firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash c9df6b36bf16969ac566c1b798362e4a
e56eff34815153ae019a4bf63eb9746dd9ae2e5b
33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 22 Oct 2022 06:41:45 GMT
Expires: Sat, 22 Oct 2022 07:08:06 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: z1qKzmP3NBECz7G0bjG9AJ9mSlVadWy5ILeGMinw3T8QbjoAwdhUCQ==
Age: 2636
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c19f4a1def760c07cbc4aec1d0d6c050
6ad911a7c02f5e5fdd82fa86cae0453528d53a6d
750bba81910a4bbd78ab484ba03781a36459a0aec147d7c47424e9a9bf152b40
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "750BBA81910A4BBD78AB484BA03781A36459A0AEC147D7C47424E9A9BF152B40"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9023
Expires: Sat, 22 Oct 2022 09:56:04 GMT
Date: Sat, 22 Oct 2022 07:25:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9dc4f23f82148797f6d8041bdda3c7f7
6841ded3e2dd94fd762316d01efd43f7aafb8354
e229db1854a85b320cee574e805210f3adf5797136ea820c0a0ce9abcd63d4dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E229DB1854A85B320CEE574E805210F3ADF5797136EA820C0A0CE9ABCD63D4DD"
Last-Modified: Thu, 20 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8942
Expires: Sat, 22 Oct 2022 09:54:43 GMT
Date: Sat, 22 Oct 2022 07:25:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +g61orkCK+dGdkjbOhFO8cNBn3qlUIS/yiOhJDbn0U5AO83vyDspLaSmdYmAv4vnj+TW540/oY8=
x-amz-request-id: XKP0TABCN37B5428
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 22 Oct 2022 06:37:28 GMT
age: 2893
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 22 Oct 2022 07:25:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
lawodmetals.com/eiru/hrofqmamsunqiuu
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/hrofqmamsunqiuu
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/hrofqmamsunqiuu HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:41 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:41 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/mediaelement@4.2.7/build/mediaelementplayer.min.css
151.101.85.229200 OK 2.6 kB URL HTTP/2 cdn.jsdelivr.net/npm/mediaelement@4.2.7/build/mediaelementplayer.min.css
IP 151.101.85.229:0
File type ASCII text, with very long lines (11407), with no line terminators
Hash e577044c9422df7ca9bbf60884cda690
cf7db6d866bf143ad528c0ce9bfe2cfe8d0066c1
79e4224982b915521c38b5e5541fed3558fa1dfb7711c6fd92fd99dbbaa2a506
GET /npm/mediaelement@4.2.7/build/mediaelementplayer.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 4.2.7
x-jsd-version-type: version
etag: W/"2c8f-QykGc0G8eqAhcFkBtDziR7793Rc"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 22 Oct 2022 07:25:42 GMT
age: 3142408
x-served-by: cache-fra19122-FRA, cache-bma1647-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2602
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 794a6d2df00fc15e8b4ed6ff4992525e
f8d67c7fd506709d7232298859fe2b3daf374f29
02d38690754b5d99178d576fe6df6c1ca881a2bbd806a75c633c371fac0221da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5536550e9645718a1c31224cc77c7ba0
be9926ff49c075f4d775aadda31bae8c52f0c91c
8020d8c8de9e03e7fca9fba6e106bfa8f6f11f9ba2e9904777a64001b16c623b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5679
Cache-Control: max-age=160042
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:42 GMT
Etag: "635352f1-117"
Expires: Mon, 24 Oct 2022 03:53:04 GMT
Last-Modified: Sat, 22 Oct 2022 02:18:25 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash de483e8f5b8968a425b8a09ef33442b8
98025e93ca64d52a839542aace6e1ae23c6734b9
367d7539d5ba7ea7f4e1614e41e3d163c02bce6cbd42063e5bb1e28f309778f6
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 22 Oct 2022 07:25:42 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "5B781FAF5B2B8055208012DABAE431B0EEE8F362"
Expires: Sat, 22 Oct 2022 18:00:00 GMT
Last-Modified: Sat, 22 Oct 2022 06:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3153
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75e08021e82f0b61-OSL
lawodmetals.com/eiru/fonts/icomoon/style.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/fonts/icomoon/style.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/fonts/icomoon/style.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1506ef80e70511b505930de646267d36
81be48067475ec7a699a3084b14160b56bad1f77
c252a3df87247c3b54eff3d4fc2ea45db2463a038a75d91501482f46e292174c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=164130
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:42 GMT
Etag: "63537918-117"
Expires: Mon, 24 Oct 2022 05:01:12 GMT
Last-Modified: Sat, 22 Oct 2022 05:01:12 GMT
Server: nginx
Content-Length: 279
lawodmetals.com/eiru/css/magnific-popup.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/css/magnific-popup.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/css/magnific-popup.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/css/owl.carousel.min.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/css/owl.carousel.min.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/css/owl.carousel.min.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/css/animate.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/css/animate.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/css/animate.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 22 Oct 2022 06:43:40 GMT
Expires: Sat, 22 Oct 2022 07:00:40 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zILytuAAKigKrU2RbH51WhURPBmn4RmclFJ1FLhOyDnlv_Ml89-cyA==
Age: 2522
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 794a6d2df00fc15e8b4ed6ff4992525e
f8d67c7fd506709d7232298859fe2b3daf374f29
02d38690754b5d99178d576fe6df6c1ca881a2bbd806a75c633c371fac0221da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash afeae912181e104eea06fc7edd946cb7
406b42ad9280f3e1a2080019d0e28d329552b9d9
84db56c9aae95b86f61029a06ef9e41b7f67deb81ac5919d4f6a552a96f23326
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 22 Oct 2022 07:25:42 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 19 Oct 2022 05:01:59 GMT
Expires: Wed, 26 Oct 2022 05:01:58 GMT
Etag: "406b42ad9280f3e1a2080019d0e28d329552b9d9"
Cache-Control: max-age=336375,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75e080227d24b521-OSL
lawodmetals.com/eiru/fonts/flaticon/font/flaticon.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/fonts/flaticon/font/flaticon.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/fonts/flaticon/font/flaticon.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/bootstrap.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/bootstrap.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/bootstrap.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/jquery.stellar.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/jquery.stellar.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/jquery.stellar.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/jquery.countdown.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/jquery.countdown.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/jquery.countdown.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/jquery.magnific-popup.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/jquery.magnific-popup.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/jquery.magnific-popup.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/bootstrap-datepicker.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/bootstrap-datepicker.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/bootstrap-datepicker.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/aos.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/aos.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/aos.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/mediaelement-and-player.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/mediaelement-and-player.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/mediaelement-and-player.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/main.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/main.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/main.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/a66.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/a66.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/a66.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f47cc320695635b544a761f72f3afc6f
