weatherlitesoft.netlify.app/
3.125.252.47301 Moved Permanently 51 B URL HTTP/1.1 weatherlitesoft.netlify.app/
IP 3.125.252.47:0
File type ASCII text, with no line terminators
Hash d63bef6fef59ba130d9a9eb9697d27f0
67ec4dbc4bc23edb171caae4b00084fa02a2d782
fd7aa8d83349ea42f749bf0f3fd139d311f7011339ecf1ae07ff3df74ba7bf2f
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: weatherlitesoft.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Age: 79382
Cache-Control: public, max-age=0, must-revalidate
Content-Length: 51
Content-Type: text/plain
Date: Fri, 02 Sep 2022 15:56:16 GMT
Location: https://weatherlitesoft.netlify.app/
Server: Netlify
X-Nf-Request-Id: 01GC1TC456NBEN5ZYRQY0GRK9G
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 03 Sep 2022 13:43:03 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: N0fkowQICCc7yDYcOojhn7_VNH-8VW_LCzYYWgLeUhqwQ_3NIApV0g==
Age: 975
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13050
Expires: Sat, 03 Sep 2022 17:36:48 GMT
Date: Sat, 03 Sep 2022 13:59:18 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Lbm933bWoi5_HpXfCf0vqDA8xoeuyK_yAcr2uidZbwtdkzU6xRcvpg==
age: 45841
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 6709e0466ad8383ff4f71db6258967a7
a53563b9fde9a8ce47d55d6d5506de221771a78c
9d50803d8db3e386c533f0b7196a315757cbca92633dff9c72aaac508a1860e3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4967
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 13:59:18 GMT
Last-Modified: Sat, 03 Sep 2022 12:36:31 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 313
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 13:59:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
weatherlitesoft.netlify.app/
3.67.234.155200 OK 17 kB URL HTTP/2 weatherlitesoft.netlify.app/
IP 3.67.234.155:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (46502), with CRLF line terminators
Hash d278f5af986b26a05dcda873b3032fc2
6e57e87e13a53eb008392ac018bb2530b23c07af
7a58fff344ea27b954b408840761b5cd6899bb77d8b979b807f1afcf5fd5b16c
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: weatherlitesoft.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
age: 126531
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=UTF-8
date: Fri, 02 Sep 2022 02:50:27 GMT
etag: "d55038bc7c388187b1c896809725f857-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01GC1TC4F8FKV4RJG9G5A9SG8N
content-length: 16916
X-Firefox-Spdy: h2
weatherlitesoft.netlify.app/styles.css
3.67.234.155200 OK 4.1 kB URL HTTP/2 weatherlitesoft.netlify.app/styles.css
IP 3.67.234.155:0
File type ASCII text, with very long lines (16461), with no line terminators
Hash d11d6e39fb104b51b256afaf88bcbe0f
11af63ed8d6760ffe4b05d3ad800cd60928e4a13
d7fea3864b8f954ec71dc928b5ea663aaac0d12d1aab873e4217b6d3cc428531
GET /styles.css HTTP/1.1
Host: weatherlitesoft.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 36180
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/css; charset=UTF-8
date: Sat, 03 Sep 2022 03:56:18 GMT
etag: "937f225686f9a65696221210543c3cf6-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01GC1TC4MV6EGZ7ZG08NT7YCNK
content-length: 4078
X-Firefox-Spdy: h2
www.vladan.fr/wp-content/uploads/images/built-in-converter-01.jpg
172.67.143.71301 Moved Permanently 0 B URL HTTP/1.1 www.vladan.fr/wp-content/uploads/images/built-in-converter-01.jpg
IP 172.67.143.71:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/images/built-in-converter-01.jpg HTTP/1.1
Host: www.vladan.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Sep 2022 13:59:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 03 Sep 2022 14:59:18 GMT
Location: https://www.vladan.fr/wp-content/uploads/images/built-in-converter-01.jpg
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QZxg5R33Pnnbrtkfh2eaMn4KoqFmWg8fR172%2Bp1DIoRMWlElpLIptGmGpY57IxP%2B0hXjBupELWUm%2FaLIoPzyY3Okn78IvrDmyhtQWGA37v8AVJ7iyIRvif6kA7pkCHHY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744f0157689c1c12-OSL
alt-svc: h2=":443"; ma=60
i.ytimg.com/vi/fmm02R7FSYM/0.jpg
172.217.21.182200 OK 7.9 kB URL HTTP/1.1 i.ytimg.com/vi/fmm02R7FSYM/0.jpg
IP 172.217.21.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 331e44c91150fa7e19f462c25ead02d3
282ffa08e43902b32f4ce71a6f49b7a97e90a116
ee36a4f93ddb4c5c9306b6fcf44b1e78d761412b706d9c3525a2b65b331804ce
GET /vi/fmm02R7FSYM/0.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/jpeg
Vary: Origin
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="youtube"
Report-To: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
Timing-Allow-Origin: *
Content-Length: 7853
Date: Sat, 03 Sep 2022 13:59:18 GMT
Expires: Sat, 03 Sep 2022 15:59:18 GMT
Cache-Control: public, max-age=7200
ETag: "0"
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
www.aglobalwall.com/wp-content/uploads/2017/11/Slide9-800x445.jpg
172.67.157.109301 Moved Permanently 0 B URL HTTP/1.1 www.aglobalwall.com/wp-content/uploads/2017/11/Slide9-800x445.jpg
IP 172.67.157.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/uploads/2017/11/Slide9-800x445.jpg HTTP/1.1
Host: www.aglobalwall.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Sep 2022 13:59:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 03 Sep 2022 14:59:18 GMT
Location: https://www.aglobalwall.com/wp-content/uploads/2017/11/Slide9-800x445.jpg
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wiK5qVpkTW%2B9fy58738CI4s0CmOkB0hKjmmPCOAPGjRgr%2BeIvwaKE8KRyxb4K5R9ODrSOO1G5DsiUOAmz6gvUQeWscb37pVxfgbrmNoi2qNC6Q09%2BMgF9YfcmUIpwDuv33LBKPSF"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 744f01579ea40b59-OSL
alt-svc: h2=":443"; ma=60
verrysoonblog.files.wordpress.com/2012/11/3.png?w=1024&h=650
