Report - www.gktorrent.xyz/recherche/fire%20country

Report Overview

Submitted URL
www.gktorrent.xyz/recherche/fire%20country
IP
104.21.1.59
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-08 11:14:39
Access
public
Website Title
fire country
Final URL
www.gktorrent.xyz/recherche/fire%20country
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-05-06	2.1 kB	432 kB	104.17.24.14
d2t47qpr8mdhkz.cloudfront.net	unknown	unknown	No data	No data	1.1 kB	56 kB	54.230.241.146
bourrepardale.com	unknown	2024-03-05	2024-03-05	2024-03-06	405 B	1.2 kB	23.109.170.113
tigainareputaon.info	unknown	unknown	No data	No data	1.6 kB	13 kB	104.21.18.115
o.pki.goog	unknown	2016-06-13	2024-04-24	2024-05-06	650 B	1.4 kB	216.58.211.3
habovethecit.info	unknown	2024-03-31	2024-04-16	2024-04-16	967 B	1.8 kB	143.204.55.79
www.gktorrent.xyz	unknown	unknown	No data	No data	4.3 kB	353 kB	172.67.128.172
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-08	424 B	95 kB	142.250.74.168
ads2550.bid	unknown	2023-05-10	2023-05-10	2024-02-28	2.0 kB	1.9 kB	74.117.182.84
pogothere.xyz	unknown	2022-08-22	2022-09-04	2024-05-07	852 B	105 kB	104.21.24.208
accounts.google.com	81	1997-09-15	2016-03-20	2024-05-06	3.7 kB	11 kB	64.233.162.84
zimages.ws	unknown	2019-12-03	2020-02-11	2024-04-05	4.8 kB	1.8 MB	104.21.86.244

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	bourrepardale.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	www.gktorrent.xyz/themes/default/js/524eba27.js	37 kB	2023-12-03	2024-05-19
Pretty URL www.gktorrent.xyz/themes/default/js/524eba27.js IP 172.67.128.172 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 09:03:12 Last Seen2024-05-19 18:06:07 Times Seen293 Hash dd509264e5718497cd67ad65d50a8641 480e2200fd244d68b5f8e1c90c0c6ce61699a7e8 a91b0f105197706c82220fc1485b86fa4be251b09cb6252d6a4c2221a03f86cc Loading...

	d2t47qpr8mdhkz.cloudfront.net/?rpqtd=1047757	168 kB	2024-05-08	2024-05-08
Pretty URL d2t47qpr8mdhkz.cloudfront.net/?rpqtd=1047757 IP 54.230.241.146 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 13:14:46 Last Seen2024-05-08 13:14:47 Times Seen2 Hash 173bbd8585c19ca7bb7ab81935973314 f5c7483a9b1c314e25d3476c5956cf33daf23ae0 16d472845cd0a9fc7cada1f833d9095489807585e12c0362cd45c5309b7ef4ca Loading...

	www.gktorrent.xyz/recherche/fire%20country	153 B	2024-01-22	2024-05-19
Pretty URL www.gktorrent.xyz/recherche/fire%20country IP 172.67.128.172 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-01-22 14:19:38 Last Seen2024-05-19 16:05:13 Times Seen21 Hash d38c286d20807711a1a24c13c817ead7 5bda5efce7890fdbb789cffce4d2b61668d4513c dc3c1f7097caf3a846d0363ff178875193aeb9b5bcad1d7a8a1df86d79335fdf Loading...

	bourrepardale.com/1clkn/56862	6 B	2023-03-07	2024-05-19
Pretty URL bourrepardale.com/1clkn/56862 IP 23.109.170.113 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:04 Last Seen2024-05-19 19:16:42 Times Seen15232 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	www.googletagmanager.com/gtag/js?id=G-QMMND2ETSV	274 kB	2024-05-08	2024-05-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-QMMND2ETSV IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 13:14:46 Last Seen2024-05-08 13:14:47 Times Seen2 Hash 335a2b68f92151ec10ea44bfd6bc4801 39de19ce018c8479a2c2bd22031ccae14f651a9e 07ccfd653a81e2f0a6baea40b2672e820de510461e06de0c23b60c929f96a3f9 Loading...

	unknown	547 B	2024-05-08	2024-05-08
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 13:14:46 Last Seen2024-05-08 13:14:46 Times Seen1 Hash 4980941704c566f76faa983e2aad636a 1bc3ffbf7dc11fd845a971300046b87a5cc584fa 696fd2d5f60e2ea06af392dc2c45cf75bebeae1fa13127a03030ad6630efbafe Loading...

