Report - www.up-4ever.net/g6t3mf26qbcq

Report Overview

Submitted URL
www.up-4ever.net/g6t3mf26qbcq
IP
104.21.24.34
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-24 04:57:43
Access
public
Website Title
Download
Final URL
www.up-4ever.net/g6t3mf26qbcq
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-04-23	433 B	423 B	18.185.247.192
capaciousdrewreligion.com	unknown	2023-11-07	2023-11-27	2024-04-22	415 B	327 B	172.240.108.68
cdn.barscreative1.com	25648	2021-09-08	2021-09-16	2024-04-21	492 B	3.4 kB	45.133.44.3
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15	2024-04-21	2.2 kB	58 kB	104.21.70.253
antennawritersimilar.com	unknown	2024-01-10	2024-01-12	2024-02-22	446 B	83 kB	192.243.59.12
www.up-4ever.net	unknown	2018-08-22	2019-05-16	2024-03-20	15 kB	1.5 MB	104.21.24.34
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-04-22	423 B	95 kB	142.250.74.168
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-04-23	411 B	38 kB	188.114.97.1
acknowledgecalculated.com	unknown	unknown	No data	No data	937 B	17 kB	192.243.61.227
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-04-23	1.5 kB	847 B	192.243.59.20
excessstumbledvisited.com	unknown	unknown	No data	No data	7.5 kB	13 kB	192.243.59.20
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-04-23	454 B	15 kB	45.133.44.9
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-22	1.0 kB	33 kB	216.58.207.227
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2024-04-22	737 B	447 B	216.239.34.36
www.google.no	25607	2001-02-26	2016-04-05	2024-04-23	580 B	578 B	142.250.74.163
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-23	416 B	1.9 kB	142.250.74.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-23	medium	unseenreport.com	Sinkholed
2024-04-23	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	antennawritersimilar.com/27/7d/99/277d9998d55ef26437437a1f16c8e6e4.js	83 kB	2024-04-24	2024-04-24
Pretty URL antennawritersimilar.com/27/7d/99/277d9998d55ef26437437a1f16c8e6e4.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:57:51 Last Seen2024-04-24 06:57:52 Times Seen2 Hash d008c36056187cc684ccc6fd97e1726b 1f2a620e4be2440618aba9ffea528a7b75a467b3 77b575caf3865c8607924ccf02864fa6b4ed63a3924d1c23daa5b2e34cb0c336 Loading...

	unknown	37 B	2023-04-11	2024-05-06
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 21:31:25 Last Seen2024-05-06 05:10:47 Times Seen234385 Hash 29d0c84b9d1d8da446a6062c6a840ad9 6d6b3a6065667c7c50d92f3889c85ed65a9ad784 3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1 Loading...

	www.up-4ever.net/js/bootstrap-confirm.js	3.1 kB	2023-03-07	2024-05-05
Pretty URL www.up-4ever.net/js/bootstrap-confirm.js IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:52:11 Last Seen2024-05-05 15:34:19 Times Seen311 Hash ed107aaa46561415692b9d4548c7c615 c23678dd36a64ddd29d8cc102d1b1bebf922875f ecf662e9f1d25bd142e6b4e5618012a3af7af1a2cd7504d67b90d59ca344ef2f Loading...

	www.up-4ever.net/assets/js/mdb.min.js?ver=15	420 kB	2023-03-07	2024-05-04
Pretty URL www.up-4ever.net/assets/js/mdb.min.js?ver=15 IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:52:11 Last Seen2024-05-04 22:31:48 Times Seen209 Hash 6463535469b0b25b75b2e7a5827ffefa ebd7735850a34a96a130fad72cb395e40772edcf b6e658cbd1f64eba1b117f37d463588e91d21469fbf2cb2332b5d68f4e4b0fee Loading...

	acknowledgecalculated.com/3d/19/31/3d1931742223146a108201ae695e957e.js	44 kB	2024-04-24	2024-04-24
Pretty URL acknowledgecalculated.com/3d/19/31/3d1931742223146a108201ae695e957e.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:57:51 Last Seen2024-04-24 06:57:51 Times Seen2 Hash 0bdc8856442738017516fa3ee9be6bc0 f3836fc87147c5bcc6e725e0a6dfd70802635786 bafda69efcd116ee8de60c9f75fb301e6b3bf0e246a436313d173c89a2001986 Loading...

	www.up-4ever.net/assets/js/jquery-3.3.1.min.js	87 kB	2023-03-07	2024-05-06
Pretty URL www.up-4ever.net/assets/js/jquery-3.3.1.min.js IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-05-06 05:23:16 Times Seen108856 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	www.up-4ever.net/js/jquery.paging.js	19 kB	2023-03-07	2024-05-05
Pretty URL www.up-4ever.net/js/jquery.paging.js IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:22 Last Seen2024-05-05 15:43:19 Times Seen3037 Hash d7a2c1c7af2a004a6d68e1e55b1cfb46 7fd6daa7076c30381880519ad06ef5639b19ee28 c8ecfe747c979fbd87624913200a9237343679923b495885bced089b80fc84f6 Loading...

	www.up-4ever.net/js/paging.js?ver=8	2.0 kB	2023-03-07	2024-05-04
Pretty URL www.up-4ever.net/js/paging.js?ver=8 IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:52:11 Last Seen2024-05-04 22:31:48 Times Seen135 Hash 72fd099a2f1b24e8ad211308041e48c2 a1d45a105cce69e607050011242dd10f79a181d0 20bc222f73096f80397fe7b936bf6c6ca21f77dc5eb9ae91244154a98a207a64 Loading...

	www.up-4ever.net/g6t3mf26qbcq	153 B	2023-10-15	2024-05-04
Pretty URL www.up-4ever.net/g6t3mf26qbcq IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-15 17:23:23 Last Seen2024-05-04 22:31:47 Times Seen101 Hash 0bc2c454838e48c7f73e104e0d828337 73ba0b3eec7cb4bd4a4baa5e9c3d7930df9700e8 b5e379a52d2a40b8eb52ea0c562b9a961d31cf9eb930391cf0f8a1d79d5edd67 Loading...

	www.up-4ever.net/assets/js/popper.min.js?ver=10	20 kB	2023-03-07	2024-05-04
Pretty URL www.up-4ever.net/assets/js/popper.min.js?ver=10 IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:52:11 Last Seen2024-05-04 22:31:48 Times Seen356 Hash c055b8c12988ec2b1f7238d85e79f4b4 5958a52438c8d753d692b11b5419bd1490c2655b 58cb6a78afc204b7165e947c965cbce6296ee0e587fbab3e12c0d2b6378e9004 Loading...

	cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js	90 kB	2023-03-07	2024-05-06
Pretty URL cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js IP 104.21.70.253 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:04:00 Last Seen2024-05-06 04:34:51 Times Seen4017 Hash 561acb3e541133bbdd2c0c19f8ee35a1 ffd1353cf3f77d25f801c84d8208613eb0d3d548 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-06
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-06 04:34:50 Times Seen2308 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	unknown	564 B	2024-04-24	2024-04-24
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:57:51 Last Seen2024-04-24 06:57:51 Times Seen1 Hash ea0732aa1e93c881bdf780bc84565a85 1f5e0058ed1ef1883775a6ff97b108e098441d28 7e7c3d1ec434a2af422b6cffdedd20dd84326fec75f80036cd4cffe3095d0800 Loading...

	www.up-4ever.net/js/jquery.cookie.js	3.1 kB	2023-03-07	2024-05-05
Pretty URL www.up-4ever.net/js/jquery.cookie.js IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:22 Last Seen2024-05-05 15:43:19 Times Seen2544 Hash ff14e4812b7f512e620b1ad35542bcfc c40c5f777e7a2f63e7b731b3cdb1fe9c806b23ae c4fb91befcf134b81ecfa1c586e1f9d6426c8f4fc1f6c130ac1fddb49ab5df96 Loading...

	www.googletagmanager.com/gtag/js?id=G-BH3KCF6H24	270 kB	2024-04-24	2024-04-24
Pretty URL www.googletagmanager.com/gtag/js?id=G-BH3KCF6H24 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-24 06:57:51 Last Seen2024-04-24 06:57:51 Times Seen2 Hash 11399ffde021543790d86c19f7449bc8 e0c98e9e53d49eca9058bd338dcafa97f84854c4 06109d764a2f95e931672d49b10856708a1a99d5048b91548acb79fdf1fcd696 Loading...

	www.up-4ever.net/assets/js/bootstrap.min.js?ver=10	51 kB	2023-03-07	2024-05-06
Pretty URL www.up-4ever.net/assets/js/bootstrap.min.js?ver=10 IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-05-06 04:21:17 Times Seen246709 Hash 67176c242e1bdc20603c878dee836df3 27a71b00383d61ef3c489326b3564d698fc1227c 56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4 Loading...

	www.up-4ever.net/assets/js/interface.js?ver=11	135 B	2023-03-07	2024-05-04
Pretty URL www.up-4ever.net/assets/js/interface.js?ver=11 IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:52:11 Last Seen2024-05-04 22:31:47 Times Seen144 Hash 2ca9351527112fbc7dca206f84ea5524 2f3d792c91412558c7060080b72a81fd297ef64e 0a61490d8aeb374bac98abdad64f4d036b7117d850c740dc4ebd5be7c0708e22 Loading...