b7cee764dcb0a625e0f8e0b4a4fce04548a1bf76
78608be3d0d6aaaf0364aed316b8676ab28d23c9b6a8ac6c147cf5d16e5cc283
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3873
Cache-Control: max-age=92738
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:42 GMT
Etag: "63525317-1d7"
Expires: Sun, 23 Oct 2022 09:11:20 GMT
Last-Modified: Fri, 21 Oct 2022 08:06:47 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
lawodmetals.com/eiru/images/logo2.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/logo2.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/logo2.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/a27.jpg
67.225.140.68508 Loop Detected 224 B URL HTTP/2 lawodmetals.com/eiru/images/a27.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 29ed8254f5314e185addeb7561e047c4
27d2b382ab6e31b8ddd88a9158dc30760e51c190
07400dd2f6cc8677d5f5f3d46ed64aadb851c3f70e0c97a972333320a6c78b9d
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/a27.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 508 Loop Detected
retry-after: 14400
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 224
content-type: text/html
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/d8.jpg
67.225.140.68508 Loop Detected 224 B URL HTTP/2 lawodmetals.com/eiru/images/d8.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 29ed8254f5314e185addeb7561e047c4
27d2b382ab6e31b8ddd88a9158dc30760e51c190
07400dd2f6cc8677d5f5f3d46ed64aadb851c3f70e0c97a972333320a6c78b9d
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/d8.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 508 Loop Detected
retry-after: 14400
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 224
content-type: text/html
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/a28.jpg
67.225.140.68508 Loop Detected 224 B URL HTTP/2 lawodmetals.com/eiru/images/a28.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 29ed8254f5314e185addeb7561e047c4
27d2b382ab6e31b8ddd88a9158dc30760e51c190
07400dd2f6cc8677d5f5f3d46ed64aadb851c3f70e0c97a972333320a6c78b9d
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/a28.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 508 Loop Detected
retry-after: 14400
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 224
content-type: text/html
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/d7.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/d7.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/d7.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1506ef80e70511b505930de646267d36
81be48067475ec7a699a3084b14160b56bad1f77
c252a3df87247c3b54eff3d4fc2ea45db2463a038a75d91501482f46e292174c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6533
Cache-Control: max-age=170663
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:42 GMT
Etag: "63537918-117"
Expires: Mon, 24 Oct 2022 06:50:05 GMT
Last-Modified: Sat, 22 Oct 2022 05:01:12 GMT
Server: ECS (amb/6B93)
X-Cache: HIT
Content-Length: 279
push.services.mozilla.com/
34.215.56.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.56.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0JVd0GtjBWlUXkCy6T4iRw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ex8vOP4YS35Brt8pA1oXQF1HOXU=
lawodmetals.com/eiru/css/bootstrap.min.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/css/bootstrap.min.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/css/bootstrap.min.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/css/jquery-ui.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/css/jquery-ui.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/css/jquery-ui.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/css/bootstrap-datepicker.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/css/bootstrap-datepicker.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/css/bootstrap-datepicker.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/css/owl.theme.default.min.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/css/owl.theme.default.min.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/css/owl.theme.default.min.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/jquery-ui.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/jquery-ui.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/jquery-ui.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/css/aos.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/css/aos.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/css/aos.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/owl.carousel.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/owl.carousel.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/owl.carousel.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/jquery-migrate-3.0.1.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/jquery-migrate-3.0.1.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/jquery-migrate-3.0.1.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/css/style.css
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/css/style.css
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/css/style.css HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/jquery-3.3.1.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/jquery-3.3.1.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/jquery-3.3.1.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/js/popper.min.js
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/js/popper.min.js
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /eiru/js/popper.min.js HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/a1.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/a1.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/a1.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/d1.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/d1.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/d1.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/a82.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/a82.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/a82.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/f2.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/f2.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/f2.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/f1.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/f1.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/f1.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/f3.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/f3.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/f3.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 39482cd22cc10472b2b07e40b39b2f00