192.0.72.28301 Moved Permanently 162 B URL HTTP/1.1 verrysoonblog.files.wordpress.com/2012/11/3.png?w=1024&h=650
IP 192.0.72.28:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /2012/11/3.png?w=1024&h=650 HTTP/1.1
Host: verrysoonblog.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Sep 2022 13:59:18 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://verrysoonblog.files.wordpress.com/2012/11/3.png?w=1024&h=650
up2v.files.wordpress.com/2012/04/navigator.jpg
192.0.72.27301 Moved Permanently 162 B URL HTTP/1.1 up2v.files.wordpress.com/2012/04/navigator.jpg
IP 192.0.72.27:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /2012/04/navigator.jpg HTTP/1.1
Host: up2v.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Sep 2022 13:59:18 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://up2v.files.wordpress.com/2012/04/navigator.jpg
lsbf.edu.sg/ckfinder/images/Hmpg_XMU_s2_ivan(1).jpg
40.66.56.146301 Moved Permanently 0 B URL HTTP/1.1 lsbf.edu.sg/ckfinder/images/Hmpg_XMU_s2_ivan(1).jpg
IP 40.66.56.146:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ckfinder/images/Hmpg_XMU_s2_ivan(1).jpg HTTP/1.1
Host: lsbf.edu.sg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://www.lsbf.edu.sg/ckfinder/images/Hmpg_XMU_s2_ivan(1).jpg
images-na.ssl-images-amazon.com/images/I/51lSKvoko9L.jpg
54.230.219.191200 OK 49 kB URL HTTP/2 images-na.ssl-images-amazon.com/images/I/51lSKvoko9L.jpg
IP 54.230.219.191:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 389x500, components 3\012- data
Hash 9f2d782bec63b49bf74d1a051feedc92
433097f811234ff2cdf47358094906994547497b
ba501e9b4d674b9679ed88f4c55a032693a4e5e2bd84ae4de70a8b943b55be53
GET /images/I/51lSKvoko9L.jpg HTTP/1.1
Host: images-na.ssl-images-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 49404
server: Server
date: Sat, 20 Aug 2022 06:02:01 GMT
x-amz-ir-id: 5389df4e-fba1-4691-a221-2623cbde0a54
expires: Fri, 15 Aug 2042 06:02:01 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-957 /images/I/51lSKvoko9L
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-957,/images/I/51lSKvoko9L
access-control-allow-origin: *
last-modified: Wed, 07 Jan 2015 04:28:25 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VhgYkTa2dqJi0PEpnh0NLJFW1K1sujjM08ELFQ67oSnv7RytLZabsQ==
age: 1238238
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 544fad117a1232315c7d93834cfd6eda
b6ad03e882066a2a8564b340500f96a1faf1e52a
e24a312f6bfa6038f6ed8b8fff6120ff109db97af4f46d3dca0fef621aeb582e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 13:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ded42556ce79b32d319ae8518175ee2d
d16605bff3d911741f4ba990c57de74ea63aa0c7
0344a3cdd47e3d994cb3d39a32e4de1cddc2134794b31d0eee537d65e081c8bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 13:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 544fad117a1232315c7d93834cfd6eda
b6ad03e882066a2a8564b340500f96a1faf1e52a
e24a312f6bfa6038f6ed8b8fff6120ff109db97af4f46d3dca0fef621aeb582e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 13:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sanet.pics/storage-1/0615/th_lDalnwN6ptp1TRmsrl9Ynd3PIASGcICx.jpeg
104.21.60.27301 Moved Permanently 162 B URL HTTP/1.1 sanet.pics/storage-1/0615/th_lDalnwN6ptp1TRmsrl9Ynd3PIASGcICx.jpeg
IP 104.21.60.27:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /storage-1/0615/th_lDalnwN6ptp1TRmsrl9Ynd3PIASGcICx.jpeg HTTP/1.1
Host: sanet.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Sep 2022 13:59:19 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://sanet.pics/storage-1/0615/th_lDalnwN6ptp1TRmsrl9Ynd3PIASGcICx.jpeg
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wj8i%2Fip4jCIRq2WtgdBKPiMy4k2qal6Ak3sCQ4TNc7nuqZl5iTH87XOC6blIYS2wyP6JBo4agVxxCcVKXVW8cmyDi877c8hAiSDaDd7Ghuiw8qC49qerImv0886P"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744f0157ada1b51e-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ded42556ce79b32d319ae8518175ee2d
d16605bff3d911741f4ba990c57de74ea63aa0c7
0344a3cdd47e3d994cb3d39a32e4de1cddc2134794b31d0eee537d65e081c8bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 13:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
weatherlitesoft.netlify.app/css@family=Open+Sans%253A300italic,400italic,600italic,700italic,800italic,400,800,700,600,300
3.67.234.155404 Not Found 1.2 kB URL HTTP/2 weatherlitesoft.netlify.app/css@family=Open+Sans%253A300italic,400italic,600italic,700italic,800italic,400,800,700,600,300
IP 3.67.234.155:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Hash 3530ab3fb068ffb26ab9b3e9184cfcbe
5abe9ee23f42cb727de0567589872f2f5aad57c7
18c9246dec79e05803b6c95c0247f989bf655c1e1809d591b2be37f8bf6f2e22
Analyzer Verdict Alert fortinet Malware
GET /css@family=Open+Sans%253A300italic,400italic,600italic,700italic,800italic,400,800,700,600,300 HTTP/1.1
Host: weatherlitesoft.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/styles.css
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
age: 36181
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=utf-8
date: Sat, 03 Sep 2022 03:56:18 GMT
etag: 1513271152-ssl-df
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01GC1TC4T48TEJ277P4QP5BXP4
content-length: 1245
X-Firefox-Spdy: h2
autoinfo24.ru/upload/files/BMW%20E90%20Legion.jpg
185.185.68.137301 Moved Permanently 340 B URL HTTP/1.1 autoinfo24.ru/upload/files/BMW%20E90%20Legion.jpg
IP 185.185.68.137:0
ASN #35278 Sprinthost.ru LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 59747b4f781529a50387bcb21573fd7f
3b575d2fd62f57858d6051c7d5934fdae6711ebd
4387ee831335667d022bb2c790bfe5e6c8a9734dc958c84577df6faacbb15d56
GET /upload/files/BMW%20E90%20Legion.jpg HTTP/1.1
Host: autoinfo24.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Sep 2022 13:59:16 GMT