	capaciousdrewreligion.com/advertisers.js	0 B	2023-03-07	2024-05-06
Pretty URL capaciousdrewreligion.com/advertisers.js IP 172.240.108.68 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-06 05:40:56 Times Seen37373257 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.up-4ever.net/g6t3mf26qbcq	194 B	2023-03-07	2024-05-04
Pretty URL www.up-4ever.net/g6t3mf26qbcq IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 23:52:11 Last Seen2024-05-04 22:31:47 Times Seen105 Hash 7b6bba7d4a9952542fc729c25130c2d4 37a7d946a08461b0c84011c71317555e1293f5ee 3dfbca52099e0c1e4aac2e292e811ea8ff217111b02d2eafae23d584e4e8cf4b Loading...

	www.up-4ever.net/assets/js/perfect-scrollbar.min.js	18 kB	2023-03-07	2024-05-05
Pretty URL www.up-4ever.net/assets/js/perfect-scrollbar.min.js IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:24 Last Seen2024-05-05 18:34:41 Times Seen2251 Hash 4a10bcfa0a9c9fa9d503b5a498cac31e c4f6c403e99fb37cb496c3844b332823db7c5837 a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634 Loading...

	www.up-4ever.net/js/dialogs.js	2.2 kB	2023-03-07	2024-05-04
Pretty URL www.up-4ever.net/js/dialogs.js IP 104.21.24.34 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:52:11 Last Seen2024-05-04 22:31:48 Times Seen278 Hash 2f96a16e62a9d63834bbb6108f83d90b 7da8c8e56e98e99c6c891f6b44d135fb1276a32c 71fea8e764130d6d3e79297c3c69a3f30ba91e929ef79753dc6fd807d04bc03d Loading...

HTTP Transactions (58)

URL IP Response Size

www.up-4ever.net/assets/image/logo.png

104.21.24.34

200 OK

4.6 kB

URL GET HTTP/3
www.up-4ever.net/assets/image/logo.png
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
PNG image data, 175 x 45, 8-bit/color RGBA, non-interlaced
Size
4.6 kB (4569 bytes)
Hash
278fb0058ebe4de31a5eb8eb7954b7d8
566b41682c2fc1cd6adcee46b17083c5ebdb5707
a9e78b0bfceeaad1dc5d2a5a1a8a08da46dc4164dd7f3303924741a675f8db79

HTTP Headers

GET /assets/image/logo.png HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: image/png
content-length: 4569
last-modified: Thu, 23 May 2019 00:36:03 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GAgEuetpyiydLdhFh83MSKWVepXqHwo%2FhufZOVoPX8Gu4aBPpLqsLo6vdO%2B01h1eyMxTtvhfrGfRI4RZ7eXq5tdZsNwI6lCRxyfNe0ZsbHpN2xMM8PCtTDyyfXN0EQH%2B3PN7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a225699-OSL
alt-svc: h3=":443"; ma=86400

www.googletagmanager.com/gtag/js?id=G-BH3KCF6H24

142.250.74.168

200 OK

95 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-BH3KCF6H24
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5945)
Size
95 kB (94827 bytes)
Hash
11399ffde021543790d86c19f7449bc8
e0c98e9e53d49eca9058bd338dcafa97f84854c4
06109d764a2f95e931672d49b10856708a1a99d5048b91548acb79fdf1fcd696

HTTP Headers

GET /gtag/js?id=G-BH3KCF6H24 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 24 Apr 2024 04:57:15 GMT
expires: Wed, 24 Apr 2024 04:57:15 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94827
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.up-4ever.net/assets/js/perfect-scrollbar.min.js

104.21.24.34

200 OK

21 kB

URL GET HTTP/3
www.up-4ever.net/assets/js/perfect-scrollbar.min.js
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
JavaScript source, ASCII text, with very long lines (18216)
Size
21 kB (20645 bytes)
Hash
4a10bcfa0a9c9fa9d503b5a498cac31e
c4f6c403e99fb37cb496c3844b332823db7c5837
a4ec9d558eeb7bc7359fe7c4820deea2c951fdd8bd34cb0e15727412c7f6c634

HTTP Headers

GET /assets/js/perfect-scrollbar.min.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Sat, 06 Feb 2021 14:52:57 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9ksAvgHDshr7QiUmdKTktDXd7J4BC%2BoIxXVNPYx2Rf1R0z%2B2b3rbHnXihJU7TN9nyZLo1INeL%2F7cvN09e2dlmYB9Rf76hYYvmb4eL8EnkskpiBdLi87l%2BF0ueVUh532%2FL7K2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f23a365699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/js/dialogs.js

104.21.24.34

200 OK

50 kB

URL GET HTTP/3
www.up-4ever.net/js/dialogs.js
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
ASCII text
Size
50 kB (50038 bytes)
Hash
2f96a16e62a9d63834bbb6108f83d90b
7da8c8e56e98e99c6c891f6b44d135fb1276a32c
71fea8e764130d6d3e79297c3c69a3f30ba91e929ef79753dc6fd807d04bc03d

HTTP Headers

GET /js/dialogs.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:40:07 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6133agAIWbuhvaqg0QZQ80t4DWOPhO78x2mpE5hOFuYo4cGvoJFt%2BeAPo2LApRkJ3%2BZJCBrn6XgImLD2rwyvBkUKj%2FRTEEDqcuHDw9KODvwBvMer90hQ6Sl1iqjMV%2BXwVjza"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f23a395699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/font/roboto/Roboto-Bold.woff2

104.21.24.34

200 OK

50 kB

URL GET HTTP/3
www.up-4ever.net/assets/font/roboto/Roboto-Bold.woff2
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 49976, version 1.0
Size
50 kB (49976 bytes)
Hash
39b2c3031be6b4ea96e2e3e95d307814
933b866d09c2b087707a98dab64b3888865eeb96
8b84b2abc336ee61f48a28a697b6ace2333ea5f1868aa15d5aeb2c7beac6d716

HTTP Headers

GET /assets/font/roboto/Roboto-Bold.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 49976
last-modified: Thu, 23 May 2019 00:36:35 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QlFsxhu5v83Uig38MIMSDMNPKvEP2tYFV5GgtNGEKF5Q99PAVKGLJ8zX1B%2FrzCtgoRNuRQdpeRZNO3%2Fot3hFZ7I3RP92qg8C5Fqz%2Fg%2BffZ6FqYg%2B82sNq9z06BHnorRv3hJ%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f34b015699-OSL
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/packages/fontawesome/webfonts/fa-light-300.woff2

104.21.24.34

200 OK

118 kB

URL GET HTTP/3
www.up-4ever.net/assets/packages/fontawesome/webfonts/fa-light-300.woff2
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 117936, version 1.0
Size
118 kB (117936 bytes)
Hash
548f2ded83a195a98ac3651bdf9a6f2e
825e10e15e3cfc58b1c8f0958f33ea6a738a586d
2fc5ace475076f454c946a32e61011a7b8b0ab6fadfb98a73756906b94a5588d

HTTP Headers

GET /assets/packages/fontawesome/webfonts/fa-light-300.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/packages/fontawesome/css/all.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 117936
last-modified: Thu, 23 May 2019 00:36:21 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1n38hN2A28bPwRosSl9CkatOVhQEoQ5WeaAJuisxpNrmIcMyKdOSXDh7MzNhtepNXFYB9dmqA3%2FuID%2FLd2kcpWlGSPbZmqtP2r3VQuL%2BupuHuWPHGyUCQ4XWzicUyEodSG2V"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f35b0d5699-OSL
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/font/roboto/Roboto-Medium.woff2

104.21.24.34

200 OK

50 kB

URL GET HTTP/3
www.up-4ever.net/assets/font/roboto/Roboto-Medium.woff2
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 50224, version 1.0
Size
50 kB (50224 bytes)
Hash
574fd0b50367f886d359e8264938fc37
6cc1b73571af9e827c4e7e91418f476703cd4c4b
1cd5c4b37938d932110ec043ce1cc766d18cacf7a4e7cffa6a539855d5bdc08d

HTTP Headers

GET /assets/font/roboto/Roboto-Medium.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 50224
last-modified: Thu, 23 May 2019 00:36:13 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fbAPgM1j0ztUU2i3IG5LRz%2B26YGIz7PWn%2B0tfwd8celNse%2BVubL0FMnMzlX8t%2F9UuPuR8R3sPCmVvWec5e%2Bd7MVwZEqDaLuqZ2EdB4NvsBY5OWyFgZ87O3S%2BpSfJGZ2tziKa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f35b0a5699-OSL
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/font/roboto/Roboto-Light.woff

104.21.24.34

200 OK

62 kB

URL GET HTTP/3
www.up-4ever.net/assets/font/roboto/Roboto-Light.woff
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
Web Open Font Format, TrueType, length 62316, version 2.980
Size
62 kB (62316 bytes)
Hash
3b813c2ae0d04909a33a18d792912ee7
6300f659be9e834ab263efe2fb3c581d48b1e7b2
2cbb012f1d36c09d3f17100ef2cf8213cbd429d9e519dff536c12ed6f07a0d25

HTTP Headers

GET /assets/font/roboto/Roboto-Light.woff HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff
content-length: 62316
last-modified: Thu, 23 May 2019 00:36:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kqBr8bfOfNDna5gV3Mwc8lOMPyPduRCXtJMCn6kODoxpp%2BCkv%2B8qZ%2BPBdMfl5T6WW10cJxOsOvTIL4Qd4%2F3JHEKNvj1d7qCxouBBea85tuKhSsmO1iVQDDBUVeYiI17wWDks"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f42b8d5699-OSL
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/font/roboto/Roboto-Bold.woff

