| www.up-4ever.net/assets/image/logo.png | 104.21.24.34 | 200 OK | 4.6 kB |
URL GET HTTP/3www.up-4ever.net/assets/image/logo.png IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typePNG image data, 175 x 45, 8-bit/color RGBA, non-interlaced Hash278fb0058ebe4de31a5eb8eb7954b7d8 566b41682c2fc1cd6adcee46b17083c5ebdb5707 a9e78b0bfceeaad1dc5d2a5a1a8a08da46dc4164dd7f3303924741a675f8db79
GET /assets/image/logo.png HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: image/png
content-length: 4569
last-modified: Thu, 23 May 2019 00:36:03 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GAgEuetpyiydLdhFh83MSKWVepXqHwo%2FhufZOVoPX8Gu4aBPpLqsLo6vdO%2B01h1eyMxTtvhfrGfRI4RZ7eXq5tdZsNwI6lCRxyfNe0ZsbHpN2xMM8PCtTDyyfXN0EQH%2B3PN7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a225699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-BH3KCF6H24 | 142.250.74.168 | 200 OK | 95 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=G-BH3KCF6H24 IP142.250.74.168:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Hash11399ffde021543790d86c19f7449bc8 e0c98e9e53d49eca9058bd338dcafa97f84854c4 06109d764a2f95e931672d49b10856708a1a99d5048b91548acb79fdf1fcd696
GET /gtag/js?id=G-BH3KCF6H24 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 04:57:15 GMT
expires: Wed, 24 Apr 2024 04:57:15 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94827
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.up-4ever.net/assets/js/perfect-scrollbar.min.js | 104.21.24.34 | 200 OK | 21 kB |
URL GET HTTP/3www.up-4ever.net/assets/js/perfect-scrollbar.min.js IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeJavaScript source, ASCII text, with very long lines (18216) Hash4a10bcfa0a9c9fa9d503b5a498cac31e c4f6c403e99fb37cb496c3844b332823db7c5837 a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634
GET /assets/js/perfect-scrollbar.min.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Sat, 06 Feb 2021 14:52:57 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9ksAvgHDshr7QiUmdKTktDXd7J4BC%2BoIxXVNPYx2Rf1R0z%2B2b3rbHnXihJU7TN9nyZLo1INeL%2F7cvN09e2dlmYB9Rf76hYYvmb4eL8EnkskpiBdLi87l%2BF0ueVUh532%2FL7K2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f23a365699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/js/dialogs.js | 104.21.24.34 | 200 OK | 50 kB |
URL GET HTTP/3www.up-4ever.net/js/dialogs.js IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
Hash2f96a16e62a9d63834bbb6108f83d90b 7da8c8e56e98e99c6c891f6b44d135fb1276a32c 71fea8e764130d6d3e79297c3c69a3f30ba91e929ef79753dc6fd807d04bc03d
GET /js/dialogs.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:40:07 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6133agAIWbuhvaqg0QZQ80t4DWOPhO78x2mpE5hOFuYo4cGvoJFt%2BeAPo2LApRkJ3%2BZJCBrn6XgImLD2rwyvBkUKj%2FRTEEDqcuHDw9KODvwBvMer90hQ6Sl1iqjMV%2BXwVjza"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f23a395699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/font/roboto/Roboto-Bold.woff2 | 104.21.24.34 | 200 OK | 50 kB |
URL GET HTTP/3www.up-4ever.net/assets/font/roboto/Roboto-Bold.woff2 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 49976, version 1.0 Hash39b2c3031be6b4ea96e2e3e95d307814 933b866d09c2b087707a98dab64b3888865eeb96 8b84b2abc336ee61f48a28a697b6ace2333ea5f1868aa15d5aeb2c7beac6d716
GET /assets/font/roboto/Roboto-Bold.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 49976
last-modified: Thu, 23 May 2019 00:36:35 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QlFsxhu5v83Uig38MIMSDMNPKvEP2tYFV5GgtNGEKF5Q99PAVKGLJ8zX1B%2FrzCtgoRNuRQdpeRZNO3%2Fot3hFZ7I3RP92qg8C5Fqz%2Fg%2BffZ6FqYg%2B82sNq9z06BHnorRv3hJ%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f34b015699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/packages/fontawesome/webfonts/fa-light-300.woff2 | 104.21.24.34 | 200 OK | 118 kB |
URL GET HTTP/3www.up-4ever.net/assets/packages/fontawesome/webfonts/fa-light-300.woff2 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 117936, version 1.0 Size118 kB (117936 bytes) Hash548f2ded83a195a98ac3651bdf9a6f2e 825e10e15e3cfc58b1c8f0958f33ea6a738a586d 2fc5ace475076f454c946a32e61011a7b8b0ab6fadfb98a73756906b94a5588d
GET /assets/packages/fontawesome/webfonts/fa-light-300.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/packages/fontawesome/css/all.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 117936
last-modified: Thu, 23 May 2019 00:36:21 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1n38hN2A28bPwRosSl9CkatOVhQEoQ5WeaAJuisxpNrmIcMyKdOSXDh7MzNhtepNXFYB9dmqA3%2FuID%2FLd2kcpWlGSPbZmqtP2r3VQuL%2BupuHuWPHGyUCQ4XWzicUyEodSG2V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f35b0d5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/font/roboto/Roboto-Medium.woff2 | 104.21.24.34 | 200 OK | 50 kB |
URL GET HTTP/3www.up-4ever.net/assets/font/roboto/Roboto-Medium.woff2 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 50224, version 1.0 Hash574fd0b50367f886d359e8264938fc37 6cc1b73571af9e827c4e7e91418f476703cd4c4b 1cd5c4b37938d932110ec043ce1cc766d18cacf7a4e7cffa6a539855d5bdc08d
GET /assets/font/roboto/Roboto-Medium.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 50224
last-modified: Thu, 23 May 2019 00:36:13 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fbAPgM1j0ztUU2i3IG5LRz%2B26YGIz7PWn%2B0tfwd8celNse%2BVubL0FMnMzlX8t%2F9UuPuR8R3sPCmVvWec5e%2Bd7MVwZEqDaLuqZ2EdB4NvsBY5OWyFgZ87O3S%2BpSfJGZ2tziKa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f35b0a5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/font/roboto/Roboto-Light.woff | 104.21.24.34 | 200 OK | 62 kB |
URL GET HTTP/3www.up-4ever.net/assets/font/roboto/Roboto-Light.woff IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeWeb Open Font Format, TrueType, length 62316, version 2.980 Hash3b813c2ae0d04909a33a18d792912ee7 6300f659be9e834ab263efe2fb3c581d48b1e7b2 2cbb012f1d36c09d3f17100ef2cf8213cbd429d9e519dff536c12ed6f07a0d25
GET /assets/font/roboto/Roboto-Light.woff HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff
content-length: 62316