Server: Apache/2.2.15 (CentOS)
Location: https://autoinfo24.ru/upload/files/BMW E90 Legion.jpg
Content-Length: 340
Connection: close
Content-Type: text/html; charset=iso-8859-1
1.bp.blogspot.com/--9B4YtyYj1g/VpEnbzyvJUI/AAAAAAAAEBk/VAUcjQrWDXk/w1200-h630-p-k-no-nu/LSBF_Acca_F8_Videos_Lectures_June_2016.png
142.250.74.161200 OK 368 kB URL HTTP/2 1.bp.blogspot.com/--9B4YtyYj1g/VpEnbzyvJUI/AAAAAAAAEBk/VAUcjQrWDXk/w1200-h630-p-k-no-nu/LSBF_Acca_F8_Videos_Lectures_June_2016.png
IP 142.250.74.161:0
File type PNG image data, 1200 x 630, 8-bit/color RGB, non-interlaced\012- data
Size 368 kB (367470 bytes)
Hash 56df8d4674e8ecb238764f2d842b909b
2e46dd5c6a3433cd9769ab0e53845b83a6736caa
861468a39f4bb2411ac26a0f51aa452d345c8049d068e3b701509719da90368d
GET /--9B4YtyYj1g/VpEnbzyvJUI/AAAAAAAAEBk/VAUcjQrWDXk/w1200-h630-p-k-no-nu/LSBF_Acca_F8_Videos_Lectures_June_2016.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="LSBF_Acca_F8_Videos_Lectures_June_2016.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 367470
x-xss-protection: 0
date: Sat, 03 Sep 2022 13:59:19 GMT
expires: Sun, 04 Sep 2022 03:56:18 GMT
cache-control: public, max-age=86400, no-transform
etag: "v101a"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/10RFFtlIjKE/maxresdefault.jpg
172.217.21.182200 OK 45 kB URL HTTP/2 i.ytimg.com/vi/10RFFtlIjKE/maxresdefault.jpg
IP 172.217.21.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1050x576, components 3\012- data
Hash 8315720b173cdd8531f9d982695d9390
7fa379fb25fd75a9d62c699de0e1e916fa0e591a
b39e02ad4c183747d542076dfd9134896aae1b1a9e6f640b603a448ef1ab6d62
GET /vi/10RFFtlIjKE/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 44841
date: Sat, 03 Sep 2022 13:59:19 GMT
expires: Sat, 03 Sep 2022 15:59:19 GMT
cache-control: public, max-age=7200
etag: "1445241570"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.softdeluxe.com/screenshots/3242/3242706_3.jpg
74.117.179.100301 Moved Permanently 185 B URL HTTP/1.1 s.softdeluxe.com/screenshots/3242/3242706_3.jpg
IP 74.117.179.100:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 55ddfe7044cf0f3a257edb0ddeb20fb5
8998d4bf7cf3fcda93986d8451ac35410a840cd8
3e11dd6b24715dd0503dcf35302d987848f748ec38c686b8a11e575a12b6b254
GET /screenshots/3242/3242706_3.jpg HTTP/1.1
Host: s.softdeluxe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx/1.10.3
Date: Sat, 03 Sep 2022 12:50:51 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://s.softdeluxe.com/screenshots/3242/3242706_3.jpg
4.bp.blogspot.com/-6m4V2PlvKQo/VoK7tfm7xoI/AAAAAAAAD8s/8OhW4j_kx0g/w1200-h630-p-k-no-nu/LSBF_Acca_P3_Videos_Lectures_June_2016.png
142.250.74.161200 OK 403 kB URL HTTP/2 4.bp.blogspot.com/-6m4V2PlvKQo/VoK7tfm7xoI/AAAAAAAAD8s/8OhW4j_kx0g/w1200-h630-p-k-no-nu/LSBF_Acca_P3_Videos_Lectures_June_2016.png
IP 142.250.74.161:0
File type PNG image data, 1200 x 630, 8-bit/color RGB, non-interlaced\012- data
Size 403 kB (403220 bytes)
Hash 3b3b9e110ea39553e67ebad626208abc
e328639d60d7b632ac0ad463afad55263115e49e
76dfd6cd2e3d50b8880203b21b9893dacb4073583670ffd0308a1b82da3ca553
GET /-6m4V2PlvKQo/VoK7tfm7xoI/AAAAAAAAD8s/8OhW4j_kx0g/w1200-h630-p-k-no-nu/LSBF_Acca_P3_Videos_Lectures_June_2016.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="LSBF_Acca_P3_Videos_Lectures_June_2016.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 403220
x-xss-protection: 0
date: Sat, 03 Sep 2022 13:59:19 GMT
expires: Sun, 04 Sep 2022 03:56:18 GMT
cache-control: public, max-age=86400, no-transform
etag: "vfcd"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i.ytimg.com/vi/2biPpiABidU/hqdefault.jpg
172.217.21.182404 Not Found 1.1 kB URL HTTP/2 i.ytimg.com/vi/2biPpiABidU/hqdefault.jpg
IP 172.217.21.182:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3\012- data
Hash e2ddfee11ae7edcae257da47f3a78a70
6e902fa6302eb30cd204579bca6a59b37233e262
20e9aab22032d85684d7d916a1013f7c577a132a5b10ea3fd3578e8d0b28a711
GET /vi/2biPpiABidU/hqdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
vary: Origin
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: image/jpeg
date: Sat, 03 Sep 2022 13:59:19 GMT
expires: Sat, 03 Sep 2022 13:59:49 GMT
cache-control: public, max-age=30
x-content-type-options: nosniff
server: sffe
content-length: 1097
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
manualov.net/manuals_photo/original/BMW/BMW7.jpg
91.235.128.231301 Moved Permanently 169 B URL HTTP/1.1 manualov.net/manuals_photo/original/BMW/BMW7.jpg
IP 91.235.128.231:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bd6987d71fad7058a993a9028dc40454
3ed872fa3a00837bb008ad9d201850e2ea57a79f
f0e759f444eb3a324b621f0548919424455e81441d42ea6bc6bcd2b24fce1b92
GET /manuals_photo/original/BMW/BMW7.jpg HTTP/1.1
Host: manualov.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx/1.16.1
Date: Sat, 03 Sep 2022 13:59:19 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://manualov.net:443/manuals_photo/original/BMW/BMW7.jpg
weatherlitesoft.netlify.app/STGwdK.png
3.67.234.155200 OK 3.5 kB URL HTTP/2 weatherlitesoft.netlify.app/STGwdK.png
IP 3.67.234.155:0
File type PNG image data, 62 x 62, 8-bit/color RGBA, non-interlaced\012- data
Hash f90a72eb9a2dc377848bc4a40d9a5800
d66a0275bc3d83ce0161857c5197897b165ddd90
d0039a6f2fb9c8528cf842abef53e4c6022c30aea75b1487fe1bab46a4e4242a
GET /STGwdK.png HTTP/1.1
Host: weatherlitesoft.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 36181
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Sat, 03 Sep 2022 03:56:18 GMT
etag: "e41117db57542c30b70eb96ef67ae7d0-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01GC1TC4XKJPX62CJR8C19GHT3
content-length: 3520
X-Firefox-Spdy: h2
weatherlitesoft.netlify.app/DBZBsOM.png