85b50ef49c1729db54d2858fba2d944d39d23d7c
98bc3e2b16c64ba42538420bbbf05499036327949c2ba74cc206b8500bd7a6dc
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5969
Cache-Control: max-age=117543
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:43 GMT
Etag: "6352abcd-116"
Expires: Sun, 23 Oct 2022 16:04:46 GMT
Last-Modified: Fri, 21 Oct 2022 14:25:17 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
lawodmetals.com/eiru/images/d6.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/d6.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/d6.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/c3.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/c3.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/c3.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:42 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:42 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/a5.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/a5.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/a5.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/d24.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/d24.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/d24.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/a13.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/a13.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/a13.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/a27.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/a27.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/a27.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/a28.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/a28.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/a28.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/eiru/images/d8.jpg
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/eiru/images/d8.jpg
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /eiru/images/d8.jpg HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
lawodmetals.com/favicon.ico
67.225.140.68200 OK 4.5 kB URL HTTP/2 lawodmetals.com/favicon.ico
IP 67.225.140.68:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (395), with CRLF line terminators
Hash dbe9cf8f304d50d31a0e55b409bf5620
b801337896dcd9114d785b32dc7cfb3a12dce7db
796b3a5b35e7d179ed48b15ab58a880b30b71a176a39f0782291e824edf5c47f
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: lawodmetals.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/eiru/hrofqmamsunqiuu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=600
expires: Sat, 22 Oct 2022 07:35:43 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4465
content-type: text/html; charset=UTF-8
date: Sat, 22 Oct 2022 07:25:43 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9155
Expires: Sat, 22 Oct 2022 09:58:18 GMT
Date: Sat, 22 Oct 2022 07:25:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9155
Expires: Sat, 22 Oct 2022 09:58:18 GMT
Date: Sat, 22 Oct 2022 07:25:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9155
Expires: Sat, 22 Oct 2022 09:58:18 GMT
Date: Sat, 22 Oct 2022 07:25:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9155
Expires: Sat, 22 Oct 2022 09:58:18 GMT
Date: Sat, 22 Oct 2022 07:25:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f1b833a135e4d839859e4994f349bb6c
399b607015c4d9200df20084c7396591007dc995
28db09a2a0e821b37dc1cfb710bf896c438755bfc992eb775f41128b0e52e5d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28DB09A2A0E821B37DC1CFB710BF896C438755BFC992EB775F41128B0E52E5D1"
Last-Modified: Fri, 21 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9155
Expires: Sat, 22 Oct 2022 09:58:18 GMT
Date: Sat, 22 Oct 2022 07:25:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f34cfb-1029-497a-8d09-65db888e6f11.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f34cfb-1029-497a-8d09-65db888e6f11.jpeg
IP 34.120.237.76:0
Hash bd2d66b50b63e9994f76e91444289d32
da49e54ff769a8c2f46826fd19f7abfb9fe3bc3b
091e5cf98bd05732c02452c32e6715f46124ed7715ce2c536a4b5155390fc2c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f34cfb-1029-497a-8d09-65db888e6f11.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7821
x-amzn-requestid: b3b72561-80fd-4b73-862c-ad070f135634
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-LzEkrIAMFmrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635310b1-73f427947c17f35667c0b443;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mq7h4TJkHKd-I9c01ao1yJ3izpJLRiMG_Sk3_e2pQDGCyunY2RlI3Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:02:32 GMT
age: 33791
etag: "f6c54dbdfad7e243fe38c03f004c4c79f96b2892"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51f7337c-5083-4ab6-8ca1-af76462469cb.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51f7337c-5083-4ab6-8ca1-af76462469cb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbd033382cf8e2a10252a9226655da87
b594145cd6bde0986fbdd4cf8d00f247662882fe
f4cc8aa9a6271e4a3ca944abece369520f17c437f73e20672d27dab3f368f26c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F51f7337c-5083-4ab6-8ca1-af76462469cb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4699
x-amzn-requestid: 7a36036e-3742-437c-a80e-654f406738e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aV_HtF_lIAMFcHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63524564-493971a7550050171a0a84b2;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 07:08:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: EsBKTdRhjtMQBkozKG67Gw3Tn_ps2eUaVXdV7Dy00BSbuKTPayQpsw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Sat, 22 Oct 2022 07:14:08 GMT
age: 695
etag: "b594145cd6bde0986fbdd4cf8d00f247662882fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd19113d-c1df-4109-b7c9-1d4ed544d9d8.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd19113d-c1df-4109-b7c9-1d4ed544d9d8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 97e9c05ece38dedeaa752c612029c78d
715f72710799f828e2c06932c33919d8f23844f5
29408c0bd34660a836f59a7abb61c7c2b1f864b31194787ddf4d178314184b96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd19113d-c1df-4109-b7c9-1d4ed544d9d8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8639
x-amzn-requestid: e598ff88-e152-4b9e-af16-aa30dcf452a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-m5HlMoAMFvjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6353115f-7f17a59522afc40e64ac216d;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:38:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sGxdiTeIFErXZkMgV8fvRZINC3dtZ1kue349gMCvWptL_ZJvgGRWHA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:00:27 GMT
age: 33916
etag: "715f72710799f828e2c06932c33919d8f23844f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd771af0d-55ee-450f-bbb3-a9e419e74a51.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd771af0d-55ee-450f-bbb3-a9e419e74a51.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 616e14aee034bbf77c3b74b3ea53961b
ebf69c1ff6dc9450f33aef5dc2403d4df17a4c2c