last-modified: Thu, 23 May 2019 00:36:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kqBr8bfOfNDna5gV3Mwc8lOMPyPduRCXtJMCn6kODoxpp%2BCkv%2B8qZ%2BPBdMfl5T6WW10cJxOsOvTIL4Qd4%2F3JHEKNvj1d7qCxouBBea85tuKhSsmO1iVQDDBUVeYiI17wWDks"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f42b8d5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/font/roboto/Roboto-Bold.woff | 104.21.24.34 | 200 OK | 63 kB |
URL GET HTTP/3www.up-4ever.net/assets/font/roboto/Roboto-Bold.woff IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeWeb Open Font Format, TrueType, length 62876, version 2.980 Hashdc81817def276b4f21395f7ea5e88dcd ee99cd87a59a9a5d4092c83232bb3eec67547425 e7cbaf29c3812b80577cb845b5d359486242338f25620ba65260e265464fe359
GET /assets/font/roboto/Roboto-Bold.woff HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff
content-length: 62876
last-modified: Thu, 23 May 2019 00:36:14 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KzU2LZGoERM5heI5tEKIQTyfptwhdeL6%2FE82vZpwCT9l4Hx7lt1tUse9Jdvt2CRn7LMmgvYDxePsan5eXS7xnY5Cu6Vf%2FZREBX0l3ngmPwcYIYMhVNpGIiD9YhBCmoY8Exjm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f42b8c5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/font/roboto/Roboto-Medium.woff | 104.21.24.34 | 200 OK | 63 kB |
URL GET HTTP/3www.up-4ever.net/assets/font/roboto/Roboto-Medium.woff IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeWeb Open Font Format, TrueType, length 62980, version 2.980 Hashfc78759e93a6cac50458610e3d9d63a0 d45f84922131364989ad6578c7a06b6b4fc22c34 72841a4c4171b13ab1edf2c8f8046f0958f2ff608ce4e0d568dd5c6319f8a933
GET /assets/font/roboto/Roboto-Medium.woff HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff
content-length: 62980
last-modified: Thu, 23 May 2019 00:36:14 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uukc05NCW6AN1xk2JM6I%2FISi3ggLX8%2FsvbXn9A5rOud80KKbnoFwHkmBKBmoCNAnPEolTI4rxW4Bea0a%2BeeGdp0K3oBEIUZavRd6ErbIhY3np6RuaHURHsG%2B7kuFHDK4a5LG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f42b8f5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/g6t3mf26qbcq | 104.21.24.34 | 200 OK | 34 kB |
URL User Request GET HTTP/2www.up-4ever.net/g6t3mf26qbcq IP104.21.24.34:443
CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeHTML document, Unicode text, UTF-8 text Hash1d29c124ba63b4329710218b73b64c0d 3a116633d295f817f75111372de42334ba07f97b 9216b12bde64c4e92eedf325e1ebbca76548b2e0ad16f35c4acdf80232418c0e
GET /g6t3mf26qbcq HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: text/html; charset=UTF-8
expires: Tue, 23 Apr 2024 04:57:15 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t4dIrcAMVf2UKadOveeK6IqYbt6Oi8MajJrV0ze5rpJeucpm9ALyOlBeKvYYdDLhyZzZfdyshkUDpgYEiDMeWfFHdKV6nh%2FhIs914jv7zTAL8AJke%2FcWrY2vVSv2WCdmjEaX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879382f01f67b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-BH3KCF6H24>m=45je44m0v9132047618za200&_p=1713934636002&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=100267982.1713934636&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713934636&sct=1&seg=0&dl=https%3A%2F%2Fwww.up-4ever.net%2Fg6t3mf26qbcq&dt=Download&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=722 | 216.239.34.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-BH3KCF6H24>m=45je44m0v9132047618za200&_p=1713934636002&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=100267982.1713934636&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713934636&sct=1&seg=0&dl=https%3A%2F%2Fwww.up-4ever.net%2Fg6t3mf26qbcq&dt=Download&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=722 IP216.239.34.36:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BH3KCF6H24>m=45je44m0v9132047618za200&_p=1713934636002&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=100267982.1713934636&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713934636&sct=1&seg=0&dl=https%3A%2F%2Fwww.up-4ever.net%2Fg6t3mf26qbcq&dt=Download&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=722 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.up-4ever.net
date: Wed, 24 Apr 2024 04:57:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.up-4ever.net/assets/css/bootstrap.min.css?ver=20 | 104.21.24.34 | 200 OK | 30 kB |
URL GET HTTP/3www.up-4ever.net/assets/css/bootstrap.min.css?ver=20 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeASCII text, with very long lines (65324) Hashf23c6a40ff257fdc38f8d415e98afd72 ca6a4c5791db0a03d30be973d3c6704c3f4a22cb c9adb52c42b2966ed05d4e7eda2695e67285e19546bccfd14eae3c77ad760d5a
GET /assets/css/bootstrap.min.css?ver=20 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: text/css
last-modified: Thu, 23 May 2019 00:35:58 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CdJEGGN7hIaxUyFbGMW3rzPb4mJmLDt0KyRsYey4DIJYiKGDjQSEzl6oKhGmnrAB668VMeriaXBqH0yieRo3WdhiwAX%2BGUO8TG2HMI%2BIsgnAuLHZ4OMynhIoUjcIY6SV7%2BxA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f21a115699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/js/jquery-3.3.1.min.js | 104.21.24.34 | 200 OK | 39 kB |
URL GET HTTP/3www.up-4ever.net/assets/js/jquery-3.3.1.min.js IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hasha09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /assets/js/jquery-3.3.1.min.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:36:01 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6GABuZsELCsWwAB%2BLVCxsm7%2FaoaQMwi%2BN%2FzOxCmqBWI0lCBnDmKSKMPmxAWBJzIZcy8avhORXe%2BvGZpBOa72%2F4QMk%2F1ec3O4KdbaqRm9WPlxN%2BgMODYd9eypdg7rb3aCK4I4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f21a175699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/packages/fontawesome/css/all.css | 104.21.24.34 | 200 OK | 20 kB |
URL GET HTTP/3www.up-4ever.net/assets/packages/fontawesome/css/all.css IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeASCII text, with very long lines (64746) Hash76c4c14c27df7d7c5f2d9c48300540f0 2ea955693f041d6021b04165344a8c033e0f7e32 99c53397eb2217df916d67abfb55ed71b9db9d9b80d0ffa7813efe1c932bc91f
GET /assets/packages/fontawesome/css/all.css HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=64831