HTTP Transactions (43)

URL IP Response Size

www.gktorrent.xyz/themes/default/img/logo.png

172.67.128.172

200 OK

4.8 kB

URL GET HTTP/3
www.gktorrent.xyz/themes/default/img/logo.png
IP
172.67.128.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectgktorrent.xyz
FingerprintF5:2C:D1:F3:76:17:73:CC:25:6D:B7:D6:AA:74:9E:17:C8:64:FA:AE
ValidityMon, 29 Apr 2024 18:23:06 GMT - Sun, 28 Jul 2024 18:23:05 GMT

File type
PNG image data, 400 x 100, 8-bit/color RGBA, non-interlaced
Size
4.8 kB (4804 bytes)
Hash
307eb9b2f6fe60c9be9b9e50f6b768b6
36e6ab3104b25e9be9c41db2956076342afd9c00
7b1b7b25ffc229d1b9a4f3f93815cd689cb4ab0d384b4a868940580225e2fe7e

HTTP Headers

GET /themes/default/img/logo.png HTTP/1.1
Host: www.gktorrent.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/recherche/fire%20country
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/png
content-length: 4804
last-modified: Wed, 13 Sep 2023 07:05:50 GMT
etag: "12c4-60538308515f8"
cache-control: max-age=14400
cf-cache-status: HIT
age: 667241
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pyJlS7E5dCMC8llaHFqsY0Ar2HZtb18WQ1J4tlcCodkZc82eLEUO09FQvkLFVffl4JfrUxbakhdrppWKBUVr247fAcCHPzRwLTiO%2Fe3WMWXpqMn1QZxLW5JcUxTBD5qM930WXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880906625e90b4eb-OSL
alt-svc: h3=":443"; ma=86400

www.gktorrent.xyz/themes/default/img/animation1.jpg

172.67.128.172

200 OK

7.3 kB

URL GET HTTP/3
www.gktorrent.xyz/themes/default/img/animation1.jpg
IP
172.67.128.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectgktorrent.xyz
FingerprintF5:2C:D1:F3:76:17:73:CC:25:6D:B7:D6:AA:74:9E:17:C8:64:FA:AE
ValidityMon, 29 Apr 2024 18:23:06 GMT - Sun, 28 Jul 2024 18:23:05 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=PhotoFiltre Studio X, datetime=2022:02:12 13:05:26], baseline, precision 8, 150x150, components 3
Size
7.3 kB (7306 bytes)
Hash
0573d4afb59612940a3e4823747adff4
82e478eb20d06a30e996ca6c7d52afaf8106e1e4
ca6263642c45acb1d6ee1f646306d393040ac67dd077a4bf07f1280364f6e8b7

HTTP Headers

GET /themes/default/img/animation1.jpg HTTP/1.1
Host: www.gktorrent.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/recherche/fire%20country
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 7306
last-modified: Wed, 17 Jan 2024 19:38:50 GMT
etag: "1c8a-60f29657c8232"
cache-control: max-age=14400
cf-cache-status: HIT
age: 667241
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aBtWVkhUuhSdFi9BIbHaw9dlgqYiFYxScDqKjAN621Igk4tuaokZ9cKV1YWTt8mn192PG8huy1Ibl0ZzWrJXI%2FoJV%2FbLN3VgkhAraL3GeiMLPZm2wvWtXTbBGxsRNOZap15UAg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880906627ea2b4eb-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/css/all.css

104.17.24.14

200 OK

20 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/css/all.css
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text
Size
20 kB (19472 bytes)
Hash
e3d3126e93fc1303cf862d5852f56654
357908650e3a2f75f7e77c3e741e8bd0cfa07625
340d09d12141a30f53d870d647f2f4ba93047709331cd441c43db7301bd52d68

HTTP Headers

GET /ajax/libs/font-awesome/6.2.0/css/all.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: text/css; charset=utf-8
content-length: 19472
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "630e6e62-4c10"
last-modified: Tue, 30 Aug 2022 20:09:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 672862
expires: Mon, 28 Apr 2025 11:14:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cu0x9xBMuCiugYAaDUs6qb0cj8TJAamA7NwhUogYWDTNLYqLCrliRu0YoeoKdHfY6ZHur6GkqRe86UU6rwETfa0BzY%2FDCzZFV%2FIETdblwaxUTZS0XF6LdyqjkstluXnv3C3B7n1Y"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 880906633f59712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/6ff64f279ae49edb2484f5201cfad2a54df6691d.jpg

104.21.86.244

200 OK

67 kB

URL GET HTTP/2
zimages.ws/uploads/image/6ff64f279ae49edb2484f5201cfad2a54df6691d.jpg
IP
104.21.86.244:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 375x500, components 3
Size
67 kB (67401 bytes)
Hash
c48a95268bfe9e922fd3b6916b6dc8bf
00a59dff3d1017725887df9158cf6951e1d45556
316b076ed4cc17d540c7924d3ffa6d5ed4c6808f5f247e9888052452caf790ba

HTTP Headers

GET /uploads/image/6ff64f279ae49edb2484f5201cfad2a54df6691d.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 67401
last-modified: Fri, 13 Oct 2023 08:04:04 GMT
etag: "10749-607947ffb6500"
cache-control: max-age=14400
cf-cache-status: HIT
age: 141252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H42fmfVxMWRRmT8pedJ0pvu2TTTHsX0WE6QFb3RFO%2BwVsjEIvY56bpAKCH%2BSAEIwltjlK9%2BoTyoGu5NFo922oaSjKsucP0WN6GPxLFRDToE%2Fq7v5HLjn7qTnwuY3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 880906636dc656a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/132ffb347c0589716dafa194b062d0becc7ed0ed.jpg

