fonts.gstatic.com/s/mavenpro/v32/7Auup_AqnyWWAxW2Wk3swUz56MS91Eww8SX21nejog.woff2
200 OK 9.4 kB URL GET HTTP/2 fonts.gstatic.com/s/mavenpro/v32/7Auup_AqnyWWAxW2Wk3swUz56MS91Eww8SX21nejog.woff2
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 9412, version 1.0\012- data
Hash 2e1e2874a5b386ca7c934eec2c035302
24ca9d7e8a83a8139379d47ffc89edc936d08773
5322cfb86c34d58be1390ce31d71b3c09de2b11979b7baeff52c0461fb7c534a
GET /s/mavenpro/v32/7Auup_AqnyWWAxW2Wk3swUz56MS91Eww8SX21nejog.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://afreckledgirl.site
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 00:14:53 GMT
expires: Wed, 04 Dec 2024 00:14:53 GMT
cache-control: public, max-age=31536000
age: 26918
last-modified: Mon, 11 Jul 2022 20:35:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
afreckledgirl.site/photos/c%20(449).webp
200 OK 8.9 kB URL GET HTTP/3 afreckledgirl.site/photos/c%20(449).webp
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectafreckledgirl.site
FingerprintC7:5F:F3:06:61:D7:A2:0F:F9:14:2B:88:48:B1:08:CF:D4:E9:AD:E0
ValiditySun, 29 Oct 2023 05:35:40 GMT - Sat, 27 Jan 2024 05:35:39 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8594fea64642d20264456dd7937b3b96
ae138bca784de7627571b7c3618cd6381b434887
9d49e073a7ac994ed3d2a5f6c720a0f3fcd8c53a1b0eef2b5e17d7e30237c612
GET /photos/c%20(449).webp HTTP/1.1
Host: afreckledgirl.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/blog/1645227/Afreckledgirl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:43:32 GMT
content-length: 8878
last-modified: Wed, 04 Jan 2023 04:06:22 GMT
etag: "22ae-5f1684eac2772"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bc5iAWa5dqsdbyFfAMLZa%2Fpk72mBpfy48at0VT0HS53%2FKH6GTBz7smzhWIlBKe7nSNEE3pxWWNJsZ7V8N4lCzFRQDu7KkzP8Iek4pFJRJ2mpfehFmab6V5tYciX8uqeiEGrJ04I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830aa8a0ce3e568a-OSL
alt-svc: h3=":443"; ma=86400
afreckledgirl.site/photos/c%20(292).webp
200 OK 17 kB URL GET HTTP/3 afreckledgirl.site/photos/c%20(292).webp
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectafreckledgirl.site
FingerprintC7:5F:F3:06:61:D7:A2:0F:F9:14:2B:88:48:B1:08:CF:D4:E9:AD:E0
ValiditySun, 29 Oct 2023 05:35:40 GMT - Sat, 27 Jan 2024 05:35:39 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash b8e2f06d147f12515b1aa5b79389413a
33027018f68ee60f993e70091473c990263fab4d
5783a6ec91a64b15cc99c4243e5501da48b50c8b5b2efe0a9a660654265459b2
GET /photos/c%20(292).webp HTTP/1.1
Host: afreckledgirl.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/blog/1645227/Afreckledgirl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:43:32 GMT
content-length: 17242
last-modified: Wed, 04 Jan 2023 04:04:11 GMT
etag: "435a-5f16846e0e96e"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=97%2BnyVnFajXoANtAnlmjmxzocTltoHJEaiIjiRWV85pLgxPqUzqtvp0ETja%2Fy5rDQ%2BSubQTY4meeiuN5mTkv%2BHlge7LFQ5qYE74m9%2FUNKU8KKM8M9pupB3UOBk%2FOTxg3Q8IGguE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830aa8a0ce44568a-OSL
alt-svc: h3=":443"; ma=86400
intoxicatefiglowest.com/ac/34/fa/ac34fa280dc4ca9d6d13e6403ea43b91.js
200 OK 15 kB URL GET HTTP/1.1 intoxicatefiglowest.com/ac/34/fa/ac34fa280dc4ca9d6d13e6403ea43b91.js
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectintoxicatefiglowest.com
Fingerprint1F:86:D9:54:E8:E2:F7:B3:A4:04:E3:6A:67:84:FC:4E:C3:47:78:38
ValidityThu, 02 Nov 2023 07:11:14 GMT - Wed, 31 Jan 2024 07:11:13 GMT
File type ASCII text, with very long lines (42777), with no line terminators
Hash 93e43f05651c2d7150fc557019f083b2
0640074c808d62ebe3de7312b9f80d58aa07e7cf
e6fca8875dc6fcb4ed4590d22952ea61af27648c5f2bff6fad4edb13ebea4f0d
GET /ac/34/fa/ac34fa280dc4ca9d6d13e6403ea43b91.js HTTP/1.1
Host: intoxicatefiglowest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 07:43:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 400790e96f70c8aa59099be554a91bab
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 284561665bb72f9e048baaaae14f26c4
242f48d905b1d7eca5e31369360b6b7890842646
a8c1f22b7b19420e011b8d858e74c710e9fd431277a3538b5ae01d7d2c4648e7
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://afreckledgirl.site
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:43:32 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://afreckledgirl.site
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=257748a2-2d71-417b-a42d-7ae6a85c12c5:3:1; expires=Fri, 02 Dec 2033 07:43:32 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
