 56df868bfe958f18180ea82c0773ed9e
4bca2441399d479c1ec660f790a8a7bbd503513e
bb2959312bdd3f687c223eba3c6a9a1c51bfb3eb85a27f09a06b8c7b89e5d46a
GET /wp-content/themes/enjoyvideo/style.css?ver=20210902 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: text/css
last-modified: Tue, 06 Sep 2022 12:55:26 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 12105
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/themes/enjoyvideo/dark.css?ver=20210902
198.54.125.239200 OK 1.2 kB URL HTTP/2 fngml.com/wp-content/themes/enjoyvideo/dark.css?ver=20210902
IP 198.54.125.239:0
Hash acdcf934a29c16776985b5beb8e9ac9b
f0bd28a701f5d2f26a9eb4ca4a1a3167cab87e98
9fb1d2b56709f8767592eb4ce7f1e2ea409b24f61b1195024bd0a585df51f707
GET /wp-content/themes/enjoyvideo/dark.css?ver=20210902 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: text/css
last-modified: Sat, 03 Sep 2022 12:41:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1239
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/themes/enjoyvideo/responsive.css?ver=20210902
198.54.125.239200 OK 1.4 kB URL HTTP/2 fngml.com/wp-content/themes/enjoyvideo/responsive.css?ver=20210902
IP 198.54.125.239:0
Hash fa72fc293cb836a64671b8aa7f44c3fa
40d9a57bcef2f0e2c4e9efbf49183ecb7703cdfa
4281709c5d920d56903b8715cc3660b552d8a887c1f1d49996fb18804eab685a
GET /wp-content/themes/enjoyvideo/responsive.css?ver=20210902 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: text/css
last-modified: Sat, 03 Sep 2022 12:41:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 1442
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/themes/enjoyvideo/genericons/genericons.css?ver=6.1
198.54.125.239200 OK 154 B URL HTTP/2 fngml.com/wp-content/themes/enjoyvideo/genericons/genericons.css?ver=6.1
IP 198.54.125.239:0
Hash c14dd6e84e694a66c7e27f11220ed49a
d226417ef66b21fca901b5dd49ad570d6992a250
7e3559d6ffac7fc54d6edaa79b6e7330fab33fbdffc174a27c58b25e5b3952d2
GET /wp-content/themes/enjoyvideo/genericons/genericons.css?ver=6.1 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: text/css
last-modified: Sat, 03 Sep 2022 12:41:21 GMT
accept-ranges: bytes
content-length: 154
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
198.54.125.239200 OK 30 kB URL HTTP/2 fngml.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 198.54.125.239:0
File type ASCII text, with very long lines (65447)
Hash 3a1740685bd5c0bbd5f2b812e1eb7fb4
488e07695da787fed18361c50292aef35abb5e81
4a07aed2d8cf88afdec0b56b365b951c76d387db3459166b5a0d25e2e6cc95ef
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:27:54 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 30324
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
198.54.125.239200 OK 4.0 kB URL HTTP/2 fngml.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 198.54.125.239:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Wed, 09 Dec 2020 14:11:22 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3995
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/themes/enjoyvideo/assets/js/superfish.js?ver=6.1
198.54.125.239200 OK 2.2 kB URL HTTP/2 fngml.com/wp-content/themes/enjoyvideo/assets/js/superfish.js?ver=6.1
IP 198.54.125.239:0
Hash b44971aaab23960dbc830c83f41295be
9cb021ed19fe7c69ba6630d2ce97ca800f00c930
bb38295a053d2eebcbe60b3855add00b731e389359695ae1da49448a351b1876
GET /wp-content/themes/enjoyvideo/assets/js/superfish.js?ver=6.1 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Sat, 03 Sep 2022 12:41:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2239
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/themes/enjoyvideo/assets/js/html5.js?ver=6.1
198.54.125.239200 OK 2.9 kB URL HTTP/2 fngml.com/wp-content/themes/enjoyvideo/assets/js/html5.js?ver=6.1
IP 198.54.125.239:0
File type HTML document, ASCII text
Hash b7a1b82476b744e3e4f5402395e4642b
0ac46af5fa7696ad3a9a434565ff6411a2f7b90d
669fa853b6a2bcc24702c3e68af81a1da14acf4230a25478188bdb4d3fb0069f
GET /wp-content/themes/enjoyvideo/assets/js/html5.js?ver=6.1 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Sat, 03 Sep 2022 12:41:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 2851
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/themes/enjoyvideo/assets/js/theia-sticky-sidebar.js?ver=6.1
198.54.125.239200 OK 3.4 kB URL HTTP/2 fngml.com/wp-content/themes/enjoyvideo/assets/js/theia-sticky-sidebar.js?ver=6.1
IP 198.54.125.239:0
File type HTML document, ASCII text
Hash cdaf747bddd387d7cb7ed32e87baac0a
b0fa4f58fe75e252f7e834f1c6c17323da5e1ef0
715d40168b46e48175278be4a9bda587bcc692242d20056c8d33c725e811fb1a
GET /wp-content/themes/enjoyvideo/assets/js/theia-sticky-sidebar.js?ver=6.1 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Sat, 03 Sep 2022 12:41:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 3404
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
198.54.125.239200 OK 4.6 kB URL HTTP/2 fngml.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1
IP 198.54.125.239:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Tue, 24 May 2022 20:56:29 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 4619
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2022/05/logo190.png
198.54.125.239200 OK 6.7 kB URL HTTP/2 fngml.com/wp-content/uploads/2022/05/logo190.png
IP 198.54.125.239:0
File type PNG image data, 190 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 5823091dcb02d18d5fe5a0532f2a04c4
cbb1d5fb05689af1db482a9bfa9911007a9ec681
7d915ecec66688c13dae4cb93a6dad5da644831e89961ced4b85f1e47f37ac3d
GET /wp-content/uploads/2022/05/logo190.png HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: image/png
last-modified: Sun, 29 May 2022 16:14:16 GMT
accept-ranges: bytes
content-length: 6718
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/plugins/post-views-counter/js/frontend.min.js?ver=1.3.12