104.21.86.244

200 OK

88 kB

URL GET HTTP/2
zimages.ws/uploads/image/132ffb347c0589716dafa194b062d0becc7ed0ed.jpg
IP
104.21.86.244:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x350, components 3
Size
88 kB (88135 bytes)
Hash
3587bfc4caecf99347431d833cab7413
7186e7b37db2d4914ac070354063a354681fc964
580e86bacd7a59db2629dc8120781bf9c3af417021b95561121ae3917ec31fe1

HTTP Headers

GET /uploads/image/132ffb347c0589716dafa194b062d0becc7ed0ed.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 88135
last-modified: Wed, 15 Feb 2023 12:06:10 GMT
etag: "15847-5f4bbe7e29080"
cache-control: max-age=14400
cf-cache-status: HIT
age: 140678
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0CKtkDWeLq7bT%2BxDx2%2FmGIPGnyKKFVsADmcr1P0VRSa2sojz%2FxEqnjIYBpW%2ByCEMw%2BI8z243ehPJx9Yhvxh%2FIPaNEFLQkGGN8atx%2BeCBFETkV%2FIxGAlUcKFth3hd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 880906636dc556a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.gktorrent.xyz/recherche/fire%20country

172.67.128.172

200 OK

140 kB

URL User Request GET HTTP/2
www.gktorrent.xyz/recherche/fire%20country
IP
172.67.128.172:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectgktorrent.xyz
FingerprintF5:2C:D1:F3:76:17:73:CC:25:6D:B7:D6:AA:74:9E:17:C8:64:FA:AE
ValidityMon, 29 Apr 2024 18:23:06 GMT - Sun, 28 Jul 2024 18:23:05 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (368)
Size
140 kB (140283 bytes)
Hash
cbf3260bf6e6635039b36e0a1f3554f5
53c52603bb191ed1692e80692672ac36b1643cce
c9317729b44b5a2e12107addc72163d11e2099df755acee6cc1f4b4d3b514cda

HTTP Headers

GET /recherche/fire%20country HTTP/1.1
Host: www.gktorrent.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: max-age=14400, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
cf-cache-status: MISS
last-modified: Wed, 08 May 2024 11:14:13 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xhXyMMQrufe7dGDY9AJiNmEWle%2FE965wulj2OFssaZ9ulemM3oE%2BcVigxQhFpUd5D8FDPuWNH1ldkaaErHPGNbiRF0Z7XqiBc44HP6n2qKQrEzFf%2FHKmaNZqcU7wDQ%2FefVdtmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809065ecd38b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/cbfa465cb07c90bc29d34678ece707ea68fdd16b.jpg

104.21.86.244

200 OK

115 kB

URL GET HTTP/2
zimages.ws/uploads/image/cbfa465cb07c90bc29d34678ece707ea68fdd16b.jpg
IP
104.21.86.244:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x371, components 3
Size
115 kB (114867 bytes)
Hash
71e1aad661d47e21577c9d9a222539ac
eab872f352ca163c85500411e66a491b692e13b2
5e0567f724971ddd09505979e4ecbafe950174f6317665cdc209c1421834f742

HTTP Headers

GET /uploads/image/cbfa465cb07c90bc29d34678ece707ea68fdd16b.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 114867
last-modified: Wed, 15 Feb 2023 12:34:40 GMT
etag: "1c0b3-5f4bc4dcf1800"
cache-control: max-age=14400
cf-cache-status: HIT
age: 141252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IB21E1LNSu5pDIJ0DjzMFTP5XLTSw35h0YYBl0vlURydOjQzsAgHCm78eRsdhew82TCQqPrs8hd65k1kOjqgK9BXMSB0dMColwKjoZlJiUEcaPzL7VTT057GSxFK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 880906636dc956a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/70d94f2c062d87a5f0f48ea0f689eb0647780753.jpg

104.21.86.244

200 OK

380 kB

URL GET HTTP/2
zimages.ws/uploads/image/70d94f2c062d87a5f0f48ea0f689eb0647780753.jpg
IP
104.21.86.244:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x800, components 3
Size
380 kB (380405 bytes)
Hash
5f3ed2f9812f0381b03f287c3161f6e1
8f064d2389f8f2a9de9717bf7e6798b87e5ccc50
70731d509bbc88bc71e63c7a0ab04200b0a28d828263d1371968f7fba6f68d81

HTTP Headers

GET /uploads/image/70d94f2c062d87a5f0f48ea0f689eb0647780753.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 380405
last-modified: Wed, 15 Feb 2023 12:20:13 GMT
etag: "5cdf5-5f4bc1a21b940"
cache-control: max-age=14400
cf-cache-status: HIT
age: 140678
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sx2ljEcV41icHh%2BZMKE13MLBkyJX%2BgsVEFAbCUvVWoN42fC6zWIvaAsSFR8FR6ug4862rkG33dyzC9quBxfEUQlpYh21fra1BU%2FV32sBYMupboFUE5iJY3JY8P1b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 880906636dc756a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/d144efd8422ce7f79b22fc9a0b43174095024859.jpg

104.21.86.244

200 OK

129 kB

URL GET HTTP/2
zimages.ws/uploads/image/d144efd8422ce7f79b22fc9a0b43174095024859.jpg
IP
104.21.86.244:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x375, components 3
Size
129 kB (128910 bytes)
Hash
81543078469b1b1e7ad995aababdafac
e87e5f76b462fe2f543391423fa1ae719196eba7
b9d2e47ba45438aaeef8a20ddcffe8f98cfb2fb4ca131aef2ab76a2ca97ff2a6

