r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e6b7a72139d0ef7688330456e9be9a4c
e130a94e7d531768300071764dd1e81fee5bbbcb
d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11979
Expires: Thu, 12 Jan 2023 03:38:42 GMT
Date: Thu, 12 Jan 2023 00:19:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eecebe0566883e33558e8e67beaccb29
acdd8fd09e2066ed5ecfbc3f11c4a2d61218ecc7
65e21170242bf41eb529fa422385dbe5af65a61e374e6dd5669e7e5f927948af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65E21170242BF41EB529FA422385DBE5AF65A61E374E6DD5669E7E5F927948AF"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4134
Expires: Thu, 12 Jan 2023 01:27:57 GMT
Date: Thu, 12 Jan 2023 00:19:03 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 11 Jan 2023 23:48:39 GMT
content-type: application/json
age: 1824
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d8ccb7b2b89aec333fabc04d37337892
c2a13a42c1bd0cf7ce68d9c13b3d6ba1044b5283
75fcc3ea090454e3489a131b70ab50798fec6a08664745027d7a1cf62c6aba28
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75FCC3EA090454E3489A131B70AB50798FEC6A08664745027D7A1CF62C6ABA28"
Last-Modified: Mon, 09 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2535
Expires: Thu, 12 Jan 2023 01:01:18 GMT
Date: Thu, 12 Jan 2023 00:19:03 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IwIWVIe5ZYm/pM49Pw4JTWtGA1cjGJyNz8grhwkWj2qJDEV+R37sg+x+Cx717VgFpfPkehEVXd0=
x-amz-request-id: FDY7YYGHBNJSVM0Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 12 Jan 2023 00:02:16 GMT
age: 1007
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 12 Jan 2023 00:19:03 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 11 Jan 2023 23:33:45 GMT
age: 2718
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ce604e6f88a42844a4ec7d404879bdcf
d462a2a194a67d39d091ff49c4435fdfc39b3e5b
9e0222bcc67f019bb5c61657fc921fc42aa0cd7a75f6b1358d05231c53cc26e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4492
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:04 GMT
Last-Modified: Wed, 11 Jan 2023 23:04:12 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.187.39.66101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.39.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1N3PQt6RuEooK2M9/OvFBQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: gP0/pVwkMlsj+5BZS580gMmef+M=
offersara.com/
185.142.158.188301 Moved Permanently 142 B IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 42cf59eb230fa0a5b3b693cf000264a4
1c251f02cd1a627a0f9bb7f2ce4de8a31f7d4b34
ef39c970c7267ded22764c7f1ed4733c4cd73b3b4a453618d257668b6a63c9d0
GET / HTTP/1.1
Host: offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: http://www.offersara.com/
Server: Microsoft-IIS/10.0
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
Set-Cookie: smartstore.customer=53d03398-5444-4253-8219-1cc12e9c63d5; expires=Fri, 12-Jan-2024 00:19:04 GMT; path=/; HttpOnly
X-Powered-By-Plesk: PleskWin
Date: Thu, 12 Jan 2023 00:19:04 GMT
Content-Length: 142
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8156
Expires: Thu, 12 Jan 2023 02:35:01 GMT
Date: Thu, 12 Jan 2023 00:19:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8156
Expires: Thu, 12 Jan 2023 02:35:01 GMT
Date: Thu, 12 Jan 2023 00:19:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8156
Expires: Thu, 12 Jan 2023 02:35:01 GMT
Date: Thu, 12 Jan 2023 00:19:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8156
Expires: Thu, 12 Jan 2023 02:35:01 GMT
Date: Thu, 12 Jan 2023 00:19:05 GMT
Connection: keep-alive
www.offersara.com/
185.142.158.188301 Moved Permanently 143 B IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 19d412c7dd9409b3faa09eb3f88f2f3b
6d19c1137a177fb115534860981fa856c04fc28f
6f3c5885b88b76589e1702da6f4c3e5fdb531f57109582c27ba2efa956de3284
GET / HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://www.offersara.com/
Server: Microsoft-IIS/10.0
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
Set-Cookie: smartstore.customer=dc95da99-ae97-43d5-a0cc-a20bbca10320; expires=Fri, 12-Jan-2024 00:19:05 GMT; path=/; HttpOnly
X-Powered-By-Plesk: PleskWin
Date: Thu, 12 Jan 2023 00:19:04 GMT
Content-Length: 143
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 385fbe651dc747111b979f40f9583702
a69fa58ffc6e2b15222f17ad6345b2bec9d75106
c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8156
Expires: Thu, 12 Jan 2023 02:35:01 GMT
Date: Thu, 12 Jan 2023 00:19:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe2c648d-d325-4f3a-981c-274a999706df.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe2c648d-d325-4f3a-981c-274a999706df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36d83265b27b7832b8a27da748e35436
7f63a5d14c3b45808a8566aa9a8af11ad1a2a018
d78d767b01f50ea37bd9a2fdb5107b2e7aa059d736fa629da69dbdcedf8168bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe2c648d-d325-4f3a-981c-274a999706df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4545
x-amzn-requestid: 0e4cd0c3-c043-44e3-adf8-d813b0529279
