entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
104.18.27.216301 Moved Permanently 0 B URL HTTP/1.1 entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
IP 104.18.27.216:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67 HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Dec 2022 00:02:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 01 Dec 2022 01:02:04 GMT
Location: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77278d4a6b37b4f1-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6599
Expires: Thu, 01 Dec 2022 01:52:03 GMT
Date: Thu, 01 Dec 2022 00:02:04 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4821
Cache-Control: max-age=128976
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:04 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:51:40 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7262
Expires: Thu, 01 Dec 2022 02:03:06 GMT
Date: Thu, 01 Dec 2022 00:02:04 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Imlohd5seimiN9nG29+i323zl7/cEUJu7pTOmNJNfXw47pKfHhUjMFotKw/ua9pFEuQFYCAm+9o=
x-amz-request-id: G6KN6WCT7ANZC9KY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 23:46:03 GMT
age: 961
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 23:18:04 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2640
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/XimaNwmbTE0
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/XimaNwmbTE0
IP 142.250.74.131:0
Hash 4bae4ad5a63d0b95d18f74c600b3c4c0
6950f5d95a3cdcc5af2d096527f51a70cb33c1dc
0a119c230e8becfbd2fbb8241df2c5795de219bd85dda1a12901f023cbe7d9dc
POST /s/gts1p5/XimaNwmbTE0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
entertainzer.com/img/logos/entertainment/min/entertainzer.png
104.18.26.216200 OK 1.3 kB URL HTTP/2 entertainzer.com/img/logos/entertainment/min/entertainzer.png
IP 104.18.26.216:0
File type PNG image data, 250 x 60, 8-bit colormap, non-interlaced\012- data
Hash e6219598a2c2991debd2027b3ce0230a
cdc8fcf27a700b79af816e783f4a1fddc40d9b91
937cb83e99191feb41e67d7273db2f3a406f249e2b23509978a3969afc7d3f93
GET /img/logos/entertainment/min/entertainzer.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 1333
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-535"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5813
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4cbd49b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/en.png
104.18.26.216200 OK 481 B URL HTTP/2 entertainzer.com/img/flags/min/en.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 2b936acc8c146a32951e38be063165d3
c379684310743ece93501b7fcdf396359f577cdb
1b959a0f3a63cc646af532327035df4c4ebc6b91ac86fc5384fe60283e26132a
GET /img/flags/min/en.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 481
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-1e1"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 6722
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4cbd4ab4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/ar.png
104.18.26.216200 OK 318 B URL HTTP/2 entertainzer.com/img/flags/min/ar.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash b11bcada2c51b6e5e299245db87bec18
56dc40f41854e76cbdf12683721763b674fbef14
59fae4a2c45ab3f79b6e012c3bc435bad3d83de43cd8b5cb9ec792bbdc71e034
GET /img/flags/min/ar.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 318
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-13e"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 6723
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4cbd4bb4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/da.png
104.18.26.216200 OK 298 B URL HTTP/2 entertainzer.com/img/flags/min/da.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash c34a7583b5e01b331ee79386d8cebf95
fd0d1f826a6619d278fe962292b63ae91bf61170
5c80542e1988370b38fae869c8adc6edbb449b91e87d0544b4c5074e191d6916
GET /img/flags/min/da.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 298
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-12a"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 6723
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4cbd4db4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/cs.png
104.18.26.216200 OK 355 B URL HTTP/2 entertainzer.com/img/flags/min/cs.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 1dce874aa08b4056fcbea8bed2bc0a5f
