r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3598
Expires: Sat, 04 Feb 2023 05:35:17 GMT
Date: Sat, 04 Feb 2023 04:35:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16503
Expires: Sat, 04 Feb 2023 09:10:22 GMT
Date: Sat, 04 Feb 2023 04:35:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18345
Expires: Sat, 04 Feb 2023 09:41:04 GMT
Date: Sat, 04 Feb 2023 04:35:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 03:43:35 GMT
content-type: application/json
age: 3104
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Z8YW5Len4DptuW6jaeWBqyFUU+uvLXGnNyzPIChi2NZHBQ/62tpcqInBZNUtor5R/84Z7Wj5xAA=
x-amz-request-id: D976T77VNEWZZFQA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 03:52:41 GMT
age: 2558
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
publishersagency.com/lecetem.zip
106.0.62.69301 Moved Permanently 0 B URL HTTP/1.1 publishersagency.com/lecetem.zip
IP 106.0.62.69:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /lecetem.zip HTTP/1.1
Host: publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.2.34
location: https://www.publishersagency.com/index.php?
content-type: text/html; charset=utf-8
content-length: 0
date: Sat, 04 Feb 2023 04:35:19 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 04:35:19 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 04:07:19 GMT
age: 1680
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4284
Expires: Sat, 04 Feb 2023 05:46:43 GMT
Date: Sat, 04 Feb 2023 04:35:19 GMT
Connection: keep-alive
push.services.mozilla.com/
52.38.227.80101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.227.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: nhvDPYoKHxeGX8b0UwPYUQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HTXrJPjw3UMFrC9GOQMCvXOels4=
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:35:20 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 18412
expires: Thu, 25 Jan 2024 04:35:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SpguykcOc6nij06ZJaDNBxSC%2FmA6ZDZgFj22k5%2FtLndFNNPbiuTZ35dalsGn6hq68wGxBwMYYKTk8fz7UCTrrTSUFlwhuLhs%2FLXxZUILs1i9EI6xt3Ck9C2hNqoIcg0y4NomJgPu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7940b2f6c967b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
142.250.74.74200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP 142.250.74.74:0
File type ASCII text, with very long lines (32058)
Hash fc3fc31e5e7c0933dc18e562c1c071bf
a44c31323f6bd29e583cc585036e6eb39f7014a6
ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 19:02:59 GMT
expires: Tue, 30 Jan 2024 19:02:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 379941
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c181c51a9326d56e60915a792c306c2c
de1cc0ce1384905e65a9fa9575743091d785e528
b74bc74e2920124b3288a980f9a7b59e3450ba63f2333027440cd6ebbdfdbf8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3210
Cache-Control: max-age=101604
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:20 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:48:44 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/all.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash b2a6e6528849a04232343a40cbbb0b92
844ab231e4d3d7f76f60f66175b1e23e009db722
ae19ff3193386cef103ee307418639be70d8f42069afa1785a98d380bc967295
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 21adeacfe974383da48046aa63180f43
etag: "4b237647cde3de8d99e891291a2c8f92"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 04 Feb 2023 04:44:21 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: sqbmUohJoEIyNDpAy7sLkg==
x-fb-debug: gKZHnrJrcjB6AEUTRZCDYCABzdlQmTU1aezW1F2NfNobBtEzSWx6Tt9Km2FGToHmSzfUQpNL6sUlDsngRSqPUw==
content-length: 1687
x-fb-trip-id: 1679558926
date: Sat, 04 Feb 2023 04:35:20 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3e050cf67675c3c19014a74517e3747
9931fd6a416e220e15ef5eccad6d0cb12edf3995
8411e23b7bfeba91b6252f15de6ed18b8cff1f752af0efc4f5429b54fccb0da4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3210
Cache-Control: max-age=101604
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:20 GMT
Etag: "63dcbde2-1d7"
Expires: Sun, 05 Feb 2023 08:48:44 GMT
Last-Modified: Fri, 03 Feb 2023 07:55:14 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
www.publishersagency.com/themes/theme_koparion1/assets/cache/theme-8d785b449.css
106.0.62.69200 OK 94 kB URL HTTP/2 www.publishersagency.com/themes/theme_koparion1/assets/cache/theme-8d785b449.css
IP 106.0.62.69:0
File type ASCII text, with very long lines (64581)
Hash 4497f07d6628a653d4deab68fa0f1805
d5e98adb556684b5f5b1bf247da949edb0d2a638
025066fd1e5fe73f0f16926ef811d5ff639a88a1a73809deb6e4b9be41144f03
GET /themes/theme_koparion1/assets/cache/theme-8d785b449.css HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:20 GMT
content-type: text/css
last-modified: Sat, 29 Oct 2022 11:25:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 94002
date: Sat, 04 Feb 2023 04:35:20 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/index.php?