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: egaAIFzmoAMF0Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bcd6cd-5c7fdbad4a8d9f61244cfb6e;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 03:09:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KrZ83bWQkUAHVNYUlF1kTXhu2M8u9D1N_8r6vmZUyN7kH4xupwKVGQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 03:36:09 GMT
age: 74576
etag: "7f63a5d14c3b45808a8566aa9a8af11ad1a2a018"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd1ba6f4-d345-45e7-b455-36db43f093e0.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd1ba6f4-d345-45e7-b455-36db43f093e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1cbd3c0548b3197ade6f1b882e158e38
855e93b3086773afef5dfd59eb0c422bd2cdea30
cc5ca2083dbea427d87bed4d9c97c52a8416696626ff4ee5926ccd928ac2ccbd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd1ba6f4-d345-45e7-b455-36db43f093e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7685
x-amzn-requestid: ae85fbdf-d614-4d78-b077-ebe1ce79997d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: egZ9qFRHoAMFtIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bcd6bd-3686c1ce7981614c13dcb053;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 03:08:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: pYw4uGSwprzj_RY8VK2Gtk9UAMtb2BzdjRPatRS25q2bwz7ZewDpkA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 03:32:36 GMT
age: 74789
etag: "855e93b3086773afef5dfd59eb0c422bd2cdea30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fbbc90d-c4c5-45db-ac55-16077e5b0d1d.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fbbc90d-c4c5-45db-ac55-16077e5b0d1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94f1c1490ac711097f5eef5e6adab49d
bb41e2958d267cc2d5b24457a6048f484c8cd429
94f854077e6008b97f63419a283f70327ebc8a05794a9dd9fa0518f0f5b00e14
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fbbc90d-c4c5-45db-ac55-16077e5b0d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8689
x-amzn-requestid: c88866a0-e22b-4f8c-b423-1d970ebde318
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: egZ9sHuuoAMFzvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bcd6bd-063dab1f2c6aaab03e5fdb9a;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 03:08:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: vSPK9nuciu6p2onwRcWmi08wmS-9X5ze7QMalJh1jw-5sVQHp-SNEQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 03:23:54 GMT
age: 75311
etag: "bb41e2958d267cc2d5b24457a6048f484c8cd429"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd60a3a13-835c-4663-a77b-e6f12db97608.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd60a3a13-835c-4663-a77b-e6f12db97608.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49f4a4b1cbd9ec8af7c5e15d7c29c54b
5c8d4f2160f9b86072b2e2d91fa4b65dc1384493
a6aa855159b3988d9155a0ea5b387a504c0fc2180486ce967308522e0b7bf118
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd60a3a13-835c-4663-a77b-e6f12db97608.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4118
x-amzn-requestid: b5d86a67-dd01-4446-83f9-395efc85f56f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: egZ9qEbQoAMFrVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bcd6bd-657c4b995ea0618a3a92665e;Sampled=0
x-amzn-remapped-date: Tue, 10 Jan 2023 03:08:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: S8H0gnX3gmg5_D8JqXtqVgcUYei-VpuQeu0wOSzpOmHd7qM-QC9AQQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 03:23:52 GMT
age: 75313
etag: "5c8d4f2160f9b86072b2e2d91fa4b65dc1384493"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWHMZErbIAMF6sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 02vFLorTeOMyO8_Z-KNstD-o26WHWAqbIpg7eQsZSwxG3Q_FXXmapg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 10:50:26 GMT
age: 48519
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fd0e53-ba82-4c9e-80b5-a81462d60dcd.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fd0e53-ba82-4c9e-80b5-a81462d60dcd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8356e95181dbd657fa14e3c502704f30
cf052aee06d74da968cd2c7bad46fef32b5f8456
bfb897dbf5136c95862408dd3051172f3a1ff8ffa07b299b62c733786087526b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2fd0e53-ba82-4c9e-80b5-a81462d60dcd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11115
x-amzn-requestid: e939f491-63f1-41f1-b0cc-7b0468442bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: emPDBESsIAMFzxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf2bac-62dd2ab95dce70172b92d587;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 21:35:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: PtATrvj1Ua4wme8us2RQV1ZNeTKNhdJd0Gvc_xYmMxlKDzfXNLqXeg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 11 Jan 2023 22:04:17 GMT
age: 8088
etag: "cf052aee06d74da968cd2c7bad46fef32b5f8456"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 21e084bce16ff541257ef20be85d7dd3
3ccc51b016cf6eb7bb858d7fac1ae84ed3e81d8c
75667f67ec1eb0f9b2fb94bc0b7a06edf265b6b08cf9fb98db71b91303d26d49
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "75667F67EC1EB0F9B2FB94BC0B7A06EDF265B6B08CF9FB98DB71B91303D26D49"
Last-Modified: Thu, 12 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 12 Jan 2023 06:19:06 GMT
Date: Thu, 12 Jan 2023 00:19:06 GMT