HTTP Headers

GET /uploads/image/d144efd8422ce7f79b22fc9a0b43174095024859.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 128910
last-modified: Wed, 15 Feb 2023 12:35:31 GMT
etag: "1f78e-5f4bc50d94ac0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 141252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lz2WRmwM2ZQNCjOufSEaT5KUYW1FdOyWbyoS7QGOq6YaBbbZj%2Bp5bp8gNrxopIby9tNoumN81VUzdX1NYBnTGONsrjhIRZBKO113AjPSrDhIKc4UqAWJ8v2o4bwk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 880906637dd556a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/d2bdab22a6bb3d76b6666a8a7360d6d0c5ec1c4a.jpg

104.21.86.244

200 OK

117 kB

URL GET HTTP/2
zimages.ws/uploads/image/d2bdab22a6bb3d76b6666a8a7360d6d0c5ec1c4a.jpg
IP
104.21.86.244:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x375, components 3
Size
117 kB (116925 bytes)
Hash
ba1c08c9a835f1dc5ac0cecd0085b461
d2181027051766074871d3532f257bb99cd65cf0
fe8b7d2ead010a33ebbe1db715aa8415d000b6b150f4a9081a3dba24fde6fa9c

HTTP Headers

GET /uploads/image/d2bdab22a6bb3d76b6666a8a7360d6d0c5ec1c4a.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 116925
last-modified: Wed, 15 Feb 2023 12:35:46 GMT
etag: "1c8bd-5f4bc51be2c80"
cache-control: max-age=14400
cf-cache-status: HIT
age: 141252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yMxGP0snUmSpKHrRa38mwDUPK0JEqhTDWU4hERJxt%2B6Kjx4RytZtBmhN20D53eVebGRmE3P%2F89wDFqMumZ5rTbtsWsLHCiRltggnhD4kr%2FGRslWlslYB9VkxcvyX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 880906637dd356a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/6983f2adf85358ada17904e85f022b78de3dc9de.jpg

104.21.86.244

200 OK

483 kB

URL GET HTTP/2
zimages.ws/uploads/image/6983f2adf85358ada17904e85f022b78de3dc9de.jpg
IP
104.21.86.244:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 600x800, components 3
Size
483 kB (482860 bytes)
Hash
681f1c07c8e97fd8c2a5d18edf2b5ffa
c0c9d34c4ade1271f078016b82a89ccc782a9dd5
db51c6cfa46ccbdfad940b36d9add72414caaaba90576a8912d6d13a69721ec7

HTTP Headers

GET /uploads/image/6983f2adf85358ada17904e85f022b78de3dc9de.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 482860
last-modified: Wed, 15 Feb 2023 12:19:03 GMT
etag: "75e2c-5f4bc15f59bc0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 140678
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O94u3AsLvFwTgmFyHsaXWKyIPuw4muvvbQ34k28GPNgmNdqN789YKvKrmfRnTHPEAZDCVnDTKG0U9y2TojaM%2BY0kJK93NBqfXyhXuk6V8hblaOihuIGKui3j5sJU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 880906636dc456a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/3ee0bea100757f88ee64e561446f86f425568ff7.jpg

104.21.86.244

200 OK

96 kB

URL GET HTTP/2
zimages.ws/uploads/image/3ee0bea100757f88ee64e561446f86f425568ff7.jpg
IP
104.21.86.244:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x371, components 3
Size
96 kB (95837 bytes)
Hash
c0ebd7facc289d36b9c7ad474905906c
457b780216e396be4cfea53de4bb55c484b290b8
4ea0b5bee8246e6a1f002490516c4f6d010cfb3db4d7527b584594100693cfb9

HTTP Headers

GET /uploads/image/3ee0bea100757f88ee64e561446f86f425568ff7.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 95837
last-modified: Wed, 15 Feb 2023 12:12:45 GMT
etag: "1765d-5f4bbff6dc940"
cache-control: max-age=14400
cf-cache-status: HIT
age: 140677
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lv82J5YLsq99tlT1jB1XLsnHCXqKmH1FcsxWUpUbBJahto8OeUqglIK%2F80lA8HC%2BaleSn7VgaQtcJU0Ton9t5hhQyibe%2BvtYPUMCDZfM5uERpW9xgZrJnBUnC5pt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 88090663de4456a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

zimages.ws/uploads/image/d4a71764e07c7c4bb4e9de4edff37a6f31321ebb.jpg

104.21.86.244

200 OK

132 kB

URL GET HTTP/2
zimages.ws/uploads/image/d4a71764e07c7c4bb4e9de4edff37a6f31321ebb.jpg
IP
104.21.86.244:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x375, components 3
Size
132 kB (131670 bytes)
Hash
5a4b148b104dd47e8fa33a06d3426df2
189fecadb1cb50e659c0a4411b3d8753fb4bda50
64290c97fce79397e0319f64a7534277d19fbf7fd292cf59600cca974f81a705