104.21.24.34

200 OK

63 kB

URL GET HTTP/3
www.up-4ever.net/assets/font/roboto/Roboto-Bold.woff
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
Web Open Font Format, TrueType, length 62876, version 2.980
Size
63 kB (62876 bytes)
Hash
dc81817def276b4f21395f7ea5e88dcd
ee99cd87a59a9a5d4092c83232bb3eec67547425
e7cbaf29c3812b80577cb845b5d359486242338f25620ba65260e265464fe359

HTTP Headers

GET /assets/font/roboto/Roboto-Bold.woff HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff
content-length: 62876
last-modified: Thu, 23 May 2019 00:36:14 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KzU2LZGoERM5heI5tEKIQTyfptwhdeL6%2FE82vZpwCT9l4Hx7lt1tUse9Jdvt2CRn7LMmgvYDxePsan5eXS7xnY5Cu6Vf%2FZREBX0l3ngmPwcYIYMhVNpGIiD9YhBCmoY8Exjm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f42b8c5699-OSL
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/font/roboto/Roboto-Medium.woff

104.21.24.34

200 OK

63 kB

URL GET HTTP/3
www.up-4ever.net/assets/font/roboto/Roboto-Medium.woff
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
Web Open Font Format, TrueType, length 62980, version 2.980
Size
63 kB (62980 bytes)
Hash
fc78759e93a6cac50458610e3d9d63a0
d45f84922131364989ad6578c7a06b6b4fc22c34
72841a4c4171b13ab1edf2c8f8046f0958f2ff608ce4e0d568dd5c6319f8a933

HTTP Headers

GET /assets/font/roboto/Roboto-Medium.woff HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff
content-length: 62980
last-modified: Thu, 23 May 2019 00:36:14 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uukc05NCW6AN1xk2JM6I%2FISi3ggLX8%2FsvbXn9A5rOud80KKbnoFwHkmBKBmoCNAnPEolTI4rxW4Bea0a%2BeeGdp0K3oBEIUZavRd6ErbIhY3np6RuaHURHsG%2B7kuFHDK4a5LG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f42b8f5699-OSL
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/g6t3mf26qbcq

104.21.24.34

200 OK

34 kB

URL User Request GET HTTP/2
www.up-4ever.net/g6t3mf26qbcq
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
34 kB (33717 bytes)
Hash
1d29c124ba63b4329710218b73b64c0d
3a116633d295f817f75111372de42334ba07f97b
9216b12bde64c4e92eedf325e1ebbca76548b2e0ad16f35c4acdf80232418c0e

HTTP Headers

GET /g6t3mf26qbcq HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: text/html; charset=UTF-8
expires: Tue, 23 Apr 2024 04:57:15 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t4dIrcAMVf2UKadOveeK6IqYbt6Oi8MajJrV0ze5rpJeucpm9ALyOlBeKvYYdDLhyZzZfdyshkUDpgYEiDMeWfFHdKV6nh%2FhIs914jv7zTAL8AJke%2FcWrY2vVSv2WCdmjEaX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879382f01f67b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

region1.analytics.google.com/g/collect?v=2&tid=G-BH3KCF6H24&gtm=45je44m0v9132047618za200&_p=1713934636002&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=100267982.1713934636&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713934636&sct=1&seg=0&dl=https%3A%2F%2Fwww.up-4ever.net%2Fg6t3mf26qbcq&dt=Download&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=722

216.239.34.36

204 No Content

0 B

URL POST HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-BH3KCF6H24&gtm=45je44m0v9132047618za200&_p=1713934636002&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=100267982.1713934636&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713934636&sct=1&seg=0&dl=https%3A%2F%2Fwww.up-4ever.net%2Fg6t3mf26qbcq&dt=Download&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=722
IP
216.239.34.36:443
ASN
#15169 GOOGLE

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint1E:33:2E:4B:C3:51:05:B7:73:DC:21:BF:3E:02:B3:16:D8:0B:AB:BB
ValidityMon, 18 Mar 2024 19:37:14 GMT - Mon, 10 Jun 2024 19:37:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-BH3KCF6H24&gtm=45je44m0v9132047618za200&_p=1713934636002&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=100267982.1713934636&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713934636&sct=1&seg=0&dl=https%3A%2F%2Fwww.up-4ever.net%2Fg6t3mf26qbcq&dt=Download&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=722 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.up-4ever.net
date: Wed, 24 Apr 2024 04:57:16 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.up-4ever.net/assets/css/bootstrap.min.css?ver=20

104.21.24.34

200 OK

30 kB

URL GET HTTP/3
www.up-4ever.net/assets/css/bootstrap.min.css?ver=20
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
ASCII text, with very long lines (65324)
Size
30 kB (30258 bytes)
Hash
f23c6a40ff257fdc38f8d415e98afd72
ca6a4c5791db0a03d30be973d3c6704c3f4a22cb
c9adb52c42b2966ed05d4e7eda2695e67285e19546bccfd14eae3c77ad760d5a

HTTP Headers

GET /assets/css/bootstrap.min.css?ver=20 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: text/css
last-modified: Thu, 23 May 2019 00:35:58 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CdJEGGN7hIaxUyFbGMW3rzPb4mJmLDt0KyRsYey4DIJYiKGDjQSEzl6oKhGmnrAB668VMeriaXBqH0yieRo3WdhiwAX%2BGUO8TG2HMI%2BIsgnAuLHZ4OMynhIoUjcIY6SV7%2BxA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f21a115699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/js/jquery-3.3.1.min.js

104.21.24.34

200 OK

39 kB

URL GET HTTP/3
www.up-4ever.net/assets/js/jquery-3.3.1.min.js
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
39 kB (38726 bytes)
Hash
a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef

HTTP Headers

GET /assets/js/jquery-3.3.1.min.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:36:01 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6GABuZsELCsWwAB%2BLVCxsm7%2FaoaQMwi%2BN%2FzOxCmqBWI0lCBnDmKSKMPmxAWBJzIZcy8avhORXe%2BvGZpBOa72%2F4QMk%2F1ec3O4KdbaqRm9WPlxN%2BgMODYd9eypdg7rb3aCK4I4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f21a175699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/packages/fontawesome/css/all.css

104.21.24.34

200 OK

20 kB

URL GET HTTP/3
www.up-4ever.net/assets/packages/fontawesome/css/all.css
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
ASCII text, with very long lines (64746)
Size
20 kB (20157 bytes)
Hash
76c4c14c27df7d7c5f2d9c48300540f0
2ea955693f041d6021b04165344a8c033e0f7e32
99c53397eb2217df916d67abfb55ed71b9db9d9b80d0ffa7813efe1c932bc91f

HTTP Headers

GET /assets/packages/fontawesome/css/all.css HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=64831
last-modified: Thu, 23 May 2019 00:36:20 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z8fZgTTe8sxSQHNQlNFBDQfRjf5BEeZ0YmdOdnypV2ipGp5tWocX26bUxGfjRZXYSwovBsZIf7BRc8VUewpb2ekbAYe%2BR5gFeR57%2FCLnFiUB6yRoQ2OW6%2F5Cn8nErACx%2BInZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f21a0d5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proftrafficcounter.com/stats

18.185.247.192

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.185.247.192:443
ASN
#16509 AMAZON-02

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
b8078e44ac13c3ceca7514238ab85d7e
0f1ff1eac20083125312b47057bf24aa1344ce0c
a93c9cd41874e9465b9c80c4516235904469c9a0a4b2be6be94397a2fa1b0e3b

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.up-4ever.net
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; expires=Sat, 22 Apr 2034 04:57:16 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

www.up-4ever.net/assets/css/style.css?ver=34

104.21.24.34

200 OK

7.3 kB

URL GET HTTP/3
www.up-4ever.net/assets/css/style.css?ver=34
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
ASCII text, with very long lines (5899), with no line terminators
Size
7.3 kB (7256 bytes)
Hash
1f4f9d5363c1959482da04af3fb562e6
3ee422e78243fc14865ca90473a8b7558924e3f5
361956d1f211151543ff2f654ac6b7ce9fbe31b3eaa08832a693f5a18a8a6ad7

HTTP Headers

GET /assets/css/style.css?ver=34 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=6769
last-modified: Mon, 27 May 2019 05:05:41 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1JRcjEbaQW9RMdow3NybEvn72xgpmdvxNNg9HoUEThDavXmaMbxoChkpgQckknoHS4ERTJp9xQ8H7XAZJYCMYLJ9NdUblJpseNzILiO4f1VCea7jyn6KAuJhwhoKyZMu%2FDnn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f21a155699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/js/jquery.paging.js

104.21.24.34

200 OK

54 kB

URL GET HTTP/3
www.up-4ever.net/js/jquery.paging.js
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
JavaScript source, ASCII text
Size
54 kB (53663 bytes)
Hash
d7a2c1c7af2a004a6d68e1e55b1cfb46
7fd6daa7076c30381880519ad06ef5639b19ee28
c8ecfe747c979fbd87624913200a9237343679923b495885bced089b80fc84f6

HTTP Headers

GET /js/jquery.paging.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:40:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s7sniorLOKiUpKJdvzR%2FGLoRihBtYjRAiMbOBU49W5NbZS%2BJX6uSE2mIeSD9866BzIJRhM3pZZ80ifmeuGTA8EtTBuOXal4RQq9%2BnASCxcWX33gcOOPyr%2FIa%2FTYwtEpWGJYs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a1f5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/packages/fontawesome/webfonts/fa-brands-400.woff2