Connection: keep-alive
www.offersara.com/
185.142.158.188200 OK 6.8 kB IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 00c0ebb3ded18a4c3db61fa984f0a19e
c300759392e286e4f944a4666aa41dd0c9f75c41
8ba78c04d4da24242f5614c25f95826c830bcc4ec651923b79e1da5709d33380
GET / HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnetmvc-version: 5.2
x-aspnet-version: 4.0.30319
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:06 GMT; path=/; HttpOnly
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 6804
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash b0cb9090e05e946f64f67b6242740c4d
a8e945492677eb9421197f1bac4010b7cf8cdcb0
4de66b60194c8011f60dad909cc8b9f61c99e2ada6cd896127968c5c43d55ba5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5028
Cache-Control: max-age=100430
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:06 GMT
Etag: "63be23a4-116"
Expires: Fri, 13 Jan 2023 04:12:56 GMT
Last-Modified: Wed, 11 Jan 2023 02:49:08 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 40c97cd4702792e23be8682b91ddec78
c7a949721b7f8e6ed343d878e17845643aea6183
058ddc8a43fc9b1f902b7a2ef921684937814cef1e28a560684665fc9e1d6128
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
104.18.10.207200 OK 10 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP 104.18.10.207:0
File type ASCII text, with very long lines (32033)
Hash 6f89f5fd3c67ef5412aa63ac6a74931e
467aa57958a67305900cae6045e3774230fc5085
262778763e72d0a464a586cdc296021ac410c7149853cc7a8161554e351ddfd6
GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 12 Jan 2023 00:19:06 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 12/13/2021 20:18:53
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.02
cdn-requestid: 48135f30fbfcba704628453df5764d8f
cdn-cache: HIT
cf-cache-status: HIT
age: 18932231
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7881b80019590b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-65294840-2
142.250.74.8200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-65294840-2
IP 142.250.74.8:0
File type ASCII text, with very long lines (1921)
Hash ddff65ab57f8c546e19d4aa0f8fa17df
bd7063426f0889d707f3d209d2c59956fcc00816
0ffdf4dc143a15455ad379a274819bd604f38f00f3fe10f83574198f133893c5
GET /gtag/js?id=UA-65294840-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 12 Jan 2023 00:19:06 GMT
expires: Thu, 12 Jan 2023 00:19:06 GMT
cache-control: private, max-age=900
last-modified: Thu, 12 Jan 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44261
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 40c97cd4702792e23be8682b91ddec78
c7a949721b7f8e6ed343d878e17845643aea6183
058ddc8a43fc9b1f902b7a2ef921684937814cef1e28a560684665fc9e1d6128
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.offersara.com/bundles/js/gvlehlav6lresuzasaelzcrspvo4ekuu6hffqvo6gow1?v=pLhv9jltmwDm2KLvaf7Gt_cK0K7NAFHIrLlsmEJAs341
185.142.158.188200 OK 44 kB URL HTTP/2 www.offersara.com/bundles/js/gvlehlav6lresuzasaelzcrspvo4ekuu6hffqvo6gow1?v=pLhv9jltmwDm2KLvaf7Gt_cK0K7NAFHIrLlsmEJAs341
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type HTML document, ASCII text, with very long lines (32012), with CRLF, LF line terminators
Hash c67ef9445152f162e1483fda1119f4a7
904a3dd2a000fd7c9a6a9e13dc3296f5435500c5
c30a4d96676de293e207b917c98a74589fbe9335d9ea62b9f67bcfab879e3d68
GET /bundles/js/gvlehlav6lresuzasaelzcrspvo4ekuu6hffqvo6gow1?v=pLhv9jltmwDm2KLvaf7Gt_cK0K7NAFHIrLlsmEJAs341 HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
expires: Fri, 12 Jan 2024 00:19:06 GMT
last-modified: Thu, 12 Jan 2023 00:19:06 GMT
vary: User-Agent,Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 43494
X-Firefox-Spdy: h2
www.offersara.com/Themes/Kala118/Content/css/RTL.css
185.142.158.188200 OK 1.4 kB URL HTTP/2 www.offersara.com/Themes/Kala118/Content/css/RTL.css
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash f1409aa0805729e9f814fb442ce441a0
6d0c0c27ed1da86838a23437a6c3984c54c2f6f9
acf9e6f74446b8037095042fa665a301438c3795ad4af13c250c952a17284129
GET /Themes/Kala118/Content/css/RTL.css HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: text/css
content-encoding: gzip
expires: Fri, 13 Jan 2023 00:19:07 GMT
last-modified: Wed, 15 Aug 2018 15:33:18 GMT
accept-ranges: bytes
etag: "1D434AD4A3BB300"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:07 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 1400
X-Firefox-Spdy: h2
www.offersara.com/Themes/Kala118/Content/fa/rtlfont.css
185.142.158.188200 OK 308 B URL HTTP/2 www.offersara.com/Themes/Kala118/Content/fa/rtlfont.css
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type ASCII text, with CRLF line terminators
Hash 6f3cb271dc80cd5bba8920b0ee030bb6
1e704cc9c96b66d3762045eb747b26092339db6b
67dcf072363f235441104342802c09db45ce8be8ef46506763bd4465057c61fc
GET /Themes/Kala118/Content/fa/rtlfont.css HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: text/css
content-encoding: gzip
expires: Fri, 13 Jan 2023 00:19:07 GMT
last-modified: Wed, 15 Aug 2018 11:12:34 GMT
accept-ranges: bytes
etag: "1D43488DDAEBD00"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:07 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 308