afreckledgirl.site/favicon-16x16.png
200 OK 385 B URL GET HTTP/3 afreckledgirl.site/favicon-16x16.png
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectafreckledgirl.site
FingerprintC7:5F:F3:06:61:D7:A2:0F:F9:14:2B:88:48:B1:08:CF:D4:E9:AD:E0
ValiditySun, 29 Oct 2023 05:35:40 GMT - Sat, 27 Jan 2024 05:35:39 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 0d6f31b1eae7d596ff490b0ce3545271
5ee1f8f66701199e681504ab8b8ca47fd75c9b1e
afe665ba36977d0dc4e95a4cf7dab4bc3d3c222be1425e9c5dad074c1e7bbfe9
GET /favicon-16x16.png HTTP/1.1
Host: afreckledgirl.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/blog/1645227/Afreckledgirl
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=257748a2-2d71-417b-a42d-7ae6a85c12c5%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:43:32 GMT
content-type: image/png
content-length: 385
last-modified: Wed, 04 Jan 2023 03:57:53 GMT
etag: "63b4f941-181"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HTRfbUOxlzNftdOX4s80VikFP%2Boe0kPWuCu4XG689ONbs9B8wF58ek9PSmU2BU%2BZ2pLURAQLQi3El72I3PEtdCZyLk8ONwScCZbw%2BXt3mJ4T1ijhEy2ccYUi09tXleua8If4Kyc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830aa8a6bb35568a-OSL
alt-svc: h3=":443"; ma=86400
afreckledgirl.site/apple-touch-icon.png
200 OK 5.1 kB URL GET HTTP/3 afreckledgirl.site/apple-touch-icon.png
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectafreckledgirl.site
FingerprintC7:5F:F3:06:61:D7:A2:0F:F9:14:2B:88:48:B1:08:CF:D4:E9:AD:E0
ValiditySun, 29 Oct 2023 05:35:40 GMT - Sat, 27 Jan 2024 05:35:39 GMT
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 63cd7cffb689abc8e7781a2bce6eb81d
31e4d77177dd9b5db1af3bc432ff1dfaf02070a8
d2d6adb1901d939a3f5c2c012e26210a43d524e724f876eb8da58f5dae2fa577
GET /apple-touch-icon.png HTTP/1.1
Host: afreckledgirl.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/blog/1645227/Afreckledgirl
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=257748a2-2d71-417b-a42d-7ae6a85c12c5%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:43:32 GMT
content-type: image/png
content-length: 5121
last-modified: Wed, 04 Jan 2023 03:57:49 GMT
etag: "63b4f93d-1401"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vnuJeTeJIdyiOah0epvaomLGgWc9mS2VTkec44AZMSGa3Y9nuTEKqBEwUyrDMcr9%2FS7a41xsFpWi%2FFd%2FLkBOLzwUWCL%2F0kYl6l2mvdg%2B%2FCWwQ19PTaY5OE%2BhtmjazOaFCDerL4E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830aa8a6bb34568a-OSL
alt-svc: h3=":443"; ma=86400
forklacy.com/98/ec/3a/98ec3a723d1e7ac65e08114e77dd03bd.js
200 OK 24 kB URL GET HTTP/1.1 forklacy.com/98/ec/3a/98ec3a723d1e7ac65e08114e77dd03bd.js
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectforklacy.com
FingerprintEC:85:C1:DF:A4:84:6D:18:50:A5:AE:F6:0A:77:C6:D4:F8:27:67:1F
ValidityTue, 28 Nov 2023 10:42:01 GMT - Mon, 26 Feb 2024 10:42:00 GMT
File type ASCII text, with very long lines (59888)
Hash 0f50cbd216702789570c095c7c2832dc
83400ff8a0b48d2f229c4ed22abc0684cb1bdb03
99bfc5b2cc99fc3018538f26227555ba1079c7504c214f809594314ead894ada
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /98/ec/3a/98ec3a723d1e7ac65e08114e77dd03bd.js HTTP/1.1
Host: forklacy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 07:43:32 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_AN-1159_new=1; expires=Sat, 09 Dec 2023 11:43:32 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7bd98b04cc2e8026bb748ecb21c1e75a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
forklacy.com/sbar.json?key=ac34fa280dc4ca9d6d13e6403ea43b91&uuid=257748a2-2d71-417b-a42d-7ae6a85c12c5%3A3%3A1
200 OK 4.3 kB URL GET HTTP/1.1 forklacy.com/sbar.json?key=ac34fa280dc4ca9d6d13e6403ea43b91&uuid=257748a2-2d71-417b-a42d-7ae6a85c12c5%3A3%3A1
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectforklacy.com
FingerprintEC:85:C1:DF:A4:84:6D:18:50:A5:AE:F6:0A:77:C6:D4:F8:27:67:1F
ValidityTue, 28 Nov 2023 10:42:01 GMT - Mon, 26 Feb 2024 10:42:00 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6024), with no line terminators
Hash 21e6e27cdaa866804ab221f4ed4e31e1
14adad59de7cd48c888aacfca2d9cd311f0636f5
cad7fb4f0cb550e06ec4c17d4d488dcbf1d32b1de625a6bfc3de77bbc1c45b29
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=ac34fa280dc4ca9d6d13e6403ea43b91&uuid=257748a2-2d71-417b-a42d-7ae6a85c12c5%3A3%3A1 HTTP/1.1
Host: forklacy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://afreckledgirl.site