HTTP Headers

GET /uploads/image/d4a71764e07c7c4bb4e9de4edff37a6f31321ebb.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 131670
last-modified: Wed, 15 Feb 2023 12:36:05 GMT
etag: "20256-5f4bc52e01740"
cache-control: max-age=14400
cf-cache-status: HIT
age: 141252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iTuzHGIgOL3TGrV6KpzRiqwF3Q3HHqj5oXDs4HboSX5FpOYenMNBh%2FhrARvnDHOm3hOG6OS4jIeCvQW512SZgI9tzxbNe9p2gTemBOMRribktQdKNyzF1M2of%2BGq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 88090663de4556a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.gktorrent.xyz/themes/default/img/footer.jpg

172.67.128.172

200 OK

9.6 kB

URL GET HTTP/3
www.gktorrent.xyz/themes/default/img/footer.jpg
IP
172.67.128.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectgktorrent.xyz
FingerprintF5:2C:D1:F3:76:17:73:CC:25:6D:B7:D6:AA:74:9E:17:C8:64:FA:AE
ValidityMon, 29 Apr 2024 18:23:06 GMT - Sun, 28 Jul 2024 18:23:05 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2017:06:04 12:20:56], baseline, precision 8, 1220x60, components 3
Size
9.6 kB (9633 bytes)
Hash
97fddb0e74115715fc8f567e46b8c712
12299a16edac93d8fdc373ae32e423d3b2943b91
67d99bd1dfe83f196706be97ca0695c2dd26b677252188fe0ab551a935540f8c

HTTP Headers

GET /themes/default/img/footer.jpg HTTP/1.1
Host: www.gktorrent.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/themes/default/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:14 GMT
content-type: image/jpeg
content-length: 9633
last-modified: Wed, 13 Sep 2023 07:05:49 GMT
etag: "25a1-60538306f8651"
cache-control: max-age=14400
cf-cache-status: HIT
age: 663236
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tTBnFuKriFXARgXrhp3Sj7jroDX8XXKXUWnp4uNKP3UcpWVguctATdIUWdTFRegpfbjEBug5fX4CSRRjkoGu74IzPLKpCEiF0CDRNROecM1omoMptrlg2g73wGo6hbmmumzIVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880906663b1cb4eb-OSL
alt-svc: h3=":443"; ma=86400

www.gktorrent.xyz/themes/default/img/sprites.png

172.67.128.172

200 OK

33 kB

URL GET HTTP/3
www.gktorrent.xyz/themes/default/img/sprites.png
IP
172.67.128.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectgktorrent.xyz
FingerprintF5:2C:D1:F3:76:17:73:CC:25:6D:B7:D6:AA:74:9E:17:C8:64:FA:AE
ValidityMon, 29 Apr 2024 18:23:06 GMT - Sun, 28 Jul 2024 18:23:05 GMT

File type
PNG image data, 360 x 112, 8-bit/color RGBA, non-interlaced
Size
33 kB (33117 bytes)
Hash
d0170697fb4f2c01eb54df5c4951dbbe
a222900207b5744b4dc2e0f52bf6372d4ec631a7
fe90ba698ba8ba79af4acc9d3f8ba0f5dc52d6f492f512d9646d9da4c74522a2

HTTP Headers

GET /themes/default/img/sprites.png HTTP/1.1
Host: www.gktorrent.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/themes/default/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:14 GMT
content-type: image/png
content-length: 33117
last-modified: Wed, 13 Sep 2023 07:05:51 GMT
etag: "815d-60538309152da"
cache-control: max-age=14400
cf-cache-status: HIT
age: 654830
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jDDMNYJjPoD%2B%2BRkyn%2Fc8DAUiXLsARPu5QYTcyd4jpJ9Gx504nvV0stnTbIA9pM8Tr12T6uHuB4u0W2jGi8pGC%2FWXe0Z6XYV%2BhErt73xgUVIGlKAJMGRoACOa2K2McO6Yo0ZJQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880906663b19b4eb-OSL
alt-svc: h3=":443"; ma=86400

d2t47qpr8mdhkz.cloudfront.net/?rpqtd=1047757

54.230.241.146

200 OK

54 kB

URL GET HTTP/2
d2t47qpr8mdhkz.cloudfront.net/?rpqtd=1047757
IP
54.230.241.146:443
ASN
#16509 AMAZON-02

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (15945)
Size
54 kB (54496 bytes)
Hash
173bbd8585c19ca7bb7ab81935973314
f5c7483a9b1c314e25d3476c5956cf33daf23ae0
16d472845cd0a9fc7cada1f833d9095489807585e12c0362cd45c5309b7ef4ca

HTTP Headers

GET /?rpqtd=1047757 HTTP/1.1
Host: d2t47qpr8mdhkz.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-length: 54496
date: Wed, 08 May 2024 11:14:14 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IRYcCIDJRAaVTvK1PzMo6Di5hN6zaQfJzXCvZwSzqsJtW5CcXPd7tQ==
X-Firefox-Spdy: h2

bourrepardale.com/1clkn/56862

23.109.170.113

200 OK

26 B

URL GET HTTP/1.1
bourrepardale.com/1clkn/56862
IP
23.109.170.113:443
ASN
#7979 SERVERS-COM