71d96821168f0f67bfe9ca168db09373d99e57bc
4df39f91b4133cc13f1248a5583917f8841afa615d9dd605aa3b15ccdff23245
GET /img/flags/min/cs.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 355
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-163"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5813
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4cbd4cb4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/de.png
104.18.26.216200 OK 464 B URL HTTP/2 entertainzer.com/img/flags/min/de.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 3babff7961e39e8cd594b9678f7ce728
ea40638d6af4722c8b0e4314e95d64ae059a3ae0
7319b0ebaea7239bf208e9bbf05c5756659be88767ad0424eca017aacf7940eb
GET /img/flags/min/de.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 464
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-1d0"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5813
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4ccd50b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.95eefa89.css
104.18.26.216200 OK 5.9 kB URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.95eefa89.css
IP 104.18.26.216:0
Hash ba420b47a00610b68e7850f71a9f1c1f
4046c52a87a52bb84af28b963d0f9c16c1a1df55
4ac097e527cb08103777ef4ba14ebd4a5e5e27fceb32c349f60eb49953f7e0c0
GET /theme/Master/SubscriptionPages/css/subscriptions/theme/basic-main.95eefa89.css HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: text/css
last-modified: Wed, 30 Nov 2022 16:23:50 GMT
vary: Accept-Encoding
etag: W/"63878396-5d15"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: HIT
age: 6723
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4c9d2ab4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/es.png
104.18.26.216200 OK 365 B URL HTTP/2 entertainzer.com/img/flags/min/es.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 9790f666586897cf09b4e2ff5e11f674
bbeedd0fd9332b6534a259e71a6b871b7dea16e0
52f9f4b06302262227ccfcbd5bc1f1a8be31b554167a48e8b90bb8b569743bfc
GET /img/flags/min/es.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 365
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-16d"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5812
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4ccd51b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/fr.png
104.18.26.216200 OK 369 B URL HTTP/2 entertainzer.com/img/flags/min/fr.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 83d2595ea3031de73b98f2c57ad88949
32bd0c5b029e8b75bef13eeb532917d9a56f61c9
0ec28fba482645dc252afe2be19282beebab6162300c9291c16a31138694cca0
GET /img/flags/min/fr.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 369
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-171"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 6723
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4ccd52b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/ja.png
104.18.26.216200 OK 266 B URL HTTP/2 entertainzer.com/img/flags/min/ja.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash f8d5d965c5ac8014d2e0293d67f893a4
476ddbaaa32dc435e1c1aa04104c88c9771c5fbe
f8876ab39504d02b6fb905eef77c4ad8d181a563105609bed0b57fc279352ef0
GET /img/flags/min/ja.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 266
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-10a"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5812
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4ccd56b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/nl.png
104.18.26.216200 OK 328 B URL HTTP/2 entertainzer.com/img/flags/min/nl.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash c055c14b8f44b006b32261e71be3324f
34ccf4e9f9d0f18b86fabafe477d5cc76d6ca725
ad2583d30cae6dfdba4e48dedbdb623305fb0e5a310cf84deedb75cb8e7214a2
GET /img/flags/min/nl.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 328
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-148"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5812
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4ccd57b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/hu.png
104.18.26.216200 OK 303 B URL HTTP/2 entertainzer.com/img/flags/min/hu.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 70006a59a0a303c96b772f500a287f70
d7afc45fa97725ebaac57726d5d45f602ac7bfef
940b53ff3a42a200817ce9c4d1c8c4d1563853486b628d199b2d4b1f12fd255f