104.21.24.34

200 OK

65 kB

URL GET HTTP/3
www.up-4ever.net/assets/packages/fontawesome/webfonts/fa-brands-400.woff2
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 65316, version 1.0
Size
65 kB (65316 bytes)
Hash
48461ea4e797c9774dabb4a0440d2f56
024b7f9afa49a3658ebd7eee4e1c536502db51fa
974956f1b7b82cecd8ae88a0b685f0d5dfe5c8534c2784e59abeea719eadbbc4

HTTP Headers

GET /assets/packages/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/packages/fontawesome/css/all.css
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 65316
last-modified: Thu, 23 May 2019 00:36:23 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SMi5sZ6aUmgRMNqp0y%2BW%2FT3sh5v1JNcWvtiRE5%2FixVEvll53f06fvwcbe81lpVY1V%2BCo%2BxoVMyN882N9uuzcqR%2BxNrkDpiC5FwHfbVfO4UhPiQFEKVkMXO7qXc7v3S853UwD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f86e1f5699-OSL
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/font/roboto/Roboto-Regular.woff

104.21.24.34

200 OK

62 kB

URL GET HTTP/3
www.up-4ever.net/assets/font/roboto/Roboto-Regular.woff
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
Web Open Font Format, TrueType, length 61736, version 2.980
Size
62 kB (61736 bytes)
Hash
ba3dcd8903e3d0af5de7792777f8ae0d
74734dde8d94e7268170f9b994dedfbdcb5b3a15
2cd6b07b7855716761250290ce3cf447ccc98e793e484294d3fa8ccbb55b016a

HTTP Headers

GET /assets/font/roboto/Roboto-Regular.woff HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636; dom3ic8zudi28v8lr6fgphwffqoz0j6c=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd%3A3%3A1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff
content-length: 61736
last-modified: Thu, 23 May 2019 00:36:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6008
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z21Gr44oun4PlDETWVR%2BkwLlXfK1PuvLRWSsCYHvlJljyqfebdzZQU%2BXf6lgzDQUuqBULU3nfWKYkw607PBXusI5fgxiWVGp76HviV0CW4ykoU0qkmNvV9aax557LTQniu0m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f93eaa5699-OSL
alt-svc: h3=":443"; ma=86400

acknowledgecalculated.com/pixel/purst?dl=0&th=0&sc=0&rs=1296&rd=1296&fd=924&bv=24.4.3467&tmpl=70

192.243.61.227

200 OK

0 B

URL GET HTTP/1.1
acknowledgecalculated.com/pixel/purst?dl=0&th=0&sc=0&rs=1296&rd=1296&fd=924&bv=24.4.3467&tmpl=70
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectacknowledgecalculated.com
Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61
ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1296&rd=1296&fd=924&bv=24.4.3467&tmpl=70 HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 04:57:17 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

acknowledgecalculated.com/3d/19/31/3d1931742223146a108201ae695e957e.js

192.243.61.227

200 OK

16 kB

URL GET HTTP/1.1
acknowledgecalculated.com/3d/19/31/3d1931742223146a108201ae695e957e.js
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectacknowledgecalculated.com
Fingerprint20:65:3B:35:64:3E:0C:63:EF:0A:BC:38:43:BE:15:6A:66:00:8B:61
ValidityTue, 23 Apr 2024 10:59:22 GMT - Mon, 22 Jul 2024 10:59:21 GMT

File type
JavaScript source, ASCII text, with very long lines (44110), with no line terminators
Size
16 kB (15837 bytes)
Hash
0bdc8856442738017516fa3ee9be6bc0
f3836fc87147c5bcc6e725e0a6dfd70802635786
bafda69efcd116ee8de60c9f75fb301e6b3bf0e246a436313d173c89a2001986

HTTP Headers

GET /3d/19/31/3d1931742223146a108201ae695e957e.js HTTP/1.1
Host: acknowledgecalculated.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 04:57:17 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 21bce00ef7ac1a7f453094b749b55946
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

capaciousdrewreligion.com/advertisers.js

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
capaciousdrewreligion.com/advertisers.js
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectcapaciousdrewreligion.com
Fingerprint53:B6:ED:C6:B5:B6:60:3E:6D:02:5A:92:2E:C3:12:74:64:A1:23:DC
ValidityWed, 06 Mar 2024 11:57:32 GMT - Tue, 04 Jun 2024 11:57:31 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 24 Apr 2024 04:57:17 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 96f449f9b93a6462ea76f9e1fd45dc4d
Strict-Transport-Security: max-age=0; includeSubdomains

www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BH3KCF6H24&cid=100267982.1713934636&gtm=45je44m0v9132047618za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=693619596

142.250.74.163

200 OK

42 B

URL GET HTTP/2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BH3KCF6H24&cid=100267982.1713934636&gtm=45je44m0v9132047618za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=693619596
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint4E:BD:F9:72:97:67:A2:4B:EE:E4:B0:03:CD:C8:F3:30:53:27:53:1D
ValidityMon, 18 Mar 2024 20:50:06 GMT - Mon, 10 Jun 2024 20:50:05 GMT

File type
GIF image data, version 89a, 1 x 1
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-BH3KCF6H24&cid=100267982.1713934636&gtm=45je44m0v9132047618za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=693619596 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 24 Apr 2024 04:57:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

unseenreport.com/pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=277d9998d55ef26437437a1f16c8e6e4&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=277d9998d55ef26437437a1f16c8e6e4&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=277d9998d55ef26437437a1f16c8e6e4&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:18 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c19f770642c4a1b916530fc6db809218
Strict-Transport-Security: max-age=0; includeSubdomains

www.up-4ever.net/assets/css/mdb.min.css?ver=25

104.21.24.34

200 OK

63 kB

URL GET HTTP/3
www.up-4ever.net/assets/css/mdb.min.css?ver=25
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
ASCII text, with very long lines (37986)
Size
63 kB (63109 bytes)
Hash
12ea6bdc4f9444ece279c19862653d9b
56299af063ed547b93daee8fa18b90e74b84c434
2d3e15995e3bcde2055bfc93d2523a0160d10386e9bf3a7c7ffc2b278ecb7c91

HTTP Headers

GET /assets/css/mdb.min.css?ver=25 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: text/css
last-modified: Tue, 23 Jun 2020 07:33:15 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tpVqvNgnLW1sYvXslfqcIo14hg2fCnDmyhE1kw80WvQj9KtpLJrJcvEcLBVstA2DFtEvNoPg44Pc46gkS0Ek4dwa3PHbqVwcANUNCOw%2B%2F5wdkhzUvUCTZ%2F7dG9TdWLx0uQN4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f21a135699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

downstairsnegotiatebarren.com/sfp.js

188.114.97.1

200 OK

37 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
37 kB (36943 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: b2b668857472e2449e96d769944d2c1a
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Wed, 24 Apr 2024 04:57:16 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uyDvShMBGk6UsH%2B1wlEfSso6ceW%2BQ85Smd8zNlCERM6ApfAebwuUBIZNbdzqLJKNGSFy%2BAwt6Uw%2FLPeMyaUJzNm51cbp%2FYO6QbCd%2F1SWohKLxsJia7KM9oQCdmgRRdjxwrbh1yhBfym70QdTleKtwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f87b225688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

excessstumbledvisited.com/sbar.json?key=3d1931742223146a108201ae695e957e&uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd%3A3%3A1

192.243.59.20

200 OK

7.8 kB

URL GET HTTP/1.1
excessstumbledvisited.com/sbar.json?key=3d1931742223146a108201ae695e957e&uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd%3A3%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectexcessstumbledvisited.com
FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE
ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT

File type
JSON text data
Size
7.8 kB (7757 bytes)
Hash
34aabec3c500a786e053bf26e6f2bf3d
150f87c6cf9e0f01d544dad634534e122b1cd92f
06de3cc537ae93bcd8a5ad5eaa1dbdf23e482e83eab866c5ae1c6a2dc075a6fe