last-modified: Thu, 23 May 2019 00:36:20 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z8fZgTTe8sxSQHNQlNFBDQfRjf5BEeZ0YmdOdnypV2ipGp5tWocX26bUxGfjRZXYSwovBsZIf7BRc8VUewpb2ekbAYe%2BR5gFeR57%2FCLnFiUB6yRoQ2OW6%2F5Cn8nErACx%2BInZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f21a0d5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| proftrafficcounter.com/stats | 18.185.247.192 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP18.185.247.192:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashb8078e44ac13c3ceca7514238ab85d7e 0f1ff1eac20083125312b47057bf24aa1344ce0c a93c9cd41874e9465b9c80c4516235904469c9a0a4b2be6be94397a2fa1b0e3b
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.up-4ever.net
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; expires=Sat, 22 Apr 2034 04:57:16 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| www.up-4ever.net/assets/css/style.css?ver=34 | 104.21.24.34 | 200 OK | 7.3 kB |
URL GET HTTP/3www.up-4ever.net/assets/css/style.css?ver=34 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeASCII text, with very long lines (5899), with no line terminators Hash1f4f9d5363c1959482da04af3fb562e6 3ee422e78243fc14865ca90473a8b7558924e3f5 361956d1f211151543ff2f654ac6b7ce9fbe31b3eaa08832a693f5a18a8a6ad7
GET /assets/css/style.css?ver=34 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6769
last-modified: Mon, 27 May 2019 05:05:41 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1JRcjEbaQW9RMdow3NybEvn72xgpmdvxNNg9HoUEThDavXmaMbxoChkpgQckknoHS4ERTJp9xQ8H7XAZJYCMYLJ9NdUblJpseNzILiO4f1VCea7jyn6KAuJhwhoKyZMu%2FDnn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f21a155699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/js/jquery.paging.js | 104.21.24.34 | 200 OK | 54 kB |
URL GET HTTP/3www.up-4ever.net/js/jquery.paging.js IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeJavaScript source, ASCII text Hashd7a2c1c7af2a004a6d68e1e55b1cfb46 7fd6daa7076c30381880519ad06ef5639b19ee28 c8ecfe747c979fbd87624913200a9237343679923b495885bced089b80fc84f6
GET /js/jquery.paging.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:40:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s7sniorLOKiUpKJdvzR%2FGLoRihBtYjRAiMbOBU49W5NbZS%2BJX6uSE2mIeSD9866BzIJRhM3pZZ80ifmeuGTA8EtTBuOXal4RQq9%2BnASCxcWX33gcOOPyr%2FIa%2FTYwtEpWGJYs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a1f5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/packages/fontawesome/webfonts/fa-brands-400.woff2 | 104.21.24.34 | 200 OK | 65 kB |
URL GET HTTP/3www.up-4ever.net/assets/packages/fontawesome/webfonts/fa-brands-400.woff2 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 65316, version 1.0 Hash48461ea4e797c9774dabb4a0440d2f56 024b7f9afa49a3658ebd7eee4e1c536502db51fa 974956f1b7b82cecd8ae88a0b685f0d5dfe5c8534c2784e59abeea719eadbbc4
GET /assets/packages/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/packages/fontawesome/css/all.css
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 65316
last-modified: Thu, 23 May 2019 00:36:23 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SMi5sZ6aUmgRMNqp0y%2BW%2FT3sh5v1JNcWvtiRE5%2FixVEvll53f06fvwcbe81lpVY1V%2BCo%2BxoVMyN882N9uuzcqR%2BxNrkDpiC5FwHfbVfO4UhPiQFEKVkMXO7qXc7v3S853UwD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f86e1f5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/font/roboto/Roboto-Regular.woff | 104.21.24.34 | 200 OK | 62 kB |
URL GET HTTP/3www.up-4ever.net/assets/font/roboto/Roboto-Regular.woff IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeWeb Open Font Format, TrueType, length 61736, version 2.980 Hashba3dcd8903e3d0af5de7792777f8ae0d 74734dde8d94e7268170f9b994dedfbdcb5b3a15 2cd6b07b7855716761250290ce3cf447ccc98e793e484294d3fa8ccbb55b016a
GET /assets/font/roboto/Roboto-Regular.woff HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636; dom3ic8zudi28v8lr6fgphwffqoz0j6c=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd%3A3%3A1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff
content-length: 61736
last-modified: Thu, 23 May 2019 00:36:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z21Gr44oun4PlDETWVR%2BkwLlXfK1PuvLRWSsCYHvlJljyqfebdzZQU%2BXf6lgzDQUuqBULU3nfWKYkw607PBXusI5fgxiWVGp76HviV0CW4ykoU0qkmNvV9aax557LTQniu0m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f93eaa5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| acknowledgecalculated.com/pixel/purst?dl=0&th=0&sc=0&rs=1296&rd=1296&fd=924&bv=24.4.3467&tmpl=70 | 192.243.61.227 | 200 OK | 0 B |
URL GET HTTP/1.1acknowledgecalculated.com/pixel/purst?dl=0&th=0&sc=0&rs=1296&rd=1296&fd=924&bv=24.4.3467&tmpl=70 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectacknowledgecalculated.com Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61 ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=1296&rd=1296&fd=924&bv=24.4.3467&tmpl=70 HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 04:57:17 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| acknowledgecalculated.com/3d/19/31/3d1931742223146a108201ae695e957e.js | 192.243.61.227 | 200 OK | 16 kB |
URL GET HTTP/1.1acknowledgecalculated.com/3d/19/31/3d1931742223146a108201ae695e957e.js IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectacknowledgecalculated.com Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61 ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT
File typeJavaScript source, ASCII text, with very long lines (44110), with no line terminators Hash0bdc8856442738017516fa3ee9be6bc0 f3836fc87147c5bcc6e725e0a6dfd70802635786 bafda69efcd116ee8de60c9f75fb301e6b3bf0e246a436313d173c89a2001986
GET /3d/19/31/3d1931742223146a108201ae695e957e.js HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 04:57:17 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 21bce00ef7ac1a7f453094b749b55946
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| capaciousdrewreligion.com/advertisers.js | 172.240.108.68 | 200 OK | 0 B |
URL GET HTTP/1.1capaciousdrewreligion.com/advertisers.js IP172.240.108.68:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectcapaciousdrewreligion.com Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 04:57:17 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 96f449f9b93a6462ea76f9e1fd45dc4d