106.0.62.69200 OK 31 kB URL HTTP/2 www.publishersagency.com/index.php?
IP 106.0.62.69:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (16162)
Hash cd94cc654d170d90dcb18cb8b9b566db
6687fca716386598515099c95e99438dd135eeb4
a26e68ad179fb9feae0e086264e68228d0ad66b21de48a92287b7c1ffe359fa8
Analyzer Verdict Alert fortinet Phishing
GET /index.php? HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
x-frame-options: SAMEORIGIN
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; path=/; secure
PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200740da488c6286f6514dd7c16e29936b3f089167d0ed17b2bab45b24c9b8148bbdf62d268c8c18dacfd41d50b4b9a5a40f25a420b3eba6125e7183f651493a434a610c17fac8b79e95d80fd952c81d32c09bfa57fd24082f34b0b5865698854c1ad119d1a0528199140bbd3f4cffdf4feb87d19830f7de79fb52357c049f27e73fd2a0088a23b703cd4a6a942d38dd00b36596d69e1668e4646b4d8; expires=Thu, 27-Jul-2028 04:35:19 GMT; Max-Age=172800000; path=/; domain=www.publishersagency.com; secure; HttpOnly
PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd; expires=Thu, 27-Jul-2028 04:35:19 GMT; Max-Age=172799999; path=/; domain=www.publishersagency.com; secure; HttpOnly
content-type: text/html; charset=utf-8
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 04:35:20 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&subset=devanagari,latin-ext
142.250.74.106200 OK 1.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&subset=devanagari,latin-ext
IP 142.250.74.106:0
Hash a9b909d5f7225faa4dbe553d226247cb
5efaef4310663044f2cccd97ba60fdd05b5c0be1
0ff146fecb30f06e515223538cb062c34e5b9700bcf7c7302778544cf6e42772
GET /css?family=Poppins:100,100i,200,200i,300,300i,400,400i,500,500i,600,600i,700,700i,800,800i,900,900i&subset=devanagari,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 04:35:20 GMT
date: Sat, 04 Feb 2023 04:35:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6126
Expires: Sat, 04 Feb 2023 06:17:27 GMT
Date: Sat, 04 Feb 2023 04:35:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd573e5ee-5860-4f00-9316-68ffbc966d73.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd573e5ee-5860-4f00-9316-68ffbc966d73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd5f43772dbf673858972c77e1e630d4
94c0a24c5d47a636e45a3694c694815091aee213
0b6c34a934eab27c326dab6c8b90e78e710a948ac7c4bf13ba907b5cda738c3e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd573e5ee-5860-4f00-9316-68ffbc966d73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7692
x-amzn-requestid: 4a8d5bcb-b1a0-4015-9fb1-c00f613de8e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEEH5JoAMF0Ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8080-703ca5a95c06465c080a1c7d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z04SY01AfS5-CIziSRsJ5Sg117g_tPumLgllrBpj6afnbJH3Ne1sTw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:31 GMT
etag: "94c0a24c5d47a636e45a3694c694815091aee213"
content-type: image/jpeg
age: 23090
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65cd12302c9ca5468dbc9a98155970e0
a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1
8463155faca74f13ec4500fed98289d8bfbdc4a989d1cb7580736018eadf1000
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e245a51-5c03-4b84-b42a-29fa3a7806e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7992
x-amzn-requestid: ba4f95d9-6081-4b34-955c-bbe8e7b2335c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEjGsdIAMF84w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8083-7666baa66ccdec9b5fec8736;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A3c6sSs_b8KkREPa26a8X9NTEZpHGDjElR9hT-NXwg6dYpeuRNZXfA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
etag: "a0c63213c3021e40f8ea54f2da6a5c165ed5cfd1"
content-type: image/jpeg
age: 23100
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F549d8f22-b421-4fad-867d-64232284ffaf.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F549d8f22-b421-4fad-867d-64232284ffaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9409d3b4b0f8f973d9acab2b744d8dd0
15431d807c3fe818a9b363f1c725c1860e939799
ddde1e1c8faef040370396ccda3a5090e64b63a1bddbe642c128d66849c1caa4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F549d8f22-b421-4fad-867d-64232284ffaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8148
x-amzn-requestid: a9d4782b-b24e-4b72-9994-b9efa680c2fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEOHxIoAMFvUg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8081-1d17982c4fe45adf0704f4c4;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VkajXQ1KEbO3T3sVDkH6XLx7pKr5cnHC2QOsR1EvKa7-8WPQrVFbXw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:21 GMT
etag: "15431d807c3fe818a9b363f1c725c1860e939799"
content-type: image/jpeg
age: 23100
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9500
x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9QEA1IAMF3Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:30:36 GMT
age: 21885
etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cf80667db0c35c9c6139eca4ba5d12fd
4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590
d63e69f4b6ea16333d242bf33d4f02a4a6c96a739ca018d86afc5741d85b774d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4c16006-34b0-45cb-bb9f-46fe6dd44e3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13065
x-amzn-requestid: 54c06759-6fab-455c-be34-496ee42a2580
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSZLQEqroAMFyWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d57b-2237358a5cc22b8003af1852;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:08:43 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oc3NhvAmcrO3msFYF2ITsEpq8a2wsOLkXtmZxRQpmse84yml0l9PNA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:46:57 GMT
age: 24504
etag: "4c4cfdc2463e8704a7bf8e1477c43b6adf7c7590"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca17cfb9-5ad6-429a-9791-23b12f01c467.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca17cfb9-5ad6-429a-9791-23b12f01c467.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bee4ee9542d0c7a9cc8402d60e7cca2
95b8debca975255d2a0a60c5c6dde74040bd2f88
a6c63af682c3d4b11e5af0aa6b72921b8acf72626fb765a60e96d491d2a04c70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca17cfb9-5ad6-429a-9791-23b12f01c467.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8148
x-amzn-requestid: a4cf6e4a-df1f-48c3-ae73-009f5becf3ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyEEtHTroAMFwGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8084-3ae929a84d43c3ea0336fcd8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:45:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: adu72wkRyshUviu2Qpk8rLCyN1kh46LIVQw7K4atunuEHQuFf62VXw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:12:49 GMT
age: 22952
etag: "95b8debca975255d2a0a60c5c6dde74040bd2f88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-5TBT3CK
142.250.74.168200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5TBT3CK
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash cbb893f7a73fab0f0f9eb7ff7a6e7629
d017463271108f144086f01b3eea05b93e25afb8
738bb13e84d14cb1fe54a7bd392435b9665d4f33fe132f2993ae8436229c31ab
GET /gtm.js?id=GTM-5TBT3CK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 Feb 2023 04:35:21 GMT
expires: Sat, 04 Feb 2023 04:35:21 GMT
cache-control: private, max-age=900
last-modified: Sat, 04 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38033
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i&subset=cyrillic,cyrillic-ext,greek,greek-ext,latin-ext,vietnamese
142.250.74.106200 OK 46 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i&subset=cyrillic,cyrillic-ext,greek,greek-ext,latin-ext,vietnamese
IP 142.250.74.106:0
Hash b8644e45616164e12e1da5ff3ca0a6f8
1af384789baf7f7b0d006e734e7929cc6f7dd61a
8edf2de252dd25c81885921aebd36f961cc13a2c9807c45e09ae0ff3c8e9848e
GET /css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i&subset=cyrillic,cyrillic-ext,greek,greek-ext,latin-ext,vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 04:35:20 GMT
date: Sat, 04 Feb 2023 04:35:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/rufina/v13/Yq6V-LyURyLy-aKCpB5l.woff2
142.250.74.67200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/rufina/v13/Yq6V-LyURyLy-aKCpB5l.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 12860, version 1.0\012- data
Hash 3126bf0305ed41842246c38788cf4a88
ab5a6f11c50bc0b76c54526199394baaea5cacbc
59864f2329405ef7d6948fe3e99745c971702cd2954469101e85f380f7bcb5aa
GET /s/rufina/v13/Yq6V-LyURyLy-aKCpB5l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.publishersagency.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 04:47:11 GMT
expires: Tue, 30 Jan 2024 04:47:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:35:51 GMT
content-type: font/woff2
age: 431290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
104.17.24.14200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.publishersagency.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 04:35:21 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 793251
expires: Thu, 25 Jan 2024 04:35:21 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FDUYFgxQbiy8OP6f3GyyLIoPbA%2FjDWlecYDLFSPrMrOb0azY3TRjKcBtehvub6ZHPapWeu0BGb67UOJLfhO2mGGlMf6b42HWxQ8hOm%2FjLVabw3Lk6Icb4FhfFWV4AcwBiFuPSsKg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7940b2f99bb9b509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7d482750bf7fdfcaa38c0efd583ef4dc
a4f68a124e4be130bc838e70f23fd4c6d2f4ef2d
5e6f1cadf4bc425664bb26fa2b384cf13900461b689c77d0916b1d2edd41337c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/rufina/v13/Yq6W-LyURyLy-aKKHztwu8Zf.woff2
142.250.74.67200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/rufina/v13/Yq6W-LyURyLy-aKKHztwu8Zf.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 12996, version 1.0\012- data
Hash 5c102b147a92949db12d223580566363
2eef28a22882bb2fb0831df785c336c646bdcc3e
40ce250c680d3eca69e73404f607df363c45b0c30f53a5eea51b9f98734550d6
GET /s/rufina/v13/Yq6W-LyURyLy-aKKHztwu8Zf.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.publishersagency.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12996
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Feb 2023 02:51:51 GMT
expires: Sat, 03 Feb 2024 02:51:51 GMT
cache-control: public, max-age=31536000
age: 92610
last-modified: Wed, 27 Apr 2022 17:01:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.publishersagency.com/themes/theme_koparion1/assets/cache/bottom-b4e3ef448.js
106.0.62.69200 OK 183 kB URL HTTP/2 www.publishersagency.com/themes/theme_koparion1/assets/cache/bottom-b4e3ef448.js
IP 106.0.62.69:0
File type ASCII text, with very long lines (59450)
Size 183 kB (183207 bytes)
Hash 12448c419f38aca40b3eb8937cb7f711
1ec0b9e1a53a304f6c7efbd9fb41614476d0f4d8
cbd10540004ca87832759c2a205911596a184c21d6a186cdba78b2702e97b6a6
Analyzer Verdict Alert fortinet Phishing
GET /themes/theme_koparion1/assets/cache/bottom-b4e3ef448.js HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:20 GMT
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 11:25:15 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 183207
date: Sat, 04 Feb 2023 04:35:20 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/publishersagencycom-logo-1635753635.webp
106.0.62.69200 OK 8.1 kB URL HTTP/2 www.publishersagency.com/img/publishersagencycom-logo-1635753635.webp
IP 106.0.62.69:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 64e30f08d718ac2fff6bac0a45b8aff2
3ea33a570757c2b204f8d3b81697a4e24ee660b0
823de47816f41e9a09f946873a087136d68eca6fb23972d44c6e3dd68cb31d97
Analyzer Verdict Alert fortinet Phishing
GET /img/publishersagencycom-logo-1635753635.webp HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 04:35:20 GMT
content-type: image/webp
last-modified: Sun, 07 Nov 2021 09:34:37 GMT
accept-ranges: bytes
content-length: 8120
date: Sat, 04 Feb 2023 04:35:20 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/modules/spmgsnipreview/views/img/star-active-yellow.png
106.0.62.69200 OK 758 B URL HTTP/2 www.publishersagency.com/modules/spmgsnipreview/views/img/star-active-yellow.png
IP 106.0.62.69:0
File type PNG image data, 17 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash df52470516d6d80b200ab57f21766e93
e8fda8fd78976fbdba242864a7afb37a9b7ddfb5
8d458d7e41223d7d9a066afdea563c635d165bb9da8ae0cf2f48ad47b206a4a3
GET /modules/spmgsnipreview/views/img/star-active-yellow.png HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:20 GMT
content-type: image/png
last-modified: Tue, 20 Jul 2021 07:35:52 GMT
accept-ranges: bytes
content-length: 758
date: Sat, 04 Feb 2023 04:35:20 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/cms/gift-card.png
106.0.62.69200 OK 47 kB URL HTTP/2 www.publishersagency.com/img/cms/gift-card.png
IP 106.0.62.69:0
File type PNG image data, 344 x 169, 8-bit/color RGBA, non-interlaced\012- data
Hash a6cf545a0f607f4f2e2ae74b644d8015
b723db6b73f54617ae376eb7d4b16d822857873f
00d45aa11d10db79d64a3814a36cdcfda0c673102ac47e1bf0230e76127da073
GET /img/cms/gift-card.png HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:20 GMT
content-type: image/png
last-modified: Tue, 16 Nov 2021 18:59:03 GMT
accept-ranges: bytes
content-length: 47173
date: Sat, 04 Feb 2023 04:35:20 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/modules/spmgsnipreview/views/img/star-noactive-yellow.png
106.0.62.69200 OK 745 B URL HTTP/2 www.publishersagency.com/modules/spmgsnipreview/views/img/star-noactive-yellow.png
IP 106.0.62.69:0
File type PNG image data, 17 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash 91ad82c1c1f68b42df05ff8e5119a9f6
f892271145600140fc38820164abf9d322b02d83
8f781bf7e9e7822078fde6cb0c011a5382e2ccf5a99ed9a11b57dacbee1b636a
GET /modules/spmgsnipreview/views/img/star-noactive-yellow.png HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/png
last-modified: Tue, 20 Jul 2021 07:36:15 GMT
accept-ranges: bytes
content-length: 745
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/2/3/2/9/2329-small_default.jpg
106.0.62.69200 OK 6.8 kB URL HTTP/2 www.publishersagency.com/img/p/2/3/2/9/2329-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 42624fb0ad063a897f37d68538d556fd
91d054e4bbf510875bafbfe07f6dc09039714984
9371fe40053b0c1e9f19b2e21e571a5286e97cd98dfdaeac84e6db5f068ce14b
GET /img/p/2/3/2/9/2329-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:27 GMT
accept-ranges: bytes
content-length: 6775
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/3/1/0/8/3108-small_default.jpg
106.0.62.69200 OK 6.2 kB URL HTTP/2 www.publishersagency.com/img/p/3/1/0/8/3108-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash d0c415ef7100fe3a49dcfcc5f3ef6ff5
755cf851b080bcd2d985dc3618b82d0a8c967ce9
aee7316580e1561737c067cb8cfb866b409f0e3a40bfec2f06ab35d51114e5db
GET /img/p/3/1/0/8/3108-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:32 GMT
accept-ranges: bytes
content-length: 6151
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/2/5/7/8/2578-small_default.jpg
106.0.62.69200 OK 5.7 kB URL HTTP/2 www.publishersagency.com/img/p/2/5/7/8/2578-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 6c0a6939471c23e29ca211a3885f8361
9a086c74a04f2222f085cfe6ef24c61848b7b57a
1a2569f13fd8818a1021dca82f1a089b3cf179a432714a5d1a516289474bf73f
GET /img/p/2/5/7/8/2578-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:29 GMT
accept-ranges: bytes
content-length: 5708
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/2/2/7/6/2276-small_default.jpg
106.0.62.69200 OK 6.9 kB URL HTTP/2 www.publishersagency.com/img/p/2/2/7/6/2276-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 9b05eca7916e3d37583bbb69990efe21
7e40c8c79c6766bc70cf8d3ece07eb4bb4154f43
c9ff8fd099b6ec54cd670b13214c9ae158a639ac5474727768d37c70c5a8dacd
GET /img/p/2/2/7/6/2276-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:27 GMT
accept-ranges: bytes
content-length: 6910
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/1/8/0/8/1808-small_default.jpg
106.0.62.69200 OK 6.1 kB URL HTTP/2 www.publishersagency.com/img/p/1/8/0/8/1808-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 3f4b0edf161d39a65b7ae916496522a7
c2b37270ed5351d6dc8bd620a4a7db0074495d35
b231572331ab9b3aaef21dacfd57abaa802985dbb3f3b956330457f705740aae
GET /img/p/1/8/0/8/1808-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:24 GMT
accept-ranges: bytes
content-length: 6109
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/3/2/6/3/3263-small_default.jpg
106.0.62.69200 OK 6.6 kB URL HTTP/2 www.publishersagency.com/img/p/3/2/6/3/3263-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 2ff41ee6cadb26eedb927765fde81e4d
97a96af3e2b1262c08362cafdd8c1637e94a7bbc
1ebbc9beeb98c3a47eb4cfea575959cb6f3a2ec32c655d7ea316f6a7560d6137
GET /img/p/3/2/6/3/3263-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:34 GMT
accept-ranges: bytes
content-length: 6576
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/1/7/7/0/1770-small_default.jpg
106.0.62.69200 OK 5.8 kB URL HTTP/2 www.publishersagency.com/img/p/1/7/7/0/1770-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 44f3dc15db0ab4ee437147198bc7db5d
1138ed852857ef25bcc27f3bd1bf27b7b9aab6dd
5a47394362d6077ce17542768e2cbb16e4a350526e0a50905f24d88fcec156f9
GET /img/p/1/7/7/0/1770-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:24 GMT
accept-ranges: bytes
content-length: 5762
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/3/0/9/9/3099-small_default.jpg
106.0.62.69200 OK 5.9 kB URL HTTP/2 www.publishersagency.com/img/p/3/0/9/9/3099-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 79e27d16c22aa07c3b58c2b46bb085e6
b60915e84746e05498f130676835fcd59a5800e9
970b29badbbdc95639ebf87fe2ab47cba018d4b54201d3bf96fc15092b6ab9a8
GET /img/p/3/0/9/9/3099-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:32 GMT
accept-ranges: bytes
content-length: 5936
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/2/0/9/0/2090-small_default.jpg
106.0.62.69200 OK 6.9 kB URL HTTP/2 www.publishersagency.com/img/p/2/0/9/0/2090-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 73a41e8e10deb0c57edbb08fd053d2e8
3bac086e3bce38aba34f64093696ea801688011c
49606065456e31e472503af0e408122671f9c60c8e2821f0ca40909112ead889
GET /img/p/2/0/9/0/2090-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:26 GMT
accept-ranges: bytes
content-length: 6867
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/2/9/3/0/2930-small_default.jpg
106.0.62.69200 OK 6.8 kB URL HTTP/2 www.publishersagency.com/img/p/2/9/3/0/2930-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 1fbf1765b5e8b35bf2823a5913e45b35
140092138197b6457e7fbcfd6d58d4892e8b6d87
e5c1764787db424edc06c0fce301afc07f447ab8a8e3dd9a6a8ca52a9511e59e
GET /img/p/2/9/3/0/2930-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:31 GMT
accept-ranges: bytes
content-length: 6820
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/1/8/3/4/1834-small_default.jpg
106.0.62.69200 OK 5.0 kB URL HTTP/2 www.publishersagency.com/img/p/1/8/3/4/1834-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 01f8cb386ab3ce2da0b96a837f470087
b462c3f5e80eae99494cb0ae51a30aa0ac7e1a78
2e958ccd66da6c964ff5cc5ec739aaf569d0973f2223033a6d53c0a3e98ad42c
GET /img/p/1/8/3/4/1834-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:24 GMT
accept-ranges: bytes
content-length: 5013
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/1/7/8/9/1789-small_default.jpg
106.0.62.69200 OK 6.7 kB URL HTTP/2 www.publishersagency.com/img/p/1/7/8/9/1789-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash bd8519686e3774f01c547f8a88a1fcde
113a1722c73fbc55f7911a52d3b0a076934460dc
89556ec3997325d36c38ff877a3dd9c3d2c05eb13cb34fc1771a0e483ff99598
GET /img/p/1/7/8/9/1789-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:24 GMT
accept-ranges: bytes
content-length: 6666
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/2/9/4/6/2946-small_default.jpg
106.0.62.69200 OK 6.2 kB URL HTTP/2 www.publishersagency.com/img/p/2/9/4/6/2946-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash b58e14149f8bdc5d3517cf6a3ced4faf
46cc6cfda190e4ea6954a7112f706a42a94ce375
1f72cde500cc411d63b51eb3dbb342f12b7b3a322a887e60d720eb6e54698244
GET /img/p/2/9/4/6/2946-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:31 GMT
accept-ranges: bytes
content-length: 6238
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/1/9/7/4/1974-small_default.jpg
106.0.62.69200 OK 5.3 kB URL HTTP/2 www.publishersagency.com/img/p/1/9/7/4/1974-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 1d7016bd5915998403be0bbfc6ae9cee
50e435db00ecbd51380f2ee567962c5070142c42
b1447e78d8fb396062712a150accb5550df39ad6792c3e82b2d3b1a0a0ea8b27
GET /img/p/1/9/7/4/1974-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:25 GMT
accept-ranges: bytes
content-length: 5292
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/2/2/0/5/2205-small_default.jpg
106.0.62.69200 OK 6.6 kB URL HTTP/2 www.publishersagency.com/img/p/2/2/0/5/2205-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash d65398d4ba373f84d8c5d274b5ca4f92
b7158a773df20f0449bac90c490350b3d9d53da7
3e5020cc06022c50b87697cc920ca4481932e3c4965e943f2e01975a6156f87e
GET /img/p/2/2/0/5/2205-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:27 GMT
accept-ranges: bytes
content-length: 6636
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/1/7/2/6/1726-small_default.jpg
106.0.62.69200 OK 5.8 kB URL HTTP/2 www.publishersagency.com/img/p/1/7/2/6/1726-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 1fa92b123fc691ee1bde997185bcde4e
4d284b70a4f2954b4c694432c7d85ce93ff57d5f
13549745f14dd924b01240f43d003d9fb355b8b2ef1a44070dfc31f3ad93cd10
GET /img/p/1/7/2/6/1726-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:24 GMT
accept-ranges: bytes
content-length: 5755
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/2/1/1/9/2119-small_default.jpg
106.0.62.69200 OK 4.8 kB URL HTTP/2 www.publishersagency.com/img/p/2/1/1/9/2119-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash 3b78c71556f1dc7758be5513a7483844
fe059f1b533cad269e78aea447ae33a66b43f4a8
3f43e852d335052cd4919c4dd465020554d9f0a82cad130bfa2acbce6b9c1968
GET /img/p/2/1/1/9/2119-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:26 GMT
accept-ranges: bytes
content-length: 4825
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/img/p/1/4/7/9/1479-small_default.jpg
106.0.62.69200 OK 4.8 kB URL HTTP/2 www.publishersagency.com/img/p/1/4/7/9/1479-small_default.jpg
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 98x98, components 3\012- data
Hash a07e970337f36e63b985c7138823c249
cbdd1dfb6b16a763cb115dbdf2b1d366d904ff47
d80512236ef0cfe993a31c352a4515d88d0ea5ad7c16044eaadbfbe0a9f271dd
GET /img/p/1/4/7/9/1479-small_default.jpg HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/jpeg
last-modified: Thu, 15 Jul 2021 11:34:22 GMT
accept-ranges: bytes
content-length: 4769
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/modules/spmgsnipreview/views/img/feed.png
106.0.62.69200 OK 1.8 kB URL HTTP/2 www.publishersagency.com/modules/spmgsnipreview/views/img/feed.png
IP 106.0.62.69:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 047e2dcda4c5f1617cb6455e7846e7e7
a4fe82e567c422dfe7ac864e782357644889eccc
c5ddb0508309118c224650528277e52ad729ec8edc5cf0c0eb41ab8054b74008
GET /modules/spmgsnipreview/views/img/feed.png HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/png
last-modified: Tue, 20 Jul 2021 07:36:29 GMT
accept-ranges: bytes
content-length: 1789
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.publishersagency.com/modules/spmgsnipreview/views/img/widget/close.png
106.0.62.69200 OK 842 B URL HTTP/2 www.publishersagency.com/modules/spmgsnipreview/views/img/widget/close.png
IP 106.0.62.69:0
File type PNG image data, 17 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b7b8fb5ab8acac78ffde48b5b9406b0
d335fe55e2035f6915e1e64179aec3ff1d495d45
a680dfc8ad6c875275b97d679b7b1563feafb7aaf58129120befcf458d3564d9
GET /modules/spmgsnipreview/views/img/widget/close.png HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Sat, 11 Feb 2023 04:35:21 GMT
content-type: image/png
last-modified: Tue, 20 Jul 2021 07:37:14 GMT
accept-ranges: bytes
content-length: 842
date: Sat, 04 Feb 2023 04:35:21 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 04 Feb 2023 03:45:20 GMT