X-Firefox-Spdy: h2
www.offersara.com/Themes/Kala118/Content/plugins/jssocials/jssocials.js
185.142.158.188200 OK 4.2 kB URL HTTP/2 www.offersara.com/Themes/Kala118/Content/plugins/jssocials/jssocials.js
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type assembler source, Unicode text, UTF-8 text
Hash bda6823d5d660894ba2ea45df386b76f
c170b3002ddf275711c3dc49de47cec7381a88fb
7e94806b4bb38e2012dd2e07d6683d1640065d864580b4255b5846cff21e7bee
GET /Themes/Kala118/Content/plugins/jssocials/jssocials.js HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/javascript
content-encoding: gzip
expires: Fri, 13 Jan 2023 00:19:07 GMT
last-modified: Sun, 12 Aug 2018 22:58:29 GMT
accept-ranges: bytes
etag: "1D4328FFBFD9880"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:07 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 4217
X-Firefox-Spdy: h2
www.offersara.com/Scripts/globalize/cultures/globalize.culture.fa-IR.js
185.142.158.188200 OK 2.7 kB URL HTTP/2 www.offersara.com/Scripts/globalize/cultures/globalize.culture.fa-IR.js
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
Hash bd11385e07f85f15c38848fac7c8622b
47497cb313cc0f49c1b984c3533e5ee5b9c67c37
d868e5c9d0c43072f82290a3007febe000dd0e8b039818f7b2aa2b2cb22c84ec
GET /Scripts/globalize/cultures/globalize.culture.fa-IR.js HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2073600
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 23 May 2017 08:11:47 GMT
accept-ranges: bytes
etag: "435a21399cd3d21:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 2710
X-Firefox-Spdy: h2
www.offersara.com/Media/Thumbs/0000/0000004.png
185.142.158.188200 OK 4.8 kB URL HTTP/2 www.offersara.com/Media/Thumbs/0000/0000004.png
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type PNG image data, 200 x 63, 8-bit/color RGB, non-interlaced\012- data
Hash 6456b206d39c7102ac8154a850eee9d7
e5dd4dea63067862bc8af3df079e1dd6d2cad3af
629f2ae42fc37b59644de56fe6538a72b2605bdb68f14ec243a578b63df607c8
GET /Media/Thumbs/0000/0000004.png HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2073600
content-type: image/png
last-modified: Tue, 11 Sep 2018 15:58:47 GMT
accept-ranges: bytes
etag: "2384fb52e849d41:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 4752
X-Firefox-Spdy: h2
www.offersara.com/Themes/kala118/Content/images/home-bn/b1.jpg
185.142.158.188200 OK 73 kB URL HTTP/2 www.offersara.com/Themes/kala118/Content/images/home-bn/b1.jpg
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 762x460, components 3\012- data
Hash 395afa7e3c393bbfdbeb67f6bdf119b3
5297ec2c608ee4cf5b99690951561551edc8d5e0
c6cf4b2ba153f2d5c33bacede3a28350b9ec717a616842b8d544e7ce28c7b683
GET /Themes/kala118/Content/images/home-bn/b1.jpg HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/jpeg
expires: Fri, 13 Jan 2023 00:19:07 GMT
last-modified: Sat, 13 May 2017 14:02:04 GMT
accept-ranges: bytes
etag: "1D2CBF17FDE5600"
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:07 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 72835
X-Firefox-Spdy: h2
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 727 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash 74f164e61e8c1d197dc9c8371e49382d
253942b632057e2cdd5af136c6e04e3931dab4be
6822ee261376ecbb88bd48a8d386ad08a83f09de259b80e32abdd917f4319b8f
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 12 Jan 2023 00:19:08 GMT
Content-Type: application/ocsp-response
Content-Length: 727
Connection: keep-alive
Last-Modified: Mon, 09 Jan 2023 14:18:05 GMT
Expires: Mon, 16 Jan 2023 14:18:04 GMT
Etag: "253942b632057e2cdd5af136c6e04e3931dab4be"
Cache-Control: max-age=395335,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7881b80ab9f9b50c-OSL
www.offersara.com/Themes/kala118/Content/images/home-bn/b2.jpg
185.142.158.188200 OK 62 kB URL HTTP/2 www.offersara.com/Themes/kala118/Content/images/home-bn/b2.jpg
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 762x460, components 3\012- data
Hash 3832a65125caed3b4a87f28990dbbc16
4e63d5808ebaa3f94740ee5e53a3b5d0dfd29b33
411fddb19ac220a720c56a4dd50bf8ebbd2689d31b1c32efa300cb9df51e512a
GET /Themes/kala118/Content/images/home-bn/b2.jpg HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/jpeg
expires: Fri, 13 Jan 2023 00:19:07 GMT
last-modified: Sat, 13 May 2017 14:02:06 GMT
accept-ranges: bytes
etag: "1D2CBF1810F8300"
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:07 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 62375
X-Firefox-Spdy: h2
www.torkbrand.ir/eNamadLogo.htm
185.208.181.125404 Not Found 942 B URL HTTP/2 www.torkbrand.ir/eNamadLogo.htm
IP 185.208.181.125:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash c57f025c1a2e06d0b79045700623615a
726d484788804304aa07b7a57328e7413482a5ab
6cf07673c3fa501b966f0169b26a10ad7de8bdcac3d4cabddcca7845d2216014
GET /eNamadLogo.htm HTTP/1.1
Host: www.torkbrand.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 12 Jan 2023 00:19:08 GMT
content-length: 942
X-Firefox-Spdy: h2
www.offersara.com/Themes/kala118/Content/images/home-bn/telegram.jpg
