r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3344
Expires: Fri, 16 Sep 2022 21:23:26 GMT
Date: Fri, 16 Sep 2022 20:27:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 20:10:56 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jfOK_25ndRngCnAWhdnF1PayC6qUHpxdJMaTEE_mHHdbsreFf1I9yQ==
Age: 1006
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VqpGuNsG51eM2EWZc9yut7eyubrDkuAIfM8MYk608a2EfsDtPFOy4Q==
age: 57147
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:27:42 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 16 Sep 2022 20:03:22 GMT
Expires: Fri, 16 Sep 2022 20:20:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zq0nAhJvAiwBHsg4Y4GbGBv96RmKy17iy3iTstC6ZyDfUnE9-vIVTg==
Age: 1460
dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
68.171.218.77301 Moved Permanently 0 B URL HTTP/1.1 dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
IP 68.171.218.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Sep 2022 20:27:42 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
X-Redirect-By: iThemes Security
Set-Cookie: sd_session_20200815=6324dc3e9ad9c8.66399634; path=/
Location: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Strict-Transport-Security: max-age=31536000
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3db421016cf0e3ad25f324cf0faf0fac
b15909de1105d4d2fb5be5b3920c454daf022445
914b15f28636e0a5e851540ffb0625ecd09d0546b2f1f7af90b267ceebcf1d5d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6000
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:27:43 GMT
Last-Modified: Fri, 16 Sep 2022 18:47:43 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.210.107.213101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.107.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: t+6E5FAVVziZzCcprFvtFg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 4Jlsdj+DATVb1EpbLtbDdwvsPwo=
dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
68.171.218.77404 Not Found 9.9 kB URL HTTP/1.1 dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
IP 68.171.218.77:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 604f15aa3a6e05c27b430627f9b064c7
b66d61f9503b784625bc0f678d7f2c34988345f6
22306aa4db0ce3d81a60800faf01f7d16c2745661cf1e4b40dcde17ed92e8454
GET /login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Fri, 16 Sep 2022 20:27:43 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Link: <https://dinorahblackman.com/wp-json/>; rel="https://api.w.org/"
Set-Cookie: sd_session_20200815=6324dc3fce5960.30197181; path=/
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 9868
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
dinorahblackman.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.7
68.171.218.77200 OK 3.3 kB URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.7
IP 68.171.218.77:0
File type ASCII text, with very long lines (21597)
Hash d7ece14f39cf3d91467cf08eb9db77d0
6a521873f80dfb838f8351d3a99a0369e827895f
7c3eb69a15fa684ac262647ce64031c612f4ed9c9dba32e3e8e455ea145271b0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.0.7 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Tue, 13 Sep 2022 17:32:47 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 3295
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
dinorahblackman.com/wp-includes/css/dist/block-library/style.min.css?ver=6359f8dbb0b75ca657448428aa449c62
68.171.218.77200 OK 12 kB URL HTTP/1.1 dinorahblackman.com/wp-includes/css/dist/block-library/style.min.css?ver=6359f8dbb0b75ca657448428aa449c62
IP 68.171.218.77:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
GET /wp-includes/css/dist/block-library/style.min.css?ver=6359f8dbb0b75ca657448428aa449c62 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Mon, 04 Jul 2022 12:10:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 11681
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19082
Expires: Sat, 17 Sep 2022 01:45:46 GMT
Date: Fri, 16 Sep 2022 20:27:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19082
Expires: Sat, 17 Sep 2022 01:45:46 GMT
Date: Fri, 16 Sep 2022 20:27:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 69c9db5022c0c66909867f1e0946f5a8
9825e0fc606dc983280a6cd05803bb07e3435ef6
f2809509eee24ed69e6003ac9263423ea949bcc9205969c6cdd476e89ede9b01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8864
x-amzn-requestid: 6e1a82d1-e35e-4d77-be31-6969a13918da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU_6GiXoAMFaLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b98-46ca0525157031324749ee5b;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:39:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: X9B4DU53PxJ-J5Ou1wg_TH_yfN3N1lF1SMMr3iV9-gM7j_sPirhcwA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:51:03 GMT
age: 81401
etag: "9825e0fc606dc983280a6cd05803bb07e3435ef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4f3e6b013d785036c9b9c16aef3404f
28bf10400e47ad48eee5db04829b88340e021840
98596627e914528b177b8a3d2be8766bdf210c62415961ab99afefa465440819
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8854
x-amzn-requestid: ae78dca7-cd78-40ad-8ef3-5b287d99b0e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1suGFuoAMFptg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3651-12f3fedb07f856af06e8b1e5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:01:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JW4h9nBwMpVgCeegH2wkBEY0xmBuf4LpTQVaDU47Zb8Z4IVkdy0oHg==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:56:40 GMT
age: 81064
etag: "28bf10400e47ad48eee5db04829b88340e021840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6d17788c7d2a1a91e68eff48df14bd1
8e1090346d90bc69e7a95384e6a7a01154e31567
1e1eefa02e4c55e73be87a309ad5c2335856125cb678cff6ebc42c5ff73a0e2b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9904
x-amzn-requestid: a23cb4b3-db6e-48ae-90b1-3ecf6478bf52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDpH_CIAMFl4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-15869210609a18587467d1e2;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JyXQcHKFIksMgLMROqOfV1ZqdFKSp3QSIlGmXuDR6h88o9J6s-mgkw==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:14:32 GMT
age: 79992
etag: "8e1090346d90bc69e7a95384e6a7a01154e31567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 512280055633fcce9abc7d11a9816a24
de5c3e010fca76659455a144875a52c25fa72bdd
435eadb36830928b20d4cf8ead62134b75bd0ed3228489d9fdee66450bcbeaed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13536
x-amzn-requestid: 5533b257-1558-472b-aeb9-8207a78e1110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDzFa4IAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb1-05d0dfde7a488ed97d2a40d5;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aCCBUNe1NErAN4RiVGCdh-sBxSnMm-XfcFzE-h8IcCq6W1Om-UX45g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:46 GMT
age: 81718
etag: "de5c3e010fca76659455a144875a52c25fa72bdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hhh1q_MrZVAaRWwmc1IuJbL3KhhwwHQgceaL15okbg4NvKJlWfUjyA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:02:34 GMT
age: 80710
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dinorahblackman.com/wp-content/plugins/gs-facebook-comments/public/css/wpfc-public.css?ver=1.7.2
68.171.218.77200 OK 356 B URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/gs-facebook-comments/public/css/wpfc-public.css?ver=1.7.2
IP 68.171.218.77:0
File type HTML document, ASCII text
Hash b83086a374383247f31a5c08071bb0a0