expires: Sat, 04 Feb 2023 05:45:20 GMT
cache-control: public, max-age=7200
age: 3001
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 12 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A4CF63AD6D3043C09B97E6D82CE242F6 Ref B: OSL30EDGE0506 Ref C: 2023-02-04T04:35:21Z
date: Sat, 04 Feb 2023 04:35:20 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=17516558&Ver=2&mid=353298ad-9979-49ce-b0d7-e2fa3f0e9a66&sid=6a343790a44511ed933185d6eb4c7b4b&vid=6a342690a44511edb37c032bd39e1373&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=House%20of%20Magazines%20%7C%20Print%20Subscriptions%20%7C%20Publishersagency.com&kw=magazines,%20print%20subscription,%20journals,%20comics,%20health%20mags,%20mags,%20cheap%20mags,%20cheap%20magazines,%20discount%20magazines&p=https%3A%2F%2Fwww.publishersagency.com%2Findex.php%3F&r=<=3205&evt=pageLoad&sv=1&rn=80176
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=17516558&Ver=2&mid=353298ad-9979-49ce-b0d7-e2fa3f0e9a66&sid=6a343790a44511ed933185d6eb4c7b4b&vid=6a342690a44511edb37c032bd39e1373&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=House%20of%20Magazines%20%7C%20Print%20Subscriptions%20%7C%20Publishersagency.com&kw=magazines,%20print%20subscription,%20journals,%20comics,%20health%20mags,%20mags,%20cheap%20mags,%20cheap%20magazines,%20discount%20magazines&p=https%3A%2F%2Fwww.publishersagency.com%2Findex.php%3F&r=<=3205&evt=pageLoad&sv=1&rn=80176
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=17516558&Ver=2&mid=353298ad-9979-49ce-b0d7-e2fa3f0e9a66&sid=6a343790a44511ed933185d6eb4c7b4b&vid=6a342690a44511edb37c032bd39e1373&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=House%20of%20Magazines%20%7C%20Print%20Subscriptions%20%7C%20Publishersagency.com&kw=magazines,%20print%20subscription,%20journals,%20comics,%20health%20mags,%20mags,%20cheap%20mags,%20cheap%20magazines,%20discount%20magazines&p=https%3A%2F%2Fwww.publishersagency.com%2Findex.php%3F&r=<=3205&evt=pageLoad&sv=1&rn=80176 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1F4B4D991160624B24565F3710956336; domain=.bing.com; expires=Thu, 29-Feb-2024 04:35:22 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4DF834BEEF72478D9CA6649C556538F0 Ref B: OSL30EDGE0506 Ref C: 2023-02-04T04:35:22Z
date: Sat, 04 Feb 2023 04:35:21 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/17516558.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/17516558.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/17516558.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 216051391E264F3696E5BE3DAFC5FF77 Ref B: OSL30EDGE0506 Ref C: 2023-02-04T04:35:22Z
date: Sat, 04 Feb 2023 04:35:21 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-167612191-1&cid=7483670.1675485356&jid=408706378&gjid=2070163860&_gid=2101073689.1675485356&_u=IEBAAEIIAAAAACAAI~&z=1028511860
64.233.161.155200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-167612191-1&cid=7483670.1675485356&jid=408706378&gjid=2070163860&_gid=2101073689.1675485356&_u=IEBAAEIIAAAAACAAI~&z=1028511860
IP 64.233.161.155:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-167612191-1&cid=7483670.1675485356&jid=408706378&gjid=2070163860&_gid=2101073689.1675485356&_u=IEBAAEIIAAAAACAAI~&z=1028511860 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.publishersagency.com
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.publishersagency.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 04 Feb 2023 04:35:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=885740458907543&ev=PageView&dl=https%3A%2F%2Fwww.publishersagency.com%2Findex.php%3F&rl=&if=false&ts=1675485356201&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675485356201.1574776415&it=1675485355971&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=885740458907543&ev=PageView&dl=https%3A%2F%2Fwww.publishersagency.com%2Findex.php%3F&rl=&if=false&ts=1675485356201&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675485356201.1574776415&it=1675485355971&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=885740458907543&ev=PageView&dl=https%3A%2F%2Fwww.publishersagency.com%2Findex.php%3F&rl=&if=false&ts=1675485356201&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&cs_est=true&fbp=fb.1.1675485356201.1574776415&it=1675485355971&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 04 Feb 2023 04:35:22 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 42f7bb86070a306c0902a2947bfd5db1
679751d86f7520d1e5e30b5bc050015450de75a7
ebccfef4e98d659e8e275dd6b2797b1154e42572695aefc916825bc0819e96dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 621b586028d5acaf29b8777ca0872ce1
9d2a358576d0acab58e2eacf7765b686cee9181f
a7c99a5217e394c715679780ae1e3e60202653547212b0a4fd2efab0e1a01015
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-167612191-1&cid=7483670.1675485356&jid=408706378&_u=IEBAAEIIAAAAACAAI~&z=1820034192