HTTP Headers

GET /sbar.json?key=3d1931742223146a108201ae695e957e&uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd%3A3%3A1 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:27 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.up-4ever.net
Access-Control-Allow-Origin: https://www.up-4ever.net
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22019897; expires=Thu, 25 Apr 2024 04:57:27 GMT; secure; SameSite=None
uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; expires=Wed, 01 May 2024 04:57:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 25 Apr 2024 04:57:27 GMT; secure; SameSite=None
uncs=1; expires=Thu, 25 Apr 2024 04:57:27 GMT; secure; SameSite=None
pdhtkv29=true; expires=Thu, 25 Apr 2024 04:57:27 GMT; secure; SameSite=None
uncs29=1; expires=Thu, 25 Apr 2024 04:57:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 63a7845bd0057e06af5e779935072b5d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

excessstumbledvisited.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn%2FzHTPuIfFGCPBuLPsruhNqrtqJmVqupqqrulJTsEF2eOsVy%2Bdb5INapTdq%2BAikwUPASGzpxzMxZNXhb0qMw6O%2Bw713qvvK%2Fjqe%2B%2FLA3tJfFh6sf6R2hNS0tV61a0sf%2Bp5NypbIrX9Sr8RfhbWblR0751mWHXfqnzAkx216rue63quV9kQmrdVf3UCQmQnTa%2FadKs1v%2BrVa%2Bjrl3tjHRjqgPUuyVUINl565lyDSEZIu4%2FXudnJVfb2%2B10raa40euz443QnVUWK7rxsawft9HjGhjLnG0%2Bh0qOpXKjef8RYjInzy1PE6fFMJOLe4VRnLMFTxOxVFL0RuBxB0BESdR%2BCnRMgYbjVQtp9dEvpgu7%2Bi9IJOiZLL%2F6CKMZk6bdrSLs%2FrEnRr9xV0uZCpQb9dgnRH0F0RsjsKfK9BYjiFEn%2BBQT7lay%2B2ELaPWwZqSDYxRsN6tdYOwlWIh5FKzUaBSu01m6uuDwOEho1XC9mU4OEGEG0R5B8AGoWYY0DKxzYtgObOeiyi0rieV7ksoS6jWaSBCzicchcj0Ztj3pu2IBNJn8YIM8GSOQAid5HpvexIx6e169C259htksY5sDkBD1WouAEhSEoKEEhCIqcoOiVR0wa35SPmDQ29mbZn%2BWgHKq8c0CPVN7hKQHVA2hWHmSX5MrEQ6f1dxM7%2FKISMK8ZeFHN9%2F3Aq4XUcxu%2B61EeNuu8WY84jCghzAKocbAnxuTN538gE2PyyvdfI6anMPIUibgCal8HLUrQ7RJ76YnNVmq8x3U15TmYKpHlS8h3nQN5Sa5Pp7jZegyenN38PZgGEl0i0yU%2BF88IOvLB8I4qyOEdVRjypJXloiv26GTCd3Oa88VvP%2BS7hdJsc90Mvnk3mQCT8uQeN%2FkWTZlIO4Z8tyYY43pD6YSTnzbNJzy%2Bbc32mtWpzbZuv7ex2c00N0aodAQ6WdY%2FNRIxJq9dvzdd3uUfWxB6BG1LdO0ZmQWEGiHJ9mGyuX6jCLScc%2BLMQWHLofbj%2BaUUBJLPexqXMP%2Fr43k91HTymorywDxARy%2BA5veRdkv0dImeLEHlAMYuDvNMn918PpMRy4VhLPXCYSy1%2FGpq8%2BR4AiMuKlEQuDRs1r0oojyKa36jHXqMUr8W%2BmFIA%2BRm3F5%2BGP0DAAD%2F%2FwEAAP%2F%2FZumBvZYEAAA%3D

192.243.59.20

200 OK

7 B

URL GET HTTP/1.1
excessstumbledvisited.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn%2FzHTPuIfFGCPBuLPsruhNqrtqJmVqupqqrulJTsEF2eOsVy%2Bdb5INapTdq%2BAikwUPASGzpxzMxZNXhb0qMw6O%2Bw713qvvK%2Fjqe%2B%2FLA3tJfFh6sf6R2hNS0tV61a0sf%2Bp5NypbIrX9Sr8RfhbWblR0751mWHXfqnzAkx216rue63quV9kQmrdVf3UCQmQnTa%2FadKs1v%2BrVa%2Bjrl3tjHRjqgPUuyVUINl565lyDSEZIu4%2FXudnJVfb2%2B10raa40euz443QnVUWK7rxsawft9HjGhjLnG0%2Bh0qOpXKjef8RYjInzy1PE6fFMJOLe4VRnLMFTxOxVFL0RuBxB0BESdR%2BCnRMgYbjVQtp9dEvpgu7%2Bi9IJOiZLL%2F6CKMZk6bdrSLs%2FrEnRr9xV0uZCpQb9dgnRH0F0RsjsKfK9BYjiFEn%2BBQT7lay%2B2ELaPWwZqSDYxRsN6tdYOwlWIh5FKzUaBSu01m6uuDwOEho1XC9mU4OEGEG0R5B8AGoWYY0DKxzYtgObOeiyi0rieV7ksoS6jWaSBCzicchcj0Ztj3pu2IBNJn8YIM8GSOQAid5HpvexIx6e169C259htksY5sDkBD1WouAEhSEoKEEhCIqcoOiVR0wa35SPmDQ29mbZn%2BWgHKq8c0CPVN7hKQHVA2hWHmSX5MrEQ6f1dxM7%2FKISMK8ZeFHN9%2F3Aq4XUcxu%2B61EeNuu8WY84jCghzAKocbAnxuTN538gE2PyyvdfI6anMPIUibgCal8HLUrQ7RJ76YnNVmq8x3U15TmYKpHlS8h3nQN5Sa5Pp7jZegyenN38PZgGEl0i0yU%2BF88IOvLB8I4qyOEdVRjypJXloiv26GTCd3Oa88VvP%2BS7hdJsc90Mvnk3mQCT8uQeN%2FkWTZlIO4Z8tyYY43pD6YSTnzbNJzy%2Bbc32mtWpzbZuv7ex2c00N0aodAQ6WdY%2FNRIxJq9dvzdd3uUfWxB6BG1LdO0ZmQWEGiHJ9mGyuX6jCLScc%2BLMQWHLofbj%2BaUUBJLPexqXMP%2Fr43k91HTymorywDxARy%2BA5veRdkv0dImeLEHlAMYuDvNMn918PpMRy4VhLPXCYSy1%2FGpq8%2BR4AiMuKlEQuDRs1r0oojyKa36jHXqMUr8W%2BmFIA%2BRm3F5%2BGP0DAAD%2F%2FwEAAP%2F%2FZumBvZYEAAA%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectexcessstumbledvisited.com
FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE
ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn%2FzHTPuIfFGCPBuLPsruhNqrtqJmVqupqqrulJTsEF2eOsVy%2Bdb5INapTdq%2BAikwUPASGzpxzMxZNXhb0qMw6O%2Bw713qvvK%2Fjqe%2B%2FLA3tJfFh6sf6R2hNS0tV61a0sf%2Bp5NypbIrX9Sr8RfhbWblR0751mWHXfqnzAkx216rue63quV9kQmrdVf3UCQmQnTa%2FadKs1v%2BrVa%2Bjrl3tjHRjqgPUuyVUINl565lyDSEZIu4%2FXudnJVfb2%2B10raa40euz443QnVUWK7rxsawft9HjGhjLnG0%2Bh0qOpXKjef8RYjInzy1PE6fFMJOLe4VRnLMFTxOxVFL0RuBxB0BESdR%2BCnRMgYbjVQtp9dEvpgu7%2Bi9IJOiZLL%2F6CKMZk6bdrSLs%2FrEnRr9xV0uZCpQb9dgnRH0F0RsjsKfK9BYjiFEn%2BBQT7lay%2B2ELaPWwZqSDYxRsN6tdYOwlWIh5FKzUaBSu01m6uuDwOEho1XC9mU4OEGEG0R5B8AGoWYY0DKxzYtgObOeiyi0rieV7ksoS6jWaSBCzicchcj0Ztj3pu2IBNJn8YIM8GSOQAid5HpvexIx6e169C259htksY5sDkBD1WouAEhSEoKEEhCIqcoOiVR0wa35SPmDQ29mbZn%2BWgHKq8c0CPVN7hKQHVA2hWHmSX5MrEQ6f1dxM7%2FKISMK8ZeFHN9%2F3Aq4XUcxu%2B61EeNuu8WY84jCghzAKocbAnxuTN538gE2PyyvdfI6anMPIUibgCal8HLUrQ7RJ76YnNVmq8x3U15TmYKpHlS8h3nQN5Sa5Pp7jZegyenN38PZgGEl0i0yU%2BF88IOvLB8I4qyOEdVRjypJXloiv26GTCd3Oa88VvP%2BS7hdJsc90Mvnk3mQCT8uQeN%2FkWTZlIO4Z8tyYY43pD6YSTnzbNJzy%2Bbc32mtWpzbZuv7ex2c00N0aodAQ6WdY%2FNRIxJq9dvzdd3uUfWxB6BG1LdO0ZmQWEGiHJ9mGyuX6jCLScc%2BLMQWHLofbj%2BaUUBJLPexqXMP%2Fr43k91HTymorywDxARy%2BA5veRdkv0dImeLEHlAMYuDvNMn918PpMRy4VhLPXCYSy1%2FGpq8%2BR4AiMuKlEQuDRs1r0oojyKa36jHXqMUr8W%2BmFIA%2BRm3F5%2BGP0DAAD%2F%2FwEAAP%2F%2FZumBvZYEAAA%3D HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 08a0f9fc505e3d69d3c93887657b7c07
Strict-Transport-Security: max-age=0; includeSubdomains

excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=116

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=116
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectexcessstumbledvisited.com
FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE
ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=116 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css

104.21.70.253

200 OK

11 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text
Size
11 kB (10842 bytes)
Hash
fc638645a938f69e69360c75335ffd1a
143132fb8361c3ad0acf88cb70bf0b07c0ecc2d4
7ef76aab275d0221c68602d18f81b4285b280756f0f71d535ed8b5b889bc2f90

HTTP Headers

GET /sb/chat/mob/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 133698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y0HTojgjK0%2BEfHNymWsTkU1%2FlpGc%2BK8EMUHWGmGcLx3WdiVrg%2B3qW9J3JQh2IE0ZOWluR9jm3T28HOEIX%2BGUA9LdWlZSQgpBaN4muRvKVPWcy4cFgTIQVbaiQClaYnsIJdVRUF%2BCcKv6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793833f091956b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.up-4ever.net/favicon.ico