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 07:43:33 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://afreckledgirl.site
Access-Control-Allow-Origin: https://afreckledgirl.site
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17216069; expires=Wed, 06 Dec 2023 07:43:33 GMT; secure; SameSite=None
uid_id2=257748a2-2d71-417b-a42d-7ae6a85c12c5:3:1; expires=Tue, 12 Dec 2023 07:43:33 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 06 Dec 2023 07:43:33 GMT; secure; SameSite=None
uncs=1; expires=Wed, 06 Dec 2023 07:43:33 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 06 Dec 2023 07:43:33 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 06 Dec 2023 07:43:33 GMT; secure; SameSite=None
slecac34fa280dc4ca9d6d13e6403ea43b91=[4806682]; expires=Tue, 05 Dec 2023 07:43:38 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a895076fbea1928a92db1d933cc25c3f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
forklacy.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRuu3t3v8yCIihfF1Tl4WMFMunt6MjPuYXHdjQRjErMr8VpdVT0pU1PVVPXPJIgEF2WP481j55lkw%2BoiricvsjLxIgHBUZAIBu9eBGHPMsnA4Hvo9%2Bfpw%2FNTn%2B7lpyRATk%2FW3jE7Uik636z7tSsbUnNTutrK7Vrg1%2F2rtQ2pF6Krtf7kY4vXA79Z91%2BtvSXYlpkP%2FcD3Az%2BoLUorEtOfP0Mh0wedoN7x61FYD5oR%2Bva%2Fu8s9OOqBF6fkWUg%2B%2Ft%2Fmjw8h2Qi69%2FUN4bYyk752s5crmhmLgh%2B%2Bp7e0KTV6szGxHhJ9OP0bxo0J%2BfwCjD6cKoAp9icKEMsx8X4LEOvDKU3ExcE501hBaMT8SZTFCEKNIOkIzNyB5D8TgHGsrEL37q0YW9Ltc5RO0DG59PgfyHJMLv3xHHTvq%2BtK9mu3jMozabRDP6kg%2ByPI7ghpfoRsx4Msj8CyjyH5T2T%2B8TJ0b3%2FVKQPJT14Jm61W1KbhXMhbwVwUtOI5GoV8rkXFAm03WRCy5plFUo4gkxGUGIC6i8idh1x6yBMPeeqhx09qtNlJfL%2BVxEmj0Y4YY40GY832Am%2FyRtROfORsomGALB2AqQGY3UVqd7ElB7D593CbFRz34DKCglcoBUHpCEpKUEqCMiMoi%2BqAKxe66h5XLo%2BDaQ%2BnvVENTdbdowcm6wpNQO1gLz0lz0zM8%2F7%2FzU1siZMaZY0ooWHb5yxitMMXeNAQC5HfEDRqxJ0ATlaQ7gKo87Ajx%2BTFThvpJNEPC8T0CE4dgcmnQfPLoOWwFfqgm8Oo7WNH389ERl09yTW4qZBml5Bte3vqlDx%2FluDS%2By9AsGMyLTBbIbUVPpA%2FEHTV3eG6Kcn%2BuikdebiaZrInd%2Bgk3VsZzYT3xdtiuzSWL91wg%2FtvsAkwGR%2FcFi5bpppL3XXky%2BuSc2EXjWWCfLfkNkS8lrvN67nVebq89ubiUi%2B1wjlp9AhUjskTL6%2BAyTF56vJHZy%2F3yqPfIe0INq%2FQy2dcpTkCS3fh0tnNGQKrZnuceijzamjDeHZUkkCJ2U7jCk4cX%2Fvz3b8%2BeenbdcTi%2BNHf59ieu4uu9UCzO9C9CoWtUKgKVA3g8ovDLLXH135pnBVi5Q1jZb39WFn12bm5Tp7URDPxE%2BGHIk46cdKiPu8kUSemnUC04iYNkLmx0L8e%2FAsAAP%2F%2FAQAA%2F%2F%2F%2FPwtrkQQAAA%3D%3D
200 OK 7 B URL GET HTTP/1.1 forklacy.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRuu3t3v8yCIihfF1Tl4WMFMunt6MjPuYXHdjQRjErMr8VpdVT0pU1PVVPXPJIgEF2WP481j55lkw%2BoiricvsjLxIgHBUZAIBu9eBGHPMsnA4Hvo9%2Bfpw%2FNTn%2B7lpyRATk%2FW3jE7Uik636z7tSsbUnNTutrK7Vrg1%2F2rtQ2pF6Krtf7kY4vXA79Z91%2BtvSXYlpkP%2FcD3Az%2BoLUorEtOfP0Mh0wedoN7x61FYD5oR%2Bva%2Fu8s9OOqBF6fkWUg%2B%2Ft%2Fmjw8h2Qi69%2FUN4bYyk752s5crmhmLgh%2B%2Bp7e0KTV6szGxHhJ9OP0bxo0J%2BfwCjD6cKoAp9icKEMsx8X4LEOvDKU3ExcE501hBaMT8SZTFCEKNIOkIzNyB5D8TgHGsrEL37q0YW9Ltc5RO0DG59PgfyHJMLv3xHHTvq%2BtK9mu3jMozabRDP6kg%2ByPI7ghpfoRsx4Msj8CyjyH5T2T%2B8TJ0b3%2FVKQPJT14Jm61W1KbhXMhbwVwUtOI5GoV8rkXFAm03WRCy5plFUo4gkxGUGIC6i8idh1x6yBMPeeqhx09qtNlJfL%2BVxEmj0Y4YY40GY832Am%2FyRtROfORsomGALB2AqQGY3UVqd7ElB7D593CbFRz34DKCglcoBUHpCEpKUEqCMiMoi%2BqAKxe66h5XLo%2BDaQ%2BnvVENTdbdowcm6wpNQO1gLz0lz0zM8%2F7%2FzU1siZMaZY0ooWHb5yxitMMXeNAQC5HfEDRqxJ0ATlaQ7gKo87Ajx%2BTFThvpJNEPC8T0CE4dgcmnQfPLoOWwFfqgm8Oo7WNH389ERl09yTW4qZBml5Bte3vqlDx%2FluDS%2By9AsGMyLTBbIbUVPpA%2FEHTV3eG6Kcn%2BuikdebiaZrInd%2Bgk3VsZzYT3xdtiuzSWL91wg%2FtvsAkwGR%2FcFi5bpppL3XXky%2BuSc2EXjWWCfLfkNkS8lrvN67nVebq89ubiUi%2B1wjlp9AhUjskTL6%2BAyTF56vJHZy%2F3yqPfIe0INq%2FQy2dcpTkCS3fh0tnNGQKrZnuceijzamjDeHZUkkCJ2U7jCk4cX%2Fvz3b8%2BeenbdcTi%2BNHf59ieu4uu9UCzO9C9CoWtUKgKVA3g8ovDLLXH135pnBVi5Q1jZb39WFn12bm5Tp7URDPxE%2BGHIk46cdKiPu8kUSemnUC04iYNkLmx0L8e%2FAsAAP%2F%2FAQAA%2F%2F%2F%2FPwtrkQQAAA%3D%3D
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectforklacy.com
FingerprintEC:85:C1:DF:A4:84:6D:18:50:A5:AE:F6:0A:77:C6:D4:F8:27:67:1F
