r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12156
Expires: Fri, 25 Nov 2022 07:52:35 GMT
Date: Fri, 25 Nov 2022 04:29:59 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3455
Cache-Control: max-age=111527
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:29:59 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:28:46 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14014
Expires: Fri, 25 Nov 2022 08:23:33 GMT
Date: Fri, 25 Nov 2022 04:29:59 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 04:19:03 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 656
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FojPZJYaxcWy7aWW2Zzo2GhLheewgsHHpN55eyIN0iypZ/3RX5oOmseF1tvVmdzHAVf6RHb7zGQ=
x-amz-request-id: J3KJ3ARVZWVE4G1J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 03:43:41 GMT
age: 2778
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 04:30:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
hungryforhungry.blogspot.com/2007/02/blog-post_3249.html
142.250.74.161200 OK 41 kB URL HTTP/1.1 hungryforhungry.blogspot.com/2007/02/blog-post_3249.html
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3143)
Hash df91efbef8a189a1241c16fa9271843a
2175588e155cc299a2ecfbd19dc3a58cfa725f65
6237f11d7192cb8ac3df3ad7acb7e6f6b9e8f1927257d86d68884c3bd5aeed73
Analyzer Verdict Alert fortinet Phishing
GET /2007/02/blog-post_3249.html HTTP/1.1
Host: hungryforhungry.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Fri, 25 Nov 2022 04:30:00 GMT
Date: Fri, 25 Nov 2022 04:30:00 GMT
Cache-Control: private, max-age=0
Last-Modified: Sun, 20 Nov 2022 12:05:52 GMT
ETag: W/"1469004e89fc628c036d055ede6cd0f31373b084de2d9c1803455f82ce5a349b"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 41372
Server: GSE
hungryforhungry.blogspot.com/js/cookienotice.js
142.250.74.161200 OK 2.0 kB URL HTTP/1.1 hungryforhungry.blogspot.com/js/cookienotice.js
IP 142.250.74.161:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
Analyzer Verdict Alert fortinet Phishing
GET /js/cookienotice.js HTTP/1.1
Host: hungryforhungry.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/2007/02/blog-post_3249.html
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 10:47:22 GMT
Expires: Wed, 30 Nov 2022 10:47:22 GMT
Cache-Control: public, max-age=604800
Last-Modified: Wed, 23 Nov 2022 07:50:07 GMT
Content-Type: text/javascript
Age: 150158
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 2a03384abe9f9728677b1f7b876b4694
41c1c401e79ac5b6edc6fc3cce8b4d085c565ac1
744b3562ef1851ca3c0413020ef5c40e71af514e6ff8da065f6ea9f846e70717
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 85c366a970be2cf52f279f054d4c13ea
203d25dc5965e9c45b25948ae4473d09a3e2fdaf
1373f167d86539ac40cfed4722408ded3edd87701107caa70da536dec8278249
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
142.250.74.105200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/widgets/55013136-widget_css_bundle.css
IP 142.250.74.105:0
File type ASCII text, with very long lines (30596)
Hash 6f46e6f68353c7911fe34f31faa1518f
ea4dbfa2f87c18e9c51c59a32dfa9afb9c2c3472
0be7e26374fcff6f423b88e5f2a05d1cfdcb56abb4a78fa125e391989782ae0f
GET /static/v1/widgets/55013136-widget_css_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6620
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 20:32:38 GMT
expires: Wed, 22 Nov 2023 20:32:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Nov 2022 12:53:21 GMT
content-type: text/css
age: 201442
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jimmyjackbob.googlepages.com/Recent_posts_widget_blogger.js
142.250.74.83301 Moved Permanently 269 B URL HTTP/1.1 jimmyjackbob.googlepages.com/Recent_posts_widget_blogger.js
IP 142.250.74.83:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 81232fc3781a39a981c6c72e9a48ba97
26f15a71aabae97e15fa05fa9b805b61376ac53a
10b85695364b524dad70daaba8c28fa00e2c5ca19cfeee15c53fdb625bc81017
GET /Recent_posts_widget_blogger.js HTTP/1.1
Host: jimmyjackbob.googlepages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 301 Moved Permanently
Location: http://sites.google.com/site/jimmyjackbob/Recent_posts_widget_blogger.js
Date: Fri, 25 Nov 2022 04:30:00 GMT
Content-Type: text/html; charset=UTF-8
Server: ghs
Content-Length: 269
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
142.250.74.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1279)
Hash 7ac44ef24e267df17ff72f195b252806
62db12d9ce11a576ccd7fa3544d851c5fd42f3b7
aae7897e7b55999c1b3166309381d19ac488dced51e14071339d8b193a686a61
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Fri, 25 Nov 2022 04:30:00 GMT
expires: Fri, 25 Nov 2022 04:30:00 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "7446758f13887885"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/blank.gif
142.250.74.105200 OK 43 B URL HTTP/1.1 resources.blogblog.com/img/blank.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /img/blank.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 43
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 16:44:33 GMT
Expires: Tue, 29 Nov 2022 16:44:33 GMT
Cache-Control: public, max-age=604800
Last-Modified: Mon, 21 Nov 2022 19:52:12 GMT
Content-Type: image/gif
Age: 215127
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 01f789642d92b84211d7a9391f4e55af
bfcdc40fa2e82882051aa26c61d81ffd98371506
66e2ca388a8696e08f992e3d34fe75dcccd99a0743605f3bf5e6c1c893750f24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 04:08:53 GMT
cache-control: public,max-age=3600
age: 1267
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.ask2use.com/icon/contact.gif
45.84.204.248301 Moved Permanently 707 B URL HTTP/1.1 www.ask2use.com/icon/contact.gif
IP 45.84.204.248:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /icon/contact.gif HTTP/1.1
Host: www.ask2use.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 25 Nov 2022 04:30:00 GMT
server: LiteSpeed
location: https://www.ask2use.com/icon/contact.gif
platform: hostinger
content-security-policy: upgrade-insecure-requests
www.ask2use.com/icon/link_red.gif
45.84.204.248301 Moved Permanently 707 B URL HTTP/1.1 www.ask2use.com/icon/link_red.gif
IP 45.84.204.248:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /icon/link_red.gif HTTP/1.1
Host: www.ask2use.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 25 Nov 2022 04:30:00 GMT
server: LiteSpeed
location: https://www.ask2use.com/icon/link_red.gif
platform: hostinger
content-security-policy: upgrade-insecure-requests
www.blogger.com/static/v1/widgets/2342155703-widgets.js
142.250.74.105200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2342155703-widgets.js
IP 142.250.74.105:0
File type ASCII text, with very long lines (2221)
Hash 1217c8e34acb09c7cea97bae4d386ea1
55ee17703d0a7710943e93913bacb49220d98b4b
c2f23437ab938096bf8b40de8b08c4f27bb880b7ef8588481ec5ccc08b58870b
GET /static/v1/widgets/2342155703-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 16:02:03 GMT
expires: Tue, 21 Nov 2023 16:02:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Nov 2022 00:52:59 GMT
content-type: text/javascript
age: 304077
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.ask2use.com/icon/perm_red.gif
45.84.204.248301 Moved Permanently 707 B URL HTTP/1.1 www.ask2use.com/icon/perm_red.gif
IP 45.84.204.248:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /icon/perm_red.gif HTTP/1.1
Host: www.ask2use.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 25 Nov 2022 04:30:00 GMT
server: LiteSpeed
location: https://www.ask2use.com/icon/perm_red.gif
platform: hostinger
content-security-policy: upgrade-insecure-requests
www.ask2use.com/icon/notes.gif
45.84.204.248301 Moved Permanently 707 B URL HTTP/1.1 www.ask2use.com/icon/notes.gif
IP 45.84.204.248:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /icon/notes.gif HTTP/1.1
Host: www.ask2use.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 25 Nov 2022 04:30:00 GMT
server: LiteSpeed
location: https://www.ask2use.com/icon/notes.gif
platform: hostinger
content-security-policy: upgrade-insecure-requests
hungryforhungry.blogspot.com/feeds/comments/default?alt=json-in-script&callback=showrecentcomments
142.250.74.161200 OK 7.4 kB URL HTTP/1.1 hungryforhungry.blogspot.com/feeds/comments/default?alt=json-in-script&callback=showrecentcomments