104.21.24.34

200 OK

12 kB

URL GET HTTP/3
www.up-4ever.net/favicon.ico
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced
Size
12 kB (12113 bytes)
Hash
c683290b646aca6f80738ece333eced7
487e2e69e5c40029b4e698bc6ecc08c87644c752
71da8cb518e56fd83e092bdbcd3d69afee6caa8ba8e6947e5628ba5cd00e229b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636; dom3ic8zudi28v8lr6fgphwffqoz0j6c=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd%3A3%3A1; pp_main_277d9998d55ef26437437a1f16c8e6e4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:17 GMT
content-type: image/x-icon
last-modified: Mon, 10 Jun 2019 20:35:15 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 260
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1jonHGj9Ew0EmM0OZtvM3ePf%2BMDfsa4rx9838aA0U9zAU%2Bo5j%2Bk2R7zyJxXL1YZWgsPWB547AysIrppfptouVh6aGB2eeyzuYj7cTfKD2qfj9QxanQfUksziHrdk0sc3S06f"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382fc18a65699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.106

200 OK

1.2 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2
ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT

File type
gzip compressed data, max compression
Size
1.2 kB (1220 bytes)
Hash
2104982a7c81f7a6189907be2947729e
debdc2b2ef4ea0dc7a2e486b1e9b11c3fb279e89
01ea7295cf7ae696aababc79c3af3f88a53b833c22a55da9ee4165cb5b969897

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 04:57:28 GMT
date: Wed, 24 Apr 2024 04:57:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png

45.133.44.9

200 OK

14 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
Size
14 kB (14496 bytes)
Hash
962ac416cce3fad636d4904386c8d3d4
811166fceb971353dc6a9ea3a153367f20b47592
ec6c8e1c030499a846897265d0c1f66dedc6ece17c1ea6006b700faf37e73555

HTTP Headers

GET /si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: image/png
content-length: 14496
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:05:10 GMT
etag: "656d25c6-38a0"
expires: Fri, 26 Apr 2024 04:57:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=15

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=15
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectexcessstumbledvisited.com
FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE
ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=15 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=49

192.243.59.12

200 OK

0 B

URL GET HTTP/1.1
excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=49
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectexcessstumbledvisited.com
FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE
ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=49 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js

104.21.70.253

200 OK

32 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
32 kB (31970 bytes)
Hash
561acb3e541133bbdd2c0c19f8ee35a1
ffd1353cf3f77d25f801c84d8208613eb0d3d548
9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc

HTTP Headers

GET /sb/chat/mob/ssp/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:09 GMT
etag: W/"62134c65-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 4745304
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rWSN4vrd5GiVMGpJjQUGCNaawtkNh2oS0wVkrLvzyKmLWS1S%2FFG71i9IKgT%2B3DiBvJ191LTS3pX7UECu3Y%2BXKuJGGhD0%2B%2FwKw9PaZsJmAPRKWGoL%2B8nS51BGUTtleQDm%2BlnFZ4P1WJgp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793833fba29569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 01:54:31 GMT
expires: Wed, 23 Apr 2025 01:54:31 GMT
cache-control: public, max-age=31536000
age: 97377
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

excessstumbledvisited.com/pixel/sbs?c=1

192.243.59.12

200 OK

0 B

URL GET HTTP/1.1
excessstumbledvisited.com/pixel/sbs?c=1
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectexcessstumbledvisited.com
FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE
ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74
ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 16:27:38 GMT
expires: Wed, 23 Apr 2025 16:27:38 GMT
cache-control: public, max-age=31536000
age: 44990
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.up-4ever.net/js/jquery.cookie.js

104.21.24.34

200 OK

3.1 kB

URL GET HTTP/3
www.up-4ever.net/js/jquery.cookie.js
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
JavaScript source, ASCII text, with very long lines (3441), with no line terminators
Size
3.1 kB (3121 bytes)
Hash
7e208f9bc7ca201678c76d96e899349c
afa52ce81c7656bf1a8605bd2cbd38c2be00cd9b
0f0e74eaa31ad2d6c07d9ceb16efefc78aae0f45328759eb163800d261e53d29

HTTP Headers

GET /js/jquery.cookie.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Wed, 25 Nov 2020 04:27:31 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l1E0eAqr9OKKX1tKrfwSxDORrYQHsDiZIeBAMHMjkklCSMwx8flbJusaEnPS%2F4hjD8YRnxyCEh%2FKZZiFKLmLaOfk6ofQaRhV1yc%2B1xLtlue8JLe5SqtBESZdNpHV9CZUBVaG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a205699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/js/interface.js?ver=11

104.21.24.34

200 OK

135 B

URL GET HTTP/3
www.up-4ever.net/assets/js/interface.js?ver=11
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
JavaScript source, ASCII text, with no line terminators
Size
135 B (135 bytes)
Hash
be6326e55f6d453ae61f9f0cab30f7d7
bd89310ed2b393c76739efe0327c542f92da9988
ea326306169eee7ee8d42c464f6159543917fba92ee221d8721b9aa9ffdb34d8

HTTP Headers

GET /assets/js/interface.js?ver=11 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Sat, 06 Feb 2021 14:49:51 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SFW5W4InePBh8JcNzJ1DRMy8jQdADCa9ma6zgDhwkRsF3YHi6gvpocaGygdsLR8rMDpCSHIuhUxhLpeIcbTLarZPajWJNcgPUDbI8AwWc20iTeG7cRrX451dyfB9utDMnEcv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f23a355699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css

104.21.70.253

200 OK

4.6 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text, with very long lines (4886), with no line terminators
Size
4.6 kB (4617 bytes)
Hash
1230b98f01a549572edcd2bf3bdcb4ad
ac87a2a752ffb8b5167566183fddd531d7971be9
9a2954fc66ebbb9adf18c2ea4403d2a0a5dedf2928f9905e1fc656f5dc1b208d

HTTP Headers

GET /sb/chat/mob/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-1209"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 133698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mjdSTPtiaXPzjKPXNXVrJgLB5Nkf6qRuA6Bi27tjfyqjZnzCXBxA1pgKVsTnygd%2BokWCJKgpn5QvLH%2BTyDLpYzG5ydK2OJ6YQt5wRcnkve0utRt1McpLlXCvOuxSLTLIJTT%2Bgvaq3aX7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793833f091856b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.up-4ever.net/js/paging.js?ver=8

104.21.24.34

200 OK

2.0 kB

URL GET HTTP/3
www.up-4ever.net/js/paging.js?ver=8
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
HTML document, ASCII text, with very long lines (2061), with no line terminators
Size
2.0 kB (1987 bytes)
Hash
3a48ced13914d1a07d1b4ea214248203
c7e368174be7d09b7f6571508217ad718a565e21
cffd244467a0ecb4d497c778e712829340b55994446596a38c94d4b4de999914

HTTP Headers

GET /js/paging.js?ver=8 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Mon, 27 May 2019 03:32:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PgAXz%2B4UdeKAjn5gU3eQRh2okX1YLzqrPeiEkBEiO9nNkQoIn2lgPlZBYMJnDZLdfNT36DMuNIMYGAyjJdjMDzCP4wGi72xva2nMr96wuYByo8iI5sBg%2BY65oPa%2FJSxU%2Fc5%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a215699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/js/bootstrap.min.js?ver=10

104.21.24.34

200 OK

51 kB

URL GET HTTP/3
www.up-4ever.net/assets/js/bootstrap.min.js?ver=10
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
JavaScript source, ASCII text, with very long lines (50758)
Size
51 kB (51039 bytes)
Hash
67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4

HTTP Headers

GET /assets/js/bootstrap.min.js?ver=10 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:36:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jF5hEjPcdRr7ggRRv5uyVe8Btxb4vb68EP%2FQ5ru0g5tsowpMPOqumaekHuKYcTUWZQP%2FnPA%2BEa8Ge%2BjNDV9rdbKwWqS%2FmcAsLuRsk6Re22QlEnePJ2pQLQ0dw5HH5CWO%2F3HB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a2f5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html

45.133.44.3

200 OK

3.0 kB

URL GET HTTP/2
cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html
IP
45.133.44.3:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3
ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT

File type
HTML document, ASCII text, with very long lines (3229), with no line terminators
Size
3.0 kB (2977 bytes)
Hash
0b579b1f5697d55d3bc0856975d08243
e68a8e8bc08f86086744aba736df40ca7bea6d01
8ac4909eb5c0efc3278c66a43990535925fb271226f96261415df027fe40cb0c

HTTP Headers

GET /sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:42 GMT
etag: W/"6242c2fe-ba1"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Wed, 24 Apr 2024 05:57:28 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js

104.21.70.253

200 OK

382 B

URL GET HTTP/3
cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
ASCII text, with very long lines (411), with no line terminators
Size
382 B (382 bytes)
Hash
9ffae600059bf4e6adb35ebb274ae385
6130e466c04551baa2a5d650e6bd5a87daba73a7
a7d15e051fb3d3c31494683306bb7752478354894825b110d26d333cbeaaeb39