38537736839f1ee2a36be91ed9ec6ca66d7c6662
22b95bddc4ce38d78c31a118dfaa76b7b2ffe0475f8581895ee98f9b6f70816a
GET /wp-content/plugins/gs-facebook-comments/public/css/wpfc-public.css?ver=1.7.2 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 03:59:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 356
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
dinorahblackman.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
68.171.218.77200 OK 7.1 kB URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 68.171.218.77:0
File type ASCII text, with very long lines (30837)
Hash 2a2c987c48fb65bb0e78fa2a37120537
ede7a4d5da37f053251e8b8a33be2a23a660473f
3d3136cdfced0eee9b7766b7a17a591f6fb3ba480e71b8930acbea4db4ab71d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Thu, 15 Sep 2022 17:32:51 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 7052
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19082
Expires: Sat, 17 Sep 2022 01:45:46 GMT
Date: Fri, 16 Sep 2022 20:27:44 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:27:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19082
Expires: Sat, 17 Sep 2022 01:45:46 GMT
Date: Fri, 16 Sep 2022 20:27:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f876cdc19dca10c62d83d19303512c7f
9f812c7bc1b42b0cea3e42694e7d1f6738789770
c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12123
x-amzn-requestid: b04ac3c4-b4d8-4094-8b7d-bd229bb7d577
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yb2GvFnEoAMF-Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63216a2a-4e5927ac3f1d0b215ce5a8dc;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 05:44:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1W0Ito5yNmHNxtYBj5jOJQ3Z2OP_Shvhpj94YUDwLHQKzt-zgqjI8A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 03:12:38 GMT
age: 62106
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dinorahblackman.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
68.171.218.77200 OK 972 B URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 68.171.218.77:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Thu, 01 Sep 2022 17:32:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 972
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
dinorahblackman.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
68.171.218.77200 OK 2.6 kB URL HTTP/1.1 dinorahblackman.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
IP 68.171.218.77:0
File type ASCII text, with very long lines (11256), with no line terminators
Hash 583529ff412cb2b255fa606024d1133e
8db4b0a0be402cc5e38488528791b73b0c7369d0
6fdf0933a8faf229b277740f401600834c00d0b204f7ed38293cd4abcdb3ea20
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Tue, 29 Sep 2020 15:53:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 2592
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
dinorahblackman.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6359f8dbb0b75ca657448428aa449c62
68.171.218.77200 OK 1.2 kB URL HTTP/1.1 dinorahblackman.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6359f8dbb0b75ca657448428aa449c62
IP 68.171.218.77:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash 30d57d7aa11190e44974cce8621f22c7
59f516369877009cce06ca45b1c296944bb674a4
094ae87a3d4cee4a1ddc5cada149c2deacabd4cf2e377b97fe4ca641142258ee
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6359f8dbb0b75ca657448428aa449c62 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Fri, 07 Jun 2019 20:45:02 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 1156
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
dinorahblackman.com/wp-content/themes/zakra/style.css?ver=2.1.5
68.171.218.77200 OK 10 kB URL HTTP/1.1 dinorahblackman.com/wp-content/themes/zakra/style.css?ver=2.1.5
IP 68.171.218.77:0
File type ASCII text, with very long lines (1208)
Hash 050de3fca5683fe0d18f228a0cd1a4a8
05cd26edbfd0e365beeaa47365358065cab88b8b
bfcb7eac36b5fd406dfa86849a6423330eb28e90ff59481c91928e0c883d0716
GET /wp-content/themes/zakra/style.css?ver=2.1.5 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 15:03:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 10110
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4cc0aaf293fed6c16e1dde02c50c8f40
e94f11cd8fa955f28856a02aa7115aa5f3626d98
b1592dc8fc0d63052f66b7be9b5ff1f562f6fbd05f6365ce828758bfbb3f1a12
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:27:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash 53d19b7fe4313d1a7ad1ebb530a935af
10a09f5247c19515c10c32296d44be712267198b
a2a9953aae7a50ade2e8b198318c4dc9117cfd69b146126ea18e8a85d7cc3322
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 16 Sep 2022 20:27:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 16 Sep 2022 10:49:58 GMT
Expires: Sat, 17 Sep 2022 10:49:58 GMT
ETag: "10a09f5247c19515c10c32296d44be712267198b"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
dinorahblackman.com/wp-content/plugins/sell-downloads/sd-styles/sd-buttons.css?ver=6359f8dbb0b75ca657448428aa449c62
68.171.218.77200 OK 6.7 kB URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/sell-downloads/sd-styles/sd-buttons.css?ver=6359f8dbb0b75ca657448428aa449c62
IP 68.171.218.77:0
File type ASCII text, with very long lines (7279), with CRLF line terminators
Hash fc43dadc9202319d95815f40a24b03e4
e5e4c3497877650a6c6e97d8f47b5443339d5ae6
cf738026439905902e3df7b5aa40c7131fd85f6ee8834d22f21ed3432e140995
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sell-downloads/sd-styles/sd-buttons.css?ver=6359f8dbb0b75ca657448428aa449c62 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2022 17:33:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 6651
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
dinorahblackman.com/wp-content/plugins/sell-downloads/sd-styles/sd-public.css?ver=6359f8dbb0b75ca657448428aa449c62
68.171.218.77200 OK 2.8 kB URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/sell-downloads/sd-styles/sd-public.css?ver=6359f8dbb0b75ca657448428aa449c62
IP 68.171.218.77:0
File type ASCII text, with very long lines (677), with CRLF line terminators
Hash 4c4c606aa90f0d360bdd75dbd7b379aa
682c1fa49f52c0f7dd4665c0774025c80cd72a85
2dc7f2d73a3a430249ddab1ddd377d7a7c20fdfb2b322dd727808fe7b085df73
GET /wp-content/plugins/sell-downloads/sd-styles/sd-public.css?ver=6359f8dbb0b75ca657448428aa449c62 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2022 17:33:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 2783
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
dinorahblackman.com/wp-content/plugins/sell-downloads/sd-layouts/01/style.css?ver=6359f8dbb0b75ca657448428aa449c62
68.171.218.77200 OK 1.5 kB URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/sell-downloads/sd-layouts/01/style.css?ver=6359f8dbb0b75ca657448428aa449c62
IP 68.171.218.77:0
Hash 418df6e7e858c0a8cc5775ddda00afd1
7d78a24ec4e3df012fa7ddb6a0dbc942d3940cb9
4428475bb7d7cb02d17f886260e104180d4d95fd429fa0a6a5ac0c869f8b19c7
GET /wp-content/plugins/sell-downloads/sd-layouts/01/style.css?ver=6359f8dbb0b75ca657448428aa449c62 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2022 17:33:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 1505
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
dinorahblackman.com/wp-content/plugins/wpglobus/includes/css/wpglobus.css?ver=2.10.4
68.171.218.77200 OK 501 B URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/wpglobus/includes/css/wpglobus.css?ver=2.10.4
IP 68.171.218.77:0