GET /img/flags/min/hu.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 303
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-12f"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5812
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4ccd53b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/it.png
104.18.26.216200 OK 316 B URL HTTP/2 entertainzer.com/img/flags/min/it.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash acab890d6d5eb20e38f22aba425c3d34
ec0be0f24e663759356e817bd73a7e7569663bb6
f6f0eb8b370c334ab172fa69fb55ec7b72c6bd3d137c0bbd750d0fc788f433b0
GET /img/flags/min/it.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 316
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-13c"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5812
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4ccd55b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/no.png
104.18.26.216200 OK 334 B URL HTTP/2 entertainzer.com/img/flags/min/no.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash c48ab8c65139f9647fee8710c4b3b66c
df412e417270d78833a1efacdc61529abb7ad03c
79ca4cda3faf0379f6fb2df3f82b896393291eede7c9c7e09b5199572de06d5c
GET /img/flags/min/no.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 334
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-14e"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 6723
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4ccd58b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/pl.png
104.18.26.216200 OK 256 B URL HTTP/2 entertainzer.com/img/flags/min/pl.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 0bf391411c6f06bef68cc4c369b9eba0
7773847a6c110241864cdb7760fc80c76011978b
51f29fd11cad81a8cbe246c0ee8d4f97fd8a04859fbf6a4517b7cce931e8ba34
GET /img/flags/min/pl.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 256
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-100"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5812
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4cdd59b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/pt.png
104.18.26.216200 OK 427 B URL HTTP/2 entertainzer.com/img/flags/min/pt.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 86b64a6009b9fda3f62281760c1dd4f0
c536dff21701618654328b21773e69a7508c4c85
28d682eed12d0786c32613e2c4c54c144975c7160f2584380d1839d9dc04f824
GET /img/flags/min/pt.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 427
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-1ab"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 6723
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4ced62b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/sv.png
104.18.26.216200 OK 342 B URL HTTP/2 entertainzer.com/img/flags/min/sv.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 0f13dc11fccbdd9a587353905c836b16
dbf9faf4f7d227c11a5ba77fd3ae09af52763b8c
ebd9138caa9f44e33b54636bdf819ae6ece1f72a1405e58f37724273f187adc4
GET /img/flags/min/sv.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 342
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-156"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5812
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4d0d73b4f3-OSL
X-Firefox-Spdy: h2
entertainzer.com/img/flags/min/zh.png
104.18.26.216200 OK 290 B URL HTTP/2 entertainzer.com/img/flags/min/zh.png
IP 104.18.26.216:0
File type PNG image data, 16 x 11, 8-bit colormap, non-interlaced\012- data
Hash 329cca45f3a4c46ec249638ca4f8d6e0
98b23617ef88d3a4cd632839fe4180b0ee05a697
9c70b1a563b14ee447b6fc9c00532a73a1e09c500660ce8063d6b3fbce48ae47
GET /img/flags/min/zh.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: image/png
content-length: 290
last-modified: Wed, 30 Nov 2022 16:23:51 GMT
etag: "63878397-122"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5812
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4d0d75b4f3-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
104.18.26.216200 OK 7.1 kB URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
IP 104.18.26.216:0
Hash e5de2c68afb7d472a6d3cf05ced019b3
e15d5e61884e25fb446c347df62fe1d8f3c0d5f6
f0c9ce836eb0a84bcd62110ac4a1a8325b195d41d7e536ff57b3fc8e35c5fc85
GET /theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: text/css
last-modified: Wed, 30 Nov 2022 16:23:50 GMT
vary: Accept-Encoding
etag: W/"63878396-9837"
