leonartmotors.space-forums.net/ucp.php
137.74.206.99200 OK 4.7 kB URL HTTP/1.1 leonartmotors.space-forums.net/ucp.php
IP 137.74.206.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1261), with CRLF, LF line terminators
Hash 122f532e0484776f96e1dc17205a7c46
d8dae2906da25e78b4ac149bb3b7ebdd99925c66
070bba9a6df515a73bb7aa0aba34468e893caf5e9c2c5dc23cecdae5ebd60d7e
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /ucp.php HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:31 GMT
Server: Apache/2.4.38
Cache-Control: private, no-cache="set-cookie"
Expires: 0
Pragma: no-cache
Set-Cookie: phpbb3_pbmeu_u=1; expires=Fri, 02-Feb-2024 02:48:31 GMT; path=/; domain=leonartmotors.space-forums.net; HttpOnly
phpbb3_pbmeu_k=; expires=Fri, 02-Feb-2024 02:48:31 GMT; path=/; domain=leonartmotors.space-forums.net; HttpOnly
phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78; expires=Fri, 02-Feb-2024 02:48:31 GMT; path=/; domain=leonartmotors.space-forums.net; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4670
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10225
Expires: Thu, 02 Feb 2023 05:38:57 GMT
Date: Thu, 02 Feb 2023 02:48:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9011
Expires: Thu, 02 Feb 2023 05:18:43 GMT
Date: Thu, 02 Feb 2023 02:48:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 02:36:03 GMT
content-type: application/json
age: 749
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4243
Expires: Thu, 02 Feb 2023 03:59:15 GMT
Date: Thu, 02 Feb 2023 02:48:32 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NPvhkb9DoebWg1JIOyaal8F+RL13SmfwHAemJYQd6u3UZJ7OhtyAHtKNAcyDi07/UvniCx3FlF0=
x-amz-request-id: C6GQ31QK7BV872RG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 02:22:54 GMT
age: 1538
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 02:48:32 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
leonartmotors.space-forums.net/styles/AutumnsColor/template/styleswitcher.js
137.74.206.99200 OK 764 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/template/styleswitcher.js
IP 137.74.206.99:0
Hash 76c492515058999f09d3ad125d1015be
2985cbf51fe641e24c4249120296ebb3876a5698
5448fee6897c041ccee00ba44a21599ac3c119c1fc2049e75918953a138ca58b
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /styles/AutumnsColor/template/styleswitcher.js HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:32 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:07 GMT
ETag: "9e0-4b330cbde7ac0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 764
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
leonartmotors.space-forums.net/styles/AutumnsColor/theme/normal.css
137.74.206.99200 OK 26 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/normal.css
IP 137.74.206.99:0
Hash e1f795344a879fd7226eb57456510578
9a5e9c81930b6bc6f52d5452361e169b88cef170
3c376f761737ce269813b94ce2a79a005497db440350d659ea54837f1d30e54f
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/normal.css HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:32 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:27 GMT
ETag: "1a-4b330cd0fa7c0"
Accept-Ranges: bytes
Content-Length: 26
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
leonartmotors.space-forums.net/includes/adfly.js
137.74.206.99200 OK 1.6 kB URL HTTP/1.1 leonartmotors.space-forums.net/includes/adfly.js
IP 137.74.206.99:0
File type ASCII text, with very long lines (3867)
Hash b64e5a34c5d3838bbc31a17d88017671
ff8f98fa7c482d1c5477163f1d8489d3772bc5a7
b60e7df2a0e08d001c636bcbabcfc3667e1552202b0f1ffec0f6bbc8034488c1
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /includes/adfly.js HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:32 GMT
Server: Apache/2.4.38
Last-Modified: Tue, 12 Mar 2019 10:30:12 GMT
ETag: "f54-583e32c8ff500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1637
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 02:48:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
leonartmotors.space-forums.net/styles/AutumnsColor/template/forum_fn.js
137.74.206.99200 OK 1.9 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/template/forum_fn.js
IP 137.74.206.99:0
Hash ee767c98111e8e9c5d85d9a389ffce18
a58c408a8985c4569f8aaff19eab4d71c6be3cd6
df7a7b765f57eb9b0a71d76351c872a2fcd3efe28d96b95862a7a676e6e353fd
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /styles/AutumnsColor/template/forum_fn.js HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:32 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:20:49 GMT
ETag: "1260-4b330cacbd240-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1860
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
137.74.206.99200 OK 14 kB URL HTTP/1.1 leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
IP 137.74.206.99:0
Hash 891f7748f4c6918ff9a7bf6e216bfeda
b2b0be109337d49e5fbc4517876c9d53365619b4
390a19576bbd6d50c39f8410b082722ee29b7bbca5cf4bd9c3ef705951295463
Analyzer Verdict Alert quad9 Sinkholed
GET /style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:32 GMT
Server: Apache/2.4.38
Expires: Thu, 09 Feb 2023 02:48:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13745
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css; charset=UTF-8
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
172.217.21.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 172.217.21.170:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 05:51:38 GMT
expires: Sat, 27 Jan 2024 05:51:38 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 507414