HTTP Headers

GET /sb/chat/mob/ssp/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.up-4ever.net
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:08 GMT
etag: W/"62134c64-17e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 133698
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vZmCfYnFSekeQaq7CqLI8W9hNwCp0fIGIZ%2B9%2F0Y5lgSrNmi1kIb%2B9w74D6DcBRKDU8eO%2F8cypvTk380cDjzEvZA6KQU%2BvuuV8JsCuh4ibRNmmjJ%2FKKMqO%2BN66WEX%2FhTup7qWIAS8VcEF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879383400a63569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

antennawritersimilar.com/27/7d/99/277d9998d55ef26437437a1f16c8e6e4.js

192.243.59.12

200 OK

83 kB

URL GET HTTP/1.1
antennawritersimilar.com/27/7d/99/277d9998d55ef26437437a1f16c8e6e4.js
IP
192.243.59.12:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectantennawritersimilar.com
Fingerprint22:3E:41:B5:32:70:99:CF:97:5B:DA:39:8F:98:59:91:64:28:FC:69
ValidityMon, 11 Mar 2024 06:10:40 GMT - Sun, 09 Jun 2024 06:10:39 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
83 kB (82556 bytes)
Hash
d008c36056187cc684ccc6fd97e1726b
1f2a620e4be2440618aba9ffea528a7b75a467b3
77b575caf3865c8607924ccf02864fa6b4ed63a3924d1c23daa5b2e34cb0c336

HTTP Headers

GET /27/7d/99/277d9998d55ef26437437a1f16c8e6e4.js HTTP/1.1
Host: antennawritersimilar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:16 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e59731b69e5b4924cfa6841283b178ce
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

www.up-4ever.net/assets/js/mdb.min.js?ver=15

104.21.24.34

200 OK

420 kB

URL GET HTTP/3
www.up-4ever.net/assets/js/mdb.min.js?ver=15
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
420 kB (419555 bytes)
Hash
6463535469b0b25b75b2e7a5827ffefa
ebd7735850a34a96a130fad72cb395e40772edcf
b6e658cbd1f64eba1b117f37d463588e91d21469fbf2cb2332b5d68f4e4b0fee

HTTP Headers

GET /assets/js/mdb.min.js?ver=15 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:36:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3407
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8xrJ2cMbhJRKPxGQQQN1jDVxmy2ROjC5VGK%2Ff0F6pXGKCSBQUNfoNJPWBVDT0rwg4QRAqfIqPek3MtjXKv6TfdDejx8Kb0BZgT1qjTDspurvGBaNGvEvgx995xWaYP98L2Qi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a315699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/image/flags.png

104.21.24.34

200 OK

15 kB

URL GET HTTP/3
www.up-4ever.net/assets/image/flags.png
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
PNG image data, 1248 x 11, 8-bit/color RGBA, non-interlaced
Size
15 kB (15180 bytes)
Hash
0e7e0406e09ea913dc344ca9974ec94a
084fcf2d8e96661354a7e563f64801dfd13bead7
0787e30d6145bc8b8b92ed329f664bcc3012162ccba9ef943d7ada480afb74e9

HTTP Headers

GET /assets/image/flags.png HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/style.css?ver=34
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: image/png
content-length: 15180
last-modified: Thu, 23 May 2019 00:36:04 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 36
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t38t1mHCAhWLJEf2aTS60zXgl4BXWyefkt5kmY%2Ba6jq%2BHTSI4UgS%2BDjxbvL0Wx73ki8aRdWVu%2FWKfy2Bt3AY1o7im%2B8Upeayx4zaJ6gzIWtt3vYxhZt1pJ7tSJw6YW3%2BVWuZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f34aff5699-OSL
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/font/roboto/Roboto-Regular.woff2

104.21.24.34

200 OK

49 kB

URL GET HTTP/3
www.up-4ever.net/assets/font/roboto/Roboto-Regular.woff2
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 49236, version 1.0
Size
49 kB (49236 bytes)
Hash
2751ee43015f9884c3642f103b7f70c9
ed1558b0541f5e01ce48c7db1588371b990eec19
b5c9c23bd12593523a46d79dd0aee80e3226bbde4c9ac05fc30a95e2c1510de0

HTTP Headers

GET /assets/font/roboto/Roboto-Regular.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Cookie: _ga_BH3KCF6H24=GS1.1.1713934636.1.0.1713934636.60.0.0; _ga=GA1.1.100267982.1713934636
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 49236
last-modified: Thu, 23 May 2019 00:36:13 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DBoTMsPVE120Z%2FSyL6yQKIYxvUC5TmcAzvih63PltMOJDFdjcxUKQY3VazJuz8ikNx8O526n1%2BIKSGzvqPKiGZMJROnEjkqnyjGCXznDzhs8aszeaG7nxaeaGmX6gpH%2B3m%2Fn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f86e1d5699-OSL
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png

104.21.70.253

200 OK

6.0 kB

URL GET HTTP/3
cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png
IP
104.21.70.253:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13
ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT

File type
PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced
Size
6.0 kB (5982 bytes)
Hash
c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd

HTTP Headers

GET /sb/chat/mob/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:28 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 21 Feb 2022 08:25:06 GMT
etag: "62134c62-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6014652
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jjH92HVVj%2F0x9cNBEd%2BhnW0y2qIgmHB4XCYym5jEUZX2M7lNbm9eAHpasstmw3H2D3vBQM5iHZaJAaiRChcRChHEBCq0UUcZlgCPFX5Kp%2Bg3fKaA6KZyuDVU01C8pXN2tVYlZIQ5uHkO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8793833fba24569f-OSL
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/js/bootstrap-confirm.js

104.21.24.34

200 OK

3.1 kB

URL GET HTTP/3
www.up-4ever.net/js/bootstrap-confirm.js
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (3469), with no line terminators
Size
3.1 kB (3148 bytes)
Hash
e078a8f899c8ac08b68932a9dd44d787
4c2252ee670e50c13023b94f7e38a6e65541d00c
6610f871871141cac2c4a8b86889afb3b2d0ae56b657d23dbb85f913a03358df

HTTP Headers

GET /js/bootstrap-confirm.js HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:40:05 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ntl%2FoXsEhqG3XKgQIboP1%2BtT5Ul9Q0wyKLmsr0CARdfcm6tT%2B2zwcUG2yXCkrerb9C70pa%2BYblpVGdYaSmcg7N%2BIBkpwD5T2BelUQwsPJNfx9keJNyGzjtXjtMx561lhpZ1y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f23a385699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/font/roboto/Roboto-Light.woff2

104.21.24.34

200 OK

49 kB

URL GET HTTP/3
www.up-4ever.net/assets/font/roboto/Roboto-Light.woff2
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
Web Open Font Format (Version 2), TrueType, length 49380, version 1.0
Size
49 kB (49380 bytes)
Hash
69f8a0617ac472f78e45841323a3df9e
bbdc28b887400fcb340b504ec2904993af42a5d7
94a0ac8d73bb60a9cbe27a4fa36669104f6ffa37c8ff2df29313a6c0d3b64a75

HTTP Headers

GET /assets/font/roboto/Roboto-Light.woff2 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/assets/css/mdb.min.css?ver=25
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:16 GMT
content-type: font/woff2
content-length: 49380
last-modified: Thu, 23 May 2019 00:36:13 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cSfAlr%2Fk0THNWaAW9MWHRuqFFbe87bmC2%2FRTI5QMf42iaYotBnL1dJI4SgSVWKXgA1ntWrNcnyX4K2J2ulqD41maWnAmNlhmITSCELJXaoahFCFgR7yWUMT9nMDE0Jw869n%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f34b055699-OSL
alt-svc: h3=":443"; ma=86400

www.up-4ever.net/assets/js/popper.min.js?ver=10

104.21.24.34

200 OK

20 kB

URL GET HTTP/3
www.up-4ever.net/assets/js/popper.min.js?ver=10
IP
104.21.24.34:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectup-4ever.net
FingerprintD1:8F:36:86:74:5F:01:68:6F:AC:8C:17:65:40:5E:3D:16:F7:3B:CE
ValiditySat, 20 Apr 2024 18:48:55 GMT - Fri, 19 Jul 2024 18:48:54 GMT

File type
JavaScript source, ASCII text, with very long lines (20363)
Size
20 kB (20537 bytes)
Hash
c055b8c12988ec2b1f7238d85e79f4b4
5958a52438c8d753d692b11b5419bd1490c2655b
58cb6a78afc204b7165e947c965cbce6296ee0e587fbab3e12c0d2b6378e9004

HTTP Headers

GET /assets/js/popper.min.js?ver=10 HTTP/1.1
Host: www.up-4ever.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/g6t3mf26qbcq
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 24 Apr 2024 04:57:15 GMT
content-type: application/javascript
last-modified: Thu, 23 May 2019 00:36:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 3241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uw5qpq30C1o8MF%2B%2FoeSNUh9VAGhowHgPSSaIe3dMN3jZWE84ELQi4EmnL5u6UvUSqKnebAjooHPcsNi8h3irgqZZz4PRRIFA7zYUUf8gYtaMDRKpo%2BwfPaS5oTq9UcIBhlqj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879382f22a2a5699-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=48