File type ASCII text, with very long lines (1555), with no line terminators
Hash e4bcff680efae4cb75860f3622c7bd7a
74993591b900608a37037607778f47c9705f09a9
1abc9f483c612828c5314acec31b3033d203b416105bb03abc55f65591af6255
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpglobus/includes/css/wpglobus.css?ver=2.10.4 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Tue, 06 Sep 2022 17:33:01 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 501
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
dinorahblackman.com/wp-content/plugins/gs-facebook-comments/public/js/wpfc-public.js?ver=1.7.2
68.171.218.77200 OK 545 B URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/gs-facebook-comments/public/js/wpfc-public.js?ver=1.7.2
IP 68.171.218.77:0
Hash c7d871cb7f6a4bcddd3178f7bed6844a
01f10b5bfcfdebbfbc214eb0227d7b67f685ee56
88b8e313bc97fdb1d00dc431e2a9ffb7c02b4e9551cc2d68c9e4306b6b13a136
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/gs-facebook-comments/public/js/wpfc-public.js?ver=1.7.2 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 03:59:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 545
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6359f8dbb0b75ca657448428aa449c62
68.171.218.77200 OK 540 B URL HTTP/1.1 dinorahblackman.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6359f8dbb0b75ca657448428aa449c62
IP 68.171.218.77:0
File type ASCII text, with very long lines (1191), with no line terminators
Hash 2029090ac267ecfc20a3c0b884202de9
0ad1d2ea2030ad3c98315a8342168cb0e2c2fca1
a5f0b6001e19c189db4a985f7be8577804f4620edfc4e0812483cf571618607d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6359f8dbb0b75ca657448428aa449c62 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Fri, 08 Apr 2022 20:07:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 540
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6359f8dbb0b75ca657448428aa449c62
68.171.218.77200 OK 475 B URL HTTP/1.1 dinorahblackman.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6359f8dbb0b75ca657448428aa449c62
IP 68.171.218.77:0
File type HTML document, ASCII text, with very long lines (906), with no line terminators
Hash c7aa8936938be0b65781455878aa2085
0066e0c5ed75b3ccd5bb01db5f373d995c217a29
a764eb4204428f671190ad2bc84bcbd86cd9a6bfd05a7ded46bceb651503c508
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6359f8dbb0b75ca657448428aa449c62 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 13:35:18 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 475
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
68.171.218.77200 OK 4.2 kB URL HTTP/1.1 dinorahblackman.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 68.171.218.77:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 4169
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-content/plugins/sell-downloads/sd-script/sd-public.js
68.171.218.77200 OK 1.9 kB URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/sell-downloads/sd-script/sd-public.js
IP 68.171.218.77:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 6a10552c07a141b78b776da723ed1654
a1818547aa0df966893ca65acac0ce21bc360c5f
44506713703325a98045a59137bdc7728803514841722ae7eb347cf5e29dcc36
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sell-downloads/sd-script/sd-public.js HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2022 17:33:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 1866
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
68.171.218.77200 OK 39 kB URL HTTP/1.1 dinorahblackman.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16
IP 68.171.218.77:0
File type ASCII text, with very long lines (65266)
Hash 4cdaad83ca56a59ee7352b981c2f6db5
4cba1a66bde2345f35c94cacc40749e7aaa30d79
e1aab11a4a9f355af8664139d9151aaf59a6a7d58791aeceda7e611eb049b215
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Tue, 29 Sep 2020 15:53:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 38657
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-content/plugins/sell-downloads/sd-layouts/01/script.js?ver=6359f8dbb0b75ca657448428aa449c62
68.171.218.77200 OK 654 B URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/sell-downloads/sd-layouts/01/script.js?ver=6359f8dbb0b75ca657448428aa449c62
IP 68.171.218.77:0
Hash 03195402b616f1edf98cd07b6b89d7c9
ecd09779fc2d5d5f452c44d2e6347ea3f4e55e2e
d234a7a6af9bdfc78bcd8aeb9cc9ff4d2465109d8834c00288ad13ce5b2bd688
GET /wp-content/plugins/sell-downloads/sd-layouts/01/script.js?ver=6359f8dbb0b75ca657448428aa449c62 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Tue, 30 Aug 2022 17:33:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 654
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-includes/js/wp-emoji-release.min.js?ver=6359f8dbb0b75ca657448428aa449c62
68.171.218.77200 OK 5.0 kB URL HTTP/1.1 dinorahblackman.com/wp-includes/js/wp-emoji-release.min.js?ver=6359f8dbb0b75ca657448428aa449c62
IP 68.171.218.77:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6359f8dbb0b75ca657448428aa449c62 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Tue, 12 Apr 2022 05:56:23 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 5009
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
68.171.218.77200 OK 31 kB URL HTTP/1.1 dinorahblackman.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 68.171.218.77:0
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:44 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 30908
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
68.171.218.77200 OK 2.9 kB URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 68.171.218.77:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 7c2c4ebd10adb73367b5c5f0e1e5d3ce
a67e4fd0e3e7452e74b22517ba924b58307d7758
5244443e699788a134cc77adfc3fd18f03386df5fe49e6c82b057387ba4d0ebd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Thu, 01 Sep 2022 17:32:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 2914
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
68.171.218.77200 OK 3.9 kB URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 68.171.218.77:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 7ef755c2700783f9eae63fc539149a18
e57c0c5ceb5e2fbf1aaad44aad6319f8b26b69a1
95c808afbeaf569865125c132b69df4a68bca03fd6b792d38ef9a0e341dbf06b
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Thu, 01 Sep 2022 17:32:52 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 3934
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-content/themes/zakra/assets/js/navigation.min.js?ver=20151215
68.171.218.77200 OK 1.5 kB URL HTTP/1.1 dinorahblackman.com/wp-content/themes/zakra/assets/js/navigation.min.js?ver=20151215
IP 68.171.218.77:0
File type ASCII text, with very long lines (4445), with no line terminators
Hash 3ef79e257e82be8ab9279fb1aa323bde
908577f968ae3b8f7d02ac56e9c89d0356af3192
c5002105c21c4700b4706a6f4b8045be5ae5f7490bf746de1aba051754f2ac2b
GET /wp-content/themes/zakra/assets/js/navigation.min.js?ver=20151215 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 15:03:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 1513
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-content/themes/zakra/assets/js/skip-link-focus-fix.min.js?ver=20151215
68.171.218.77200 OK 244 B URL HTTP/1.1 dinorahblackman.com/wp-content/themes/zakra/assets/js/skip-link-focus-fix.min.js?ver=20151215
IP 68.171.218.77:0
File type ASCII text, with very long lines (327), with no line terminators
Hash 845dad5d67a1d85720d9ad14b21922c2