198.54.125.239200 OK 548 B URL HTTP/2 fngml.com/wp-content/plugins/post-views-counter/js/frontend.min.js?ver=1.3.12
IP 198.54.125.239:0
File type ASCII text, with very long lines (1156), with no line terminators
Hash cac08b69c8d96f079ed8352907e286fd
c8285b824e6da92444864c881c46cba70f3ba6ff
648de3df1abfea594d2ccf48a0bd5afbe9d5e7b04ed1011c586c97798cc0a003
GET /wp-content/plugins/post-views-counter/js/frontend.min.js?ver=1.3.12 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 06:28:32 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 548
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/themes/enjoyvideo/assets/js/index.js?ver=20210902
198.54.125.239200 OK 6.8 kB URL HTTP/2 fngml.com/wp-content/themes/enjoyvideo/assets/js/index.js?ver=20210902
IP 198.54.125.239:0
Hash 3f7bc0db21bb45d6fde700a6451b1e78
0395bed74b8a28e3f6aabe14c2a63b4aaef309d7
2d7813c4e28f444d7dad7f1df182229b5586af061c109775fff50d9df14c8e8f
GET /wp-content/themes/enjoyvideo/assets/js/index.js?ver=20210902 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Sat, 03 Sep 2022 12:41:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 6793
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/themes/enjoyvideo/assets/js/jquery.custom.js?ver=20210902
198.54.125.239200 OK 720 B URL HTTP/2 fngml.com/wp-content/themes/enjoyvideo/assets/js/jquery.custom.js?ver=20210902
IP 198.54.125.239:0
Hash bf6b3b4c79e24a3f9b6c2b6e8298e5c5
d21d105736c2943be8f0b1aa9fdfcb7fca95b701
0f9fdb60cdd9a36236be35b967df58ce8abb1d62013ee1cd951f1e7fc0184220
GET /wp-content/themes/enjoyvideo/assets/js/jquery.custom.js?ver=20210902 HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Sat, 03 Sep 2022 12:41:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 720
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10647
Expires: Sun, 06 Nov 2022 16:54:53 GMT
Date: Sun, 06 Nov 2022 13:57:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10647
Expires: Sun, 06 Nov 2022 16:54:53 GMT
Date: Sun, 06 Nov 2022 13:57:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10647
Expires: Sun, 06 Nov 2022 16:54:53 GMT
Date: Sun, 06 Nov 2022 13:57:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10647
Expires: Sun, 06 Nov 2022 16:54:53 GMT
Date: Sun, 06 Nov 2022 13:57:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e37c89a5a7f608a21ac42b87ee0f7fc
55132fb03671e178b7e186da48ac7e02d6e96e23
6d71b8c1578f69619e174e61fbe9c92de7df4563e4a413b7b3d1be229f464df2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D71B8C1578F69619E174E61FBE9C92DE7DF4563E4A413B7B3D1BE229F464DF2"
Last-Modified: Sun, 06 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10647
Expires: Sun, 06 Nov 2022 16:54:53 GMT
Date: Sun, 06 Nov 2022 13:57:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 3fDf4aoep5tTAusisXhIdAf0A6SbpM5fYtYaiXtNSb0-VRJo5nu8Vg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 09:11:34 GMT
age: 17152
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b18a8c9f5539ce33476f843f5811e01d
11d1f2ce72d2aa6686c79f777cd0bdb4ddeb681b
fc20e507eedccb52078979f2132434b11b9d50d917cab512d8e0c99515b1236c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8df47f1e-c13a-452f-b0e2-28c141dbb191.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7573
x-amzn-requestid: d56e7b27-f2cb-4cd3-9f67-ba18d1bfe270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bDkhGHmjoAMFxxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364813a-3a1c18b13c41f38673890b00;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 03:04:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: c-u9tBFoIve3sEwtbUvIFZoPu6eudy3ZFQi8j2m9mTPNEarihTvddw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 06 Nov 2022 03:24:54 GMT
age: 37952
etag: "11d1f2ce72d2aa6686c79f777cd0bdb4ddeb681b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ljyajgjvuv.com/t/9/fret/meow4/1913086/db8b00f6.js
62.122.171.6200 OK 38 kB URL HTTP/2 ljyajgjvuv.com/t/9/fret/meow4/1913086/db8b00f6.js
IP 62.122.171.6:0
Hash 963390c360d323b14f40ea38b5ec5c68
5c52afe3dfbb134574b3d872d72a50c686d68822
375979434b7262fb6f06bb9ea896e2d8043f2441d8d162f9aae036e63fa8dc43
GET /t/9/fret/meow4/1913086/db8b00f6.js HTTP/1.1
Host: ljyajgjvuv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Mon, 10 Oct 2022 09:37:02 GMT
vary: Accept-Encoding
etag: W/"6343e7be-10d9e"
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d394a65-12f0-45e6-af37-57a983997faa.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d394a65-12f0-45e6-af37-57a983997faa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 886f94a2b6bfa041d40943e14fee4a18
deba663d6b38f0c151032b2d5b5b5d54f7dd78b0
620c1c5ae68bbbddf31b43bf51161b06d1a3da6b6872643637c057f05cceec6b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d394a65-12f0-45e6-af37-57a983997faa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9787
x-amzn-requestid: fbeabde7-9e76-468d-b945-a3ee931e5f74
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJabbHUPoAMFg_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d77c-1c372f9206e5923d360e9ed6;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:37:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: KF8Kw_R3RPDzYaBUCDBBaipWLSvXcY_G72FF0ruDQczPPuhk-R94Bg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:59:18 GMT
age: 57488
etag: "deba663d6b38f0c151032b2d5b5b5d54f7dd78b0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcc79e66d1e21452efb26d26650f6739
1f727a7ea032082658944cf4041686446fb6b5f2
af1fe8de442a365a108d5c03f0d3ae8b0beb1abb4f267a46979f9c885ee026c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff56714e2-704b-4327-92b2-54e71d0c4d40.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8961