185.142.158.188200 OK 51 kB URL HTTP/2 www.offersara.com/Themes/kala118/Content/images/home-bn/telegram.jpg
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 360x458, components 3\012- data
Hash b5bfafc90dfd1c16a5aa8c4924fe949d
de7086d494997484d6d9bee4d6655c6b138940d9
d0deede61178933b89301443725df9a8c5909a7b7d635913139910b0c8b250c3
GET /Themes/kala118/Content/images/home-bn/telegram.jpg HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/jpeg
expires: Fri, 13 Jan 2023 00:19:07 GMT
last-modified: Sun, 14 May 2017 11:48:07 GMT
accept-ranges: bytes
etag: "1D2CCA7F3DB3580"
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:07 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 50794
X-Firefox-Spdy: h2
www.offersara.com/Themes/kala118/Content/images/home-bn/offer-banner1.jpg
185.142.158.188200 OK 52 kB URL HTTP/2 www.offersara.com/Themes/kala118/Content/images/home-bn/offer-banner1.jpg
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 370x278, components 3\012- data
Hash d7cdd12acbca4901adc9eec0c14bbf1b
2631a55687fc9bfdf107df5efbde45f7145f68da
7b77f7d87e8dad67ffe4304c7bf51622917e76c936d9c4017d9d9fbafa0795e6
GET /Themes/kala118/Content/images/home-bn/offer-banner1.jpg HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/jpeg
expires: Fri, 13 Jan 2023 00:19:07 GMT
last-modified: Sun, 14 May 2017 13:43:43 GMT
accept-ranges: bytes
etag: "1D2CCB81A08D180"
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:07 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 52151
X-Firefox-Spdy: h2
www.offersara.com/Themes/kala118/Content/images/home-bn/offer-banner2.jpg
185.142.158.188200 OK 38 kB URL HTTP/2 www.offersara.com/Themes/kala118/Content/images/home-bn/offer-banner2.jpg
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 370x278, components 3\012- data
Hash 5656f36b1379c590aacfa47ec7a845c4
dbeb06e77e2a6ba30ef80e8953b225c0a847c970
a26b2814d53147ab9542c5ba0cd322550ce1aa5d04c62e0461430f32da9886b6
GET /Themes/kala118/Content/images/home-bn/offer-banner2.jpg HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/jpeg
expires: Fri, 13 Jan 2023 00:19:07 GMT
last-modified: Sun, 14 May 2017 13:55:21 GMT
accept-ranges: bytes
etag: "1D2CCB9BA132A80"
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:07 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 38179
X-Firefox-Spdy: h2
www.offersara.com/Themes/kala118/Content/images/home-bn/offer-banner3.jpg
185.142.158.188200 OK 32 kB URL HTTP/2 www.offersara.com/Themes/kala118/Content/images/home-bn/offer-banner3.jpg
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 370x278, components 3\012- data
Hash 105a513754aae680a3636feaf545a7bb
34fd7b0cb036a313980dcb22a0c9d5870c5d70d3
67a08176517c5b59afb14d0f159ecf37177fc4f4223feea384f4750452f44628
GET /Themes/kala118/Content/images/home-bn/offer-banner3.jpg HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/jpeg
expires: Fri, 13 Jan 2023 00:19:07 GMT
last-modified: Sun, 14 May 2017 13:59:42 GMT
accept-ranges: bytes
etag: "1D2CCBA55A49B00"
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:07 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 31652
X-Firefox-Spdy: h2
www.offersara.com/Themes/kala118/Content/images/home-bn/telegramBanner2.jpg
185.142.158.188200 OK 72 kB URL HTTP/2 www.offersara.com/Themes/kala118/Content/images/home-bn/telegramBanner2.jpg
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1140x149, components 3\012- data
Hash 9050e904dfa439f719fe751086194880
ea09c748d809c673bf72d7a9ebdb20117b2abf8a
75c6ab73f490c0dac5cc5e47ecc4c58cfa048776f18fddb6514f8a596cdcb546
GET /Themes/kala118/Content/images/home-bn/telegramBanner2.jpg HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/jpeg
expires: Fri, 13 Jan 2023 00:19:07 GMT
last-modified: Sun, 14 May 2017 13:20:19 GMT
accept-ranges: bytes
etag: "1D2CCB4D52F6B80"
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:07 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
content-length: 72070
X-Firefox-Spdy: h2
www.offersara.com/bundles/css/61ijdh5fk8jfbjbcg-glqbyg5bmgtsxrwpofiz-u_m41?v=fvQiC9pZUMYbp2JeM9bqe95o8tU2dspuMMbZJSmVbTg1
185.142.158.188200 OK 146 kB URL HTTP/2 www.offersara.com/bundles/css/61ijdh5fk8jfbjbcg-glqbyg5bmgtsxrwpofiz-u_m41?v=fvQiC9pZUMYbp2JeM9bqe95o8tU2dspuMMbZJSmVbTg1
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
Size 146 kB (145740 bytes)
Hash 8682b203aada96d201601118791ca087
c929d853eae16393e449c6fd7894b0bb9a6685ba
c9f4eb913954fa0af477132aee3166471fb1e7a7b0a4d45ad2f6b4b0c08a289c
GET /bundles/css/61ijdh5fk8jfbjbcg-glqbyg5bmgtsxrwpofiz-u_m41?v=fvQiC9pZUMYbp2JeM9bqe95o8tU2dspuMMbZJSmVbTg1 HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: text/css; charset=utf-8
content-encoding: gzip
expires: Fri, 12 Jan 2024 00:19:06 GMT
last-modified: Thu, 12 Jan 2023 00:19:06 GMT
vary: User-Agent,Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
X-Firefox-Spdy: h2
www.torkbrand.ir/eNamadLogo.htm
185.208.181.125404 Not Found 942 B URL HTTP/2 www.torkbrand.ir/eNamadLogo.htm
IP 185.208.181.125:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash c57f025c1a2e06d0b79045700623615a
726d484788804304aa07b7a57328e7413482a5ab