0ae716474e2837c90c658d635fb9db2c8d4cdb7bf025b8e4e9e802e3ff56b0c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd771af0d-55ee-450f-bbb3-a9e419e74a51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7372
x-amzn-requestid: 080f5f7f-51a8-4ef5-9acc-0c7f7f64defb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-ojEg2IAMFjPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63531169-5106c8af6e77450c33a0c899;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:38:49 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vP9aRT8xL5F2kf36A-lMaIQ9FSAEUGo8jmx9y63iIBDdyWYujkXXPw==
via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:05:57 GMT
age: 33586
etag: "ebf69c1ff6dc9450f33aef5dc2403d4df17a4c2c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe483f228-39c4-47f0-a896-a8e068a8e128.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe483f228-39c4-47f0-a896-a8e068a8e128.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f0c231ec92860d4904212d6629102eb5
f1a5bdcfc17d101f97bec17d312b60f6a012e833
10a5b0192165bdbcbc52dfa2d3ba928e0f8f8d51cbba037cdf326391d77f973d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe483f228-39c4-47f0-a896-a8e068a8e128.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14641
x-amzn-requestid: 7d857583-c433-4627-80a3-adbd17617218
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-MSHNWoAMFfhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635310b4-44c233a100a26cda663cf850;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: F4nD1gpKmgeDR74chfL73p-GozN6nOwgK3TWt14-we44Gi92pM11nQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:00:16 GMT
age: 33927
etag: "f1a5bdcfc17d101f97bec17d312b60f6a012e833"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63520430-d90d-4f99-ad29-214d03cc1525.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63520430-d90d-4f99-ad29-214d03cc1525.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd562cc3980d93423b625d59deea0f95
5c8646f62e19f78579fca8473edcc4e5de0e161f
b77d018b77f627e99ae6d6d2eac6c56d92499779abdbb85da3045ccb8df5211e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63520430-d90d-4f99-ad29-214d03cc1525.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6801
x-amzn-requestid: 668e33b2-d3e8-46c6-acae-b99777f605d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aX-M6HOBIAMFyNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635310b8-2b4e95e24c0dd2f33f8a2dc7;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 21:35:52 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DrXs0i2RMDtmHX8N4BN6LtiogZr56Da3yPFpye5siVtx0dZfLEXk7g==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 22:02:19 GMT
age: 33804
etag: "5c8646f62e19f78579fca8473edcc4e5de0e161f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
embed.tawk.to/601e8c0dc31c9117cb7672b9/1etrl65r0
172.67.38.66200 OK 933 B URL HTTP/2 embed.tawk.to/601e8c0dc31c9117cb7672b9/1etrl65r0
IP 172.67.38.66:0
Hash 82b6f00bd3acb2819b27aff2c29b5b23
409d6137302d355cfbeb66f5877d36d19f3ed25f
8a82465964a53e82882de89eabd8c7ba076af3f7ad553658e5df336280e8bdf2
GET /601e8c0dc31c9117cb7672b9/1etrl65r0 HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lawodmetals.com
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:43 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63258f417d7"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75e080297b07b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 320e60173fede7ee7a33b8d477bca7d8
61ae74cee45dd8e756fa5eead2461b643da445d3
597de7451b68412525d11efec88b7bd79e48c41982f3971aa23beeebd9ded954
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5318
Cache-Control: max-age=119389
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:45 GMT
Etag: "6352b590-117"
Expires: Sun, 23 Oct 2022 16:35:34 GMT
Last-Modified: Fri, 21 Oct 2022 15:06:56 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
www.iplocate.io/api/lookup/false
104.26.10.85400 Bad Request 48 B URL HTTP/2 www.iplocate.io/api/lookup/false
IP 104.26.10.85:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bcfe88a9e6a66a580550c510b0a4142a
0eec4186fb48d40fc7d9ad0965c01cb71f7f044d
4200ee1e5e81fd6ef95857f744035889678927d6893fa2a6e949d46da732de9c
GET /api/lookup/false HTTP/1.1
Host: www.iplocate.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lawodmetals.com
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
date: Sat, 22 Oct 2022 07:25:45 GMT
content-type: application/json; charset=utf-8
content-length: 48
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: x-ratelimit-limit, x-ratelimit-reset, x-ratelimit-remaining
access-control-max-age: 7200
cache-control: no-cache
referrer-policy: strict-origin-when-cross-origin
vary: Origin
x-content-type-options: nosniff
x-download-options: noopen
x-frame-options: SAMEORIGIN
x-permitted-cross-domain-policies: none
x-ratelimit-client-id: 91.90.42.154
x-ratelimit-limit: 1000
x-ratelimit-remaining: 998
x-ratelimit-reset: 2022-10-23 00:00:00 +0000
x-request-id: f8deeca7-a039-4387-9217-6ce739571ca4
x-runtime: 0.004965
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KbJI%2BPURCAuNwuTSCF7IRglAUCoL9TTP9rC8J%2Fskrpm6gNIA1lZuxsLz2bIi%2FeOAjHeb54Nmppo4A7S1sGJdOMAbKOEugwW1izg5stOjARu2F8DuFNzcue6xlvR%2FWbpPbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75e080381961b500-OSL
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-common.js
172.67.38.66200 OK 74 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-common.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (65466)
Hash 63b010849ca10d84bd3df2671ace04c9
da8615bc60311d37d6814e76e2d38004afc2ed67
d6a228e31c8e896b3f9967fef49381f9eb29708653ef2506605b4b8ea034137d
GET /_s/v4/app/63258f417d7/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lawodmetals.com
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"c262969ff89da8a8b3994883a0f57085"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75e0803bcc87b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 59aa1abd670a767d7a5e44fcc16d1b8c
cc0462d6b28b5526c94f87b70da19e6b7ead6206
08de6f45fabe97e2667da1e26532d2764a07b840178ac14be26cc981f0aa53db
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3267
Cache-Control: max-age=171000
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:46 GMT
Etag: "6353872f-116"
Expires: Mon, 24 Oct 2022 06:55:46 GMT
Last-Modified: Sat, 22 Oct 2022 06:01:19 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 73d93040d94a939fa5b2ab3e5b3fd6b4
e9ef170f1a8d822ba9c411951646e1a3bf470d8e
c98cfbc4ecd8964ff1e919d9ece37cbcddbaabdbc9e3e292ef57e636d0454849
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5823
Cache-Control: max-age=89666
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:46 GMT
Etag: "63523f7d-1d7"
Expires: Sun, 23 Oct 2022 08:20:12 GMT
Last-Modified: Fri, 21 Oct 2022 06:43:09 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-vendors.js
172.67.38.66200 OK 315 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-chunk-vendors.js
IP 172.67.38.66:0
File type Unicode text, UTF-8 text, with very long lines (65464)
Size 315 kB (314624 bytes)
Hash 656a7a084ae97c215d7d07da0b64a0c1
4ce6fc85c9a32566989e91410b6793129db3dae1
0e045474165b3eed34152ed100c62e1b43055de9e43070f0f4c949040fd8bb7f
GET /_s/v4/app/63258f417d7/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lawodmetals.com