f4bb691f5b69754a542c79579a5dcbf30e85da1e
8c73ee2effd0a4ee4b1797e83b9457fb54ec6e441a0f03cb7a99009f6f5ce739
GET /wp-content/themes/zakra/assets/js/skip-link-focus-fix.min.js?ver=20151215 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 15:03:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 244
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-content/themes/zakra/assets/js/zakra-custom.min.js?ver=6359f8dbb0b75ca657448428aa449c62
68.171.218.77200 OK 1.5 kB URL HTTP/1.1 dinorahblackman.com/wp-content/themes/zakra/assets/js/zakra-custom.min.js?ver=6359f8dbb0b75ca657448428aa449c62
IP 68.171.218.77:0
File type ASCII text, with very long lines (4730), with no line terminators
Hash 3dc22a2ef6fbb50bd64803faf080ec98
e03ad298a1e14141fdf5ec05d75c5fe5233ac48f
080b5fb5c87061608c77689af00512f83ce0d2eb29f72fce31b4dda4ca92564c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/zakra/assets/js/zakra-custom.min.js?ver=6359f8dbb0b75ca657448428aa449c62 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 15:03:16 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 1513
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
dinorahblackman.com/wp-content/plugins/wpglobus/includes/js/wpglobus.min.js?ver=2.10.4
68.171.218.77200 OK 362 B URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/wpglobus/includes/js/wpglobus.min.js?ver=2.10.4
IP 68.171.218.77:0
File type ASCII text, with very long lines (681), with no line terminators
Hash ae717e216ba2709f730c80497ee0cec9
ddb5d2381e6af69811600ff94ee6efb0c1e7e999
f386f406e477b32337123586156270329bca323eb555836f70342706144f3e27
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpglobus/includes/js/wpglobus.min.js?ver=2.10.4 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Tue, 06 Sep 2022 17:33:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Strict-Transport-Security: max-age=31536000
Content-Length: 362
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oleoscript/v14/rax5HieDvtMOe0iICsUccChdu08.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/oleoscript/v14/rax5HieDvtMOe0iICsUccChdu08.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12468, version 1.0\012- data
Hash a6a16263409122cc015ca296dd6161dd
aca6f2a52e0f57969f4bc93d8dda8810b03d25c8
590e82d7501ee7d60c4df873128419ef159c0b056b945def829f0619ffd11087
GET /s/oleoscript/v14/rax5HieDvtMOe0iICsUccChdu08.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dinorahblackman.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12468
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 00:25:50 GMT
expires: Wed, 13 Sep 2023 00:25:50 GMT
cache-control: public, max-age=31536000
age: 331315
last-modified: Mon, 09 May 2022 18:54:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dinorahblackman.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 08:31:01 GMT
expires: Wed, 13 Sep 2023 08:31:01 GMT
cache-control: public, max-age=31536000
age: 302204
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/amiko/v12/WwkQxPq1DFK04uqieV8.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/amiko/v12/WwkQxPq1DFK04uqieV8.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15388, version 1.0\012- data
Hash 8ba52155212ad6070e801e5340bd0000
90f59f58cb7e924f3386f4935db99697e356b8fa
1c7f6fd85fcfa640c73c11072bbdef79758b85671c0b70e2571b14a072b36daa
GET /s/amiko/v12/WwkQxPq1DFK04uqieV8.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dinorahblackman.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15388
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 17:23:47 GMT
expires: Fri, 15 Sep 2023 17:23:47 GMT
cache-control: public, max-age=31536000
age: 97438
last-modified: Tue, 19 Apr 2022 20:07:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.getresponse.com/view_webform_v2.js?u=BhTyI&webforms_id=5338902
104.160.64.9200 OK 31 kB URL HTTP/2 app.getresponse.com/view_webform_v2.js?u=BhTyI&webforms_id=5338902
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 1f7a24e3b6d88dfddf0fc4ffdee287f0
525bc7315a30323007a97ff7de3d2c9ce1fa45cb
71c53a54cbb42162339e3e8b2a71b9541073fd375686237e50f94eefde8a155d
GET /view_webform_v2.js?u=BhTyI&webforms_id=5338902 HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:27:44 GMT
content-type: application/x-javascript
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
dinorahblackman.com/wp-content/plugins/wpglobus/flags/es.png
68.171.218.77200 OK 253 B URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/wpglobus/flags/es.png
IP 68.171.218.77:0
File type PNG image data, 18 x 12, 8-bit colormap, non-interlaced\012- data
Hash a96be23f81ea0d88cc11de5ac7528143
d48a8972f04f27fc5c1665cded208cc723aa71ec
d20bccbb7fa937cf2d600f58383c6ea605a76ae4e3acfc88156b82a4e944b902
GET /wp-content/plugins/wpglobus/flags/es.png HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Tue, 06 Sep 2022 17:33:01 GMT
Accept-Ranges: bytes
Content-Length: 253
Strict-Transport-Security: max-age=31536000
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
dinorahblackman.com/wp-content/plugins/wpglobus/flags/us.png
68.171.218.77200 OK 461 B URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/wpglobus/flags/us.png
IP 68.171.218.77:0
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 8137a3d2e8be19152595a8257d23ccce
1351c3864cc1c2a964caef0910851aa0e9e83e0b
758b27e3b3109071b6d78235d778f6abcac2a6a48dd30c5bb986b867a3ce5d28
GET /wp-content/plugins/wpglobus/flags/us.png HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Tue, 06 Sep 2022 17:33:01 GMT
Accept-Ranges: bytes
Content-Length: 461
Strict-Transport-Security: max-age=31536000
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fb510c0e0fbff6302a68eb385520e3f
cd5149c6ffc7ee3d90e9e6884af8e02f44c7ab00
2b9cd0f540eb0916ad5c3ee63dbc8ee57570c3eaae7aeabca5c8cb03a3c73c32
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dinorahblackman.com/wp-content/themes/zakra/assets/fonts/themegrill-icons.woff2?5d42b271f668d2d6461ba91fc5a5a839
68.171.218.77200 OK 1.3 kB URL HTTP/1.1 dinorahblackman.com/wp-content/themes/zakra/assets/fonts/themegrill-icons.woff2?5d42b271f668d2d6461ba91fc5a5a839
IP 68.171.218.77:0
File type Web Open Font Format (Version 2), TrueType, length 1320, version 1.0\012- data
Hash 26a09c1dc7fd18341da6c6cde110e123
d8710ef9efffc5a97bc62e3f9f1e98b779b07cd4
b84099a6f7f94d98d7e0f52cf017c2a1cc0b2a9aa1d3f542f8e1379a8bc83a99
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/zakra/assets/fonts/themegrill-icons.woff2?5d42b271f668d2d6461ba91fc5a5a839 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dinorahblackman.com/wp-content/themes/zakra/style.css?ver=2.1.5
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Mon, 12 Sep 2022 15:03:16 GMT
Accept-Ranges: bytes
Content-Length: 1320
Vary: Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=31536000
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2
us-as.gr-cdn.com//javascripts/core/webforms/dist/manifest.35779c62dedb17e0486d.js
205.185.216.42200 OK 744 B URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/manifest.35779c62dedb17e0486d.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (1524), with no line terminators
Hash ed35a142e8e052ea890638490c8861cc
f6f1e6b993739eb26fd270386a00326b4e030cde
96fcbc55c5b5205163897e33d97a501c5768b91586c44151bed3f01564f8a3bc
GET //javascripts/core/webforms/dist/manifest.35779c62dedb17e0486d.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 20:27:45 GMT
content-encoding: gzip
content-length: 744
content-type: application/javascript