3.67.234.155200 OK 322 B URL HTTP/2 weatherlitesoft.netlify.app/DBZBsOM.png
IP 3.67.234.155:0
File type PNG image data, 21 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash da6515657e7bcf4a97f85d1299d0a4f8
2b68b794e46db5ac7cfa6c579cc3b875a981215b
828d9d5e501b0bf3554c30f99958ad2342a022e1470074a918521ab06b7e43ac
GET /DBZBsOM.png HTTP/1.1
Host: weatherlitesoft.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 36181
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Sat, 03 Sep 2022 03:56:18 GMT
etag: "feb8ece44faead6497f2796ecea23e44-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01GC1TC4XM5R7FZCHHKDAEWVX7
content-length: 322
X-Firefox-Spdy: h2
weatherlitesoft.netlify.app/Rdiiq.png
3.67.234.155200 OK 1.8 kB URL HTTP/2 weatherlitesoft.netlify.app/Rdiiq.png
IP 3.67.234.155:0
File type PNG image data, 27 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash aaa7e40cd4b27f76667d3f1c14600c9f
ee6b5b442620a8a98e030a3f6983e65076a28011
f8a00b0b3a1e946eb5f2db6d4936b65c478c6576d48353209f9030f81fdb3059
GET /Rdiiq.png HTTP/1.1
Host: weatherlitesoft.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/styles.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 36181
cache-control: public, max-age=0, must-revalidate
content-type: image/png
date: Sat, 03 Sep 2022 03:56:18 GMT
etag: "ebeaf390f1583b3052257d038e71001b-ssl"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-nf-request-id: 01GC1TC4XNYK2C3A3PVMTFVTPF
content-length: 1778
X-Firefox-Spdy: h2
www.vladan.fr/wp-content/uploads/images/built-in-converter-01.jpg
172.67.143.71200 OK 42 kB URL HTTP/2 www.vladan.fr/wp-content/uploads/images/built-in-converter-01.jpg
IP 172.67.143.71:0
File type JPEG image data, JFIF standard 1.00, resolution (DPI), density 96x96, segment length 16, comment: "LEAD Technologies Inc. V1.01", baseline, precision 8, 580x420, components 3\012- data
Hash 467114180aad963066e216c63f5ef400
f9761f746d560ae5bd8f04c71f3f086802321918
f1fd895b6dcad800876a0c27c623ef4225ae7fbf03c363a0cb573d481ad9ad15
GET /wp-content/uploads/images/built-in-converter-01.jpg HTTP/1.1
Host: www.vladan.fr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 13:59:19 GMT
content-type: image/jpeg
content-length: 41604
last-modified: Fri, 08 Feb 2013 19:11:47 GMT
cache-control: public, max-age=31536000
expires: Sun, 01 Jan 2023 03:56:18 GMT
vary: User-Agent,Accept-Encoding
cf-cache-status: HIT
age: 36181
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b9zmjwRKMciU6Q3AUZTNtDZJfm7a%2F9Y%2F00HHArmMfijwszJF1CiGwAioZ4BCTOTKoXJtTysJ4JS0uOD3QkMFKzdQiphYeLOsOSGafj49062qH83r4kx0IaUCkUzn8dOt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 744f01599d75b505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 544fad117a1232315c7d93834cfd6eda
b6ad03e882066a2a8564b340500f96a1faf1e52a
e24a312f6bfa6038f6ed8b8fff6120ff109db97af4f46d3dca0fef621aeb582e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 13:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ded42556ce79b32d319ae8518175ee2d
d16605bff3d911741f4ba990c57de74ea63aa0c7
0344a3cdd47e3d994cb3d39a32e4de1cddc2134794b31d0eee537d65e081c8bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 13:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sanet.pics/storage-1/0615/th_lDalnwN6ptp1TRmsrl9Ynd3PIASGcICx.jpeg
104.21.60.27200 OK 25 kB URL HTTP/2 sanet.pics/storage-1/0615/th_lDalnwN6ptp1TRmsrl9Ynd3PIASGcICx.jpeg
IP 104.21.60.27:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 500x281, components 3\012- data
Hash 8d92fe09f43832afb8313e2d3f908b6b
ce314d5bbb1dcf5f65ad5b0767476a6b7ad314ec
c89e86fc88728cc4815ca90ae38f00fca0b31cddd96110f2a1c4796ef9c6b2dc
GET /storage-1/0615/th_lDalnwN6ptp1TRmsrl9Ynd3PIASGcICx.jpeg HTTP/1.1
Host: sanet.pics
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 13:59:19 GMT
content-type: image/jpeg
content-length: 25203
last-modified: Tue, 05 Nov 2019 21:08:52 GMT
etag: "5dc1e4e4-6273"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=31536000; includeSubdomains
x-frame-options: DENY
cf-cache-status: HIT
age: 36181
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6q6orhilgLET%2Bwk30t7ySdX3Ldtc%2F7x7CGZ2pQ1GN0JTzoAWQ27yvxY7pLhUJQkO5KlaXiFjjU0G85Dq0955sroq2Fo1Nt4lJUqvfZj8UjZLpdZQKxBcGGCfNN1q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 744f0159bf06b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 544fad117a1232315c7d93834cfd6eda
b6ad03e882066a2a8564b340500f96a1faf1e52a
e24a312f6bfa6038f6ed8b8fff6120ff109db97af4f46d3dca0fef621aeb582e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 13:59:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.startfilm.ru/images/base/film/17_11_12/14410_b92e30f5d76eb565d81a2047437869c5.jpg
195.161.41.50302 Moved Temporarily 154 B URL HTTP/1.1 www.startfilm.ru/images/base/film/17_11_12/14410_b92e30f5d76eb565d81a2047437869c5.jpg
IP 195.161.41.50:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET /images/base/film/17_11_12/14410_b92e30f5d76eb565d81a2047437869c5.jpg HTTP/1.1
Host: www.startfilm.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Sat, 03 Sep 2022 13:59:19 GMT
Content-Type: text/html
Content-Length: 154
Connection: keep-alive
Location: https://www.startfilm.ru/images/base/film/17_11_12/14410_b92e30f5d76eb565d81a2047437869c5.jpg
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ee00dedf69cb9a3d9c928dd7f287a8cf
22c4bf40013633c7ad58ebc994662b7920101bfc
469a4901a42a43c63666a4d23d215d0a8af2ed87922ac2afd7c3aa192beed64c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469A4901A42A43C63666A4D23D215D0A8AF2ED87922AC2AFD7C3AA192BEED64C"
Last-Modified: Fri, 02 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18237
Expires: Sat, 03 Sep 2022 19:03:16 GMT