x-frame-options: SAMEORIGIN
content-encoding: gzip
x-fruit: banana
cf-cache-status: HIT
age: 6367
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4cad2db4f3-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7e8cd73c758ca6307b135b3d15ea36e6
41cb1eb686b0415b438c3668decfc314506f62fa
d7a82074159287773979b486cf418424d7c1ed1e55e521d4200cea2a26cebbb5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4832
Cache-Control: max-age=116392
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:05 GMT
Etag: "6386ffc5-117"
Expires: Fri, 02 Dec 2022 08:21:57 GMT
Last-Modified: Wed, 30 Nov 2022 07:01:25 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:05 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 94113
expires: Tue, 21 Nov 2023 00:02:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nBBxh7kYd31UCzE2v2Cs6BrjjdqiNF%2BZ66eUlQmuQsBScy%2BdEB5VuNFDsTkL5MaFb6naWDUelJ8mCqPmWBUU6hxwbCSAexOKi6jp7fVvX5qgpmy6oXFOBmYsZZcNvV8hqXMt49L1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77278d4d9f8f1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 82636550758e8604b4162568f2b413af
82555ec2c38ac3939b5fff3aa242a3d34ea7988b
f53c6bbc1d16c790805894ca6437c2ef11c8990bb95f2be2a6b7a0062cad9376
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4808
Cache-Control: max-age=134698
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:05 GMT
Etag: "6387475f-117"
Expires: Fri, 02 Dec 2022 13:27:03 GMT
Last-Modified: Wed, 30 Nov 2022 12:06:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
104.18.11.207200 OK 22 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP 104.18.11.207:0
File type ASCII text, with very long lines (65325)
Hash 7ca84d695944438276d417d1b318c278
7e4e830a4f2f998c8cffe1359d207c8d0c99b647
bae9e43e48db014a1de1876752e90e1e5d909d21fb15a2526e77b4911c89366e
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:05 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:36:43
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 077760acbd183a927852103cd8828058
cdn-cache: HIT
cf-cache-status: HIT
age: 2970691
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77278d4dba0db509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:200,300,400
142.250.74.106200 OK 856 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:200,300,400
IP 142.250.74.106:0
Hash ab20ca29823b2914e425fcb414be57c4
4e34530cdddcd5ed7d7be36aab67b83762ccf266
7719895e606b2896de95c6acd54992ef67ace6f61d40be902a2ebd8863d2d9e8
GET /css?family=Oswald:200,300,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:02:05 GMT
date: Thu, 01 Dec 2022 00:02:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 82636550758e8604b4162568f2b413af
82555ec2c38ac3939b5fff3aa242a3d34ea7988b
f53c6bbc1d16c790805894ca6437c2ef11c8990bb95f2be2a6b7a0062cad9376
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4808
Cache-Control: max-age=134698
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:05 GMT
Etag: "6387475f-117"
Expires: Fri, 02 Dec 2022 13:27:03 GMT
Last-Modified: Wed, 30 Nov 2022 12:06:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
entertainzer.com/theme/Master/SubscriptionPages/img/sprites/connsmythe-sprites.png
104.18.26.216200 OK 16 kB URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/img/sprites/connsmythe-sprites.png
IP 104.18.26.216:0
File type gzip compressed data, max compression\012- data
Hash 74179a7a98a3d32fdf400ea07c8b66ff
fd243d21f084b1ede2a57f377563e972ce22bf76
83815593009c48729a89473d49b8962983cafc98a0e02cd6d3bd399414fd4d78
GET /theme/Master/SubscriptionPages/img/sprites/connsmythe-sprites.png HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/theme/Master/SubscriptionPages/css/subscriptions/theme/panther-basic.adcbc30f.css
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:05 GMT
content-type: image/png
content-length: 14990
last-modified: Wed, 30 Nov 2022 16:23:50 GMT
etag: "63878396-3a8e"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5298
expires: Thu, 01 Dec 2022 04:02:05 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4e9e53b4f3-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33f732b4dfbd5fb3ed7345eba2896fe6
2652f214cf7127302cc65b1d4e42f48a80907d5d
904ce722469d356f8ec20c14bd51ca3ce459012ea0869f7d14821a963310a494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Noto+Sans