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"81c2642aac0b88b6b237d279f5f8ce67"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75e0803bcc85b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
104.18.22.52200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
IP 104.18.22.52:0
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 4159620
accept-ranges: bytes
server: cloudflare
cf-ray: 75e080406e7f1c0e-OSL
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-vendor.js
172.67.38.66200 OK 34 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-vendor.js
IP 172.67.38.66:0
File type ASCII text, with very long lines (65472)
Hash cec7855e7aba2210f6868ed9d69e7eff
e86cf89c2435cfea96b52038feb32ccaa4d6e5e1
73dec7c8d483efa59eebb6eadcb5dce4510c213639f4b3c8c2bfef7101dc5242
GET /_s/v4/app/63258f417d7/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lawodmetals.com
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75e0803bcc83b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js-agent.newrelic.com/nr-1184.min.js
151.101.86.137200 OK 15 kB URL HTTP/2 js-agent.newrelic.com/nr-1184.min.js
IP 151.101.86.137:0
Hash 39d8f71f0ac962c95bab4c700148034a
5b029e9588a44f3bcd2a1eaca02cda0f10e7fee5
6830c35d01116eee0c360a02a345936938bd6dba18008d60963a0ef2ce300501
GET /nr-1184.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aOKLVFxehe299BchQZ1iqWYmG3f1UoB2kHc2XCz2yQy3U3WlwJQI4pRl4GtHGYjos3ZMLdEYhQQ=
x-amz-request-id: GB4468MZ82K6V9J6
last-modified: Mon, 28 Sep 2020 16:34:45 GMT
etag: "3d7f312be60d08a2568e311e4762f3af"
x-amz-version-id: null
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Sat, 22 Oct 2022 07:25:47 GMT
via: 1.1 varnish
x-served-by: cache-bma1656-BMA
x-cache: HIT
x-cache-hits: 11
x-timer: S1666423548.597365,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 10624
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 019d78f49ef2b31d4969e1950815c3d7
c3f15bf1eed34281b65962aea6725141745676bb
c806a737ce6b183e83c8a4f4a068bdc7a67ce601cd68e0a507fc09650e5e4678
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2147
Cache-Control: max-age=139265
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:47 GMT
Etag: "63530f99-1d7"
Expires: Sun, 23 Oct 2022 22:06:52 GMT
Last-Modified: Fri, 21 Oct 2022 21:31:05 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 4.2 kB IP 142.250.74.35:0
Hash ad55d584eb88ee6b98a3c9934ca7d756
f5603d65b3a28f233f6ec2038d456544e4ad37b9
a6a522e613320ea1fa90f357db3ab7fbe3c0853317b69d6d6c1fd15cd71571dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
public.powrcdn.com/latest/assets/packs/apps/socialFeed-9215bcfaa50487bb4272.js
104.21.19.164200 OK 8.4 kB URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps/socialFeed-9215bcfaa50487bb4272.js
IP 104.21.19.164:0
File type JSON data\012- , ASCII text, with very long lines (1062), with no line terminators
Hash 73b0f4a666949bf91e16581ec5ebd2a6
49f31e20cf2afe262b3c9b9381c9b39aa333a16c
d8666b93901b57fbb8236ee84b0bafb5c7053e4eb966cf49f11285f26482c9b7
GET /latest/assets/packs/apps/socialFeed-9215bcfaa50487bb4272.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2755546
etag: W/"5d4d00ada255579892988f2907914194"
last-modified: Wed, 19 Oct 2022 06:48:11 GMT
x-amz-id-2: tK12Tw9wJvCsA2j+g3J7tk8K3y6SHE4X8xlCH3XQbOdQl1P2dAko9D+nnLu1sIIA2XbngSmKkqE=
x-amz-request-id: AEM7EF3MCDHW7R79
x-amz-version-id: BbkhfweKA_5ObllqG9LJSD_D5JuzkRhe
cache-control: max-age=2073600
cf-cache-status: HIT
age: 603
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=btfH7UQWShxVl54z9W%2FCQqiU0V%2BfxKiGE4Y6SNpxvfze9KErN49GkMZsUlFIcAtRGY3QmVTRnFVb3Tctvnu3OwW4Izd894OYnv%2Fp77pUAKsAaGoel8xXsaVCeKdwk58Wfo7fGQk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e0803fef39b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 1b0cd7fce51616614b5ebb265d02c2f7
6748d7df7c347bbe06afb2155fff3bbc8bf50eb0
d41beb047830bdacb772b75123c39906db8edcd49fdc8c9a00258a2556efd1c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vsa67.tawk.to/s/?k=63539afb91d77096fa9faa29&cver=0&pop=false&asver=21&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MDFlOGMwZGMzMWM5MTE3Y2I3NjcyYjkiLCJ2aWQiOiJhNWQ5MDk1YzM3MTcyYjUyNDMwNTM4MzRiNTY1NmMzNDQwMjRmNWZhODFhMDM4ZDU2ZGY1MGExNDc2NTI0MGQ0Iiwic2lkIjoiNjM1MzlhZmI5MWQ3NzA5NmZhOWZhYTI5IiwiaWF0IjoxNjY2NDIzNTQ3LCJleHAiOjE2NjY0MjUzNDcsImp0aSI6Ikw4SWV5OEcxUWVKMmFMSk81aURReiJ9.QT75W6MEsgUrcbhFANMvm9bJsgto1P7A9igYN--rKzosETpVHlxQ-0J8orbwkVUmAighHMoQpFJ2VxgLJY8Xuw&EIO=3&transport=websocket&__t=OF-bPqK
104.22.24.131101 Switching Protocols 0 B URL HTTP/1.1 vsa67.tawk.to/s/?k=63539afb91d77096fa9faa29&cver=0&pop=false&asver=21&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MDFlOGMwZGMzMWM5MTE3Y2I3NjcyYjkiLCJ2aWQiOiJhNWQ5MDk1YzM3MTcyYjUyNDMwNTM4MzRiNTY1NmMzNDQwMjRmNWZhODFhMDM4ZDU2ZGY1MGExNDc2NTI0MGQ0Iiwic2lkIjoiNjM1MzlhZmI5MWQ3NzA5NmZhOWZhYTI5IiwiaWF0IjoxNjY2NDIzNTQ3LCJleHAiOjE2NjY0MjUzNDcsImp0aSI6Ikw4SWV5OEcxUWVKMmFMSk81aURReiJ9.QT75W6MEsgUrcbhFANMvm9bJsgto1P7A9igYN--rKzosETpVHlxQ-0J8orbwkVUmAighHMoQpFJ2VxgLJY8Xuw&EIO=3&transport=websocket&__t=OF-bPqK
IP 104.22.24.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/?k=63539afb91d77096fa9faa29&cver=0&pop=false&asver=21&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MDFlOGMwZGMzMWM5MTE3Y2I3NjcyYjkiLCJ2aWQiOiJhNWQ5MDk1YzM3MTcyYjUyNDMwNTM4MzRiNTY1NmMzNDQwMjRmNWZhODFhMDM4ZDU2ZGY1MGExNDc2NTI0MGQ0Iiwic2lkIjoiNjM1MzlhZmI5MWQ3NzA5NmZhOWZhYTI5IiwiaWF0IjoxNjY2NDIzNTQ3LCJleHAiOjE2NjY0MjUzNDcsImp0aSI6Ikw4SWV5OEcxUWVKMmFMSk81aURReiJ9.QT75W6MEsgUrcbhFANMvm9bJsgto1P7A9igYN--rKzosETpVHlxQ-0J8orbwkVUmAighHMoQpFJ2VxgLJY8Xuw&EIO=3&transport=websocket&__t=OF-bPqK HTTP/1.1
Host: vsa67.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://lawodmetals.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +CtjLPDj+nE7bRQXCpFmdQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sat, 22 Oct 2022 07:25:48 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: 5q8J59mQZ/ng9w6xKcFAZxvyUfY=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 75e080447f62b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2
IP 216.58.207.195:0
Hash 7ae0349f34a39364becef6652dc14697
d9b57b4d1a9165b54d9c5504c1afa6e64c6cc6f2
cdcc4626bdb70cfcf876cd41078942d87b33c65bd7066ed216fd7b5e4421f751
GET /s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 22:49:54 GMT
expires: Tue, 17 Oct 2023 22:49:54 GMT
cache-control: public, max-age=31536000
age: 376554
last-modified: Mon, 09 May 2022 18:44:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP 216.58.207.195:0
Hash 9d18d7714a8432aa1bcb652b030f2e15
0fbd8fe2a7aa54fdc5b87f429c3d1c41bfe981a1
50413d692a2bb45d8419f2d7e7db82df54cd0c372125418ce0ddfa1a7b00503d
GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://public.powrcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 16:44:01 GMT
expires: Fri, 20 Oct 2023 16:44:01 GMT
cache-control: public, max-age=31536000
age: 139307
last-modified: Wed, 24 Jul 2019 01:18:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 215500
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data
Hash e43b535855a4ae53bd5b07a6eeb3bf67
6507312d9491156036316484bf8dc41e8b52ddd9
b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 18:53:39 GMT
expires: Tue, 17 Oct 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 390729
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