Date: Sat, 03 Sep 2022 13:59:19 GMT
Connection: keep-alive
up2v.files.wordpress.com/2012/04/navigator.jpg
192.0.72.27200 OK 90 kB URL HTTP/2 up2v.files.wordpress.com/2012/04/navigator.jpg
IP 192.0.72.27:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 939x507, components 3\012- data
Hash 37965e35726630a6a5479bc31f06e51b
a3a58cf75ce19f49ea82d4e58f3a8418db72dc74
6dc496986aca97042cbe75e1d070fdb1f92ae012d312a73d92dbf66acb8d1459
GET /2012/04/navigator.jpg HTTP/1.1
Host: up2v.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 13:59:19 GMT
content-type: image/jpeg
content-length: 90095
last-modified: Fri, 27 Apr 2012 08:37:03 GMT
expires: Sun, 25 Sep 2022 16:58:45 GMT
x-orig-src: 01_mogdir
access-control-allow-credentials: true
access-control-allow-origin: https://up2v.wordpress.com
vary: Origin
x-nc: MISS arn 27 np
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
verrysoonblog.files.wordpress.com/2012/11/3.png?w=1024&h=650
192.0.72.28200 OK 90 kB URL HTTP/2 verrysoonblog.files.wordpress.com/2012/11/3.png?w=1024&h=650
IP 192.0.72.28:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 800c605bc79b48e36ef55b165f62a231
c4c54d096a03cce1d75f1f7cbe2e3f0858b69007
afe01dbe1c840c81d74e61265c0ec5f1f510941c723e1b51748b0996ed906ee8
GET /2012/11/3.png?w=1024&h=650 HTTP/1.1
Host: verrysoonblog.files.wordpress.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 13:59:19 GMT
content-type: image/webp
content-length: 90270
last-modified: Tue, 20 Nov 2012 03:11:36 GMT
expires: Thu, 06 Oct 2022 07:54:13 GMT
x-orig-src: 0_imageresize
access-control-allow-credentials: true
access-control-allow-origin: https://verrysoonblog.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 28 np
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4f305fc0cfd1ca8b2a4d40c25eab987c
54d327cfee521f0c224df904d225127449f87995
6f1b0c0439474a66cc817c2f1f17c7139817c170f5fa24f3fc68b78a3cce00fe
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6F1B0C0439474A66CC817C2F1F17C7139817C170F5FA24F3FC68B78A3CCE00FE"
Last-Modified: Thu, 01 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21593
Expires: Sat, 03 Sep 2022 19:59:12 GMT
Date: Sat, 03 Sep 2022 13:59:19 GMT
Connection: keep-alive
www.lsbf.edu.sg/ckfinder/images/Hmpg_XMU_s2_ivan(1).jpg
40.66.56.146301 Moved Permanently 176 B URL HTTP/2 www.lsbf.edu.sg/ckfinder/images/Hmpg_XMU_s2_ivan(1).jpg
IP 40.66.56.146:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 7ec874f24af527fe4fb8316ad2abbcb6
5d035e8dca12fd105d9d3227403d1435dfaf6255
f7283b25d9035d355856ad63026f4eff0d903659404136b9f3d8d5fccfac4c12
GET /ckfinder/images/Hmpg_XMU_s2_ivan(1).jpg HTTP/1.1
Host: www.lsbf.edu.sg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
location: http://www.lsbf.edu.sg/ckfinder/images/hmpg_xmu_s2_ivan(1).jpg
set-cookie: ARRAffinity=8b7fb4bc0827dd2af94d0522e4698f8bf220b1323250a660bfdb66609b24da2a;Path=/;HttpOnly;Domain=www.lsbf.edu.sg
x-varnish-server: AZ4BV02
date: Sat, 03 Sep 2022 03:56:18 GMT
x-page-speed: Powered by GUS
cache-control: public, max-age=14400
x-cache: BR
server: AZ4PV02
age: 0
expires: Sat, 03 Sep 2022 17:59:19 GMT
content-length: 176
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e7631c97188d6d89df46b4dfa1ce5447
56702e711c4acc8ffaa1d6ab6d39a51cac5b2946
077d52539a92c746435939157174c56c1723ab01c2369322bcdd6c83c966004a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "077D52539A92C746435939157174C56C1723AB01C2369322BCDD6C83C966004A"
Last-Modified: Fri, 02 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 03 Sep 2022 19:59:19 GMT
Date: Sat, 03 Sep 2022 13:59:19 GMT
Connection: keep-alive
www.startfilm.ru/images/base/film/17_11_12/14410_b92e30f5d76eb565d81a2047437869c5.jpg
195.161.41.50404 Not Found 471 B URL HTTP/2 www.startfilm.ru/images/base/film/17_11_12/14410_b92e30f5d76eb565d81a2047437869c5.jpg
IP 195.161.41.50:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 94c331da090ab90a6093419433f503f5
50b9875307f8096ffac0001e0f92e5be7ab210c6
f2a5e581cdf3eaacece45831a4564414d00fd805739cff8f2bd24354f87146fc
GET /images/base/film/17_11_12/14410_b92e30f5d76eb565d81a2047437869c5.jpg HTTP/1.1
Host: www.startfilm.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Sat, 03 Sep 2022 13:59:19 GMT
content-type: text/html; charset=UTF-8
content-length: 471
server: Jino.ru/mod_pizza
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5e54f74b86bc30f5eda1232b281676e6
6504a2a37314de659900000716c9e1724aabf854
213fdc96899e5f3dad321a3a06f19d3d0d22ec9705dc4279f34895d1895a5146
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "213FDC96899E5F3DAD321A3A06F19D3D0D22EC9705DC4279F34895D1895A5146"
Last-Modified: Thu, 01 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6845
Expires: Sat, 03 Sep 2022 15:53:24 GMT
Date: Sat, 03 Sep 2022 13:59:19 GMT
Connection: keep-alive
support.cdn.mozilla.net/media/uploads/gallery/images/2015-05-14-07-04-09-28d850.png
54.230.111.17404 Not Found 5.7 kB URL HTTP/1.1 support.cdn.mozilla.net/media/uploads/gallery/images/2015-05-14-07-04-09-28d850.png
IP 54.230.111.17:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (336)
Hash 8907ff3b45f2c2e691ad74ab07b8ff4a
d90e3468b60b5a3fa783216f9df7810a2db81162
b27bf49da498f71f4fed70cfb8d50c3477878292a1cdf121853b8a8f9bc8618d
GET /media/uploads/gallery/images/2015-05-14-07-04-09-28d850.png HTTP/1.1
Host: support.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sat, 03 Sep 2022 13:59:19 GMT
Server: gunicorn
Content-Security-Policy: script-src 'self' https://*.mozilla.org https://*.itsre-sumo.mozilla.net https://*.google-analytics.com https://*.googletagmanager.com https://pontoon.mozilla.org 'nonce-rjNySc5tdo0UUlXfASU3BQ=='; manifest-src https://support.allizom.org https://support.mozilla.org; form-action 'self'; connect-src 'self' https://*.google-analytics.com https://location.services.mozilla.com; default-src 'none'; media-src 'self' https://*.itsre-sumo.mozilla.net; font-src 'self' https://*.itsre-sumo.mozilla.net; frame-src 'self' https://*.youtube.com; style-src 'self' https://*.itsre-sumo.mozilla.net; img-src 'self' data: https://*.mozaws.net https://*.itsre-sumo.mozilla.net https://*.google-analytics.com https://profile.accounts.firefox.com https://firefoxusercontent.com https://secure.gravatar.com https://i1.wp.com https://mozillausercontent.com
X-Robots-Tag: noodp
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
X-Backend-Server: sumo-prod-web-7858f856fc-g2zgh.oregon.mozit.cloud
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Error from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: s8Mm83XvzkuxsucP5sAc7L61sUsE0uEAPEi0d8Z-7xP0SijuOOtQWg==
www.lsbf.edu.sg/ckfinder/images/hmpg_xmu_s2_ivan(1).jpg
40.66.56.146301 Moved Permanently 0 B URL HTTP/1.1 www.lsbf.edu.sg/ckfinder/images/hmpg_xmu_s2_ivan(1).jpg
IP 40.66.56.146:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ckfinder/images/hmpg_xmu_s2_ivan(1).jpg HTTP/1.1
Host: www.lsbf.edu.sg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
content-length: 0
location: https://www.lsbf.edu.sg/ckfinder/images/hmpg_xmu_s2_ivan(1).jpg
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sat, 03 Sep 2022 13:38:16 GMT
Cache-Control: max-age=3600
Expires: Sat, 03 Sep 2022 13:38:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DDgfK9F0VdHpu-l3PyvM0O31n6cvZjng_sHfhAevDKH_NTQ7IhDSWg==
Age: 1263
www.lsbf.edu.sg/ckfinder/images/hmpg_xmu_s2_ivan(1).jpg
40.66.56.146404 Not Found 215 B URL HTTP/2 www.lsbf.edu.sg/ckfinder/images/hmpg_xmu_s2_ivan(1).jpg
IP 40.66.56.146:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (346), with no line terminators
Hash e505188f7ebeb5aea40ff17834fc7ca1
3c981f6b0a827d3270c432c112c97927271860b4
bde3b99ff0a891a342803072f9444013dccc8a31b108e1f7b255ba531ca2f797
GET /ckfinder/images/hmpg_xmu_s2_ivan(1).jpg HTTP/1.1
Host: www.lsbf.edu.sg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
vary: Accept-Encoding
set-cookie: ARRAffinity=9e48c3f34ebef35a3aa3536b7401cfbfda9d2ccd602455b52970d31acb62bf91;Path=/;HttpOnly;Domain=www.lsbf.edu.sg
x-cache: ZIP
x-varnish-server: AZ4BV02
date: Wed, 24 Aug 2022 23:56:18 GMT
x-page-speed: Powered by GUS
content-encoding: br
cache-control: public, max-age=14400
server: AZ4PV02
age: 0
expires: Sat, 03 Sep 2022 17:59:19 GMT
content-length: 215
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
autoinfo24.ru/upload/files/BMW%20E90%20Legion.jpg
185.185.68.137200 OK 156 kB URL HTTP/1.1 autoinfo24.ru/upload/files/BMW%20E90%20Legion.jpg
IP 185.185.68.137:0
ASN #35278 Sprinthost.ru LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=19, height=3300, bps=242, compression=LZW, PhotometricIntepretation=RGB, orientation=upper-left, width=2418], baseline, precision 8, 600x819, components 3\012- data
Size 156 kB (156264 bytes)
Hash 58612c02249d3a3c1807475445a490e6
d202bc2c064ac8cf5dc97bd96756b7ea00f9213f
62d06b301217cea18201026d8b5aa324e0e0e489c51f0625ddb50f6014c1ba1f
GET /upload/files/BMW%20E90%20Legion.jpg HTTP/1.1
Host: autoinfo24.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 13:59:17 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Wed, 27 Sep 2017 14:08:17 GMT
ETag: "26268-55a2c52c11640"
Accept-Ranges: bytes
Content-Length: 156264
Cache-Control: public
Expires: Sat, 01 Oct 2022 13:59:17 GMT
Connection: close
Content-Type: image/jpeg
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fc12f0a98aa28ccb56e0b56d7e40ded
f7efcfb8b4f4aa40268bada3fec380820a70ee35
a34aa9b7db949a583c3f1b4d87fed415a11d119c9615b5e710c3125173f8a277
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3677
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 13:59:19 GMT
Last-Modified: Sat, 03 Sep 2022 12:58:02 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
weatherlitesoft.netlify.app/favicon.ico
3.67.234.155404 Not Found 1.2 kB URL HTTP/2 weatherlitesoft.netlify.app/favicon.ico
IP 3.67.234.155:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Hash 3530ab3fb068ffb26ab9b3e9184cfcbe
5abe9ee23f42cb727de0567589872f2f5aad57c7
18c9246dec79e05803b6c95c0247f989bf655c1e1809d591b2be37f8bf6f2e22
GET /favicon.ico HTTP/1.1
Host: weatherlitesoft.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
age: 36180
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=utf-8
date: Sat, 03 Sep 2022 03:56:19 GMT
etag: 1513271152-ssl-df
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01GC1TC5K3XA2PWMTQEWD4S98R
content-length: 1245
X-Firefox-Spdy: h2
helpx.adobe.com/es/flash-player/kb/enabling-flash-player-firefox/_jcr_content/main-pars/procedure/proc_par/step_6/step_par/image.img.png/fp-fire3.png
23.36.76.171301 Moved Permanently 270 B URL HTTP/2 helpx.adobe.com/es/flash-player/kb/enabling-flash-player-firefox/_jcr_content/main-pars/procedure/proc_par/step_6/step_par/image.img.png/fp-fire3.png
IP 23.36.76.171:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8f74bb0eddd9bea85b78a7d00f83da5b
30f9a64ce72ce38b0b6b6d83b7f30d07b4cc82c0
32bd1c54d33d271ec3fa86c65c70ed997313154fcca9fb75b4458bb6da817044
GET /es/flash-player/kb/enabling-flash-player-firefox/_jcr_content/main-pars/procedure/proc_par/step_6/step_par/image.img.png/fp-fire3.png HTTP/1.1
Host: helpx.adobe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://weatherlitesoft.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: Apache
content-security-policy: frame-ancestors 'self' https://*.adobe.com http://adobe.lookbookhq.com https://adobe.lookbookhq.com;
x-frame-options: SAMEORIGIN
x-ua-compatible: IE=11
location: https://www.adobe.com/es/products/flashplayer/end-of-life.html
cache-control: max-age=900
expires: Sat, 03 Sep 2022 14:14:20 GMT
content-length: 270
content-type: text/html; charset=iso-8859-1
date: Sat, 03 Sep 2022 13:59:20 GMT
set-cookie: akaas_helpx_audience_segmentation_default=1663423160~rv=50~id=fa7e92195f54f7dd066314b2c5e17cec~rn=; path=/; Expires=Sat, 17 Sep 2022 13:59:20 GMT; Secure; SameSite=None
ak_bmsc=5625A6D2868DA002CD6A54FEC04E2977~000000000000000000000000000000~YAAQp0wkF/eQLfyCAQAAShemAxApZFFkKpftvB+R0NlfLGTuOIa1tZ6TbSK4L0/WBvcgp8Kvn6IJxpztRtF1hBPr2qeNyDpU6Ds7mjuyUHEhPBtcUexA6tfFt4dDZjI8mvVmtJ/cJtYFqUVvTgsivx7LqOmONKrtvH30KqWeemZ3Qq/3ogp04vEU89pSffTrjvy63ffrU04AyOUm6BRV4Q6J/UWX5oVrwKvJwdZKaQJIW66FEb71pt6j69G+Le+w+3fU8rJhj9z1rY31/LYrvb4LojbVaL9jJcbu3n2gvoKj3PSE8kZczfcioRe+kj2FxnNRH4pcGOgxVOybFs2OahD7Xz4f0SnPhslwPEnTWjO76QRdNhbcx2sib+Jll3jUxnpekGpgRhk=; Domain=.adobe.com; Path=/; Expires=Sat, 03 Sep 2022 15:59:19 GMT; Max-Age=7199; HttpOnly
X-Firefox-Spdy: h2
s.softdeluxe.com/screenshots/3242/3242706_3.jpg
74.117.179.100200 OK 54 kB URL HTTP/1.1 s.softdeluxe.com/screenshots/3242/3242706_3.jpg
IP 74.117.179.100:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 470x425, components 3\012- data
Hash 435ff83b36e6a88820aaaf7bc888454d
3746d8e0f48d76fc44f3fb373fc0247d697fdf32
3a5bba94130f83a58a3364ffeabbfa9d87ff68041fc2206c6d278269d7bc4626
GET /screenshots/3242/3242706_3.jpg HTTP/1.1
Host: s.softdeluxe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Sat, 03 Sep 2022 12:50:51 GMT
Content-Type: image/jpeg
Content-Length: 54527
Connection: keep-alive
Last-Modified: Mon, 20 Aug 2018 15:20:09 GMT
ETag: "5b7adc29-d4ff"
Expires: Sat, 17 Sep 2022 12:50:51 GMT
Cache-Control: max-age=1209600
Accept-Ranges: bytes
push.services.mozilla.com/
54.149.83.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.83.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xmb9UYAzLD12goWDhvZcJg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XUjZw0uvCaf2F9V4RWpQCjAUJpM=
www.adobe.com/es/products/flashplayer/end-of-life.html
2.21.240.218200 OK 18 kB URL HTTP/2 www.adobe.com/es/products/flashplayer/end-of-life.html
IP 2.21.240.218:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (11416), with CRLF, LF line terminators
Hash c421ed24b62429f0aab264c5e25ba4fc
926ef092d863f6029e29b3735963a293972bc376
0a4c58bd7215d56c2814f23c87f8d1f52c6712bd59c480ee42eceee7bc1b1de0
GET /es/products/flashplayer/end-of-life.html HTTP/1.1
Host: www.adobe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://weatherlitesoft.netlify.app/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
server: Apache
strict-transport-security: max-age=86400
x-adobe-content: AEM-cc
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors *.adobe.com
link: <https://assets.adobedtm.com>;rel=preconnect,<//dpm.demdex.net>;rel=preconnect,<https://sstats.adobe.com>;rel=preconnect,<https://adobe.tt.omtrdc.net>;rel=preconnect,<https://api.demandbase.com>;rel=preconnect,<//p.typekit.net>;rel=preconnect,<https://use.typekit.net>;rel=preconnect
accept-ranges: bytes
x-adobe-loc: ew1
x-adobe-source: 128.36
x-content-type-options: nosniff
x-akamai-transformed: 9 115062 0 pmb=mTOE,2mRUM,2
vary: Accept-Encoding
content-encoding: gzip
expires: Sat, 03 Sep 2022 13:59:20 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 03 Sep 2022 13:59:20 GMT
content-length: 17479
server-timing: cdn-cache; desc=HIT, edge; dur=84
set-cookie: ak_bmsc=A7C6501E23893A746F3607AE5AB37DE8~000000000000000000000000000000~YAAQ1vAVAlNHKvyCAQAAHhimAxD5aT0suWLRz71AjhyDEts6oZE43Uh6wESGfz8AgnLT/7+y+NEF3hEnE50pBF48fWgtrIMJIwx8+qMCOYDzd3FgWz9kXl8ztn3DGKW84GWcwcCGosh+jTcfRHXLE1WDbb0nswQV8HMZ+HmPxdXOvv4ysLu2YdCOk5wCN7kKYCPfgHb3SW0DLQWwmxYHfTy6Pak/oVrXZLdpyb6lovd2/HvMhpeJED/PVpJS1vT8ZWIZ07UFmlEiZPBcHext6uBjuqwiU/+7bHHsBsTpxngdfWFB98DHG/RHgjXh082JSpL344zQv0XNiJTHg6wJsOEeQfhjTBMbJuwxrQV/4/qcB0ZdbUb3PKMkzXwySQb+Av1uW2FhQnM=; Domain=.adobe.com; Path=/; Expires=Sat, 03 Sep 2022 15:59:20 GMT; Max-Age=7200; HttpOnly
bm_mi=B74F762C6F51D5503C05943F7B2F8C28~YAAQ1vAVAlRHKvyCAQAAHhimAxDiCNKKr7ZC1NQjnPbfLZb2xyvOn03z6dd1gDWJh7UFpyFFAfmQiPe0NSgX3S+0WXa0Wg4WLgZCWCVnnpUTC9pbzi8mfLia4LpecUPSMDeA601SAER7wKWZWv2gkA9Ry/D3/Jl85x6vzGuAK2M1A7Axbdy8CJLl5GdE8OxLegccfLszpZDr4j0FxRF2IJkDdjl3kdXF5RHSKwIkPjlqt1pWRjDAZakwUk5qqXURAO4dK6dezAJDOyQO06nhxEFJ/VORiTwlPeHecNzzspV+uXdZeFH7+rL9iHPWFEImVMHhtWVi0QopHy1bEp4M0bfdRRr3idPrT7bO3LGnhxrbGx87LA==~1; Domain=.adobe.com; Path=/; Expires=Sat, 03 Sep 2022 13:59:20 GMT; Max-Age=0; Secure
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12933
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 13:59:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12933
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 13:59:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12933
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 13:59:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12933
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 13:59:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12933
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 13:59:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d78cbff83c152b84864606781a29563d
8bdbc6e135be6e582d0e23754399422e3792777b
3c385de9ade05e1652ccc386e73aaccc4c223a07b81af4c5fdf3f73a166909f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14061
x-amzn-requestid: 43535b37-15c9-4a28-a7c0-f43482948382
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqlhGFX4IAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db606-77bd935d4364050f230ba5da;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:02:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y_-knSwUodyBxS8I8PAoUexT6Z4o0Aq7m62v7HrRjm7vV-jP0VuCpw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 06:26:07 GMT