142.250.74.106200 OK 230 kB URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans
IP 142.250.74.106:0
Size 230 kB (229909 bytes)
Hash becc9454825cf90d0a01acf4c8c82476
06125a7dcdadfbcba96dbc6622be3ff0ea47d98a
368c9fb964b1d12fef658a34c81712097bf9a42f47670dba5de7b6baabf85dac
GET /css?family=Noto+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:02:05 GMT
date: Thu, 01 Dec 2022 00:02:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z
172.217.21.168200 OK 57 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MMPL24Z
IP 172.217.21.168:0
File type ASCII text, with very long lines (3788)
Hash 642f1eaf017a797f84e51e19ac967a0c
11dd7d13a5bbeb8861868747c94d93da0aa6129f
08fb8308283c4f037a86b8135bc05ffef6afded5c2127ba3a55d34f7f3354433
GET /gtm.js?id=GTM-MMPL24Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 00:02:05 GMT
expires: Thu, 01 Dec 2022 00:02:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 56581
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway:400,400i&display=swap
142.250.74.106200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Raleway:400,400i&display=swap
IP 142.250.74.106:0
Hash fb2da8d9b8c21ab925b86af01bc96cd4
437127dec3b318ed52311b059661647f9a037e16
f9d3b7f6ca50360ed56d503469c0869a21df7355090012487dd238742532b677
GET /css?family=Raleway:400,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:02:05 GMT
date: Thu, 01 Dec 2022 00:02:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:55 GMT
expires: Tue, 28 Nov 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 191350
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.amplitude.com/libs/amplitude-5.8.0-min.gz.js
54.230.245.107200 OK 19 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-5.8.0-min.gz.js
IP 54.230.245.107:0
File type ASCII text, with very long lines (53439)
Hash b87fdec11e473f899f5f2abae14bdfab
bb0f32ee45eb22a38523fd1879367e8702b1f0db
b7ab3cb70d772c422b73aff4c8b2b7bd774f15be9e9280ab0c56bb96cf9303a8
GET /libs/amplitude-5.8.0-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 18497
date: Thu, 27 Oct 2022 14:50:21 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Fri, 06 Dec 2019 21:57:52 GMT
etag: "208999c2bfaa80353f3f37c256fd3a3d"
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: JayGW0K7hcKEk8hUb5nZ1QRH3tobN7O9
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: nZuqaV7fBFRNrFVQxsTz0utBj9Ql2V2C4vnSlC8YJAGbadLQg8zZnw==
age: 2970705
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.27c23153.js
104.18.26.216200 OK 78 kB URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.27c23153.js
IP 104.18.26.216:0
Hash 1239f9c79f5cdad31b4e78970ffbd89d
c3d227f47ae2d98df88abf163f34e4a897667a61
cb0e5770ce96483e2dc5763a82c01c378a42573683135f8fdf05b59ef58d3ecb
Analyzer Verdict Alert fortinet Phishing
GET /theme/Master/SubscriptionPages/js/subscriptions/validation/min/regValidation.min.27c23153.js HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 30 Nov 2022 16:23:49 GMT
etag: W/"63878395-13fb"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 5813
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4d1d7cb4f3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4802
Cache-Control: max-age=123888
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 00:02:05 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 10:26:53 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
static.hotjar.com/c/hotjar-916387.js?sv=7
54.230.111.39200 OK 72 kB URL HTTP/2 static.hotjar.com/c/hotjar-916387.js?sv=7
IP 54.230.111.39:0
File type ASCII text, with very long lines (5908)
Hash d1704bfc85c27436140ab354e315bfa5
f981a2d494106cf9ca3fe4fda5eb2071b7b955c7
3ee37db186e1feb4aa045953638714f67f4f44525f2a899cfde682c3b5ad9db8
GET /c/hotjar-916387.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Thu, 01 Dec 2022 00:01:27 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: W/bc1cd2c2428fea1f031f0bd267f9319f
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2II7VZ6oaZ1iEuqjQBPG_Opon4gMJ4QxurstlTbmtDZZMHOeZfHFPw==
age: 38
X-Firefox-Spdy: h2
vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
143.204.55.118200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-5e66f98b4ee957db209dc6f63e3d59dd.html
IP 143.204.55.118:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash e0652b84b7b3b650769c759fc520c3f8
0b55d6e28613350c7f41b88f19e726e6751ad03b