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (42748)
Hash c7a234c75f43a6cae08d2fe078c6df2d
6f4aa8422e91420c6d950996faa3de49a6565767
bed50deb89ba3642c6cb5939237711ce714b27d4ced32335d5c66396f97e34bc
GET /feeds/comments/default?alt=json-in-script&callback=showrecentcomments HTTP/1.1
Host: hungryforhungry.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/2007/02/blog-post_3249.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
Server: blogger-renderd
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Encoding: gzip
Content-Length: 7430
X-Frame-Options: SAMEORIGIN
Date: Fri, 25 Nov 2022 04:30:00 GMT
Expires: Fri, 25 Nov 2022 04:30:01 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Last-Modified: Mon, 01 Aug 2022 18:13:06 GMT
ETag: W/"ab30207457a0947c8c272bbb5598935a4aed14db009c8dfaafe4969b27feca6e"
Content-Type: text/javascript; charset=UTF-8
Age: 0
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 58 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (580)
Hash 813b15c3004464f6bd39fd0773b04757
bd2218fe1e647f61132aad70d29cd91fd0416f26
446c6d83404c0fc4bc1ca6e1c0895f9400309185a534b3f4b6d500e668efeadf
GET /_/scs/abc-static/_/js/k=gapi.lb.en.geaHZXF2-fw.O/m=gapi_iframes,gapi_iframes_style_bubble/rt=j/sv=1/d=1/ed=1/rs=AHpOoo9yYF5eCIYPx4UH9gpJptM2Q_GGxQ/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 57794
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 09:56:18 GMT
expires: Thu, 23 Nov 2023 09:56:18 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 01 Nov 2022 15:24:55 GMT
content-type: text/javascript; charset=UTF-8
age: 153222
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
hungryforhungry.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=showrecentposts
142.250.74.161200 OK 31 kB URL HTTP/1.1 hungryforhungry.blogspot.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=showrecentposts
IP 142.250.74.161:0
File type Unicode text, UTF-8 text, with very long lines (56128)
Hash 271d8cbc9628349737eafc29780c54b8
2a1d51073002b22ca6f81f5e7e14728fe0d6b203
1b9a72236d46024812c958979391d2322279b337c3886be7d87c2a4b7d40d899
GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=showrecentposts HTTP/1.1
Host: hungryforhungry.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/2007/02/blog-post_3249.html
HTTP/1.1 200 OK
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Server: blogger-renderd
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
Content-Length: 31017
X-Frame-Options: SAMEORIGIN
Date: Fri, 25 Nov 2022 04:30:00 GMT
Expires: Fri, 25 Nov 2022 04:30:01 GMT
Cache-Control: public, must-revalidate, proxy-revalidate, max-age=1
Last-Modified: Sun, 20 Nov 2022 12:05:52 GMT
ETag: W/"ad79b9c5c99ee32cc45fa40133ea9f054f89ecff0a2ace3f71941fe0f9993a02"
Content-Type: text/javascript; charset=UTF-8
Age: 0
banners.copyscape.com/images/cs-gr-3d-88x31.gif
184.86.15.80200 OK 2.4 kB URL HTTP/1.1 banners.copyscape.com/images/cs-gr-3d-88x31.gif
IP 184.86.15.80:0
File type GIF image data, version 89a, 88 x 31\012- data
Hash 4ae2b67a4cf70a78f029a03d24571899
7d87e7419ec57b6c28e373dd2d9b177ff28ad2cd
51245b05f6ca3dfca5a2a0688ce3deb938e09c393d783e037c90ad255a165143
GET /images/cs-gr-3d-88x31.gif HTTP/1.1
Host: banners.copyscape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 200 OK
Server: Apache/2.2.15 (CentOS)
Last-Modified: Mon, 12 Oct 2015 10:29:00 GMT
ETag: "640cf-95e-521e5cc28b300"
Accept-Ranges: bytes
Content-Length: 2398
Content-Type: image/gif
Date: Fri, 25 Nov 2022 04:30:00 GMT
Connection: keep-alive
www.linkwithin.com/widget.js
3.19.188.212404 Not Found 162 B URL HTTP/1.1 www.linkwithin.com/widget.js
IP 3.19.188.212:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 1b7c22a214949975556626d7217e9a39
d01c97e2944166ed23e47e4a62ff471ab8fa031f
340c8464c2007ce3f80682e15dfafa4180b641d53c14201b929906b7b0284d87
GET /widget.js HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 404 Not Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 25 Nov 2022 04:30:00 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.34200 OK 67 B URL HTTP/1.1 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.34:0
Hash 9bbc3ca32ec951a484589ce0e6b4db73
753d6f6183b33b2dee5dde2208fca91c17f5bb13
b8f16a16d2a7ea39a9cc079fdbe3af7d31393d62a853668bdd549e0a0311cb3c
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 67
X-XSS-Protection: 0
Date: Thu, 24 Nov 2022 22:47:10 GMT
Expires: Thu, 08 Dec 2022 22:47:10 GMT
Cache-Control: public, max-age=1209600
ETag: 13036835877489095579
Content-Type: text/javascript; charset=UTF-8
Age: 20570
resources.blogblog.com/img/icon18_edit_allbkg.gif
142.250.74.105200 OK 162 B URL HTTP/2 resources.blogblog.com/img/icon18_edit_allbkg.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 18 x 18\012- data
Hash c991641178ff05adf0d004298b5eafa9
d8f6ce8ecd92b86d49849360f6b81ceb10b4c941
ca9848e6006cfec8f9ffa29433ade8152204bdb95579200831c6dc0f53dff70b
GET /img/icon18_edit_allbkg.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 162
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:43:55 GMT
expires: Tue, 29 Nov 2022 14:43:55 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 15:52:34 GMT
content-type: image/gif
age: 222365
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
resources.blogblog.com/img/blank.gif
142.250.74.105200 OK 43 B URL HTTP/2 resources.blogblog.com/img/blank.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /img/blank.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 43
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 05:49:50 GMT
expires: Wed, 30 Nov 2022 05:49:50 GMT
cache-control: public, max-age=604800
last-modified: Tue, 22 Nov 2022 23:52:52 GMT
content-type: image/gif
age: 168010
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
photos1.blogger.com/x/blogger/3878/1317/1600/183236/hflfinal.jpg
142.250.74.100200 OK 6.9 kB URL HTTP/1.1 photos1.blogger.com/x/blogger/3878/1317/1600/183236/hflfinal.jpg
IP 142.250.74.100:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Adobe Photoshop CS Windows, datetime=2006:12:12 21:43:16], baseline, precision 8, 151x100, components 3\012- data
Hash 3a5cca2bd4ee4ec478bafa2c7b58fb87
b179aad72a5981ae5636d06246dd5489529f8745
7399f2ebb4944671cd423b01d0efca09f5cad08efbb1fd140fdc03c2c618e6c5
GET /x/blogger/3878/1317/1600/183236/hflfinal.jpg HTTP/1.1
Host: photos1.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/photos
Cross-Origin-Opener-Policy: same-origin-allow-popups; report-to="photos"
Report-To: {"group":"photos","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/photos"}]}
Content-Length: 6879
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 10:47:23 GMT
Expires: Thu, 23 Nov 2023 10:47:23 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Sat, 18 Feb 2012 11:31:00 GMT
Content-Type: image/jpeg
Age: 150157
resources.blogblog.com/img/icon_delete13.gif
142.250.74.105200 OK 140 B URL HTTP/2 resources.blogblog.com/img/icon_delete13.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 13 x 13\012- data
Hash e7f55c98f18368f2ba26a008b1d40fc3
bb509d770d2d149060707c2c2c01776e86b858c4
69ff07a31a102649f3e0d08a967c39b134286293b85aac0885b3102a9120f1a6
GET /img/icon_delete13.gif HTTP/1.1
Host: resources.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 140
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 11:12:13 GMT
expires: Tue, 29 Nov 2022 11:12:13 GMT
cache-control: public, max-age=604800
last-modified: Mon, 21 Nov 2022 13:51:27 GMT
content-type: image/gif
age: 235067
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/dyn-css/authorization.css?targetBlogID=35543344&zx=ff24c47a-9327-4858-aba5-a9856b6362a8
142.250.74.105200 OK 21 B URL HTTP/2 www.blogger.com/dyn-css/authorization.css?targetBlogID=35543344&zx=ff24c47a-9327-4858-aba5-a9856b6362a8
IP 142.250.74.105:0
File type very short file (no magic)
Hash a62e4d501434033d5d177e67d3aafdd0
34f7300c9ed47334cf10826d57af785321e3138b
b0cabcbfed4b1830ab1956efbd2eec32289a968323cb854a47ef98360ed0f522
GET /dyn-css/authorization.css?targetBlogID=35543344&zx=ff24c47a-9327-4858-aba5-a9856b6362a8 HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See https://www.google.com/support/accounts/bin/answer.py?hl=en&answer=151657 for more info."