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BH3KCF6H24&cid=100267982.1713934636>m=45je44m0v9132047618za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=693619596 | 142.250.74.163 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BH3KCF6H24&cid=100267982.1713934636>m=45je44m0v9132047618za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=693619596 IP142.250.74.163:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BH3KCF6H24&cid=100267982.1713934636>m=45je44m0v9132047618za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=693619596 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 24 Apr 2024 04:57:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| unseenreport.com/pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=277d9998d55ef26437437a1f16c8e6e4&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 | 192.243.59.20 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=277d9998d55ef26437437a1f16c8e6e4&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=277d9998d55ef26437437a1f16c8e6e4&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:18 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c19f770642c4a1b916530fc6db809218
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.up-4ever.net/assets/css/mdb.min.css?ver=25 | 104.21.24.34 | 200 OK | 63 kB |
URL GET HTTP/3www.up-4ever.net/assets/css/mdb.min.css?ver=25 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeASCII text, with very long lines (37986) Hash12ea6bdc4f9444ece279c19862653d9b 56299af063ed547b93daee8fa18b90e74b84c434 2d3e15995e3bcde2055bfc93d2523a0160d10386e9bf3a7c7ffc2b278ecb7c91
GET /assets/css/mdb.min.css?ver=25 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: text/css
last-modified: Tue, 23 Jun 2020 07:33:15 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tpVqvNgnLW1sYvXslfqcIo14hg2fCnDmyhE1kw80WvQj9KtpLJrJcvEcLBVstA2DFtEvNoPg44Pc46gkS0Ek4dwa3PHbqVwcANUNCOw%2B%2F5wdkhzUvUCTZ%2F7dG9TdWLx0uQN4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f21a135699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.97.1 | 200 OK | 37 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.97.1:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44 ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hashf4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: b2b668857472e2449e96d769944d2c1a
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 24 Apr 2024 04:57:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uyDvShMBGk6UsH%2B1wlEfSso6ceW%2BQ85Smd8zNlCERM6ApfAebwuUBIZNbdzqLJKNGSFy%2BAwt6Uw%2FLPeMyaUJzNm51cbp%2FYO6QbCd%2F1SWohKLxsJia7KM9oQCdmgRRdjxwrbh1yhBfym70QdTleKtwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f87b225688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| excessstumbledvisited.com/sbar.json?key=3d1931742223146a108201ae695e957e&uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd%3A3%3A1 | 192.243.59.20 | 200 OK | 7.8 kB |
URL GET HTTP/1.1excessstumbledvisited.com/sbar.json?key=3d1931742223146a108201ae695e957e&uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd%3A3%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectexcessstumbledvisited.com FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT
Hash34aabec3c500a786e053bf26e6f2bf3d 150f87c6cf9e0f01d544dad634534e122b1cd92f 06de3cc537ae93bcd8a5ad5eaa1dbdf23e482e83eab866c5ae1c6a2dc075a6fe
GET /sbar.json?key=3d1931742223146a108201ae695e957e&uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd%3A3%3A1 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:27 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.up-4ever.net
Access-Control-Allow-Origin: https://www.up-4ever.net
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22019897; expires=Thu, 25 Apr 2024 04:57:27 GMT; secure; SameSite=None
uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; expires=Wed, 01 May 2024 04:57:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 25 Apr 2024 04:57:27 GMT; secure; SameSite=None
uncs=1; expires=Thu, 25 Apr 2024 04:57:27 GMT; secure; SameSite=None
pdhtkv29=true; expires=Thu, 25 Apr 2024 04:57:27 GMT; secure; SameSite=None
uncs29=1; expires=Thu, 25 Apr 2024 04:57:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 63a7845bd0057e06af5e779935072b5d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| excessstumbledvisited.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn%2FzHTPuIfFGCPBuLPsruhNqrtqJmVqupqqrulJTsEF2eOsVy%2Bdb5INapTdq%2BAikwUPASGzpxzMxZNXhb0qMw6O%2Bw713qvvK%2Fjqe%2B%2FLA3tJfFh6sf6R2hNS0tV61a0sf%2Bp5NypbIrX9Sr8RfhbWblR0751mWHXfqnzAkx216rue63quV9kQmrdVf3UCQmQnTa%2FadKs1v%2BrVa%2Bjrl3tjHRjqgPUuyVUINl565lyDSEZIu4%2FXudnJVfb2%2B10raa40euz443QnVUWK7rxsawft9HjGhjLnG0%2Bh0qOpXKjef8RYjInzy1PE6fFMJOLe4VRnLMFTxOxVFL0RuBxB0BESdR%2BCnRMgYbjVQtp9dEvpgu7%2Bi9IJOiZLL%2F6CKMZk6bdrSLs%2FrEnRr9xV0uZCpQb9dgnRH0F0RsjsKfK9BYjiFEn%2BBQT7lay%2B2ELaPWwZqSDYxRsN6tdYOwlWIh5FKzUaBSu01m6uuDwOEho1XC9mU4OEGEG0R5B8AGoWYY0DKxzYtgObOeiyi0rieV7ksoS6jWaSBCzicchcj0Ztj3pu2IBNJn8YIM8GSOQAid5HpvexIx6e169C259htksY5sDkBD1WouAEhSEoKEEhCIqcoOiVR0wa35SPmDQ29mbZn%2BWgHKq8c0CPVN7hKQHVA2hWHmSX5MrEQ6f1dxM7%2FKISMK8ZeFHN9%2F3Aq4XUcxu%2B61EeNuu8WY84jCghzAKocbAnxuTN538gE2PyyvdfI6anMPIUibgCal8HLUrQ7RJ76YnNVmq8x3U15TmYKpHlS8h3nQN5Sa5Pp7jZegyenN38PZgGEl0i0yU%2BF88IOvLB8I4qyOEdVRjypJXloiv26GTCd3Oa88VvP%2BS7hdJsc90Mvnk3mQCT8uQeN%2FkWTZlIO4Z8tyYY43pD6YSTnzbNJzy%2Bbc32mtWpzbZuv7ex2c00N0aodAQ6WdY%2FNRIxJq9dvzdd3uUfWxB6BG1LdO0ZmQWEGiHJ9mGyuX6jCLScc%2BLMQWHLofbj%2BaUUBJLPexqXMP%2Fr43k91HTymorywDxARy%2BA5veRdkv0dImeLEHlAMYuDvNMn918PpMRy4VhLPXCYSy1%2FGpq8%2BR4AiMuKlEQuDRs1r0oojyKa36jHXqMUr8W%2BmFIA%2BRm3F5%2BGP0DAAD%2F%2FwEAAP%2F%2FZumBvZYEAAA%3D | 192.243.59.20 | 200 OK | 7 B |