ValidityTue, 28 Nov 2023 10:42:01 GMT - Mon, 26 Feb 2024 10:42:00 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRuu3t3v8yCIihfF1Tl4WMFMunt6MjPuYXHdjQRjErMr8VpdVT0pU1PVVPXPJIgEF2WP481j55lkw%2BoiricvsjLxIgHBUZAIBu9eBGHPMsnA4Hvo9%2Bfpw%2FNTn%2B7lpyRATk%2FW3jE7Uik636z7tSsbUnNTutrK7Vrg1%2F2rtQ2pF6Krtf7kY4vXA79Z91%2BtvSXYlpkP%2FcD3Az%2BoLUorEtOfP0Mh0wedoN7x61FYD5oR%2Bva%2Fu8s9OOqBF6fkWUg%2B%2Ft%2Fmjw8h2Qi69%2FUN4bYyk752s5crmhmLgh%2B%2Bp7e0KTV6szGxHhJ9OP0bxo0J%2BfwCjD6cKoAp9icKEMsx8X4LEOvDKU3ExcE501hBaMT8SZTFCEKNIOkIzNyB5D8TgHGsrEL37q0YW9Ltc5RO0DG59PgfyHJMLv3xHHTvq%2BtK9mu3jMozabRDP6kg%2ByPI7ghpfoRsx4Msj8CyjyH5T2T%2B8TJ0b3%2FVKQPJT14Jm61W1KbhXMhbwVwUtOI5GoV8rkXFAm03WRCy5plFUo4gkxGUGIC6i8idh1x6yBMPeeqhx09qtNlJfL%2BVxEmj0Y4YY40GY832Am%2FyRtROfORsomGALB2AqQGY3UVqd7ElB7D593CbFRz34DKCglcoBUHpCEpKUEqCMiMoi%2BqAKxe66h5XLo%2BDaQ%2BnvVENTdbdowcm6wpNQO1gLz0lz0zM8%2F7%2FzU1siZMaZY0ooWHb5yxitMMXeNAQC5HfEDRqxJ0ATlaQ7gKo87Ajx%2BTFThvpJNEPC8T0CE4dgcmnQfPLoOWwFfqgm8Oo7WNH389ERl09yTW4qZBml5Bte3vqlDx%2FluDS%2By9AsGMyLTBbIbUVPpA%2FEHTV3eG6Kcn%2BuikdebiaZrInd%2Bgk3VsZzYT3xdtiuzSWL91wg%2FtvsAkwGR%2FcFi5bpppL3XXky%2BuSc2EXjWWCfLfkNkS8lrvN67nVebq89ubiUi%2B1wjlp9AhUjskTL6%2BAyTF56vJHZy%2F3yqPfIe0INq%2FQy2dcpTkCS3fh0tnNGQKrZnuceijzamjDeHZUkkCJ2U7jCk4cX%2Fvz3b8%2BeenbdcTi%2BNHf59ieu4uu9UCzO9C9CoWtUKgKVA3g8ovDLLXH135pnBVi5Q1jZb39WFn12bm5Tp7URDPxE%2BGHIk46cdKiPu8kUSemnUC04iYNkLmx0L8e%2FAsAAP%2F%2FAQAA%2F%2F%2F%2FPwtrkQQAAA%3D%3D HTTP/1.1
Host: forklacy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Cookie: u_pl=17216069; uid_id2=257748a2-2d71-417b-a42d-7ae6a85c12c5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 07:43:33 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9d2cde6071149a9093b15e51bc88baee
Strict-Transport-Security: max-age=0; includeSubdomains
incurableyankmarshal.com/pixel/purst?dl=0&th=0&sc=0&rs=1930&rd=1930&fd=546&bv=23.12.v.2&tmpl=136
200 OK 0 B URL GET HTTP/1.1 incurableyankmarshal.com/pixel/purst?dl=0&th=0&sc=0&rs=1930&rd=1930&fd=546&bv=23.12.v.2&tmpl=136
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectincurableyankmarshal.com
Fingerprint27:8D:20:90:2C:CE:6C:5B:CA:85:05:4D:BF:55:1E:B2:FB:AF:60:B3
ValidityTue, 17 Oct 2023 12:46:41 GMT - Mon, 15 Jan 2024 12:46:40 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1930&rd=1930&fd=546&bv=23.12.v.2&tmpl=136 HTTP/1.1
Host: incurableyankmarshal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 07:43:33 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.cloudimagesb.com/si/00/f9/72/00f9726f6a0161ef602f28c9b95d44b4/1701699543.png
200 OK 72 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/00/f9/72/00f9726f6a0161ef602f28c9b95d44b4/1701699543.png
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash cc0b8f448e52478367983e7abd9d779c
a176f0e62046363620eeb2697377549b836627d0
f5e95baa4df0d9ebca12e0e660306ac50d257b980dff5f18df8058900a51a063
GET /si/00/f9/72/00f9726f6a0161ef602f28c9b95d44b4/1701699543.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:43:33 GMT
content-type: image/png
content-length: 71644
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 14:19:11 GMT
etag: "656ddfdf-117dc"
expires: Thu, 07 Dec 2023 07:43:33 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://afreckledgirl.site
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:52:12 GMT
expires: Thu, 28 Nov 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 467481
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://afreckledgirl.site
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:43:03 GMT
expires: Tue, 03 Dec 2024 23:43:03 GMT
cache-control: public, max-age=31536000
age: 28830
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
forklacy.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRuu3t3v8yCIihfF1Tl4WMFM%2Bm8yM%2B5hcd2NBGMSsyvxWl1VPSlTU9VUdU9PgkhwUfY43jx2nkk2rC7ievIiKxMvEhAcBYlg8O5FEPYskwwMvod%2Bf54%2BPD%2F16V5xSgIU9GTtHbMjlaLzjbpfu7IhNTelq63crgV%2B3b9a25B6Ib5a608%2Btvd64Dfq%2Fqu1twTbMvOhH%2Fh%2B4Ae1RWlFavrzZyhk9qAd1Nt%2BPQ7rQSNG3%2F53d4UHRz3w3il5FpKP%2F7f540NINoLufn1DuK3cZK%2Fd7BaK5saixw%2Ff01valBrd2ZhaD6k%2BnP4N48aEfH4BRh9OFcD09icKkMgx8X4LkOjDKU0kvYNzpomC0Ej4kyh7Iwg1gqQjMHMHkv9MAMaxsgrdvbdibEm3z1E6Qcfk0uN%2FIMsxufTHc9Ddr64r2a%2FdMqrIpdEO%2FbSC7I8gOyNkxRHyHQ%2ByPALLP4bkP5H5x8vQ3f1VpwwkP3klbDSbcYuGcyFvBnNx0EzmaBzyuSYVC7TVYEHIGmcWSTmCTEdQYgDqLqJwHgrpoUg9FJmHLj%2Bp0UY79f1mmqRR1IoZY1HEWKO1wBs8ilupj4JNNAyQZwMwNQCzu8jsLrbkALb4Hm6zguMeXE7Q4xVKQVA6gpISlJKgzAnKXnXAlQtddY8rVyTBtIfTHlVDk3f26IHJO0ITUDvYy07JMxPzvP9%2FcxNb4qRGWRSnNGz5nMWMtvkCDyKxEPuRoHGUtAM4WUG6C6DOw44ckxfbLWSTRD%2FsIaFHcOoITD4NWlwGLYfN0AfdHMYtHzv6fi5y6uppocFNhSy%2FhHzb21On5PmzBJfefwGCHZNpgdkKma3wgfyBoKPuDtdNSfbXTenIw9Usl125Qyfp3sppLrwv3hbbpbF86YYb3H%2BDTYDJ%2BOC2cPky1VzqjiNfXpecC7toLBPkuyW3IZK1wm1eL6wusuW1NxeXupkVzkmjR6ByTJ54eQVMjslTlz86e7lXHv0OaUewRYVuMeMqzRFYtguXzW7OEFg125PMQ1lUQxsms6OSBErMdppUcOL42p%2Fv%2FvXJS9%2BuIxHHj%2F4%2Bx%2FbcXXSsB5rfge5W6NkKPVWBqgFccXGYZ%2Fb42i%2FRWSFR3jBR1ttPlFWfnZvr5EmtEcSilbSajPNEMB40w6gV%2BX7Iedxsi6CN3I2F%2FvXgXwAAAP%2F%2FAQAA%2F%2F%2FrN4WNkQQAAA%3D%3D