age: 27194
etag: "8bdbc6e135be6e582d0e23754399422e3792777b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23b580e2b673257d24b9c2e80c4c48ce
f3a3d835a37f9b23e7458f9b7bc721bc415b61cc
c0e3559fde3dd08cdbd360f39dddcc98dd7c1b3aebd0861cc07105872a116d11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7501
x-amzn-requestid: bf297fc4-9164-45ee-bfab-06761a52e3ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMJEP1IAMFdpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-6b3e6416133d67a83d8a1469;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: datd5eYK6nOAUdEpy_y4gcqsVmCqjP4qhzTnlJ9pSrquoYk2PPugTA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:02:34 GMT
age: 57407
etag: "f3a3d835a37f9b23e7458f9b7bc721bc415b61cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60769237af4f32c663d494d91a672d08
31305131f340191799484f212e15513bd1204e88
6df36e459f3a2d0271732b645009b116e6671363f6c3050d22bbfe2d911a77bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4994
x-amzn-requestid: de39357f-d378-4bb8-b4d9-7dd4f82fbb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xgj-kEHvoAMFyBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309b390-119fa01e254e89cb39a1b794;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 06:02:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1yjBt3dqEztIRHo4yR3ZzI67J4lWUMS8R44-PpkeDJ4KNdCTPkmh-w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 04:45:35 GMT
age: 33226
etag: "31305131f340191799484f212e15513bd1204e88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c199f7fc2a2857dec134bfdb2673e28c
af3989072b658e2de119d006ae4ca1703468913d
e57411ba0221f6ffa7baf7c374ec790959a66d6a683fad40883ef01cf67e35c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6976
x-amzn-requestid: da379546-9525-4e13-b9f0-a6446839df66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eNeG7kIAMF4-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63127722-37399f67565b06e7111095cd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5SORUPJgJ_gKKs4hSa4EzCCQA6B1dmyO1EC-gCBvFKl2R2hV0mYTeA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:39:01 GMT
age: 55220
etag: "af3989072b658e2de119d006ae4ca1703468913d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf445006-1014-4737-ad3b-0047d0183dd8.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf445006-1014-4737-ad3b-0047d0183dd8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0bde418da52c5b733e4edeb10173974e
75555a00ea68f94d83233ca3dcb7ffa60ba9da5d
67bb1775a03b6b17b05181738c8196a9ed8087dc75927e649c28c084f31c0160
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf445006-1014-4737-ad3b-0047d0183dd8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8614
x-amzn-requestid: a941656b-92dd-4948-a24e-1437469def78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2emWFBMIAMFq4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631277c2-5336706371034d98547bafbd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: URc2SNnmMKSqG5bFd14z2P8o6fk3LCC4l79tclax0dq5uWfuUNjvew==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:24:32 GMT
age: 56089
etag: "75555a00ea68f94d83233ca3dcb7ffa60ba9da5d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4cb62c7c522b71c62a97630d8330ef5
950611314b81428b3d80ff8659272cc800cf48b6
3fd0bbf8a1fe8776136d611d6b99b909b71e6af3a13f8794338af2f0026b59ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7975
x-amzn-requestid: d4695cb0-76ed-495c-b548-d7819edd6d90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwqDSGuDIAMF6kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631023ae-7ba42ae9407c626a02d10e7f;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:14:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: paxjtCjggGuEMbpwW1HmCdQOemdktodVUl-grweVuYke_NynMIHMlg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:54:34 GMT
age: 36287
etag: "950611314b81428b3d80ff8659272cc800cf48b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
manualov.net/404.php
91.235.128.231404 Not Found 0 B IP 91.235.128.231:0
GET /404.php HTTP/1.1
Host: manualov.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
server: nginx/1.16.1
date: Sat, 03 Sep 2022 13:59:19 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.1.28
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.aglobalwall.com/wp-content/uploads/2017/11/Slide9-800x445.jpg
172.67.157.109404 Not Found 0 B URL HTTP/2 www.aglobalwall.com/wp-content/uploads/2017/11/Slide9-800x445.jpg
IP 172.67.157.109:0
GET /wp-content/uploads/2017/11/Slide9-800x445.jpg HTTP/1.1
Host: www.aglobalwall.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
date: Sat, 03 Sep 2022 13:59:19 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.aglobalwall.com/wp-json/>; rel="https://api.w.org/"
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0K7KAF8681gXp25akqC5iEmEMQU5krF1FLbMkc0%2FVUQC%2BC%2FTf5EF2Eh6%2FWx2zZSpW3zH3QlIGC8i%2BpqWmO%2Bh6Kuy%2Ffc5IN8FalRrjmx%2B1PiF2ieSxC%2FlpRVFLHzs6%2F5gqHo8dKSY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 744f01595e6eb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
manualov.net/manuals_photo/original/BMW/BMW7.jpg
91.235.128.231302 Found 0 B URL HTTP/2 manualov.net/manuals_photo/original/BMW/BMW7.jpg
IP 91.235.128.231:0
GET /manuals_photo/original/BMW/BMW7.jpg HTTP/1.1
Host: manualov.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.16.1
date: Sat, 03 Sep 2022 13:59:19 GMT
content-type: text/html; charset=iso-8859-1
location: https://manualov.net/404.php
strict-transport-security: max-age=31536000;
X-Firefox-Spdy: h2