6cf07673c3fa501b966f0169b26a10ad7de8bdcac3d4cabddcca7845d2216014
GET /eNamadLogo.htm HTTP/1.1
Host: www.torkbrand.ir
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Thu, 12 Jan 2023 00:19:10 GMT
content-length: 942
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 8fc637bf13189e1c40161e7f7faf8820
63c8ddd23a5033c66f155795ebc42f616851d35d
a85df0f0ce634ced2770b6e8fcbdbf3c3933c08131c9066bf43e4440b1fd0dc6
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=155803
Date: Thu, 12 Jan 2023 00:19:11 GMT
Etag: "63bef6a9-1d7"
Expires: Fri, 13 Jan 2023 19:35:54 GMT
Last-Modified: Wed, 11 Jan 2023 17:49:29 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: j410-1UhrmCjlDQisy-WV59om9kbaHyqUFoxqGJB6ZsXEQYeOvuK7A==
Age: 6385
www.offersara.com/Themes/Kala118/Content/fonts/fontawesome-webfont.woff?v=3.2.1
185.142.158.188200 OK 98 kB URL HTTP/2 www.offersara.com/Themes/Kala118/Content/fonts/fontawesome-webfont.woff?v=3.2.1
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
GET /Themes/Kala118/Content/fonts/fontawesome-webfont.woff?v=3.2.1 HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.offersara.com/bundles/css/61ijdh5fk8jfbjbcg-glqbyg5bmgtsxrwpofiz-u_m41?v=fvQiC9pZUMYbp2JeM9bqe95o8tU2dspuMMbZJSmVbTg1
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2073600
content-type: application/x-font-woff
last-modified: Sun, 12 Aug 2018 22:57:00 GMT
accept-ranges: bytes
etag: "ba3143c78f32d41:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:08 GMT
content-length: 98024
X-Firefox-Spdy: h2
www.offersara.com/~/Themes/Torkbrand/Content/images/home-bn/b1.jpg
185.142.158.188404 Not Found 847 B URL HTTP/2 www.offersara.com/~/Themes/Torkbrand/Content/images/home-bn/b1.jpg
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text
Hash c8ce6881d1ad3a1ae6f8039071731a43
e361728adb3cacc75b40a627b8b64928982f8ec6
5a4418bb352e51a46f54db3e5bac652a5609150b288e17c06469a2391a2fa4fd
GET /~/Themes/Torkbrand/Content/images/home-bn/b1.jpg HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:10 GMT
content-length: 847
X-Firefox-Spdy: h2
www.offersara.com/~/Themes/Torkbrand/Content/images/home-bn/b2.jpg
185.142.158.188404 Not Found 847 B URL HTTP/2 www.offersara.com/~/Themes/Torkbrand/Content/images/home-bn/b2.jpg
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text
Hash c8ce6881d1ad3a1ae6f8039071731a43
e361728adb3cacc75b40a627b8b64928982f8ec6
5a4418bb352e51a46f54db3e5bac652a5609150b288e17c06469a2391a2fa4fd
GET /~/Themes/Torkbrand/Content/images/home-bn/b2.jpg HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
content-type: text/html
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:10 GMT
content-length: 847
X-Firefox-Spdy: h2
www.offersara.com/Themes/Kala118/Content/images/left-a.png
185.142.158.188200 OK 260 B URL HTTP/2 www.offersara.com/Themes/Kala118/Content/images/left-a.png
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type PNG image data, 15 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 482134ff122a5fe55df566fcefb884f2
6da454506911d5f54920b65fc9650752351ea2c3
d4dc718b1cc7dfafc1efa03f88c4fc4cf0ecdc455c7a97546b92081ab8ca0623
GET /Themes/Kala118/Content/images/left-a.png HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/bundles/css/61ijdh5fk8jfbjbcg-glqbyg5bmgtsxrwpofiz-u_m41?v=fvQiC9pZUMYbp2JeM9bqe95o8tU2dspuMMbZJSmVbTg1
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Fri, 13 Jan 2023 00:19:11 GMT
last-modified: Sun, 12 Aug 2018 22:57:30 GMT
accept-ranges: bytes
etag: "1D4328FD8D2E900"
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:11 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:10 GMT
content-length: 260
X-Firefox-Spdy: h2
www.offersara.com/Themes/Kala118/Content/images/right-a.png
185.142.158.188200 OK 261 B URL HTTP/2 www.offersara.com/Themes/Kala118/Content/images/right-a.png
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type PNG image data, 15 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash 48c429a1751f1d99ce65cc81c4f77991
0afe745a933d037bbe2c339ac31841ae2c1bdb0a
d27051352f97d82bca90f0e778174885dda849946cde4540395a8f028570660c
GET /Themes/Kala118/Content/images/right-a.png HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/bundles/css/61ijdh5fk8jfbjbcg-glqbyg5bmgtsxrwpofiz-u_m41?v=fvQiC9pZUMYbp2JeM9bqe95o8tU2dspuMMbZJSmVbTg1
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: image/png
expires: Fri, 13 Jan 2023 00:19:11 GMT
last-modified: Sun, 12 Aug 2018 22:57:38 GMT
accept-ranges: bytes
etag: "1D4328FDD979D00"
server: Microsoft-IIS/10.0
set-cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602; expires=Fri, 12-Jan-2024 00:19:11 GMT; path=/; HttpOnly
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:10 GMT
content-length: 261
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/static/js/6.4eaf1b82.chunk.js
185.76.9.21200 OK 163 kB URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/6.4eaf1b82.chunk.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Size 163 kB (162735 bytes)
Hash 64483c225a47df37eb72ce9ac28b8d47
3d618c9464e14a9bb3abd92746993e9054d5ce43
50a8902e7d85d72683cefaecc5969e6a0ff326e3e82b977ddc75ceb47acf13d1
GET /static/js/6.4eaf1b82.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 12 Jan 2023 00:19:11 GMT
content-type: application/javascript
last-modified: Mon, 09 Jan 2023 20:58:34 GMT
etag: W/"63bc7ffa-8312d"
expires: Tue, 09 Jan 2024 21:12:32 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1704834752
server: CDN77-Turbo
x-77-nzt: AblMCRQLqHj/v84CAA
x-77-nzt-ray: af5856300b025efeff51bf63355fe018
x-cache: HIT
x-age: 183999
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 11 Jan 2023 22:21:54 GMT
expires: Thu, 12 Jan 2023 00:21:54 GMT
cache-control: public, max-age=7200
age: 7037
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 4475516cd46e5a73f3002f1fc9b68cc5
114957dbe1042296e6ea7542445dbee8d9084d82
08d1e5edf085d4051c346087631febfdb48ab158a5e337a8902bc07efb588394
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=298004105&t=pageview&_s=1&dl=https%3A%2F%2Fwww.offersara.com%2F&ul=en-us&de=UTF-8&dt=%D8%A2%D9%81%D8%B1%D8%B3%D8%B1%D8%A7%20%7C%20%D8%A7%D8%B1%D8%B2%D8%A7%D9%86%D8%B3%D8%B1%D8%A7%DB%8C%20%D8%A2%D9%86%D9%84%D8%A7%DB%8C%D9%86&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1931736344&gjid=635465933&cid=1362238325.1673482737&tid=UA-65294840-2&_gid=756302829.1673482737&_r=1>m=2ou1a1&z=2110424123
142.250.74.46200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=298004105&t=pageview&_s=1&dl=https%3A%2F%2Fwww.offersara.com%2F&ul=en-us&de=UTF-8&dt=%D8%A2%D9%81%D8%B1%D8%B3%D8%B1%D8%A7%20%7C%20%D8%A7%D8%B1%D8%B2%D8%A7%D9%86%D8%B3%D8%B1%D8%A7%DB%8C%20%D8%A2%D9%86%D9%84%D8%A7%DB%8C%D9%86&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1931736344&gjid=635465933&cid=1362238325.1673482737&tid=UA-65294840-2&_gid=756302829.1673482737&_r=1>m=2ou1a1&z=2110424123
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash cc7a1e792bca8ccb1946b7a07f6dbc03
11a2757082428311f587b7664fa9840376137f80
de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af
POST /j/collect?v=1&_v=j98&a=298004105&t=pageview&_s=1&dl=https%3A%2F%2Fwww.offersara.com%2F&ul=en-us&de=UTF-8&dt=%D8%A2%D9%81%D8%B1%D8%B3%D8%B1%D8%A7%20%7C%20%D8%A7%D8%B1%D8%B2%D8%A7%D9%86%D8%B3%D8%B1%D8%A7%DB%8C%20%D8%A2%D9%86%D9%84%D8%A7%DB%8C%D9%86&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1931736344&gjid=635465933&cid=1362238325.1673482737&tid=UA-65294840-2&_gid=756302829.1673482737&_r=1>m=2ou1a1&z=2110424123 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.offersara.com
Connection: keep-alive
Referer: https://www.offersara.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.offersara.com
date: Thu, 12 Jan 2023 00:19:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.offersara.com/favicon.ico
185.142.158.188200 OK 9.2 kB URL HTTP/2 www.offersara.com/favicon.ico
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
File type MS Windows icon resource - 4 icons, 48x48, 8 bits/pixel, 32x32, 8 bits/pixel\012- data
Hash fbc00dff73726d1a06261a20bc854f30
98387466811d1d3fd8f1b0036770c08de2145deb
d242e2ff239e58e5c069e794145cee120b7e739bf5f91277f19ac02fa6f5c7dc
GET /favicon.ico HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=2073600
content-type: image/x-icon
last-modified: Wed, 01 Jun 2016 17:50:54 GMT
accept-ranges: bytes
etag: "b7fbad242ebcd11:0"
server: Microsoft-IIS/10.0
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:11 GMT
content-length: 9158
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 33a8af39cdeaacf33e73bc7ec431da99
0ea460cec93fc8c5023c055d39edbd22e2af3f74
4e6125e7cd55d781dba0aae01aa199a3eb03c0ee164649209eef528f3dbebd5d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=131398
Date: Thu, 12 Jan 2023 00:19:11 GMT
Etag: "63bea220-1d7"
Expires: Fri, 13 Jan 2023 12:49:09 GMT
Last-Modified: Wed, 11 Jan 2023 11:48:48 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UWiwWOXLNbT6SltMHfDnnGcwtEZLwJX0CU-1636xaiPLg-xMK6lPKw==
Age: 3621
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-65294840-2&cid=1362238325.1673482737&jid=1931736344&gjid=635465933&_gid=756302829.1673482737&_u=YEBAAUAAAAAAACAAI~&z=945240552
173.194.222.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-65294840-2&cid=1362238325.1673482737&jid=1931736344&gjid=635465933&_gid=756302829.1673482737&_u=YEBAAUAAAAAAACAAI~&z=945240552
IP 173.194.222.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-65294840-2&cid=1362238325.1673482737&jid=1931736344&gjid=635465933&_gid=756302829.1673482737&_u=YEBAAUAAAAAAACAAI~&z=945240552 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.offersara.com
Connection: keep-alive
Referer: https://www.offersara.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.offersara.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 12 Jan 2023 00:19:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bootstrap.smartsuppchat.com/widget/d950f838348b1902d53ed827a60c6f931075de43.json
3.123.238.23200 OK 4.5 kB URL HTTP/2 bootstrap.smartsuppchat.com/widget/d950f838348b1902d53ed827a60c6f931075de43.json
IP 3.123.238.23:0
File type JSON data\012- , ASCII text, with very long lines (1074), with no line terminators
Hash d6bce157291c237f5395fc2ba8902216
88085dcbc7fbdd43317fdcecf943f2b2eae6cad9