200 OK 7 B URL GET HTTP/1.1 forklacy.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRuu3t3v8yCIihfF1Tl4WMFM%2Bm8yM%2B5hcd2NBGMSsyvxWl1VPSlTU9VUdU9PgkhwUfY43jx2nkk2rC7ievIiKxMvEhAcBYlg8O5FEPYskwwMvod%2Bf54%2BPD%2F16V5xSgIU9GTtHbMjlaLzjbpfu7IhNTelq63crgV%2B3b9a25B6Ib5a608%2Btvd64Dfq%2Fqu1twTbMvOhH%2Fh%2B4Ae1RWlFavrzZyhk9qAd1Nt%2BPQ7rQSNG3%2F53d4UHRz3w3il5FpKP%2F7f540NINoLufn1DuK3cZK%2Fd7BaK5saixw%2Ff01valBrd2ZhaD6k%2BnP4N48aEfH4BRh9OFcD09icKkMgx8X4LkOjDKU0kvYNzpomC0Ej4kyh7Iwg1gqQjMHMHkv9MAMaxsgrdvbdibEm3z1E6Qcfk0uN%2FIMsxufTHc9Ddr64r2a%2FdMqrIpdEO%2FbSC7I8gOyNkxRHyHQ%2ByPALLP4bkP5H5x8vQ3f1VpwwkP3klbDSbcYuGcyFvBnNx0EzmaBzyuSYVC7TVYEHIGmcWSTmCTEdQYgDqLqJwHgrpoUg9FJmHLj%2Bp0UY79f1mmqRR1IoZY1HEWKO1wBs8ilupj4JNNAyQZwMwNQCzu8jsLrbkALb4Hm6zguMeXE7Q4xVKQVA6gpISlJKgzAnKXnXAlQtddY8rVyTBtIfTHlVDk3f26IHJO0ITUDvYy07JMxPzvP9%2FcxNb4qRGWRSnNGz5nMWMtvkCDyKxEPuRoHGUtAM4WUG6C6DOw44ckxfbLWSTRD%2FsIaFHcOoITD4NWlwGLYfN0AfdHMYtHzv6fi5y6uppocFNhSy%2FhHzb21On5PmzBJfefwGCHZNpgdkKma3wgfyBoKPuDtdNSfbXTenIw9Usl125Qyfp3sppLrwv3hbbpbF86YYb3H%2BDTYDJ%2BOC2cPky1VzqjiNfXpecC7toLBPkuyW3IZK1wm1eL6wusuW1NxeXupkVzkmjR6ByTJ54eQVMjslTlz86e7lXHv0OaUewRYVuMeMqzRFYtguXzW7OEFg125PMQ1lUQxsms6OSBErMdppUcOL42p%2Fv%2FvXJS9%2BuIxHHj%2F4%2Bx%2FbcXXSsB5rfge5W6NkKPVWBqgFccXGYZ%2Fb42i%2FRWSFR3jBR1ttPlFWfnZvr5EmtEcSilbSajPNEMB40w6gV%2BX7Iedxsi6CN3I2F%2FvXgXwAAAP%2F%2FAQAA%2F%2F%2FrN4WNkQQAAA%3D%3D
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectforklacy.com
FingerprintEC:85:C1:DF:A4:84:6D:18:50:A5:AE:F6:0A:77:C6:D4:F8:27:67:1F
ValidityTue, 28 Nov 2023 10:42:01 GMT - Mon, 26 Feb 2024 10:42:00 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRuu3t3v8yCIihfF1Tl4WMFM%2Bm8yM%2B5hcd2NBGMSsyvxWl1VPSlTU9VUdU9PgkhwUfY43jx2nkk2rC7ievIiKxMvEhAcBYlg8O5FEPYskwwMvod%2Bf54%2BPD%2F16V5xSgIU9GTtHbMjlaLzjbpfu7IhNTelq63crgV%2B3b9a25B6Ib5a608%2Btvd64Dfq%2Fqu1twTbMvOhH%2Fh%2B4Ae1RWlFavrzZyhk9qAd1Nt%2BPQ7rQSNG3%2F53d4UHRz3w3il5FpKP%2F7f540NINoLufn1DuK3cZK%2Fd7BaK5saixw%2Ff01valBrd2ZhaD6k%2BnP4N48aEfH4BRh9OFcD09icKkMgx8X4LkOjDKU0kvYNzpomC0Ej4kyh7Iwg1gqQjMHMHkv9MAMaxsgrdvbdibEm3z1E6Qcfk0uN%2FIMsxufTHc9Ddr64r2a%2FdMqrIpdEO%2FbSC7I8gOyNkxRHyHQ%2ByPALLP4bkP5H5x8vQ3f1VpwwkP3klbDSbcYuGcyFvBnNx0EzmaBzyuSYVC7TVYEHIGmcWSTmCTEdQYgDqLqJwHgrpoUg9FJmHLj%2Bp0UY79f1mmqRR1IoZY1HEWKO1wBs8ilupj4JNNAyQZwMwNQCzu8jsLrbkALb4Hm6zguMeXE7Q4xVKQVA6gpISlJKgzAnKXnXAlQtddY8rVyTBtIfTHlVDk3f26IHJO0ITUDvYy07JMxPzvP9%2FcxNb4qRGWRSnNGz5nMWMtvkCDyKxEPuRoHGUtAM4WUG6C6DOw44ckxfbLWSTRD%2FsIaFHcOoITD4NWlwGLYfN0AfdHMYtHzv6fi5y6uppocFNhSy%2FhHzb21On5PmzBJfefwGCHZNpgdkKma3wgfyBoKPuDtdNSfbXTenIw9Usl125Qyfp3sppLrwv3hbbpbF86YYb3H%2BDTYDJ%2BOC2cPky1VzqjiNfXpecC7toLBPkuyW3IZK1wm1eL6wusuW1NxeXupkVzkmjR6ByTJ54eQVMjslTlz86e7lXHv0OaUewRYVuMeMqzRFYtguXzW7OEFg125PMQ1lUQxsms6OSBErMdppUcOL42p%2Fv%2FvXJS9%2BuIxHHj%2F4%2Bx%2FbcXXSsB5rfge5W6NkKPVWBqgFccXGYZ%2Fb42i%2FRWSFR3jBR1ttPlFWfnZvr5EmtEcSilbSajPNEMB40w6gV%2BX7Iedxsi6CN3I2F%2FvXgXwAAAP%2F%2FAQAA%2F%2F%2FrN4WNkQQAAA%3D%3D HTTP/1.1
Host: forklacy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Cookie: u_pl=17216069; uid_id2=257748a2-2d71-417b-a42d-7ae6a85c12c5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 07:43:33 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5c0b3b0f6a8ce8e4875f9349c03ca1f4
Strict-Transport-Security: max-age=0; includeSubdomains
forklacy.com/pixel/sbs?c=1
200 OK 0 B URL GET HTTP/1.1 forklacy.com/pixel/sbs?c=1
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectforklacy.com
FingerprintEC:85:C1:DF:A4:84:6D:18:50:A5:AE:F6:0A:77:C6:D4:F8:27:67:1F
ValidityTue, 28 Nov 2023 10:42:01 GMT - Mon, 26 Feb 2024 10:42:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: forklacy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Cookie: u_pl=17216069; uid_id2=257748a2-2d71-417b-a42d-7ae6a85c12c5:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 07:43:33 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
unseenreport.com/pxf.gif?uuid=257748a2-2d71-417b-a42d-7ae6a85c12c5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=ac34fa280dc4ca9d6d13e6403ea43b91&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=257748a2-2d71-417b-a42d-7ae6a85c12c5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=ac34fa280dc4ca9d6d13e6403ea43b91&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=257748a2-2d71-417b-a42d-7ae6a85c12c5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=ac34fa280dc4ca9d6d13e6403ea43b91&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 07:43:34 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 287d2ccd4236eff36e408f8ea2138f3a