outlet.powr.io/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=246239595578097&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=246239595578097&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=Lawod+Metals+Nigeria+Limited&data%5B0%5D%5BmaxPosts%5D=4&premium=free&app_id=27649892&refreshRate=86400
172.67.5.146204 No Content 0 B URL HTTP/2 outlet.powr.io/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=246239595578097&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=246239595578097&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=Lawod+Metals+Nigeria+Limited&data%5B0%5D%5BmaxPosts%5D=4&premium=free&app_id=27649892&refreshRate=86400
IP 172.67.5.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=246239595578097&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=246239595578097&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=Lawod+Metals+Nigeria+Limited&data%5B0%5D%5BmaxPosts%5D=4&premium=free&app_id=27649892&refreshRate=86400 HTTP/1.1
Host: outlet.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-csrf-token
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Sat, 22 Oct 2022 07:25:48 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: https://www.powr.io
vary: Origin, Access-Control-Request-Headers
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: x-csrf-token
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 75e0804698f3b506-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 40d84975a20e83e83f3397a0708e7386
e115d7dcb0d08a8c2a146d6502c06b8225883851
2cd44c32feff6f8ca4dde0b56fd03fdf4212c2be92c49c3da69e268c091fc7d3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133696
Date: Sat, 22 Oct 2022 07:25:48 GMT
Etag: "6352eb14-1d7"
Expires: Sun, 23 Oct 2022 20:34:04 GMT
Last-Modified: Fri, 21 Oct 2022 18:55:16 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -6zI8f7kCbCZgfB2geHsH-qzAHHPD6L0jUPplo4-5jbwEzUn6qq3Vw==
Age: 5928
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 2.7 kB URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 5e02a5b4c00a359c276d8ca6014026a9
4bf31473738398cbe04de6c9762d693de8baaa4c
5d15cb3386daf3e856e4bd3ae14451e8dc8dcd11c48dad84e1001ed662325e59
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=133262
Date: Sat, 22 Oct 2022 07:25:48 GMT
Etag: "6352eb14-1d7"
Expires: Sun, 23 Oct 2022 20:26:50 GMT
Last-Modified: Fri, 21 Oct 2022 18:55:16 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WPCExZJdnlTAEb7OKOBjQxCHI3CeVEi0wrwCWNJbvMZKpqZSlATTpQ==
Age: 5494
powr-counter.herokuapp.com/27649892
54.208.186.182200 OK 0 B URL HTTP/1.1 powr-counter.herokuapp.com/27649892
IP 54.208.186.182:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /27649892 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 22 Oct 2022 07:25:48 GMT
Connection: keep-alive
Content-Type: text/plain
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Transfer-Encoding: chunked
Via: 1.1 vegur
powr-counter.herokuapp.com/27649892
54.208.186.182200 OK 1 B URL HTTP/1.1 powr-counter.herokuapp.com/27649892
IP 54.208.186.182:0
File type very short file (no magic)
Hash 7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068
POST /27649892 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 399
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Sat, 22 Oct 2022 07:25:48 GMT
Connection: keep-alive
Content-Type: text/plain; charset=utf-8
Etag: W/"36a9e7f1c95b82ffb99743e0c5c4ce95"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 0d95742f-c2c2-4b1c-b0f3-26dfb04cd2f7
X-Runtime: 0.111791
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Vary: Origin
Transfer-Encoding: chunked
Via: 1.1 vegur
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 94ee541bb392e5675c1e24c94c197f8b
bce18b05a24f5e2c6743cbbe849a733091586176
82f791c205847646216d72b4ce65bc3587ca69d1da17a3a2afb477640822c4dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 94ee541bb392e5675c1e24c94c197f8b
bce18b05a24f5e2c6743cbbe849a733091586176
82f791c205847646216d72b4ce65bc3587ca69d1da17a3a2afb477640822c4dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 06210a4a9db522652fd6aabfa05b2653
630b4ef71ec82a3970927a328d279035eaaa1267
5100e1703020fdef7d473c91e1c88dfb734083057f431feeefaaa24838990a21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86251018-1&cid=323556637.1666423563&jid=1849480684&gjid=1251472481&_gid=1578341262.1666423563&_u=IEBAAEAAAAAAACAAICB~&z=1659612212
173.194.222.154200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86251018-1&cid=323556637.1666423563&jid=1849480684&gjid=1251472481&_gid=1578341262.1666423563&_u=IEBAAEAAAAAAACAAICB~&z=1659612212
IP 173.194.222.154:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-86251018-1&cid=323556637.1666423563&jid=1849480684&gjid=1251472481&_gid=1578341262.1666423563&_u=IEBAAEAAAAAAACAAICB~&z=1659612212 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.powr.io
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 22 Oct 2022 07:25:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 06210a4a9db522652fd6aabfa05b2653
630b4ef71ec82a3970927a328d279035eaaa1267
5100e1703020fdef7d473c91e1c88dfb734083057f431feeefaaa24838990a21
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2eaba36da86177a324dc3f59051e88f8
8248e37c850c10c13b3b55e85e81869984ff98ea
c62416a009668f178cc78773d72276b0d2999cad0ec94cf8ccbfe1090c3bd844
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4062
Cache-Control: max-age=113800
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:49 GMT
Etag: "6352a4a8-1d7"
Expires: Sun, 23 Oct 2022 15:02:29 GMT
Last-Modified: Fri, 21 Oct 2022 13:54:48 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
graph.facebook.com/246239595578097/picture?type=square
157.240.221.18302 Found 0 B URL HTTP/2 graph.facebook.com/246239595578097/picture?type=square
IP 157.240.221.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /246239595578097/picture?type=square HTTP/1.1
Host: graph.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
x-fb-rlafr: 0
location: https://scontent-lhr8-1.xx.fbcdn.net/v/t1.6435-1/53708096_982696238599092_1495710738650497024_n.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=110&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=WE4KpsNVVQUAX8UDv-J&_nc_ht=scontent-lhr8-1.xx&edm=AOf6bZoEAAAA&oh=00_AT-dwTVcvIe3sOyS1rX3PReVBw8ER5aYG-gwLymjTXSn-Q&oe=6379A782
content-type: image/jpeg
access-control-allow-origin: *
facebook-api-version: v8.0
strict-transport-security: max-age=15552000; preload
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-fb-request-id: A89yb3NdK-AxonZ2JCQlvzG
x-fb-trace-id: FdSt5X66pFa
x-fb-rev: 1006445316
x-fb-debug: A93htEdp00MJfeIt9+0ZuZISnBB308K3utTStUwm7mraVxQOY7Ku74fjIbE/GVIvb/QuMSFcrOv3u8rwqq7y9g==
content-length: 0
date: Sat, 22 Oct 2022 07:25:49 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 19 kB IP 93.184.220.29:0
Hash 711de60d0b3de86aa760312109d17951
bfb048a05f234db5ce3f628de78265b49566c70f
b51991135046eeaab6e867c2b26bfc8530438921f18ec51a5aad44c917d13b6c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4396
Cache-Control: max-age=114135
Content-Type: application/ocsp-response
Date: Sat, 22 Oct 2022 07:25:49 GMT
Etag: "6352a4a8-1d7"
Expires: Sun, 23 Oct 2022 15:08:04 GMT
Last-Modified: Fri, 21 Oct 2022 13:54:48 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
