| revanced.to/wp-content/uploads/2023/10/revanced-icon.webp | 188.114.96.1 | | 8.3 kB |
URL revanced.to/wp-content/uploads/2023/10/revanced-icon.webp IP188.114.96.1:0
File typeRIFF (little-endian) data, Web/P image Hashebc6b8000b5eee4412cd3eafc272da4e e5c4f03fdaeeb40e7927206011f5fccf4a5acdd5 503ba344fee11d91f9917975b0c55891854f75b41667064cf49ac3dc0e664562
GET /wp-content/uploads/2023/10/revanced-icon.webp HTTP/1.1
Host: revanced.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://revanced.to/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 11:10:58 GMT
content-type: image/webp
content-length: 8268
last-modified: Fri, 13 Oct 2023 09:49:08 GMT
etag: "65291294-204c"
cache-control: public, max-age=31536000, immutable
cf-cache-status: HIT
age: 486665
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KxeJ1icdhSQVAeaHUtI02WHMmfb5tSdE9FQWUDBJuu9PCQsL3aaipGEzu%2BZz4kx2yhHgl%2FXEhM9yvZ9nwZFBnBVCEmYYwspDV%2BgXbhGUkxqcTVCsUXuTGVxtl4oLgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b72d3d4d7f5688-OSL
alt-svc: h3=":443"; ma=86400
|
|
| revanced.to/ | 188.114.96.1 | | 44 kB |
IP188.114.96.1:0
File typeHTML document, ASCII text, with very long lines (13448) Hash0049e8ddf3cec7fd1dc828dd16aba6ca 91f9f279cc9816ec194fd80162a5afbc26e3a40d b435dda4f7b7f39a1cde9dc7769d38623cf7e514e28b37d2835384f7d138076d
GET / HTTP/1.1
Host: revanced.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 28 Mar 2024 11:10:57 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-ua-compatible: IE=edge
link: <https://revanced.to/wp-json/>; rel="https://api.w.org/", <https://revanced.to/wp-json/wp/v2/pages/1993>; rel="alternate"; type="application/json", <https://revanced.to/>; rel=shortlink
x-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xiK%2BK5GW7fdlPNJ9%2BoFpQ4cdmILrDyeb1aqV7XOCkpDsZS8P%2FbNSp0zVPYWQbUYtKF%2BKKWrP2%2B8tV7LC3j3SeyVW0Bjn9hhYMA24ZcnVA2pYn0%2FrzaUhfdxcDjoWiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86b72d3bdf9c5694-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| revanced.to/wp-content/plugins/wp-rocket/assets/js/heartbeat.js?ver=3.15.10 | 188.114.96.1 | | 0 B |
URL revanced.to/wp-content/plugins/wp-rocket/assets/js/heartbeat.js?ver=3.15.10 IP188.114.96.1:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/wp-rocket/assets/js/heartbeat.js?ver=3.15.10 HTTP/1.1
Host: revanced.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://revanced.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 11:10:58 GMT
content-type: application/javascript
content-length: 0
last-modified: Thu, 28 Mar 2024 05:39:34 GMT
etag: "66050296-0"
cache-control: public, max-age=31536000, immutable
cf-cache-status: HIT
age: 17384
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LgaeU7qNfe3BzEx1Mcd6%2FXcFpXppK3gtf6Q%2BscZtKiXRzjhCnfkhjPMvlWFDlJcm6kcp0vjMJ4lv3MlyUIrAXoIEahTjp9MSHQuSxLvrUlttNrBkvVltWI7hXS7sFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b72d3d5d875688-OSL
alt-svc: h3=":443"; ma=86400
|
|
| iglooprin.com/tkoKizwfMNvTBQ/76422 | 23.109.170.125 | | 25 B |
URL iglooprin.com/tkoKizwfMNvTBQ/76422 IP23.109.170.125:0
