aehmedia.press/med-31424/0975506587
173.249.19.158301 Moved Permanently 251 B URL HTTP/1.1 aehmedia.press/med-31424/0975506587
IP 173.249.19.158:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 30a1798ec63a7890afe3a53e514e379b
726665c31d2da34ea38b80b933b2831ecd6d1878
acead7accca1d85932c4b92285b65147ca1a8c8602ef35e05c719043cf157a6b
GET /med-31424/0975506587 HTTP/1.1
Host: aehmedia.press
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 13:37:25 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Location: https://aehmedia.press/med-31424/0975506587
Content-Length: 251
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13572
Expires: Fri, 03 Feb 2023 17:23:37 GMT
Date: Fri, 03 Feb 2023 13:37:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11983
Expires: Fri, 03 Feb 2023 16:57:08 GMT
Date: Fri, 03 Feb 2023 13:37:25 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 12:43:35 GMT
content-type: application/json
age: 3230
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13872
Expires: Fri, 03 Feb 2023 17:28:37 GMT
Date: Fri, 03 Feb 2023 13:37:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: o+JDVvT14QuV0t6rU5r8d/4O4Q4TCsncyFUt1TrMAnTzbxSP/onVZ5CBL5p2IM9VxTG2vdFg4DX6M7mmfIkUvg==
x-amz-request-id: V8H3MY8GSGP80XTY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 13:23:33 GMT
age: 832
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 13:37:25 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7df00addb05f54aff41d45e6629b4052
ed0fd6eef1e1e2be1f14f4ce762a27c10bd8ceee
66d1aaec64818c20a87bf08467d44942e21ecc926f9ae2e5d71fe00288ae0d2b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66D1AAEC64818C20A87BF08467D44942E21ECC926F9AE2E5D71FE00288AE0D2B"
Last-Modified: Thu, 02 Feb 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14645
Expires: Fri, 03 Feb 2023 17:41:31 GMT
Date: Fri, 03 Feb 2023 13:37:26 GMT
Connection: keep-alive
aehmedia.press/med-31424/0975506587
173.249.19.158200 OK 7.2 kB URL HTTP/1.1 aehmedia.press/med-31424/0975506587
IP 173.249.19.158:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (869), with CRLF, LF line terminators
Hash 532ad274a374162f8844f8356b2b7afb
7479beb6bf3226b7a129d5783e4c5a29fe43d028
c030808709dbf4fd7c9400d596c33403b4776f8728708a675c3473873fd146e3
GET /med-31424/0975506587 HTTP/1.1
Host: aehmedia.press
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:37:26 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
X-Powered-By: PHP/5.4.16
Access-Control-Allow-Origin: *
Content-Length: 7185
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset="utf-8"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 13:07:19 GMT
age: 1807
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
104.17.25.14200 OK 591 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (1266)
Hash 414869f16aa77a65b4928a018f7f1abb
cea521f7a2958a50239526ed6b068f0937527653
afee364ce513c6517247b81cce5eb5eadb1dbbb35e439eb3fa97bbc15fac2cd3
GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 13:37:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 591
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-514"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 8025339
expires: Wed, 24 Jan 2024 13:37:26 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kzvu3GaxVZk%2BxUaOggt1Xxnkm5VnbHTDMat8LZMfPoXH5%2BG9xHKHgzlGVG%2F0XjTTzd87Zp82244PnM3wafvyHhardltJCDweEiMMF7cGmwuVcUg%2FbVt%2BT3Lw4smSVq2oGP%2B1ezJz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793b8fab39cbb4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aehmedia.press/css/style.css
173.249.19.158200 OK 5.8 kB URL HTTP/1.1 aehmedia.press/css/style.css
IP 173.249.19.158:0
Hash dd76cbcb96529352ddf18fc2cfdbce74
0f580e24ab7f395ed873fa88cf84253ef03b577c
9c129b87039f03fa1ad8e8dda82e2668559b1253b078fdb523d410139fc48a40
GET /css/style.css HTTP/1.1
Host: aehmedia.press
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/med-31424/0975506587
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:37:26 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Last-Modified: Wed, 01 Jul 2020 03:23:44 GMT
ETag: "16c7-5a958d1b3f000"
Accept-Ranges: bytes
Content-Length: 5831
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
code.jquery.com/jquery-3.2.1.min.js
69.16.175.10200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.2.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (32058)
Hash 148f8d3ffd9cc02048c5f4d1cc83c407
9f2b89cfd151be6a29b4d43ad64d164fb8471046
4dc681da48ba2b417e613e8e027ff5322963c3a3697a8ba97973cfefb48def5e
GET /jquery-3.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aehmedia.press
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 13:37:26 GMT
content-encoding: gzip
content-length: 30125
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15283"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675431446.dop003.sk1.t,1675431446.cds003.sk1.hn,1675431446.cds222.sk1.c
X-Firefox-Spdy: h2
aehmedia.press/css/fbfeed.css
173.249.19.158200 OK 1.8 kB URL HTTP/1.1 aehmedia.press/css/fbfeed.css