x-amzn-requestid: 3a50374d-d90e-452e-bb89-82ca14c94b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJarpGtqIAMFkPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366d7e3-55c356475fb64e6625a338c7;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 21:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OR8zISm84Iz0FL3Km-aQOHSnjROX2-S_lKloAhMAThT17igEWRbxkA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 05 Nov 2022 21:44:20 GMT
age: 58386
etag: "1f727a7ea032082658944cf4041686446fb6b5f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
zhmzsjvkii.com/t/9/fret/meow4/1913086/db8b00f6.js
62.122.171.6200 OK 41 kB URL HTTP/2 zhmzsjvkii.com/t/9/fret/meow4/1913086/db8b00f6.js
IP 62.122.171.6:0
Hash 69adbcd6a814a491bb153ccbc83f5cd8
c6e1ed351e93d47cfecf8219ddfdb0cacfc573f0
4f84c24d18bff8b372cad2305f89677e21a8be83492382235cbd547f33b1f58f
Analyzer Verdict Alert quad9 Sinkholed
GET /t/9/fret/meow4/1913086/db8b00f6.js HTTP/1.1
Host: zhmzsjvkii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:25 GMT
content-type: application/javascript
last-modified: Mon, 10 Oct 2022 09:37:02 GMT
vary: Accept-Encoding
etag: W/"6343e7be-10d9e"
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2022/10/fucks-lara-diabla.jpg
198.54.125.239200 OK 54 kB URL HTTP/2 fngml.com/wp-content/uploads/2022/10/fucks-lara-diabla.jpg
IP 198.54.125.239:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "Lavc59.42.102", baseline, precision 8, 548x646, components 3\012- data
Hash 59986c5717a8c0a281d6cae264d6bcbf
193f57b78e95c15f762cad2b1fafefa03e1d31c2
dd898ae794dad5add1f5c35ebc805f068584d4fa81d2c5fddc97e90aa5d00a4a
GET /wp-content/uploads/2022/10/fucks-lara-diabla.jpg HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:25 GMT
content-type: image/jpeg
last-modified: Tue, 18 Oct 2022 12:38:12 GMT
accept-ranges: bytes
content-length: 54433
date: Sun, 06 Nov 2022 13:57:25 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/themes/enjoyvideo/genericons/genericons/genericons.css
198.54.125.239200 OK 16 kB URL HTTP/2 fngml.com/wp-content/themes/enjoyvideo/genericons/genericons/genericons.css
IP 198.54.125.239:0
File type ASCII text, with very long lines (18732)
Hash 985aca0a81ce7ed467415181392622e4
df94c84d8b07a0e9a1c2080d47461e0702bcbeac
d8f97424b705bdacb3825ecf71664bd9925e0a2b13f14fe440b785403c569545
GET /wp-content/themes/enjoyvideo/genericons/genericons/genericons.css HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/wp-content/themes/enjoyvideo/genericons/genericons.css?ver=6.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:26 GMT
content-type: text/css
last-modified: Sat, 03 Sep 2022 12:41:21 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding,User-Agent
content-length: 15970
date: Sun, 06 Nov 2022 13:57:26 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
zhmzsjvkii.com/solid.gif?z=1913086&abvar=0
62.122.171.6200 OK 43 B URL HTTP/2 zhmzsjvkii.com/solid.gif?z=1913086&abvar=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
Analyzer Verdict Alert quad9 Sinkholed
POST /solid.gif?z=1913086&abvar=0 HTTP/1.1
Host: zhmzsjvkii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fngml.com
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:26 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ljyajgjvuv.com/solid.gif?z=1913086&abvar=0
62.122.171.6200 OK 43 B URL HTTP/2 ljyajgjvuv.com/solid.gif?z=1913086&abvar=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1913086&abvar=0 HTTP/1.1
Host: ljyajgjvuv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fngml.com
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:26 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2022/10/loading.jpg
198.54.125.239200 OK 2.4 kB URL HTTP/2 fngml.com/wp-content/uploads/2022/10/loading.jpg
IP 198.54.125.239:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 284x160, components 3\012- data
Hash b852b271f87210e0b7742b2c4922d2bd
33ba0553a9679117215222637d6c0121e565acf7
438dec67fefd9efc2b5ba31919e6525a17be3b3bbbf29cc0612a193c43d94ee0
GET /wp-content/uploads/2022/10/loading.jpg HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:26 GMT
content-type: image/jpeg
last-modified: Mon, 03 Oct 2022 20:33:42 GMT
accept-ranges: bytes
content-length: 2415
date: Sun, 06 Nov 2022 13:57:26 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2022/10/lara-diabla-tits-310x310.jpg
198.54.125.239200 OK 11 kB URL HTTP/2 fngml.com/wp-content/uploads/2022/10/lara-diabla-tits-310x310.jpg
IP 198.54.125.239:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Lavc59.42.102", Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 310x310, components 3\012- data
Hash 765de333c4614e3b2a0a855f630c5b7b
4e6111b9d51e8b5f6ae0b6eda908f46bc6de9438
a66f0e14165b6e166d6e3f16475e1996df92157ae6bbff09d5273b3bbc5b695e
GET /wp-content/uploads/2022/10/lara-diabla-tits-310x310.jpg HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:27 GMT
content-type: image/jpeg
last-modified: Tue, 18 Oct 2022 15:15:04 GMT
accept-ranges: bytes
content-length: 11260
date: Sun, 06 Nov 2022 13:57:27 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2022/10/lara-diabla-boobs-310x310.jpg
198.54.125.239200 OK 11 kB URL HTTP/2 fngml.com/wp-content/uploads/2022/10/lara-diabla-boobs-310x310.jpg
IP 198.54.125.239:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Lavc59.42.102", Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 310x310, components 3\012- data
Hash 61bf5dd7321bc71602c6d72f3401f72a
0add55fdb97e4987e24fa228c4bc0e330979471a
baa2fb40e827e274a6b1a9e3357c29fa6234f72cee1b9ae755e80d1fd4a4a46d
GET /wp-content/uploads/2022/10/lara-diabla-boobs-310x310.jpg HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:27 GMT
content-type: image/jpeg
last-modified: Tue, 18 Oct 2022 15:10:14 GMT
accept-ranges: bytes
content-length: 10826