94b4c240f83065223dcacdd3f8b69cb229d0616edc3e2041eef3e270d859fc3d
GET /box-5e66f98b4ee957db209dc6f63e3d59dd.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Wed, 23 Nov 2022 13:10:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "e0652b84b7b3b650769c759fc520c3f8"
last-modified: Wed, 23 Nov 2022 13:09:18 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: G7BwdtbUo6WlQf6eXjQgTnjmabsiJR14Z6d7dScyl5J7Mt_tAoKlwg==
age: 643919
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Anton
142.250.74.106200 OK 383 B URL HTTP/2 fonts.googleapis.com/css?family=Anton
IP 142.250.74.106:0
Hash 4d12d61a52b45c76e7292fd647b7d9dd
8e64bcb2369706d30eedbdb933bf35f5f27e4db4
fbebd2d33f84d29ea722bd18309fdbccd4abf851521355bc529d9fff711ab723
GET /css?family=Anton HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:02:05 GMT
date: Thu, 01 Dec 2022 00:02:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X>m=2oebs0&_p=2082198511&cid=2123414184.1669852924&ul=en-us&sr=1280x1024&_s=1&sid=1669852924&sct=1&seg=0&dl=https%3A%2F%2Fentertainzer.com%2Fregistration%3Ftheme%3Dm-2-pantherBKFX%26v_id%3Da9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3%26capo%3DdHVybmh1Yi5uZXQ%3D%26entityId%3D2%26capoUrl%3Dturnhub.net%26page%3Dm-2-pantherBK%26clickid%3D160788622%26pubid%3D15119%26subid2%3D%26subid3%3DLead%26a_aid%3D584ngfiky67&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-MGKXPW4W8X>m=2oebs0&_p=2082198511&cid=2123414184.1669852924&ul=en-us&sr=1280x1024&_s=1&sid=1669852924&sct=1&seg=0&dl=https%3A%2F%2Fentertainzer.com%2Fregistration%3Ftheme%3Dm-2-pantherBKFX%26v_id%3Da9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3%26capo%3DdHVybmh1Yi5uZXQ%3D%26entityId%3D2%26capoUrl%3Dturnhub.net%26page%3Dm-2-pantherBK%26clickid%3D160788622%26pubid%3D15119%26subid2%3D%26subid3%3DLead%26a_aid%3D584ngfiky67&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MGKXPW4W8X>m=2oebs0&_p=2082198511&cid=2123414184.1669852924&ul=en-us&sr=1280x1024&_s=1&sid=1669852924&sct=1&seg=0&dl=https%3A%2F%2Fentertainzer.com%2Fregistration%3Ftheme%3Dm-2-pantherBKFX%26v_id%3Da9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3%26capo%3DdHVybmh1Yi5uZXQ%3D%26entityId%3D2%26capoUrl%3Dturnhub.net%26page%3Dm-2-pantherBK%26clickid%3D160788622%26pubid%3D15119%26subid2%3D%26subid3%3DLead%26a_aid%3D584ngfiky67&dt=Sign%20Up%20Now&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://entertainzer.com
date: Thu, 01 Dec 2022 00:02:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2175
Expires: Thu, 01 Dec 2022 00:38:22 GMT
Date: Thu, 01 Dec 2022 00:02:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2175
Expires: Thu, 01 Dec 2022 00:38:22 GMT
Date: Thu, 01 Dec 2022 00:02:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2175
Expires: Thu, 01 Dec 2022 00:38:22 GMT
Date: Thu, 01 Dec 2022 00:02:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fd5f7a9e04d27654062b3e18b8aecca
07fafbd614cdb49f20bceea29d5e684725d3bdf6
0cb64a9a33f66b92eed5a591b6c368f3d74363941d8876e553a8ea6aaa547590
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F350e8884-8903-4779-8a0c-bb74e9168bfb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4199
x-amzn-requestid: d7983896-c4a5-4133-9b0e-51ac412cf732
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZttXFcZIAMFmJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386f655-139cd6a82eaa934d5d411029;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 06:21:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 91_Pv2sUA4286BEZXTKFctgZOrzWy6VWFDGiUV3_p_QnyckRDFb-lw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:51:29 GMT
age: 7838
etag: "07fafbd614cdb49f20bceea29d5e684725d3bdf6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8802d5080eb35e4052ef31cf7658650
1e78566f2e69268c5f753fb49112ab07aae3eccf
9c96906ee1dea353198c9069fa7e42b100e4fa766e5be8e4d8db036033961086
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4409
x-amzn-requestid: dc9ccdbf-a051-49ce-a535-c100b8ee6f12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz81EHdoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-0b06c368156b828e0c663081;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UsYYNMsulshDYcUC9N2Q3fnxjdZd5ki-0_LlXRchIsNSq0FruNhFqw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:48:09 GMT
age: 8038