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 02:48:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adf.ly/js/link-converter.js
104.20.66.244200 OK 11 kB URL HTTP/1.1 adf.ly/js/link-converter.js
IP 104.20.66.244:0
File type ASCII text, with very long lines (24590)
Hash a9d75b7bd46c34771667449479f06d0d
bf539dc98ca8fed1ef064557305d9a26d8f5442f
b84cfa9a1114f418b7600e993e8c9d99a1ccf40e2efccd0484a365e43129d4f0
GET /js/link-converter.js HTTP/1.1
Host: adf.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:32 GMT
Content-Type: application/x-javascript
Content-Length: 11182
Connection: keep-alive
cache-control: public, max-age=604800
expires: Thu, 09 Feb 2023 02:48:32 GMT
last-modified: Sun, 15 Jan 2023 00:59:02 GMT
etag: "7b7a-63c34fd6-bb6751cf487a3302;gz"
content-encoding: gzip
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Server: cloudflare
CF-RAY: 792f9bc25859b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
script.affilizr.com/js/affilizr.js
185.107.56.199200 OK 494 B URL HTTP/1.1 script.affilizr.com/js/affilizr.js
IP 185.107.56.199:0
ASN #43350 NForce Entertainment B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (494), with no line terminators
Hash b150b984846699cc529bf806c31cd7dd
df7261ccdfc63c0afe735d226f2c3cce4fbfc775
6d4ceb0fd846db0a14521493426313d31fc18bda8db1e0896d07a0191877037b
Analyzer Verdict Alert fortinet Malware
GET /js/affilizr.js HTTP/1.1
Host: script.affilizr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 494
content-type: text/html; charset=utf-8
date: Thu, 02 Feb 2023 02:48:32 GMT
server: nginx
set-cookie: sid=14c64a5e-a2a4-11ed-96f3-7d917547120a; path=/; domain=.affilizr.com; expires=Tue, 20 Feb 2091 06:02:39 GMT; max-age=2147483647; HttpOnly
tags.clickintext.net/jtgVcVctkgLJH
151.80.200.209200 OK 1.1 kB URL HTTP/1.1 tags.clickintext.net/jtgVcVctkgLJH
IP 151.80.200.209:0
File type ASCII text, with very long lines (316)
Hash b73063b4a9b0d55d5d733298e424286b
7d06da6ebc26eee05a2f589f70761d4ed9faa975
c05d08746bb8988c0e12e83c4a9df1917a387c426c210b280e9ef52e691360cd
GET /jtgVcVctkgLJH HTTP/1.1
Host: tags.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:32 GMT
Content-Type: application/x-javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CUR ADM OUR NOR STA NID"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: witchServeur-7=107; expires=Thu, 02-Feb-2023 03:48:32 GMT; Max-Age=3600; path=/; secure; SameSite=None; domain=.clickintext.net
Content-Encoding: gzip
tags.clickintext.net/jZE9GUcMZdOus
151.80.200.209200 OK 1.9 kB URL HTTP/1.1 tags.clickintext.net/jZE9GUcMZdOus
IP 151.80.200.209:0
File type Non-ISO extended-ASCII text
Hash 6f2e1f59e643cd86bde4ee42a836a500
da7d2e9f4cec90e3b0377514b3eccabf6e03ab80
38680a0295782cfafc7179c496eea0fa156b4c3a1e17f61cdc55ecd3f407a2c4
GET /jZE9GUcMZdOus HTTP/1.1
Host: tags.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:32 GMT
Content-Type: application/x-javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CUR ADM OUR NOR STA NID"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: witchServeur-7=107; expires=Thu, 02-Feb-2023 07:48:32 GMT; Max-Age=18000; path=/; secure; SameSite=None; domain=.clickintext.net
Content-Encoding: gzip
tags.clickintext.net/j2xic25gS17SN
151.80.200.209200 OK 1.6 kB URL HTTP/1.1 tags.clickintext.net/j2xic25gS17SN
IP 151.80.200.209:0
File type HTML document, ASCII text, with very long lines (436)
Hash 76c0fae6bbdf0d2b215cfe26e10b96c7
de6b466782cf34a40437b290f8863b0a144697b2
e06dd127108172cb3e61b678ba178bafa33aa8b96cc5e14de8cf1c49345eb446
GET /j2xic25gS17SN HTTP/1.1
Host: tags.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:32 GMT
Content-Type: application/x-javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CUR ADM OUR NOR STA NID"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: witchServeur-7=107; expires=Thu, 02-Feb-2023 03:48:32 GMT; Max-Age=3600; path=/; secure; SameSite=None; domain=.clickintext.net
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 02:41:43 GMT
age: 409
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
a01.adoptima.com/GP2416568cf32e64545
3.19.116.195302 Found 0 B URL HTTP/1.1 a01.adoptima.com/GP2416568cf32e64545
IP 3.19.116.195:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /GP2416568cf32e64545 HTTP/1.1
Host: a01.adoptima.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 302 Found
content-length: 0
date: Thu, 02 Feb 2023 02:48:32 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=adoptima.com
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 4edaf4695277b50a930efe3cda8496c8
162fcbe09f0ad1b5837591a1316b9962894b85d0
c71ab5f517a8a671ef767fc35de36387b5046bf93d4ecddd8d275643e3d502d2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 59
Cache-Control: max-age=108073
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 02:48:32 GMT
Etag: "63da276e-117"
Expires: Fri, 03 Feb 2023 08:49:45 GMT
Last-Modified: Wed, 01 Feb 2023 08:48:46 GMT
Server: ECS (amb/6BB7)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5387
Expires: Thu, 02 Feb 2023 04:18:19 GMT
Date: Thu, 02 Feb 2023 02:48:32 GMT
Connection: keep-alive
partner.googleadservices.com/gampad/google_service.js
142.250.74.98200 OK 373 B URL HTTP/1.1 partner.googleadservices.com/gampad/google_service.js
IP 142.250.74.98:0
Hash 661854aeecf12ceec3a47608501233da
f7b52c94982b73a5c5559dc166250c18e3af1ba6
12755200a7e22a322f3e6f9231be4a200dbac47873eafc18aecafe32e9dad068
GET /gampad/google_service.js HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 373
X-XSS-Protection: 0
Date: Thu, 02 Feb 2023 02:26:48 GMT