URL GET HTTP/1.1excessstumbledvisited.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn%2FzHTPuIfFGCPBuLPsruhNqrtqJmVqupqqrulJTsEF2eOsVy%2Bdb5INapTdq%2BAikwUPASGzpxzMxZNXhb0qMw6O%2Bw713qvvK%2Fjqe%2B%2FLA3tJfFh6sf6R2hNS0tV61a0sf%2Bp5NypbIrX9Sr8RfhbWblR0751mWHXfqnzAkx216rue63quV9kQmrdVf3UCQmQnTa%2FadKs1v%2BrVa%2Bjrl3tjHRjqgPUuyVUINl565lyDSEZIu4%2FXudnJVfb2%2B10raa40euz443QnVUWK7rxsawft9HjGhjLnG0%2Bh0qOpXKjef8RYjInzy1PE6fFMJOLe4VRnLMFTxOxVFL0RuBxB0BESdR%2BCnRMgYbjVQtp9dEvpgu7%2Bi9IJOiZLL%2F6CKMZk6bdrSLs%2FrEnRr9xV0uZCpQb9dgnRH0F0RsjsKfK9BYjiFEn%2BBQT7lay%2B2ELaPWwZqSDYxRsN6tdYOwlWIh5FKzUaBSu01m6uuDwOEho1XC9mU4OEGEG0R5B8AGoWYY0DKxzYtgObOeiyi0rieV7ksoS6jWaSBCzicchcj0Ztj3pu2IBNJn8YIM8GSOQAid5HpvexIx6e169C259htksY5sDkBD1WouAEhSEoKEEhCIqcoOiVR0wa35SPmDQ29mbZn%2BWgHKq8c0CPVN7hKQHVA2hWHmSX5MrEQ6f1dxM7%2FKISMK8ZeFHN9%2F3Aq4XUcxu%2B61EeNuu8WY84jCghzAKocbAnxuTN538gE2PyyvdfI6anMPIUibgCal8HLUrQ7RJ76YnNVmq8x3U15TmYKpHlS8h3nQN5Sa5Pp7jZegyenN38PZgGEl0i0yU%2BF88IOvLB8I4qyOEdVRjypJXloiv26GTCd3Oa88VvP%2BS7hdJsc90Mvnk3mQCT8uQeN%2FkWTZlIO4Z8tyYY43pD6YSTnzbNJzy%2Bbc32mtWpzbZuv7ex2c00N0aodAQ6WdY%2FNRIxJq9dvzdd3uUfWxB6BG1LdO0ZmQWEGiHJ9mGyuX6jCLScc%2BLMQWHLofbj%2BaUUBJLPexqXMP%2Fr43k91HTymorywDxARy%2BA5veRdkv0dImeLEHlAMYuDvNMn918PpMRy4VhLPXCYSy1%2FGpq8%2BR4AiMuKlEQuDRs1r0oojyKa36jHXqMUr8W%2BmFIA%2BRm3F5%2BGP0DAAD%2F%2FwEAAP%2F%2FZumBvZYEAAA%3D IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectexcessstumbledvisited.com FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn%2FzHTPuIfFGCPBuLPsruhNqrtqJmVqupqqrulJTsEF2eOsVy%2Bdb5INapTdq%2BAikwUPASGzpxzMxZNXhb0qMw6O%2Bw713qvvK%2Fjqe%2B%2FLA3tJfFh6sf6R2hNS0tV61a0sf%2Bp5NypbIrX9Sr8RfhbWblR0751mWHXfqnzAkx216rue63quV9kQmrdVf3UCQmQnTa%2FadKs1v%2BrVa%2Bjrl3tjHRjqgPUuyVUINl565lyDSEZIu4%2FXudnJVfb2%2B10raa40euz443QnVUWK7rxsawft9HjGhjLnG0%2Bh0qOpXKjef8RYjInzy1PE6fFMJOLe4VRnLMFTxOxVFL0RuBxB0BESdR%2BCnRMgYbjVQtp9dEvpgu7%2Bi9IJOiZLL%2F6CKMZk6bdrSLs%2FrEnRr9xV0uZCpQb9dgnRH0F0RsjsKfK9BYjiFEn%2BBQT7lay%2B2ELaPWwZqSDYxRsN6tdYOwlWIh5FKzUaBSu01m6uuDwOEho1XC9mU4OEGEG0R5B8AGoWYY0DKxzYtgObOeiyi0rieV7ksoS6jWaSBCzicchcj0Ztj3pu2IBNJn8YIM8GSOQAid5HpvexIx6e169C259htksY5sDkBD1WouAEhSEoKEEhCIqcoOiVR0wa35SPmDQ29mbZn%2BWgHKq8c0CPVN7hKQHVA2hWHmSX5MrEQ6f1dxM7%2FKISMK8ZeFHN9%2F3Aq4XUcxu%2B61EeNuu8WY84jCghzAKocbAnxuTN538gE2PyyvdfI6anMPIUibgCal8HLUrQ7RJ76YnNVmq8x3U15TmYKpHlS8h3nQN5Sa5Pp7jZegyenN38PZgGEl0i0yU%2BF88IOvLB8I4qyOEdVRjypJXloiv26GTCd3Oa88VvP%2BS7hdJsc90Mvnk3mQCT8uQeN%2FkWTZlIO4Z8tyYY43pD6YSTnzbNJzy%2Bbc32mtWpzbZuv7ex2c00N0aodAQ6WdY%2FNRIxJq9dvzdd3uUfWxB6BG1LdO0ZmQWEGiHJ9mGyuX6jCLScc%2BLMQWHLofbj%2BaUUBJLPexqXMP%2Fr43k91HTymorywDxARy%2BA5veRdkv0dImeLEHlAMYuDvNMn918PpMRy4VhLPXCYSy1%2FGpq8%2BR4AiMuKlEQuDRs1r0oojyKa36jHXqMUr8W%2BmFIA%2BRm3F5%2BGP0DAAD%2F%2FwEAAP%2F%2FZumBvZYEAAA%3D HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 08a0f9fc505e3d69d3c93887657b7c07
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=116 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=116 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectexcessstumbledvisited.com FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=116 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css | 104.21.70.253 | 200 OK | 11 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css IP104.21.70.253:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hashfc638645a938f69e69360c75335ffd1a 143132fb8361c3ad0acf88cb70bf0b07c0ecc2d4 7ef76aab275d0221c68602d18f81b4285b280756f0f71d535ed8b5b889bc2f90
GET /sb/chat/mob/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 133698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y0HTojgjK0%2BEfHNymWsTkU1%2FlpGc%2BK8EMUHWGmGcLx3WdiVrg%2B3qW9J3JQh2IE0ZOWluR9jm3T28HOEIX%2BGUA9LdWlZSQgpBaN4muRvKVPWcy4cFgTIQVbaiQClaYnsIJdVRUF%2BCcKv6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793833f091956b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.up-4ever.net/favicon.ico | 104.21.24.34 | 200 OK | 12 kB |
URL GET HTTP/3www.up-4ever.net/favicon.ico IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typePNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced Hashc683290b646aca6f80738ece333eced7 487e2e69e5c40029b4e698bc6ecc08c87644c752 71da8cb518e56fd83e092bdbcd3d69afee6caa8ba8e6947e5628ba5cd00e229b
GET /favicon.ico HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636; dom3ic8zudi28v8lr6fgphwffqoz0j6c=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd%3A3%3A1; pp_main_277d9998d55ef26437437a1f16c8e6e4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:17 GMT
content-type: image/x-icon
last-modified: Mon, 10 Jun 2019 20:35:15 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 260
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1jonHGj9Ew0EmM0OZtvM3ePf%2BMDfsa4rx9838aA0U9zAU%2Bo5j%2Bk2R7zyJxXL1YZWgsPWB547AysIrppfptouVh6aGB2eeyzuYj7cTfKD2qfj9QxanQfUksziHrdk0sc3S06f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382fc18a65699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 1.2 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typegzip compressed data, max compression Hash2104982a7c81f7a6189907be2947729e debdc2b2ef4ea0dc7a2e486b1e9b11c3fb279e89 01ea7295cf7ae696aababc79c3af3f88a53b833c22a55da9ee4165cb5b969897
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 04:57:28 GMT
date: Wed, 24 Apr 2024 04:57:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png | 45.133.44.9 | 200 OK | 14 kB |
URL GET HTTP/2cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced Hash962ac416cce3fad636d4904386c8d3d4 811166fceb971353dc6a9ea3a153367f20b47592 ec6c8e1c030499a846897265d0c1f66dedc6ece17c1ea6006b700faf37e73555
GET /si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: image/png
content-length: 14496
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:05:10 GMT
etag: "656d25c6-38a0"
expires: Fri, 26 Apr 2024 04:57:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=15 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=15 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectexcessstumbledvisited.com FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=15 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=49 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=49 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectexcessstumbledvisited.com FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=49 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js | 104.21.70.253 | 200 OK | 32 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js IP104.21.70.253:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hash561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc
GET /sb/chat/mob/ssp/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:09 GMT
etag: W/"62134c65-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 4745304
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rWSN4vrd5GiVMGpJjQUGCNaawtkNh2oS0wVkrLvzyKmLWS1S%2FFG71i9IKgT%2B3DiBvJ191LTS3pX7UECu3Y%2BXKuJGGhD0%2B%2FwKw9PaZsJmAPRKWGoL%2B8nS51BGUTtleQDm%2BlnFZ4P1WJgp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793833fba29569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 97377
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| excessstumbledvisited.com/pixel/sbs?c=1 | 192.243.59.12 | 200 OK | 0 B |
URL GET HTTP/1.1excessstumbledvisited.com/pixel/sbs?c=1 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectexcessstumbledvisited.com FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbs?c=1 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 44990
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.up-4ever.net/js/jquery.cookie.js | 104.21.24.34 | 200 OK | 3.1 kB |
URL GET HTTP/3www.up-4ever.net/js/jquery.cookie.js IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeJavaScript source, ASCII text, with very long lines (3441), with no line terminators Hash7e208f9bc7ca201678c76d96e899349c afa52ce81c7656bf1a8605bd2cbd38c2be00cd9b 0f0e74eaa31ad2d6c07d9ceb16efefc78aae0f45328759eb163800d261e53d29
GET /js/jquery.cookie.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Wed, 25 Nov 2020 04:27:31 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l1E0eAqr9OKKX1tKrfwSxDORrYQHsDiZIeBAMHMjkklCSMwx8flbJusaEnPS%2F4hjD8YRnxyCEh%2FKZZiFKLmLaOfk6ofQaRhV1yc%2B1xLtlue8JLe5SqtBESZdNpHV9CZUBVaG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a205699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/js/interface.js?ver=11 | 104.21.24.34 | 200 OK | 135 B |
URL GET HTTP/3www.up-4ever.net/assets/js/interface.js?ver=11 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeJavaScript source, ASCII text, with no line terminators Hashbe6326e55f6d453ae61f9f0cab30f7d7 bd89310ed2b393c76739efe0327c542f92da9988 ea326306169eee7ee8d42c464f6159543917fba92ee221d8721b9aa9ffdb34d8
GET /assets/js/interface.js?ver=11 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Sat, 06 Feb 2021 14:49:51 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SFW5W4InePBh8JcNzJ1DRMy8jQdADCa9ma6zgDhwkRsF3YHi6gvpocaGygdsLR8rMDpCSHIuhUxhLpeIcbTLarZPajWJNcgPUDbI8AwWc20iTeG7cRrX451dyfB9utDMnEcv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f23a355699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css | 104.21.70.253 | 200 OK | 4.6 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css IP104.21.70.253:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (4886), with no line terminators Hash1230b98f01a549572edcd2bf3bdcb4ad ac87a2a752ffb8b5167566183fddd531d7971be9 9a2954fc66ebbb9adf18c2ea4403d2a0a5dedf2928f9905e1fc656f5dc1b208d
GET /sb/chat/mob/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-1209"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 133698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mjdSTPtiaXPzjKPXNXVrJgLB5Nkf6qRuA6Bi27tjfyqjZnzCXBxA1pgKVsTnygd%2BokWCJKgpn5QvLH%2BTyDLpYzG5ydK2OJ6YQt5wRcnkve0utRt1McpLlXCvOuxSLTLIJTT%2Bgvaq3aX7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793833f091856b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.up-4ever.net/js/paging.js?ver=8 | 104.21.24.34 | 200 OK | 2.0 kB |
URL GET HTTP/3www.up-4ever.net/js/paging.js?ver=8 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeHTML document, ASCII text, with very long lines (2061), with no line terminators Hash3a48ced13914d1a07d1b4ea214248203 c7e368174be7d09b7f6571508217ad718a565e21 cffd244467a0ecb4d497c778e712829340b55994446596a38c94d4b4de999914
GET /js/paging.js?ver=8 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Mon, 27 May 2019 03:32:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PgAXz%2B4UdeKAjn5gU3eQRh2okX1YLzqrPeiEkBEiO9nNkQoIn2lgPlZBYMJnDZLdfNT36DMuNIMYGAyjJdjMDzCP4wGi72xva2nMr96wuYByo8iI5sBg%2BY65oPa%2FJSxU%2Fc5%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a215699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/js/bootstrap.min.js?ver=10 | 104.21.24.34 | 200 OK | 51 kB |
URL GET HTTP/3www.up-4ever.net/assets/js/bootstrap.min.js?ver=10 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeJavaScript source, ASCII text, with very long lines (50758) Hash67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /assets/js/bootstrap.min.js?ver=10 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:36:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jF5hEjPcdRr7ggRRv5uyVe8Btxb4vb68EP%2FQ5ru0g5tsowpMPOqumaekHuKYcTUWZQP%2FnPA%2BEa8Ge%2BjNDV9rdbKwWqS%2FmcAsLuRsk6Re22QlEnePJ2pQLQ0dw5HH5CWO%2F3HB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a2f5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html | 45.133.44.3 | 200 OK | 3.0 kB |
URL GET HTTP/2cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html IP45.133.44.3:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3 ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT
File typeHTML document, ASCII text, with very long lines (3229), with no line terminators Hash0b579b1f5697d55d3bc0856975d08243 e68a8e8bc08f86086744aba736df40ca7bea6d01 8ac4909eb5c0efc3278c66a43990535925fb271226f96261415df027fe40cb0c
GET /sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:42 GMT
etag: W/"6242c2fe-ba1"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Wed, 24 Apr 2024 05:57:28 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js | 104.21.70.253 | 200 OK | 382 B |
URL GET HTTP/3cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js IP104.21.70.253:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (411), with no line terminators Hash9ffae600059bf4e6adb35ebb274ae385 6130e466c04551baa2a5d650e6bd5a87daba73a7 a7d15e051fb3d3c31494683306bb7752478354894825b110d26d333cbeaaeb39
GET /sb/chat/mob/ssp/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:08 GMT