date: Sun, 06 Nov 2022 13:57:27 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Il_zb1TZDj_-cvaL09ccF-TzJIehl6TGFiiFSInYIsFHaLvXITADGSF7cWdx1gvbt6qciuMCTKweCd7I4Cr7J6T9ZoRWhCxMByKtxulNsPOZNr_l1XVIsgcYLTTiQ5gSlzlXug0aAMfaOWdprlMKc8nJUrmyrEPt0juPVB3xRS7U6hyXu5iHQAPSAFkhIp-62xgYoBhOx2fOb7ZGKuXi9sErk0GD74y7LwlM0kncpXNRZroRuLl22WGDOdXTm7FV5pSEU_34x5QLhUcC971r-88DQckAxRgYVD9XrCCguH0ZeSJekaIYA1wjdphHkQUHY_NLOxuOZUP13PSOZRNaFAiPYFDctcrhxVNit7qL9OipktZ5hNx4gU869x76qhcAtQIX1L1-59gLRk0hyNlDASv89de0IZdj2FV71H9rd5gbgcNizKtohGoa6Zq_-XrTRbMwy8ggHZf-Sud_l5hGOJpgZg5BiFGbLb7-Df9LxT9i6n4YkKV-jnYfj9Zt5xZaErIk7FTGFfiKyTVIGH2hzZeDnH7x7vgcQM0PtsGgi0THOvAID7s_8nN8mp3KxzK9irMaBL2pLVPo3Uq06EVntXw=&cb=_clhhfwtbutka5vuqrclspc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Il_zb1TZDj_-cvaL09ccF-TzJIehl6TGFiiFSInYIsFHaLvXITADGSF7cWdx1gvbt6qciuMCTKweCd7I4Cr7J6T9ZoRWhCxMByKtxulNsPOZNr_l1XVIsgcYLTTiQ5gSlzlXug0aAMfaOWdprlMKc8nJUrmyrEPt0juPVB3xRS7U6hyXu5iHQAPSAFkhIp-62xgYoBhOx2fOb7ZGKuXi9sErk0GD74y7LwlM0kncpXNRZroRuLl22WGDOdXTm7FV5pSEU_34x5QLhUcC971r-88DQckAxRgYVD9XrCCguH0ZeSJekaIYA1wjdphHkQUHY_NLOxuOZUP13PSOZRNaFAiPYFDctcrhxVNit7qL9OipktZ5hNx4gU869x76qhcAtQIX1L1-59gLRk0hyNlDASv89de0IZdj2FV71H9rd5gbgcNizKtohGoa6Zq_-XrTRbMwy8ggHZf-Sud_l5hGOJpgZg5BiFGbLb7-Df9LxT9i6n4YkKV-jnYfj9Zt5xZaErIk7FTGFfiKyTVIGH2hzZeDnH7x7vgcQM0PtsGgi0THOvAID7s_8nN8mp3KxzK9irMaBL2pLVPo3Uq06EVntXw=&cb=_clhhfwtbutka5vuqrclspc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Il_zb1TZDj_-cvaL09ccF-TzJIehl6TGFiiFSInYIsFHaLvXITADGSF7cWdx1gvbt6qciuMCTKweCd7I4Cr7J6T9ZoRWhCxMByKtxulNsPOZNr_l1XVIsgcYLTTiQ5gSlzlXug0aAMfaOWdprlMKc8nJUrmyrEPt0juPVB3xRS7U6hyXu5iHQAPSAFkhIp-62xgYoBhOx2fOb7ZGKuXi9sErk0GD74y7LwlM0kncpXNRZroRuLl22WGDOdXTm7FV5pSEU_34x5QLhUcC971r-88DQckAxRgYVD9XrCCguH0ZeSJekaIYA1wjdphHkQUHY_NLOxuOZUP13PSOZRNaFAiPYFDctcrhxVNit7qL9OipktZ5hNx4gU869x76qhcAtQIX1L1-59gLRk0hyNlDASv89de0IZdj2FV71H9rd5gbgcNizKtohGoa6Zq_-XrTRbMwy8ggHZf-Sud_l5hGOJpgZg5BiFGbLb7-Df9LxT9i6n4YkKV-jnYfj9Zt5xZaErIk7FTGFfiKyTVIGH2hzZeDnH7x7vgcQM0PtsGgi0THOvAID7s_8nN8mp3KxzK9irMaBL2pLVPo3Uq06EVntXw=&cb=_clhhfwtbutka5vuqrclspc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:27 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=221106085730574d723d134495b21ec512f6; Path=/; Expires=Mon, 06 Nov 2023 13:57:27 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Niev1fF4GEztS6bKvfuu9-flBJTX0b23ootguNY0-hACmqrV-ehKUGUb8UMGaraCvhI6nUOdQESFHbgTW0cS_iUDckJ4klULAYBZLD3grOG3uYL3h9R9ZIjR_eaYqofErT8L6Q7vSqtS1nfAEAUGZMZG0Z5eTJGQPQy9lKD3cCtuTk-e42rf6GEqdojR1FGnUNG7CrBLBaF3FTvrAXGbgSvArR2g-T2OCki7XOv9DnHcMB8TBeJPSULtryfw4lr281ErggyGwVgGPjZOa6di1iofRhac_fx_wt6qYfOgj0f6wEBPZ9Z3l81cdbaggoILXhdvdEo70_o-VGW9sg0ltGuGFkj5ij0Gn4EnuvK9Tw2S1C3LHllkMnZspfkKXTL-EXpF4rsjoJDDaLzbus4nM6uk0-DpXwSM7iNUhKiqJ9u6TQZd26JEublmfLHJp6_jCavr7tikxSm2Oo_72IBgHN-7ptVQQStvfkn9q1LDUqJGvBBlXCS61XPIDGz8_tJ1WgBYUpCU4F2_PjE8_8HfFCLaCNrvgawLob_R1c95TVbjTdUQyJJERPrSMmoew0g99e2h9tyEovorCZNmKkGpRC4=&cb=_cloyeu3iomhcrn6vs2mwf3&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Niev1fF4GEztS6bKvfuu9-flBJTX0b23ootguNY0-hACmqrV-ehKUGUb8UMGaraCvhI6nUOdQESFHbgTW0cS_iUDckJ4klULAYBZLD3grOG3uYL3h9R9ZIjR_eaYqofErT8L6Q7vSqtS1nfAEAUGZMZG0Z5eTJGQPQy9lKD3cCtuTk-e42rf6GEqdojR1FGnUNG7CrBLBaF3FTvrAXGbgSvArR2g-T2OCki7XOv9DnHcMB8TBeJPSULtryfw4lr281ErggyGwVgGPjZOa6di1iofRhac_fx_wt6qYfOgj0f6wEBPZ9Z3l81cdbaggoILXhdvdEo70_o-VGW9sg0ltGuGFkj5ij0Gn4EnuvK9Tw2S1C3LHllkMnZspfkKXTL-EXpF4rsjoJDDaLzbus4nM6uk0-DpXwSM7iNUhKiqJ9u6TQZd26JEublmfLHJp6_jCavr7tikxSm2Oo_72IBgHN-7ptVQQStvfkn9q1LDUqJGvBBlXCS61XPIDGz8_tJ1WgBYUpCU4F2_PjE8_8HfFCLaCNrvgawLob_R1c95TVbjTdUQyJJERPrSMmoew0g99e2h9tyEovorCZNmKkGpRC4=&cb=_cloyeu3iomhcrn6vs2mwf3&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Niev1fF4GEztS6bKvfuu9-flBJTX0b23ootguNY0-hACmqrV-ehKUGUb8UMGaraCvhI6nUOdQESFHbgTW0cS_iUDckJ4klULAYBZLD3grOG3uYL3h9R9ZIjR_eaYqofErT8L6Q7vSqtS1nfAEAUGZMZG0Z5eTJGQPQy9lKD3cCtuTk-e42rf6GEqdojR1FGnUNG7CrBLBaF3FTvrAXGbgSvArR2g-T2OCki7XOv9DnHcMB8TBeJPSULtryfw4lr281ErggyGwVgGPjZOa6di1iofRhac_fx_wt6qYfOgj0f6wEBPZ9Z3l81cdbaggoILXhdvdEo70_o-VGW9sg0ltGuGFkj5ij0Gn4EnuvK9Tw2S1C3LHllkMnZspfkKXTL-EXpF4rsjoJDDaLzbus4nM6uk0-DpXwSM7iNUhKiqJ9u6TQZd26JEublmfLHJp6_jCavr7tikxSm2Oo_72IBgHN-7ptVQQStvfkn9q1LDUqJGvBBlXCS61XPIDGz8_tJ1WgBYUpCU4F2_PjE8_8HfFCLaCNrvgawLob_R1c95TVbjTdUQyJJERPrSMmoew0g99e2h9tyEovorCZNmKkGpRC4=&cb=_cloyeu3iomhcrn6vs2mwf3&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:27 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=2211060857b5a21ef586d341af92d8377a3d; Path=/; Expires=Mon, 06 Nov 2023 13:57:27 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2022/10/fucks-lara-diabla-2-310x310.jpg
198.54.125.239200 OK 15 kB URL HTTP/2 fngml.com/wp-content/uploads/2022/10/fucks-lara-diabla-2-310x310.jpg
IP 198.54.125.239:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 310x310, components 3\012- data
Hash cf1b86464d04f0dae20c89e67d6018e4
6d42d9b1fe08c1f4ff2416522c1d62aaf2d98dc5
808c622692de657b74b702d7c4a492d0bdc539cbbcc86660e4f018572bd19225
GET /wp-content/uploads/2022/10/fucks-lara-diabla-2-310x310.jpg HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:27 GMT
content-type: image/jpeg
last-modified: Tue, 18 Oct 2022 14:03:34 GMT
accept-ranges: bytes
content-length: 15247
date: Sun, 06 Nov 2022 13:57:27 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2022/03/lara-sexy-naked-ass-arab-girl-porn-310x310.jpg
198.54.125.239200 OK 20 kB URL HTTP/2 fngml.com/wp-content/uploads/2022/03/lara-sexy-naked-ass-arab-girl-porn-310x310.jpg
IP 198.54.125.239:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc59.21.103", baseline, precision 8, 310x310, components 3\012- data
Hash bd06af1b9e5ffbfa3710d1dac5862670
deb94042cf4abd50026a2d51304db2e6ae4afccc
16c9a136611edecb8b7ca0679e45ee952f90983a207186dbcca9675a8c04b4fb