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: "1dc09d84-5f4"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1663360065.dop018.sk1.t,1663360065.cds072.sk1.hn,1663360065.cds221.sk1.c
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_show_styles.9476b9eb2898975c0303.css
205.185.216.42200 OK 6.7 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_show_styles.9476b9eb2898975c0303.css
IP 205.185.216.42:0
File type Unicode text, UTF-8 text, with very long lines (28294), with no line terminators
Hash 64d94c8358b6661de4a2e642f3d7b76a
4783af52d81da2921d6dbe1b4e523dcdd4ffc4af
11fb7bf38897c1fb12995f1f94a390775c66a00c9c3858271e49ed4a5e58bbb5
GET //javascripts/core/webforms/dist/webforms_show_styles.9476b9eb2898975c0303.css HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 20:27:45 GMT
content-encoding: gzip
content-length: 6652
content-type: text/css
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: "1dc09d84-6e8a"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
server-timing: dtSInfo;desc="1"
x-hw: 1663360065.dop018.sk1.t,1663360065.cds072.sk1.hn,1663360065.cds228.sk1.c
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js
205.185.216.42200 OK 10 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (32376)
Hash 87b8e74031f8b5c76421913ecd8fd345
18d3903892f55f4a6792038cc120b73239d36e99
bc917783adc3825637c10be746fcd23d37bfe05341b970cd2e2b3a94cf1c3077
GET //javascripts/core/webforms/dist/webforms_entry.chunk.88825abbaf24f26299d7.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 20:27:45 GMT
content-encoding: gzip
content-length: 10132
content-type: application/javascript
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: W/"1dc09d84-7edb"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1663360065.dop018.sk1.t,1663360065.cds072.sk1.hn,1663360065.cds066.sk1.c
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/show_webform_shared.chunk.e51c6b112972dd577bf9.js
205.185.216.42200 OK 88 kB URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/show_webform_shared.chunk.e51c6b112972dd577bf9.js
IP 205.185.216.42:0
File type Unicode text, UTF-8 text, with very long lines (65232)
Hash b9ffcf2506d95091ec2d2dd1101cbdd1
c3f08b1e4f91ad0ffdc8985a339dd1241617cccb
e7cbdf3eb602c2fe47e405f41cf7f50fed01020318b6e6893869fd4a0645a903
GET //javascripts/core/webforms/dist/show_webform_shared.chunk.e51c6b112972dd577bf9.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 20:27:45 GMT
content-encoding: gzip
content-length: 87876
content-type: application/javascript
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
accept-ranges: bytes
etag: W/"1dc09d84-47f3c"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1663360065.dop018.sk1.t,1663360065.cds072.sk1.hn,1663360065.cds264.sk1.c
X-Firefox-Spdy: h2
us-as.gr-cdn.com//javascripts/core/webforms/dist/show.chunk.687c11980651d69638fc.js
205.185.216.42200 OK 415 B URL HTTP/2 us-as.gr-cdn.com//javascripts/core/webforms/dist/show.chunk.687c11980651d69638fc.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (747), with no line terminators
Hash c17ad4d605c3f36cff89841eead09370
32ca6025c29ca386e4f6f3c6648cae4f00828c74
35cf414826d2595a2176ba6ced1fcf0c0b828bfcb727170d44353bea53de9225
GET //javascripts/core/webforms/dist/show.chunk.687c11980651d69638fc.js HTTP/1.1
Host: us-as.gr-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 20:27:45 GMT
content-encoding: gzip
content-length: 415
content-type: application/javascript
last-modified: Fri, 26 Aug 2022 14:47:03 GMT
accept-ranges: bytes
server: nginx
etag: "6308dce7-2eb"
cache-control: max-age=31536000, public
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains
x-hw: 1663360065.dop018.sk1.t,1663360065.cds072.sk1.hn,1663360065.cds235.sk1.c
X-Firefox-Spdy: h2
dinorahblackman.com/wp-content/uploads/cabecera1-1536x480.jpg
68.171.218.77200 OK 54 kB URL HTTP/1.1 dinorahblackman.com/wp-content/uploads/cabecera1-1536x480.jpg
IP 68.171.218.77:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1536x480, components 3\012- data
Hash 56ebd28cd4d83915e855f0525cc5dc68
395617e68b696b60024849b1ccc48882cbf0bcf1
fb69f23cedcf9ff6a433fa57e42512b82aa4a36c221a020067585ae3f7e7fef9
GET /wp-content/uploads/cabecera1-1536x480.jpg HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Tue, 02 Aug 2022 05:19:43 GMT
Accept-Ranges: bytes
Content-Length: 54458
Strict-Transport-Security: max-age=31536000
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
dinorahblackman.com/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
68.171.218.77200 OK 77 kB URL HTTP/1.1 dinorahblackman.com/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 68.171.218.77:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://dinorahblackman.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
Cookie: sd_session_20200815=6324dc3fce5960.30197181
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
Last-Modified: Thu, 15 Sep 2022 17:32:51 GMT
Accept-Ranges: bytes
Content-Length: 77160
Vary: Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=31536000
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: font/woff2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 924cca70f1f5ba02eb6af21a65e0bdd1
3baa75b1ea32068f96cfd5060e4e1eda71c61da8
e55036d990bb7071b7e51e739b8650538ce67d821cc966b0baa99ff40220973b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4966
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:27:45 GMT
Last-Modified: Fri, 16 Sep 2022 19:04:59 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/es_ES/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/es_ES/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 5c06e148666d20484873252046975e9f
dfd6aaa3784fa512df88f57a908c3119a072268c
1ae20ff31cbe917b658e3e69cf8db2fd884b544d88f0e2331c4886fcad8f26fd
GET /es_ES/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dinorahblackman.com
Connection: keep-alive
Referer: https://dinorahblackman.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 877e0795671810def383b553b18b272c
etag: "153a5c1cdef7a21c7ef89d861c8b99f7"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 16 Sep 2022 20:35:01 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: XAbhSGZtIEhIcyUgRpdenw==
x-fb-debug: i3ZULX//QrD2m6wnZlZUQ4CNye+aaHGShl/CnCSQj9gbihUbYOJCgpjSLNTH9A7JAQBgiYLdUqA99FhoOFL6zg==
priority: u=3,i
content-length: 1688
x-fb-trip-id: 1904183273
date: Fri, 16 Sep 2022 20:27:45 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 924cca70f1f5ba02eb6af21a65e0bdd1
3baa75b1ea32068f96cfd5060e4e1eda71c61da8
e55036d990bb7071b7e51e739b8650538ce67d821cc966b0baa99ff40220973b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4966
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 20:27:45 GMT
Last-Modified: Fri, 16 Sep 2022 19:04:59 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/es_ES/sdk.js?hash=df233c3f15d96046209b1630c7358645
31.13.72.12200 OK 89 kB URL HTTP/2 connect.facebook.net/es_ES/sdk.js?hash=df233c3f15d96046209b1630c7358645
IP 31.13.72.12:0
File type ASCII text, with very long lines (17847)
Hash 25cfbf81c5888369dd2da98fc416b2fc
902b841adb411e0529eb355faf49d84ff5ef3b84
98f0688474f1fd45fdf8b88fd9977dd0ef0faf796860d7f64929d7c2aa78c8e3
GET /es_ES/sdk.js?hash=df233c3f15d96046209b1630c7358645 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dinorahblackman.com
Connection: keep-alive
Referer: https://dinorahblackman.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 14662f7717e049af8118292670560937