etag: W/"62134c64-17e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 133698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vZmCfYnFSekeQaq7CqLI8W9hNwCp0fIGIZ%2B9%2F0Y5lgSrNmi1kIb%2B9w74D6DcBRKDU8eO%2F8cypvTk380cDjzEvZA6KQU%2BvuuV8JsCuh4ibRNmmjJ%2FKKMqO%2BN66WEX%2FhTup7qWIAS8VcEF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879383400a63569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| antennawritersimilar.com/27/7d/99/277d9998d55ef26437437a1f16c8e6e4.js | 192.243.59.12 | 200 OK | 83 kB |
URL GET HTTP/1.1antennawritersimilar.com/27/7d/99/277d9998d55ef26437437a1f16c8e6e4.js IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectantennawritersimilar.com Fingerprint22:3E:41:B5:32:70:99:CF:97:5B:DA:39:8F:98:59:91:64:28:FC:69 ValidityMon, 11 Mar 2024 06:10:40 GMT - Sun, 09 Jun 2024 06:10:39 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashd008c36056187cc684ccc6fd97e1726b 1f2a620e4be2440618aba9ffea528a7b75a467b3 77b575caf3865c8607924ccf02864fa6b4ed63a3924d1c23daa5b2e34cb0c336
GET /27/7d/99/277d9998d55ef26437437a1f16c8e6e4.js HTTP/1.1
Host: antennawritersimilar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e59731b69e5b4924cfa6841283b178ce
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| www.up-4ever.net/assets/js/mdb.min.js?ver=15 | 104.21.24.34 | 200 OK | 420 kB |
URL GET HTTP/3www.up-4ever.net/assets/js/mdb.min.js?ver=15 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size420 kB (419555 bytes) Hash6463535469b0b25b75b2e7a5827ffefa ebd7735850a34a96a130fad72cb395e40772edcf b6e658cbd1f64eba1b117f37d463588e91d21469fbf2cb2332b5d68f4e4b0fee
GET /assets/js/mdb.min.js?ver=15 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:36:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3407
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8xrJ2cMbhJRKPxGQQQN1jDVxmy2ROjC5VGK%2Ff0F6pXGKCSBQUNfoNJPWBVDT0rwg4QRAqfIqPek3MtjXKv6TfdDejx8Kb0BZgT1qjTDspurvGBaNGvEvgx995xWaYP98L2Qi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a315699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/image/flags.png | 104.21.24.34 | 200 OK | 15 kB |
URL GET HTTP/3www.up-4ever.net/assets/image/flags.png IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typePNG image data, 1248 x 11, 8-bit/color RGBA, non-interlaced Hash0e7e0406e09ea913dc344ca9974ec94a 084fcf2d8e96661354a7e563f64801dfd13bead7 0787e30d6145bc8b8b92ed329f664bcc3012162ccba9ef943d7ada480afb74e9
GET /assets/image/flags.png HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/style.css?ver=34
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: image/png
content-length: 15180
last-modified: Thu, 23 May 2019 00:36:04 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 36
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t38t1mHCAhWLJEf2aTS60zXgl4BXWyefkt5kmY%2Ba6jq%2BHTSI4UgS%2BDjxbvL0Wx73ki8aRdWVu%2FWKfy2Bt3AY1o7im%2B8Upeayx4zaJ6gzIWtt3vYxhZt1pJ7tSJw6YW3%2BVWuZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f34aff5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/font/roboto/Roboto-Regular.woff2 | 104.21.24.34 | 200 OK | 49 kB |
URL GET HTTP/3www.up-4ever.net/assets/font/roboto/Roboto-Regular.woff2 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 49236, version 1.0 Hash2751ee43015f9884c3642f103b7f70c9 ed1558b0541f5e01ce48c7db1588371b990eec19 b5c9c23bd12593523a46d79dd0aee80e3226bbde4c9ac05fc30a95e2c1510de0
GET /assets/font/roboto/Roboto-Regular.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 49236
last-modified: Thu, 23 May 2019 00:36:13 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DBoTMsPVE120Z%2FSyL6yQKIYxvUC5TmcAzvih63PltMOJDFdjcxUKQY3VazJuz8ikNx8O526n1%2BIKSGzvqPKiGZMJROnEjkqnyjGCXznDzhs8aszeaG7nxaeaGmX6gpH%2B3m%2Fn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f86e1d5699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png | 104.21.70.253 | 200 OK | 6.0 kB |
URL GET HTTP/3cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png IP104.21.70.253:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typePNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced Hashc489ce2c491a22ee37a55e26a92dfd73 2fa588ab09e94dd902e5bd24b48f98ad1949c9d6 1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/chat/mob/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 21 Feb 2022 08:25:06 GMT
etag: "62134c62-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6014652
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jjH92HVVj%2F0x9cNBEd%2BhnW0y2qIgmHB4XCYym5jEUZX2M7lNbm9eAHpasstmw3H2D3vBQM5iHZaJAaiRChcRChHEBCq0UUcZlgCPFX5Kp%2Bg3fKaA6KZyuDVU01C8pXN2tVYlZIQ5uHkO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793833fba24569f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/js/bootstrap-confirm.js | 104.21.24.34 | 200 OK | 3.1 kB |
URL GET HTTP/3www.up-4ever.net/js/bootstrap-confirm.js IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (3469), with no line terminators Hashe078a8f899c8ac08b68932a9dd44d787 4c2252ee670e50c13023b94f7e38a6e65541d00c 6610f871871141cac2c4a8b86889afb3b2d0ae56b657d23dbb85f913a03358df
GET /js/bootstrap-confirm.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:40:05 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ntl%2FoXsEhqG3XKgQIboP1%2BtT5Ul9Q0wyKLmsr0CARdfcm6tT%2B2zwcUG2yXCkrerb9C70pa%2BYblpVGdYaSmcg7N%2BIBkpwD5T2BelUQwsPJNfx9keJNyGzjtXjtMx561lhpZ1y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f23a385699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/font/roboto/Roboto-Light.woff2 | 104.21.24.34 | 200 OK | 49 kB |
URL GET HTTP/3www.up-4ever.net/assets/font/roboto/Roboto-Light.woff2 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 49380, version 1.0 Hash69f8a0617ac472f78e45841323a3df9e bbdc28b887400fcb340b504ec2904993af42a5d7 94a0ac8d73bb60a9cbe27a4fa36669104f6ffa37c8ff2df29313a6c0d3b64a75
GET /assets/font/roboto/Roboto-Light.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 49380