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=257748a2-2d71-417b-a42d-7ae6a85c12c5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=98ec3a723d1e7ac65e08114e77dd03bd&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=257748a2-2d71-417b-a42d-7ae6a85c12c5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=98ec3a723d1e7ac65e08114e77dd03bd&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=257748a2-2d71-417b-a42d-7ae6a85c12c5&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=98ec3a723d1e7ac65e08114e77dd03bd&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=7 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 07:43:34 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0c54a2c9c511b1aa744585b7b8154d55
Strict-Transport-Security: max-age=0; includeSubdomains
afreckledgirl.site/blog/1645227/Afreckledgirl
200 OK 16 kB URL User Request GET HTTP/2 afreckledgirl.site/blog/1645227/Afreckledgirl
IP
Certificate IssuerLet's Encrypt
Subjectafreckledgirl.site
FingerprintC7:5F:F3:06:61:D7:A2:0F:F9:14:2B:88:48:B1:08:CF:D4:E9:AD:E0
ValiditySun, 29 Oct 2023 05:35:40 GMT - Sat, 27 Jan 2024 05:35:39 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /blog/1645227/Afreckledgirl HTTP/1.1
Host: afreckledgirl.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:43:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 07:43:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0%2FImXlE1gNfW1ggSOpVbsNnTLm6xbSesU1%2B2rbRF8YlaZ%2BIS01p4LF3t%2BMlrYbBNs5cFF1tEI%2FkoU%2Bq5KJ2J7wGI%2Bv9Xa8A0iSt0DOj9p575krtpHB%2F2ON4%2FbcdrkkK178CUYMY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830aa89b7db75690-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/animate.css
200 OK 79 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/animate.css
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash 80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429
GET /sb/ssp/utility/social-media/instagram/new/4/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://afreckledgirl.site
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:43:33 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 10:05:22 GMT
etag: W/"63317962-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HuBEjeJlzE9L9TV6KhcyHgPlgNOY%2FXCJqyBo9knVBLH9MKPlQhReoQVAbEmbPwutTl%2F3rZPWo%2BlR9mDmvd2ygDEKupR6XnNtO9Py7pK8qcv9%2BM1TbUJgPg9C5jQZ9AqRox29RPXwG19e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830aa8aa3af25312-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
afreckledgirl.site/embed/1645227
200 OK 6.9 kB URL GET HTTP/3 afreckledgirl.site/embed/1645227
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectafreckledgirl.site
FingerprintC7:5F:F3:06:61:D7:A2:0F:F9:14:2B:88:48:B1:08:CF:D4:E9:AD:E0
ValiditySun, 29 Oct 2023 05:35:40 GMT - Sat, 27 Jan 2024 05:35:39 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (6977), with no line terminators
Hash 7e89f87e388ecea52a88a9bb00aaedf5
f03023cc44bfc0d47385ff9dedfa53a7115c6b36
7b5577b160e10305237031d3c663ceafc4132eb1a478d276fcb3d08a7c879b53
GET /embed/1645227 HTTP/1.1
Host: afreckledgirl.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/blog/1645227/Afreckledgirl
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:43:31 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 07:43:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LkzR0HpZ2ZhfTK2uhGpMsejPdf4nC5Ex%2Bj7PG5QHTltjXFiTaCpl2P4cmGaoQegtOsedsuoLba5zH%2Bp2cZlyMeQSVcflTdhMsI33kSw%2FB7cY5TAsf%2FZoBiPkIQ%2BLzXUNc0dcvS8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830aa89e5c61568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
friendshipmale.com/sfp.js
200 OK 86 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:43:33 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: c2045c87de3dfcfa5203485998bcdc88
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 05 Dec 2023 07:43:32 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r%2B1oInHHjBF31PNqguwVojj4ldZLRFqesmP%2B2y8od18N3bs05t5vvoL9KEJ1toDrXp9jfwzsb562Yar4fl2IovYfQY0Xz2tp5Mdm2TQ9UtuSo0Jdc6SCNFNs6IEtydwNNb3BCk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830aa8a77b895684-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
200 OK 6.8 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (7013), with no line terminators
Hash 49475c425d6c00477bb339179326c49b