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerLet's Encrypt
Subjectbourrepardale.com
Fingerprint9C:52:0E:6E:A8:1B:CA:C0:B0:B8:5F:82:75:4C:49:1E:EA:78:A1:93
ValidityTue, 05 Mar 2024 14:00:39 GMT - Mon, 03 Jun 2024 14:00:38 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1clkn/56862 HTTP/1.1
Host: bourrepardale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 May 2024 11:14:14 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Thu, 09-May-2024 11:14:14 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Thu, 09-May-2024 11:14:14 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

www.googletagmanager.com/gtag/js?id=G-QMMND2ETSV

142.250.74.168

200 OK

95 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-QMMND2ETSV
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (3034)
Size
95 kB (94776 bytes)
Hash
335a2b68f92151ec10ea44bfd6bc4801
39de19ce018c8479a2c2bd22031ccae14f651a9e
07ccfd653a81e2f0a6baea40b2672e820de510461e06de0c23b60c929f96a3f9

HTTP Headers

GET /gtag/js?id=G-QMMND2ETSV HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 11:14:14 GMT
expires: Wed, 08 May 2024 11:14:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 94776
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/webfonts/fa-brands-400.woff2

104.17.24.14

200 OK

108 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/webfonts/fa-brands-400.woff2
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 107460, version 770.256
Size
108 kB (107460 bytes)
Hash
f4bdd85a576812f553ec3cfea8b1a2b5
380bea4e9eb484d835d89cc608f2af7c3179e8a4
3fe890d088ecf0cc9bc1b9069201e52972dbad6237865524090e15982d0de718

HTTP Headers

GET /ajax/libs/font-awesome/6.2.0/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gktorrent.xyz
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:14 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 107460
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "630e6e62-1a3c4"
last-modified: Tue, 30 Aug 2022 20:09:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 17514
expires: Mon, 28 Apr 2025 11:14:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s5l592%2BdquPKWQXr2Hqd4kHUhFRNaJj7VyrfFPTOzkVcYCVBth9fE6KmeOoLjgOA29JEABt7BUce25LttQHchoQKxTTPV0cZq98a%2Fo6UAEbho6xNWUxZ%2BPnI9VRLbloCpXIhHJcx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 880906668e7f0b3d-OSL
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/webfonts/fa-solid-900.woff2

104.17.24.14

200 OK

150 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/webfonts/fa-solid-900.woff2
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150472, version 770.256
Size
150 kB (150472 bytes)
Hash
3e50e269ee627bb2279f91d18c085167
a7fca574d24e9ffa5ee0e0589ffe17277ae4ec27
d27bc752105c079f8a516e9142406a9fc12cbb409f9bf8681f2ddfe0360b52a6

HTTP Headers

GET /ajax/libs/font-awesome/6.2.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gktorrent.xyz
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:14 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150472
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "630e6e62-24bc8"
last-modified: Tue, 30 Aug 2022 20:09:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 567505
expires: Mon, 28 Apr 2025 11:14:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MWaHvpufNpvZrHF%2BpJmE1tDB%2BmkuSRBIPXy0j8EwzKWvQ2XOq8STjk10jM9fZX9akhlF%2FzyFHSPIqLpo2TUTmqG97wIItEFwpomqQrs7ivvedplmHj5811CWyFrBRsLw%2BBX%2Fjw%2Fb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 880906668e800b3d-OSL
alt-svc: h3=":443"; ma=86400

www.gktorrent.xyz/themes/default/js/524eba27.js

172.67.128.172

200 OK

14 kB

URL GET HTTP/3
www.gktorrent.xyz/themes/default/js/524eba27.js
IP
172.67.128.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectgktorrent.xyz
FingerprintF5:2C:D1:F3:76:17:73:CC:25:6D:B7:D6:AA:74:9E:17:C8:64:FA:AE
ValidityMon, 29 Apr 2024 18:23:06 GMT - Sun, 28 Jul 2024 18:23:05 GMT

File type
JavaScript source, ASCII text, with very long lines (37386), with no line terminators
Size
14 kB (14234 bytes)
Hash
dd509264e5718497cd67ad65d50a8641
480e2200fd244d68b5f8e1c90c0c6ce61699a7e8
a91b0f105197706c82220fc1485b86fa4be251b09cb6252d6a4c2221a03f86cc

HTTP Headers

GET /themes/default/js/524eba27.js HTTP/1.1
Host: www.gktorrent.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/recherche/fire%20country
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=37394
etag: W/"9212-609f64f25ea27-gzip"
last-modified: Sun, 12 Nov 2023 15:35:54 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 667241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=83OwQlAhQdY15zG530Xm9G%2BOyvFUPZtRyWDZ9%2FtRuSalmUDfYm0rSwCrHpvO3M77GN2cMykh6yD1MpDS2wyrPVksFcVPNncCvFfu2M7vauvCD%2BKTMm%2B55SWnEW8eh7GZZoD3Ag%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880906625e8fb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/webfonts/fa-solid-900.woff2

104.17.24.14

200 OK

150 kB

URL GET HTTP/3
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.2.0/webfonts/fa-solid-900.woff2
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150472, version 770.256
Size
150 kB (150472 bytes)
Hash
3e50e269ee627bb2279f91d18c085167
a7fca574d24e9ffa5ee0e0589ffe17277ae4ec27
d27bc752105c079f8a516e9142406a9fc12cbb409f9bf8681f2ddfe0360b52a6

HTTP Headers

GET /ajax/libs/font-awesome/6.2.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.gktorrent.xyz
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:14 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 150472
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "630e6e62-24bc8"
last-modified: Tue, 30 Aug 2022 20:09:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 567505
expires: Mon, 28 Apr 2025 11:14:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1tljO0UP5bM%2F7WuTTevmUnBVhiVTs7LCXrprCq1%2F7DZTWhtTX5zLE5XFXx4HCBElGj32eOIaO%2BfC%2FSwRvjp%2BfaQznQw%2BGM%2BIiDHkA6pIJyM8K92WoSFKd84WutQgadraS6VPNe4p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 880906680fd30b3d-OSL
alt-svc: h3=":443"; ma=86400

ads2550.bid/z5VZfLuqyLVwygCIlzQkHCEJbmfAVc7aZc8Knp8WFN-0U-uBPFP_GceqlWV3PHJ--47KvI2Ot3Zf1ovtvqY_5QY3byF50oDF-M86iLazmPQbpO4THDnh791M0zSy6LVfID80HvQu0uIu6q2fxmPvs8sPuMiMtTOHvUFudtKvvAqv_6wV1NYfiO0Tta72E9GjdP9Ep1CLM4xSCdaEQvEMBjW9jlHx9w47k_b221cvnSQFw_B-F1eBmYtJZ5gYkl5kIhPfDOsAAbbNBWbBPKKScKVoPJW2E06afuLH3HajsjehKTlnxXIFZVNrhcuAjdPeVU2rUwamM3wyUPLAjFTjSWCiNJUBEVH5_1bJj-j6IxGiliIknCCdSxED-h22gaz2wLVUjbXNhzwpx5PcwuBTZnQVMRvsneRKAYathJC2MHRK3HxLmYG8GFF03LrnXzqOmdgzin8FAjDCr8kkE1knW0dgB3mkj5c61zn3gUW6gq1qyBoqsafBvS2_-sMr70_F3C6Lt1nmGaEZG43Jcb4WrRgPnNzmfglAjMze8yTnoh2jLrPZMgmdR9zte_U_lwVxf6gNTHRRa?

74.117.182.84

200

713 B

URL POST HTTP/1.1
ads2550.bid/z5VZfLuqyLVwygCIlzQkHCEJbmfAVc7aZc8Knp8WFN-0U-uBPFP_GceqlWV3PHJ--47KvI2Ot3Zf1ovtvqY_5QY3byF50oDF-M86iLazmPQbpO4THDnh791M0zSy6LVfID80HvQu0uIu6q2fxmPvs8sPuMiMtTOHvUFudtKvvAqv_6wV1NYfiO0Tta72E9GjdP9Ep1CLM4xSCdaEQvEMBjW9jlHx9w47k_b221cvnSQFw_B-F1eBmYtJZ5gYkl5kIhPfDOsAAbbNBWbBPKKScKVoPJW2E06afuLH3HajsjehKTlnxXIFZVNrhcuAjdPeVU2rUwamM3wyUPLAjFTjSWCiNJUBEVH5_1bJj-j6IxGiliIknCCdSxED-h22gaz2wLVUjbXNhzwpx5PcwuBTZnQVMRvsneRKAYathJC2MHRK3HxLmYG8GFF03LrnXzqOmdgzin8FAjDCr8kkE1knW0dgB3mkj5c61zn3gUW6gq1qyBoqsafBvS2_-sMr70_F3C6Lt1nmGaEZG43Jcb4WrRgPnNzmfglAjMze8yTnoh2jLrPZMgmdR9zte_U_lwVxf6gNTHRRa?
IP
74.117.182.84:443
ASN
#40824 WZ-US-40824

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerLet's Encrypt
Subjectads2550.bid
Fingerprint61:EF:FF:E5:CE:C9:12:7D:E5:30:6D:0E:9D:CE:78:A6:BB:45:C9:9B
ValiditySun, 05 May 2024 08:02:05 GMT - Sat, 03 Aug 2024 08:02:04 GMT

File type
JSON text data
Size
713 B (713 bytes)
Hash
b30270e96005d42dc15f2a205840646e
9ee3e8cd6a9c9f090fb603f94a7183267a4cd391
724da7f392c9539dc3fdc593d5fe47c3c57f4821f84f4973e5415716f5b31774