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
excessstumbledvisited.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=48
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectexcessstumbledvisited.com
FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE
ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=48 HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

unseenreport.com/pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=3d1931742223146a108201ae695e957e&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=3d1931742223146a108201ae695e957e&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=3d1931742223146a108201ae695e957e&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:18 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 816561cfeee7b7931c5634676aa79a86
Strict-Transport-Security: max-age=0; includeSubdomains

excessstumbledvisited.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn3%2FPWMe1iMMRKMO8vuit6kuqp6Uqamq6nqmp7kFFyQPc569dL5JtmgRtm9Ci4yWfAQEDJ7ysFcPHlV2Ksy4%2BC471Dvvfq%2Bgq%2B%2B9748cJekAkcv1j%2FSe1Ipulov%2B6XlT4PgRmlLJq5f6jcbnzVqN0qm906rUfbfKn0g2I5erfiB7wd%2BUNqQRsS6vzoBIdOTVlBu%2BeVapRzUa%2Bibl3vrPFjqgfcuyVVIPl565l2DZCMk3cfrwu5kOn37%2Fa5TNNMGPX78cbKT6DxBd17GxkOcHM%2FY0PZ84yl0cjSVC937jxjJMfF%2BeYooOZ6JRNQ7nOqMFESCiL%2BKvDeCUCNIOgLT9yH5OQEYx602ku6jW9rkdPdflE7QMVl68RdkPiZLv11D0v1hTcl%2B6a5WLpM6sejHBWR%2FBNkZIXWnyPYWIPNTsOwLSP4rWX2xhaR72LZKQ%2FKLN5q0UuMxq66EIgxXajSsrtBa3FrxRVRlNGz6QcSnBkk5goxHUGIAahfhrAcnPbjYg0s9dPlFiQVBEPqcUb%2FZYqzKQxE1uB%2FQMA5o4DeacGzyhwGydACmBmBmH6nZx458eF6%2FCuN%2Bht0uYLkHmxH0eIFcEOSWIKcEuSTIM4K8VxxxZSu2eMSVdVEwy5VZrhZDnXUO6JHOOiIhoGYAw4uD9JJcmXjotf9uYUdclKo8aFWDsFapVKpBrUEDv1nxAyoarbpo1UMBKwtIuwBqPezJMXnz%2BR9I5Zi88v3XiOgprDoFk1dA3eugeQG6XWAvOXHpSk30hCknIgPXBdJsCdmud6AuyfXpFDfbjyHY2c3fq9MAMwVSU%2BBz%2BYygox4M7%2BicHN7RuSVP2mkmu3KPTiZ8N6OZWPz2Q7Gba8M31%2B3gm3fZBJiUJ%2FeEzbZowmXSseS7Ncm5MBvaMEF%2B2rSfiOi2s9trziQu3br93sZmNzXCWqmTEehkWf80YHJMXrt%2Bb7q8yz%2B2Ic0IxhXoujMyC0g9Akv3YdO5fqsJjJpzotRD7oqhqUTzSyUJlJj3NCpg%2F9dH83po6OQ1lcWBfYCOWQDN7iPpFuiZAj1VgKoBrFscZqk5u%2Fl8JiNSC8NImYXDSBn11dTmyfEEVl6Uqj4PIxGLMBK1ei0WjEf1euSzmEVV3mwyZHYcLz8M%2FwEAAP%2F%2FAQAA%2F%2F%2FmPVRVlgQAAA%3D%3D

192.243.59.20

200 OK

0 B

URL GET HTTP/1.1
excessstumbledvisited.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn3%2FPWMe1iMMRKMO8vuit6kuqp6Uqamq6nqmp7kFFyQPc569dL5JtmgRtm9Ci4yWfAQEDJ7ysFcPHlV2Ksy4%2BC471Dvvfq%2Bgq%2B%2B9748cJekAkcv1j%2FSe1Ipulov%2B6XlT4PgRmlLJq5f6jcbnzVqN0qm906rUfbfKn0g2I5erfiB7wd%2BUNqQRsS6vzoBIdOTVlBu%2BeVapRzUa%2Bibl3vrPFjqgfcuyVVIPl565l2DZCMk3cfrwu5kOn37%2Fa5TNNMGPX78cbKT6DxBd17GxkOcHM%2FY0PZ84yl0cjSVC937jxjJMfF%2BeYooOZ6JRNQ7nOqMFESCiL%2BKvDeCUCNIOgLT9yH5OQEYx602ku6jW9rkdPdflE7QMVl68RdkPiZLv11D0v1hTcl%2B6a5WLpM6sejHBWR%2FBNkZIXWnyPYWIPNTsOwLSP4rWX2xhaR72LZKQ%2FKLN5q0UuMxq66EIgxXajSsrtBa3FrxRVRlNGz6QcSnBkk5goxHUGIAahfhrAcnPbjYg0s9dPlFiQVBEPqcUb%2FZYqzKQxE1uB%2FQMA5o4DeacGzyhwGydACmBmBmH6nZx458eF6%2FCuN%2Bht0uYLkHmxH0eIFcEOSWIKcEuSTIM4K8VxxxZSu2eMSVdVEwy5VZrhZDnXUO6JHOOiIhoGYAw4uD9JJcmXjotf9uYUdclKo8aFWDsFapVKpBrUEDv1nxAyoarbpo1UMBKwtIuwBqPezJMXnz%2BR9I5Zi88v3XiOgprDoFk1dA3eugeQG6XWAvOXHpSk30hCknIgPXBdJsCdmud6AuyfXpFDfbjyHY2c3fq9MAMwVSU%2BBz%2BYygox4M7%2BicHN7RuSVP2mkmu3KPTiZ8N6OZWPz2Q7Gba8M31%2B3gm3fZBJiUJ%2FeEzbZowmXSseS7Ncm5MBvaMEF%2B2rSfiOi2s9trziQu3br93sZmNzXCWqmTEehkWf80YHJMXrt%2Bb7q8yz%2B2Ic0IxhXoujMyC0g9Akv3YdO5fqsJjJpzotRD7oqhqUTzSyUJlJj3NCpg%2F9dH83po6OQ1lcWBfYCOWQDN7iPpFuiZAj1VgKoBrFscZqk5u%2Fl8JiNSC8NImYXDSBn11dTmyfEEVl6Uqj4PIxGLMBK1ei0WjEf1euSzmEVV3mwyZHYcLz8M%2FwEAAP%2F%2FAQAA%2F%2F%2FmPVRVlgQAAA%3D%3D
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://www.up-4ever.net/g6t3mf26qbcq
Certificate
IssuerLet's Encrypt
Subjectexcessstumbledvisited.com
FingerprintF6:CE:79:E1:1A:35:E2:A3:44:FF:13:1F:F1:48:18:54:55:70:8F:FE
ValidityMon, 22 Apr 2024 09:06:49 GMT - Sun, 21 Jul 2024 09:06:48 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuTnIQBGGXvS3CHAQjmEn3%2FPWMe1iMMRKMO8vuit6kuqp6Uqamq6nqmp7kFFyQPc569dL5JtmgRtm9Ci4yWfAQEDJ7ysFcPHlV2Ksy4%2BC471Dvvfq%2Bgq%2B%2B9748cJekAkcv1j%2FSe1Ipulov%2B6XlT4PgRmlLJq5f6jcbnzVqN0qm906rUfbfKn0g2I5erfiB7wd%2BUNqQRsS6vzoBIdOTVlBu%2BeVapRzUa%2Bibl3vrPFjqgfcuyVVIPl565l2DZCMk3cfrwu5kOn37%2Fa5TNNMGPX78cbKT6DxBd17GxkOcHM%2FY0PZ84yl0cjSVC937jxjJMfF%2BeYooOZ6JRNQ7nOqMFESCiL%2BKvDeCUCNIOgLT9yH5OQEYx602ku6jW9rkdPdflE7QMVl68RdkPiZLv11D0v1hTcl%2B6a5WLpM6sejHBWR%2FBNkZIXWnyPYWIPNTsOwLSP4rWX2xhaR72LZKQ%2FKLN5q0UuMxq66EIgxXajSsrtBa3FrxRVRlNGz6QcSnBkk5goxHUGIAahfhrAcnPbjYg0s9dPlFiQVBEPqcUb%2FZYqzKQxE1uB%2FQMA5o4DeacGzyhwGydACmBmBmH6nZx458eF6%2FCuN%2Bht0uYLkHmxH0eIFcEOSWIKcEuSTIM4K8VxxxZSu2eMSVdVEwy5VZrhZDnXUO6JHOOiIhoGYAw4uD9JJcmXjotf9uYUdclKo8aFWDsFapVKpBrUEDv1nxAyoarbpo1UMBKwtIuwBqPezJMXnz%2BR9I5Zi88v3XiOgprDoFk1dA3eugeQG6XWAvOXHpSk30hCknIgPXBdJsCdmud6AuyfXpFDfbjyHY2c3fq9MAMwVSU%2BBz%2BYygox4M7%2BicHN7RuSVP2mkmu3KPTiZ8N6OZWPz2Q7Gba8M31%2B3gm3fZBJiUJ%2FeEzbZowmXSseS7Ncm5MBvaMEF%2B2rSfiOi2s9trziQu3br93sZmNzXCWqmTEehkWf80YHJMXrt%2Bb7q8yz%2B2Ic0IxhXoujMyC0g9Akv3YdO5fqsJjJpzotRD7oqhqUTzSyUJlJj3NCpg%2F9dH83po6OQ1lcWBfYCOWQDN7iPpFuiZAj1VgKoBrFscZqk5u%2Fl8JiNSC8NImYXDSBn11dTmyfEEVl6Uqj4PIxGLMBK1ei0WjEf1euSzmEVV3mwyZHYcLz8M%2FwEAAP%2F%2FAQAA%2F%2F%2FmPVRVlgQAAA%3D%3D HTTP/1.1
Host: excessstumbledvisited.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.up-4ever.net/
Cookie: u_pl=22019897; uid_id2=8a24dfc3-7e77-4a73-a4f9-0eb3ca7801bd:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 24 Apr 2024 04:57:28 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9a1f1d566cca91e80500243a63ac1461
Strict-Transport-Security: max-age=0; includeSubdomains

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL