Report - gasursa.com/

Report Overview

Visited public
2023-08-30 04:04:29
Tags
URL
gasursa.com/
Finishing URL
www.gasursa.com/
IP / ASN
199.168.185.134
#33182 DIMENOC
Title
GASUR S.A

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
www.gasursa.com	unknown	2008-11-12	2021-02-16 19:22:37	2023-08-04 03:05:30	35 kB	2.1 MB	199.168.185.134
ocsp.pki.goog	175	2016-06-13	2018-07-01 08:43:07	2023-08-28 18:12:02	2.3 kB	4.9 kB	142.250.74.131
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-08-29 04:31:45	2.2 kB	100 kB	142.250.74.106
embed.tawk.to	8650	unknown	2014-03-19 22:03:49	2023-08-29 05:21:42	8.0 kB	867 kB	172.67.38.66
vsb77.tawk.to	113655	unknown	2020-04-04 12:01:10	2023-08-29 18:48:33	2.1 kB	832 B	104.22.25.131
va.tawk.to	8297	unknown	2017-01-30 05:20:46	2023-08-29 05:21:44	2.6 kB	7.2 kB	172.67.38.66
gasursa.com	unknown	2008-11-12	2016-02-14 18:54:58	2023-08-04 03:05:30	732 B	934 B	199.168.185.134
cdn.jsdelivr.net	439	2012-05-16	2012-09-30 02:15:09	2023-08-29 05:05:30	864 B	607 kB	151.101.193.229
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-08-29 04:31:24	3.2 kB	126 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-08-30 04:04:01	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-08-30 04:04:01	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-08-30 04:04:02	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-08-30 04:04:02	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-08-30 04:04:04	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-08-30 04:04:04	medium	Client IP	Internal IP	ET DNS Query for .to TLD

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (60)

	URL	From	Size	First Seen	Last Seen
	www.gasursa.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0	ScriptElement	88 kB	2023-06-13	2025-06-04
Pretty URL www.gasursa.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-13 23:41 Last Seen2025-06-04 17:01 Times Seen26202 Hash ff04dd1ef5c67998d8652330c0441689 5e6ff5bd5240181a8bdea983837f39ac231dac4d 5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164 Loading...

	www.gasursa.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	ScriptElement	14 kB	2023-05-09	2025-06-04
Pretty URL www.gasursa.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21 Last Seen2025-06-04 17:16 Times Seen110430 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	www.gasursa.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2	ScriptElement	8.2 kB	2023-03-13	2025-06-04
Pretty URL www.gasursa.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:32 Last Seen2025-06-04 17:02 Times Seen29923 Hash dda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4 Loading...

	www.gasursa.com/	ScriptElement	3.3 kB	2024-08-21	2024-08-21
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 07:47 Last Seen2024-08-21 07:47 Times Seen1 Hash 4f0bc5fb92eb6b683aad6509518343ab b42ab518ae8d46211ad492d857b1d4630e7ee79b a422f4219036fb7c161470093a0d582c52bda0b2e7547443c051cc13ceae2ec7 Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-48f46bef.js	ScriptElement	20 kB	2023-08-25	2023-11-18
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-48f46bef.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 05:17 Last Seen2023-11-18 03:55 Times Seen1599 Hash a969e07fe5f9ff026808f9b10afe3092 df7c56cb33d2652b2971ec61c475709b08f9c299 74fa99944cefc82f6af0514d941ea2ae406812ddedd2e0b1ce26f9b4b7f13d74 Loading...

	cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js	ScriptElement	303 kB	2023-04-05	2025-06-04
Pretty URL cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP 151.101.193.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 07:49 Last Seen2025-06-04 14:57 Times Seen25998 Hash 7bb7aac0cac89a90304af1c72eb4f50d 729f6f8ca5787d89743b0ed7eb27fd76406bf985 f5c06455e539dcd889f7f05d709b5adc76c444099fe57f431365af2fc57e803b Loading...

	www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/js/frontend.js?ver=1.4.3	ScriptElement	180 kB	2023-03-10	2025-03-15
Pretty URL www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/js/frontend.js?ver=1.4.3 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 08:12 Last Seen2025-03-15 15:39 Times Seen21 Hash d64a362014f2c80ff666a0d54b202ac1 bb9c95f0d5829f9bbaab60e1e4795aaba092d7f3 bf09a979119ad556a6b39b806f6e9f386ef462e5fb6f8d045004e61efb2d1ed2 Loading...

	www.gasursa.com/wp-content/uploads/pum/pum-site-scripts.js?defer&generated=1692361287&ver=1.18.2	ScriptElement	70 kB	2023-08-30	2023-08-30
Pretty URL www.gasursa.com/wp-content/uploads/pum/pum-site-scripts.js?defer&generated=1692361287&ver=1.18.2 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 06:04 Last Seen2023-08-30 06:04 Times Seen1 Hash 068739c5d6ec23963115f064d990f3e4 199527450801b2c7b4d7768acda071f7a33c3f0f dcc8c0dac397fd483e1fa5d001e77bb945833ee33cf259f9dd98e1c435e2c305 Loading...

	www.gasursa.com/wp-content/plugins/pro-elements/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	ScriptElement	25 kB	2023-03-07	2025-06-04
Pretty URL www.gasursa.com/wp-content/plugins/pro-elements/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-04 15:32 Times Seen6568 Hash 046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020 Loading...

	www.gasursa.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.15.2	ScriptElement	41 kB	2023-08-09	2025-06-03
Pretty URL www.gasursa.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.15.2 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 16:50 Last Seen2025-06-03 02:59 Times Seen832 Hash 6b62b8eae228a44aa1f48ea73fde62fe b46989a3a139de7f4b92bd5173978220962fd242 202aa6d8ac6559305e6d1b273941796e5fab95dc0a08f9a9f0e4955afa0b4668 Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2d0b9454.js	ScriptElement	535 B	2023-06-02	2025-05-26
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2d0b9454.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09 Last Seen2025-05-26 16:33 Times Seen26458 Hash c506281367048d4a134c9affbc68c8c6 ffa331eb81694501d6ff64ae2d1f7e667529c3ba 7e0a886153a50f34adeb6d141b542d08a6338c5e3bada9fc3ccf88d0580356df Loading...

	www.gasursa.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.15.2	ScriptElement	5.0 kB	2023-08-09	2025-06-03
Pretty URL www.gasursa.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.15.2 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 16:50 Last Seen2025-06-03 02:59 Times Seen832 Hash 88970708a7ed5eb95e635f3eae026b51 0a7bff09257e9c7e072c59d3dd5cd6b7af6e6e6b 1a11d4c8a6d406d2b3d222fea59f8ec58c8846662393bcb2ac17760c9545270e Loading...

	www.gasursa.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11	ScriptElement	6.6 kB	2023-03-14	2025-06-04
Pretty URL www.gasursa.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 07:30 Last Seen2025-06-04 17:01 Times Seen12831 Hash 9a4f28a615173df36cb84be2b345816e f709263841708d9e40268f24a0072ff4fe811b35 6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6 Loading...

	www.gasursa.com/	ScriptElement	295 B	2023-03-07	2025-06-03
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03 Last Seen2025-06-03 05:26 Times Seen563 Hash 5b57959edec051ef9a3665551c261f32 304a934ee92f10bbb13961da844c87e478417898 8fd277ac5256890cbe0b50f0a4eb7122b4399bf7e2791740e20aac0b872e1805 Loading...

	www.gasursa.com/	ScriptElement	2.8 kB	2023-05-31	2024-08-21
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-31 03:06 Last Seen2024-08-21 07:47 Times Seen1 Hash 7f5f7e565892e5bd69736b6be22846a6 a3b10c0f7385da5546378f52b3b55b3bcfa63e52 521e1774d85acb70ace37a990e7b62714979ef7c60d7b8278ca16248a7ae7e16 Loading...

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/ss-simple.min.js?ver=4e06d1a7	ScriptElement	13 kB	2023-08-10	2025-06-04
Pretty URL www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/ss-simple.min.js?ver=4e06d1a7 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-10 02:47 Last Seen2025-06-04 06:52 Times Seen422 Hash d35213be85ddf2b10048dbbcc31074fa 57a80c7d21f39e3507c8214f5744f5637bb2074e ca6ef142765010507ac8c344ee29295e28bf2b93a06c536f14fdd91deff6a697 Loading...

	www.gasursa.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	ScriptElement	1.4 kB	2023-08-09	2025-06-03
Pretty URL www.gasursa.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 16:50 Last Seen2025-06-03 02:59 Times Seen625 Hash 21b327043b7f4c865205709f87a8c3c1 acf601f259774c8af686c691ce223e9f4e0eda6f ab3befdd3eec3313f82916c4d24f2c0e6cf2255b23c648f4528bbc1de1bb8efc Loading...

	www.gasursa.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1	ScriptElement	4.6 kB	2023-08-08	2025-06-04
Pretty URL www.gasursa.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:25 Last Seen2025-06-04 17:02 Times Seen14896 Hash 7bd48eb3bd568033e96caf0fb62e6690 b38066999294b99d92d95db5f38bc15707eb1f22 7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596 Loading...

	www.gasursa.com/	ScriptElement	365 B	2023-05-31	2024-08-21
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-31 03:06 Last Seen2024-08-21 07:47 Times Seen1 Hash 063f9d5d47f2d9f47a09a8efe22d114a af9bdce5e9a0d9d1f2a7bc1bdc8557af0d27696c 96b587a2492b759148931e9fd106dd46a5ca1473c7d661ac254a6395a7152188 Loading...

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	ScriptElement	12 kB	2023-03-07	2025-06-04
Pretty URL www.gasursa.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-04 17:01 Times Seen25268 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-main.js	ScriptElement	121 B	2023-03-07	2025-06-04
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-main.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-04 17:16 Times Seen31265 Hash da5bb1dc647470204df0e49f5afac2de f5cbf596ca5e4fe208e4c55af6e45b71f9febbe8 705186becc9e0a306a6b4867ae2768aa9dd3b8c12393d9f9c52029e9a6fcf31c Loading...

	www.gasursa.com/	ScriptElement	128 B	2023-03-29	2025-06-04
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 23:51 Last Seen2025-06-04 01:46 Times Seen1426 Hash 60112762381056f83a42d8a85c36fd02 8c4f1759ec652c58deeb4cc8c8c207abde2b0abc 44085cdc042ab1d1c6b08a640a7b0145ee2e844d98204a1852b2685a72a39b7f Loading...

	www.gasursa.com/	ScriptElement	137 B	2024-08-21	2024-08-21
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 07:47 Last Seen2024-08-21 07:47 Times Seen1 Hash 399bc573e01bb0658de9a4bfa790818f 5d695ff360e331d48997c0ae993fddb736e6654b 9f513753b1dfc3fc1fee5c397a44fdbccd1fbcc0914b93e6701838fc624cf221 Loading...

	www.gasursa.com/wp-includes/js/underscore.min.js?ver=1.13.4	ScriptElement	19 kB	2023-03-08	2025-06-04
Pretty URL www.gasursa.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-06-04 17:02 Times Seen21462 Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a Loading...

	www.gasursa.com/wp-content/plugins/pro-elements/assets/js/nav-menu.bb5cce0a50480cdf695d.bundle.min.js	ScriptElement	4.0 kB	2023-05-04	2024-08-21
Pretty URL www.gasursa.com/wp-content/plugins/pro-elements/assets/js/nav-menu.bb5cce0a50480cdf695d.bundle.min.js IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-04 01:57 Last Seen2024-08-21 08:51 Times Seen6 Hash 3d203121d2bb5904bee2158188c69292 f382149eab0b8736a9ab6a65c6e967dff760af4a f67744a5ba02134898a34e36af470ff7ceb0b18c1958f6eceaf1dae875ce1c82 Loading...

	www.gasursa.com/wp-includes/js/wp-util.min.js?ver=6.3	ScriptElement	1.4 kB	2023-03-08	2025-06-04
Pretty URL www.gasursa.com/wp-includes/js/wp-util.min.js?ver=6.3 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26 Last Seen2025-06-04 17:16 Times Seen19859 Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 Loading...

	www.gasursa.com/wp-content/plugins/pro-elements/assets/js/search-form.0ef02f9fd5e7db2ea91b.bundle.min.js	ScriptElement	2.0 kB	2023-05-21	2023-08-30
Pretty URL www.gasursa.com/wp-content/plugins/pro-elements/assets/js/search-form.0ef02f9fd5e7db2ea91b.bundle.min.js IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-21 19:23 Last Seen2023-08-30 06:04 Times Seen1 Hash 44721de9f164647ae87f1b3b283b8bf0 ecc7002b50ceac5d867fdc0ef7dda13205a51fba bb7ae39be9e8b1406223adb4f11ac40ba9f1f7132755cfc0f84e54345743e694 Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-vendors.js	ScriptElement	215 kB	2023-08-25	2024-08-21
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-vendors.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 05:17 Last Seen2024-08-21 08:09 Times Seen1774 Hash e2fe1938f286b7f4fdeb501d7d2626de 329e2df64bd29c2e7e092afcdd6da9fa0969b4d1 016cb72d0dc68518f976ba461c6438d508e060dd61f6c7e636542d9e4b1de55c Loading...

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/n2.min.js?ver=4e06d1a7	ScriptElement	41 kB	2023-08-10	2025-06-02
Pretty URL www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/n2.min.js?ver=4e06d1a7 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-10 02:47 Last Seen2025-06-02 23:48 Times Seen204 Hash fc9acc7262f05ad8c04374a2c52f13d7 e155fb507837bc9dbb4e07f320a0ece22d80afae ec4eb1d43feb1ff5d46ff8fceb2ff6a7447a604bdbbe0e2c0e3fce9545954736 Loading...

	www.gasursa.com/	ScriptElement	18 kB	2024-08-21	2024-08-21
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 07:47 Last Seen2024-08-21 07:47 Times Seen1 Hash f175fdca485c80fcd1737083ccfd9236 939f9e3ed9fec7b9e6f34c5a1323ef0bbb515660 03a6725c95daa4e23ad31b5b0f02d4421d5c79d7f595a88f90f9457dda94b8d7 Loading...

	www.gasursa.com/	ScriptElement	1.7 kB	2024-08-21	2024-08-21
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 07:47 Last Seen2024-08-21 07:47 Times Seen1 Hash 3ea315d9d5d6085d21c637ccf797365f 5d67e7a1c11b1e8b6d1a4183a7bde1f838e7f3fa fead54500ad3705e16410e9e20457e8a562d8a305b05ebf0ec02399db00394ad Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-app.js	ScriptElement	151 B	2023-03-07	2025-06-04
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-app.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02 Last Seen2025-06-04 17:16 Times Seen31305 Hash e736e189edb5d0d9d5b8e7f23dd9114a bcabee193f13756fa9154fc492fe420c47140343 13cf82e6f9d48221cd55f8b3c3d206f7bdb83f291034b478e484ccfef7d500dd Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2c78ba82.js	ScriptElement	7.8 kB	2023-07-14	2024-08-21
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2c78ba82.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-14 10:40 Last Seen2024-08-21 09:44 Times Seen3272 Hash 940b50b62d332ac06770a9c45b1e60b0 ab88f8dba937de5d828c7356d7d5ef1ae407945e cda3a940b53dd58a8fd2b219dada689959db76a483ed394cc2843f60559866c3 Loading...

	www.gasursa.com/wp-content/plugins/pro-elements/assets/js/webpack-pro.runtime.min.js?ver=3.12.3	ScriptElement	5.5 kB	2023-05-04	2025-05-29
Pretty URL www.gasursa.com/wp-content/plugins/pro-elements/assets/js/webpack-pro.runtime.min.js?ver=3.12.3 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-04 01:57 Last Seen2025-05-29 18:32 Times Seen26 Hash a093f973bc030124349cb5e777b907b5 00368c59c183cab5187dcdf74c858379b0ced1b6 ed7a16b3bc483bd904000289a27853c44f2a2583fcd4001cbac82b571ce1ac14 Loading...

	www.gasursa.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.15.2	ScriptElement	56 kB	2023-08-09	2025-06-03
Pretty URL www.gasursa.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.15.2 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-09 16:50 Last Seen2025-06-03 02:59 Times Seen824 Hash 96fa09ece494f9165c303627c46eb4aa cb37caf43791b355032a6a0a0e9581efe8c30881 2055757e207fbd1dd32c01ab72c914fa88ae5f9f5595131207ca1e4769b8ba3b Loading...

	www.gasursa.com/	ScriptElement	68 B	2023-03-07	2025-06-04
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-04 17:02 Times Seen25218 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	www.gasursa.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	ScriptElement	21 kB	2023-04-01	2025-06-04
Pretty URL www.gasursa.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 10:26 Last Seen2025-06-04 17:02 Times Seen27357 Hash c4e68a0f3463c0bd3c39eab38815e881 0ce58644e9f3c5063a11453ff287c5ec096465a7 ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f Loading...

	www.gasursa.com/	ScriptElement	1.2 kB	2024-08-21	2024-08-21
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 07:47 Last Seen2024-08-21 07:47 Times Seen1 Hash 0b14eb6287acd6e1b2cbe52fff4ad954 9a49b2f27fbfdf5fcfe819c18a6ac1aa91aa9b94 3a369140d35c8d86a841cc2d51fe37a4789d4575142f1401b8ea01187fcfc7ac Loading...

	www.gasursa.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	ScriptElement	16 kB	2023-07-22	2025-06-04
Pretty URL www.gasursa.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-07-22 18:30 Last Seen2025-06-04 17:01 Times Seen9402 Hash 94dfdbe80f36b3be63ce74ff1135b996 5e05077d99e736af42b2da70e428e7f7df556dd4 4c0ced2cb3830d045cdd74f745fd4d6dcb082d8edd3a9fe46e39295e30cb8032 Loading...

	www.gasursa.com/wp-content/plugins/pro-elements/assets/js/elements-handlers.min.js?ver=3.12.3	ScriptElement	30 kB	2023-05-04	2025-05-17
Pretty URL www.gasursa.com/wp-content/plugins/pro-elements/assets/js/elements-handlers.min.js?ver=3.12.3 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-04 01:57 Last Seen2025-05-17 16:35 Times Seen20 Hash e1a9f3f6f3d50f6862c9ca4859ff7a2c 889c60e605f874cbaf68806fed490d8c61c6aad9 18066084d53c15e38e01fe47b561363db07692f3501b74892a9c3ae9bba41e5b Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-07cad36d.js	ScriptElement	95 kB	2023-08-25	2023-11-18
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-07cad36d.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 05:17 Last Seen2023-11-18 03:55 Times Seen1589 Hash 44e112afe302a72c298b02798e22024b 412f83962871aa75e6fd0c2a5938343b61bea28b 44faa7abe70235450c8e96200d7d660854625fb58f2196eb85bf27319ca98c72 Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-vendor.js	ScriptElement	83 kB	2023-06-02	2025-03-12
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-vendor.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09 Last Seen2025-03-12 13:42 Times Seen23154 Hash ce3014b09c6dfbd6f92bc585fd840580 d17abb8d652929260df6a153814560dd5af54424 916c13b184fbc42c59463a47bf90611461bec9e17a10a37def3c751ade00dced Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-common.js	ScriptElement	211 kB	2023-08-25	2023-09-15
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-common.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 05:17 Last Seen2023-09-15 09:38 Times Seen1777 Hash 1e8f19ee53d4bf29b44af99232be95dd 829aab4bcd0ff18c112fc9be9d9e1b7f6246024f 0d99bd59702e8c30f23976669fbed3a9f2be42364f67023c82289a067c28a1b0 Loading...

	www.gasursa.com/	ScriptElement	2.4 kB	2024-08-21	2024-08-21
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-21 07:47 Last Seen2024-08-21 07:47 Times Seen1 Hash a0ba601100a7939dfb97fdb490dc7790 28aa1208e7fc6c31c060bf3449df604d00be156e 2691edca1399e1838d337b152be16f6442ff7f40f0a33ed8df1a1d838d67c685 Loading...

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Widget/Arrow/ArrowImage/Assets/dist/w-arrow-image.min.js?ver=4e06d1a7	ScriptElement	1.5 kB	2023-08-16	2025-06-04
Pretty URL www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Widget/Arrow/ArrowImage/Assets/dist/w-arrow-image.min.js?ver=4e06d1a7 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-16 09:57 Last Seen2025-06-04 11:23 Times Seen464 Hash 647f065d638871b33bf136efc47fc5a1 86fa06add7f89317faf15dc5ae607346928d3487 11f4b1c5b48fa0100ba180a2e7ffc3296a59ecd4b210351bb452130979c8582c Loading...

	embed.tawk.to/62f302fe37898912e962279a/1ga2k7cdd	ScriptElement	2.1 kB	2023-08-30	2023-08-30
Pretty URL embed.tawk.to/62f302fe37898912e962279a/1ga2k7cdd IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-30 06:04 Last Seen2023-08-30 06:04 Times Seen1 Hash a1e72ff15874a4b973a8aecb180a0227 fdfd0e026eebd019f6e53602853a1e7ccad1a16d ad8c4c310ce727856894444437502768acc4d2080c2e591122750b43eef4b0b2 Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/languages/es.js	ScriptElement	17 kB	2023-04-06	2024-08-21
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/languages/es.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-06 16:03 Last Seen2024-08-21 09:44 Times Seen399 Hash 6f0c6888c01bbf7472d5990fdd491c85 f39de9c28154719ae2a28aa0b25cfe36f073f30e 3e289c214bcfe3a421a1a57057f941324c1add3a2b69488b34654a658bef5ac6 Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2d0b383d.js	ScriptElement	689 B	2023-06-02	2024-08-21
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2d0b383d.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09 Last Seen2024-08-21 09:44 Times Seen5708 Hash a6432972b93f7d0476635e7ac224d718 982170daa2061994afe4c414adfbf32596ab3cca 72deb01333692d6942fe77383825537b0dac6653af9b50312a53fdf3b31efa09 Loading...

	www.gasursa.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.2.1	ScriptElement	21 kB	2023-05-09	2025-06-04
Pretty URL www.gasursa.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.2.1 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 23:27 Last Seen2025-06-04 01:33 Times Seen572 Hash ad0be243529fc0bea50cf5f07d9333d4 1775ec8106d53939d727faeb3541ae223464cc7c 694da45e033114445455ea32bc0448bd950165a0eda0f92e16b9ed32bf5eb493 Loading...

	www.gasursa.com/wp-content/plugins/pro-elements/assets/js/frontend.min.js?ver=3.12.3	ScriptElement	24 kB	2023-05-04	2025-05-29
Pretty URL www.gasursa.com/wp-content/plugins/pro-elements/assets/js/frontend.min.js?ver=3.12.3 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-04 01:57 Last Seen2025-05-29 18:32 Times Seen26 Hash b7c2a6d708d4a9e2134bd8c6fcc34d6e 6ed6e1f7b0ca62a148830e381b0907e1708750df 6ca5d9ebe2de7bb535448186edede72112096014ba59288a6e14244d970a875b Loading...

	www.gasursa.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.8.3.1	ScriptElement	771 B	2023-03-12	2025-06-04
Pretty URL www.gasursa.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.8.3.1 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 15:10 Last Seen2025-06-04 15:32 Times Seen4372 Hash 2399ef783701f73c399589ae95298b0f 3e1f2a7ac9dcb2b50b1f1cf768441e46fd9f62ee 2dea57483641f8762937dfd9b09126a9b21c88bd3d7486186003e0bbb9043145 Loading...

	www.gasursa.com/	ScriptElement	70 B	2023-03-07	2025-06-04
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-06-04 15:32 Times Seen7341 Hash 4ff152a840e29705f2933718a2571bc3 6c7ed239bcd74ab7a0ea03b3dd4ab74ffceaff49 e426295764322c0b4d881b5da28c2591e9ff651fc07636da1e2979a62a2f349c Loading...

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/smartslider-backgroundanimation.min.js?ver=4e06d1a7	ScriptElement	28 kB	2023-08-10	2025-06-04
Pretty URL www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/smartslider-backgroundanimation.min.js?ver=4e06d1a7 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-10 02:47 Last Seen2025-06-04 06:52 Times Seen48 Hash 694d7b631d78944649bd11bbd101f834 79564affd81ab2060d71b905cb2407872b0b98fb e6ea32a3504e33e59d42400f4c26b0b17975963af62f5751073a39e68f9e03a5 Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-runtime.js	ScriptElement	2.3 kB	2023-08-25	2023-09-15
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-runtime.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 05:17 Last Seen2023-09-15 09:38 Times Seen1773 Hash 4e794db1be9d7d1aea47c386595eb307 2ed7e834f76442afbc1b02e9813d39ccd6beb208 e3db4d06c2e4f56b352e381ccedb900d855f8f57f0a0d587dba9644d6e861d22 Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-4fe9d5dd.js	ScriptElement	906 B	2023-06-02	2025-05-26
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-4fe9d5dd.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09 Last Seen2025-05-26 16:33 Times Seen26425 Hash 1c5ecf371149feca23bd895ba9dfec4d 6f6213ae4c63d959441572d232f0425467ed05de fb193c2bcf1a14030cea8d72baa20ab7b1cf88f9e90adb31895279beedf6bf84 Loading...

	www.gasursa.com/	ScriptElement	84 B	2023-03-07	2025-06-04
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07 Last Seen2025-06-04 15:32 Times Seen2769 Hash 7f215c9370788561e1b9e30dd40697ef aca5a8d9d6bae876f32a5b9fb7d1d948afe855b0 eed9d591cae9c609fb97d73f7fe3d192432da0246d97bbbad6d0de0a1bc0cc2d Loading...

	www.gasursa.com/	ScriptElement	333 B	2023-03-07	2025-06-04
Pretty URL www.gasursa.com/ IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02 Last Seen2025-06-04 17:01 Times Seen7829 Hash 3688fd64c409264431201fa55a828e81 2b7eeefaa1edf3a7621f7576b35b01c895ef5367 944433761a880eab1d567dd5389499af76aa03582c82a8aa88838e3c6c2134c6 Loading...

	www.gasursa.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef	ScriptElement	9.4 kB	2023-08-08	2025-06-04
Pretty URL www.gasursa.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-08 23:25 Last Seen2025-06-04 17:02 Times Seen13786 Hash c2c4e2a562e06e1cb22293a5b920aca6 a7b5a369ac4883f1ee7fa701b238d20238b675ca 698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f Loading...

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider-frontend.min.js?ver=4e06d1a7	ScriptElement	114 kB	2023-08-10	2025-06-02
Pretty URL www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider-frontend.min.js?ver=4e06d1a7 IP 199.168.185.134 ASN #33182 DIMENOC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-10 02:47 Last Seen2025-06-02 23:48 Times Seen204 Hash 2439cc89aea321b924e8673f276438ce fdfe1ab8c7feb3f24cb97059f94f2b8e98c2dd8f 866ce0557c25a351783f1f5287f6cee1332efafe406194195fb9c98234b8e162 Loading...

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-696bc286.js	ScriptElement	18 kB	2023-08-25	2023-11-18
Pretty URL embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-696bc286.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-25 05:17 Last Seen2023-11-18 03:55 Times Seen1612 Hash 74e75e2b5352141112d0877211c72759 b96a4a234a610d5849f8f5529b002609dda2b4da be7c4539f0c12d9f27a8a69b9c9fcafb7f8b1616e1bf4f9627d51b657018046e Loading...

HTTP Transactions (116)

	URL	IP	Response	Size
	gasursa.com/	199.168.185.134	301 Moved Permanently	147 B
URL User Request GET HTTP/2 gasursa.com/ IP 199.168.185.134:443 ASN #33182 DIMENOC Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type HTML document text\012- HTML document text\012- HTML document, ASCII text Size 147 B (147 bytes) Hash 851eea965221b82bd3e638ee2cd6053d 9c1d792ef3326463ae2eb82d57821681777a2ed3 dbc922967d35295d0c43a53baf5a72726ce7a67137815306b7c4bc07812a51c2 HTTP Headers `GET / HTTP/1.1 Host: gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 301 Moved Permanently content-type: text/html; charset=UTF-8 location: https://www.gasursa.com/ server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:23 GMT content-length: 147 X-Firefox-Spdy: h2`

	www.gasursa.com/	199.168.185.134	200 OK	48 kB
URL User Request GET HTTP/2 www.gasursa.com/ IP 199.168.185.134:443 ASN #33182 DIMENOC Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52401) Size 48 kB (47766 bytes) Hash 69f0f9dca487cdf531659d5c558d2822 e1f9839dc6ca371447e821a0b249ba66094c50d6 b0f29fade510c02da25c2245eee09e17d2fbd999cfd6406bbeb78b9984d76179 HTTP Headers `GET / HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK content-type: text/html; charset=UTF-8 content-encoding: br vary: Accept-Encoding server: Microsoft-IIS/10.0 link: <https://www.gasursa.com/index.php/wp-json/>; rel="https://api.w.org/", <https://www.gasursa.com/index.php/wp-json/wp/v2/pages/30>; rel="alternate"; type="application/json", <https://www.gasursa.com/>; rel=shortlink x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 47766 X-Firefox-Spdy: h2

	gasursa.com/	199.168.185.134	301 Moved Permanently	147 B
URL User Request GET HTTP/2 gasursa.com/ IP 199.168.185.134:443 ASN #33182 DIMENOC Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type HTML document text\012- HTML document text\012- HTML document, ASCII text Size 147 B (147 bytes) Hash 851eea965221b82bd3e638ee2cd6053d 9c1d792ef3326463ae2eb82d57821681777a2ed3 dbc922967d35295d0c43a53baf5a72726ce7a67137815306b7c4bc07812a51c2 HTTP Headers `GET / HTTP/1.1 Host: gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=UTF-8 Location: https://www.gasursa.com/ Server: Microsoft-IIS/10.0 X-Powered-By: ASP.NET X-Powered-By-Plesk: PleskWin Strict-Transport-Security: max-age=15768000; includeSubDomains Date: Wed, 30 Aug 2023 04:04:25 GMT Content-Length: 147`

	www.gasursa.com/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=4.2.1	199.168.185.134	200 OK	15 kB
URL GET HTTP/2 www.gasursa.com/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=4.2.1 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (45039) Size 15 kB (15305 bytes) Hash 7f2cfaab400ebab83a62a631886830d7 4733967030139a60e27757d50ea7c491b287a180 d131f7e4e216e7d68307b83116886b90867789b4e6d51a316566711c939d83b8 HTTP Headers `GET /wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=4.2.1 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:20:19 GMT accept-ranges: bytes etag: "904e8c5aced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 15305 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash f3b5e76a2485d8990cd79df3341412e6 2717c7d1e2ff0cda7606438e15e351a3e388bd47 ebf58ad3b9ac4ed2d047a87b3599990b94318ecfa0ea56502ccbf9c3ff786982 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Aug 2023 04:04:11 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/fonts/crane-font.woff?hhxb42	199.168.185.134	200 OK	1.5 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/fonts/crane-font.woff?hhxb42 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Web Open Font Format, TrueType, length 1516, version 1.0\012- data Size 1.5 kB (1516 bytes) Hash a7d4d795ca26e6a9a371d592b271c015 7006cb8199bfc6b76fca27cc480b456518b8cc4b 6153d00b79b60a4562a0dfdbbc6a46b042fe79e27978983d436ee575b05f3eb3 HTTP Headers GET /wp-content/plugins/groovy-menu-free/assets/fonts/crane-font.woff?hhxb42 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.gasursa.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: font/x-woff last-modified: Fri, 18 Aug 2023 11:39:08 GMT accept-ranges: bytes etag: "25b47a99c8d1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 1516 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/style/font-internal.css?ver=1.4.3	199.168.185.134	200 OK	410 B
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/style/font-internal.css?ver=1.4.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text Size 410 B (410 bytes) Hash 796b389c712793c95ade32356f6d084b 744d141ba46a70f62a1d3c0ea28c83a28fb004c6 fc8a49dcdd74ef560a8ba00e1bfef071a53bc361c4b6bbaecb69930893c5589c HTTP Headers `GET /wp-content/plugins/groovy-menu-free/assets/style/font-internal.css?ver=1.4.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:08 GMT accept-ranges: bytes etag: "9230b499c8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 410 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash b5489fedaa045bef07cc2b5a12e49964 f2d403c637e104fafb4e35016f359d98839ce015 4120d2fcbfc6b08d5fd867b07f64a1ed1958f05e56aa56f129cf25be80766d40 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Aug 2023 04:04:11 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash b5489fedaa045bef07cc2b5a12e49964 f2d403c637e104fafb4e35016f359d98839ce015 4120d2fcbfc6b08d5fd867b07f64a1ed1958f05e56aa56f129cf25be80766d40 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Aug 2023 04:04:11 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.gasursa.com/wp-content/uploads/groovy/fonts/groovy-socicon.css?ver=1.4.3	199.168.185.134	200 OK	3.9 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/groovy/fonts/groovy-socicon.css?ver=1.4.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (15555) Size 3.9 kB (3872 bytes) Hash 620461aa1e212815e2119cceaaa0eb00 ac2489f4dac87b45c368c2a4576cfc0de7129c45 7b9333a0af497e8fb916a4aec7d447c960ce1d228320b611d1b0b4e7899de03f HTTP Headers `GET /wp-content/uploads/groovy/fonts/groovy-socicon.css?ver=1.4.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 11:40:12 GMT accept-ranges: bytes etag: "74096bfc8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 3872 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/css/dist/block-library/style.min.css?ver=6.3	199.168.185.134	200 OK	25 kB
URL GET HTTP/2 www.gasursa.com/wp-includes/css/dist/block-library/style.min.css?ver=6.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (53449) Size 25 kB (25097 bytes) Hash 03c0f2128c8dd615b1691c168f1d4456 defa44bed1f35ec899cfd358ca911390bca53e67 67447c3656caad630373253691f3e8f64467eafd6e7305c9b0e98111b0b41694 HTTP Headers `GET /wp-includes/css/dist/block-library/style.min.css?ver=6.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:23:29 GMT accept-ranges: bytes etag: "647cf2cbced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 25097 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/style/fontawesome.css?ver=1.4.3	199.168.185.134	200 OK	10 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/style/fontawesome.css?ver=1.4.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (372) Size 10 kB (10138 bytes) Hash 2f5b4a40e41049c28174d61b430122c0 033badeb196a9f67855b631e6d72b8ddb7ee250d 50bbbc82c04a033cd8ee9cca4621a2b04558070db72cedf2d0e831e24a415060 HTTP Headers `GET /wp-content/plugins/groovy-menu-free/assets/style/fontawesome.css?ver=1.4.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:08 GMT accept-ranges: bytes etag: "e892b699c8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 10138 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/groovy/fonts/groovy-69018.css?ver=1.4.3	199.168.185.134	200 OK	2.2 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/groovy/fonts/groovy-69018.css?ver=1.4.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (7972) Size 2.2 kB (2211 bytes) Hash a0f5113088aa1c33608fa31fe156d7ca f9a6fd8cc99c630015fc5625ad6116c662fc648e 50f281054f51e964bf6421e043f3b3b61d077719e028f818e32cf11c51fc7a58 HTTP Headers `GET /wp-content/uploads/groovy/fonts/groovy-69018.css?ver=1.4.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 11:40:12 GMT accept-ranges: bytes etag: "a9dd93bfc8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 2211 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/groovy/fonts/groovy-28328.css?ver=1.4.3	199.168.185.134	200 OK	1.6 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/groovy/fonts/groovy-28328.css?ver=1.4.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (4907) Size 1.6 kB (1561 bytes) Hash f6d45bb69611210813b2e771dfe95975 7884fee6370d52da3cf6bcc23a27512d7f03d7c3 366247af307ea140e017b24e2d0814493228bdbd3c53c6dbf2c1fc834b077292 HTTP Headers `GET /wp-content/uploads/groovy/fonts/groovy-28328.css?ver=1.4.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 11:40:12 GMT accept-ranges: bytes etag: "a9dd93bfc8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 1561 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/fonts/fontawesome-webfont.woff2?v=4.7.0	199.168.185.134	200 OK	77 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data Size 77 kB (77160 bytes) Hash af7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe HTTP Headers GET /wp-content/plugins/groovy-menu-free/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.gasursa.com/ DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: font/x-woff2 last-modified: Fri, 18 Aug 2023 11:39:08 GMT accept-ranges: bytes etag: "75167d99c8d1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 77160 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash f3b5e76a2485d8990cd79df3341412e6 2717c7d1e2ff0cda7606438e15e351a3e388bd47 ebf58ad3b9ac4ed2d047a87b3599990b94318ecfa0ea56502ccbf9c3ff786982 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Aug 2023 04:04:11 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/style/frontend.css?ver=1.4.3	199.168.185.134	200 OK	29 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/style/frontend.css?ver=1.4.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type troff or preprocessor input text\012- assembler source, Unicode text, UTF-8 text, with CRLF, LF line terminators Size 29 kB (29446 bytes) Hash af0d687583c751dfa2237c762dc65c22 bb4447e7de534e4dfe3e62142660f2ea27ad890b 134c390233ad1866acdda5ca69a445dfe858abe827d7ea647c72c78df16438d7 HTTP Headers `GET /wp-content/plugins/groovy-menu-free/assets/style/frontend.css?ver=1.4.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:08 GMT accept-ranges: bytes etag: "e892b699c8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 29446 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.21.0	199.168.185.134	200 OK	5.2 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.21.0 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (19442) Size 5.2 kB (5231 bytes) Hash 56435e46abd5f7a20dd5b8590fbdc083 fab2a319dc679ed90d62af44f9e37625a0562958 8631189ca38e73206e52ed06e8f0f3b2e839b9facc236b9519b9fd8d7f8d63e2 HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.21.0 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "4aa76beacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 5231 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6	199.168.185.134	200 OK	3.7 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (12876), with no line terminators Size 3.7 kB (3699 bytes) Hash bcad7781b3e74db2565b8424c45232cd 41b0d94434ef667897c06e1184b703064ffceda1 d622534d53d3ac1095af275f0b30274fcd835785577df2dde6d9398e6f7a2c8f HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "b4567ceacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 3699 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.15.2	199.168.185.134	200 OK	35 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.15.2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (65496) Size 35 kB (34984 bytes) Hash b2bfb6f0ec304dca368c0756fc0c6a47 aedcceafe6a6fa3d96c90fda81e82e99c34baba0 7767eb16c530edecef795f839ccc67c03aed221e4a8cf70969f0231edb24dc57 HTTP Headers `GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.15.2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "e63d35eacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 34984 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/elementor/css/post-38.css?ver=1692361287	199.168.185.134	200 OK	476 B
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/elementor/css/post-38.css?ver=1692361287 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (1212), with no line terminators Size 476 B (476 bytes) Hash 8a1c7d89f30e8394801bf3e71e287509 c36e6f27acc0bcb6551fc5292e2a54e65bbb4ee5 fe20bb2de1435c1f5a38d766555e0a31714b8cd13059d9ced4b7639e726674dd HTTP Headers `GET /wp-content/uploads/elementor/css/post-38.css?ver=1692361287 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:21:27 GMT accept-ranges: bytes etag: "28f9fb82ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 476 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/elementor/css/post-30.css?ver=1692361289	199.168.185.134	200 OK	6.1 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/elementor/css/post-30.css?ver=1692361289 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (29296) Size 6.1 kB (6106 bytes) Hash 0d85531cb414ecf9af82ff11abb21b0c 5fca380f1856ce5f90d1d1b598e73f7979973059 280060ab0e7747598484872889e617f3203a201b771fd157e387ba13c7f2663b HTTP Headers `GET /wp-content/uploads/elementor/css/post-30.css?ver=1692361289 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:21:29 GMT accept-ranges: bytes etag: "2ee2ee83ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 6106 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/pum/pum-site-styles.css?generated=1692361287&ver=1.18.2	199.168.185.134	200 OK	5.5 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/pum/pum-site-styles.css?generated=1692361287&ver=1.18.2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Unicode text, UTF-8 text, with very long lines (7454), with CRLF, LF line terminators Size 5.5 kB (5494 bytes) Hash ab45fcf8ce04bc9bc0eff8838424c84a 441af32a81f72e82b6d8e48bfce8fcc0767a6a78 fe7f77d30092842c7ae3d72ff743cee1cfe786ccbf9883b25894c4490280ee31 HTTP Headers `GET /wp-content/uploads/pum/pum-site-styles.css?generated=1692361287&ver=1.18.2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:21:27 GMT accept-ranges: bytes etag: "2b94ce82ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 5494 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/groovy/preset_405.css?ver=ce497c48e837ec27f12bab51b2b3db9a	199.168.185.134	200 OK	6.0 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/groovy/preset_405.css?ver=ce497c48e837ec27f12bab51b2b3db9a IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (21800) Size 6.0 kB (6003 bytes) Hash bf3e20aa9800bd293c598cb7addad81d 6c7d917957c3eeba7b2d5544e5b297b2f83867df 1616a63838a8bf69fbb0a91b5b3626fd692ee601c18f6b55d9fb05d356e2b964 HTTP Headers `GET /wp-content/uploads/groovy/preset_405.css?ver=ce497c48e837ec27f12bab51b2b3db9a HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 11:40:12 GMT accept-ranges: bytes etag: "74096bfc8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 6003 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3	199.168.185.134	200 OK	383 B
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (489) Size 383 B (383 bytes) Hash 144e43c3b3d8ea5b278c062c202c92f2 3c037057a419245849747b4762d09d88cab66fc1 9cd63b8cea25045c14623c538d26752518a58c0c682795ce6ad3078976c65a37 HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "a396eeacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 383 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3	199.168.185.134	200 OK	382 B
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (483) Size 382 B (382 bytes) Hash 9eb2d3c87feb6bb2ffa63b70532b1477 38f226335a05ab0e30497bc7419eb5e243a9e26c 37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2 HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "f26b70eacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 382 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3	199.168.185.134	200 OK	17 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (57726) Size 17 kB (17074 bytes) Hash eeb705d0bdccfd645d3bbd46dd1fbab3 066def290f42ed8c00860e573cc880bd46e9ced4 d01a2ba2805c78957e15a2958135de0f3cb88e95159dd0f6c0a032bd76b1b0e9 HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "f26b70eacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 17074 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3	199.168.185.134	200 OK	379 B
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (491) Size 379 B (379 bytes) Hash 3eef8c9e589a6fd58292e79bbac4ba5d d3ebdb629b8d9c92380b14b1676b123398f0841b eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4 HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "f26b70eacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 379 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	199.168.185.134	200 OK	4.4 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (12198), with no line terminators Size 4.4 kB (4379 bytes) Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "52537feacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 4379 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider.min.css?ver=4e06d1a7	199.168.185.134	200 OK	6.6 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider.min.css?ver=4e06d1a7 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (22153), with no line terminators Size 6.6 kB (6594 bytes) Hash 9375b03600cb9296ecdcbeab2769a914 1b4e558873a0c01fa534ed2db2460ae652e3e4b9 970a471f91ad8bc60848134b6630c76d5300caa1e88e6ebed454174022dec0af HTTP Headers GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider.min.css?ver=4e06d1a7 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:18:30 GMT accept-ranges: bytes etag: "49b85e19ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 6594 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0	199.168.185.134	200 OK	43 kB
URL GET HTTP/2 www.gasursa.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (65447) Size 43 kB (43070 bytes) Hash ff04dd1ef5c67998d8652330c0441689 5e6ff5bd5240181a8bdea983837f39ac231dac4d 5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164 HTTP Headers `GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:23:35 GMT accept-ranges: bytes etag: "12391dcfced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 43070 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.15.2	199.168.185.134	200 OK	18 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.15.2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (40706) Size 18 kB (18149 bytes) Hash 6b62b8eae228a44aa1f48ea73fde62fe b46989a3a139de7f4b92bd5173978220962fd242 202aa6d8ac6559305e6d1b273941796e5fab95dc0a08f9a9f0e4955afa0b4668 HTTP Headers `GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.15.2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "819458eacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 18149 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	199.168.185.134	200 OK	6.3 kB
URL GET HTTP/2 www.gasursa.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (13479) Size 6.3 kB (6342 bytes) Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 HTTP Headers `GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:23:35 GMT accept-ranges: bytes etag: "12391dcfced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 6342 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/pro-elements/assets/js/frontend.min.js?ver=3.12.3	199.168.185.134	200 OK	9.8 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/pro-elements/assets/js/frontend.min.js?ver=3.12.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (24336) Size 9.8 kB (9773 bytes) Hash b7c2a6d708d4a9e2134bd8c6fcc34d6e 6ed6e1f7b0ca62a148830e381b0907e1708750df 6ca5d9ebe2de7bb535448186edede72112096014ba59288a6e14244d970a875b HTTP Headers `GET /wp-content/plugins/pro-elements/assets/js/frontend.min.js?ver=3.12.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:17 GMT accept-ranges: bytes etag: "21aeaf9ec8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 9773 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Widget/Arrow/ArrowImage/Assets/dist/w-arrow-image.min.js?ver=4e06d1a7	199.168.185.134	200 OK	767 B
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Widget/Arrow/ArrowImage/Assets/dist/w-arrow-image.min.js?ver=4e06d1a7 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (1454), with no line terminators Size 767 B (767 bytes) Hash 647f065d638871b33bf136efc47fc5a1 86fa06add7f89317faf15dc5ae607346928d3487 11f4b1c5b48fa0100ba180a2e7ffc3296a59ecd4b210351bb452130979c8582c HTTP Headers GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Widget/Arrow/ArrowImage/Assets/dist/w-arrow-image.min.js?ver=4e06d1a7 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:18:30 GMT accept-ranges: bytes etag: "5f66d19ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 767 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/n2.min.js?ver=4e06d1a7	199.168.185.134	200 OK	17 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/n2.min.js?ver=4e06d1a7 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (41427), with no line terminators Size 17 kB (17398 bytes) Hash fc9acc7262f05ad8c04374a2c52f13d7 e155fb507837bc9dbb4e07f320a0ece22d80afae ec4eb1d43feb1ff5d46ff8fceb2ff6a7447a604bdbbe0e2c0e3fce9545954736 HTTP Headers `GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/n2.min.js?ver=4e06d1a7 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:18:30 GMT accept-ranges: bytes etag: "49b85e19ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 17398 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/2020/04/Logo-Gas.png	199.168.185.134	200 OK	124 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/2020/04/Logo-Gas.png IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type PNG image data, 1080 x 442, 8-bit/color RGB, non-interlaced\012- data Size 124 kB (123450 bytes) Hash bfc98aadd15bfd25dabb16416047bb1f 874c8a343a8e444e36c712c1a5fab48f42b9e8cd 61e55ef0ca6bbb52d5613e743924a348357fa17400fa071935b3296b70f2a023 HTTP Headers `GET /wp-content/uploads/2020/04/Logo-Gas.png HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: image/png last-modified: Wed, 10 Aug 2022 03:24:20 GMT accept-ranges: bytes etag: "a2fdddad68acd81:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 123450 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/pro-elements/assets/js/elements-handlers.min.js?ver=3.12.3	199.168.185.134	200 OK	10 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/pro-elements/assets/js/elements-handlers.min.js?ver=3.12.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (29591) Size 10 kB (10448 bytes) Hash e1a9f3f6f3d50f6862c9ca4859ff7a2c 889c60e605f874cbaf68806fed490d8c61c6aad9 18066084d53c15e38e01fe47b561363db07692f3501b74892a9c3ae9bba41e5b HTTP Headers `GET /wp-content/plugins/pro-elements/assets/js/elements-handlers.min.js?ver=3.12.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:17 GMT accept-ranges: bytes etag: "21aeaf9ec8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 10448 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/smartslider-backgroundanimation.min.js?ver=4e06d1a7	199.168.185.134	200 OK	9.9 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/smartslider-backgroundanimation.min.js?ver=4e06d1a7 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (28183), with no line terminators Size 9.9 kB (9891 bytes) Hash 694d7b631d78944649bd11bbd101f834 79564affd81ab2060d71b905cb2407872b0b98fb e6ea32a3504e33e59d42400f4c26b0b17975963af62f5751073a39e68f9e03a5 HTTP Headers GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/smartslider-backgroundanimation.min.js?ver=4e06d1a7 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:18:30 GMT accept-ranges: bytes etag: "5f66d19ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 9891 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.2.1	199.168.185.134	200 OK	7.7 kB
URL GET HTTP/2 www.gasursa.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.2.1 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (20609), with no line terminators Size 7.7 kB (7717 bytes) Hash ad0be243529fc0bea50cf5f07d9333d4 1775ec8106d53939d727faeb3541ae223464cc7c 694da45e033114445455ea32bc0448bd950165a0eda0f92e16b9ed32bf5eb493 HTTP Headers `GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.2.1 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:20:19 GMT accept-ranges: bytes etag: "8b18e5aced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 7717 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.15.2	199.168.185.134	200 OK	4.1 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.15.2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (10019) Size 4.1 kB (4132 bytes) Hash 4601ba55044413706c2022cb6c1c3d05 5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c HTTP Headers `GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.15.2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "ef4469eacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 4132 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/ss-simple.min.js?ver=4e06d1a7	199.168.185.134	200 OK	4.7 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/ss-simple.min.js?ver=4e06d1a7 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (13426), with no line terminators Size 4.7 kB (4701 bytes) Hash d35213be85ddf2b10048dbbcc31074fa 57a80c7d21f39e3507c8214f5744f5637bb2074e ca6ef142765010507ac8c344ee29295e28bf2b93a06c536f14fdd91deff6a697 HTTP Headers GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/ss-simple.min.js?ver=4e06d1a7 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:18:30 GMT accept-ranges: bytes etag: "5f66d19ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 4701 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/js/wp-util.min.js?ver=6.3	199.168.185.134	200 OK	879 B
URL GET HTTP/2 www.gasursa.com/wp-includes/js/wp-util.min.js?ver=6.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (1391) Size 879 B (879 bytes) Hash 19d386c9004e54941c1cc61d357efa5d 0a77594006c8d86fdcc0adbc2b9aecaef3869586 3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95 HTTP Headers `GET /wp-includes/js/wp-util.min.js?ver=6.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:40:20 GMT accept-ranges: bytes etag: "b6cb7dc4c8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 879 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/js/underscore.min.js?ver=1.13.4	199.168.185.134	200 OK	9.6 kB
URL GET HTTP/2 www.gasursa.com/wp-includes/js/underscore.min.js?ver=1.13.4 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (18798) Size 9.6 kB (9576 bytes) Hash f88d5720bb454ed5d204cbdb56901f6b f1952292fde4b15936e9aac16b2b9896684db95b 726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a HTTP Headers `GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:40:20 GMT accept-ranges: bytes etag: "9a7d6fc4c8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 9576 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.15.2	199.168.185.134	200 OK	2.6 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.15.2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (4918) Size 2.6 kB (2647 bytes) Hash 88970708a7ed5eb95e635f3eae026b51 0a7bff09257e9c7e072c59d3dd5cd6b7af6e6e6b 1a11d4c8a6d406d2b3d222fea59f8ec58c8846662393bcb2ac17760c9545270e HTTP Headers `GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.15.2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "91e266eacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 2647 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/pro-elements/assets/js/webpack-pro.runtime.min.js?ver=3.12.3	199.168.185.134	200 OK	3.0 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/pro-elements/assets/js/webpack-pro.runtime.min.js?ver=3.12.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (5441) Size 3.0 kB (2988 bytes) Hash a093f973bc030124349cb5e777b907b5 00368c59c183cab5187dcdf74c858379b0ced1b6 ed7a16b3bc483bd904000289a27853c44f2a2583fcd4001cbac82b571ce1ac14 HTTP Headers `GET /wp-content/plugins/pro-elements/assets/js/webpack-pro.runtime.min.js?ver=3.12.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:18 GMT accept-ranges: bytes etag: "d0fd6a9fc8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 2988 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider-frontend.min.js?ver=4e06d1a7	199.168.185.134	200 OK	43 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider-frontend.min.js?ver=4e06d1a7 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 43 kB (43307 bytes) Hash 2439cc89aea321b924e8673f276438ce fdfe1ab8c7feb3f24cb97059f94f2b8e98c2dd8f 866ce0557c25a351783f1f5287f6cee1332efafe406194195fb9c98234b8e162 HTTP Headers GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider-frontend.min.js?ver=4e06d1a7 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:18:30 GMT accept-ranges: bytes etag: "49b85e19ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 43307 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/pro-elements/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	199.168.185.134	200 OK	11 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/pro-elements/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (25115) Size 11 kB (11049 bytes) Hash 046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020 HTTP Headers `GET /wp-content/plugins/pro-elements/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:18 GMT accept-ranges: bytes etag: "d724729fc8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 11049 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	199.168.185.134	200 OK	9.7 kB
URL GET HTTP/2 www.gasursa.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Unicode text, UTF-8 text, with very long lines (8189) Size 9.7 kB (9675 bytes) Hash c4e68a0f3463c0bd3c39eab38815e881 0ce58644e9f3c5063a11453ff287c5ec096465a7 ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f HTTP Headers `GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:40:18 GMT accept-ranges: bytes etag: "b96546c3c8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 9675 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/pum/pum-site-scripts.js?defer&generated=1692361287&ver=1.18.2	199.168.185.134	200 OK	29 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/pum/pum-site-scripts.js?defer&generated=1692361287&ver=1.18.2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Unicode text, UTF-8 text, with very long lines (65398) Size 29 kB (28654 bytes) Hash 068739c5d6ec23963115f064d990f3e4 199527450801b2c7b4d7768acda071f7a33c3f0f dcc8c0dac397fd483e1fa5d001e77bb945833ee33cf259f9dd98e1c435e2c305 HTTP Headers `GET /wp-content/uploads/pum/pum-site-scripts.js?defer&generated=1692361287&ver=1.18.2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:21:27 GMT accept-ranges: bytes etag: "911dd882ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 28654 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.15.2	199.168.185.134	200 OK	24 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.15.2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Unicode text, UTF-8 text, with very long lines (56113) Size 24 kB (24438 bytes) Hash 96fa09ece494f9165c303627c46eb4aa cb37caf43791b355032a6a0a0e9581efe8c30881 2055757e207fbd1dd32c01ab72c914fa88ae5f9f5595131207ca1e4769b8ba3b HTTP Headers `GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.15.2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "819458eacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 24438 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11	199.168.185.134	200 OK	3.1 kB
URL GET HTTP/2 www.gasursa.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (6607), with no line terminators Size 3.1 kB (3092 bytes) Hash 9a4f28a615173df36cb84be2b345816e f709263841708d9e40268f24a0072ff4fe811b35 6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6 HTTP Headers `GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:40:17 GMT accept-ranges: bytes etag: "4e9ccc2c8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 3092 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef	199.168.185.134	200 OK	4.6 kB
URL GET HTTP/2 www.gasursa.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type data Size 4.6 kB (4633 bytes) Hash c2c4e2a562e06e1cb22293a5b920aca6 a7b5a369ac4883f1ee7fa701b238d20238b675ca 698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f HTTP Headers `GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:23:34 GMT accept-ranges: bytes etag: "b9d3c3ceced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 4633 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2	199.168.185.134	200 OK	3.3 kB
URL GET HTTP/2 www.gasursa.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (8171), with no line terminators Size 3.3 kB (3315 bytes) Hash dda652db133fddb9b80a05c6d1b5c540 60c8514c57a5db2980c4b046b0dd479bd427357b c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4 HTTP Headers `GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:40:17 GMT accept-ranges: bytes etag: "7df5dbc2c8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 3315 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.8.3.1	199.168.185.134	200 OK	463 B
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.8.3.1 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (771), with no line terminators Size 463 B (463 bytes) Hash 2399ef783701f73c399589ae95298b0f 3e1f2a7ac9dcb2b50b1f1cf768441e46fd9f62ee 2dea57483641f8762937dfd9b09126a9b21c88bd3d7486186003e0bbb9043145 HTTP Headers `GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.8.3.1 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:19:39 GMT accept-ranges: bytes etag: "528e142ced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 463 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0	199.168.185.134	200 OK	7.8 kB
URL GET HTTP/2 www.gasursa.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Unicode text, UTF-8 text, with very long lines (16142), with no line terminators Size 7.8 kB (7758 bytes) Hash 94dfdbe80f36b3be63ce74ff1135b996 5e05077d99e736af42b2da70e428e7f7df556dd4 4c0ced2cb3830d045cdd74f745fd4d6dcb082d8edd3a9fe46e39295e30cb8032 HTTP Headers `GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:23:35 GMT accept-ranges: bytes etag: "c0d61acfced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 7758 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1	199.168.185.134	200 OK	2.0 kB
URL GET HTTP/2 www.gasursa.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (4592) Size 2.0 kB (1955 bytes) Hash 7bd48eb3bd568033e96caf0fb62e6690 b38066999294b99d92d95db5f38bc15707eb1f22 7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596 HTTP Headers `GET /wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:23:34 GMT accept-ranges: bytes etag: "7171c1ceced1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT content-length: 1955 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash a874e7aca5e7262bca0ff6966ce091d4 fa7e9f81e3c36ef6aec21dc611499c2ed6e8f60c 80d1a5734ce97908c944906f9cd57a9a124f51ab340cfe3e3c4afbd9b83af3d7 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Aug 2023 04:04:12 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 192472e74e2003bcc455cb1c2a50f2e2 133e70ed5882e7756dd5ffb18e6daa13cf12077a 943d73140cadab7a40c9599b1d646756c7dd758b31aae8c53c21ee9120e74d2f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Aug 2023 04:04:12 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 192472e74e2003bcc455cb1c2a50f2e2 133e70ed5882e7756dd5ffb18e6daa13cf12077a 943d73140cadab7a40c9599b1d646756c7dd758b31aae8c53c21ee9120e74d2f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 30 Aug 2023 04:04:12 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2	216.58.207.227	200 OK	31 kB
URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.gasursa.com/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72 ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Size 31 kB (30928 bytes) Hash ac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780 HTTP Headers GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 30928 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Aug 2023 15:21:56 GMT expires: Fri, 23 Aug 2024 15:21:56 GMT cache-control: public, max-age=31536000 age: 477736 last-modified: Mon, 11 Jul 2022 18:57:39 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2	216.58.207.227	200 OK	31 kB
URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.gasursa.com/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72 ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Size 31 kB (30928 bytes) Hash ac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780 HTTP Headers GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 30928 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Aug 2023 15:21:56 GMT expires: Fri, 23 Aug 2024 15:21:56 GMT cache-control: public, max-age=31536000 age: 477736 last-modified: Mon, 11 Jul 2022 18:57:39 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.gasursa.com/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72 ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size 16 kB (15744 bytes) Hash 15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 HTTP Headers GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Aug 2023 04:50:55 GMT expires: Fri, 23 Aug 2024 04:50:55 GMT cache-control: public, max-age=31536000 age: 515597 last-modified: Wed, 11 May 2022 19:24:48 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.gasursa.com/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72 ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data Size 16 kB (15740 bytes) Hash b9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef HTTP Headers GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15740 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 26 Aug 2023 11:13:54 GMT expires: Sun, 25 Aug 2024 11:13:54 GMT cache-control: public, max-age=31536000 age: 319818 last-modified: Wed, 11 May 2022 19:24:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.gasursa.com/wp-content/uploads/2021/05/industry-factory-industrial-plant-3257261.jpg	199.168.185.134	200 OK	81 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/2021/05/industry-factory-industrial-plant-3257261.jpg IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x853, components 3\012- data Size 81 kB (80565 bytes) Hash ece3e9cf1319db3db09e4def54a5d76e 5a797dc05269e2d4a6f804235433e46258ea9af5 bb456188293220257130bb9110a55b25af6315c1af76dd2af96529a4997499e1 HTTP Headers GET /wp-content/uploads/2021/05/industry-factory-industrial-plant-3257261.jpg HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/wp-content/uploads/elementor/css/post-30.css?ver=1692361289 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: image/jpeg last-modified: Fri, 18 Aug 2023 11:39:59 GMT accept-ranges: bytes etag: "bb4ed1b7c8d1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 80565 X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2	216.58.207.227	200 OK	16 kB
URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.gasursa.com/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72 ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size 16 kB (15860 bytes) Hash e9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 HTTP Headers GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 25 Aug 2023 10:05:24 GMT expires: Sat, 24 Aug 2024 10:05:24 GMT cache-control: public, max-age=31536000 age: 410328 last-modified: Wed, 11 May 2022 19:24:42 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.3	142.250.74.106	200 OK	78 kB
URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.3 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://www.gasursa.com/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint94:C0:54:E4:BA:6C:E0:93:C6:8F:D9:27:1C:74:6F:E8:CE:6E:E2:BA ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT File type gzip compressed data, max compression\012- data Size 78 kB (78331 bytes) Hash b26c6a6bf00903e7a6a51fd94d9e73b7 fa20e32dbea0fb221e56b5d452826cd9a27937db b239913559dc710dd9186080ff3e7cfa137d9192f66a2b094594eadcd7708f71 HTTP Headers GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.3 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 30 Aug 2023 04:04:11 GMT date: Wed, 30 Aug 2023 04:04:11 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2	199.168.185.134	200 OK	78 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data Size 78 kB (78196 bytes) Hash e8a427e15cc502bef99cfd722b37ea98 a9922842a120a7f1eaced667480c5e185a106d69 d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef HTTP Headers GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK content-type: font/x-woff2 last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "4ff479eacdd1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 78196 X-Firefox-Spdy: h2`

	fonts.googleapis.com/css?display=swap&family=Roboto%3A300%2C400	142.250.74.106	200 OK	14 kB
URL GET HTTP/2 fonts.googleapis.com/css?display=swap&family=Roboto%3A300%2C400 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://www.gasursa.com/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint94:C0:54:E4:BA:6C:E0:93:C6:8F:D9:27:1C:74:6F:E8:CE:6E:E2:BA ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT File type gzip compressed data, max compression\012- data Size 14 kB (13920 bytes) Hash 020821d34aff79791e145d08923f29d9 a878b93f5790b0db9bf0617da452e8d424c91e4b 81c83ff4300caf5cda686d89d490e0a0c84cdfcbf96396946ec6636c50c4bcb7 HTTP Headers `GET /css?display=swap&family=Roboto%3A300%2C400 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 30 Aug 2023 04:04:11 GMT date: Wed, 30 Aug 2023 04:04:11 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	embed.tawk.to/62f302fe37898912e962279a/1ga2k7cdd	172.67.38.66	200 OK	1.1 kB
URL GET HTTP/2 embed.tawk.to/62f302fe37898912e962279a/1ga2k7cdd IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text Size 1.1 kB (1125 bytes) Hash a1e72ff15874a4b973a8aecb180a0227 fdfd0e026eebd019f6e53602853a1e7ccad1a16d ad8c4c310ce727856894444437502768acc4d2080c2e591122750b43eef4b0b2 HTTP Headers `GET /62f302fe37898912e962279a/1ga2k7cdd HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Wed, 30 Aug 2023 04:04:12 GMT content-type: application/x-javascript access-control-allow-origin: * cache-control: public, max-age=7200, s-maxage=3600 etag: W/"stable-v4-64e818b1586" vary: Accept-Encoding strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: MISS x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25f82c4d0b31-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/2020/04/icono-png-azul.png	199.168.185.134	200 OK	1.5 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/2020/04/icono-png-azul.png IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type PNG image data, 37 x 37, 8-bit colormap, non-interlaced\012- data Size 1.5 kB (1509 bytes) Hash 3e5208e5a82a4ce2108b31b0dbd21c1d 48e0dab7e0ebfa3b637981c9a8b5987fe49923ba 9c24b919890e9455b2e88f2cbb0d424eafd5bfa424f81fc67f72d2c61aba38d5 HTTP Headers `GET /wp-content/uploads/2020/04/icono-png-azul.png HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: image/png last-modified: Thu, 09 Sep 2021 16:25:03 GMT accept-ranges: bytes etag: "f417d3e97a5d71:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 1509 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/2020/04/icono-png-azul.png	199.168.185.134	200 OK	1.5 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/2020/04/icono-png-azul.png IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type PNG image data, 37 x 37, 8-bit colormap, non-interlaced\012- data Size 1.5 kB (1509 bytes) Hash 3e5208e5a82a4ce2108b31b0dbd21c1d 48e0dab7e0ebfa3b637981c9a8b5987fe49923ba 9c24b919890e9455b2e88f2cbb0d424eafd5bfa424f81fc67f72d2c61aba38d5 HTTP Headers `GET /wp-content/uploads/2020/04/icono-png-azul.png HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: image/png last-modified: Thu, 09 Sep 2021 16:25:03 GMT accept-ranges: bytes etag: "f417d3e97a5d71:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 1509 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/pro-elements/assets/js/search-form.0ef02f9fd5e7db2ea91b.bundle.min.js	199.168.185.134	200 OK	905 B
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/pro-elements/assets/js/search-form.0ef02f9fd5e7db2ea91b.bundle.min.js IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (2003) Size 905 B (905 bytes) Hash 44721de9f164647ae87f1b3b283b8bf0 ecc7002b50ceac5d867fdc0ef7dda13205a51fba bb7ae39be9e8b1406223adb4f11ac40ba9f1f7132755cfc0f84e54345743e694 HTTP Headers `GET /wp-content/plugins/pro-elements/assets/js/search-form.0ef02f9fd5e7db2ea91b.bundle.min.js HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:18 GMT accept-ranges: bytes etag: "6e9b689fc8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 905 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/pro-elements/assets/js/nav-menu.bb5cce0a50480cdf695d.bundle.min.js	199.168.185.134	200 OK	1.7 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/pro-elements/assets/js/nav-menu.bb5cce0a50480cdf695d.bundle.min.js IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (4001) Size 1.7 kB (1709 bytes) Hash 3d203121d2bb5904bee2158188c69292 f382149eab0b8736a9ab6a65c6e967dff760af4a f67744a5ba02134898a34e36af470ff7ceb0b18c1958f6eceaf1dae875ce1c82 HTTP Headers `GET /wp-content/plugins/pro-elements/assets/js/nav-menu.bb5cce0a50480cdf695d.bundle.min.js HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:17 GMT accept-ranges: bytes etag: "37d5b69ec8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 1709 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	199.168.185.134	200 OK	776 B
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type ASCII text, with very long lines (1320) Size 776 B (776 bytes) Hash 21b327043b7f4c865205709f87a8c3c1 acf601f259774c8af686c691ce223e9f4e0eda6f ab3befdd3eec3313f82916c4d24f2c0e6cf2255b23c648f4528bbc1de1bb8efc HTTP Headers `GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "368064eacdd1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 776 X-Firefox-Spdy: h2`

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-runtime.js	172.67.38.66	200 OK	50 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-runtime.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (2306), with no line terminators Size 50 kB (49903 bytes) Hash 4e794db1be9d7d1aea47c386595eb307 2ed7e834f76442afbc1b02e9813d39ccd6beb208 e3db4d06c2e4f56b352e381ccedb900d855f8f57f0a0d587dba9644d6e861d22 HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-runtime.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:12 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"4e794db1be9d7d1aea47c386595eb307" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: MISS vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25fa9ea9b52d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.gasursa.com/wp-content/uploads/2021/06/oficina_checklist.jpg	199.168.185.134	200 OK	107 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/2021/06/oficina_checklist.jpg IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 1398x789, components 3\012- data Size 107 kB (106854 bytes) Hash 937f1f9ba21a576f089677c3f5b28354 1a3c9713488fd0b76bb50fcdc2539102e0b2f1de d8553a4f9389c6cb1f02f5365f6a1a02eb800a81f5ab88e1795bfde7c8c0edd2 HTTP Headers `GET /wp-content/uploads/2021/06/oficina_checklist.jpg HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: image/jpeg last-modified: Fri, 18 Aug 2023 11:40:01 GMT accept-ranges: bytes etag: "1a971eb9c8d1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 106854 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/2022/08/gas-gas-pipeline-gas-industry-7308559.jpg	199.168.185.134	200 OK	54 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/2022/08/gas-gas-pipeline-gas-industry-7308559.jpg IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x853, components 3\012- data Size 54 kB (54440 bytes) Hash fd01498d3a0903f891f6ccc0534615df a5161e0093cbed86e97464b59fc9088ee691af1a 3276fcc1275b0e1c886e9a4098ab8ff592b66d36bfc48fd9f0cb0987db68052f HTTP Headers `GET /wp-content/uploads/2022/08/gas-gas-pipeline-gas-industry-7308559.jpg HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: image/jpeg last-modified: Fri, 18 Aug 2023 11:40:11 GMT accept-ranges: bytes etag: "5140eabec8d1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 54440 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/2021/05/periodica-MOD.jpg	199.168.185.134	200 OK	123 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/2021/05/periodica-MOD.jpg IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6], baseline, precision 8, 1466x831, components 3\012- data Size 123 kB (123013 bytes) Hash b22d27b7649821ed3281209d3dd57e53 78ac601fb7e087aa20216422ba62261b8e96b871 9a2b4b33ae27cb643994d659c77e05530687c1394fc676e293eeb2039991828c HTTP Headers `GET /wp-content/uploads/2021/05/periodica-MOD.jpg HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: image/jpeg last-modified: Fri, 18 Aug 2023 11:39:59 GMT accept-ranges: bytes etag: "6fb38b8c8d1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 123013 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/uploads/2021/05/4791610-128.png	199.168.185.134	200 OK	4.5 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/2021/05/4791610-128.png IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data Size 4.5 kB (4520 bytes) Hash f865c95776dca7b7e8cc9ca915db8c86 83a52936fb5bd113db0886b67687ce092d072d9d 317caceaca34ba48391c507abffbae779120b960f97f7607cbdc2fc3bb8b07eb HTTP Headers `GET /wp-content/uploads/2021/05/4791610-128.png HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: image/png last-modified: Fri, 18 Aug 2023 11:39:58 GMT accept-ranges: bytes etag: "e3dcb1b7c8d1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 4520 X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Xw5aXo.woff2	216.58.207.227	200 OK	12 kB
URL GET HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Xw5aXo.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://www.gasursa.com/ Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com Fingerprint1B:14:11:9F:49:14:C3:A3:7C:87:B0:E1:5B:18:75:10:3D:2A:B3:72 ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT File type Web Open Font Format (Version 2), TrueType, length 11624, version 1.0\012- data Size 12 kB (11624 bytes) Hash a99537333644b3005a7072ba4e848f7f f23c996b9bb480b4cf8b5ed6943134559c3e96e1 aec18d7924d58cd7ad9f3e0437c1b1b9bbc2ef7479e379b9666015c38aac6967 HTTP Headers GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Xw5aXo.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 11624 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 25 Aug 2023 10:34:09 GMT expires: Sat, 24 Aug 2024 10:34:09 GMT cache-control: public, max-age=31536000 age: 408604 last-modified: Mon, 11 Jul 2022 18:58:31 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-vendors.js	172.67.38.66	200 OK	149 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-vendors.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type Unicode text, UTF-8 text, with very long lines (65464) Size 149 kB (149402 bytes) Hash e2fe1938f286b7f4fdeb501d7d2626de 329e2df64bd29c2e7e092afcdd6da9fa0969b4d1 016cb72d0dc68518f976ba461c6438d508e060dd61f6c7e636542d9e4b1de55c HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-chunk-vendors.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:13 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"e2fe1938f286b7f4fdeb501d7d2626de" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: MISS vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25fa9ea5b52d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.gasursa.com/index.php/wp-json/pum/v1/analytics/?event=open&pid=1557&_cache=1693368243738	199.168.185.134	204 No Content	0 B
URL GET HTTP/2 www.gasursa.com/index.php/wp-json/pum/v1/analytics/?event=open&pid=1557&_cache=1693368243738 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /index.php/wp-json/pum/v1/analytics/?event=open&pid=1557&_cache=1693368243738 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Cookie: TawkConnectionTime=1693368243666; twk_idm_key=5v7OJw8Td9_Nh80PDtBsk Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 204 No Content content-type: image/gif server: Microsoft-IIS/10.0 x-robots-tag: noindex link: <https://www.gasursa.com/index.php/wp-json/>; rel="https://api.w.org/" x-content-type-options: nosniff access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:30 GMT X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64e818b1586/css/min-widget.css	172.67.38.66	200 OK	46 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/css/min-widget.css IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (24751), with no line terminators Size 46 kB (46191 bytes) Hash d4f9ad34fae3ba64cbc48057dc47e968 f8d0d55dc6e9b5d53f74b0b8bfc5e2edbdb0618d 2b5b9f68ace12b789b1371204754547021dcbf3e9df630e7e22b49ee56e05b8c HTTP Headers `GET /_s/v4/app/64e818b1586/css/min-widget.css HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: text/css cache-control: public, max-age=2592000, immutable cf-bgj: minify cf-polished: origSize=24831 access-control-allow-origin: * etag: W/"5742a34aaab2a5983c7c11cdeef1c0ee" last-modified: Fri, 25 Aug 2023 02:59:18 GMT strict-transport-security: max-age=0; includeSubDomains; preload x-cache-status: MISS cf-cache-status: HIT age: 168486 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260b6d7ab4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2c78ba82.js	172.67.38.66	200 OK	51 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2c78ba82.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (7793), with no line terminators Size 51 kB (51304 bytes) Hash 940b50b62d332ac06770a9c45b1e60b0 ab88f8dba937de5d828c7356d7d5ef1ae407945e cda3a940b53dd58a8fd2b219dada689959db76a483ed394cc2843f60559866c3 HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-chunk-2c78ba82.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"940b50b62d332ac06770a9c45b1e60b0" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 435343 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260aed23b4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	vsb77.tawk.to/s/?k=64eebfbfa3c8d40bf95fe4cd&cver=0&pop=false&asver=2&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEiLCJ2aWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEtdEtaZkdrT2pfUlUyWjRKck93Y1hzIiwic2lkIjoiNjRlZWJmYmZhM2M4ZDQwYmY5NWZlNGNkIiwiaWF0IjoxNjkzMzY4MjU1LCJleHAiOjE2OTMzNzAwNTUsImp0aSI6IlpIdUFWNzBSSjN2OEkzaExlZm5RTSJ9.GkLxtLAXLTVqG63-wgqmrzISTyAROdfUhpUYCApMa-2P5Bh9u8PQ8IwT-djiv997HpPqycUV-IjCTlImBQWSxg&EIO=3&transport=websocket&__t=Of4dDg0	104.22.25.131		0 B
URL vsb77.tawk.to/s/?k=64eebfbfa3c8d40bf95fe4cd&cver=0&pop=false&asver=2&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEiLCJ2aWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEtdEtaZkdrT2pfUlUyWjRKck93Y1hzIiwic2lkIjoiNjRlZWJmYmZhM2M4ZDQwYmY5NWZlNGNkIiwiaWF0IjoxNjkzMzY4MjU1LCJleHAiOjE2OTMzNzAwNTUsImp0aSI6IlpIdUFWNzBSSjN2OEkzaExlZm5RTSJ9.GkLxtLAXLTVqG63-wgqmrzISTyAROdfUhpUYCApMa-2P5Bh9u8PQ8IwT-djiv997HpPqycUV-IjCTlImBQWSxg&EIO=3&transport=websocket&__t=Of4dDg0 IP 104.22.25.131:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /s/?k=64eebfbfa3c8d40bf95fe4cd&cver=0&pop=false&asver=2&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEiLCJ2aWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEtdEtaZkdrT2pfUlUyWjRKck93Y1hzIiwic2lkIjoiNjRlZWJmYmZhM2M4ZDQwYmY5NWZlNGNkIiwiaWF0IjoxNjkzMzY4MjU1LCJleHAiOjE2OTMzNzAwNTUsImp0aSI6IlpIdUFWNzBSSjN2OEkzaExlZm5RTSJ9.GkLxtLAXLTVqG63-wgqmrzISTyAROdfUhpUYCApMa-2P5Bh9u8PQ8IwT-djiv997HpPqycUV-IjCTlImBQWSxg&EIO=3&transport=websocket&__t=Of4dDg0 HTTP/1.1 Host: vsb77.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://www.gasursa.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: jTFQjBUIrEev2GjyQsGnXg== DNT: 1 Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Date: Wed, 30 Aug 2023 04:04:15 GMT Connection: upgrade upgrade: websocket sec-websocket-accept: tLRbJsIwbm3DWMPgn/L+V/zsBW0= sec-websocket-extensions: permessage-deflate strict-transport-security: max-age=0; includeSubDomains; preload CF-Cache-Status: DYNAMIC X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 7fea260b8fb5b51b-OSL alt-svc: h3=":443"; ma=86400`

	www.gasursa.com/	199.168.185.134	200 OK	48 kB
URL User Request GET HTTP/2 www.gasursa.com/ IP 199.168.185.134:443 ASN #33182 DIMENOC Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52401) Size 48 kB (47766 bytes) Hash 69f0f9dca487cdf531659d5c558d2822 e1f9839dc6ca371447e821a0b249ba66094c50d6 b0f29fade510c02da25c2245eee09e17d2fbd999cfd6406bbeb78b9984d76179 HTTP Headers `GET / HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/html; charset=UTF-8 content-encoding: br vary: Accept-Encoding server: Microsoft-IIS/10.0 link: <https://www.gasursa.com/index.php/wp-json/>; rel="https://api.w.org/", <https://www.gasursa.com/index.php/wp-json/wp/v2/pages/30>; rel="alternate"; type="application/json", <https://www.gasursa.com/>; rel=shortlink x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:30 GMT content-length: 47766 X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64e818b1586/css/message-preview.css	172.67.38.66	200 OK	38 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/css/message-preview.css IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (38227), with no line terminators Size 38 kB (38227 bytes) Hash e19649315a1ba9a5b420e751ee053b6e 5c6f3f3034efb83d3fd20f1aeb2b04a22b826512 98f3004edce9989eb1410055c57772a2be9c7810ab5811261fff0487cd4645b4 HTTP Headers `GET /_s/v4/app/64e818b1586/css/message-preview.css HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: text/css cache-control: public, max-age=2592000, immutable cf-bgj: minify cf-polished: origSize=38360 access-control-allow-origin: * etag: W/"03fb642386334234f457befc22111bea" last-modified: Fri, 25 Aug 2023 02:59:18 GMT strict-transport-security: max-age=0; includeSubDomains; preload x-cache-status: HIT cf-cache-status: HIT age: 435343 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260b7d8ab4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	va.tawk.to/log-performance/v3	172.67.38.66	200 OK	0 B
URL OPTIONS HTTP/3 va.tawk.to/log-performance/v3 IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /log-performance/v3 HTTP/1.1 Host: va.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.gasursa.com/ Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:16 GMT x-served-by: visitor-application-preemptive-rq3g access-control-allow-origin: https://www.gasursa.com access-control-allow-credentials: true access-control-allow-methods: POST,OPTIONS access-control-allow-headers: content-type,x-tawk-token strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: DYNAMIC x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260f68e8b4f9-OSL alt-svc: h3=":443"; ma=86400`

	fonts.googleapis.com/css?family=Montserrat%3A400%2C%2C500&display=fallback&ver=4.2.1	142.250.74.106	200 OK	3.7 kB
URL GET HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A400%2C%2C500&display=fallback&ver=4.2.1 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://www.gasursa.com/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint94:C0:54:E4:BA:6C:E0:93:C6:8F:D9:27:1C:74:6F:E8:CE:6E:E2:BA ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT File type ASCII text, with very long lines (3790), with no line terminators Size 3.7 kB (3700 bytes) Hash 301dbc453cd82239ee928d42a3dd179a 88610184e80853bbff5ba57b0ce2ab563c657606 fbb64f4030836520c846145c6a164a67021a3c8651acc30642ad6131a774b46b HTTP Headers `GET /css?family=Montserrat%3A400%2C%2C500&display=fallback&ver=4.2.1 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 30 Aug 2023 04:04:11 GMT date: Wed, 30 Aug 2023 04:04:11 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-696bc286.js	172.67.38.66	200 OK	18 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-696bc286.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (17930), with no line terminators Size 18 kB (17930 bytes) Hash 74e75e2b5352141112d0877211c72759 b96a4a234a610d5849f8f5529b002609dda2b4da be7c4539f0c12d9f27a8a69b9c9fcafb7f8b1616e1bf4f9627d51b657018046e HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-chunk-696bc286.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"74e75e2b5352141112d0877211c72759" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 435343 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260aed27b4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	fonts.googleapis.com/css?family=Montserrat:100	142.250.74.106	200 OK	1.8 kB
URL GET HTTP/3 fonts.googleapis.com/css?family=Montserrat:100 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://www.gasursa.com/ Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint94:C0:54:E4:BA:6C:E0:93:C6:8F:D9:27:1C:74:6F:E8:CE:6E:E2:BA ValidityMon, 07 Aug 2023 12:21:56 GMT - Mon, 30 Oct 2023 12:21:55 GMT File type ASCII text, with very long lines (1849), with no line terminators Size 1.8 kB (1809 bytes) Hash 3e9bef976f3d5921a4b227dd6b4441c3 2bb4d2024b20e89c4128fff4a7e78618aaf8800b 0a75b3382a7fe8b3ccdf620ba8598b1ebfa5c7e527f18e1eea6e86fc3f17072d HTTP Headers `GET /css?family=Montserrat:100 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 30 Aug 2023 04:04:11 GMT date: Wed, 30 Aug 2023 04:04:11 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	www.gasursa.com/wp-content/uploads/2021/09/WhatsApp-Image-2023-06-16-at-5.03.38-PM-768x768.jpeg	199.168.185.134	200 OK	86 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/2021/09/WhatsApp-Image-2023-06-16-at-5.03.38-PM-768x768.jpeg IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 82", baseline, precision 8, 768x768, components 3\012- data Size 86 kB (85596 bytes) Hash b1a6d0658140e83a30998c807c40eeed 895ea3f0004794b1f99cb1565c7969e28ad99a38 0ff6b882c990bf622d9bb22c2241a019b8e53852f8a1f115881624fd21fc959c HTTP Headers GET /wp-content/uploads/2021/09/WhatsApp-Image-2023-06-16-at-5.03.38-PM-768x768.jpeg HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Cookie: TawkConnectionTime=1693368243363; twk_idm_key=5v7OJw8Td9_Nh80PDtBsk Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK content-type: image/jpeg last-modified: Fri, 18 Aug 2023 11:40:04 GMT accept-ranges: bytes etag: "7c77c7bac8d1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:28 GMT content-length: 85596 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2	199.168.185.134	200 OK	13 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data Size 13 kB (13276 bytes) Hash f0f8230116992e521526097a28f54066 0447c6b10bbf73f97b23dcfd6e6a48510822cb6e 8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951 HTTP Headers GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK content-type: font/x-woff2 last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "cf9177eacdd1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 13276 X-Firefox-Spdy: h2`

	www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2	199.168.185.134	200 OK	77 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data Size 77 kB (76764 bytes) Hash f7307680c7fe85959f3ecf122493ea7d fce0da592a3e536d6d5df5b50cb513398d8c5161 43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af HTTP Headers GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK content-type: font/x-woff2 last-modified: Fri, 18 Aug 2023 12:17:11 GMT accept-ranges: bytes etag: "cf9177eacdd1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 76764 X-Firefox-Spdy: h2`

	cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js	151.101.193.229	200 OK	303 kB
URL GET HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP 151.101.193.229:443 ASN #54113 FASTLY Requested by https://www.gasursa.com/ Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT File type Size 303 kB (302554 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU" content-encoding: br accept-ranges: bytes date: Wed, 30 Aug 2023 04:04:15 GMT age: 12791147 x-served-by: cache-fra-eddf8230136-FRA, cache-bma1657-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 41275 X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-common.js	172.67.38.66	200 OK	211 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-common.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (65466) Size 211 kB (210862 bytes) Hash 1e8f19ee53d4bf29b44af99232be95dd 829aab4bcd0ff18c112fc9be9d9e1b7f6246024f 0d99bd59702e8c30f23976669fbed3a9f2be42364f67023c82289a067c28a1b0 HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-chunk-common.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:13 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"1e8f19ee53d4bf29b44af99232be95dd" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: MISS vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25fa9ea8b52d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.gasursa.com/wp-content/uploads/2021/05/mapas-ubicacion-telefono-icono-dibujos-animados-ilustracion-concepto-icono-tecnologia-transporte-aislado-estilo-dibujos-animados-plana_138676-2157.jpg	199.168.185.134	200 OK	49 kB
URL GET HTTP/2 www.gasursa.com/wp-content/uploads/2021/05/mapas-ubicacion-telefono-icono-dibujos-animados-ilustracion-concepto-icono-tecnologia-transporte-aislado-estilo-dibujos-animados-plana_138676-2157.jpg IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 626x626, components 3\012- data Size 49 kB (48764 bytes) Hash 6fce430ddf2ce77a688d0f78e5cf550d 14058b9b53c86c1456b318cb3c59bba05021772c c08a9e4edbd99ea5355a53d0bf6423c6d04c34bc799c1f5e33271cd1625b50c7 HTTP Headers GET /wp-content/uploads/2021/05/mapas-ubicacion-telefono-icono-dibujos-animados-ilustracion-concepto-icono-tecnologia-transporte-aislado-estilo-dibujos-animados-plana_138676-2157.jpg HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK content-type: image/jpeg last-modified: Fri, 18 Aug 2023 11:39:59 GMT accept-ranges: bytes etag: "5bd0f1b7c8d1d91:0" server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:27 GMT content-length: 48764 X-Firefox-Spdy: h2`

	va.tawk.to/v1/session/start	172.67.38.66	200 OK	0 B
URL OPTIONS HTTP/3 va.tawk.to/v1/session/start IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /v1/session/start HTTP/1.1 Host: va.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.gasursa.com/ Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:13 GMT x-served-by: visitor-application-preemptive-rq3g access-control-allow-origin: https://www.gasursa.com access-control-allow-credentials: true access-control-allow-methods: POST,OPTIONS access-control-allow-headers: content-type,x-tawk-token strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: DYNAMIC x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25fe9993b52d-OSL alt-svc: h3=":443"; ma=86400`

	embed.tawk.to/_s/v4/app/64e818b1586/css/max-widget.css	172.67.38.66	200 OK	75 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/css/max-widget.css IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 75 kB (74740 bytes) Hash de53778cd479844f5fbb1b4fdeb04cb0 6043e67848d97947594855e55bc955dfcec5cc48 0184fbee1d098b9d08dd83c0a45b9a053ccee598adf89615c3931c06dca09c39 HTTP Headers `GET /_s/v4/app/64e818b1586/css/max-widget.css HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: text/css cache-control: public, max-age=2592000, immutable cf-bgj: minify cf-polished: origSize=74869 access-control-allow-origin: * etag: W/"e403409940fa900260225b2e7b303010" last-modified: Fri, 25 Aug 2023 02:59:18 GMT strict-transport-security: max-age=0; includeSubDomains; preload x-cache-status: HIT cf-cache-status: HIT age: 435342 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260bcdb6b4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	www.gasursa.com/wp-content/plugins/pro-elements/assets/css/frontend.min.css?ver=3.12.3	199.168.185.134	200 OK	436 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/pro-elements/assets/css/frontend.min.css?ver=3.12.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Size 436 kB (435655 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /wp-content/plugins/pro-elements/assets/css/frontend.min.css?ver=3.12.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: text/css content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:15 GMT accept-ranges: bytes etag: "d73b8c9dc8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT X-Firefox-Spdy: h2`

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-vendor.js	172.67.38.66	200 OK	83 kB
URL GET HTTP/2 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-vendor.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type Size 83 kB (82665 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-vendor.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 30 Aug 2023 04:04:12 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"ce3014b09c6dfbd6f92bc585fd840580" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: MISS vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25fa8d570b31-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-app.js	172.67.38.66	200 OK	151 B
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-app.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 151 B (151 bytes) Hash 04a9862af6efaf787bc8fb8e99ba6987 a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3 ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-app.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:12 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: MISS vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25fa9eacb52d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2d0b383d.js	172.67.38.66	200 OK	689 B
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2d0b383d.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (715), with no line terminators Size 689 B (689 bytes) Hash 8489b26d8834814d4c645e094bfb1c7f 6b3eba11e5a67137295b00f316698a3e12da1d66 0e3b1c1a3da2e19c8918864752042eaa06885730a0bdd7cd60ee519cfc531412 HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-chunk-2d0b383d.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"a6432972b93f7d0476635e7ac224d718" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 435343 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260aed2eb4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	vsb77.tawk.to/s/?k=64eebfbfa3c8d40bf95fe4cd&cver=0&pop=false&asver=2&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEiLCJ2aWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEtdEtaZkdrT2pfUlUyWjRKck93Y1hzIiwic2lkIjoiNjRlZWJmYmZhM2M4ZDQwYmY5NWZlNGNkIiwiaWF0IjoxNjkzMzY4MjU1LCJleHAiOjE2OTMzNzAwNTUsImp0aSI6IlpIdUFWNzBSSjN2OEkzaExlZm5RTSJ9.GkLxtLAXLTVqG63-wgqmrzISTyAROdfUhpUYCApMa-2P5Bh9u8PQ8IwT-djiv997HpPqycUV-IjCTlImBQWSxg&EIO=3&transport=websocket&__t=Of4dDg0	104.22.25.131	101 Switching Protocols	0 B
URL GET HTTP/1.1 vsb77.tawk.to/s/?k=64eebfbfa3c8d40bf95fe4cd&cver=0&pop=false&asver=2&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEiLCJ2aWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEtdEtaZkdrT2pfUlUyWjRKck93Y1hzIiwic2lkIjoiNjRlZWJmYmZhM2M4ZDQwYmY5NWZlNGNkIiwiaWF0IjoxNjkzMzY4MjU1LCJleHAiOjE2OTMzNzAwNTUsImp0aSI6IlpIdUFWNzBSSjN2OEkzaExlZm5RTSJ9.GkLxtLAXLTVqG63-wgqmrzISTyAROdfUhpUYCApMa-2P5Bh9u8PQ8IwT-djiv997HpPqycUV-IjCTlImBQWSxg&EIO=3&transport=websocket&__t=Of4dDg0 IP 104.22.25.131:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /s/?k=64eebfbfa3c8d40bf95fe4cd&cver=0&pop=false&asver=2&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEiLCJ2aWQiOiI2MmYzMDJmZTM3ODk4OTEyZTk2MjI3OWEtdEtaZkdrT2pfUlUyWjRKck93Y1hzIiwic2lkIjoiNjRlZWJmYmZhM2M4ZDQwYmY5NWZlNGNkIiwiaWF0IjoxNjkzMzY4MjU1LCJleHAiOjE2OTMzNzAwNTUsImp0aSI6IlpIdUFWNzBSSjN2OEkzaExlZm5RTSJ9.GkLxtLAXLTVqG63-wgqmrzISTyAROdfUhpUYCApMa-2P5Bh9u8PQ8IwT-djiv997HpPqycUV-IjCTlImBQWSxg&EIO=3&transport=websocket&__t=Of4dDg0 HTTP/1.1 Host: vsb77.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://www.gasursa.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: jTFQjBUIrEev2GjyQsGnXg== DNT: 1 Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Date: Wed, 30 Aug 2023 04:04:15 GMT Connection: upgrade upgrade: websocket sec-websocket-accept: tLRbJsIwbm3DWMPgn/L+V/zsBW0= sec-websocket-extensions: permessage-deflate strict-transport-security: max-age=0; includeSubDomains; preload CF-Cache-Status: DYNAMIC X-Content-Type-Options: nosniff Server: cloudflare CF-RAY: 7fea260b8fb5b51b-OSL alt-svc: h3=":443"; ma=86400`

	cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js	151.101.193.229	200 OK	303 kB
URL GET HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP 151.101.193.229:443 ASN #54113 FASTLY Requested by https://www.gasursa.com/ Certificate IssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT File type Size 303 kB (302554 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: application/javascript; charset=utf-8 etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU" content-encoding: br accept-ranges: bytes date: Wed, 30 Aug 2023 04:04:15 GMT age: 12791147 x-served-by: cache-fra-eddf8230136-FRA, cache-bma1657-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 41275 X-Firefox-Spdy: h2

	www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/js/frontend.js?ver=1.4.3	199.168.185.134	200 OK	180 kB
URL GET HTTP/2 www.gasursa.com/wp-content/plugins/groovy-menu-free/assets/js/frontend.js?ver=1.4.3 IP 199.168.185.134:443 ASN #33182 DIMENOC Requested by https://www.gasursa.com/ Certificate IssuerLet's Encrypt Subjectgasursa.com FingerprintFC:0B:13:72:D1:44:CA:DD:93:30:F3:2A:F3:58:4F:C2:42:02:F4:7D ValidityFri, 18 Aug 2023 11:31:29 GMT - Thu, 16 Nov 2023 11:31:28 GMT File type Size 180 kB (179452 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /wp-content/plugins/groovy-menu-free/assets/js/frontend.js?ver=1.4.3 HTTP/1.1 Host: www.gasursa.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK content-type: application/x-javascript content-encoding: br last-modified: Fri, 18 Aug 2023 11:39:08 GMT accept-ranges: bytes etag: "3ae2a599c8d1d91:0" vary: Accept-Encoding server: Microsoft-IIS/10.0 x-powered-by: ASP.NET x-powered-by-plesk: PleskWin strict-transport-security: max-age=15768000; includeSubDomains date: Wed, 30 Aug 2023 04:04:25 GMT X-Firefox-Spdy: h2`

	va.tawk.to/v1/widget-settings?propertyId=62f302fe37898912e962279a&widgetId=1ga2k7cdd&sv=undefined	172.67.38.66	200 OK	3.4 kB
URL GET HTTP/3 va.tawk.to/v1/widget-settings?propertyId=62f302fe37898912e962279a&widgetId=1ga2k7cdd&sv=undefined IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (3929), with no line terminators Size 3.4 kB (3412 bytes) Hash 631e404e48da4346136205beb894812a abc7d0f62cce38bcffadf9b735c3077431918ad6 3a7cacfd6860319f88fb15160ca246d6d58b04d52acef9da56a7aae4dd4c2936 HTTP Headers `GET /v1/widget-settings?propertyId=62f302fe37898912e962279a&widgetId=1ga2k7cdd&sv=undefined HTTP/1.1 Host: va.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.gasursa.com/ Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:13 GMT content-type: application/json x-served-by: visitor-application-preemptive-wkg1 access-control-allow-origin: * access-control-allow-methods: GET,OPTIONS access-control-allow-headers: content-type,x-tawk-token cache-control: public, max-age=7200, s-maxage=1800 etag: W/"2-30-0" vary: Accept-Encoding strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: MISS x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25fe7989b52d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	va.tawk.to/v1/session/start	172.67.38.66	200 OK	1.0 kB
URL POST HTTP/3 va.tawk.to/v1/session/start IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type troff or preprocessor input, ASCII text, with very long lines (1140), with no line terminators Size 1.0 kB (1048 bytes) Hash 9b1d4c36a4d578e16e9d4c6df58015d7 afbbb9ba6de73124dcefb492d753fe34d8af10f7 b6a673b4d0b86ba4d476e6b513317dd06cf955ff0dcc00e3d6fb5b7de3a84253 HTTP Headers `POST /v1/session/start HTTP/1.1 Host: va.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.gasursa.com/ Content-Type: application/json; charset=utf-8 Content-Length: 177 Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: application/json x-served-by: visitor-application-preemptive-vrmr access-control-allow-origin: https://www.gasursa.com access-control-allow-credentials: true access-control-allow-methods: POST,OPTIONS access-control-allow-headers: content-type,x-tawk-token vary: Accept-Encoding strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: DYNAMIC x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25ff9a5eb52d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	embed.tawk.to/_s/v4/app/64e818b1586/languages/es.js	172.67.38.66	200 OK	17 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/languages/es.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type Size 17 kB (17093 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /_s/v4/app/64e818b1586/languages/es.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:13 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"e1588827b753effd1d562692cb721a4f" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 434729 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25ffdb9db4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-4fe9d5dd.js	172.67.38.66	200 OK	906 B
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-4fe9d5dd.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (956), with no line terminators Size 906 B (906 bytes) Hash 7b31fafdf609238b7f4574e44057af5b f4f849145e5beaff38b9e47e3c5c3e7e4945d70a 2b7dfb20a5ee49b709a4adc3412bd7d5e00539c1ef93a1a58c4ec58816c81ed3 HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-chunk-4fe9d5dd.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"1c5ecf371149feca23bd895ba9dfec4d" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 435343 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260b2d50b4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	va.tawk.to/log-performance/v3	172.67.38.66	200 OK	5 B
URL POST HTTP/3 va.tawk.to/log-performance/v3 IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 5 B (5 bytes) Hash 38a8a3e3b4b6a6e4f295b2e0f899b1f0 474f5fac3d23afbaf16c5a31c98dfcd956e4c186 7652c7891ed06bce4174ab00a6ee9721daf6a4286929213ecb7daf42cd866615 HTTP Headers `POST /log-performance/v3 HTTP/1.1 Host: va.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.gasursa.com/ Content-Type: application/json; charset=utf-8 Content-Length: 94 Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:16 GMT content-type: text/html; charset=utf-8 x-served-by: visitor-application-preemptive-gkl9 access-control-allow-origin: https://www.gasursa.com access-control-allow-credentials: true access-control-allow-methods: POST,OPTIONS access-control-allow-headers: content-type,x-tawk-token vary: Accept-Encoding strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: DYNAMIC x-content-type-options: nosniff server: cloudflare cf-ray: 7fea261069e6b4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-main.js	172.67.38.66	200 OK	121 B
URL GET HTTP/2 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-main.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 121 B (121 bytes) Hash 3b41342f7e3be590563e8e3b5ff770c7 c9ca54d23ea78b320f080b76e22bb6b4e704d55f ef04d89daeed55613a63a4af62c147ce86e4a7f22c8ce700dd6bdb11ab187e43 HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-main.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.gasursa.com DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Wed, 30 Aug 2023 04:04:12 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"da5bb1dc647470204df0e49f5afac2de" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: MISS vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea25fa7d510b31-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-48f46bef.js	172.67.38.66	200 OK	20 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-48f46bef.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (19655), with no line terminators Size 20 kB (19655 bytes) Hash a969e07fe5f9ff026808f9b10afe3092 df7c56cb33d2652b2971ec61c475709b08f9c299 74fa99944cefc82f6af0514d941ea2ae406812ddedd2e0b1ce26f9b4b7f13d74 HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-chunk-48f46bef.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"a969e07fe5f9ff026808f9b10afe3092" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 435343 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260b0d40b4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2d0b9454.js	172.67.38.66	200 OK	535 B
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-2d0b9454.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (557), with no line terminators Size 535 B (535 bytes) Hash 3f4a6312d60391bda06462d7321ffcdc 9f09295297840a36d2ac95344b39b0af1a729f82 28d61df22c079e51c45b6f87db516f03cb85cf3f2c3a970be369944c3f91bcf1 HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-chunk-2d0b9454.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"c506281367048d4a134c9affbc68c8c6" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 435343 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260b2d51b4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-07cad36d.js	172.67.38.66	200 OK	95 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64e818b1586/js/twk-chunk-07cad36d.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://www.gasursa.com/ Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 95 kB (95355 bytes) Hash 44e112afe302a72c298b02798e22024b 412f83962871aa75e6fd0c2a5938343b61bea28b 44faa7abe70235450c8e96200d7d660854625fb58f2196eb85bf27319ca98c72 HTTP Headers `GET /_s/v4/app/64e818b1586/js/twk-chunk-07cad36d.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://www.gasursa.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Wed, 30 Aug 2023 04:04:15 GMT content-type: application/javascript last-modified: Fri, 25 Aug 2023 02:59:19 GMT etag: W/"44e112afe302a72c298b02798e22024b" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 435343 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7fea260b2d52b4f9-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (60)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by