last-modified: Thu, 23 May 2019 00:36:13 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cSfAlr%2Fk0THNWaAW9MWHRuqFFbe87bmC2%2FRTI5QMf42iaYotBnL1dJI4SgSVWKXgA1ntWrNcnyX4K2J2ulqD41maWnAmNlhmITSCELJXaoahFCFgR7yWUMT9nMDE0Jw869n%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f34b055699-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.up-4ever.net/assets/js/popper.min.js?ver=10 | 104.21.24.34 | 200 OK | 20 kB |
URL GET HTTP/3www.up-4ever.net/assets/js/popper.min.js?ver=10 IP104.21.24.34:443
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectup-4ever.net FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT
File typeJavaScript source, ASCII text, with very long lines (20363) Hashc055b8c12988ec2b1f7238d85e79f4b4 5958a52438c8d753d692b11b5419bd1490c2655b 58cb6a78afc204b7165e947c965cbce6296ee0e587fbab3e12c0d2b6378e9004
GET /assets/js/popper.min.js?ver=10 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:36:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uw5qpq30C1o8MF%2B%2FoeSNUh9VAGhowHgPSSaIe3dMN3jZWE84ELQi4EmnL5u6UvUSqKnebAjooHPcsNi8h3irgqZZz4PRRIFA7zYUUf8gYtaMDRKpo%2BwfPaS5oTq9UcIBhlqj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a2a5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=48 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=48 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectexcessstumbledvisited.com FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=48 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| unseenreport.com/pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=3d1931742223146a108201ae695e957e&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=3d1931742223146a108201ae695e957e&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=3d1931742223146a108201ae695e957e&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:18 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 816561cfeee7b7931c5634676aa79a86
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| excessstumbledvisited.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn3%2FPWMe1iMMRKMO8vuit6kuqp6Uqamq6nqmp7kFFyQPc569dL5JtmgRtm9Ci4yWfAQEDJ7ysFcPHlV2Ksy4%2BC471Dvvfq%2Bgq%2B%2B9748cJekAkcv1j%2FSe1Ipulov%2B6XlT4PgRmlLJq5f6jcbnzVqN0qm906rUfbfKn0g2I5erfiB7wd%2BUNqQRsS6vzoBIdOTVlBu%2BeVapRzUa%2Bibl3vrPFjqgfcuyVVIPl565l2DZCMk3cfrwu5kOn37%2Fa5TNNMGPX78cbKT6DxBd17GxkOcHM%2FY0PZ84yl0cjSVC937jxjJMfF%2BeYooOZ6JRNQ7nOqMFESCiL%2BKvDeCUCNIOgLT9yH5OQEYx602ku6jW9rkdPdflE7QMVl68RdkPiZLv11D0v1hTcl%2B6a5WLpM6sejHBWR%2FBNkZIXWnyPYWIPNTsOwLSP4rWX2xhaR72LZKQ%2FKLN5q0UuMxq66EIgxXajSsrtBa3FrxRVRlNGz6QcSnBkk5goxHUGIAahfhrAcnPbjYg0s9dPlFiQVBEPqcUb%2FZYqzKQxE1uB%2FQMA5o4DeacGzyhwGydACmBmBmH6nZx458eF6%2FCuN%2Bht0uYLkHmxH0eIFcEOSWIKcEuSTIM4K8VxxxZSu2eMSVdVEwy5VZrhZDnXUO6JHOOiIhoGYAw4uD9JJcmXjotf9uYUdclKo8aFWDsFapVKpBrUEDv1nxAyoarbpo1UMBKwtIuwBqPezJMXnz%2BR9I5Zi88v3XiOgprDoFk1dA3eugeQG6XWAvOXHpSk30hCknIgPXBdJsCdmud6AuyfXpFDfbjyHY2c3fq9MAMwVSU%2BBz%2BYygox4M7%2BicHN7RuSVP2mkmu3KPTiZ8N6OZWPz2Q7Gba8M31%2B3gm3fZBJiUJ%2FeEzbZowmXSseS7Ncm5MBvaMEF%2B2rSfiOi2s9trziQu3br93sZmNzXCWqmTEehkWf80YHJMXrt%2Bb7q8yz%2B2Ic0IxhXoujMyC0g9Akv3YdO5fqsJjJpzotRD7oqhqUTzSyUJlJj3NCpg%2F9dH83po6OQ1lcWBfYCOWQDN7iPpFuiZAj1VgKoBrFscZqk5u%2Fl8JiNSC8NImYXDSBn11dTmyfEEVl6Uqj4PIxGLMBK1ei0WjEf1euSzmEVV3mwyZHYcLz8M%2FwEAAP%2F%2FAQAA%2F%2F%2FmPVRVlgQAAA%3D%3D | 192.243.59.20 | 200 OK | 0 B |
URL GET HTTP/1.1excessstumbledvisited.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn3%2FPWMe1iMMRKMO8vuit6kuqp6Uqamq6nqmp7kFFyQPc569dL5JtmgRtm9Ci4yWfAQEDJ7ysFcPHlV2Ksy4%2BC471Dvvfq%2Bgq%2B%2B9748cJekAkcv1j%2FSe1Ipulov%2B6XlT4PgRmlLJq5f6jcbnzVqN0qm906rUfbfKn0g2I5erfiB7wd%2BUNqQRsS6vzoBIdOTVlBu%2BeVapRzUa%2Bibl3vrPFjqgfcuyVVIPl565l2DZCMk3cfrwu5kOn37%2Fa5TNNMGPX78cbKT6DxBd17GxkOcHM%2FY0PZ84yl0cjSVC937jxjJMfF%2BeYooOZ6JRNQ7nOqMFESCiL%2BKvDeCUCNIOgLT9yH5OQEYx602ku6jW9rkdPdflE7QMVl68RdkPiZLv11D0v1hTcl%2B6a5WLpM6sejHBWR%2FBNkZIXWnyPYWIPNTsOwLSP4rWX2xhaR72LZKQ%2FKLN5q0UuMxq66EIgxXajSsrtBa3FrxRVRlNGz6QcSnBkk5goxHUGIAahfhrAcnPbjYg0s9dPlFiQVBEPqcUb%2FZYqzKQxE1uB%2FQMA5o4DeacGzyhwGydACmBmBmH6nZx458eF6%2FCuN%2Bht0uYLkHmxH0eIFcEOSWIKcEuSTIM4K8VxxxZSu2eMSVdVEwy5VZrhZDnXUO6JHOOiIhoGYAw4uD9JJcmXjotf9uYUdclKo8aFWDsFapVKpBrUEDv1nxAyoarbpo1UMBKwtIuwBqPezJMXnz%2BR9I5Zi88v3XiOgprDoFk1dA3eugeQG6XWAvOXHpSk30hCknIgPXBdJsCdmud6AuyfXpFDfbjyHY2c3fq9MAMwVSU%2BBz%2BYygox4M7%2BicHN7RuSVP2mkmu3KPTiZ8N6OZWPz2Q7Gba8M31%2B3gm3fZBJiUJ%2FeEzbZowmXSseS7Ncm5MBvaMEF%2B2rSfiOi2s9trziQu3br93sZmNzXCWqmTEehkWf80YHJMXrt%2Bb7q8yz%2B2Ic0IxhXoujMyC0g9Akv3YdO5fqsJjJpzotRD7oqhqUTzSyUJlJj3NCpg%2F9dH83po6OQ1lcWBfYCOWQDN7iPpFuiZAj1VgKoBrFscZqk5u%2Fl8JiNSC8NImYXDSBn11dTmyfEEVl6Uqj4PIxGLMBK1ei0WjEf1euSzmEVV3mwyZHYcLz8M%2FwEAAP%2F%2FAQAA%2F%2F%2FmPVRVlgQAAA%3D%3D IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.up-4ever.net/g6t3mf26qbcq CertificateIssuerLet's Encrypt Subjectexcessstumbledvisited.com FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn3%2FPWMe1iMMRKMO8vuit6kuqp6Uqamq6nqmp7kFFyQPc569dL5JtmgRtm9Ci4yWfAQEDJ7ysFcPHlV2Ksy4%2BC471Dvvfq%2Bgq%2B%2B9748cJekAkcv1j%2FSe1Ipulov%2B6XlT4PgRmlLJq5f6jcbnzVqN0qm906rUfbfKn0g2I5erfiB7wd%2BUNqQRsS6vzoBIdOTVlBu%2BeVapRzUa%2Bibl3vrPFjqgfcuyVVIPl565l2DZCMk3cfrwu5kOn37%2Fa5TNNMGPX78cbKT6DxBd17GxkOcHM%2FY0PZ84yl0cjSVC937jxjJMfF%2BeYooOZ6JRNQ7nOqMFESCiL%2BKvDeCUCNIOgLT9yH5OQEYx602ku6jW9rkdPdflE7QMVl68RdkPiZLv11D0v1hTcl%2B6a5WLpM6sejHBWR%2FBNkZIXWnyPYWIPNTsOwLSP4rWX2xhaR72LZKQ%2FKLN5q0UuMxq66EIgxXajSsrtBa3FrxRVRlNGz6QcSnBkk5goxHUGIAahfhrAcnPbjYg0s9dPlFiQVBEPqcUb%2FZYqzKQxE1uB%2FQMA5o4DeacGzyhwGydACmBmBmH6nZx458eF6%2FCuN%2Bht0uYLkHmxH0eIFcEOSWIKcEuSTIM4K8VxxxZSu2eMSVdVEwy5VZrhZDnXUO6JHOOiIhoGYAw4uD9JJcmXjotf9uYUdclKo8aFWDsFapVKpBrUEDv1nxAyoarbpo1UMBKwtIuwBqPezJMXnz%2BR9I5Zi88v3XiOgprDoFk1dA3eugeQG6XWAvOXHpSk30hCknIgPXBdJsCdmud6AuyfXpFDfbjyHY2c3fq9MAMwVSU%2BBz%2BYygox4M7%2BicHN7RuSVP2mkmu3KPTiZ8N6OZWPz2Q7Gba8M31%2B3gm3fZBJiUJ%2FeEzbZowmXSseS7Ncm5MBvaMEF%2B2rSfiOi2s9trziQu3br93sZmNzXCWqmTEehkWf80YHJMXrt%2Bb7q8yz%2B2Ic0IxhXoujMyC0g9Akv3YdO5fqsJjJpzotRD7oqhqUTzSyUJlJj3NCpg%2F9dH83po6OQ1lcWBfYCOWQDN7iPpFuiZAj1VgKoBrFscZqk5u%2Fl8JiNSC8NImYXDSBn11dTmyfEEVl6Uqj4PIxGLMBK1ei0WjEf1euSzmEVV3mwyZHYcLz8M%2FwEAAP%2F%2FAQAA%2F%2F%2FmPVRVlgQAAA%3D%3D HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9a1f1d566cca91e80500243a63ac1461
Strict-Transport-Security: max-age=0; includeSubdomains
|
|