content-security-policy: script-src 'self' *.google.com *.google-analytics.com 'unsafe-inline' 'unsafe-eval' *.gstatic.com *.googlesyndication.com *.blogger.com *.googleapis.com uds.googleusercontent.com https://s.ytimg.com https://i18n-cloud.appspot.com https://www.youtube.com www-onepick-opensocial.googleusercontent.com www-bloggervideo-opensocial.googleusercontent.com www-blogger-opensocial.googleusercontent.com https://www.blogblog.com; report-uri /cspreport
content-type: text/css; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 25 Nov 2022 04:30:00 GMT
last-modified: Fri, 25 Nov 2022 04:30:00 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
content-length: 21
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogblog.com/no565/corner_main_left.gif
142.250.74.105200 OK 121 B URL HTTP/1.1 www.blogblog.com/no565/corner_main_left.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 12 x 12\012- data
Hash ab1ba5d2a21f493eeb993bee5d85e148
f262b70cf55f4661ae9ac9bf82b12b477b87f322
b6783f5294ee60f509f45baa57ad4beaaa2d0bbb6ad0913f019e8a5264d33128
GET /no565/corner_main_left.gif HTTP/1.1
Host: www.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 121
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 08:17:40 GMT
Expires: Tue, 29 Nov 2022 08:17:40 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 04:50:59 GMT
Content-Type: image/gif
Age: 245540
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 01f789642d92b84211d7a9391f4e55af
bfcdc40fa2e82882051aa26c61d81ffd98371506
66e2ca388a8696e08f992e3d34fe75dcccd99a0743605f3bf5e6c1c893750f24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ask2use.com/icon/logo.gif
45.84.204.248301 Moved Permanently 707 B URL HTTP/1.1 www.ask2use.com/icon/logo.gif
IP 45.84.204.248:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /icon/logo.gif HTTP/1.1
Host: www.ask2use.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Fri, 25 Nov 2022 04:30:00 GMT
server: LiteSpeed
location: https://www.ask2use.com/icon/logo.gif
platform: hostinger
content-security-policy: upgrade-insecure-requests
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6290
Cache-Control: max-age=109299
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:30:00 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:51:39 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
sites.google.com/site/jimmyjackbob/Recent_posts_widget_blogger.js
142.250.74.142302 Moved Temporarily 206 B URL HTTP/1.1 sites.google.com/site/jimmyjackbob/Recent_posts_widget_blogger.js
IP 142.250.74.142:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 62f17a5c9eb9a5ec59ab0af4b722f714
de1e9f476e6e573c6d5eb05d39031ce2df9f9dd8
fe269197944fbe306e6ab64c4ee8c9b1f750c0ad2a4dff5970cebc9bf615f300
GET /site/jimmyjackbob/Recent_posts_widget_blogger.js HTTP/1.1
Host: sites.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://hungryforhungry.blogspot.com/
Connection: keep-alive
HTTP/1.1 302 Moved Temporarily
Location: https://sites.google.com/site/jimmyjackbob/Recent_posts_widget_blogger.js
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Fri, 25 Nov 2022 04:30:00 GMT
Expires: Fri, 25 Nov 2022 04:30:00 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 206
Server: GSE
www.linkwithin.com/pixel.png
3.19.188.212200 OK 83 B URL HTTP/1.1 www.linkwithin.com/pixel.png
IP 3.19.188.212:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1dba98f5e46c0e7a1549b3d8af9b93
37284bda145ed93cee64997e3d6688cae7d98468
88021da4a13d993a2c94e4d8ddc9bd98b34985d806371e71e0531b37b8a0e081
GET /pixel.png HTTP/1.1
Host: www.linkwithin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 25 Nov 2022 04:30:00 GMT
Content-Type: image/png
Content-Length: 83
Last-Modified: Thu, 18 Jun 2020 22:02:28 GMT
Connection: keep-alive
ETag: "5eebe474-53"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 01f789642d92b84211d7a9391f4e55af
bfcdc40fa2e82882051aa26c61d81ffd98371506
66e2ca388a8696e08f992e3d34fe75dcccd99a0743605f3bf5e6c1c893750f24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.ask2use.com/icon/contact.gif
45.84.204.248301 Moved Permanently 0 B URL HTTP/2 www.ask2use.com/icon/contact.gif
IP 45.84.204.248:0
ASN #47583 Hostinger International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /icon/contact.gif HTTP/1.1
Host: www.ask2use.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://hungryforhungry.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://ask2use.com/icon/contact.gif
content-length: 0
date: Fri, 25 Nov 2022 04:30:00 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
4.bp.blogspot.com/_dR2dDzYJQG0/RerK5COXkcI/AAAAAAAAAJM/AkSKX76F1RA/s320/phpzRkiFdAM_1_.jpg
142.250.74.161200 OK 23 kB URL HTTP/1.1 4.bp.blogspot.com/_dR2dDzYJQG0/RerK5COXkcI/AAAAAAAAAJM/AkSKX76F1RA/s320/phpzRkiFdAM_1_.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x240, components 3\012- data
Hash f8042cc5eef125a960f094fc0e0e5114
65142c7137e3623ec95bb9ac24543a2ffa4d5dec
dbfc6ca4401afb8ff4aae6fbf37d799302f406d9e3f7e151a9a1ff17f00da603
GET /_dR2dDzYJQG0/RerK5COXkcI/AAAAAAAAAJM/AkSKX76F1RA/s320/phpzRkiFdAM_1_.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v93"
Expires: Sat, 26 Nov 2022 04:30:00 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="phpzRkiFdAM_1_.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Fri, 25 Nov 2022 04:30:00 GMT
Server: fife
Content-Length: 22805
X-XSS-Protection: 0
cdn.widgetserver.com/syndication/subscriber/InsertWidget.js
45.33.18.44200 OK 157 B URL HTTP/1.1 cdn.widgetserver.com/syndication/subscriber/InsertWidget.js
IP 45.33.18.44:0
Hash 67e216a27dda24bdcb086c2385b0cb99
17141c80f5d32bec3691c5ab24741d8b7dd5f0c6
9dc433b2142d3ba0803fcffa53f19d34da26996d20c829df6d694bc887325dd7
Analyzer Verdict Alert fortinet Phishing
GET /syndication/subscriber/InsertWidget.js HTTP/1.1
Host: cdn.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Fri, 25 Nov 2022 04:30:00 GMT
content-type: application/javascript
content-length: 157
last-modified: Wed, 07 Mar 2018 18:30:37 GMT
etag: "5aa02fcd-9d"
accept-ranges: bytes
connection: close
www.ask2use.com/icon/notes.gif
45.84.204.248301 Moved Permanently 0 B URL HTTP/2 www.ask2use.com/icon/notes.gif
IP 45.84.204.248:0
ASN #47583 Hostinger International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /icon/notes.gif HTTP/1.1
Host: www.ask2use.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://hungryforhungry.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://ask2use.com/icon/notes.gif
content-length: 0
date: Fri, 25 Nov 2022 04:30:00 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www2.blogblog.com/no565/corner_sidebar_left.gif
142.250.74.105200 OK 122 B URL HTTP/1.1 www2.blogblog.com/no565/corner_sidebar_left.gif
IP 142.250.74.105:0
File type GIF image data, version 89a, 12 x 12\012- data
Hash 4c730193eea5df357d1bde22619077a9
494f3926077d1457ef448a60dd8bcab4e16b37e4
efa22c826a3d042f330fcdd25feba79f543f8c869e01fbc32409328885df1524
GET /no565/corner_sidebar_left.gif HTTP/1.1
Host: www2.blogblog.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 122
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 23 Nov 2022 08:06:35 GMT
Expires: Wed, 30 Nov 2022 08:06:35 GMT
Cache-Control: public, max-age=604800
Last-Modified: Tue, 22 Nov 2022 07:51:00 GMT
Content-Type: image/gif
Age: 159805
www.ask2use.com/icon/perm_red.gif
45.84.204.248301 Moved Permanently 0 B URL HTTP/2 www.ask2use.com/icon/perm_red.gif
IP 45.84.204.248:0
ASN #47583 Hostinger International Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /icon/perm_red.gif HTTP/1.1
Host: www.ask2use.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://hungryforhungry.blogspot.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.4.32
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://ask2use.com/icon/perm_red.gif
content-length: 0
date: Fri, 25 Nov 2022 04:30:00 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:30:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.41.252.32101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.252.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cPEs3Bf3GfMBO8+JHKjU0Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ByCKu/pXvZAesbjgWzgj5u3SGeI=
cdn.widgetserver.com/
72.14.178.174200 OK 4.8 kB IP 72.14.178.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (334)
Hash 60949fcc99970d369d9a2aa038c7713a
871a76411070bf286cb94ce920e5e2cfc39566e1
3f12aeb2415a2e0eda2dca6a89cd45c6dfaf267c321a2b206f49f44637662c3b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: cdn.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Fri, 25 Nov 2022 04:30:01 GMT
content-type: text/html; charset=utf-8
content-length: 4792
vary: Accept-Language
content-language: en
connection: close
cdn.widgetserver.com/favicon.ico
72.14.178.174200 OK 43 B URL HTTP/1.1 cdn.widgetserver.com/favicon.ico
IP 72.14.178.174:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /favicon.ico HTTP/1.1
Host: cdn.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.widgetserver.com/