etag: "4c342c3b56c9acf8267de5ca4ee78c32"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 16 Sep 2023 18:43:04 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: Jc+/gcWIg2ndLamPxBay/A==
x-fb-debug: JM09YCUALvyWSc+XbYBOA10jUkpOK7Bfk0jA1KWOC63+YYAC2apH7Y7wlcbIpxBAKEQQwWewUhvOIqO1a57MPw==
content-length: 88725
x-fb-trip-id: 1904183273
date: Fri, 16 Sep 2022 20:27:45 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=312631733597785&ev=fb_page_view&dl=https%3A%2F%2Fdinorahblackman.com%2Flogin.php%3Fonline_id%3Daf0af8b519063e57bbeacc4b3%26country%26iso&rl=&if=false&ts=1663360049322&sw=1280&sh=1024&at=
31.13.72.36200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=312631733597785&ev=fb_page_view&dl=https%3A%2F%2Fdinorahblackman.com%2Flogin.php%3Fonline_id%3Daf0af8b519063e57bbeacc4b3%26country%26iso&rl=&if=false&ts=1663360049322&sw=1280&sh=1024&at=
IP 31.13.72.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=312631733597785&ev=fb_page_view&dl=https%3A%2F%2Fdinorahblackman.com%2Flogin.php%3Fonline_id%3Daf0af8b519063e57bbeacc4b3%26country%26iso&rl=&if=false&ts=1663360049322&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Fri, 16 Sep 2022 20:27:45 GMT
expires: Fri, 16 Sep 2022 20:27:45 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/55/1/img/01.png
104.160.64.9200 OK 226 B URL HTTP/2 app.getresponse.com/images/common/templates/webform/55/1/img/01.png
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
File type PNG image data, 220 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash e2fcae9ee781ebd72eff4770eabab623
16eea80e06bc9fa967f0f0b061ffd739330912e5
df4997b1231b8189a0d88d95a49c0480fcab0c87e07fb1036f16bf496d6d83c6
GET /images/common/templates/webform/55/1/img/01.png HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/dinorahblackman/?u=BhTyI&webforms_id=5338902&v=0
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:27:45 GMT
content-type: image/png
content-length: 226
last-modified: Mon, 05 Sep 2022 12:39:27 GMT
etag: "6315edff-e2"
expires: Sat, 17 Sep 2022 20:27:45 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
accept-ranges: bytes
X-Firefox-Spdy: h2
app.getresponse.com/images/common/templates/webform/55/1/style.css
104.160.64.9200 OK 12 kB URL HTTP/2 app.getresponse.com/images/common/templates/webform/55/1/style.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 2b0d3c37ad5c6e6e2e886418b131304b
4d9b1c085ceea9a8695713f65ce8e91fe088f3c7
ea27bdc63c7a3ec7a7b76a5603298324290ea86b647990b720d45c6b0fbc7bd2
GET /images/common/templates/webform/55/1/style.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/dinorahblackman/?u=BhTyI&webforms_id=5338902&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:27:45 GMT
content-type: text/css
last-modified: Mon, 05 Sep 2022 12:39:27 GMT
etag: W/"6315edff-146b"
expires: Sat, 17 Sep 2022 20:27:45 GMT
cache-control: max-age=86400
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
142.250.74.163200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 11028, version 1.0\012- data
Hash 1f6d3cf6d38f25d83d95f5a800b8cac3
279f300ca2cbbdf9f5036ef2f438607fbf377daa
796de064b8d80eba7ccacb8ba67d77fdbcdf4b385c844645d452c24537b3108f
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 17:24:34 GMT
expires: Fri, 15 Sep 2023 17:24:34 GMT
cache-control: public, max-age=31536000
age: 97391
last-modified: Wed, 11 May 2022 19:24:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/monoton/v15/5h1aiZUrOngCibe4TkHLQka4BU4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/monoton/v15/5h1aiZUrOngCibe4TkHLQka4BU4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16524, version 1.0\012- data
Hash 6610b7bd8791e6c06993941992248d53
8a6d5c50a2b99109028b48ec2d9254bb0752c276
928a59e0882037e7ac5f2ee58fe1f0e04b66e0ae40e384d3c6b9637155b4512d
GET /s/monoton/v15/5h1aiZUrOngCibe4TkHLQka4BU4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 20:08:23 GMT
expires: Tue, 12 Sep 2023 20:08:23 GMT
cache-control: public, max-age=31536000
age: 346763
last-modified: Tue, 26 Apr 2022 15:00:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/hanalei/v23/E21n_dD8iufIjBRHbz8sVgVSAuo.woff2
142.250.74.163200 OK 49 kB URL HTTP/2 fonts.gstatic.com/s/hanalei/v23/E21n_dD8iufIjBRHbz8sVgVSAuo.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 49068, version 1.0\012- data
Hash 0a3e1039d1a0949ba70a4f627b80725c
1ebdb23c3bade2cb2ae8aebb57f6385b5970345d
8d9f5815a9e68ed19cc48fbf61620b528719064d0c210f5c9aa8f87d37c6e8a0
GET /s/hanalei/v23/E21n_dD8iufIjBRHbz8sVgVSAuo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 49068
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 05:49:19 GMT
expires: Sat, 16 Sep 2023 05:49:19 GMT
cache-control: public, max-age=31536000
age: 52707
last-modified: Thu, 21 Apr 2022 16:41:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmM4MwWJU.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmM4MwWJU.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 16436, version 1.0\012- data
Hash 8b9ed68add1f0f4f93a60936b5caabfc
5144caa4cfffb1b0459cc344ee8d0c97c49fe748
263f1815a716181a09a7b19087cbbd4a916ef7c7e90d9b78282d3c3b1bf6901d
GET /s/lobster/v28/neILzCirqoswsqX9zoKmM4MwWJU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 17:25:10 GMT
expires: Wed, 13 Sep 2023 17:25:10 GMT
cache-control: public, max-age=31536000
age: 270156
last-modified: Tue, 26 Apr 2022 15:01:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext
104.160.64.9200 OK 22 kB URL HTTP/2 app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
Hash 9ecf332179c0c33d9ee460d3d5a16791
94933f2e977ad054628da1cdc2be3fca974fb87a
bc2a75f862c58fa213b664d4a8b9a9e4d5a74629085b166e008731f3b5c5b643
GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DArvo%3A400%2C400i%2C700%2C700i%3Alatin%7CRoboto%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CRoboto%2BSlab%3A100%2C300%2C400%2C700%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CRoboto%2BCondensed%3A300%2C300i%2C400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7CGrand%2BHotel%3A400%3Alatin%2Clatin-ext%7CMonoton%3A400%3Alatin%7CHanalei%3A400%3Alatin%2Clatin-ext%7CLobster%3A400%3Alatin%2Clatin-ext%2Ccyrillic%2Cvietnamese%7CLobster%2BTwo%3A400%2C400i%2C700%2C700i%3Alatin%7CChanga%2BOne%3A400%2C400i%3Alatin%2Clatin-ext%7CSpecial%2BElite%3A400%3Alatin%7CChewy%3A400%3Alatin%7CLuckiest%2BGuy%3A400%3Alatin%7CFredoka%2BOne%3A400%3Alatin%7CFugaz%2BOne%3A400%3Alatin%7CSansita%2BOne%3A400%3Alatin%7CPacifico%3A400%3Alatin%7CMerienda%2BOne%3A400%3Alatin%7CLato%3A100%2C100i%2C300%2C300i%2C400%2C400i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%7CSource%2BSans%2BPro%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Cvietnamese%7CAmatic%2BSC%3A400%2C700%3Alatin%2Clatin-ext%7CArchivo%2BBlack%3A400%3Alatin%2Clatin-ext%7CAlfa%2BSlab%2BOne%3A400%3Alatin%7CBad%2BScript%3A400%3Alatin%2Ccyrillic%7CBevan%3A400%3Alatin%7CCabin%3A400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%3Alatin%7CCrete%2BRound%3A400%2C400i%3Alatin%2Clatin-ext%7CDosis%3A200%2C300%2C400%2C500%2C600%2C700%2C800%3Alatin%2Clatin-ext HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/dinorahblackman/?u=BhTyI&webforms_id=5338902&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:27:45 GMT
content-type: text/css; charset=utf-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6MmBp0u-.woff2
142.250.74.163200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6MmBp0u-.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 21028, version 1.0\012- data