216.58.207.228200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-167612191-1&cid=7483670.1675485356&jid=408706378&_u=IEBAAEIIAAAAACAAI~&z=1820034192
IP 216.58.207.228:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-167612191-1&cid=7483670.1675485356&jid=408706378&_u=IEBAAEIIAAAAACAAI~&z=1820034192 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 04:35:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-167612191-1&cid=7483670.1675485356&jid=408706378&_u=IEBAAEIIAAAAACAAI~&z=1820034192
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-167612191-1&cid=7483670.1675485356&jid=408706378&_u=IEBAAEIIAAAAACAAI~&z=1820034192
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-167612191-1&cid=7483670.1675485356&jid=408706378&_u=IEBAAEIIAAAAACAAI~&z=1820034192 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 04 Feb 2023 04:35:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de88149c85daf1f2f8f183d16f581394
4b88639d92a9defef7e575ff50f00348d7a4fc91
5bcde8fa6ee36e3a745249b5a5d1c583b0b17e1bd37a3d5b83ce9255b818680d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8176ac8bbb8fa05f36bdfa163da09e0c
b936c84c5fa7e781b12a17952c82bca546ca0575
1aa7e39fd02514a4023036a8a100d7e7898ee220063ebfb41c509264c81ed727
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 04 Feb 2023 04:35:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.publishersagency.com/img/loading.webp
106.0.62.69200 OK 28 kB URL HTTP/2 www.publishersagency.com/img/loading.webp
IP 106.0.62.69:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", progressive, precision 8, 250x250, components 3\012- data
Hash 900a09c91873955445067c66d56a3de8
90e372dab6cd62859ccf5699145dc5a3254c9c0b
c179b4d583f269e7cc23447f2a23a3ac94a6d25fd064f085badd5f8ab04bbeec
Analyzer Verdict Alert fortinet Phishing
GET /img/loading.webp HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 04:35:20 GMT
content-type: image/webp
last-modified: Sat, 06 Nov 2021 20:48:57 GMT
accept-ranges: bytes
content-length: 45326
date: Sat, 04 Feb 2023 04:35:20 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a032104cf4ccc6ea31f163ca16386487
a0573916c3d72f0554928963c0a74413fdcb3558
8ba7b6e9b3fa28f6fd27f5f006cedac10f50d7da6c109155a2476cf04f4df932
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72a06bff-2a3c-4fc8-9c7a-5649a696581e.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8909
x-amzn-requestid: 051806fe-c051-4948-a46a-48ed1df321a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyFIMFLNoAMFY5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8234-212ec9a838fc64a9164f21f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:52:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 24zolqnsQilbFdqM8BnmjaH7DXfFunFyXgmOyF_FkPoatjLi137xgQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:10:53 GMT
age: 23074
etag: "a0573916c3d72f0554928963c0a74413fdcb3558"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Rufina:400,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rufina:400,700
IP 142.250.74.106:0
GET /css?family=Rufina:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 04:35:20 GMT
date: Sat, 04 Feb 2023 04:35:20 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,400i,600,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,400i,600,700
IP 142.250.74.106:0
GET /css?family=Open+Sans:400,400i,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 04 Feb 2023 04:35:20 GMT
date: Sat, 04 Feb 2023 04:35:20 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.publishersagency.com/modules/posslideshows/images/1d2a8772889688150ba55c63f3554e38d4931679_the_economist_magazine.webp
106.0.62.69200 OK 0 B URL HTTP/2 www.publishersagency.com/modules/posslideshows/images/1d2a8772889688150ba55c63f3554e38d4931679_the_economist_magazine.webp
IP 106.0.62.69:0
Analyzer Verdict Alert fortinet Phishing
GET /modules/posslideshows/images/1d2a8772889688150ba55c63f3554e38d4931679_the_economist_magazine.webp HTTP/1.1
Host: www.publishersagency.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.publishersagency.com/index.php?
Cookie: PHPSESSID=e8d9bcae28a2da198edce2e4f3768971; PrestaShop1-fda1bd76c17c204fc10591263696af04=def50200a86d96174338b6e4e8f4fec17dcc4d0638432faf91a6ac1cf1c68faf609807d369fa00c02ed44125572696cb366af8ac53752e2a4533996a26de85f80183d8244c8853260faa63d154690fce0aa60aee33260d01a0664a322845adf307f230222a5f81eb954a649a4f2d2e48ffc539e7eea0ddfe3fd8815ed1640892908a3370036b951724f0590efc3d7f8f4f152469dc7d04c32683b4156b04117dfad249c6a877a91a3268d6c4fe9714bba0722327bf6c3a310df39553b117c40007e118e1465ae1dd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 11 Feb 2023 04:35:20 GMT
content-type: image/webp
last-modified: Sun, 07 Nov 2021 10:18:07 GMT
accept-ranges: bytes
content-length: 32260
date: Sat, 04 Feb 2023 04:35:20 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2