GET /wp-content/uploads/2022/03/lara-sexy-naked-ass-arab-girl-porn-310x310.jpg HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:27 GMT
content-type: image/jpeg
last-modified: Sat, 03 Sep 2022 15:25:58 GMT
accept-ranges: bytes
content-length: 19728
date: Sun, 06 Nov 2022 13:57:27 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Il_zb1TZDj_-cvaL09ccF-TzJIehl6TGFiiFSInYIsFHaLvXITADGSF7cWdx1gvbt6qciuMCTKweCd7I4Cr7J6T9ZoRWhCxMByKtxulNsPOZNr_l1XVIsgcYLTTiQ5gSlzlXug0aAMfaOWdprlMKc8nJUrmyrEPt0juPVB3xRS7U6hyXu5iHQAPSAFkhIp-62xgYoBhOx2fOb7ZGKuXi9sErk0GD74y7LwlM0kncpXNRZroRuLl22WGDOdXTm7FV5pSEU_34x5QLhUcC971r-88DQckAxRgYVD9XrCCguH0ZeSJekaIYA1wjdphHkQUHY_NLOxuOZUP13PSOZRNaFAiPYFDctcrhxVNit7qL9OipktZ5hNx4gU869x76qhcAtQIX1L1-59gLRk0hyNlDASv89de0IZdj2FV71H9rd5gbgcNizKtohGoa6Zq_-XrTRbMwy8ggHZf-Sud_l5hGOJpgZg5BiFGbLb7-Df9LxT9i6n4YkKV-jnYfj9Zt5xZaErIk7FTGFfiKyTVIGH2hzZeDnH7x7vgcQM0PtsGgi0THOvAID7s_8nN8mp3KxzK9irMaBL2pLVPo3Uq06EVntXw=&cb=_clhhfwtbutka5vuqrclspc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Il_zb1TZDj_-cvaL09ccF-TzJIehl6TGFiiFSInYIsFHaLvXITADGSF7cWdx1gvbt6qciuMCTKweCd7I4Cr7J6T9ZoRWhCxMByKtxulNsPOZNr_l1XVIsgcYLTTiQ5gSlzlXug0aAMfaOWdprlMKc8nJUrmyrEPt0juPVB3xRS7U6hyXu5iHQAPSAFkhIp-62xgYoBhOx2fOb7ZGKuXi9sErk0GD74y7LwlM0kncpXNRZroRuLl22WGDOdXTm7FV5pSEU_34x5QLhUcC971r-88DQckAxRgYVD9XrCCguH0ZeSJekaIYA1wjdphHkQUHY_NLOxuOZUP13PSOZRNaFAiPYFDctcrhxVNit7qL9OipktZ5hNx4gU869x76qhcAtQIX1L1-59gLRk0hyNlDASv89de0IZdj2FV71H9rd5gbgcNizKtohGoa6Zq_-XrTRbMwy8ggHZf-Sud_l5hGOJpgZg5BiFGbLb7-Df9LxT9i6n4YkKV-jnYfj9Zt5xZaErIk7FTGFfiKyTVIGH2hzZeDnH7x7vgcQM0PtsGgi0THOvAID7s_8nN8mp3KxzK9irMaBL2pLVPo3Uq06EVntXw=&cb=_clhhfwtbutka5vuqrclspc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Il_zb1TZDj_-cvaL09ccF-TzJIehl6TGFiiFSInYIsFHaLvXITADGSF7cWdx1gvbt6qciuMCTKweCd7I4Cr7J6T9ZoRWhCxMByKtxulNsPOZNr_l1XVIsgcYLTTiQ5gSlzlXug0aAMfaOWdprlMKc8nJUrmyrEPt0juPVB3xRS7U6hyXu5iHQAPSAFkhIp-62xgYoBhOx2fOb7ZGKuXi9sErk0GD74y7LwlM0kncpXNRZroRuLl22WGDOdXTm7FV5pSEU_34x5QLhUcC971r-88DQckAxRgYVD9XrCCguH0ZeSJekaIYA1wjdphHkQUHY_NLOxuOZUP13PSOZRNaFAiPYFDctcrhxVNit7qL9OipktZ5hNx4gU869x76qhcAtQIX1L1-59gLRk0hyNlDASv89de0IZdj2FV71H9rd5gbgcNizKtohGoa6Zq_-XrTRbMwy8ggHZf-Sud_l5hGOJpgZg5BiFGbLb7-Df9LxT9i6n4YkKV-jnYfj9Zt5xZaErIk7FTGFfiKyTVIGH2hzZeDnH7x7vgcQM0PtsGgi0THOvAID7s_8nN8mp3KxzK9irMaBL2pLVPo3Uq06EVntXw=&cb=_clhhfwtbutka5vuqrclspc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:27 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=22110608577cd5f50df8424057949119269a; Path=/; Expires=Mon, 06 Nov 2023 13:57:27 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Niev1fF4GEztS6bKvfuu9-flBJTX0b23ootguNY0-hACmqrV-ehKUGUb8UMGaraCvhI6nUOdQESFHbgTW0cS_iUDckJ4klULAYBZLD3grOG3uYL3h9R9ZIjR_eaYqofErT8L6Q7vSqtS1nfAEAUGZMZG0Z5eTJGQPQy9lKD3cCtuTk-e42rf6GEqdojR1FGnUNG7CrBLBaF3FTvrAXGbgSvArR2g-T2OCki7XOv9DnHcMB8TBeJPSULtryfw4lr281ErggyGwVgGPjZOa6di1iofRhac_fx_wt6qYfOgj0f6wEBPZ9Z3l81cdbaggoILXhdvdEo70_o-VGW9sg0ltGuGFkj5ij0Gn4EnuvK9Tw2S1C3LHllkMnZspfkKXTL-EXpF4rsjoJDDaLzbus4nM6uk0-DpXwSM7iNUhKiqJ9u6TQZd26JEublmfLHJp6_jCavr7tikxSm2Oo_72IBgHN-7ptVQQStvfkn9q1LDUqJGvBBlXCS61XPIDGz8_tJ1WgBYUpCU4F2_PjE8_8HfFCLaCNrvgawLob_R1c95TVbjTdUQyJJERPrSMmoew0g99e2h9tyEovorCZNmKkGpRC4=&cb=_cloyeu3iomhcrn6vs2mwf3&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Niev1fF4GEztS6bKvfuu9-flBJTX0b23ootguNY0-hACmqrV-ehKUGUb8UMGaraCvhI6nUOdQESFHbgTW0cS_iUDckJ4klULAYBZLD3grOG3uYL3h9R9ZIjR_eaYqofErT8L6Q7vSqtS1nfAEAUGZMZG0Z5eTJGQPQy9lKD3cCtuTk-e42rf6GEqdojR1FGnUNG7CrBLBaF3FTvrAXGbgSvArR2g-T2OCki7XOv9DnHcMB8TBeJPSULtryfw4lr281ErggyGwVgGPjZOa6di1iofRhac_fx_wt6qYfOgj0f6wEBPZ9Z3l81cdbaggoILXhdvdEo70_o-VGW9sg0ltGuGFkj5ij0Gn4EnuvK9Tw2S1C3LHllkMnZspfkKXTL-EXpF4rsjoJDDaLzbus4nM6uk0-DpXwSM7iNUhKiqJ9u6TQZd26JEublmfLHJp6_jCavr7tikxSm2Oo_72IBgHN-7ptVQQStvfkn9q1LDUqJGvBBlXCS61XPIDGz8_tJ1WgBYUpCU4F2_PjE8_8HfFCLaCNrvgawLob_R1c95TVbjTdUQyJJERPrSMmoew0g99e2h9tyEovorCZNmKkGpRC4=&cb=_cloyeu3iomhcrn6vs2mwf3&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Niev1fF4GEztS6bKvfuu9-flBJTX0b23ootguNY0-hACmqrV-ehKUGUb8UMGaraCvhI6nUOdQESFHbgTW0cS_iUDckJ4klULAYBZLD3grOG3uYL3h9R9ZIjR_eaYqofErT8L6Q7vSqtS1nfAEAUGZMZG0Z5eTJGQPQy9lKD3cCtuTk-e42rf6GEqdojR1FGnUNG7CrBLBaF3FTvrAXGbgSvArR2g-T2OCki7XOv9DnHcMB8TBeJPSULtryfw4lr281ErggyGwVgGPjZOa6di1iofRhac_fx_wt6qYfOgj0f6wEBPZ9Z3l81cdbaggoILXhdvdEo70_o-VGW9sg0ltGuGFkj5ij0Gn4EnuvK9Tw2S1C3LHllkMnZspfkKXTL-EXpF4rsjoJDDaLzbus4nM6uk0-DpXwSM7iNUhKiqJ9u6TQZd26JEublmfLHJp6_jCavr7tikxSm2Oo_72IBgHN-7ptVQQStvfkn9q1LDUqJGvBBlXCS61XPIDGz8_tJ1WgBYUpCU4F2_PjE8_8HfFCLaCNrvgawLob_R1c95TVbjTdUQyJJERPrSMmoew0g99e2h9tyEovorCZNmKkGpRC4=&cb=_cloyeu3iomhcrn6vs2mwf3&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:27 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=2211060857d652be172a4d45cf9873b333cd; Path=/; Expires=Mon, 06 Nov 2023 13:57:27 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2022/10/lara-diabla-pussy-vibrator-arab-girl-porn-310x310.jpg
198.54.125.239200 OK 19 kB URL HTTP/2 fngml.com/wp-content/uploads/2022/10/lara-diabla-pussy-vibrator-arab-girl-porn-310x310.jpg
IP 198.54.125.239:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "Lavc59.21.103", Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 310x310, components 3\012- data
Hash 84e8a8311e7a4b18cd299e4dc52e2eab
de02a39f919e9f22f07d8ea0541f99e98cd7ca84
5bc1bfec4fdbcc24e9df5e2ef28b4da42e1a9a9b2945b6d4a1188c006ce6055d
GET /wp-content/uploads/2022/10/lara-diabla-pussy-vibrator-arab-girl-porn-310x310.jpg HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:27 GMT
content-type: image/jpeg
last-modified: Tue, 18 Oct 2022 16:50:51 GMT
accept-ranges: bytes
content-length: 18637