Hash e253ab00a4ae4563e11649db12bf94ed
59eded41d8fca07c5e530ebf604a43d8f26419bc
1b370fdd128795c5a76b8b3e306120d13d5a70fc6f31c5db83870a7a37f7c27e
GET /s/pacifico/v22/FwZY7-Qmy14u9lezJ-6H6MmBp0u-.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 21:07:37 GMT
expires: Tue, 12 Sep 2023 21:07:37 GMT
cache-control: public, max-age=31536000
age: 343209
last-modified: Mon, 09 May 2022 18:31:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2
142.250.74.163200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13976, version 1.0\012- data
Hash e7e52c955aa33e618baf437a16539524
13ecb55bb760d6980a1b1331085630ef5ed84e9f
07c94892c3e0ac93d2bcb3a9cb88aa67ea47b3d1aa89bc39dfcc2b025dcd8988
GET /s/lato/v23/S6uyw4BMUTPHjx4wXiWtFCc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:54:12 GMT
expires: Fri, 15 Sep 2023 16:54:12 GMT
cache-control: public, max-age=31536000
age: 99214
last-modified: Tue, 26 Apr 2022 15:50:23 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/bevan/v20/4iCj6KZ0a9NXjG8dWCvZtUSI.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/bevan/v20/4iCj6KZ0a9NXjG8dWCvZtUSI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12520, version 1.0\012- data
Hash cc5eed8a933cc7621747a1e412278788
99b17da547a182ee9e4e1e51cd882776180eb437
bed6c3d97f758064b3b1b77b837972c1939d22c06c1a875e2c53382b47466181
GET /s/bevan/v20/4iCj6KZ0a9NXjG8dWCvZtUSI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12520
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 17:07:54 GMT
expires: Fri, 15 Sep 2023 17:07:54 GMT
cache-control: public, max-age=31536000
age: 98392
last-modified: Tue, 19 Apr 2022 19:12:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2
142.250.74.163200 OK 29 kB URL HTTP/2 fonts.gstatic.com/s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 29448, version 1.0\012- data
Hash e27d5ac8c6b65ef044382651394fae47
86c82324e68383a3489f49e8df639d1ec106e04b
97851eef36494add9813e74e64c29aacd125f298bee582af057da8b11be153e4
GET /s/dosis/v27/HhyaU5sn9vOmLzloC_WoEoZK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29448
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 15:47:19 GMT
expires: Sat, 16 Sep 2023 15:47:19 GMT
cache-control: public, max-age=31536000
age: 16827
last-modified: Mon, 11 Jul 2022 21:20:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvqdnsF3-OAw.woff2
142.250.74.163200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvqdnsF3-OAw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 26164, version 1.0\012- data
Hash 51d32f8359cec5ff01790682835a703d
8294ecfdb017a15dc22514e883511b89468042eb
cad56ee9af0bbd528a31fef21f16bb7499dd00438f4c9fcf861383c7e64982d4
GET /s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6XvqdnsF3-OAw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26164
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 04:56:52 GMT
expires: Sun, 10 Sep 2023 04:56:52 GMT
cache-control: public, max-age=31536000
age: 574254
last-modified: Fri, 24 Jun 2022 18:42:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2
142.250.74.163200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 25380, version 1.0\012- data
Hash a4da6b64ef6b1dc66019a9005a39f0b6
afe914fa3d5f81d7b14b1c6052e397924efacc66
05901e9ca0453daeb0b97d3157710a32db02c7cb7901e6d8bb96ec01b157d38c
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8Gl-1PKw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25380
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 21:08:14 GMT
expires: Tue, 12 Sep 2023 21:08:14 GMT
cache-control: public, max-age=31536000
age: 343172
last-modified: Mon, 18 Jul 2022 19:13:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
142.250.74.163200 OK 42 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 41852, version 1.0\012- data
Hash eda9570095419a02305375af62ca8a7d
2602a1420637014af148ef49bd072937d7000768
1c43b0ad19f388f2381cbbb9ed34cee414d5f74d35897d496f5806c45a02ae0a
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 41852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 21:10:15 GMT
expires: Tue, 12 Sep 2023 21:10:15 GMT
cache-control: public, max-age=31536000
age: 343051
last-modified: Mon, 18 Jul 2022 19:45:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2
142.250.74.163200 OK 9.7 kB URL HTTP/2 fonts.gstatic.com/s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 9728, version 1.0\012- data
Hash ecbaa4c9c4ab43f177166fcc2a0d161d
3a80ace0fd0d8967f4b15be5ff60be33d94e3f6c
0758816c25896d8ff013f6c53c2bfb27610e910c25ca452b49caa09be293fe86
GET /s/glegoo/v14/_Xmt-HQyrTKWaw25jKOYIoxlxg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9728
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 00:30:29 GMT
expires: Sat, 16 Sep 2023 00:30:29 GMT
cache-control: public, max-age=31536000
age: 71837
last-modified: Thu, 21 Apr 2022 17:07:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15800, version 1.0\012- data
Hash 60ba598c8efc22ede11d3c1bad7a9eb1
837b29e6ec3d6cf8d48e038becfce35b3fd315e9
360e563a643439c7884d89d38e66d4a31a5ab5af27b7fdcd430e18a25809b9e2
GET /s/amaranth/v18/KtkuALODe433f0j1zMnFHdCIwWzX.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 22:26:36 GMT
expires: Wed, 13 Sep 2023 22:26:36 GMT
cache-control: public, max-age=31536000
age: 252070
last-modified: Tue, 19 Apr 2022 19:39:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7I_FMl_E.woff2
142.250.74.163200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7I_FMl_E.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35560, version 1.0\012- data
Hash fc1944b3edea5f8e691d9b21755417da
a86ed4a634987d2531990db22c8e03076aba256e
a03ee3f3ced9496c1fbebb82101c92022d6aee2edb66d7fe10faa07a495e74a8
GET /s/lora/v26/0QIvMX1D_JOuMwr7I_FMl_E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35560
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 19:01:19 GMT
expires: Tue, 12 Sep 2023 19:01:19 GMT
cache-control: public, max-age=31536000
age: 350787
last-modified: Mon, 15 Aug 2022 18:08:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2
142.250.74.163200 OK 29 kB URL HTTP/2 fonts.gstatic.com/s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 29440, version 1.0\012- data
Hash 4b99ce7b01453671b66feda5899ce4bb
fbfdd01952861ad8ae8ed992339fb7b5eb0472aa
ff273685b39a91b5e4111b70325051e45d3ef9e8e6b808b0fd35de19043a9f76
GET /s/oregano/v13/If2IXTPxciS3H4S2oZDVPhvNzyI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://app.getresponse.com/
Origin: https://app.getresponse.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Sep 2022 02:06:42 GMT
expires: Wed, 13 Sep 2023 02:06:42 GMT
cache-control: public, max-age=31536000
age: 325264
last-modified: Mon, 09 May 2022 19:08:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
dinorahblackman.com/favicon.ico
68.171.218.77302 Found 0 B URL HTTP/1.1 dinorahblackman.com/favicon.ico
IP 68.171.218.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181; wpglobus-language-old=es; wpglobus-language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 302 Found
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
X-Frame-Options: SAMEORIGIN
Link: <https://dinorahblackman.com/wp-json/>; rel="https://api.w.org/"
X-Redirect-By: WordPress
Set-Cookie: sd_session_20200815=6324dc41ef1363.22127130; path=/
Location: https://dinorahblackman.com/wp-includes/images/w-logo-blue-white-bg.png
Strict-Transport-Security: max-age=31536000
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
dinorahblackman.com/wp-includes/images/w-logo-blue-white-bg.png
68.171.218.77200 OK 4.1 kB URL HTTP/1.1 dinorahblackman.com/wp-includes/images/w-logo-blue-white-bg.png
IP 68.171.218.77:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Connection: keep-alive
Cookie: sd_session_20200815=6324dc41ef1363.22127130; wpglobus-language-old=es; wpglobus-language=es
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:46 GMT
Server: Apache
Last-Modified: Tue, 16 Nov 2021 00:04:01 GMT
Accept-Ranges: bytes
Content-Length: 4119
Strict-Transport-Security: max-age=31536000
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png
dinorahblackman.com/?wordfence_lh=1&hid=67CD60C0EE91F6799C4A445E2B9304F6&r=0.3503437481010496
68.171.218.77200 OK 0 B URL HTTP/1.1 dinorahblackman.com/?wordfence_lh=1&hid=67CD60C0EE91F6799C4A445E2B9304F6&r=0.3503437481010496
IP 68.171.218.77:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?wordfence_lh=1&hid=67CD60C0EE91F6799C4A445E2B9304F6&r=0.3503437481010496 HTTP/1.1
Host: dinorahblackman.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/login.php?online_id=af0af8b519063e57bbeacc4b3&country&iso
Cookie: sd_session_20200815=6324dc3fce5960.30197181; wpglobus-language-old=es; wpglobus-language=es
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 20:27:45 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
X-Frame-Options: SAMEORIGIN
Link: <https://dinorahblackman.com/wp-json/>; rel="https://api.w.org/", <https://dinorahblackman.com/wp-json/wp/v2/pages/7814>; rel="alternate"; type="application/json", <https://dinorahblackman.com/>; rel=shortlink
Connection: close
X-Robots-Tag: noindex
Set-Cookie: sd_session_20200815=6324dc42492703.99160527; path=/
Content-Length: 0
Strict-Transport-Security: max-age=31536000
Vary: User-Agent
Content-Type: text/javascript;charset=UTF-8
app.getresponse.com/login?p=ruxitagentjs_ICA27QVfgjqrux_10247220811100421.js
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/login?p=ruxitagentjs_ICA27QVfgjqrux_10247220811100421.js
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /login?p=ruxitagentjs_ICA27QVfgjqrux_10247220811100421.js HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/dinorahblackman/?u=BhTyI&webforms_id=5338902&v=0
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:27:45 GMT
content-type: text/html;charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: core=k9q213d4nqvjh0v2114pnk9n8e; path=/; domain=.getresponse.com; secure; HttpOnly
timeout=logout_43200; expires=Sat, 17-Sep-2022 08:27:45 GMT; Max-Age=43200; path=/; domain=getresponse.com
gr83p_59db3877322f17e6c0092c106bdf75dd=true; expires=Tue, 15-Nov-2022 20:27:45 GMT; Max-Age=5184000; path=/; domain=.getresponse.com
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/stylesheets/core/pages/webFormV2/public/gr_wf_v2.css
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/stylesheets/core/pages/webFormV2/public/gr_wf_v2.css
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /stylesheets/core/pages/webFormV2/public/gr_wf_v2.css HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:27:45 GMT
content-type: text/css
last-modified: Fri, 16 Sep 2022 06:10:57 GMT
etag: W/"63241371-1fd8"
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/site2/dinorahblackman/?u=BhTyI&webforms_id=5338902&v=0
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/site2/dinorahblackman/?u=BhTyI&webforms_id=5338902&v=0
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /site2/dinorahblackman/?u=BhTyI&webforms_id=5338902&v=0 HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:27:45 GMT
content-type: text/html;charset=UTF-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
set-cookie: timeout=logout_43200; expires=Sat, 17-Sep-2022 08:27:45 GMT; Max-Age=43200; path=/; domain=getresponse.com
gr83p_59db3877322f17e6c0092c106bdf75dd=true; expires=Tue, 15-Nov-2022 20:27:45 GMT; Max-Age=5184000; path=/; domain=.getresponse.com
webformv2_opened_5338902=0; expires=Sun, 15-Jan-2023 20:27:45 GMT; Max-Age=10454400; path=/
dtCookie=v_4_srv_5_sn_137B2FDA39F760576334698CE7895691_perc_100000_ol_0_mul_1_app-3Ab4e45dc50c521743_0; Path=/; Domain=.getresponse.com
x-oneagent-js-injection: true
x-ruxit-js-agent: true
server-timing: dtSInfo;desc="1"
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin
104.160.64.9200 OK 0 B URL HTTP/2 app.getresponse.com/get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin
IP 104.160.64.9:0
ASN #46469 GETRESPONSE-IMPLIX
GET /get_file_from_url.html?url=https%3A%2F%2Ffonts.googleapis.com%2Fcss%3Ffamily%3DDancing%2BScript%3A400%2C700%3Alatin%7CDroid%2BSans%3A400%2C700%3Alatin%7COpen%2BSans%3A300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i%3Alatin%2Clatin-ext%2Ccyrillic%2Ccyrillic-ext%2Cvietnamese%2Cgreek%2Cgreek-ext%7COswald%3A300%2C400%2C700%3Alatin%2Clatin-ext%7CRaleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%3Alatin%7CGlegoo%3A400%2C700%3Alatin%2Clatin-ext%2Cdevanagari%7CGreat%2BVibes%3A400%3Alatin%2Clatin-ext%7CTenor%2BSans%3A400%3Alatin%2Clatin-ext%2Ccyrillic%7CTitillium%2BWeb%3A200%2C200i%2C300%2C300i%2C400%2C400i%2C600%2C600i%2C700%2C700i%2C900%3Alatin%2Clatin-ext%7CLora%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%2Ccyrillic%7CAmaranth%3A400%2C400i%2C700%2C700i%3Alatin%2Clatin-ext%7COregano%3A400%2C400i%3Alatin%2Clatin-ext%7CQuicksand%3A300%2C400%2C700%3Alatin%7CExo%2B2%3A100%2C100i%2C200%2C200i%2C300%2C300i%2C400%2C400i%2C500%2C500i%2C600%2C600i%2C700%2C700i%2C900%2C900i%3Alatin%2Clatin-ext%2Ccyrillic%7CEnglebert%3A400%3Alatin%2Clatin-ext%7CGabriela%3A400%3Alatin%2Clatin-ext%7CYesteryear%3A400%3Alatin%7CJulius%2BSans%2BOne%3A400%3Alatin%2Clatin-ext%7CNeuton%3A200%2C300%2C400%2C400i%2C700%2C800%3Alatin%2Clatin-ext%7CNunito%3A300%2C400%2C700%3Alatin%7CMedula%2BOne%3A400%3Alatin%7CVarela%3A400%3Alatin%2Clatin-ext%7CPT%2BSans%3A400%2C400i%2C700%2C700i%3Alatin%2Ccyrillic%2Ccyrillic-ext%7CWalter%2BTurncoat%3A400%3Alatin HTTP/1.1
Host: app.getresponse.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://app.getresponse.com/site2/dinorahblackman/?u=BhTyI&webforms_id=5338902&v=0
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 20:27:45 GMT
content-type: text/css; charset=utf-8
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-frame-options: sameorigin
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: accelerometer *; ambient-light-sensor *; autoplay *; camera *; encrypted-media *; fullscreen *; geolocation *; gyroscope *; magnetometer *; microphone *; midi *; payment *; picture-in-picture *; speaker *; sync-xhr *; usb *; vr *
content-security-policy-report-only: default-src https: wss: blob: 'unsafe-inline' 'unsafe-eval'; img-src https: data: blob:; frame-src https:; font-src https: data:; report-uri https://index-log.getresponse.com/index/marketing_csp?source=app-gr
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3Aregular%2C600%2C700%7COleo+Script%3Aregular%7CAlegreya%3Aregular%7CAmiko%3Aregular&1&display=swap&ver=2.1.5
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3Aregular%2C600%2C700%7COleo+Script%3Aregular%7CAlegreya%3Aregular%7CAmiko%3Aregular&1&display=swap&ver=2.1.5
IP 142.250.74.10:0
GET /css?family=Open+Sans%3Aregular%2C600%2C700%7COleo+Script%3Aregular%7CAlegreya%3Aregular%7CAmiko%3Aregular&1&display=swap&ver=2.1.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dinorahblackman.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 20:27:44 GMT
date: Fri, 16 Sep 2022 20:27:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2