7ee33127cea006093c450a627283134114e8d4192014685236953310b8173992
GET /widget/d950f838348b1902d53ed827a60c6f931075de43.json HTTP/1.1
Host: bootstrap.smartsuppchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://www.offersara.com
Connection: keep-alive
Referer: https://www.offersara.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 12 Jan 2023 00:19:11 GMT
content-type: application/json; charset=utf-8
x-version: 53ea911f61896be6992922257e82b4783f6cf210
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: private, max-age=0, must-revalidate
x-hit: redis
etag: "432-O08tpa6hW+m6gBYL3H9v/ugSOCY"
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 85ff946a6fdcac5ce6fc5ccacfdb2ab0
e7e1b4f574ac6f03c46833efa11b1b2c8e5e0c7d
6ad8f70cb3c6ede2ba4d2a47ce3baa9cb3b32b1da7b46d523546ef6a58d9be24
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 41e24a0cfd139513105cdf694b82da27
34be64d972fe555b75ab895175b3b0619253f06a
9a5c64fef0280bbbdb7fd9bed8f304dbc5f4a0fbd018b80e6ae8ad8893a7ca74
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 39bf291e57709ceecd07cf4dd5539ecd
e0b3aef8b47e4184fa743345c332f07bd3f7128e
3ee3402a998f6b858ecb1708f7fc42fa5f369abd4334dced3e621cd59cb26494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-65294840-2&cid=1362238325.1673482737&jid=1931736344&_u=YEBAAUAAAAAAACAAI~&z=1812162348
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-65294840-2&cid=1362238325.1673482737&jid=1931736344&_u=YEBAAUAAAAAAACAAI~&z=1812162348
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-65294840-2&cid=1362238325.1673482737&jid=1931736344&_u=YEBAAUAAAAAAACAAI~&z=1812162348 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 12 Jan 2023 00:19:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-65294840-2&cid=1362238325.1673482737&jid=1931736344&_u=YEBAAUAAAAAAACAAI~&z=1812162348
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-65294840-2&cid=1362238325.1673482737&jid=1931736344&_u=YEBAAUAAAAAAACAAI~&z=1812162348
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-65294840-2&cid=1362238325.1673482737&jid=1931736344&_u=YEBAAUAAAAAAACAAI~&z=1812162348 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 12 Jan 2023 00:19:11 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9ee9070e153bc0be89878860ca024177
a207ab2c4efdf959110cdbf0ca1e2a4ad41ca2a4
0bbd0335d60ede5782096cc8dc60293f60c24fc0c6285b33f2a9663615afc66d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ee335bb2a20e83a137dedff2ff1f54b7
388a3728c5900302ff6cf2f1e27bcb12e8896b05
9ebf03e142fa0c5477430d456f614d9cea75229b2b3aa8643e0051e0fe760476
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 12 Jan 2023 00:19:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.offersara.com/bundles/js/8_uu_ygaxwa9bm7hbk6kzb1z4hvod6ovmciqpt_2k9e1?v=cid8EcX769XrQZeNp7MuWyf8iuk_UhBcFqVfuv_m7XY1
185.142.158.188200 OK 0 B URL HTTP/2 www.offersara.com/bundles/js/8_uu_ygaxwa9bm7hbk6kzb1z4hvod6ovmciqpt_2k9e1?v=cid8EcX769XrQZeNp7MuWyf8iuk_UhBcFqVfuv_m7XY1
IP 185.142.158.188:0
ASN #48147 Asre Pardazeshe Ettelaate Amin Institute
GET /bundles/js/8_uu_ygaxwa9bm7hbk6kzb1z4hvod6ovmciqpt_2k9e1?v=cid8EcX769XrQZeNp7MuWyf8iuk_UhBcFqVfuv_m7XY1 HTTP/1.1
Host: www.offersara.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Cookie: smartstore.customer=06eb2c32-1607-48b9-9408-9a257ede6602
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
expires: Fri, 12 Jan 2024 00:19:07 GMT
last-modified: Thu, 12 Jan 2023 00:19:07 GMT
vary: User-Agent,Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by-plesk: PleskWin
date: Thu, 12 Jan 2023 00:19:06 GMT
X-Firefox-Spdy: h2
www.smartsuppchat.com/loader.js?
185.76.9.18200 OK 0 B URL HTTP/2 www.smartsuppchat.com/loader.js?
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /loader.js? HTTP/1.1
Host: www.smartsuppchat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.offersara.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 12 Jan 2023 00:19:08 GMT
content-type: application/javascript
last-modified: Wed, 28 Dec 2022 13:18:33 GMT
etag: W/"63ac4229-4b9b"
expires: Wed, 28 Dec 2022 13:26:03 GMT
cache-control: max-age=300, public, s-maxage=60
x-accel-expires: @1673482751
server: CDN77-Turbo
x-77-nzt: AblMCQ2BOw3/OQAAAA
x-77-nzt-ray: c0a4cc281d4f0960fc51bf6313fc9b0c
x-cache: HIT
x-age: 57
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
widget-v2.smartsuppcdn.com/static/js/main.6210fbc6.chunk.js
185.76.9.21200 OK 0 B URL HTTP/2 widget-v2.smartsuppcdn.com/static/js/main.6210fbc6.chunk.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /static/js/main.6210fbc6.chunk.js HTTP/1.1
Host: widget-v2.smartsuppcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 12 Jan 2023 00:19:11 GMT
content-type: application/javascript
last-modified: Mon, 09 Jan 2023 20:58:34 GMT
etag: W/"63bc7ffa-1ca09"
expires: Tue, 09 Jan 2024 21:12:32 GMT
cache-control: max-age=31536000, public, immutable
access-control-allow-origin: *
x-accel-expires: @1704834752
server: CDN77-Turbo
x-77-nzt: AblMCRRhhF3/v84CAA
x-77-nzt-ray: af5856300b025efeff51bf6342bcb618
x-cache: HIT
x-age: 183999
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2