scontent-lhr8-1.xx.fbcdn.net/v/t1.6435-1/53708096_982696238599092_1495710738650497024_n.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=110&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=WE4KpsNVVQUAX8UDv-J&_nc_ht=scontent-lhr8-1.xx&edm=AOf6bZoEAAAA&oh=00_AT-dwTVcvIe3sOyS1rX3PReVBw8ER5aYG-gwLymjTXSn-Q&oe=6379A782
157.240.221.16200 OK 1.7 kB URL HTTP/2 scontent-lhr8-1.xx.fbcdn.net/v/t1.6435-1/53708096_982696238599092_1495710738650497024_n.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=110&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=WE4KpsNVVQUAX8UDv-J&_nc_ht=scontent-lhr8-1.xx&edm=AOf6bZoEAAAA&oh=00_AT-dwTVcvIe3sOyS1rX3PReVBw8ER5aYG-gwLymjTXSn-Q&oe=6379A782
IP 157.240.221.16:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 54ba7f150cb522bcbffffbe9ced121ae
67ce9050056569738f43b82faff7993173b802bf
a5043c31a6e1aad1119aba4d08034a08300083c70938b6abb7934774030242c6
GET /v/t1.6435-1/53708096_982696238599092_1495710738650497024_n.jpg?stp=cp0_dst-jpg_p50x50&_nc_cat=110&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=WE4KpsNVVQUAX8UDv-J&_nc_ht=scontent-lhr8-1.xx&edm=AOf6bZoEAAAA&oh=00_AT-dwTVcvIe3sOyS1rX3PReVBw8ER5aYG-gwLymjTXSn-Q&oe=6379A782 HTTP/1.1
Host: scontent-lhr8-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Wed, 13 Mar 2019 12:17:13 GMT
x-haystack-needlechecksum: 762057414
x-needle-checksum: 603397603
content-type: image/jpeg
content-length: 1708
content-digest: adler32=1110985813
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
x-fb-trip-id: 1679558926
date: Sat, 22 Oct 2022 07:25:49 GMT
x-fb-edge-debug: _FeOqeFBqdMzFtuU05dnyndhaZgSaafXdDw-OcfcxRpfvO1owpgDE0zb8qVHqXwPHDUOCmJjpRKIzhIMsTFjZ35Wt66F-VvDa98JZIhnMEc
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
outlet.powr.io/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=246239595578097&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=246239595578097&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=Lawod+Metals+Nigeria+Limited&data%5B0%5D%5BmaxPosts%5D=4&premium=free&app_id=27649892&refreshRate=86400
172.67.5.146200 OK 66 kB URL HTTP/2 outlet.powr.io/social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=246239595578097&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=246239595578097&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=Lawod+Metals+Nigeria+Limited&data%5B0%5D%5BmaxPosts%5D=4&premium=free&app_id=27649892&refreshRate=86400
IP 172.67.5.146:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ed38dfb95a7b24c72ad261883479fa85
5b248f4f234fb357323c33b8f53723eaae6cad6b
760248eb3df44b6a3e34426f9f123e7a29d1f96e54ad870183513593e3597ac8
GET /social-feed?data%5B0%5D%5Btype%5D=facebook&data%5B0%5D%5Bfollowing%5D=246239595578097&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=246239595578097&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=Lawod+Metals+Nigeria+Limited&data%5B0%5D%5BmaxPosts%5D=4&premium=free&app_id=27649892&refreshRate=86400 HTTP/1.1
Host: outlet.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: jd7_3QyjLCr8AvwzWRWk3CrdP4dExIlSCM2TBRlr6Eq2mfdhQad8s4AKQhKiiROp8GQtK68-J99_mVhLbuKGwg
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:49 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: https://www.powr.io
vary: Origin
cache-control: public, max-age=3600
via: 1.1 vegur
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 75e08048fb73b506-OSL
content-encoding: br
X-Firefox-Spdy: h2
scontent-iad3-2.xx.fbcdn.net/v/t39.30808-6/287988955_1872675319601175_6003215728820613409_n.jpg?stp=dst-jpg_s720x720&_nc_cat=103&ccb=1-7&_nc_sid=110474&_nc_ohc=M2DA5mQa1e8AX-uAxnF&_nc_ht=scontent-iad3-2.xx&edm=AKIiGfEEAAAA&oh=00_AT-yP_WnHffajaAAg9JgbFkDVrofRznASrpMc6wnabTZgg&oe=6358F583
157.240.229.1200 OK 27 kB URL HTTP/2 scontent-iad3-2.xx.fbcdn.net/v/t39.30808-6/287988955_1872675319601175_6003215728820613409_n.jpg?stp=dst-jpg_s720x720&_nc_cat=103&ccb=1-7&_nc_sid=110474&_nc_ohc=M2DA5mQa1e8AX-uAxnF&_nc_ht=scontent-iad3-2.xx&edm=AKIiGfEEAAAA&oh=00_AT-yP_WnHffajaAAg9JgbFkDVrofRznASrpMc6wnabTZgg&oe=6358F583
IP 157.240.229.1:0
Hash 3d0a5cb58a4b6b6a5545f362ea8159d4
b23876fb9055044ce5c5b35b4147fa2c1be058c7
bf71ffc71f8bab35fba27e6b85da89c3f877d41cae78ce28db31ec4e2cf15005
GET /v/t39.30808-6/287988955_1872675319601175_6003215728820613409_n.jpg?stp=dst-jpg_s720x720&_nc_cat=103&ccb=1-7&_nc_sid=110474&_nc_ohc=M2DA5mQa1e8AX-uAxnF&_nc_ht=scontent-iad3-2.xx&edm=AKIiGfEEAAAA&oh=00_AT-yP_WnHffajaAAg9JgbFkDVrofRznASrpMc6wnabTZgg&oe=6358F583 HTTP/1.1
Host: scontent-iad3-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Mon, 13 Jun 2022 10:54:33 GMT
x-haystack-needlechecksum: 3473905944
x-needle-checksum: 631323756
content-type: image/jpeg
content-digest: adler32=3755132191
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 25521
x-fb-trip-id: 1814657579
date: Sat, 22 Oct 2022 07:25:49 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-iad3-2.xx.fbcdn.net/v/t39.30808-6/280512700_1848440768691297_1208372085588355497_n.jpg?stp=dst-jpg_s720x720&_nc_cat=111&ccb=1-7&_nc_sid=110474&_nc_ohc=q5q6Q8NeJ6oAX-fE4On&_nc_ht=scontent-iad3-2.xx&edm=AKIiGfEEAAAA&oh=00_AT-vaEwjdzzQcyJDlXZ6pRfyiQKGUbFYVlFnh5A_37gQ9w&oe=635875D2
157.240.229.1200 OK 66 kB URL HTTP/2 scontent-iad3-2.xx.fbcdn.net/v/t39.30808-6/280512700_1848440768691297_1208372085588355497_n.jpg?stp=dst-jpg_s720x720&_nc_cat=111&ccb=1-7&_nc_sid=110474&_nc_ohc=q5q6Q8NeJ6oAX-fE4On&_nc_ht=scontent-iad3-2.xx&edm=AKIiGfEEAAAA&oh=00_AT-vaEwjdzzQcyJDlXZ6pRfyiQKGUbFYVlFnh5A_37gQ9w&oe=635875D2
IP 157.240.229.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 540x720, components 3\012- data
Hash 4b55a2d50545a21f5710b3f4fded2faf
e564b54ef2ea00189ad25b88cca5b20c60271b77
8d64da2284e9fbb9d2c06ab6f6367869fd4cae83e59472f5d2a7a413d5f7333c
GET /v/t39.30808-6/280512700_1848440768691297_1208372085588355497_n.jpg?stp=dst-jpg_s720x720&_nc_cat=111&ccb=1-7&_nc_sid=110474&_nc_ohc=q5q6Q8NeJ6oAX-fE4On&_nc_ht=scontent-iad3-2.xx&edm=AKIiGfEEAAAA&oh=00_AT-vaEwjdzzQcyJDlXZ6pRfyiQKGUbFYVlFnh5A_37gQ9w&oe=635875D2 HTTP/1.1
Host: scontent-iad3-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Wed, 11 May 2022 19:57:55 GMT
x-haystack-needlechecksum: 314615089
x-needle-checksum: 2786061369
content-type: image/jpeg
content-digest: adler32=3090505757
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
content-length: 65709
x-fb-trip-id: 1814657579
date: Sat, 22 Oct 2022 07:25:49 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Playfair+Display:400,700|Work+Sans:300,400,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Playfair+Display:400,700|Work+Sans:300,400,700
IP 142.250.74.10:0
GET /css?family=Playfair+Display:400,700|Work+Sans:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 22 Oct 2022 07:25:42 GMT
date: Sat, 22 Oct 2022 07:25:42 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.powr.io/social-feed/u/90d2dea6_1612616293
104.22.50.245200 OK 0 B URL HTTP/2 www.powr.io/social-feed/u/90d2dea6_1612616293
IP 104.22.50.245:0
GET /social-feed/u/90d2dea6_1612616293 HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: text/html; charset=utf-8
link: <https://public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps-view-0feefa5dcb603f7c8fb4.js>; rel=preload; as=script; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/socialFeed-9215bcfaa50487bb4272.js>; rel=preload; as=script; nopush
cache-control: max-age=1800, public