Expires: Thu, 02 Feb 2023 03:26:48 GMT
Cache-Control: public, max-age=3600
Age: 1305
ETag: 953604975598805376
Content-Type: text/javascript; charset=UTF-8
leonartmotors.space-forums.net/images/iphone.png
137.74.206.99200 OK 1.1 kB URL HTTP/1.1 leonartmotors.space-forums.net/images/iphone.png
IP 137.74.206.99:0
File type PNG image data, 13 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 3bb78d80beb34f0a4b8c3dce9b95bebe
b35169f481a15972413247812bc8aab553b3b5bf
94d07af681c3f1bee72095da0efbc52c8a3a3cd004bf10fcf6e8e3ba46a3ea8b
Analyzer Verdict Alert quad9 Sinkholed
GET /images/iphone.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Thu, 11 Mar 2010 17:20:09 GMT
ETag: "42d-48189a06f6440"
Accept-Ranges: bytes
Content-Length: 1069
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/styles/AutumnsColor/theme/large.css
137.74.206.99200 OK 26 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/large.css
IP 137.74.206.99:0
Hash 57db84d40f8bbfe5ad1c76e56b740a9f
c8deafaaf5f96b8b01e4d93de7ec11239a83cace
9e6edda7bd0383f746d0a1eeed496a77fb9a68d661a050aa094afe153d4ab505
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/large.css HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:26 GMT
ETag: "1a-4b330cd006580"
Accept-Ranges: bytes
Content-Length: 26
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
leonartmotors.space-forums.net/space9.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space9.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space9.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/print.css
137.74.206.99200 OK 1.1 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/print.css
IP 137.74.206.99:0
Hash 7e386e48adef7b84e03a1b06e84ec234
fd59bee9318a900c4a28f50317825b7250b5ff80
0e8c0a981a0cbd61e20b5d8c8e819045301e0213d79dda2335206709e8eeb399
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/print.css HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:28 GMT
ETag: "be6-4b330cd1eea00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1137
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
leonartmotors.space-forums.net/styles/AutumnsColor/theme/medium.css
137.74.206.99200 OK 26 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/medium.css
IP 137.74.206.99:0
Hash dacdeddec5e576d812d346b8e226f856
d855a63c09ebe3e814fd4941e6ef60b3b0058109
231d478a52d58d653f33a2014607b1434b659e9e0afff0e7d528fe813a4ab99b
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/medium.css HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:26 GMT
ETag: "1a-4b330cd006580"
Accept-Ranges: bytes
Content-Length: 26
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
leonartmotors.space-forums.net/space7.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space7.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space7.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space3.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space3.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space3.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space4.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space4.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space4.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/images/chat.png
137.74.206.99200 OK 1.0 kB URL HTTP/1.1 leonartmotors.space-forums.net/images/chat.png
IP 137.74.206.99:0
File type PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ed08af132b7758cac5dd6205c0ca77e
7560b733824955b090ca8a2e651efbe49ee76b98
fc6acca2cccbf3b31f3408f3ab0f7a8ffc538949b5cd6d13edf94e7f727de57d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/chat.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Mon, 15 Mar 2010 10:35:33 GMT
ETag: "417-481d470d68740"
Accept-Ranges: bytes
Content-Length: 1047
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
push.services.mozilla.com/
52.40.156.74101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.40.156.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XAF6LCMPPMHQv9rJauk1Hw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: a/1wwz5bHOwfyk3BmhlxzYbUTbM=
leonartmotors.space-forums.net/space13.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space13.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space13.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space8.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space8.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space8.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space5.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space5.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space5.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/espace.gif
137.74.206.99404 Not Found 196 B URL HTTP/1.1 leonartmotors.space-forums.net/espace.gif
IP 137.74.206.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert quad9 Sinkholed
GET /espace.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Content-Length: 196
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
leonartmotors.space-forums.net/space11.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space11.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space11.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/space2.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space2.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space2.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
leonartmotors.space-forums.net/cron.php?cron_type=tidy_cache&sid=0be120a0fa6236c36b4ef41b5db6ab78
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/cron.php?cron_type=tidy_cache&sid=0be120a0fa6236c36b4ef41b5db6ab78