bd97deeb753f44f43a21feafa92d98239fa511bd
598841a98ad357d2896d2f093ea3e4e1d44e24b3351268ffd45e61ff8c1d0e09
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 07:43:33 GMT
date: Tue, 05 Dec 2023 07:43:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/style.css
200 OK 7.6 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/style.css
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type ASCII text, with very long lines (8106), with no line terminators
Hash 83de8b4bf040e193fcc2cae881ad9bfa
6da4ac90cb0059a2dd698ad9ecb294f3dae99a4a
88e65386dff64696b61a8f5a62281b94e1b27c79458177f2f375190a7b78e460
GET /sb/ssp/utility/social-media/instagram/new/4/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://afreckledgirl.site
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:43:33 GMT
content-type: text/css
last-modified: Fri, 30 Sep 2022 09:41:34 GMT
etag: W/"6336b9ce-1dda"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MpRcMM2w%2BiUnBNiPelg1hVbfWe%2FS6QhMdBOqVeEaJ3y5lV6Q5fnMnTOVr5iT5yfL4WOACynppQDkoqoWjId1QiclKVFIV6MjOp0pTW6685C2hGY1P2NheJa96Ajg58urVXzfWd%2B9M4Iv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830aa8aa3af95312-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 86 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:43:32 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: d622c485a13802fbdb1087d64c86816a
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 05 Dec 2023 07:43:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BxTb%2BxT8IKhX5MdhjA12kPXHYAnY%2FKJORkaZXH91hZMdMAnBo7LPZC53l%2BLd%2BNANCYRjvrDJ6fN%2Fup3JpkvDa5iFi8W8hlWHstZPVyveDlIH%2BHHXKTngAdrIIWIY87B4Tbsh2W8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830aa8a45fed067b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/js/script.js
200 OK 444 B URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/js/script.js
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type ASCII text, with very long lines (458), with no line terminators
Hash 982ab6e275f01f07609f7a83b9ded288
00cae17857fd26867610c5287a75c107ab8a150f
2f60a6c44dff7939447126884982a613420b55459abf4ddc27144c2d09fe992c
GET /sb/ssp/utility/social-media/instagram/new/4/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://afreckledgirl.site
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:43:33 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 10:05:24 GMT
etag: W/"63317964-1bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gzRlc39Hb5jDmVrgFXn%2FnZWByu3GOmYHjW7J2XnPKA5xRJte3hUfXF1PWUbFSiJ403coc0%2BOd7YSoL8Z7gFW6MeJk%2BcRJ2XQbMzozzra%2BluDRFc75AGdmnjvjZVYFvWho5zIIe9oc712"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830aa8aa3af35312-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html
200 OK 1.2 kB URL GET HTTP/2 cdn.barscreative1.com/sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint55:06:B7:F1:EF:E9:55:FB:7C:8C:4F:5D:DB:05:C9:15:19:90:9B:2F
ValiditySat, 11 Nov 2023 03:00:51 GMT - Fri, 09 Feb 2024 03:00:50 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (1251), with no line terminators
Hash 0c7ef29f3f978be103c93eae3c8d9df2
e334dfc2fed21f89dd67aa40505bbcbec1d047ec
9bd5468d6381f08d4dccf53f3888c98026498fe5addc46c9f57f930e6dc210aa
GET /sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://afreckledgirl.site
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:43:33 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Fri, 30 Sep 2022 09:26:48 GMT
etag: W/"6336b658-497"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 05 Dec 2023 08:43:33 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/img/close.svg
200 OK 1.3 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/img/close.svg
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type SVG Scalable Vector Graphics image\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1463), with no line terminators
Hash 42e5fd211191543ecb89479c9a133cda
47fcfccfd279d5547da59a7683a8924c99e81b5c
21553825d8d8eb94976b5f7afa323070d89cc30c3f8defb71e896736b2b08aa6
GET /sb/ssp/utility/social-media/instagram/new/4/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:43:33 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Sep 2022 21:49:43 GMT
etag: W/"6334c177-52a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 614883