etag: "1e78566f2e69268c5f753fb49112ab07aae3eccf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c95c82f-93f9-4783-a6c2-2c737a51d52c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c95c82f-93f9-4783-a6c2-2c737a51d52c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1039182464db1365a476dd88029b97d8
06b395b4fbad5ad9c9fb6a4fb24c1eee607aa8ac
2e081da1464a18d755a841558f63303634a9e22df888c9c43246565abfc3d48d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c95c82f-93f9-4783-a6c2-2c737a51d52c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12655
x-amzn-requestid: beeeccd0-a494-4d0c-91e9-0d1e2ab37b6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YoFmMIAMFT4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-60f5e2286cf3965a42ab31b9;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CiGOvF7Lmz8cICQcjUcE6QGokbAIAd3WClI4PK_aDSxo-yHVcPPA7w==
via: 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:29 GMT
age: 8198
etag: "06b395b4fbad5ad9c9fb6a4fb24c1eee607aa8ac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f924fdd-ce65-4f00-8153-3caef7c54e22.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f924fdd-ce65-4f00-8153-3caef7c54e22.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eb4b8985f697c1ff7753d3961fb4f67d
b412d62d44993500b947a38e8e242d0c6d6b7588
571c1543cd99b08e62438146f383bf48a9172ae377b4c17dbc6c8c58bdbb5803
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f924fdd-ce65-4f00-8153-3caef7c54e22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5295
x-amzn-requestid: e9c096df-2dba-408c-b45a-d114755fa883
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzM0HmuoAMF4Ww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbeb-5808a0756f4180a0613cdbcd;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lUjE1-vViTaS5s23OSlhLlxC597y0etgzMYGUdlqdpHBTK_ww5DEYA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 7967
etag: "b412d62d44993500b947a38e8e242d0c6d6b7588"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b92721cbe24623f1713a5248d6a7c1b2
3628390c62642dcc375b28f58c9b48180c4abd73
37d0451c03bc7cf0253aba6d3204cbf38502692a0fbc751a3ead01b07e9a65d6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9613
x-amzn-requestid: a46cc458-2e28-4ca7-b223-ba66256caef1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTPfmEmKoAMFZvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63845f96-7ecee5764c4a40e50e5b1f98;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 07:13:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6p5kV3OCTlaiLWEa9wyeRJOYoxPNZwLhXGIbEnymaufjKL246zfrhw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 07:44:22 GMT
age: 58665
etag: "3628390c62642dcc375b28f58c9b48180c4abd73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9768b9bd-d7a9-4426-a5b2-ea1a71860733.jpeg
34.120.237.76200 OK 2.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9768b9bd-d7a9-4426-a5b2-ea1a71860733.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 995eb3df7ec5507e3392fdb1ca6395b4
9bc2e9039e9340b83ffcfb90e4e2c631a8723e60
4c86fdcd3b338040ea8130ee6a1ed5c3bd66c4dd59fe461f81e5df88a379ebb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9768b9bd-d7a9-4426-a5b2-ea1a71860733.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2150
x-amzn-requestid: 59ef9edf-d9c1-45d0-b084-adf8e2f0738d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cXQcKGPXoAMFbWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385fab4-693e8d7d5632d48722e31757;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 12:27:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: iO-jUNMNzAM6zHh1oEftgZcW18vxdgaFGpNe4a1WHU97pRMMuHIKaQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 17:51:49 GMT
age: 22218
etag: "9bc2e9039e9340b83ffcfb90e4e2c631a8723e60"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans
IP 142.250.74.106:0
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:02:05 GMT
date: Thu, 01 Dec 2022 00:02:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Candal
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Candal
IP 142.250.74.106:0
Analyzer Verdict Alert fortinet Malware
GET /css?family=Candal HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:02:05 GMT
date: Thu, 01 Dec 2022 00:02:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
104.18.26.216200 OK 0 B URL HTTP/2 entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
IP 104.18.26.216:0