File typeASCII text, with no line terminators Hashf7a2939527fd9e68723da600e96d76bd a9e717b6364d2895ee0a716050db32ca0ef1bb42 d810f5146f4cd1517512a6e31946e764a73c58fb01427aae88d42cc2ae28718a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /tkoKizwfMNvTBQ/76422 HTTP/1.1
Host: iglooprin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://revanced.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 28 Mar 2024 11:10:58 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://revanced.to
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Fri, 29-Mar-2024 11:10:58 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwViE0KgzAUBvMeJVAqhY96AE%2BQamsXbmuXRReewGopgZBIEvtz%2B%2BpiBmaEEJwmYD0hqQpV5ao8qeJSgl7gpgUPFrJx%2FtP%2FQB6cn8HeYtcG47LazTYuf8BmbZDG%2Fmr0N%2BucmaN2NoAXtnX%2FMM%2FjrbuDJkng6FaHMRWgtzz8AV7hHdE%3D; expires=Fri, 29-Mar-2024 11:10:58 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| revanced.to/wp-content/uploads/2023/10/cropped-revanced-icon-192x192.webp | 188.114.96.1 | | 3.8 kB |
URL revanced.to/wp-content/uploads/2023/10/cropped-revanced-icon-192x192.webp IP188.114.96.1:0
File typeRIFF (little-endian) data, Web/P image Hash26b379257d86f68205980f0ea526148e eab5ee39913831bf1f9317ba457bf9a55880da16 4849d855f7da089367559c018a9f95a4cb571c5adfbb26021c44862fb361c932
GET /wp-content/uploads/2023/10/cropped-revanced-icon-192x192.webp HTTP/1.1
Host: revanced.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://revanced.to/
Cookie: quads_browser_width=1280; _ga_3CWDM66K45=GS1.1.1711624258.1.0.1711624258.0; _ga=GA1.1.292927504.1711624258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 11:10:58 GMT
content-type: image/webp
content-length: 3774
last-modified: Sat, 14 Oct 2023 10:55:17 GMT
etag: "652a7395-ebe"
cache-control: public, max-age=31536000, immutable
cf-cache-status: HIT
age: 7264613
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OajQ4DNZSZzgh8XX%2Fohlp%2BUQCgvsYztB4bMbIE0oB6apwrHyr1c7%2F%2F5gonZDqD8FfcAGF7rtGhxFpYkip9RrcCWRa8iZPvCWE%2FypmvrOOfzPInpugFMLoztmVSXUyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86b72d3f0eef5688-OSL
alt-svc: h3=":443"; ma=86400
|
|
| revanced.to/wp-content/plugins/flying-analytics/js/gtagv4.js | 188.114.96.1 | | 36 kB |
URL revanced.to/wp-content/plugins/flying-analytics/js/gtagv4.js IP188.114.96.1:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash5a2789cc1ee0950a6b78750ebbc264c9 2e973d3d2b85b31c7698b43aaaab1f3efc0fdbba 0f48532ed0175b589d37f3325a8fc8974b8f7207a5414ac4ea548c1dc9b6d94e
GET /wp-content/plugins/flying-analytics/js/gtagv4.js HTTP/1.1
Host: revanced.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://revanced.to/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 28 Mar 2024 11:10:58 GMT
content-type: application/javascript
last-modified: Sat, 04 Nov 2023 10:01:50 GMT
vary: Accept-Encoding
etag: W/"6546168e-16ada"
cache-control: public, max-age=31536000, immutable
cf-cache-status: HIT
age: 7264613
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p%2FvKfn40nMi2%2B8%2B2JGHaNuACCZTPoCpO7PsW8XOr%2F9a7Ae%2BQ8VULn6ZuS1ygcJPFkHejAv0fGzjrf%2BE8XbDAlFC592Mo8W8XlbCttB6eWpsahUN0xtUzZ2xI2DtaCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86b72d3d5d8c5688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|