date: Sun, 06 Nov 2022 13:57:27 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Il_zb1TZDj_-cvaL09ccF-TzJIehl6TGFiiFSInYIsFHaLvXITADGSF7cWdx1gvbt6qciuMCTKweCd7I4Cr7J6T9ZoRWhCxMByKtxulNsPOZNr_l1XVIsgcYLTTiQ5gSlzlXug0aAMfaOWdprlMKc8nJUrmyrEPt0juPVB3xRS7U6hyXu5iHQAPSAFkhIp-62xgYoBhOx2fOb7ZGKuXi9sErk0GD74y7LwlM0kncpXNRZroRuLl22WGDOdXTm7FV5pSEU_34x5QLhUcC971r-88DQckAxRgYVD9XrCCguH0ZeSJekaIYA1wjdphHkQUHY_NLOxuOZUP13PSOZRNaFAiPYFDctcrhxVNit7qL9OipktZ5hNx4gU869x76qhcAtQIX1L1-59gLRk0hyNlDASv89de0IZdj2FV71H9rd5gbgcNizKtohGoa6Zq_-XrTRbMwy8ggHZf-Sud_l5hGOJpgZg5BiFGbLb7-Df9LxT9i6n4YkKV-jnYfj9Zt5xZaErIk7FTGFfiKyTVIGH2hzZeDnH7x7vgcQM0PtsGgi0THOvAID7s_8nN8mp3KxzK9irMaBL2pLVPo3Uq06EVntXw=&cb=_clhhfwtbutka5vuqrclspc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Il_zb1TZDj_-cvaL09ccF-TzJIehl6TGFiiFSInYIsFHaLvXITADGSF7cWdx1gvbt6qciuMCTKweCd7I4Cr7J6T9ZoRWhCxMByKtxulNsPOZNr_l1XVIsgcYLTTiQ5gSlzlXug0aAMfaOWdprlMKc8nJUrmyrEPt0juPVB3xRS7U6hyXu5iHQAPSAFkhIp-62xgYoBhOx2fOb7ZGKuXi9sErk0GD74y7LwlM0kncpXNRZroRuLl22WGDOdXTm7FV5pSEU_34x5QLhUcC971r-88DQckAxRgYVD9XrCCguH0ZeSJekaIYA1wjdphHkQUHY_NLOxuOZUP13PSOZRNaFAiPYFDctcrhxVNit7qL9OipktZ5hNx4gU869x76qhcAtQIX1L1-59gLRk0hyNlDASv89de0IZdj2FV71H9rd5gbgcNizKtohGoa6Zq_-XrTRbMwy8ggHZf-Sud_l5hGOJpgZg5BiFGbLb7-Df9LxT9i6n4YkKV-jnYfj9Zt5xZaErIk7FTGFfiKyTVIGH2hzZeDnH7x7vgcQM0PtsGgi0THOvAID7s_8nN8mp3KxzK9irMaBL2pLVPo3Uq06EVntXw=&cb=_clhhfwtbutka5vuqrclspc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Il_zb1TZDj_-cvaL09ccF-TzJIehl6TGFiiFSInYIsFHaLvXITADGSF7cWdx1gvbt6qciuMCTKweCd7I4Cr7J6T9ZoRWhCxMByKtxulNsPOZNr_l1XVIsgcYLTTiQ5gSlzlXug0aAMfaOWdprlMKc8nJUrmyrEPt0juPVB3xRS7U6hyXu5iHQAPSAFkhIp-62xgYoBhOx2fOb7ZGKuXi9sErk0GD74y7LwlM0kncpXNRZroRuLl22WGDOdXTm7FV5pSEU_34x5QLhUcC971r-88DQckAxRgYVD9XrCCguH0ZeSJekaIYA1wjdphHkQUHY_NLOxuOZUP13PSOZRNaFAiPYFDctcrhxVNit7qL9OipktZ5hNx4gU869x76qhcAtQIX1L1-59gLRk0hyNlDASv89de0IZdj2FV71H9rd5gbgcNizKtohGoa6Zq_-XrTRbMwy8ggHZf-Sud_l5hGOJpgZg5BiFGbLb7-Df9LxT9i6n4YkKV-jnYfj9Zt5xZaErIk7FTGFfiKyTVIGH2hzZeDnH7x7vgcQM0PtsGgi0THOvAID7s_8nN8mp3KxzK9irMaBL2pLVPo3Uq06EVntXw=&cb=_clhhfwtbutka5vuqrclspc&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:27 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=221106085737943748dfaf41b5a4fa56fe1a; Path=/; Expires=Mon, 06 Nov 2023 13:57:27 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2022/03/lara-diabla-pussy-play-arab-girl-porn-310x310.jpg
198.54.125.239200 OK 26 kB URL HTTP/2 fngml.com/wp-content/uploads/2022/03/lara-diabla-pussy-play-arab-girl-porn-310x310.jpg
IP 198.54.125.239:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc59.21.103", baseline, precision 8, 310x310, components 3\012- data
Hash 8a9d2ae968d1f8ad7706a6ee678f489b
17a9768d9bb95fe4c920c57949a9e5ad5bccdf9c
0e0af36a3e64bfd6e3b12a1c2cff41e238e8e500fc7ec36d9192973628ec1326
GET /wp-content/uploads/2022/03/lara-diabla-pussy-play-arab-girl-porn-310x310.jpg HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:27 GMT
content-type: image/jpeg
last-modified: Sat, 03 Sep 2022 15:26:00 GMT
accept-ranges: bytes
content-length: 26290
date: Sun, 06 Nov 2022 13:57:27 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/?cvp_data=$BAekMD(H)B9fETNPZ-icR76J_SHOFgHgdDZFdE8LRZGsMBo7Gv1EbUDDrKLpgC4JHAZh0uvhWxeyPqNi6(77Y6YO_48IqZCJI7Fh)5ZF7B4CxETdqd6Jsi2tkXFV7qhJUrYeCO53aeqMBqpjJM88Y_-NqzVVyBRDj7-(WSeT4HiJXBU3z_EYcY8)Fwx35tp49lPDbvVl4rx2wt0Ts2T2eWEtZSFXGai2cCE_V(hQN)Powbo8HoW3WDqyiRAm2l-5794jwo0uryUYGxqXTqqH_VLGL_iEhlzQHcVG3D3yWGwTMG7iohXtD(0xWAxx-Xj)h0u-xlmy-MOXu6WgmqeouoGPHgT5axFbir9WDpY0RC06VvJCbegYjmrR(5m51BcOh_9ze)1bfLlZegJm2zMrKpT6btmt90210xdj5WM31YVOwLTMWc5DYiPJ_p43RpkOraZZuI4qKROb
198.54.125.239200 OK 971 B URL HTTP/2 fngml.com/?cvp_data=$BAekMD(H)B9fETNPZ-icR76J_SHOFgHgdDZFdE8LRZGsMBo7Gv1EbUDDrKLpgC4JHAZh0uvhWxeyPqNi6(77Y6YO_48IqZCJI7Fh)5ZF7B4CxETdqd6Jsi2tkXFV7qhJUrYeCO53aeqMBqpjJM88Y_-NqzVVyBRDj7-(WSeT4HiJXBU3z_EYcY8)Fwx35tp49lPDbvVl4rx2wt0Ts2T2eWEtZSFXGai2cCE_V(hQN)Powbo8HoW3WDqyiRAm2l-5794jwo0uryUYGxqXTqqH_VLGL_iEhlzQHcVG3D3yWGwTMG7iohXtD(0xWAxx-Xj)h0u-xlmy-MOXu6WgmqeouoGPHgT5axFbir9WDpY0RC06VvJCbegYjmrR(5m51BcOh_9ze)1bfLlZegJm2zMrKpT6btmt90210xdj5WM31YVOwLTMWc5DYiPJ_p43RpkOraZZuI4qKROb
IP 198.54.125.239:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2252), with CRLF line terminators
Hash 805fef2f2510888653796908ed33767a
0f4f58223227bb1930c4b9f1714f0dd46b37e70d
e2f5d899318f49cd1a1cdb09da1f2e7f0c1eb764aecc767208f23c9eecdaf3d3
GET /?cvp_data=$BAekMD(H)B9fETNPZ-icR76J_SHOFgHgdDZFdE8LRZGsMBo7Gv1EbUDDrKLpgC4JHAZh0uvhWxeyPqNi6(77Y6YO_48IqZCJI7Fh)5ZF7B4CxETdqd6Jsi2tkXFV7qhJUrYeCO53aeqMBqpjJM88Y_-NqzVVyBRDj7-(WSeT4HiJXBU3z_EYcY8)Fwx35tp49lPDbvVl4rx2wt0Ts2T2eWEtZSFXGai2cCE_V(hQN)Powbo8HoW3WDqyiRAm2l-5794jwo0uryUYGxqXTqqH_VLGL_iEhlzQHcVG3D3yWGwTMG7iohXtD(0xWAxx-Xj)h0u-xlmy-MOXu6WgmqeouoGPHgT5axFbir9WDpY0RC06VvJCbegYjmrR(5m51BcOh_9ze)1bfLlZegJm2zMrKpT6btmt90210xdj5WM31YVOwLTMWc5DYiPJ_p43RpkOraZZuI4qKROb HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
x-litespeed-tag: ec8_HTTP.200
content-type: text/html; charset=UTF-8
link: <https://fngml.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: no-cache
content-length: 971
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Sun, 06 Nov 2022 13:57:27 GMT
server: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2022/03/lara-diabla-pussy-dildo-arab-girl-porn-310x310.jpg
198.54.125.239200 OK 21 kB URL HTTP/2 fngml.com/wp-content/uploads/2022/03/lara-diabla-pussy-dildo-arab-girl-porn-310x310.jpg
IP 198.54.125.239:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Lavc59.21.103", baseline, precision 8, 310x310, components 3\012- data
Hash 9db0bd9327cbc86e09b6040cde2fb997
5fd8dab0e55333abef59c39843351752b50b139a
9d46f1d314decc20e40275445447f25f106a629e1eb54d5460c433148462323f
GET /wp-content/uploads/2022/03/lara-diabla-pussy-dildo-arab-girl-porn-310x310.jpg HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:27 GMT
content-type: image/jpeg
last-modified: Sat, 03 Sep 2022 15:26:01 GMT
accept-ranges: bytes
content-length: 21364
date: Sun, 06 Nov 2022 13:57:27 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fngml.com/wp-admin/admin-ajax.php
198.54.125.239200 OK 36 B URL HTTP/2 fngml.com/wp-admin/admin-ajax.php
IP 198.54.125.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 559f580922e4b23b5ae7de7e2b18fa51
f1d5c0d8eaa033007cd96e75ff5e25bdadbe6813
cb1434ebab957bbc463dbc1d9a825eb186ff285e7edcf067c7f7483a76d39c39
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fngml.com/31509
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Origin: https://fngml.com
Content-Length: 51
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://fngml.com
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN,SAMEORIGIN
set-cookie: pvc_visits[0]=1667746647b31509; expires=Sun, 06-Nov-2022 14:57:27 GMT; Max-Age=3600; path=/; secure; HttpOnly; SameSite=LAX
x-litespeed-cache-control: no-cache
content-length: 36
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Sun, 06 Nov 2022 13:57:27 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Niev1fF4GEztS6bKvfuu9-flBJTX0b23ootguNY0-hACmqrV-ehKUGUb8UMGaraCvhI6nUOdQESFHbgTW0cS_iUDckJ4klULAYBZLD3grOG3uYL3h9R9ZIjR_eaYqofErT8L6Q7vSqtS1nfAEAUGZMZG0Z5eTJGQPQy9lKD3cCtuTk-e42rf6GEqdojR1FGnUNG7CrBLBaF3FTvrAXGbgSvArR2g-T2OCki7XOv9DnHcMB8TBeJPSULtryfw4lr281ErggyGwVgGPjZOa6di1iofRhac_fx_wt6qYfOgj0f6wEBPZ9Z3l81cdbaggoILXhdvdEo70_o-VGW9sg0ltGuGFkj5ij0Gn4EnuvK9Tw2S1C3LHllkMnZspfkKXTL-EXpF4rsjoJDDaLzbus4nM6uk0-DpXwSM7iNUhKiqJ9u6TQZd26JEublmfLHJp6_jCavr7tikxSm2Oo_72IBgHN-7ptVQQStvfkn9q1LDUqJGvBBlXCS61XPIDGz8_tJ1WgBYUpCU4F2_PjE8_8HfFCLaCNrvgawLob_R1c95TVbjTdUQyJJERPrSMmoew0g99e2h9tyEovorCZNmKkGpRC4=&cb=_cloyeu3iomhcrn6vs2mwf3&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Niev1fF4GEztS6bKvfuu9-flBJTX0b23ootguNY0-hACmqrV-ehKUGUb8UMGaraCvhI6nUOdQESFHbgTW0cS_iUDckJ4klULAYBZLD3grOG3uYL3h9R9ZIjR_eaYqofErT8L6Q7vSqtS1nfAEAUGZMZG0Z5eTJGQPQy9lKD3cCtuTk-e42rf6GEqdojR1FGnUNG7CrBLBaF3FTvrAXGbgSvArR2g-T2OCki7XOv9DnHcMB8TBeJPSULtryfw4lr281ErggyGwVgGPjZOa6di1iofRhac_fx_wt6qYfOgj0f6wEBPZ9Z3l81cdbaggoILXhdvdEo70_o-VGW9sg0ltGuGFkj5ij0Gn4EnuvK9Tw2S1C3LHllkMnZspfkKXTL-EXpF4rsjoJDDaLzbus4nM6uk0-DpXwSM7iNUhKiqJ9u6TQZd26JEublmfLHJp6_jCavr7tikxSm2Oo_72IBgHN-7ptVQQStvfkn9q1LDUqJGvBBlXCS61XPIDGz8_tJ1WgBYUpCU4F2_PjE8_8HfFCLaCNrvgawLob_R1c95TVbjTdUQyJJERPrSMmoew0g99e2h9tyEovorCZNmKkGpRC4=&cb=_cloyeu3iomhcrn6vs2mwf3&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1913086/?pb=87f2b71ad6f2f4e3477392ef6dce8a3d1667750246&psp=Niev1fF4GEztS6bKvfuu9-flBJTX0b23ootguNY0-hACmqrV-ehKUGUb8UMGaraCvhI6nUOdQESFHbgTW0cS_iUDckJ4klULAYBZLD3grOG3uYL3h9R9ZIjR_eaYqofErT8L6Q7vSqtS1nfAEAUGZMZG0Z5eTJGQPQy9lKD3cCtuTk-e42rf6GEqdojR1FGnUNG7CrBLBaF3FTvrAXGbgSvArR2g-T2OCki7XOv9DnHcMB8TBeJPSULtryfw4lr281ErggyGwVgGPjZOa6di1iofRhac_fx_wt6qYfOgj0f6wEBPZ9Z3l81cdbaggoILXhdvdEo70_o-VGW9sg0ltGuGFkj5ij0Gn4EnuvK9Tw2S1C3LHllkMnZspfkKXTL-EXpF4rsjoJDDaLzbus4nM6uk0-DpXwSM7iNUhKiqJ9u6TQZd26JEublmfLHJp6_jCavr7tikxSm2Oo_72IBgHN-7ptVQQStvfkn9q1LDUqJGvBBlXCS61XPIDGz8_tJ1WgBYUpCU4F2_PjE8_8HfFCLaCNrvgawLob_R1c95TVbjTdUQyJJERPrSMmoew0g99e2h9tyEovorCZNmKkGpRC4=&cb=_cloyeu3iomhcrn6vs2mwf3&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:27 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=2211060857568380623c7243a790a2e79be2; Path=/; Expires=Mon, 06 Nov 2023 13:57:27 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 06 Nov 2022 12:41:09 GMT
expires: Sun, 06 Nov 2022 14:41:09 GMT
cache-control: public, max-age=7200
age: 4578
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1cc1fa1eab50493489c0b4c708396a27
448baff804adecae502bfea1d0df6d59ed140d7e
5b8b35e856fd8ceb9801f489a9ebb5ed53102440efb4ba73fe29fb50b2c9d948
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6054
Cache-Control: max-age=85478
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:57:27 GMT
Etag: "63665087-117"
Expires: Mon, 07 Nov 2022 13:42:05 GMT
Last-Modified: Sat, 05 Nov 2022 12:01:11 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
img-cf.xvideos-cdn.com/videos/thumbslll/bb/37/f7/bb37f71840a0c04f3beca6d83c77bac9/bb37f71840a0c04f3beca6d83c77bac9.15.jpg
104.19.131.79200 OK 15 kB URL HTTP/2 img-cf.xvideos-cdn.com/videos/thumbslll/bb/37/f7/bb37f71840a0c04f3beca6d83c77bac9/bb37f71840a0c04f3beca6d83c77bac9.15.jpg
IP 104.19.131.79:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 488x366, components 3\012- data
Hash 48e7f0df1a28bbf4baa7e13c2b1006b7
c69d2ae2ddf354f9126cd92fe742e703f0258f9f
a820f185ae027861ca3aa954c71d2e7e5ccd17a4707725a8ecb3f3e3a726aa8e
GET /videos/thumbslll/bb/37/f7/bb37f71840a0c04f3beca6d83c77bac9/bb37f71840a0c04f3beca6d83c77bac9.15.jpg HTTP/1.1
Host: img-cf.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 06 Nov 2022 13:57:27 GMT
content-type: image/jpeg
content-length: 14681
cf-ray: 765e56a0ca071c12-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 139208
cache-control: public, max-age=10368000
expires: Mon, 06 Mar 2023 13:57:27 GMT
last-modified: Tue, 18 Oct 2022 12:37:34 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-F41C9VWTQD>m=2oeb20&_p=1110066778&cid=197669587.1667743045&ul=en-us&sr=1280x1024&_s=1&sid=1667743045&sct=1&seg=0&dl=https%3A%2F%2Ffngml.com%2F31509&dt=%D9%84%D8%A7%D8%B1%D8%A7%20%D8%AF%D9%8A%D8%A7%D8%A8%D9%84%D8%A7%20%D8%A7%D9%84%D9%85%D8%B5%D8%B1%D9%8A%D8%A9%20%D8%AA%D8%AA%D9%86%D8%A7%D9%83%20%D8%AE%D9%84%D9%81%D9%8A%20-%20%D8%A7%D9%84%D9%81%D9%86%20%D9%88%D8%A7%D9%84%D8%AC%D9%85%D8%A7%D9%84&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-F41C9VWTQD>m=2oeb20&_p=1110066778&cid=197669587.1667743045&ul=en-us&sr=1280x1024&_s=1&sid=1667743045&sct=1&seg=0&dl=https%3A%2F%2Ffngml.com%2F31509&dt=%D9%84%D8%A7%D8%B1%D8%A7%20%D8%AF%D9%8A%D8%A7%D8%A8%D9%84%D8%A7%20%D8%A7%D9%84%D9%85%D8%B5%D8%B1%D9%8A%D8%A9%20%D8%AA%D8%AA%D9%86%D8%A7%D9%83%20%D8%AE%D9%84%D9%81%D9%8A%20-%20%D8%A7%D9%84%D9%81%D9%86%20%D9%88%D8%A7%D9%84%D8%AC%D9%85%D8%A7%D9%84&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-F41C9VWTQD>m=2oeb20&_p=1110066778&cid=197669587.1667743045&ul=en-us&sr=1280x1024&_s=1&sid=1667743045&sct=1&seg=0&dl=https%3A%2F%2Ffngml.com%2F31509&dt=%D9%84%D8%A7%D8%B1%D8%A7%20%D8%AF%D9%8A%D8%A7%D8%A8%D9%84%D8%A7%20%D8%A7%D9%84%D9%85%D8%B5%D8%B1%D9%8A%D8%A9%20%D8%AA%D8%AA%D9%86%D8%A7%D9%83%20%D8%AE%D9%84%D9%81%D9%8A%20-%20%D8%A7%D9%84%D9%81%D9%86%20%D9%88%D8%A7%D9%84%D8%AC%D9%85%D8%A7%D9%84&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fngml.com