GET /registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67 HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: text/html
cf-ray: 77278d4bcc90b4f3-OSL
age: 199370
cache-control: public, max-age=604800
expires: Thu, 08 Dec 2022 00:02:04 GMT
last-modified: Mon, 28 Nov 2022 16:39:14 GMT
strict-transport-security: max-age=0; includeSubDomains
vary: Accept-Encoding
cf-cache-status: HIT
cache-tag: 1642,entertainzer.com,/registration,NO,m-2-pantherBKFX,eng,,turnhub.net
set-cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[clickid]=MTYwNzg4NjIy; Path=/; Secure; Max-Age=9999999
CakeCookie[entityId]=Mg%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[lang]=eng; Path=/; Secure; Max-Age=9999999
CakeCookie[pubid]=MTUxMTk%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[subid3]=TGVhZA%3D%3D; Path=/; Secure; Max-Age=9999999
CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz; Path=/; Secure; Max-Age=9999999
x-cache-url: https://entertainzer.com/registration?lang=eng&theme=m-2-pantherBKFX&cacheHash=MTY0MixlbnRlcnRhaW56ZXIuY29tLC9yZWdpc3RyYXRpb24sTk8sbS0yLXBhbnRoZXJCS0ZYLGVuZywsdHVybmh1Yi5uZXQ=
x-frame-options: SAMEORIGIN
x-fruit: banana
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.1ca912b8.js
104.18.26.216200 OK 0 B URL HTTP/2 entertainzer.com/theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.1ca912b8.js
IP 104.18.26.216:0
Analyzer Verdict Alert fortinet Phishing
GET /theme/Master/SubscriptionPages/js/subscriptions/min/scripts.min.1ca912b8.js HTTP/1.1
Host: entertainzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/registration?theme=m-2-pantherBKFX&v_id=a9c69028-8eed-9fdb-6f8e-8bc9ec2db3d3&capo=dHVybmh1Yi5uZXQ=&entityId=2&capoUrl=turnhub.net&page=m-2-pantherBK&clickid=160788622&pubid=15119&subid2=&subid3=Lead&a_aid=584ngfiky67
Cookie: CakeCookie[a_aid]=NTg0bmdmaWt5Njc%3D; CakeCookie[capo]=ZEhWeWJtaDFZaTV1WlhRPQ%3D%3D; CakeCookie[capoUrl]=dHVybmh1Yi5uZXQ%3D; CakeCookie[clickid]=MTYwNzg4NjIy; CakeCookie[entityId]=Mg%3D%3D; CakeCookie[lang]=eng; CakeCookie[pubid]=MTUxMTk%3D; CakeCookie[subid3]=TGVhZA%3D%3D; CakeCookie[v_id]=YTljNjkwMjgtOGVlZC05ZmRiLTZmOGUtOGJjOWVjMmRiM2Qz
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:04 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 30 Nov 2022 16:23:49 GMT
etag: W/"63878395-6b8ea"
x-frame-options: SAMEORIGIN
x-fruit: banana
cf-cache-status: HIT
age: 6723
expires: Thu, 01 Dec 2022 04:02:04 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains
server: cloudflare
cf-ray: 77278d4d1d7ab4f3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.0.13/css/all.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.0.13/css/all.css
IP 172.64.132.15:0
GET /releases/v5.0.13/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://entertainzer.com
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 00:02:05 GMT
content-type: text/css
x-amz-id-2: sSHGJ3sQX8em3pCawu1wOP0tVHMJOCCzleBeGooOeKTJzqxyDu7nUHGd/9VqeWyYrBWbGB63j5U=
x-amz-request-id: 875PAW2D43BAAQP0
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:27:31 GMT
etag: W/"d61bfe9b56c13ecff5313ee3abb45e8b"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 292293
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vqUYLIds3uG30DdeCKTQUSn4fc3KoUTueL5mjXRwZJBqzv%2BKtA12wNCEkZGvjP%2Fjdfvcc523hwE5Nz4m2gZ72FdQMzoPUTzZC%2Bi5Uu1s4328yjNl9OyNjaGaLmWEFGCNHJrCMBBK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77278d4ded85777d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato
IP 142.250.74.106:0
GET /css?family=Lato HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:02:05 GMT
date: Thu, 01 Dec 2022 00:02:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Abel
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Abel
IP 142.250.74.106:0
GET /css?family=Abel HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:02:05 GMT
date: Thu, 01 Dec 2022 00:02:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Libre+Baskerville:400,400i&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Libre+Baskerville:400,400i&display=swap
IP 142.250.74.106:0
GET /css?family=Libre+Baskerville:400,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://entertainzer.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 00:02:05 GMT
date: Thu, 01 Dec 2022 00:02:05 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2