IP 173.249.19.158:0
File type ASCII text, with CRLF line terminators
Hash 6f4fc8b223916bffb254463f5317faf6
07121890b2b8e3e2a587cf753e999df84b6e28b7
f50bfd19a8ed9e523dfcb4d2476af6f36579e7e79c0f8785746568f564091e3d
GET /css/fbfeed.css HTTP/1.1
Host: aehmedia.press
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/med-31424/0975506587
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:37:26 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Last-Modified: Tue, 02 Feb 2016 05:55:53 GMT
ETag: "6e4-52ac3277c4c40"
Accept-Ranges: bytes
Content-Length: 1764
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 907398d5fb78588b0c610c0d649899e0
dfc0840362757a0f70c5cfc54b76c994912c39be
de8325abe2d1aef1555a0b54a5a4d73d05ef0e14600a0c91136510c46705de20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6421
Cache-Control: max-age=140324
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 13:37:26 GMT
Etag: "63dc7625-116"
Expires: Sun, 05 Feb 2023 04:36:10 GMT
Last-Modified: Fri, 03 Feb 2023 02:49:09 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12669
Expires: Fri, 03 Feb 2023 17:08:35 GMT
Date: Fri, 03 Feb 2023 13:37:26 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 907398d5fb78588b0c610c0d649899e0
dfc0840362757a0f70c5cfc54b76c994912c39be
de8325abe2d1aef1555a0b54a5a4d73d05ef0e14600a0c91136510c46705de20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6421
Cache-Control: max-age=140324
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 13:37:26 GMT
Etag: "63dc7625-116"
Expires: Sun, 05 Feb 2023 04:36:10 GMT
Last-Modified: Fri, 03 Feb 2023 02:49:09 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
aehmedia.press/img/flag/glb.png
173.249.19.158200 OK 1.2 kB URL HTTP/1.1 aehmedia.press/img/flag/glb.png
IP 173.249.19.158:0
File type PNG image data, 30 x 20, 8-bit/color RGB, non-interlaced\012- data
Hash 3cb3c9644eeaefffdc07d8b985ac2293
12037a2db0a3a8b1ccfe9e2d578ace65ac3ac565
7eafb7750ca40e2c7aeb997edc99ccd5e180c36bc40921e8805588cd678d14ba
GET /img/flag/glb.png HTTP/1.1
Host: aehmedia.press
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/med-31424/0975506587
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:37:26 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Last-Modified: Wed, 20 Nov 2019 02:53:01 GMT
ETag: "484-597be4765fd40"
Accept-Ranges: bytes
Content-Length: 1156
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
aehmedia.press/logo.gif
173.249.19.158200 OK 6.3 kB IP 173.249.19.158:0
File type GIF image data, version 89a, 250 x 218\012- data
Hash 5e47e0b99eabeb1acf80c5191704d6aa
3dd07a3113c6ba6583202b8430f9e4d609e97ae7
fa1af85e850673677f1735e81b6025fd8fdf02676298b9773738a104088d1f8d
GET /logo.gif HTTP/1.1
Host: aehmedia.press
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/med-31424/0975506587
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:37:26 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Last-Modified: Sat, 25 Feb 2017 11:01:13 GMT
ETag: "18b0-54958c3b63040"
Accept-Ranges: bytes
Content-Length: 6320
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/gif
aehmedia.press/img/top1.png
173.249.19.158200 OK 22 kB URL HTTP/1.1 aehmedia.press/img/top1.png
IP 173.249.19.158:0
File type PNG image data, 468 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 59bcbb7a94e149511096132047f1d896
15e40ef8ef74136ef5fac386928e0688fe00b864
053017ccee24aa101dc07475131f9ff03f262885df9db37fdb188367074379d7
GET /img/top1.png HTTP/1.1
Host: aehmedia.press
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/med-31424/0975506587
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:37:26 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Last-Modified: Wed, 25 May 2016 04:21:04 GMT
ETag: "56bf-533a300766c00"
Accept-Ranges: bytes
Content-Length: 22207
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 13:37:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aehmedia.press/img/award.png
173.249.19.158200 OK 51 kB URL HTTP/1.1 aehmedia.press/img/award.png
IP 173.249.19.158:0
File type PNG image data, 331 x 95, 8-bit/color RGB, non-interlaced\012- data
Hash 1c925b229332c88a3f0c4b002cbfe016
0538bc2e6f3e81230538b410c179cdc9b5ea3aa6
40b55ccc94082273b764739cbb1ebd95dc4e90c3568d6f831f60d61ece243e9a
GET /img/award.png HTTP/1.1
Host: aehmedia.press
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/med-31424/0975506587
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:37:26 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Last-Modified: Sat, 03 Sep 2016 09:03:07 GMT
ETag: "c8c9-53b96b71fc8c0"
Accept-Ranges: bytes
Content-Length: 51401
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 13:37:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
aehmedia.press/img/bg-7.png
173.249.19.158200 OK 9.0 kB URL HTTP/1.1 aehmedia.press/img/bg-7.png
IP 173.249.19.158:0
File type PNG image data, 946 x 1020, 8-bit/color RGBA, non-interlaced\012- data
Hash e8e38fcbb549fc81d729690ac7fc5554
4568c3caa3a9ba3dbfd6218f7a39e771fc90c416
9a61d623e5f4186ea898850b5f85adc6852f15fc69900790ced4322525c3739f