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Fri, 25 Nov 2022 04:30:01 GMT
content-type: image/gif
content-length: 43
last-modified: Mon, 28 Sep 1970 06:00:00 GMT
connection: close
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4359
Expires: Fri, 25 Nov 2022 05:42:41 GMT
Date: Fri, 25 Nov 2022 04:30:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4359
Expires: Fri, 25 Nov 2022 05:42:41 GMT
Date: Fri, 25 Nov 2022 04:30:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4359
Expires: Fri, 25 Nov 2022 05:42:41 GMT
Date: Fri, 25 Nov 2022 04:30:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4359
Expires: Fri, 25 Nov 2022 05:42:41 GMT
Date: Fri, 25 Nov 2022 04:30:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4359
Expires: Fri, 25 Nov 2022 05:42:41 GMT
Date: Fri, 25 Nov 2022 04:30:02 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b6ee13d43732f7c764a49500d092865
5d15fd672e968d59b541e4d5d0d01cd5e69f4075
fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: q53jN1uOtSdeThbk2_0UF6Rl3g4_-_TW7uK1_6Z5oDwSTSRk8XRjyQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:08 GMT
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
content-type: image/jpeg
age: 24894
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 02:07:28 GMT
age: 8554
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d60bb22-4a30-4570-8561-eb3a2833a058.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d60bb22-4a30-4570-8561-eb3a2833a058.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f59a591b222397ff0f01c22a0786e660
6a8504212141af411a18ce58960c8bb52e8116ac
624847cfdfcd770d2dee8a2b85f3c7c480cda58ba2aef1135184f3dffc30d1f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d60bb22-4a30-4570-8561-eb3a2833a058.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8277
x-amzn-requestid: e84a5668-cd91-42af-b6de-5eb694ea56e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-KFtmIAMF00Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38d-64513fb257d83b9847c82929;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rIKW7gaK37mlbk_TUo63AH9-XDOoF3Z-5mGaeOkzmESFLJ3GHz60lA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:10 GMT
etag: "6a8504212141af411a18ce58960c8bb52e8116ac"
content-type: image/jpeg
age: 24892
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 76555
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 648677a7e7bab1896a190d2e5fb7243c
6217a262002244ef3f2e8034076a735cafd9888a
72f2913f7c0770ebab0f2683bdc1ec5a5db8872e8f2c62a8fd5c9178b95dbb06
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4270
x-amzn-requestid: 7327f8fb-804b-4d09-83dc-628e35ffa74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8xFwXoAMFkqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-33f83cea2c585279140f4f59;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: NLXTbS53l_c-lByM8Ym4_tfOlgP2lB-F1dYxOSfdeEfBSM41X0Cpug==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:01 GMT
etag: "6217a262002244ef3f2e8034076a735cafd9888a"
content-type: image/jpeg
age: 24901
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6e0ab1-c4cf-40e6-973b-bb3db1a860e8.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6e0ab1-c4cf-40e6-973b-bb3db1a860e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c6b9b5ebc32235ed8f3e15df013963f0
46ee95ebee3d60f64d2b7f568673b13ea27a42a3
4fdf6f239f6931442d93a00acd8af1f5192f77143885945c27e137ef3683338e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e6e0ab1-c4cf-40e6-973b-bb3db1a860e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11586
x-amzn-requestid: df9d2675-0615-4993-83ab-87cdac30c05f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b8JyoGElIAMFh-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637b2343-315ac9210f212c9134ffa103;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 07:05:39 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: snfgherDVfBenP9XouMzFtaWfXLh4TeiwDmEb0hQh5L9Ww57Hkxl3g==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 548adcda884eed02304ba5d6a1d7f514.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:30:43 GMT
age: 21559
etag: "46ee95ebee3d60f64d2b7f568673b13ea27a42a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.widgetserver.com/mtm/async/.eJxdjEsOwiAQhu_CshJwqTWexVA6BRJeDtMWY7y7oK7cff_zyVZ0bGSScabQlIaNEBZAwCYsUR6ltGs0-FgSfkFMPpmSEwmdQp_aVOgWVYA20XMUu5sNUAHcAHunv2sNmVpOUElaCp6rnL3TilyKsnbnUP_d4C_361GcuQvKgFSbW364w5T5IIdPfmKvN42ERe8:1oyQLh:01cF9VliEkQINYa_qqyC9vO0wA4/1/
72.14.178.174200 OK 252 B URL HTTP/1.1 cdn.widgetserver.com/mtm/async/.eJxdjEsOwiAQhu_CshJwqTWexVA6BRJeDtMWY7y7oK7cff_zyVZ0bGSScabQlIaNEBZAwCYsUR6ltGs0-FgSfkFMPpmSEwmdQp_aVOgWVYA20XMUu5sNUAHcAHunv2sNmVpOUElaCp6rnL3TilyKsnbnUP_d4C_361GcuQvKgFSbW364w5T5IIdPfmKvN42ERe8:1oyQLh:01cF9VliEkQINYa_qqyC9vO0wA4/1/
IP 72.14.178.174:0
File type ASCII text, with no line terminators
Hash 94af80fcd55674e1246c94bfb6f277d5
1af1fcaa2ed759873093ac886826da48033ba4df
4439e4b4179ee54aec8373985be3d2158418db04b62b0f497cff587dbd1cea3f
Analyzer Verdict Alert fortinet Phishing
GET /mtm/async/.eJxdjEsOwiAQhu_CshJwqTWexVA6BRJeDtMWY7y7oK7cff_zyVZ0bGSScabQlIaNEBZAwCYsUR6ltGs0-FgSfkFMPpmSEwmdQp_aVOgWVYA20XMUu5sNUAHcAHunv2sNmVpOUElaCp6rnL3TilyKsnbnUP_d4C_361GcuQvKgFSbW364w5T5IIdPfmKvN42ERe8:1oyQLh:01cF9VliEkQINYa_qqyC9vO0wA4/1/ HTTP/1.1
Host: cdn.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://cdn.widgetserver.com/
Connection: keep-alive
HTTP/1.1 200 OK
server: openresty/1.13.6.1
date: Fri, 25 Nov 2022 04:30:02 GMT
content-type: text/html; charset=utf-8
content-length: 252
x-mtm-path: 4
x-mtm-prov: 1:4.11;70:0.00
x-mtm-rd: 0.23
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJjZG4ud2lkZ2V0c2VydmVyLmNvbSIsImh0dHA6Ly93d3cxLndpZGdldHNlcnZlci5jb20vP3RtPTEmc3ViaWQ0PTE2NjkzNTA2MDEuMDMwNDExMDAwMCZLVzE9RXVyb3BlJTIwRGVkaWNhdGVkJTIwU2VydmVycyZLVzI9Tm9yd2F5JTIwRGVkaWNhdGVkJTIwU2VydmVycyZLVzM9UmVnaW9uYWwlMjBEZWRpY2F0ZWQlMjBTZXJ2ZXJzJktXND1Mb2NhbCUyMERlZGljYXRlZCUyMFNlcnZlcnMmS1c1PUN1c3RvbSUyMERlZGljYXRlZCUyMFNlcnZlcnMmc2VhcmNoYm94PTAmYmFja2ZpbGw9MCIsMSwiMjAyMi0xMS0yNSAwNDozMDowMiIsMSwiMTY2OTM1MDYwMS4wMzA0MTEwMDAwIiwxLG51bGwsbnVsbF0:1oyQLi:BEAhwf-bOqls7cW3pQoCfzwQG2A; expires=Fri, 25-Nov-2022 05:30:02 GMT; Max-Age=3600; Path=/
connection: close
www1.widgetserver.com/?tm=1&subid4=1669350601.0304110000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
75.2.73.197200 OK 2.5 kB URL HTTP/1.1 www1.widgetserver.com/?tm=1&subid4=1669350601.0304110000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
IP 75.2.73.197:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2258)
Hash b1e26905857524dcc7a21df5b83150a1
4a7a7a465321a6e4ae5c6b18d6e56fef8ce1e3d2
1820c2d518437aba3d1310a84381fbf626518b52aac5ece4eaf47ce2bf14e99e
GET /?tm=1&subid4=1669350601.0304110000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0 HTTP/1.1
Host: www1.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.widgetserver.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 04:30:03 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Redirect: zeropark_zeroclick
X-Template: tpl_CleanPeppermintBlack_twoclick
X-Language: norwegian
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Content-Encoding: gzip
d38psrni17bvxu.cloudfront.net/scripts/js3.js
54.230.245.138200 OK 1.1 kB URL HTTP/1.1 d38psrni17bvxu.cloudfront.net/scripts/js3.js
IP 54.230.245.138:0
File type ASCII text, with very long lines (506)
Hash 64b79b43df8fbf2c5d082964b9116a68
dc3c763519baf0f4c32bb60bfc429651a491ea01
c57e9feec209e3ea5eb1d75a1ba6fa277242a3df250055be8446052b51e58637
Analyzer Verdict Alert fortinet Malware
GET /scripts/js3.js HTTP/1.1
Host: d38psrni17bvxu.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 1134
Connection: keep-alive
Server: nginx
Date: Thu, 24 Nov 2022 04:54:34 GMT
Last-Modified: Tue, 17 Aug 2021 09:17:22 GMT
Accept-Ranges: bytes
ETag: "611b7ea2-46e"
X-Cache: Hit from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zqs7-uhERwkR7KX09VmJh8pdM4TkdzjxNNbCv7Gg1ZXTY-ZmwKFdnA==
Age: 84929
www1.widgetserver.com/track.php?domain=widgetserver.com&toggle=browserjs&uid=MTY2OTM1MDYwMy4wMTI6ZjBjODMyMjk0YTkwMjIzNTExNGIwYjMyODc0Y2YyMTcxZTA2ZjkyODkzYjk1MTM4OWY2NDlmMDY5ZGY5YTg5Mzo2MzgwNDRjYjAyZWQ1
75.2.73.197200 OK 20 B URL HTTP/1.1 www1.widgetserver.com/track.php?domain=widgetserver.com&toggle=browserjs&uid=MTY2OTM1MDYwMy4wMTI6ZjBjODMyMjk0YTkwMjIzNTExNGIwYjMyODc0Y2YyMTcxZTA2ZjkyODkzYjk1MTM4OWY2NDlmMDY5ZGY5YTg5Mzo2MzgwNDRjYjAyZWQ1
IP 75.2.73.197:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?domain=widgetserver.com&toggle=browserjs&uid=MTY2OTM1MDYwMy4wMTI6ZjBjODMyMjk0YTkwMjIzNTExNGIwYjMyODc0Y2YyMTcxZTA2ZjkyODkzYjk1MTM4OWY2NDlmMDY5ZGY5YTg5Mzo2MzgwNDRjYjAyZWQ1 HTTP/1.1
Host: www1.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669350601.0304110000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 04:30:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-Custom-Track: browserjs
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
www1.widgetserver.com/ls.php
75.2.73.197201 Created 0 B URL HTTP/1.1 www1.widgetserver.com/ls.php
IP 75.2.73.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /ls.php HTTP/1.1