vary: Accept-Encoding
x-request-id: 73a5988b-4a08-46fb-aab7-8451060ca3bf
x-runtime: 0.063974
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: MISS
set-cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JiFPTaYUfEmLX; SameSite=None; Secure; path=/; expires=Sat, 29-Oct-22 07:25:46 GMT; HttpOnly
server: cloudflare
cf-ray: 75e0803bcd6d0b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css
104.21.19.164200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css
IP 104.21.19.164:0
GET /latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=460092
etag: W/"2cbef8bacb84cdf787933b228259ff66"
last-modified: Fri, 30 Sep 2022 11:30:17 GMT
x-amz-id-2: 5h/wU0YisiRrm0I2bMh9nJxRm8iJCL6CaUVD5CeQGaOy/HLddK02rSWPSSdf4RWP8vcAsQ8eCms=
x-amz-request-id: 7TTY9QWE822NGX3Q
x-amz-version-id: JX3lwhjNEiINNcmvkfabXotsK.jO_RKw
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1812
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TV%2FqRz0G1qYVan1Tp4NKAE1GNyF7dqBoBnGF%2FEU6P%2Fvf1%2FiMJuqglSTjkX69nvvXZoZAQZHFsq1rNUY6jJR5a%2Fj8rjs%2BpiqjswNAJ%2BLJs7wV22xZ1dkLeMqQOdgekCFgcJzs8ao%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e0803fcf0db4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-app.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-app.js
IP 172.67.38.66:0
GET /_s/v4/app/63258f417d7/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lawodmetals.com
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75e0803bcc8ab505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.powr.io/cached/27649892.json
104.22.50.245200 OK 0 B URL HTTP/2 www.powr.io/cached/27649892.json
IP 104.22.50.245:0
GET /cached/27649892.json HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: jd7_3QyjLCr8AvwzWRWk3CrdP4dExIlSCM2TBRlr6Eq2mfdhQad8s4AKQhKiiROp8GQtK68-J99_mVhLbuKGwg
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/social-feed/u/90d2dea6_1612616293
Cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JiFPTaYUfEmLX
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:47 GMT
content-type: application/json; charset=utf-8
cache-control: max-age=300, public
vary: Accept-Encoding
etag: W/"330cc7d7ac2a61678e970a67b8b7b520"
x-request-id: 633619de-9a78-42c3-82ab-c049c1bdaa42
x-runtime: 0.045132
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: MISS
server: cloudflare
cf-ray: 75e080431a5d0b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.powr.io/public-assets/crypto.min.js
104.22.50.245200 OK 0 B URL HTTP/2 www.powr.io/public-assets/crypto.min.js
IP 104.22.50.245:0
GET /public-assets/crypto.min.js HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: jd7_3QyjLCr8AvwzWRWk3CrdP4dExIlSCM2TBRlr6Eq2mfdhQad8s4AKQhKiiROp8GQtK68-J99_mVhLbuKGwg
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/social-feed/u/90d2dea6_1612616293
Cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JiFPTaYUfEmLX; ahoy_visit=d3734bd7-735a-4671-b9b5-93f2ebc94549; ahoy_visitor=c6614a0c-6611-4da2-b61f-7724c3c9369b; ahoy_unique_27649892=true; _ga=GA1.2.323556637.1666423563; _gid=GA1.2.1578341262.1666423563; _gat_powr_apps=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:49 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 21 Oct 2022 07:08:03 GMT
cache-control: max-age=604800, public
expires: Sat, 21 Oct 2023 07:10:22 GMT
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: HIT
age: 87118
server: cloudflare
cf-ray: 75e080529db70b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.powr.io/powr.js?platform=html
104.22.50.245200 OK 0 B URL HTTP/2 www.powr.io/powr.js?platform=html
IP 104.22.50.245:0
GET /powr.js?platform=html HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:42 GMT
content-type: application/javascript
cache-control: max-age=604800, public
cf-bgj: minify
expires: Sat, 21 Oct 2023 07:10:25 GMT
last-modified: Fri, 21 Oct 2022 07:10:15 GMT
vary: Accept-Encoding
via: 1.1 vegur
x-origin-instance: heroku
cf-cache-status: HIT
age: 87115
server: cloudflare
cf-ray: 75e08021df9e0b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.widgetsquad.com/pixel/8zln4anx41lle4cufbwmhb5px8qk3qnv
104.21.74.236200 OK 0 B URL HTTP/2 www.widgetsquad.com/pixel/8zln4anx41lle4cufbwmhb5px8qk3qnv
IP 104.21.74.236:0
GET /pixel/8zln4anx41lle4cufbwmhb5px8qk3qnv HTTP/1.1
Host: www.widgetsquad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:42 GMT
content-type: application/javascript
expires: Sat, 22 Oct 2022 07:25:42 GMT
pragma: cache
cache-control: max-age=0
vary: Accept-Encoding
set-cookie: PHPSESSID=c9dcd61b8d99aabeb74484e0556eca03; path=/; domain=www.widgetsquad.com; secure; HttpOnly
language=english; expires=Tue, 25-Oct-2022 07:25:42 GMT; Max-Age=259200
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TmUc120OSuyS5CYymQh2HI8dsOBBu8%2B6ZpvGf7SALiAENe9H1NV1hbou3O4Yfu2GcL0UTmmaY1ov3y6SyIClDVhdJ%2BqtoALvWgAQkKPDNbO0iPBTw2Tk6vV6n6IzsKrT87bJKpLk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75e080227ccab518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-runtime.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-runtime.js
IP 172.67.38.66:0
GET /_s/v4/app/63258f417d7/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lawodmetals.com
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"31ca85b2b61bb42db4e40c2e9429f7dc"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75e0803bcc89b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
142.250.74.78200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.78:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Sat, 22 Oct 2022 07:25:47 GMT
date: Sat, 22 Oct 2022 07:25:47 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=hxj2RZJy_SM; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=_A4IQ5V7YOA; Domain=.youtube.com; Expires=Thu, 20-Apr-2023 07:25:47 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+589; expires=Mon, 21-Oct-2024 07:25:47 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63258f417d7/js/twk-main.js
172.67.38.66200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63258f417d7/js/twk-main.js
IP 172.67.38.66:0
GET /_s/v4/app/63258f417d7/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lawodmetals.com
Connection: keep-alive
Referer: https://lawodmetals.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: application/javascript
last-modified: Sat, 17 Sep 2022 09:12:03 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75e0803bbc74b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css
104.21.19.164200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css
IP 104.21.19.164:0
GET /latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 22 Oct 2022 07:25:46 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=97779
etag: W/"8569d08b93b65be6f73bca7e48e87a62"
last-modified: Fri, 30 Sep 2022 11:30:17 GMT
x-amz-id-2: 0m9N6WYJzGB7AhNt01Kh7sVbYnJyEhjwlt6fG0H2RcqgInbAsQt9AwDfWB+a3zpLUL1D5SaAp1Q=
x-amz-request-id: 7TTMPVAAHR960BQB
x-amz-version-id: aMn0mbR9kAdxc6hMKPX5wyraucYudakw
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1788
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E7rBvRfh%2BFE5n6P%2FF3GBalNmWSJE3RATQrN%2FA%2BP8JE0bdoL%2FFahZARpsoPMbGEADmiOvxi1bnyxZ2dF7HWXY5nGP7b7KyMp05b4Fc6WqdNbsLZKiFQGyA59LCoDzXSDGDTGf8lI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75e0803fef2cb4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2