GET /img/bg-7.png HTTP/1.1
Host: aehmedia.press
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/med-31424/0975506587
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:37:26 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Last-Modified: Fri, 31 Mar 2017 13:29:53 GMT
ETag: "234a-54c06cdfd5640"
Accept-Ranges: bytes
Content-Length: 9034
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
push.services.mozilla.com/
54.187.31.159101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.31.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4CCexRMLkFNmrN32VlY/eA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UbFqZC/RJpHfoIQpJvRG9LYDh6I=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fc9155e391a9ff8873d78c648a60ddfa
891837df6b32a0fb8d14eb0b1b717922519a7083
c0db7f8df5920a0fdffccad0496a0812f81fc41e8f2cb4cd29fd163e4307a279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C0DB7F8DF5920A0FDFFCCAD0496A0812F81FC41E8F2CB4CD29FD163E4307A279"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5241
Expires: Fri, 03 Feb 2023 15:04:47 GMT
Date: Fri, 03 Feb 2023 13:37:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e5fa6f56e035da702b6cba120e68f310
176e3c2c6727dc8847de8c630a5606a6b219dba0
dc024949b91d625d904317dff55a85f98a0065995dc6a61b8c3ef9e45d4bfb35
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DC024949B91D625D904317DFF55A85F98A0065995DC6A61B8C3EF9E45D4BFB35"
Last-Modified: Fri, 03 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21573
Expires: Fri, 03 Feb 2023 19:36:59 GMT
Date: Fri, 03 Feb 2023 13:37:26 GMT
Connection: keep-alive
ecx.images-amazon.com/images/I/51OGSiqp8GL.jpg
143.204.46.75200 OK 46 kB URL HTTP/1.1 ecx.images-amazon.com/images/I/51OGSiqp8GL.jpg
IP 143.204.46.75:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 389x500, components 3\012- data
Hash db0af874a8cbc8ad01258c072d863d4e
2ffa9103d0536a4deceeb1d9cb1cd108781de61f
39ac6d28273cd532d54c123a2a92a9a5f70defbbb7a8ca50dbefab3f12736def
GET /images/I/51OGSiqp8GL.jpg HTTP/1.1
Host: ecx.images-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 46034
Connection: keep-alive
Server: Server
Date: Fri, 03 Feb 2023 13:37:26 GMT
X-Amz-IR-Id: 277db427-8ec1-43c2-a47b-6cdd7b1c3589
Expires: Tue, 27 Jan 2043 09:39:13 GMT
Cache-Control: max-age=630720000,public
Surrogate-key: x-cache-154 /images/I/51OGSiqp8GL
Timing-Allow-Origin: https://www.amazon.in, https://www.amazon.com
Edge-Cache-Tag: x-cache-154,/images/I/51OGSiqp8GL
Access-Control-Allow-Origin: *
Last-Modified: Fri, 21 Jun 2013 13:53:05 GMT
X-Nginx-Cache-Status: HIT
Accept-Ranges: bytes
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fLxtDKLXVTryIpV33smfY0VLyfTaAdOQnif-BuGZTFETTfVBVqXHDg==
faltercollection.com/ac00d9905d23c35abfd9985c2b855549/invoke.js
192.243.61.225200 OK 9.3 kB URL HTTP/1.1 faltercollection.com/ac00d9905d23c35abfd9985c2b855549/invoke.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25078), with no line terminators
Hash d0540ffef25d437a7c8c7e98f9458f52
cd1f572b230580a28049cd0d39b8aa528cec643c
21ee28410e71dbf09a4e200ad85b920ad5830aef91f70a24f1300a156cfcbc9a
GET /ac00d9905d23c35abfd9985c2b855549/invoke.js HTTP/1.1
Host: faltercollection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 13:37:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9f2aeb2a89606e414da4126622669d43
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
faltercollection.com/09f7ebacf042f24698027cea5aed8ab5/invoke.js
192.243.61.225200 OK 9.8 kB URL HTTP/1.1 faltercollection.com/09f7ebacf042f24698027cea5aed8ab5/invoke.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (27000), with no line terminators
Hash 8d2b0ec0b4161d9d3a45ccc7210ba80f
f63562b7bee454be25afeb895db436aa15e09598
27f49f01928b805de6aa00ec626ce5e944982b7a5602e0ba8d2d4015b3e588c4
GET /09f7ebacf042f24698027cea5aed8ab5/invoke.js HTTP/1.1
Host: faltercollection.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 13:37:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ae8bb4a07ee7c95d1020aaf624c572b2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 89693a781b6fd4661b5135e995c020e0
31556087e2debc22777fa52b4d3b61f97ad3f4c2
566e15d9c91a95c23293a34abb7456037353f2abd75ed440d38ca880d3c42099
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:37:27 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 06:34:07 GMT
Expires: Tue, 07 Feb 2023 06:34:06 GMT
Etag: "31556087e2debc22777fa52b4d3b61f97ad3f4c2"
Cache-Control: max-age=319598,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 793b8fb0f8e30b69-OSL
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 3f11c62617c2bee07a8ed3cf82151243
ba58aa99e6fda4e73216a5b6a382dfd4f1f5b33a
a0b39826bd54ed8244e2c90f71d51146feaba0b9100446256479344837c50228
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=86174
Date: Fri, 03 Feb 2023 13:37:27 GMT
Etag: "63dbbb1a-1d7"
Expires: Sat, 04 Feb 2023 13:33:41 GMT
Last-Modified: Thu, 02 Feb 2023 13:31:06 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uiBY4M8fiAtUu72aqFj-pPt-m9ff9gU-1y-O4BtPwK9o9l2yAHlO2w==
Age: 155
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash 3f11c62617c2bee07a8ed3cf82151243
ba58aa99e6fda4e73216a5b6a382dfd4f1f5b33a
a0b39826bd54ed8244e2c90f71d51146feaba0b9100446256479344837c50228
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=88344
Date: Fri, 03 Feb 2023 13:37:27 GMT
Etag: "63dbbb1a-1d7"
Expires: Sat, 04 Feb 2023 14:09:51 GMT
Last-Modified: Thu, 02 Feb 2023 13:31:06 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8Gl-WDBEwa2qUW9vzc-lel1eqZVeuDTi8d4Q_hO-QbV45m_7fjEKfw==
Age: 2325
simplewebanalysis.com/stats
3.120.47.42200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.120.47.42:0
File type ASCII text, with no line terminators
Hash a576ce31de4ea9c1e89d7f80a6f15707
f1af02043dbf918113ed263ef8f5262803b5e406
06568b83ba29f55b1e06f19ec3180405f5fdea75a8b81f448026bae5b471268d
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aehmedia.press
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 13:37:27 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://aehmedia.press
access-control-allow-credentials: true
set-cookie: uid_id2=6309b43a-52a2-475c-975a-6cb67bce7317:3:1; expires=Mon, 31 Jan 2033 13:37:27 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b1cdd69a7ed6082f655ee67e98d84a82
a586735cd2f0b1706cf434107ee831b80f06e025
2bbe166dc5d512a99680596f3aff98a10a8931c6f700352ea27a52bf666c8466
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2BBE166DC5D512A99680596F3AFF98A10A8931C6F700352EA27A52BF666C8466"
Last-Modified: Thu, 02 Feb 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=580
Expires: Fri, 03 Feb 2023 13:47:07 GMT
Date: Fri, 03 Feb 2023 13:37:27 GMT
Connection: keep-alive
simplewebanalysis.com/stats
3.120.47.42200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.120.47.42:0
File type ASCII text, with no line terminators
Hash 5c8518d850fc567d4fe00d081bd6fb2d
91f30a535022dccaa05379359a8da14b3af6a246
1284afd1228c3cc772d7b52aaa9d0ba2da5df7ccc2805f2760025c1a3f90d29a
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aehmedia.press
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 13:37:27 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://aehmedia.press
access-control-allow-credentials: true
set-cookie: uid_id2=a20fd2ce-ede1-416c-8f76-13352962b980:1:1; expires=Mon, 31 Jan 2033 13:37:27 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b7d989b415697cff62370f7730b25860
434aa43f2c55020ce7b770e0115429ee5abac5b9
19fcf5229e29c08dcc880cdc79a9d595798d53a409b67fcf15f3ee2d884eeb00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "19FCF5229E29C08DCC880CDC79A9D595798D53A409B67FCF15F3EE2D884EEB00"
Last-Modified: Thu, 02 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7452
Expires: Fri, 03 Feb 2023 15:41:39 GMT
Date: Fri, 03 Feb 2023 13:37:27 GMT
Connection: keep-alive
subscribestormyapprobation.com/34/36/c8/3436c8322d86a1583f48e7646f8bef82.js
173.233.137.60200 OK 29 kB URL HTTP/1.1 subscribestormyapprobation.com/34/36/c8/3436c8322d86a1583f48e7646f8bef82.js
IP 173.233.137.60:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 811c94096f53fd876ed84e50b063802d
79efa8a6a4a63ec0d802e2d37309b3640f8d5b1c
b61ddf0b3308cb5d063755ffd243834fde09db0dbfb9fcde135f6c8f557214f3
Analyzer Verdict Alert quad9 Sinkholed
GET /34/36/c8/3436c8322d86a1583f48e7646f8bef82.js HTTP/1.1
Host: subscribestormyapprobation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 13:37:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f13e393d856fa12b034966be5b1fa4fb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
wilfulkilometre.com/ntv.json?key=ac00d9905d23c35abfd9985c2b855549&vstc=1
173.233.137.44200 OK 4.2 kB URL HTTP/1.1 wilfulkilometre.com/ntv.json?key=ac00d9905d23c35abfd9985c2b855549&vstc=1
IP 173.233.137.44:0
File type JSON data\012- , ASCII text, with very long lines (4208), with no line terminators
Hash 33646ae01bcd46d5f55752178b5bca53
296e840711d2e13f5261b8d837f10b2382d35c95
3052c248a29c60e68e8bf1fb11356e3df210d55cdec575cac45562e2cdfb06c6
Analyzer Verdict Alert quad9 Sinkholed
GET /ntv.json?key=ac00d9905d23c35abfd9985c2b855549&vstc=1 HTTP/1.1
Host: wilfulkilometre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aehmedia.press
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 13:37:27 GMT
Content-Type: application/json
Content-Length: 4208
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://aehmedia.press
Access-Control-Allow-Origin: https://aehmedia.press
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16497554; expires=Sat, 04 Feb 2023 13:37:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 04 Feb 2023 13:37:27 GMT; secure; SameSite=None
uncs=1; expires=Sat, 04 Feb 2023 13:37:27 GMT; secure; SameSite=None
pdhtkv49=true; expires=Sat, 04 Feb 2023 13:37:27 GMT; secure; SameSite=None
uncs49=1; expires=Sat, 04 Feb 2023 13:37:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4e0fe81ac87b0cc6cc1697985e7afc2d
Strict-Transport-Security: max-age=0; includeSubdomains
wilfulkilometre.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuDuNlBUERgnrpo4LMds9MZ6eNsiTGSEjcrJvIHrW6qnq2nO6upqp%2FzO5pMSDxIIyejKfeb%2FYHatDkLBKZFUIYEByQsIfsnyCCKIIg0rMDiw%2Bq3qv63uH73vs%2B3smPiYOcHq2%2Bo7ZkFNFFr%2BnYL6%2FLhKvS2Cs3bddpOuftdZmc65y3B%2FWli9dcx2s6r9hvC9ZXiy3HdRzXce3LUotQDRZnKGR613ebvtPstJqu18FA%2F%2F9tcguGWuDFMXkOkk%2Bf2nh0H5KNkcT3LgnTz1T66ltxHtFMaRT84L2kn6gyQXxahtpCmBzMu6HMlJAvzkAlB3MFUMVurQCBnBLrsYsgOZjTRFDsnTANIogEAX8aZTGGiMaQdAymbkHyXwjAOFauI4n3V5Qu6eYJSmt0Shp%2F%2FQFZTknjyfNI4m8vRnJg31BRnkmVGAzCCnIwhuyNkeaHyLYsyPIQLPsIkhMkcQXJq5lqKceQ4RiRGIIaC3l9pIU8tJCnFmJ%2BZFPPDx1nKQzCdrvbYYy124x53XPc4%2B1ON3SQs5rWEFk6BIuGYHobqd5GXw6h8x9hNioYbsFkU2K9u42CVygFQWkISkpQSoIyIyiLao9HpmWqfR6ZPHDnuTXP7Wqkst4O3VNZTyRkJz0mz87m8c%2F3n6MvjmzKHIf7vuPxVpu1PRqE3Pe7HmsFXc%2FzOj6MrCDNmZnULTklZz%2F9E6mcksaDvxHQQ5joEEy%2BBJq7oOVoqeWAbow6XQdbyXeFNFIlIlCq32QqBlcV0qyBbNPaiY7JCzMqry%2Ffg2CT5V8%2FuPDJ0tWHYLpCqit8KH8i6EW3R2uqJLtrqjTk%2FvU0k7HcovXabmQ0E42vr4rNUml%2B5ZIZfnWB1UBd3r0pTHaNJlwmPUO%2BuSg5F%2Fqy0kyQH66YdRGs5mbjYq6TPL22%2BublK3GqhanJjkFrC9Y7kVOy8O%2BLM0va8c%2BQegydV4jzCZkHpBqDpdsw6WT54cIb6ejxAowi0NFpT5BaKPNqpFvB6Wckp2Sx2UAkJsvF%2B2v5b3f2QYMKRpwOIhCTB7%2Bf9O%2BY2%2BhpCzS7NTNjoSsUUQUaDWHyhVGW6snyozt1fIkgskZBpK3dINLRZycDNvLIFl7ohMJpiSD0g3CJOtwPO35AfVcsBR51kZkpe%2FLM2f8AAAD%2F%2FwEAAP%2F%2F71MA5m4EAAA%3D
173.233.137.44200 OK 7 B URL HTTP/1.1 wilfulkilometre.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuDuNlBUERgnrpo4LMds9MZ6eNsiTGSEjcrJvIHrW6qnq2nO6upqp%2FzO5pMSDxIIyejKfeb%2FYHatDkLBKZFUIYEByQsIfsnyCCKIIg0rMDiw%2Bq3qv63uH73vs%2B3smPiYOcHq2%2Bo7ZkFNFFr%2BnYL6%2FLhKvS2Cs3bddpOuftdZmc65y3B%2FWli9dcx2s6r9hvC9ZXiy3HdRzXce3LUotQDRZnKGR613ebvtPstJqu18FA%2F%2F9tcguGWuDFMXkOkk%2Bf2nh0H5KNkcT3LgnTz1T66ltxHtFMaRT84L2kn6gyQXxahtpCmBzMu6HMlJAvzkAlB3MFUMVurQCBnBLrsYsgOZjTRFDsnTANIogEAX8aZTGGiMaQdAymbkHyXwjAOFauI4n3V5Qu6eYJSmt0Shp%2F%2FQFZTknjyfNI4m8vRnJg31BRnkmVGAzCCnIwhuyNkeaHyLYsyPIQLPsIkhMkcQXJq5lqKceQ4RiRGIIaC3l9pIU8tJCnFmJ%2BZFPPDx1nKQzCdrvbYYy124x53XPc4%2B1ON3SQs5rWEFk6BIuGYHobqd5GXw6h8x9hNioYbsFkU2K9u42CVygFQWkISkpQSoIyIyiLao9HpmWqfR6ZPHDnuTXP7Wqkst4O3VNZTyRkJz0mz87m8c%2F3n6MvjmzKHIf7vuPxVpu1PRqE3Pe7HmsFXc%2FzOj6MrCDNmZnULTklZz%2F9E6mcksaDvxHQQ5joEEy%2BBJq7oOVoqeWAbow6XQdbyXeFNFIlIlCq32QqBlcV0qyBbNPaiY7JCzMqry%2Ffg2CT5V8%2FuPDJ0tWHYLpCqit8KH8i6EW3R2uqJLtrqjTk%2FvU0k7HcovXabmQ0E42vr4rNUml%2B5ZIZfnWB1UBd3r0pTHaNJlwmPUO%2BuSg5F%2Fqy0kyQH66YdRGs5mbjYq6TPL22%2BublK3GqhanJjkFrC9Y7kVOy8O%2BLM0va8c%2BQegydV4jzCZkHpBqDpdsw6WT54cIb6ejxAowi0NFpT5BaKPNqpFvB6Wckp2Sx2UAkJsvF%2B2v5b3f2QYMKRpwOIhCTB7%2Bf9O%2BY2%2BhpCzS7NTNjoSsUUQUaDWHyhVGW6snyozt1fIkgskZBpK3dINLRZycDNvLIFl7ohMJpiSD0g3CJOtwPO35AfVcsBR51kZkpe%2FLM2f8AAAD%2F%2FwEAAP%2F%2F71MA5m4EAAA%3D
IP 173.233.137.44:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuDuNlBUERgnrpo4LMds9MZ6eNsiTGSEjcrJvIHrW6qnq2nO6upqp%2FzO5pMSDxIIyejKfeb%2FYHatDkLBKZFUIYEByQsIfsnyCCKIIg0rMDiw%2Bq3qv63uH73vs%2B3smPiYOcHq2%2Bo7ZkFNFFr%2BnYL6%2FLhKvS2Cs3bddpOuftdZmc65y3B%2FWli9dcx2s6r9hvC9ZXiy3HdRzXce3LUotQDRZnKGR613ebvtPstJqu18FA%2F%2F9tcguGWuDFMXkOkk%2Bf2nh0H5KNkcT3LgnTz1T66ltxHtFMaRT84L2kn6gyQXxahtpCmBzMu6HMlJAvzkAlB3MFUMVurQCBnBLrsYsgOZjTRFDsnTANIogEAX8aZTGGiMaQdAymbkHyXwjAOFauI4n3V5Qu6eYJSmt0Shp%2F%2FQFZTknjyfNI4m8vRnJg31BRnkmVGAzCCnIwhuyNkeaHyLYsyPIQLPsIkhMkcQXJq5lqKceQ4RiRGIIaC3l9pIU8tJCnFmJ%2BZFPPDx1nKQzCdrvbYYy124x53XPc4%2B1ON3SQs5rWEFk6BIuGYHobqd5GXw6h8x9hNioYbsFkU2K9u42CVygFQWkISkpQSoIyIyiLao9HpmWqfR6ZPHDnuTXP7Wqkst4O3VNZTyRkJz0mz87m8c%2F3n6MvjmzKHIf7vuPxVpu1PRqE3Pe7HmsFXc%2FzOj6MrCDNmZnULTklZz%2F9E6mcksaDvxHQQ5joEEy%2BBJq7oOVoqeWAbow6XQdbyXeFNFIlIlCq32QqBlcV0qyBbNPaiY7JCzMqry%2Ffg2CT5V8%2FuPDJ0tWHYLpCqit8KH8i6EW3R2uqJLtrqjTk%2FvU0k7HcovXabmQ0E42vr4rNUml%2B5ZIZfnWB1UBd3r0pTHaNJlwmPUO%2BuSg5F%2Fqy0kyQH66YdRGs5mbjYq6TPL22%2BublK3GqhanJjkFrC9Y7kVOy8O%2BLM0va8c%2BQegydV4jzCZkHpBqDpdsw6WT54cIb6ejxAowi0NFpT5BaKPNqpFvB6Wckp2Sx2UAkJsvF%2B2v5b3f2QYMKRpwOIhCTB7%2Bf9O%2BY2%2BhpCzS7NTNjoSsUUQUaDWHyhVGW6snyozt1fIkgskZBpK3dINLRZycDNvLIFl7ohMJpiSD0g3CJOtwPO35AfVcsBR51kZkpe%2FLM2f8AAAD%2F%2FwEAAP%2F%2F71MA5m4EAAA%3D HTTP/1.1
Host: wilfulkilometre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/
Cookie: u_pl=16497554; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 13:37:27 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 351dbca4fe11eb356269e840aa998bfc
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 604c3cbda1f304eef93aa15329e8e7ac
d9f25abc81500d2740265d4a2b11fa7e2d251d1f
5b0938197333a46575fa5d665e649f70b3268e27d0f3cbcac04065cc70acf9c5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B0938197333A46575FA5D665E649F70B3268E27D0F3CBCAC04065CC70ACF9C5"
Last-Modified: Fri, 03 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12899
Expires: Fri, 03 Feb 2023 17:12:26 GMT
Date: Fri, 03 Feb 2023 13:37:27 GMT
Connection: keep-alive
subscribestormyapprobation.com/watch.1625371927843.js?key=09f7ebacf042f24698027cea5aed8ab5&kw=%5B%22download%22%2C%22figure%22%2C%22sculpting%22%2C%22volume%22%2C%221%22%2C%22planes%22%2C%22and%22%2C%22construction%22%2C%22techniques%22%2C%22in%22%2C%22clay%22%2C%22by%22%2C%22philippe%22%2C%22faraut%22%2C%22charisse%22%2C%22faraut%22%2C%22pdf%22%2C%22ebook%22%5D&refer=https%3A%2F%2Faehmedia.press%2Fmed-31424%2F0975506587&tz=0&dev=e&res=12.1055&uuid=a20fd2ce-ede1-416c-8f76-13352962b980%3A1%3A1
173.233.137.60307 Temporary Redirect 0 B URL HTTP/1.1 subscribestormyapprobation.com/watch.1625371927843.js?key=09f7ebacf042f24698027cea5aed8ab5&kw=%5B%22download%22%2C%22figure%22%2C%22sculpting%22%2C%22volume%22%2C%221%22%2C%22planes%22%2C%22and%22%2C%22construction%22%2C%22techniques%22%2C%22in%22%2C%22clay%22%2C%22by%22%2C%22philippe%22%2C%22faraut%22%2C%22charisse%22%2C%22faraut%22%2C%22pdf%22%2C%22ebook%22%5D&refer=https%3A%2F%2Faehmedia.press%2Fmed-31424%2F0975506587&tz=0&dev=e&res=12.1055&uuid=a20fd2ce-ede1-416c-8f76-13352962b980%3A1%3A1
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1625371927843.js?key=09f7ebacf042f24698027cea5aed8ab5&kw=%5B%22download%22%2C%22figure%22%2C%22sculpting%22%2C%22volume%22%2C%221%22%2C%22planes%22%2C%22and%22%2C%22construction%22%2C%22techniques%22%2C%22in%22%2C%22clay%22%2C%22by%22%2C%22philippe%22%2C%22faraut%22%2C%22charisse%22%2C%22faraut%22%2C%22pdf%22%2C%22ebook%22%5D&refer=https%3A%2F%2Faehmedia.press%2Fmed-31424%2F0975506587&tz=0&dev=e&res=12.1055&uuid=a20fd2ce-ede1-416c-8f76-13352962b980%3A1%3A1 HTTP/1.1
Host: subscribestormyapprobation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aehmedia.press
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 13:37:27 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://aehmedia.press
Access-Control-Allow-Origin: https://aehmedia.press
Access-Control-Allow-Credentials: true
Location: https://subscribestormyapprobation.com/watch.1625371927843.js?key=09f7ebacf042f24698027cea5aed8ab5&kw=%5B%22download%22%2C%22figure%22%2C%22sculpting%22%2C%22volume%22%2C%221%22%2C%22planes%22%2C%22and%22%2C%22construction%22%2C%22techniques%22%2C%22in%22%2C%22clay%22%2C%22by%22%2C%22philippe%22%2C%22faraut%22%2C%22charisse%22%2C%22faraut%22%2C%22pdf%22%2C%22ebook%22%5D&refer=https%3A%2F%2Faehmedia.press%2Fmed-31424%2F0975506587&tz=0&dev=e&res=12.1055&uuid=a20fd2ce-ede1-416c-8f76-13352962b980%3A1%3A1&shu=9068e31f221412a991e64c49d0ed7703843b010c794d6220291cdc24a370d18f141ceb7cb33d8cd37d5ed02b214a1df719f332601de4ae1b1e5a19e2eb1d4983cd4ee6a381135afa052548e647e8593f83d7978252481fcd4fe84a55a3328c&pst=1675431507&rmtc=t
Set-Cookie: u_pl=16268107; expires=Sat, 04 Feb 2023 13:37:27 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.aCR_bjt8c4bby7ttj6Ks3u_vniQPUTjDe4TEa47y50s; expires=Fri, 03 Feb 2023 13:38:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f27f1ed1f38c481fe799697cfbdf0bf6
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cf963d54bd13560b2590d8397b99e265
c1afab79363f559cd3b44d7e88a473638628cae6
f2ecaee084b969c4893660a0da3130da592303384d33c98a70e2ab617335c567
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F2ECAEE084B969C4893660A0DA3130DA592303384D33C98A70E2AB617335C567"
Last-Modified: Fri, 03 Feb 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9609
Expires: Fri, 03 Feb 2023 16:17:36 GMT
Date: Fri, 03 Feb 2023 13:37:27 GMT
Connection: keep-alive
cdn.cloudimagesb.com/si/14/d6/f0/14d6f0079ffda60cd9961f9c32e1cb1b/1674209884.png
45.133.44.10200 OK 108 kB URL HTTP/2 cdn.cloudimagesb.com/si/14/d6/f0/14d6f0079ffda60cd9961f9c32e1cb1b/1674209884.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 320 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 108 kB (108061 bytes)
Hash f25a89906f49b309b04a788657e63775
fafed8a699a3942ca5d277b5f329e1e2377d3747
05d3612dca9ad5a805bd967d52285f06a4e8f028a3e94f4cef6031b985b9796d
GET /si/14/d6/f0/14d6f0079ffda60cd9961f9c32e1cb1b/1674209884.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 13:37:27 GMT
content-type: image/png
content-length: 108061
server: nginx/1.17.6
last-modified: Fri, 20 Jan 2023 10:18:12 GMT
etag: "63ca6a64-1a61d"
expires: Sun, 05 Feb 2023 13:37:27 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13232
Expires: Fri, 03 Feb 2023 17:18:00 GMT
Date: Fri, 03 Feb 2023 13:37:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13232
Expires: Fri, 03 Feb 2023 17:18:00 GMT
Date: Fri, 03 Feb 2023 13:37:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13232
Expires: Fri, 03 Feb 2023 17:18:00 GMT
Date: Fri, 03 Feb 2023 13:37:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13232
Expires: Fri, 03 Feb 2023 17:18:00 GMT
Date: Fri, 03 Feb 2023 13:37:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13232
Expires: Fri, 03 Feb 2023 17:18:00 GMT
Date: Fri, 03 Feb 2023 13:37:28 GMT
Connection: keep-alive
subscribestormyapprobation.com/watch.1625371927843.js?key=09f7ebacf042f24698027cea5aed8ab5&kw=%5B%22download%22%2C%22figure%22%2C%22sculpting%22%2C%22volume%22%2C%221%22%2C%22planes%22%2C%22and%22%2C%22construction%22%2C%22techniques%22%2C%22in%22%2C%22clay%22%2C%22by%22%2C%22philippe%22%2C%22faraut%22%2C%22charisse%22%2C%22faraut%22%2C%22pdf%22%2C%22ebook%22%5D&refer=https%3A%2F%2Faehmedia.press%2Fmed-31424%2F0975506587&tz=0&dev=e&res=12.1055&uuid=a20fd2ce-ede1-416c-8f76-13352962b980%3A1%3A1&shu=9068e31f221412a991e64c49d0ed7703843b010c794d6220291cdc24a370d18f141ceb7cb33d8cd37d5ed02b214a1df719f332601de4ae1b1e5a19e2eb1d4983cd4ee6a381135afa052548e647e8593f83d7978252481fcd4fe84a55a3328c&pst=1675431507&rmtc=t
173.233.137.60200 OK 2.1 kB URL HTTP/1.1 subscribestormyapprobation.com/watch.1625371927843.js?key=09f7ebacf042f24698027cea5aed8ab5&kw=%5B%22download%22%2C%22figure%22%2C%22sculpting%22%2C%22volume%22%2C%221%22%2C%22planes%22%2C%22and%22%2C%22construction%22%2C%22techniques%22%2C%22in%22%2C%22clay%22%2C%22by%22%2C%22philippe%22%2C%22faraut%22%2C%22charisse%22%2C%22faraut%22%2C%22pdf%22%2C%22ebook%22%5D&refer=https%3A%2F%2Faehmedia.press%2Fmed-31424%2F0975506587&tz=0&dev=e&res=12.1055&uuid=a20fd2ce-ede1-416c-8f76-13352962b980%3A1%3A1&shu=9068e31f221412a991e64c49d0ed7703843b010c794d6220291cdc24a370d18f141ceb7cb33d8cd37d5ed02b214a1df719f332601de4ae1b1e5a19e2eb1d4983cd4ee6a381135afa052548e647e8593f83d7978252481fcd4fe84a55a3328c&pst=1675431507&rmtc=t
IP 173.233.137.60:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (2648)
Hash a87cfee32886d0b2dcde95d5f5b394f1
68df566026aa45b11c3894ff29413ee5713950e0
b10b51466186f460d926cf4cd63cf7bf19ffc13775fc1379fc7cc9a3094b8444
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1625371927843.js?key=09f7ebacf042f24698027cea5aed8ab5&kw=%5B%22download%22%2C%22figure%22%2C%22sculpting%22%2C%22volume%22%2C%221%22%2C%22planes%22%2C%22and%22%2C%22construction%22%2C%22techniques%22%2C%22in%22%2C%22clay%22%2C%22by%22%2C%22philippe%22%2C%22faraut%22%2C%22charisse%22%2C%22faraut%22%2C%22pdf%22%2C%22ebook%22%5D&refer=https%3A%2F%2Faehmedia.press%2Fmed-31424%2F0975506587&tz=0&dev=e&res=12.1055&uuid=a20fd2ce-ede1-416c-8f76-13352962b980%3A1%3A1&shu=9068e31f221412a991e64c49d0ed7703843b010c794d6220291cdc24a370d18f141ceb7cb33d8cd37d5ed02b214a1df719f332601de4ae1b1e5a19e2eb1d4983cd4ee6a381135afa052548e647e8593f83d7978252481fcd4fe84a55a3328c&pst=1675431507&rmtc=t HTTP/1.1
Host: subscribestormyapprobation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aehmedia.press
Referer: https://aehmedia.press/
Connection: keep-alive
Cookie: u_pl=16268107; ain=eyJhbGciOiJIUzI1NiJ9.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.aCR_bjt8c4bby7ttj6Ks3u_vniQPUTjDe4TEa47y50s
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 13:37:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://aehmedia.press
Access-Control-Allow-Origin: https://aehmedia.press
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=a20fd2ce-ede1-416c-8f76-13352962b980:1:1; expires=Fri, 10 Feb 2023 13:37:27 GMT; secure; SameSite=None
iprc8dce7ed3b5f51fbcdda88c259b00ec2c=3569806; expires=Fri, 03 Feb 2023 17:37:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 04 Feb 2023 13:37:27 GMT; secure; SameSite=None
uncs=1; expires=Sat, 04 Feb 2023 13:37:27 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 04 Feb 2023 13:37:27 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 04 Feb 2023 13:37:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1a101617aa83745e5ab1e96a47503ac3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:49 GMT
age: 56379
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 114e345e134986d7451148fcea31b29d
541e878afee68c8802bb52b0cbbe5a5a0a185392
5030244d4babd1023166f39c935029d789a91ba90aa3a44c6f4c88ddc947b678
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F524a46fd-88eb-4539-9d8b-1ac679ae5990.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8211
x-amzn-requestid: 6a1fd567-b34d-4787-aa05-5b7db3fc51c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fflRBHU4IAMFnsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61c06-2d1ec3206d2ebeb4780a84b4;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:11:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUloQ6xaRWpnvMRh7kFvFIWhFotmILLZHfD_YK01RmrQ2vmYKVh46w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 03:08:32 GMT
age: 37736
etag: "541e878afee68c8802bb52b0cbbe5a5a0a185392"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 56967
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b7r7phj8i49RMSuWufxF1L34K9udWa0mJ4dY12izM9ofwAuCFBGEZQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 56967
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XTZJAn0LMAfFtaQ2bN8z58cCsUT5GzxDMnHVB_iw9E_NskHQ-BgbRQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:19:26 GMT
age: 84437
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hSyEfSDToqgfnFIW68Krz-ANYUNQoUPWhyb-8xDUarI6mnVLXriHDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:59:54 GMT
age: 56254
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
naveljutmistress.com/pixel/purst?dl=0&th=0&sc=0&rs=2139&rd=2139&fd=544&bv=22.10.v.10&tmpl=136
173.233.137.36200 OK 0 B URL HTTP/1.1 naveljutmistress.com/pixel/purst?dl=0&th=0&sc=0&rs=2139&rd=2139&fd=544&bv=22.10.v.10&tmpl=136
IP 173.233.137.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=2139&rd=2139&fd=544&bv=22.10.v.10&tmpl=136 HTTP/1.1
Host: naveljutmistress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 03 Feb 2023 13:37:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
aehmedia.press/favicon.ico
173.249.19.158200 OK 9.7 kB URL HTTP/1.1 aehmedia.press/favicon.ico
IP 173.249.19.158:0
File type MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data
Hash 864585c13828d469220c961b4efbe781
5535635447437c18676db39f29de4d4c28d2e8be
10dc68b2c5edc475e10d02791aa5d6aee3204dd613c1d03fdc92f29ed626a80c
GET /favicon.ico HTTP/1.1
Host: aehmedia.press
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/med-31424/0975506587
Cookie: sc_is_visitor_unique=rx11245892.1675431478.A3D4C4D848CF4FB60CC99A38A8CC400F.1.1.1.1.1.1.1.1.1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=a20fd2ce-ede1-416c-8f76-13352962b980%3A1%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=wilfulkilometre.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 13:37:28 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
Last-Modified: Wed, 29 Oct 2014 04:04:47 GMT
ETag: "25be-50687dd5155c0"
Accept-Ranges: bytes
Content-Length: 9662
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
45.133.44.10200 OK 144 kB URL HTTP/2 cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 144 kB (144379 bytes)
Hash 33c304429dc1a4408a96e6a74ffa2feb
c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 13:37:28 GMT
content-type: image/png
content-length: 144379
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Sun, 05 Feb 2023 13:37:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
c.statcounter.com/t.php?sc_project=11245892&u1=A3D4C4D848CF4FB60CC99A38A8CC400F&java=1&security=504152f4&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//aehmedia.press/med-31424/0975506587&t=Download%20%3A%20Figure%20Sculpting%20Volume%201%3A%20Planes%20and%20Construction%20Techniques%20in%20Clay%20By%20Philippe%20Faraut%2C%20Charisse%20Faraut%20PDF%20Ebook&invisible=1&sc_rum_e_s=1714&sc_rum_e_e=1719&sc_rum_f_s=0&sc_rum_f_e=1704&get_config=true
104.20.219.77200 OK 0 B URL HTTP/2 c.statcounter.com/t.php?sc_project=11245892&u1=A3D4C4D848CF4FB60CC99A38A8CC400F&java=1&security=504152f4&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//aehmedia.press/med-31424/0975506587&t=Download%20%3A%20Figure%20Sculpting%20Volume%201%3A%20Planes%20and%20Construction%20Techniques%20in%20Clay%20By%20Philippe%20Faraut%2C%20Charisse%20Faraut%20PDF%20Ebook&invisible=1&sc_rum_e_s=1714&sc_rum_e_e=1719&sc_rum_f_s=0&sc_rum_f_e=1704&get_config=true
IP 104.20.219.77:0
GET /t.php?sc_project=11245892&u1=A3D4C4D848CF4FB60CC99A38A8CC400F&java=1&security=504152f4&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//aehmedia.press/med-31424/0975506587&t=Download%20%3A%20Figure%20Sculpting%20Volume%201%3A%20Planes%20and%20Construction%20Techniques%20in%20Clay%20By%20Philippe%20Faraut%2C%20Charisse%20Faraut%20PDF%20Ebook&invisible=1&sc_rum_e_s=1714&sc_rum_e_e=1719&sc_rum_f_s=0&sc_rum_f_e=1704&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://aehmedia.press
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 13:37:28 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc11245892.1675431448.0; SameSite=None; Secure; Expires=Wednesday, 02-Feb-2028 20:37:28 WIB; Path=/; Domain=.statcounter.com
is_visitor_unique=1675431448237693104; SameSite=None; Secure; Expires=Sunday, 02-Feb-2025 20:37:28 WIB; Path=/; Domain=.statcounter.com
access-control-allow-origin: https://aehmedia.press
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 793b8fb6ea871bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootswatch/3.3.6/lumen/bootstrap.min.css
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootswatch/3.3.6/lumen/bootstrap.min.css
IP 104.18.10.207:0
GET /bootswatch/3.3.6/lumen/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 13:37:26 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:27 GMT
cdn-cachedat: 12/10/2021 15:32:58
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: e9a4e8c4f93483ac9ad4cfec0ed90682
cdn-cache: HIT
cf-cache-status: HIT
age: 2176774
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 793b8fac1889b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,700,400italic
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro:300,400,700,400italic
IP 142.250.74.106:0
GET /css?family=Source+Sans+Pro:300,400,700,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 13:37:26 GMT
date: Fri, 03 Feb 2023 13:37:26 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
secure.statcounter.com/counter/counter.js
104.20.219.77200 OK 0 B URL HTTP/2 secure.statcounter.com/counter/counter.js
IP 104.20.219.77:0
GET /counter/counter.js HTTP/1.1
Host: secure.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://aehmedia.press/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 13:37:27 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 02 Feb 2023 16:16:17 GMT
etag: W/"63dbe1d1-aa70"
expires: Fri, 03 Feb 2023 18:37:24 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 25203
server: cloudflare
cf-ray: 793b8fb14d501bfe-OSL
content-encoding: br
X-Firefox-Spdy: h2