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=skEw3GWoC0YO7VRrLiYNav1gcbm8X8FAZWuQjaWsWvsf7Og0agreECU1fvkhJCwvOUIRFwVm%2F5uHzC8g2BlvJiYm3iAcVhULVHIHXrn1Hpz6NWbY8vEfLmKrTKrQWfjxy34IUh%2FN9DOJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830aa8aa4afd5312-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
afreckledgirl.site/style.css
200 OK 16 kB URL GET HTTP/3 afreckledgirl.site/style.css
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerLet's Encrypt
Subjectafreckledgirl.site
FingerprintC7:5F:F3:06:61:D7:A2:0F:F9:14:2B:88:48:B1:08:CF:D4:E9:AD:E0
ValiditySun, 29 Oct 2023 05:35:40 GMT - Sat, 27 Jan 2024 05:35:39 GMT
File type ASCII text, with very long lines (16371), with no line terminators
Hash 317e2b2f7f669dde060050522e4270f0
3d4281c39f8e3a486a0a0cd5bb2b5c16ba315709
f91a33bdfcb8593fdc0f859fa9797ff48c0ab56463a52a98bb3a65071b5625d8
GET /style.css HTTP/1.1
Host: afreckledgirl.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/blog/1645227/Afreckledgirl
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:43:31 GMT
content-type: text/css
last-modified: Wed, 04 Jan 2023 03:58:06 GMT
vary: Accept-Encoding
etag: W/"63b4f94e-3ff3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h1cDIvvycZCPKGXgFKGF0EqDJ%2Bh9iCGsVQLomTE6PvWctADK%2Byf4JfaXCkGHCdk3GS2NvPJOh6kfnmd0DCE3xuyqELINCsvd8M%2F9Xm2%2FRambUxgIFNx%2FDOQr9A%2BteYz%2F%2FgWbhD8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830aa89e6c63568a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css
200 OK 51 kB URL GET HTTP/2 code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerCloudflare, Inc.
Subjectionicframework.com
FingerprintF0:95:87:C3:E4:A0:31:2D:83:93:BF:FD:9F:E3:6A:84:64:FB:AC:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ionicons/2.0.1/css/ionicons.min.css HTTP/1.1
Host: code.ionicframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://afreckledgirl.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 07:43:31 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Thu, 13 Apr 2023 16:20:19 GMT
access-control-allow-origin: *
etag: W/"64382bc3-c854"
expires: Tue, 14 Nov 2023 02:21:50 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 9540:058D:10ECD14:112CF71:6552D766
via: 1.1 varnish
age: 23009
x-served-by: cache-bma1674-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1701739202.492195,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: ebd49dbbb724e71da97a2c3fa94787004d05de2a
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lo7xbLkgOrpWS%2FXG7IKufsQVqIdyYNcdVVIrPZc0ViQQaEnr%2BmQ%2BAYizHBjxevWkdBHcWRtrn1P5UxfsnTL5KG8QCuMJlx41bF9jiDvtvIQ7RpAspCPFkdHvcntgFSqK9C9kvhDtheiQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830aa89ed91cb4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.ionicframework.com/ionicons/2.0.1/fonts/ionicons.ttf?v=2.0.1
200 OK 188 kB URL GET HTTP/3 code.ionicframework.com/ionicons/2.0.1/fonts/ionicons.ttf?v=2.0.1
IP
Requested by https://afreckledgirl.site/blog/1645227/Afreckledgirl
Certificate IssuerCloudflare, Inc.
Subjectionicframework.com
FingerprintF0:95:87:C3:E4:A0:31:2D:83:93:BF:FD:9F:E3:6A:84:64:FB:AC:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type TrueType Font data, 15 tables, 1st "FFTM", 14 names, Macintosh\012- data
Size 188 kB (188508 bytes)
Hash dd4781d1acc57ba4c4808d1b44301201
956116ebe4b3a315b1a43009567e6f8ad0a9a720
5e700835ec05293a3d0f9e354e7d038319d34521cd279e782198dff6d1dd58f2
GET /ionicons/2.0.1/fonts/ionicons.ttf?v=2.0.1 HTTP/1.1
Host: code.ionicframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://afreckledgirl.site
DNT: 1
Connection: keep-alive
Referer: https://code.ionicframework.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 05 Dec 2023 07:43:31 GMT
content-type: font/ttf
last-modified: Thu, 13 Apr 2023 16:20:19 GMT
access-control-allow-origin: *
etag: W/"64382bc3-2e05c"
expires: Tue, 14 Nov 2023 02:18:08 GMT
cache-control: max-age=31536000
x-proxy-cache: HIT
x-github-request-id: 60DC:8389:10E8A74:1128DA4:6552D73E
via: 1.1 varnish
x-served-by: cache-bma1641-BMA
x-cache: HIT
x-cache-hits: 3
x-timer: S1701762212.863292,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: f9247a885afd4901648cd325945affd2edeab828
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JVvsNEnwjoiClIYiDjeTToi9W2%2FPtIDHZWR5StQN8UbYLJTlzpV7J9b7aAF7ViG8rwk48HST3OXLvvijs%2B%2B9CZJNRTf%2FzCbMEFLVCmEaIXLd%2F7kBMBVs1EQ2PY%2BNUnzPxSy8sYL%2FCg51"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830aa8a01951b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
188.114.97.1
192.243.59.12
104.21.234.33
18.184.210.76