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /cron.php?cron_type=tidy_cache&sid=0be120a0fa6236c36b4ef41b5db6ab78 HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Cache-Control: no-cache
Content-length: 43
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/space6.gif
137.74.206.99200 OK 43 B URL HTTP/1.1 leonartmotors.space-forums.net/space6.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
Analyzer Verdict Alert quad9 Sinkholed
GET /space6.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 18e1dabf1a3b747b5d2ddfc4ba27a151
c2ed3b4ac9eb038d65091a5bb7ef8c3830f15fc8
8ad60818260ee3be87c18c83df4709cff9395686da1f67a52d07bf8ea654d695
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8AD60818260EE3BE87C18C83DF4709CFF9395686DA1F67A52D07BF8EA654D695"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11702
Expires: Thu, 02 Feb 2023 06:03:35 GMT
Date: Thu, 02 Feb 2023 02:48:33 GMT
Connection: keep-alive
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/autumn_background.jpg
137.74.206.99200 OK 148 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/autumn_background.jpg
IP 137.74.206.99:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1600x1200, components 3\012- data
Size 148 kB (147663 bytes)
Hash 2551085daf22a8a32f858f2c72e48096
6cefde2f3127d2c78f325205ec5b2847c2966844
a405aa3e1eba5db6735174c06b7143c14a7e6be999c8466c1f9f1dd142338814
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/autumn_background.jpg HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:47 GMT
ETag: "240cf-4b330ce40d4c0"
Accept-Ranges: bytes
Content-Length: 147663
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
leonartmotors.space-forums.net/forums/2010-07/leonartmotors/images/site_logo.png
137.74.206.99200 OK 248 kB URL HTTP/1.1 leonartmotors.space-forums.net/forums/2010-07/leonartmotors/images/site_logo.png
IP 137.74.206.99:0
File type PNG image data, 800 x 212, 8-bit/color RGB, non-interlaced\012- data
Size 248 kB (247700 bytes)
Hash 31fe69263f50892615ab7f2e7f4ebb3e
946640bffb47f6c7a799a3e41e16a3debe12b5ed
fce8f824506f4609240b8e5608b3c5026de326f8ee1cbe879254e72242b3c757
Analyzer Verdict Alert quad9 Sinkholed
GET /forums/2010-07/leonartmotors/images/site_logo.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Wed, 29 Jan 2020 15:09:06 GMT
ETag: "3c794-59d48b8bab925"
Accept-Ranges: bytes
Content-Length: 247700
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/espace.gif
137.74.206.99404 Not Found 196 B URL HTTP/1.1 leonartmotors.space-forums.net/espace.gif
IP 137.74.206.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert quad9 Sinkholed
GET /espace.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Content-Length: 196
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
leonartmotors.space-forums.net/favicon.ico
137.74.206.99200 OK 1.4 kB URL HTTP/1.1 leonartmotors.space-forums.net/favicon.ico
IP 137.74.206.99:0
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Hash 25771d142316f29c820c7ee06a296053
1242c859c8e2b602ffc83251e57d768df825ccf7
90d3d777ef181682e46d1e8927af8ed9a93157a208912f221debe4b957a9cd41
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/ucp.php
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Fri, 30 Oct 2009 12:41:26 GMT
ETag: "57e-47726589d2980"
Accept-Ranges: bytes
Content-Length: 1406
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/corners_left.png
137.74.206.99200 OK 173 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/corners_left.png
IP 137.74.206.99:0
File type PNG image data, 6 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 0de39e3aaac51526d179d77cc437cc0c
d844a32372af48a795c6c06ff9f2c9c280a707a5
f4d4734ab640e1ca98cf10a6c2542703c71115e55a90918e5c62db420d76eea6
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/corners_left.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:41 GMT
ETag: "ad-4b330cde54740"
Accept-Ranges: bytes
Content-Length: 173
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
lb.apicit.net/loader.v8.php?apicitDatas=1%2Fsli%2Fcit3827&RK=CIT&zid=50270&call=document.onapicitCall&jQ=
151.80.200.208200 OK 41 kB URL HTTP/2 lb.apicit.net/loader.v8.php?apicitDatas=1%2Fsli%2Fcit3827&RK=CIT&zid=50270&call=document.onapicitCall&jQ=
IP 151.80.200.208:0
Hash b3a79dadeef5a04d3f26dc44163669d6
2015eda9f7299c1ec870c31b2de6e1a6bc1c008f
a55f35590d92ad131f5de56f5c740af7292fd486bdf7f4c95c572c593e9c7aad
GET /loader.v8.php?apicitDatas=1%2Fsli%2Fcit3827&RK=CIT&zid=50270&call=document.onapicitCall&jQ= HTTP/1.1
Host: lb.apicit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 02:48:33 GMT
content-type: application/javascript
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: apicit=91e5a0128232f07653c76dfe6f6d2d43; expires=Fri, 02-Feb-2024 02:48:33 GMT; path=/; secure; SameSite=None; domain=.apicit.net; secure; SameSite=None
sw=294727713; expires=Fri, 02-Feb-2024 02:48:33 GMT; path=/; secure; SameSite=None; domain=.apicit.net; secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
stats.g.doubleclick.net/dc.js
64.233.162.154200 OK 17 kB URL HTTP/1.1 stats.g.doubleclick.net/dc.js
IP 64.233.162.154:0
File type ASCII text, with very long lines (1305)
Hash 5f65521f6c6223e1e18cb161832bea2a
f03800023e7bbe2579cd24e122cdf8c6ecf8b4c6
787b69b93681cf41784dfa8655cbdafe8a56ecc62f0112a6ea2241a284a0e3c9
GET /dc.js HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17093
Date: Thu, 02 Feb 2023 02:17:17 GMT
Expires: Thu, 02 Feb 2023 04:17:17 GMT
Cache-Control: public, max-age=7200
Age: 1876