Host: www1.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 2210
Origin: http://www1.widgetserver.com
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669350601.0304110000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
HTTP/1.1 201 Created
Date: Fri, 25 Nov 2022 04:30:04 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
X-Log-Success: 638044ccccf9f800ed2cc251
Charset: utf-8
Access-Control-Allow-Origin: http://www1.widgetserver.com
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Max-Age: 86400
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALquDFETXRn0Hr05fUP7EJT77xYnPmRbpMy4vk8KYiHnkNpednjOANJcaXDXcKQJN0nXKZJL7TciJD8AoHXK158CAwEAAQ==_pKsGZ9jse8MmrSRzij3dTfaR684b8YATpMGvIieCZ2znGDJ+5cJyZJ4DsQwMexX79XMAJZN3XBdUNWTap8395w==
www1.widgetserver.com/favicon.ico
75.2.73.197200 OK 0 B URL HTTP/1.1 www1.widgetserver.com/favicon.ico
IP 75.2.73.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www1.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669350601.0304110000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 04:30:04 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 12 May 2020 14:25:52 GMT
ETag: "5ebab1f0-0"
Accept-Ranges: bytes
www1.widgetserver.com/track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=widgetserver.com&uid=MTY2OTM1MDYwMy4wMTI6ZjBjODMyMjk0YTkwMjIzNTExNGIwYjMyODc0Y2YyMTcxZTA2ZjkyODkzYjk1MTM4OWY2NDlmMDY5ZGY5YTg5Mzo2MzgwNDRjYjAyZWQ1&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzgwNDRjYjAyZWFmfHx8MTY2OTM1MDYwMy4zMDM0fDRhYWM2OTRlZDBmNDY4ZGQ0MjEyY2FmNGY4MzA4MGZlNmJkNDgwMzR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwYjc2MzUyNTQxZTJkNDk0NTI1Njc4NzQwY2QxZmY2OWRhNDI3MmUxfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
75.2.73.197200 OK 20 B URL HTTP/1.1 www1.widgetserver.com/track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=widgetserver.com&uid=MTY2OTM1MDYwMy4wMTI6ZjBjODMyMjk0YTkwMjIzNTExNGIwYjMyODc0Y2YyMTcxZTA2ZjkyODkzYjk1MTM4OWY2NDlmMDY5ZGY5YTg5Mzo2MzgwNDRjYjAyZWQ1&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzgwNDRjYjAyZWFmfHx8MTY2OTM1MDYwMy4zMDM0fDRhYWM2OTRlZDBmNDY4ZGQ0MjEyY2FmNGY4MzA4MGZlNmJkNDgwMzR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwYjc2MzUyNTQxZTJkNDk0NTI1Njc4NzQwY2QxZmY2OWRhNDI3MmUxfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off
IP 75.2.73.197:0
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /track.php?click=8bc5311fea51f5d88ad90580a49f43a22d8f5165&domain=widgetserver.com&uid=MTY2OTM1MDYwMy4wMTI6ZjBjODMyMjk0YTkwMjIzNTExNGIwYjMyODc0Y2YyMTcxZTA2ZjkyODkzYjk1MTM4OWY2NDlmMDY5ZGY5YTg5Mzo2MzgwNDRjYjAyZWQ1&ts=fENsZWFuUGVwcGVybWludEJsYWNrfHw1Y2U4NHxidWNrZXQwMTF8fHx8fHw2MzgwNDRjYjAyZWFmfHx8MTY2OTM1MDYwMy4zMDM0fDRhYWM2OTRlZDBmNDY4ZGQ0MjEyY2FmNGY4MzA4MGZlNmJkNDgwMzR8fHx8fDF8fDB8MHx8fHwxfHx8fHwwfDB8fHx8fHx8fHx8MHwwfHwwfHx8MHwwfFcxMD18fDF8VzEwPXwwYjc2MzUyNTQxZTJkNDk0NTI1Njc4NzQwY2QxZmY2OWRhNDI3MmUxfDB8ZHAtdGVhbWludGVybmV0MTJfM3BofDB8MA%3D%3D&kw=&search=&pcat=&rxid=&bucket=&clientID=&adtest=off HTTP/1.1
Host: www1.widgetserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/?tm=1&subid4=1669350601.0304110000&KW1=Europe%20Dedicated%20Servers&KW2=Norway%20Dedicated%20Servers&KW3=Regional%20Dedicated%20Servers&KW4=Local%20Dedicated%20Servers&KW5=Custom%20Dedicated%20Servers&searchbox=0&backfill=0
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 04:30:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Vary: Accept-Encoding
X-View-Match: true
Accept-CH: viewport-width, dpr, device-memory, rtt, downlink, ect, ua, ua-full-version, ua-platform, ua-platform-version, ua-arch, ua-model, ua-mobile
Accept-CH-Lifetime: 30
Access-Control-Allow-Origin: *
Content-Encoding: gzip
dipaka-ead.com/zcvisitor/d4948823-6c79-11ed-94f4-0ad727877059/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=6cbb5f90-69cb-11ed-9380-0a918cbcbb97
3.208.247.235200 1.1 kB URL HTTP/1.1 dipaka-ead.com/zcvisitor/d4948823-6c79-11ed-94f4-0ad727877059/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=6cbb5f90-69cb-11ed-9380-0a918cbcbb97
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 41676b83c724690855aebf36c1fa9f85
231cb8c710679f2e98fe2fa8ef58e6acacbc59b0
adcbb00a7933418e72d053611d3304b7a178ddd3cc5d98bad4592c368b108b33
GET /zcvisitor/d4948823-6c79-11ed-94f4-0ad727877059/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=6cbb5f90-69cb-11ed-9380-0a918cbcbb97 HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www1.widgetserver.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Fri, 25 Nov 2022 04:30:04 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
Server: kmGVFrRI
dipaka-ead.com/zcredirect?visitid=d4948823-6c79-11ed-94f4-0ad727877059&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
3.208.247.235200 1.0 kB URL HTTP/1.1 dipaka-ead.com/zcredirect?visitid=d4948823-6c79-11ed-94f4-0ad727877059&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (470)
Hash f3749625fb7e7121bb54bf5cfa282949
c14572d97355d59006d1178259b73077f4a6dad3
51f1af333bf928c38c665dba11189504647ae2b01b19a1e8b2540f2a4c13297c
GET /zcredirect?visitid=d4948823-6c79-11ed-94f4-0ad727877059&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcvisitor/d4948823-6c79-11ed-94f4-0ad727877059/85aefdc2-9ed0-48aa-922d-60f9f9fc0f2d?campaignid=6cbb5f90-69cb-11ed-9380-0a918cbcbb97
Upgrade-Insecure-Requests: 1
HTTP/1.1 200
Date: Fri, 25 Nov 2022 04:30:04 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST,OPTIONS
Access-Control-Allow-Headers: X-Requested-With,Content-Type,x-exadsrtb-version,x-openrtb-version,x-zerortb-version,X-Flag
redirected: JS
Server: FkYNhwOe
dipaka-ead.com/favicon.ico
3.208.247.235404 653 B URL HTTP/1.1 dipaka-ead.com/favicon.ico
IP 3.208.247.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (649), with no line terminators
Hash ba2732b1b2fa2626ffaa15f62f9e7d66
203d4e7fbb1d80449d6e4e1f3ae7a9bf8625debe
879861cb72fe9fbb476dab246021c4c83b4066327de2529e05ec54d3afb0a1c8
GET /favicon.ico HTTP/1.1
Host: dipaka-ead.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://dipaka-ead.com/zcredirect?visitid=d4948823-6c79-11ed-94f4-0ad727877059&type=js&browserWidth=1280&browserHeight=939&iframeDetected=false&webdriverDetected=false
HTTP/1.1 404
Date: Fri, 25 Nov 2022 04:30:05 GMT
Content-Type: text/html;charset=utf-8
Content-Length: 653
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
x-content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline'
X-WebKit-CSP: default-src 'self'; script-src 'self' 'unsafe-inline'
Content-Language: en
Server: ulyVthTA
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 6f4c58a486ab88df2bbe6a044a0ed504
51255f09b67b0f441fd8249791846077f5ec55e4
228fe5e9e6b24266fc4d79fc3009c299f4db56c673cfd9c6dd0ef14d9983fa18
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=127151
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:30:05 GMT
Etag: "637f927c-116"
Expires: Sat, 26 Nov 2022 15:49:16 GMT
Last-Modified: Thu, 24 Nov 2022 15:49:16 GMT
Server: nginx
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 6f4c58a486ab88df2bbe6a044a0ed504
51255f09b67b0f441fd8249791846077f5ec55e4
228fe5e9e6b24266fc4d79fc3009c299f4db56c673cfd9c6dd0ef14d9983fa18
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=127151
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 04:30:05 GMT
Etag: "637f927c-116"
Expires: Sat, 26 Nov 2022 15:49:16 GMT
Last-Modified: Thu, 24 Nov 2022 15:49:16 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 278
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.nav.js
172.67.206.188200 OK 2.5 kB URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.nav.js
IP 172.67.206.188:0
Hash b1515a195a0b96e0861a50e4cc53e245
aa4a065188eea3c5f0b6b47671101ecc402c15dd
619d81a64cf9b7586381ac94e29923259cb7c0f18970bc16c6f04543f20d2a49
GET /wp-content/themes/viral-pro/js/jquery.nav.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"1b16-633c20c8-345735;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6wksruOeE9E2yuFZlfC%2B%2F34bRnrQWxAivxzeoi7IcPCuoxf%2BethwirbLzNVxpL2o9qaANIyCtL1M5aOY3ktMBKlEhmCaad96k1dGzm%2BfLsYNOAy9fxNqDz6VSglck2zNupRWjmDDippMZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a84e490b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/inc/walker/assets/megaMenu.js
172.67.206.188200 OK 1.2 kB URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/inc/walker/assets/megaMenu.js
IP 172.67.206.188:0
Hash d94144380cc70013ef095fcc4d18dba2
fa2bd43cac10f718b2a11e6055c1771e212b5d7e
46a3131bd502f48943b7eb47b6cb1a89b5b10a5da13507ecf563089e34130669
GET /wp-content/themes/viral-pro/inc/walker/assets/megaMenu.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"beb-633c20c7-1f908;gz"
last-modified: Tue, 04 Oct 2022 12:02:15 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fNOBGsTuMgzryA7wWqdD5Kk041dEpO0nMbdc2XJFrWUND3phfRHpV8QGxGOWShZ8TYAtfhwEGU%2Fvmqb9sJFmxe6XS4%2BA%2FS6VXm%2BbcuNfhMJNnJEhRCVeEh%2FCbbXECeAezyS0wB%2F%2FNTPtgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a86e620b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-JPKTZMFY4F
142.250.74.168200 OK 78 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-JPKTZMFY4F
IP 142.250.74.168:0
File type ASCII text, with very long lines (21484)
Hash da2f52132c283a190a4984a41b745140
5a8bb0a87249237fe5540160d0a10996633f54a5
15b6359024fc6da01c0a7fee71e01168d7e2eac5e14268b7b2e9e70e0d9ad4ce
GET /gtag/js?id=G-JPKTZMFY4F HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubcloudhosting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 25 Nov 2022 04:30:06 GMT
expires: Fri, 25 Nov 2022 04:30:06 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77563
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/plugins/elementor/assets/js/frontend.min.js
172.67.206.188200 OK 13 kB URL HTTP/2 www.hubcloudhosting.com/wp-content/plugins/elementor/assets/js/frontend.min.js
IP 172.67.206.188:0
File type ASCII text, with very long lines (40474)
Hash f95ba7d0a6e265daba97973e68889396
b56428c0fe4dec4ac07ee235470df77cd876e56b
5adc573322014acb3ef4b3fef3fd2c8728499caeebab5bd4af19b1c9edaf8283
GET /wp-content/plugins/elementor/assets/js/frontend.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"9e41-6371181b-2b060b;gz"
last-modified: Sun, 13 Nov 2022 16:15:23 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ym37ty%2BdQaSGQ%2BxdEBGy4FFhld9VLFRNiKQ%2BPiMF6z4VLff7CdfRVd3wBiv%2Fj%2FpH4B0tnFZeaa6wL6Nt86G1cDb%2FPOdBpl9rgd9PvkHJLaBACOfeKte4QY%2B8zcWXNj%2BqK37m9cUzMlxz6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a89e840b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/litespeed/css/41b17ac4718d378683403055c29b56d2.css?ver=08bfb
172.67.206.188302 Found 1.2 kB URL HTTP/2 www.hubcloudhosting.com/wp-content/litespeed/css/41b17ac4718d378683403055c29b56d2.css?ver=08bfb
IP 172.67.206.188:0
Hash 65a79ae4fadfaf5a900251a6627694b6
b327e63a03ba8378b940c729857236f5ef764fb9
c3f0cbb7b5692eab9ec6e48adae50e8b0a1fbd8c11b881c28e1d67e4a9f75933
GET /wp-content/litespeed/css/41b17ac4718d378683403055c29b56d2.css?ver=08bfb HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: text/html
location: 404.html
cache-control: public, max-age=15552000
access-control-allow-origin: *
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fqc6frDO6rBA8oHhKlsRIgX9dIVdfIwB8idUfCXGnTXMm0kl9XvmROAo8lWwW5MLCe2Xado429u1oOQS4v6oqOjUtOkX3hHhhJrABNwj3PDSeuvfi0irlIJ0vImbBMB4hqlNDpIfKZyhRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a82e370b39-OSL
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-includes/js/jquery/ui/core.min.js
172.67.206.188200 OK 44 kB URL HTTP/2 www.hubcloudhosting.com/wp-includes/js/jquery/ui/core.min.js
IP 172.67.206.188:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash a5105e420c9b7ee4a150e42a004add48
bc379db96c09f2cd453b03f6c3fe9f6cc9f0b933
e1cbcbdcc808fd123181f839cb3b18798c6731df4045841984d102bcc6fb0f1c
GET /wp-includes/js/jquery/ui/core.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"53c0-6361ef01-93ef;gz"
last-modified: Wed, 02 Nov 2022 04:16:01 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=30sxsej8lcUXiow1spSTMQFkCx1UMbTYCE4vfZuCFsYDzt1uJIO%2Fl%2BUrmNfQ6IqyvZcg1mh2F8RBpdf7Zg9QODVERixFsEbkVCjXvTl2UrpZ%2BppCFoWPxBdBg0izRkF79KCZ54KK7kWT3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a88e820b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/uploads/2022/10/favicon-16x16-1.png
172.67.206.188200 OK 999 B URL HTTP/2 www.hubcloudhosting.com/wp-content/uploads/2022/10/favicon-16x16-1.png
IP 172.67.206.188:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash e499b25febe475f12bcc12abe8f4b220
4bf23603df6879d4b0834dfd7ed97ef733e8c8f3
5e2169ad2a6e87126e9986520ff8dd32c959efce36b40f71e699e22251e99f39
GET /wp-content/uploads/2022/10/favicon-16x16-1.png HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0; _ga_JPKTZMFY4F=GS1.1.1669350605.1.0.1669350605.0.0.0; _ga=GA1.1.1248126833.1669350606
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: image/png
content-length: 999
expires: Tue, 23 May 2023 12:35:53 GMT
etag: "3e7-633c29f9-2c6a62;;;"
last-modified: Tue, 04 Oct 2022 12:41:29 GMT
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57253
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3xzHGQnFTq0%2F8YFtzVgfJxq0%2Bqgs74jpKFEZw%2BO8dD%2B%2FIN7xEDwSEHMPsDOcQDeNly1CZG11Za5fZncy7QylxgFGM4yCswfZMxBLmRX%2FIOXPJcZCKTYlvVz440%2Fo4%2FcKIGwyZ%2Bn59pOSmQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7a5aa6f3e0b39-OSL
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/plugins/adrotate/library/jquery.adrotate.clicktracker.js
172.67.206.188200 OK 4.0 kB URL HTTP/2 www.hubcloudhosting.com/wp-content/plugins/adrotate/library/jquery.adrotate.clicktracker.js
IP 172.67.206.188:0
Hash e1bc8b33a440d6205a25f0424b3846c6
7230cd8beb6be301ce0bd0c04429e7cdfb76d257
401e4154a492e1c7b4dcb05b6d1f8097ed96e2b012e6d00b7d017dd7d18edfba
GET /wp-content/plugins/adrotate/library/jquery.adrotate.clicktracker.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"16d-637605fb-2327f8;gz"
last-modified: Thu, 17 Nov 2022 09:59:23 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=62lwT5%2FvG5wnpr1bG2DkicE70l%2B55T0zKjWukt1e78Jwvir8JuEz7AHIrNaMw%2Fq%2BxB4urp8KyW6Hou3DSyAtHiFAnRCskqMJErxu%2BDM9QkVQDwaw7ovM%2FokTwU4326n0Z%2FChlH49LBcl2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a84e480b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubcloudhosting.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 25 Nov 2022 02:41:08 GMT
expires: Fri, 25 Nov 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 6538
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/waypoint.js
172.67.206.188200 OK 4.0 kB URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/waypoint.js
IP 172.67.206.188:0
Hash 58354b995d10f882078db2a3fe4d3b2b
6995e5f4fed38dd807ad1861b242a663292cc05a
dddbe09e4acf44ef56a362f924895a639d6862980770c92469dc982c07b3e3f1
GET /wp-content/themes/viral-pro/js/waypoint.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"4df9-633c20c8-34572e;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h16IgrvgCONFg37KAB8ATJVNJhhGS6FTk9THiB8wfngsH2mMEASrbCdCw2BzEl2IOB%2Fn2TGuFGJVZGV%2FUlV7Fxu37CoOgFgb4QVEnHkGMewUDV%2BAYMaOGDkeS8iksxSqisEuW04V7FExyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a85e510b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/uploads/2022/10/logo-white.png
172.67.206.188200 OK 5.8 kB URL HTTP/2 www.hubcloudhosting.com/wp-content/uploads/2022/10/logo-white.png
IP 172.67.206.188:0
File type PNG image data, 200 x 69, 8-bit/color RGBA, non-interlaced\012- data
Hash a457e4c3b0760d5f516fb5ce07d567fc
ca36bdee47abdf23737c28aa4d18e2f1b5bafd81
b8daa906e59e92964444ac550f9bfecb9ff037b9ce1bc6db142470679ec768d9
GET /wp-content/uploads/2022/10/logo-white.png HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0; _ga_JPKTZMFY4F=GS1.1.1669350605.1.0.1669350605.0.0.0; _ga=GA1.2.1248126833.1669350606; _gid=GA1.2.85367862.1669350606; _gat_gtag_UA_192605557_5=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: image/png
content-length: 5821
expires: Tue, 23 May 2023 12:35:53 GMT
etag: "16bd-633c3013-2c6a2b;;;"
last-modified: Tue, 04 Oct 2022 13:07:31 GMT
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57253
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PMr%2Bbof21oUc4eIDDKlB2Ijp3Oo2CtX3XxWm4KYCyp6WnBRgqGABoBKoPEZPY5L%2By7CAjWzuNixVTpEjyxTxeSZ9osKKWmbwakovF3d5t8NsKQm4bUawAs6WSQmHCbKcL311u9KgtDZ5EA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7a5ab5f870b39-OSL
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/uploads/2022/10/wd1lrb9oeeo-e1664902254123.jpg
172.67.206.188200 OK 73 kB URL HTTP/2 www.hubcloudhosting.com/wp-content/uploads/2022/10/wd1lrb9oeeo-e1664902254123.jpg
IP 172.67.206.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 650x488, components 3\012- data
Hash 66b8d21e882c15a626f697bfa3607b08
a93a37176944cd2c8ea3e080bc9d508b7dfc9af3
4e733336d60acd2104810f00294cf367ed7f014d32a77a7e9fd47374e3bd623f
GET /wp-content/uploads/2022/10/wd1lrb9oeeo-e1664902254123.jpg HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0; _ga_JPKTZMFY4F=GS1.1.1669350605.1.0.1669350605.0.0.0; _ga=GA1.2.1248126833.1669350606; _gid=GA1.2.85367862.1669350606; _gat_gtag_UA_192605557_5=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: image/jpeg
content-length: 73181
expires: Tue, 23 May 2023 12:35:53 GMT
etag: "11ddd-633c646e-2c8614;;;"
last-modified: Tue, 04 Oct 2022 16:50:54 GMT
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57253
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rTW3gMOTm1Cg1yNgacG5gJgyMAqfS51QHJ7XcrzuBJr91AW%2F8hLMf8Z4E%2By7y49nuiLF4sLiIh%2BEQUCfNZDixloCUXwk3SG1Eo0frk2kCxnIaN7tRbvRPf8L5DZTNB1QQVUX17vcL4hujA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f7a5ab6f8a0b39-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=f6ee184e34f3cb04308d13dce6aa2110
142.250.74.10200 OK 168 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=f6ee184e34f3cb04308d13dce6aa2110
IP 142.250.74.10:0
Size 168 kB (168219 bytes)
Hash 0cde1e354fcd7ef632b9689d4945f0ea
c476ab7465154c9a2b68a796123d3ea75549fc99
27cef305e6edff98d50c59d20c5ab791c1c67006010d43b9323de2bef2dd3f0d
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=f6ee184e34f3cb04308d13dce6aa2110 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.hubcloudhosting.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 04:30:06 GMT
date: Fri, 25 Nov 2022 04:30:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
172.67.206.188200 OK 655 B URL HTTP/2 www.hubcloudhosting.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 172.67.206.188:0
File type ASCII text, with very long lines (1320)
Hash 3ac6034a33c25c180dd86ad1edb29b70
f0a755695f93c53ed34083bb5aa426de87d807a4
8852937726029fd70ef39364e4821c3105e7f437fe7e34d758b0ce01a1b7f15c
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0; _ga_JPKTZMFY4F=GS1.1.1669350605.1.0.1669350605.0.0.0; _ga=GA1.2.1248126833.1669350606; _gid=GA1.2.85367862.1669350606; _gat_gtag_UA_192605557_5=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:53 GMT
etag: W/"54f-6371181b-2b062b;gz"
last-modified: Sun, 13 Nov 2022 16:15:23 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57253
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jp6Flf52QKemnQTNrmlxQJdcFJzNo4d9KTwppVECj%2FayxrQFi1SDgxIuKziyuQ1GasrAaY%2Fe9wRM2ANtCvWf%2FHuwe5CL%2B%2BWt78gc1J4b7wp8u7Ft8cTYkz8JwPoSOiCGg2Z6Qy3DxrCKsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5ab6f900b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/superfish.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/superfish.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/superfish.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"2783-633c20c8-345720;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TaUHy9k8g0n14odhOfcTmbNfK0N4IH%2FDIuNehdpdO%2FZD8Mr736aHc5OSEgeWM6fvGl5LVq9ls7ldJIC7gEGYUeJe7Q987iwYuAD6yLFZnUtuiPlfWXI%2BRoKPyCZSaEyvDCmloQtfpOK%2FhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a84e4d0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js
IP 172.67.206.188:0
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"1ff9-637f31e3-2eea56;gz"
last-modified: Thu, 24 Nov 2022 08:57:07 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UNNIQgXpd7DLegtnU8MJb5906CPD%2BFUUWNCzzj28QUdqtYT%2F7xC514RzK%2F6wOtl7H3Pn3h0Cl8L1nJtDki%2BtIWoojfuvEAfnlqtpZwjlQ5KGKor8cHFReWSPHkADimN31QCm04TI%2BGsczg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a88e760b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js
IP 172.67.206.188:0
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"2fa6-6371181b-2b069d;gz"
last-modified: Sun, 13 Nov 2022 16:15:23 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PX%2FH6RuFArc5E6IzX1vTFMi2Qr7sE6raPr5rW6UpK8ohFrjCVcVcNYUSibZv%2FHoFMjLBLXMRcuNatErZFh5hl%2BpKkbF1XcRpjpatu8SVCVIqrUemVkVGDCY%2Fi9YHhqzxyp4%2F%2F1B5Ik0FoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a88e800b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
IP 172.67.206.188:0
Analyzer Verdict Alert fortinet Malware
GET /black-friday-best-web-hosting-deals/ HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dipaka-ead.com/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: text/html; charset=UTF-8
x-dns-prefetch-control: on
link: <https://www.hubcloudhosting.com/wp-json/>; rel="https://api.w.org/", <https://www.hubcloudhosting.com/wp-json/wp/v2/pages/2441>; rel="alternate"; type="application/json", <https://www.hubcloudhosting.com/?p=2441>; rel=shortlink
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1;mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
permissions-policy: geolocation=*
expect-ct: enforce, max-age=21600
x-permitted-cross-domain-policies: none
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-litespeed-cache: hit
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PPDIadbDPpRJU7Jz3Q4RtjRLJ7%2B1S%2FKx9zNz7AZxF0ShTucnh0Ex9FEdKPhZviP45k6bnd16%2F9ih4XqiAA8s5VAwotzpX1cZ3UuEVciBTdlRAJFB%2BG8qzkkH5z%2BoNu9%2FUlPDXJXlvSQANg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a74dfb0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/zp.php?cid=zrd49488236c7911ed94f40ad7278770597143e0e989aa4c779f8de0698128b627069244f3ed6462456b&source=lateritious-falcon&target=papa-gob-1w6yeo6rq8&keyword=europe+dedicated+servers%2Cnorway+dedicated+servers%2Cregional+dedicated+servers%2Clocal+dedicated+servers%2Ccustom+dedicated+servers&match=local+dedicated+servers&geo=NO&os=Windows&browser=Firefox&carrier=unknown&visit_cost=0.001100
172.67.206.188302 Found 0 B URL HTTP/2 www.hubcloudhosting.com/zp.php?cid=zrd49488236c7911ed94f40ad7278770597143e0e989aa4c779f8de0698128b627069244f3ed6462456b&source=lateritious-falcon&target=papa-gob-1w6yeo6rq8&keyword=europe+dedicated+servers%2Cnorway+dedicated+servers%2Cregional+dedicated+servers%2Clocal+dedicated+servers%2Ccustom+dedicated+servers&match=local+dedicated+servers&geo=NO&os=Windows&browser=Firefox&carrier=unknown&visit_cost=0.001100
IP 172.67.206.188:0
GET /zp.php?cid=zrd49488236c7911ed94f40ad7278770597143e0e989aa4c779f8de0698128b627069244f3ed6462456b&source=lateritious-falcon&target=papa-gob-1w6yeo6rq8&keyword=europe+dedicated+servers%2Cnorway+dedicated+servers%2Cregional+dedicated+servers%2Clocal+dedicated+servers%2Ccustom+dedicated+servers&match=local+dedicated+servers&geo=NO&os=Windows&browser=Firefox&carrier=unknown&visit_cost=0.001100 HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://dipaka-ead.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 25 Nov 2022 04:30:05 GMT
content-type: text/html; charset=UTF-8
location: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
x-frame-options: SAMEORIGIN
x-xss-protection: 1;mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=15552000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
permissions-policy: geolocation=*
expect-ct: enforce, max-age=21600
x-permitted-cross-domain-policies: none
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JiZmoB2VIc0Bc6mnCAOVRujfgC%2F2t2iKwQDm9A7oZ%2BHUDO19GpQWma5GtjR4SWBQqr5xiQLYN8yK38V8MNXhYO52mKFwzdsdfZBNdSnHqWE9QHrcn7Z8EhYzwR5QB%2BfL%2B6KcwcP44q5SSg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a29fe2fac8-OSL
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/plugins/smart-blocks/inc/assets/js/sb-script.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/plugins/smart-blocks/inc/assets/js/sb-script.js
IP 172.67.206.188:0
GET /wp-content/plugins/smart-blocks/inc/assets/js/sb-script.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"6aa-633c224d-fa278;gz"
last-modified: Tue, 04 Oct 2022 12:08:45 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=coBOYO7MEHjEwV3oB2%2FjYVDc%2FmgMH0j%2Fv8vnQff1M2ksReYL4nt8ipelg8mYf2JZHKE%2BSZftJxaHgIz0XexPp%2F7bgg%2BoC0DC%2BG%2Fi05%2BLDSz%2FRo%2FnVWdIkYx9YOSs3cfL3QYPErvJulVXUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a84e460b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/motio.min.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/motio.min.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/motio.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"47cc-633c20c8-345725;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=96LH9uxiFH7%2BkLTJrmRGG4B6FDHS6ZJVPozB8kMTo0PVC0LkV46RtOASfoZ9XrvzDE5t59Bc6Hli8wuYz4dwfIIQt49eM1M%2Bmeo542Uodos2a%2B4EbSR06y24goBiTLz7yRDcVK0cOhfviQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a85e560b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.photostream.min.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.photostream.min.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/jquery.photostream.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"3db-633c20c8-345732;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vodJnJHaxFuQYNMPBhiRDxFvgwWGWQzJsy8lJ4L2vo8zpTRSVllAec8evVAKnKUQRGOC2zWW4UWZH5QkBkr1MiDQTUSjRLRGSYYu1eMRo9S3z4tZaDjCri67JEWztHy9afNhiCEd7RBoOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a86e5d0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.countdown.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.countdown.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/jquery.countdown.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"2724-633c20c8-34572f;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nyZZuKdB1Tma5hk8eMLrIPaD3wjkC80DIfwDBXuDeI3o5i%2FuMIdi4%2BbJKejnegQFlzynmRjfvCg%2F6cbIpt6wTP91VHXCPID51hhI4H3K0ntbLxtMaTPW84ZyaGI8etIzLK7pM0OfQduudg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a86e5f0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.justifiedGallery.min.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.justifiedGallery.min.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/jquery.justifiedGallery.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"49d9-633c20c8-345730;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0pkJHQ%2BBauDO7WtGkr6cWm9Ipme73HBUIRBUsYqTBwqgzFsgrbXXYVybv3B%2BTNeKORF4MRmbfc8Wem9UvTufS8klfbvYCSaQA6rUmP1p%2FTozA3iS3VHXDqhjlfzGM6etdHLKi3HvUs1gyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a86e5e0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/isotope.pkgd.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/isotope.pkgd.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/isotope.pkgd.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"16505-633c20c8-345721;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=byrl565mMyJfAld%2FBu1j1ilmIVtcLD%2FZYrO91pv1Tm%2F98iIQtOS9h8ZNf%2FmlrgkcH%2Fw1DCKHMmRIcJUIYNttShwA3u8h7Rs0O271fAxq1q1eVS9LX1kIY0lV0M5xQouRqBqvfZmwXsGZ2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a84e4a0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-includes/js/jquery/jquery-migrate.min.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-includes/js/jquery/jquery-migrate.min.js
IP 172.67.206.188:0
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"2bd8-5fb4e3fe-93bf;gz"
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XVt6hnJYnEmqKisvJLJhb7%2BfvnYIB73QKhuCg4xOXF3IXpfJVj5%2B%2BfqzvtMgTSCw5WctHuAd1nOMD7IWfWhc1kruMZR41OPVeWlOBdptOI4sRxXTdXZhkwwRXJp%2BQcJiOSmaURZ%2F5DSYIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a82e3a0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-includes/js/jquery/jquery.min.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-includes/js/jquery/jquery.min.js
IP 172.67.206.188:0
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"15e54-6361ef01-93cf;gz"
last-modified: Wed, 02 Nov 2022 04:16:01 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JpABaBu22QIcd9veAJwdC80P%2Fu4MzgD%2FxYww4mmL%2F0DmRHkkuImaUwuL9kTD%2BDQaEfAkmQXtcKhLdFMc4nBWyK1fvg3GrTelttWozeRM9akhIP%2Flafe7cp4%2BGybrJkkXZCT35OMImvKRnw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a82e390b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.mCustomScrollbar.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.mCustomScrollbar.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/jquery.mCustomScrollbar.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"b1a7-633c20c8-345729;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IUCdWLACGWinVmiGs85HBIq29M3q2Z6yCPBoIQ2xJxsExaM726e4KO%2B31fUyHEX7zarkQbwlXLpaO8QI97GraN7pDuvAyWutQXuR7IKHAmITcOuCaIIcUHg71fb1onAN%2BlJ%2B7XbNCZySeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a85e580b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/plugins/smart-blocks/inc/assets/js/owl.carousel.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/plugins/smart-blocks/inc/assets/js/owl.carousel.js
IP 172.67.206.188:0
GET /wp-content/plugins/smart-blocks/inc/assets/js/owl.carousel.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"15f88-633c224d-fa277;gz"
last-modified: Tue, 04 Oct 2022 12:08:45 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kN%2F7SQOguUBYjEf%2Ft9%2BUDhXXKzoC6of6hAe7wKR5Mo2WwlN5M0FeghDNYiDI1kaZ%2BgwNIvzCeJfqXEWpFQ2kMebSP2IZ38mCtcSmQVu1n%2FKgWTHrDNi1MwAh4A9BVgeVkHeJRqJiOjerhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a84e450b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/hoverintent.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/hoverintent.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/hoverintent.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"1c59-633c20c8-345724;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YnjMmmXX%2B0EMytVPRn1fiQhRYFjoUl%2FAJHCWjiduGDl%2BR4YGTtwfObDnDmjPwbbD38phk3%2BCXYLo5MbZho619aFW2ldZWgcWnFnCvlVUOGwHcuG%2BUy44XpI3InwMy2GnoqVKzNp0LCKtiA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a84e4c0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/inc/elements/inc/blocks/assets/jquery.waypoints.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/inc/elements/inc/blocks/assets/jquery.waypoints.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/inc/elements/inc/blocks/assets/jquery.waypoints.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"4652-633c20c7-3454bc;gz"
last-modified: Tue, 04 Oct 2022 12:02:15 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NBeRTQxdx6ezznaCQPU%2FHKKFjrzxUaBJivTKjwZFZmICslAJWJu%2BJGwp7bYeT61opkO6AKJhjb4yuFbiRHnl9TWIJ8NTIc0TNYj9%2ByALuQr5Eb33U3gkSl0EGb4GD9QGcuktfHGgilA8NA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a89e8b0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
4.bp.blogspot.com/_v2lkGN6klbI/S0eJkTo9JLI/AAAAAAAAAfg/vlPAfFjaxzg/S779/header1.JPG
142.250.74.161200 OK 0 B URL HTTP/1.1 4.bp.blogspot.com/_v2lkGN6klbI/S0eJkTo9JLI/AAAAAAAAAfg/vlPAfFjaxzg/S779/header1.JPG
IP 142.250.74.161:0
GET /_v2lkGN6klbI/S0eJkTo9JLI/AAAAAAAAAfg/vlPAfFjaxzg/S779/header1.JPG HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://hungryforhungry.blogspot.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="header1.JPG"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 37247
X-XSS-Protection: 0
Date: Fri, 25 Nov 2022 04:30:00 GMT
Expires: Thu, 24 Nov 2022 10:47:22 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v265"
Content-Type: image/jpeg
Age: 0
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.stellar.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.stellar.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/jquery.stellar.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"78af-633c20c8-345723;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3Rf%2B5S0NbckpMKtLVz7J4mRzpEt2gWNGbWxvExZxN3LH0APkkH%2FH0pu8wAIvo8sANkUvjm84nUTlLk9VvlB1Jm%2BH4XkcwBLG2cCYZSOmB%2BUTT4ijS3u4yn9dnf3MD0vAM1rin1XrROholA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a83e430b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/slick.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/slick.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/slick.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"14e4c-633c20c8-34572c;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1CdvQ0YZPDoOv72kS%2BQr3oUraSqslvJirKtcVCA6Vp2eJc%2FHxUkQQqURfGXa4dvCwejJMwmlH5Itts9iOOZgrB9SKDLvgOMy0EwZRCTX6pgAub3WAtidBvgTiEntg0oUtFuOIVJmsDy%2Bjw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a85e570b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/custom.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/custom.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/custom.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"69fc-633c20c8-34572d;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7uzp9CRytXCOSVbq%2F2m7hSwTp4NDsvn1IcqpLuD1QsO55UfVshpJJQRUMdyKfS3P4POgFJ3hvIqj0O8GkGUfmcXQRXhvqC1XcpqmxCUM333RmzuWOLe85ViY3N1kMoEHD0jcAsi6ejv%2FwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a87e730b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js
IP 172.67.206.188:0
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"135d-6371181b-2b0622;gz"
last-modified: Sun, 13 Nov 2022 16:15:23 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Znr6Sj6CeBGaSDJpmY4d%2Fy4TfCZk0LRwaWdSQ7Tv7nODCovNomDZ%2FKdPDfPMJaewqGj7mbY00BFwUIkLL3muqhIhqhYZ3%2ByajFetKSwClNA332g%2BepHQ1r3TNetVkqcFdg8%2FMsY6edE%2FdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a88e7a0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-includes/js/imagesloaded.min.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-includes/js/imagesloaded.min.js
IP 172.67.206.188:0
GET /wp-includes/js/imagesloaded.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"15fd-5ee520a7-215b78;gz"
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JVm1YJf3S74vuwvbY5Jr6kmqBAUvek8ji04rGdhXv1i4bwv3kKGnSxXcHBbdXwKfaO4ZYp8S0BHz7d8L3zx1OWGBVGwphUFMocUnC5FPELn3NS1yB3HrIiSKrZtEMAV5KPW4%2BMLHjSVxqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a82e3c0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.espy.min.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.espy.min.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/jquery.espy.min.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"a3f-633c20c8-345728;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iAJjqT5c3FIwMacgkwxkFEcJTz9pKU6D3qxHhQ%2B4M8kksWcYTAWXaJDRAhZ32VBDJJPbje6YnUoE2rdovQgDyqQCFL0sKuatXzKYG2wlXWuFTBim3rIHKcmqfMA%2Bi0Lo%2F%2FBakt7rGJw7Rw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a85e520b39-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.accordion.js
172.67.206.188200 OK 0 B URL HTTP/2 www.hubcloudhosting.com/wp-content/themes/viral-pro/js/jquery.accordion.js
IP 172.67.206.188:0
GET /wp-content/themes/viral-pro/js/jquery.accordion.js HTTP/1.1
Host: www.hubcloudhosting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.hubcloudhosting.com/black-friday-best-web-hosting-deals/
Connection: keep-alive
Cookie: _lscache_vary=3eea1ff7b7e01370080273418a1e44e0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 25 Nov 2022 04:30:06 GMT
content-type: application/x-javascript
expires: Tue, 23 May 2023 12:35:52 GMT
etag: W/"2711-633c20c8-345731;gz"
last-modified: Tue, 04 Oct 2022 12:02:16 GMT
vary: Accept-Encoding
cache-control: public, max-age=15552000
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 57254
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bQk5txHcPIgga%2BjVlm8EjZglv2BHowBoGJhL1DXG3y%2FgJDZmS8hQdIzsgnVI%2FDovjSSff2rzGWySbPV9vURo5d85faodgB2SdHl4h9ygyQGjXqmwrE%2FU5orhNVu3ML%2BzoI56BLn3X0xWKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f7a5a86e5c0b39-OSL
content-encoding: br
X-Firefox-Spdy: h2