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://fngml.com
date: Sun, 06 Nov 2022 13:57:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn77-vid-mp4.xvideos-cdn.com/JRhSIWEoXx11DsqzMo9Y2Q==,1667751265/videos/mp4/b/b/3/xvideos.com_bb37f71840a0c04f3beca6d83c77bac9.mp4?ui=MTkzLjg0LjE3Ny4yMTMtL3ZpZGVvNzI4OTg4NjIvaXJvc2hpeWF1cw==
195.181.166.11206 Partial Content 16 kB URL HTTP/2 cdn77-vid-mp4.xvideos-cdn.com/JRhSIWEoXx11DsqzMo9Y2Q==,1667751265/videos/mp4/b/b/3/xvideos.com_bb37f71840a0c04f3beca6d83c77bac9.mp4?ui=MTkzLjg0LjE3Ny4yMTMtL3ZpZGVvNzI4OTg4NjIvaXJvc2hpeWF1cw==
IP 195.181.166.11:0
ASN #60068 Datacamp Limited
File type ISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data
Hash 4459083ae6a8c82249ae81e1d159c7c8
6fd8658c5acda25064aa0c54f266e0cfe6bf338b
94c11a70dfd3c9f05b0d9058f0f8d4a6e00ed6eadc2a43cfee50d760a5e64d19
GET /JRhSIWEoXx11DsqzMo9Y2Q==,1667751265/videos/mp4/b/b/3/xvideos.com_bb37f71840a0c04f3beca6d83c77bac9.mp4?ui=MTkzLjg0LjE3Ny4yMTMtL3ZpZGVvNzI4OTg4NjIvaXJvc2hpeWF1cw== HTTP/1.1
Host: cdn77-vid-mp4.xvideos-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
date: Sun, 06 Nov 2022 13:57:27 GMT
content-type: video/mp4
content-length: 1777403
x-frame-options: sameorigin
last-modified: Tue, 18 Oct 2022 12:37:32 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1676465266
x-77-nzt: A8O1pgp4J/Wh1GY4FeEmUP+2HBkAj/Q6yIoXhP8fAAAA
x-77-cache: HIT
x-77-nzt-ray: df6pNERYWr0
x-age-lb: 1645750
content-range: bytes 0-1777402/1777403
server: CDN77-Turbo
x-cache-lb: HIT, MISS
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163864574-1&cid=197669587.1667743045&jid=931696131&gjid=1159493378&_gid=1232588684.1667743046&_u=YADAAUAAAAAAACAAI~&z=181707130
64.233.162.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163864574-1&cid=197669587.1667743045&jid=931696131&gjid=1159493378&_gid=1232588684.1667743046&_u=YADAAUAAAAAAACAAI~&z=181707130
IP 64.233.162.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-163864574-1&cid=197669587.1667743045&jid=931696131&gjid=1159493378&_gid=1232588684.1667743046&_u=YADAAUAAAAAAACAAI~&z=181707130 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://fngml.com
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://fngml.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 06 Nov 2022 13:57:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fngml.com/wp-content/uploads/2020/09/logo192.png
198.54.125.239200 OK 57 kB URL HTTP/2 fngml.com/wp-content/uploads/2020/09/logo192.png
IP 198.54.125.239:0
File type PNG image data, 191 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 0cc0137a1086dd0d7ccd9b53bc97f967
f6b5ef02af08ddac95ba497c90b2e1b65d280db8
65c42bcc943b5fa2c657714ead975a10d954002229c55c732579f8bf59b56587
GET /wp-content/uploads/2020/09/logo192.png HTTP/1.1
Host: fngml.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/31509
Cookie: __PPU___PPU_SESSION_URL=%2F31509; _ga_F41C9VWTQD=GS1.1.1667743045.1.0.1667743045.0.0.0; _ga=GA1.1.197669587.1667743045; pvc_visits[0]=1667746647b31509
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 13 Nov 2022 13:57:27 GMT
content-type: image/png
last-modified: Sun, 27 Sep 2020 18:58:11 GMT
accept-ranges: bytes
content-length: 57435
date: Sun, 06 Nov 2022 13:57:27 GMT
server: LiteSpeed
vary: User-Agent
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash f3832eb0418d94ec98c40df1bcf3ce5b
74dd7fa6ff4f9da9324c0772d075da5f42ab5879
cc42acc8dffa6c7f0c4c3a16ffe8c88919daf4859b7524a7a0ffc6e4b169c50d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 06 Nov 2022 13:57:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
zhmzsjvkii.com/get/1913086?zoneid=1913086&jp=_cltth7czvuduadcz6z867b&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=8835021486175744
62.122.171.6200 OK 0 B URL HTTP/2 zhmzsjvkii.com/get/1913086?zoneid=1913086&jp=_cltth7czvuduadcz6z867b&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=8835021486175744
IP 62.122.171.6:0
Analyzer Verdict Alert quad9 Sinkholed
GET /get/1913086?zoneid=1913086&jp=_cltth7czvuduadcz6z867b&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=8835021486175744 HTTP/1.1
Host: zhmzsjvkii.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:26 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=221106085761eb529930474fbdb8481c8957; Path=/; Expires=Mon, 06 Nov 2023 13:57:26 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ljyajgjvuv.com/get/1913086?zoneid=1913086&jp=_clz2psyzfzsbqi2x4g2d6s&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6864696649236729
62.122.171.6200 OK 0 B URL HTTP/2 ljyajgjvuv.com/get/1913086?zoneid=1913086&jp=_clz2psyzfzsbqi2x4g2d6s&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6864696649236729
IP 62.122.171.6:0
GET /get/1913086?zoneid=1913086&jp=_clz2psyzfzsbqi2x4g2d6s&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&isRef=1&sp=0&cid=6864696649236729 HTTP/1.1
Host: ljyajgjvuv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fngml.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 06 Nov 2022 13:57:26 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=221106085716780105194f4dc2bfd4390151; Path=/; Expires=Mon, 06 Nov 2023 13:57:26 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2