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/mid_border.png
137.74.206.99200 OK 25 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/mid_border.png
IP 137.74.206.99:0
File type PNG image data, 937 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 404a8209762f13a61be45ba4383caf20
d4affc94822510b3f85b723ebf84625bb5d07e2a
bc44e16f1001f85b239609ea152ebb5a10da1807f577f4cd8501c31e456e16fe
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/mid_border.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:54 GMT
ETag: "62a6-4b330ceaba480"
Accept-Ranges: bytes
Content-Length: 25254
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/bg_button.gif
137.74.206.99200 OK 41 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/bg_button.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 4 x 24\012- data
Hash 6002895efcf8bd6a3e7e346b564bba3b
94f56c8ecbaef7c3e1bbcb21361bdd4eee133d6f
004e77538cf63d55371cf1918bb11c14b79c1b5eaae8304b097ce70155b66793
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/bg_button.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:36 GMT
ETag: "29-4b330cd98fc00"
Accept-Ranges: bytes
Content-Length: 41
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_textbox_search.gif
137.74.206.99200 OK 564 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_textbox_search.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 14 x 14\012- data
Hash 0ca8ee5ab952ed9cb276fca20fc4b4bb
25466ff57318491a64d7ffc5ad9b6cf0f1b47fba
c77f739e3cbe51c932348e7a014471e1a80d3504c2a05808ace5d3c0b00d0e7b
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_textbox_search.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:53 GMT
ETag: "234-4b330ce9c6240"
Accept-Ranges: bytes
Content-Length: 564
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/top_border.png
137.74.206.99200 OK 26 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/top_border.png
IP 137.74.206.99:0
File type PNG image data, 937 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 85ebdb62151afeaa30d8d00805efb5c6
077597e6c6fe4ff140bb0d77f540cb2e82bd8f18
87b0fab818b247166a5e53486b99d3fc4f12d5f6ec3c3489581f18087382e73b
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/top_border.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:57 GMT
ETag: "653f-4b330ced96b40"
Accept-Ranges: bytes
Content-Length: 25919
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_home.gif
137.74.206.99200 OK 630 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_home.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 4a67953e7a666eb331d6bb088506f14c
4984164153f37b7c92b23ef46f02fb96511ead6a
9166e639ddd8165550fb8536f898ae44b164b25b7a20bb72643e62cc303a4d27
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_home.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:49 GMT
ETag: "276-4b330ce5f5940"
Accept-Ranges: bytes
Content-Length: 630
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/autumn_header.jpg
137.74.206.99200 OK 78 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/autumn_header.jpg
IP 137.74.206.99:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 900x300, components 3\012- data
Hash afb99cd8b6e7ab1da47e81df2043d708
513e5c3769b0cad3c59157d8c1e0a44b56d519ae
878d0040e6bdc1e02ab99ae23da51b7fd870ea3e3dbb03a292b5004938157013
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/autumn_header.jpg HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:43 GMT
ETag: "13080-4b330ce03cbc0"
Accept-Ranges: bytes
Content-Length: 77952
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_fontsize.gif
137.74.206.99200 OK 328 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_fontsize.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 29 x 36\012- data
Hash bde88e850aa719ab441611e7eb325581
fec58b4f8ca8b1bc2c5b11c8366d53b94b0a9150
82d7a17bc5f76d41212a1e33f9ccb0893e8dd4090beb4c7c3aa51e43bd5e0fbd
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_fontsize.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:49 GMT
ETag: "148-4b330ce5f5940"
Accept-Ranges: bytes
Content-Length: 328
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_faq.gif
137.74.206.99200 OK 589 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_faq.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 16 x 12\012- data
Hash c1ffffb9fda33d5d3cbe19b4eb4d05a1
2d2464cda8b61f9b308b86e466e473ff32317930
2bceacf0e95ebf68831350efc4bc4d3959e3f929e4eb64dc3bafca97c20f35e2
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_faq.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:49 GMT
ETag: "24d-4b330ce5f5940"
Accept-Ranges: bytes
Content-Length: 589
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_register.gif
137.74.206.99200 OK 582 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_register.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 14 x 13\012- data
Hash 19925b28ee56f02704e3f8948c067f31
06cad86c918f5a4e3a51078848d503a2a4d65e88
b88423f3b20777eb67790461dae6bb4a625fa841eb9a0d7ba12b33b9f3f45da3
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_register.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:51 GMT
ETag: "246-4b330ce7dddc0"
Accept-Ranges: bytes
Content-Length: 582
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/gif
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/bottom_border.png
137.74.206.99200 OK 26 kB URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/bottom_border.png
IP 137.74.206.99:0
File type PNG image data, 937 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash 80a78dfab52948b2768d034704a423b3
29b0ef0386d157bf62fb08934a234d2e967d8300
201ae0687734a2af9016e7a6a57538d031fde32e34921a77e549687f1e3052d8
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/bottom_border.png HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:42 GMT
ETag: "63f7-4b330cdf48980"
Accept-Ranges: bytes
Content-Length: 25591
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_logout.gif
137.74.206.99200 OK 604 B URL HTTP/1.1 leonartmotors.space-forums.net/styles/AutumnsColor/theme/images/icon_logout.gif
IP 137.74.206.99:0
File type GIF image data, version 89a, 14 x 14\012- data
Hash c32955ce32815f05dc0cd396ae6cdc12
9942b2be9fcccde31d7eb44b16f2683a4552939f
309ed44778121e98011a04a9de16d17fc585497087eacf6414acc6dc536853a4
Analyzer Verdict Alert quad9 Sinkholed
GET /styles/AutumnsColor/theme/images/icon_logout.gif HTTP/1.1
Host: leonartmotors.space-forums.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/style.php?sid=0be120a0fa6236c36b4ef41b5db6ab78&id=27&lang=en
Cookie: phpbb3_pbmeu_u=1; phpbb3_pbmeu_k=; phpbb3_pbmeu_sid=0be120a0fa6236c36b4ef41b5db6ab78
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.38
Last-Modified: Sat, 03 Dec 2011 14:21:49 GMT
ETag: "25c-4b330ce5f5940"
Accept-Ranges: bytes
Content-Length: 604
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/gif
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cda28cd5b6b3f63742786af116a92c22
f9b1811c5d1818808f4dac55deb3736b275f36c6
845ad5bf2fb7d727ed2123dee84b6baf480c6d2bb496dc562dee0eb619d506ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "845AD5BF2FB7D727ED2123DEE84B6BAF480C6D2BB496DC562DEE0EB619D506CA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8772
Expires: Thu, 02 Feb 2023 05:14:45 GMT
Date: Thu, 02 Feb 2023 02:48:33 GMT
Connection: keep-alive
www-107-slidein.clickintext.net/interstitiel/exec.php?a=3827&zone=17447&zk=jtgVcVctkgLJH&apicitIdPAPXTime=91e5a0128232f07653c76dfe6f6d2d43&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0
46.105.104.203200 OK 917 B URL HTTP/1.1 www-107-slidein.clickintext.net/interstitiel/exec.php?a=3827&zone=17447&zk=jtgVcVctkgLJH&apicitIdPAPXTime=91e5a0128232f07653c76dfe6f6d2d43&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0
IP 46.105.104.203:0
Hash 7f8595e79c665b445375aee8bc57ee13
9a2f3446c139871fcd345842aeee30378b77fe47
84d2ad729916f908edb87f27b9d3aa8f68e4cc907c0acd6ee56b06fff1638086
GET /interstitiel/exec.php?a=3827&zone=17447&zk=jtgVcVctkgLJH&apicitIdPAPXTime=91e5a0128232f07653c76dfe6f6d2d43&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0 HTTP/1.1
Host: www-107-slidein.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: application/x-javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CUR ADM OUR NOR STA NID"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
www-107-slidein.clickintext.net/exec.dev.php?a=3827&zk=j2xic25gS17SN&apicitIdPAPXTime=91e5a0128232f07653c76dfe6f6d2d43&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0&mobile=0
46.105.104.203200 OK 20 B URL HTTP/1.1 www-107-slidein.clickintext.net/exec.dev.php?a=3827&zk=j2xic25gS17SN&apicitIdPAPXTime=91e5a0128232f07653c76dfe6f6d2d43&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0&mobile=0
IP 46.105.104.203:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /exec.dev.php?a=3827&zk=j2xic25gS17SN&apicitIdPAPXTime=91e5a0128232f07653c76dfe6f6d2d43&apicitIdPAPXTimeMore=sw%5B0%5D&cithref=&if=0&mobile=0 HTTP/1.1
Host: www-107-slidein.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: application/x-javascript;charset=ISO-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="CUR ADM OUR NOR STA NID"
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Content-Encoding: gzip
fr.clickintext.net/js.min/cit.kelkoo.utf8.js?4
87.98.175.165200 OK 8.6 kB URL HTTP/1.1 fr.clickintext.net/js.min/cit.kelkoo.utf8.js?4
IP 87.98.175.165:0
File type Non-ISO extended-ASCII text, with very long lines (31182), with LF, NEL line terminators
Hash cdf548bbc6ce9d6da64e5fcfdc8bf49f
37b07f073fdbc4ada23608a37f0c60936af40621
5068b63dbf92b8bc15e40e758d0c612695e894b11b9e10cc47cd6a9657fd4a84
GET /js.min/cit.kelkoo.utf8.js?4 HTTP/1.1
Host: fr.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:48:33 GMT
Server: Apache/2.4.25 (Debian) PHP/5.6.33-0+deb8u1 OpenSSL/1.0.2u
Last-Modified: Tue, 17 Nov 2020 08:24:08 GMT
ETag: "9b3a-5b44937f91e19-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8616
Connection: close
Content-Type: application/javascript; charset=utf-8
www-107.clickintext.net/extraintext/optimize.php?r=1&a=50270&jQuery=2
46.105.104.203200 OK 2.0 kB URL HTTP/2 www-107.clickintext.net/extraintext/optimize.php?r=1&a=50270&jQuery=2
IP 46.105.104.203:0
Hash 226477d468dfb2f8e8603ab220184b4f
4f8997daa0a9dbf829bb8e9ba3e2cf3b557b3b2d
646ee95e72352d479b690fd5f20c60cf3106d5dcc8d42ac3854d2ff55347fe3a
GET /extraintext/optimize.php?r=1&a=50270&jQuery=2 HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 02:48:33 GMT
content-type: application/javascript
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www-107.clickintext.net/pics/popup2/tlbg.gif
46.105.104.203200 OK 1.8 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/tlbg.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 59 x 46\012- data
Hash 80f3a0a4ca172791f18864d90a4c0be0
755d6ae4413efb075afe16c69dce518b42a2b751
f7b3ad15b52be9b75129117c25290d9fd4a06d253aac4b8b4be9772ccef45eda
GET /pics/popup2/tlbg.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86967-82f"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/lp_fr.png
46.105.104.203200 OK 728 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/lp_fr.png
IP 46.105.104.203:0
File type PNG image data, 78 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash fec18844c8406df25157dffd3d8e153c
d7ce99e6c40574112b4af2dc21713dd52ae6f324
ddfee615dc75d20fe98f2829a204b16f9ec0af61db37408a9e42934bd92e4dd5
GET /pics/popup2/lp_fr.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d74ecd-2bc"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/top.png
46.105.104.203200 OK 4.3 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/top.png
IP 46.105.104.203:0
File type PNG image data, 345 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 6205b5b79f3e93335c4c28418ec87be2
c6db2bb4c5f840a6a68782216d1af20a63a352a3
2468db31c8c0a8b7c1a52c1e94aea7a9f9f742965e11e47f94556100ac609ebb
GET /pics/popup2/top.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86fd8-10a7"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/top.gif
46.105.104.203200 OK 3.5 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/top.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 345 x 28\012- data
Hash 562554573d4bb1e3058883cd78624d02
8e338292ce32178ce00bbd084e2a43c45158af62
945708e08ea6ea68e0dde988353a902f5d25b60d5d9abbc0ca72c95d89ea4c24
GET /pics/popup2/top.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86fe3-ded"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/lp_fr.gif
46.105.104.203200 OK 449 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/lp_fr.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 78 x 12\012- data
Hash 8345e14288e0c70296eea83c6ea3c591
9dd6ed0149aadf25405254a817c4d5bf965ef9a9
0c850ebaacfd082e7343306fb805c85bbed982faf16a6c5d9580684b19025982
GET /pics/popup2/lp_fr.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86966-1c9"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/middle.png
46.105.104.203200 OK 235 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/middle.png
IP 46.105.104.203:0
File type PNG image data, 345 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 92ad639d82faefda1de28f4d0d02d341
f5a82d1d0474d8b4acd3b355b645075cdf500763
be8cdc51a2916ab22e0deb1916698aad1974cc94fbefabee0c995c9f80916f9d
GET /pics/popup2/middle.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d747fb-d9"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/middle.gif
46.105.104.203200 OK 138 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/middle.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 345 x 1\012- data
Hash 4eec88f9e9c04594312eea92daa8eff0
b5cde59e700c5a0808cc50fd3903c5401df8c2a3
ce848e0ed42079389736188528843cb140f7980963b498dd1190a61047db9803
GET /pics/popup2/middle.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86966-76"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/b1.png
46.105.104.203200 OK 2.5 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/b1.png
IP 46.105.104.203:0
File type PNG image data, 345 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash f56bba3fe4d9a4851889d2a398a2d11f
395d3eaba69ce3da7803a6fde293d9766f134dc3
109d432a7659c17dca6a5030caf723c3f81929baf86db6efd7ddb67eeaeaeb46
GET /pics/popup2/b1.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d747fa-981"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/b1.gif
46.105.104.203200 OK 2.8 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/b1.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 345 x 20\012- data
Hash b87d558b1c96600e42b146ee36f337b9
fc1166869ed99290170611d63ea33ff4aa3ee0f9
fa2359f1505a070d402599ddf1781c34e55752ea8b19e3fe0302e847470cefa9
GET /pics/popup2/b1.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86965-ba5"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/bm.png
46.105.104.203200 OK 598 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/bm.png
IP 46.105.104.203:0
File type PNG image data, 345 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 5c2061ff947fbea76dc4a800d22dae33
dbec9f940d0f3d23e4a2f3f24606f0c375b47dac
3d7bbe591b62305156c9004881e7ff5fb1739631ab156ac877720b8e036dbad5
GET /pics/popup2/bm.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d75164-23c"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/bm.gif
46.105.104.203200 OK 133 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/bm.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 345 x 1\012- data
Hash fe7d0ca8bdae9709fe15dbf09705efc4
62a0349e779a156a5a0bfd8c6693e2450d269466
09148714081c74a3840aa1c1b39b79847c8b746032bded69ab1b1c96ba17ceb3
GET /pics/popup2/bm.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86966-75"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/b2.png
46.105.104.203200 OK 1.5 kB URL HTTP/1.1 www-107.clickintext.net/pics/popup2/b2.png
IP 46.105.104.203:0
File type PNG image data, 327 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash fca481620f2d9e7c708095b84cf19268
4c611748b063a9555832c03f67cadaf5ae9cb868
b0c04662dbed0fed1ffba5255d60144fb4203f2f75587ea216a6bfb2dc87a849
GET /pics/popup2/b2.png HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/png
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d747fb-5eb"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
www-107.clickintext.net/pics/popup2/b2.gif
46.105.104.203200 OK 701 B URL HTTP/1.1 www-107.clickintext.net/pics/popup2/b2.gif
IP 46.105.104.203:0
File type GIF image data, version 89a, 327 x 24\012- data
Hash 1f558e636eb4d8a4b7cdb84e93292bc1
88c7686b61ed11ac345439b2d70071c692e71673
eaa59823ac37227dddffbb5eac097d2c217048bbef6ff2eabb651e263a153062
GET /pics/popup2/b2.gif HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:48:33 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"44d86965-2a1"
Expires: Fri, 03 Feb 2023 02:48:33 GMT
Last-Modified: Wed, 13 May 2013 13:13:13 GMT
Cache-Control: max-age=86400, public
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14146
Expires: Thu, 02 Feb 2023 06:44:20 GMT
Date: Thu, 02 Feb 2023 02:48:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14146
Expires: Thu, 02 Feb 2023 06:44:20 GMT
Date: Thu, 02 Feb 2023 02:48:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14146
Expires: Thu, 02 Feb 2023 06:44:20 GMT
Date: Thu, 02 Feb 2023 02:48:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: f47f7616-41aa-4983-8ada-20f6f0b6856b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frfXtHkUoAMFr1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadf64-083a903959cdab540bd38265;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:53:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UqoeSWse0jZAC3IEIWk5fj9q_4xsAoZRkn67U4m2L5NkayHxsAYmlA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:00:35 GMT
age: 17279
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 17338
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d910c24f5a6108cb74103cd70692a703
9fe648fa464e46d16f685aca1704f3414eda4107
5cbe5e571e62555225621440203ae24a3b8c41ac7f49b6b731bc2c94e620797f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5561
x-amzn-requestid: 76ca969b-a840-4d5c-97c1-2dfd93b8f630
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKYE3-IAMFqbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-2729fe22420bcc0563c39aff;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E91BIw8QT3vXXQY8GIPpnRqnTZV4paZ3wynf7UjLnjeIfwS0tiC1Gg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 16016
etag: "9fe648fa464e46d16f685aca1704f3414eda4107"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 604c573da6f79effa2a81e711c14ad9e
322a3a510ca73e124d78e31b49d676ec891a6762
8d2b897fe4251106be9183fa2a6a3b0918cd1f4dcc5f814aa88a630a77b4045c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7960
x-amzn-requestid: 774cebdf-b2bf-4a98-9d2b-e2abd4bd1a2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BG-hoAMFTSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-234163873ca67e934d684a1d;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uBOoIV3qLgPgjOas4bG9LnzvJyW5AmcxMm7xqxI2keBg3er2G3MldA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:01:31 GMT
etag: "322a3a510ca73e124d78e31b49d676ec891a6762"
content-type: image/jpeg
age: 17223
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 91987222-d376-4099-a4e9-5f877b5212be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLzO2FSDIAMFktg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce325e-281a7e062ee3039d42ae8f83;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:08:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SEH32iK4aCkxhxQyu3fSlW8uVM1Oj5hwnl2U09k_THEOdAqdEeVMJw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:03:43 GMT
age: 17091
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 16016
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www-107.clickintext.net/execs/cit.php?a=3827&zk=jZE9GUcMZdOus&2x48x57&v3plus=&apicitIdPAPXTime=91e5a0128232f07653c76dfe6f6d2d43&apicitIdPAPXTimeMore=sw%5B0%5D&rEfFir=http%3A%2F%2Fleonartmotors.space-forums.net%2Fucp.php
46.105.104.203200 OK 0 B URL HTTP/2 www-107.clickintext.net/execs/cit.php?a=3827&zk=jZE9GUcMZdOus&2x48x57&v3plus=&apicitIdPAPXTime=91e5a0128232f07653c76dfe6f6d2d43&apicitIdPAPXTimeMore=sw%5B0%5D&rEfFir=http%3A%2F%2Fleonartmotors.space-forums.net%2Fucp.php
IP 46.105.104.203:0
GET /execs/cit.php?a=3827&zk=jZE9GUcMZdOus&2x48x57&v3plus=&apicitIdPAPXTime=91e5a0128232f07653c76dfe6f6d2d43&apicitIdPAPXTimeMore=sw%5B0%5D&rEfFir=http%3A%2F%2Fleonartmotors.space-forums.net%2Fucp.php HTTP/1.1
Host: www-107.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 02:48:33 GMT
content-type: application/x-javascript;charset=ISO-8859-1
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: mySimsNetwork=36871; expires=Sat, 04-Mar-2023 02:48:33 GMT; path=/; domain=.clickintext.net; secure; SameSite=None; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
tags.clickintext.net/takeasafe/?t=1675306113&k=ad354b&h=leonartmotors.space-forums.net&
151.80.200.209200 OK 0 B URL HTTP/2 tags.clickintext.net/takeasafe/?t=1675306113&k=ad354b&h=leonartmotors.space-forums.net&
IP 151.80.200.209:0
GET /takeasafe/?t=1675306113&k=ad354b&h=leonartmotors.space-forums.net& HTTP/1.1
Host: tags.clickintext.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://leonartmotors.space-forums.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 02:48:33 GMT
content-type: text/html; charset=ISO-8859-1
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www.hugedomains.com/domain_profile.cfm?d=adoptima.com
104.26.6.37200 OK 0 B URL HTTP/2 www.hugedomains.com/domain_profile.cfm?d=adoptima.com
IP 104.26.6.37:0
GET /domain_profile.cfm?d=adoptima.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://leonartmotors.space-forums.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 02:48:33 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Sun, 28-Jan-2024 02:48:32 GMT; path=/
site_version=HDv3; expires=Sun, 28-Jan-2024 02:48:32 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0UukYaFbiNLhOg9mKwKM55mJgafloKKpZEY1lAXamsVbDbR1h31vL%2Ff7a%2B5qhBrApaYws7sz9V4oTMiAfbJRxMuYxg4gVzhzYgWuvZ4k07qmWSY9LjisVN0sVLmsCKvqDrTIbIs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792f9bc54a09b509-OSL
content-encoding: br
X-Firefox-Spdy: h2