HTTP Headers

POST /z5VZfLuqyLVwygCIlzQkHCEJbmfAVc7aZc8Knp8WFN-0U-uBPFP_GceqlWV3PHJ--47KvI2Ot3Zf1ovtvqY_5QY3byF50oDF-M86iLazmPQbpO4THDnh791M0zSy6LVfID80HvQu0uIu6q2fxmPvs8sPuMiMtTOHvUFudtKvvAqv_6wV1NYfiO0Tta72E9GjdP9Ep1CLM4xSCdaEQvEMBjW9jlHx9w47k_b221cvnSQFw_B-F1eBmYtJZ5gYkl5kIhPfDOsAAbbNBWbBPKKScKVoPJW2E06afuLH3HajsjehKTlnxXIFZVNrhcuAjdPeVU2rUwamM3wyUPLAjFTjSWCiNJUBEVH5_1bJj-j6IxGiliIknCCdSxED-h22gaz2wLVUjbXNhzwpx5PcwuBTZnQVMRvsneRKAYathJC2MHRK3HxLmYG8GFF03LrnXzqOmdgzin8FAjDCr8kkE1knW0dgB3mkj5c61zn3gUW6gq1qyBoqsafBvS2_-sMr70_F3C6Lt1nmGaEZG43Jcb4WrRgPnNzmfglAjMze8yTnoh2jLrPZMgmdR9zte_U_lwVxf6gNTHRRa? HTTP/1.1
Host: ads2550.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.gktorrent.xyz
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/1.1 200 
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
access-control-allow-credentials: true
access-control-allow-origin: https://www.gktorrent.xyz
set-cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920; Domain=ads2550.bid; Expires=Thu, 12 Jun 2025 11:14:14 GMT; Path=/; Secure; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 713
date: Wed, 08 May 2024 11:14:13 GMT

tigainareputaon.info/TzBLdTBgDygGDRZkGUVjfUgeN1sNBx0jVwdhAw1mGGERO1MjX20BWSsNekUEeAd+QhY/WS9IAWlDPxREOkN2RBYmXi0aDWlGdkQefARlRgZhBG0ADX4WPwVRKA16U0A7RCdIAXgBfkQGeQh+QQN/Bg

104.21.18.115

204 No Content

0 B

URL GET HTTP/2
tigainareputaon.info/TzBLdTBgDygGDRZkGUVjfUgeN1sNBx0jVwdhAw1mGGERO1MjX20BWSsNekUEeAd+QhY/WS9IAWlDPxREOkN2RBYmXi0aDWlGdkQefARlRgZhBG0ADX4WPwVRKA16U0A7RCdIAXgBfkQGeQh+QQN/Bg
IP
104.21.18.115:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjecttigainareputaon.info
Fingerprint05:C6:98:66:10:C1:C4:21:E9:78:30:6D:B4:FC:8C:F0:9F:11:B9:BA
ValidityMon, 01 Apr 2024 06:58:58 GMT - Sun, 30 Jun 2024 06:58:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /TzBLdTBgDygGDRZkGUVjfUgeN1sNBx0jVwdhAw1mGGERO1MjX20BWSsNekUEeAd+QhY/WS9IAWlDPxREOkN2RBYmXi0aDWlGdkQefARlRgZhBG0ADX4WPwVRKA16U0A7RCdIAXgBfkQGeQh+QQN/Bg HTTP/1.1
Host: tigainareputaon.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Wed, 08 May 2024 11:14:14 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AdCd7M5ZoSOKQsuejyaJmwDXBa4Kay1l6ZWlvLa%2BDMjj4P4OM0jdaX5WvOu6FehJ4APUWVHoncjIfsley%2FmoMPuE80iALJFgg3ZjWaW55PHwFYv0PILOO8iau%2FoelakhprnN5nIqCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88090667badb56a5-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

o.pki.goog/wr2

216.58.211.3

471 B

URL
o.pki.goog/wr2
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5991db4ffbfc4b57b0f99a35a0e6a3d0
1b74b56ddc178de4587ef8898436cff19cc2c66b
17904ae58c5cfd605b9b96ef28a59c0b158141c0d69922267a677ff041ca24d9

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 May 2024 11:14:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pogothere.xyz/asd100.bin

104.21.24.208

200 OK

103 kB

URL GET HTTP/2
pogothere.xyz/asd100.bin
IP
104.21.24.208:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectpogothere.xyz
Fingerprint34:D3:33:F8:49:E2:1E:3E:44:A8:5D:74:68:9C:B8:A0:D5:F8:DD:0B
ValidityWed, 27 Mar 2024 02:15:30 GMT - Tue, 25 Jun 2024 02:15:29 GMT

File type
data
Size
103 kB (102871 bytes)
Hash
458befd847a02418dbdbb4f01f2388f3
a2969e958e039f1d457e9494ea46adf51c041291
cfc207e1a169d92f1e7fbcbb8013ac9b3c96d8950e944c060831ebf96592c959

HTTP Headers

GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gktorrent.xyz/
Origin: https://www.gktorrent.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:14 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://www.gktorrent.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 3861
last-modified: Wed, 08 May 2024 10:09:53 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0m7Qxj2%2BAtOoiq6VW6wlW1djH1RvrXGwXEg3kbKySIsIkKEqqAS351BYKiGDMrYm3qYDKW%2BLc%2BBZsh5d9Bf32oh7E9rEiutBDvV0Y4fdM113jvRlmdqAz0Cpky3CVoFm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880906692e64712f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail

64.233.162.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
64.233.162.84:443
ASN
#15169 GOOGLE

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint75:65:5E:EB:A9:59:16:DF:32:A3:39:DC:8A:A2:FD:28:92:33:6B:0D
ValidityTue, 16 Apr 2024 04:20:43 GMT - Tue, 09 Jul 2024 04:20:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:fc1a_U6ybpV2mIfl3cGaHI7NS7QSBQ:P6aF2txxDgCQyNbo; Expires=Fri, 08-May-2026 11:14:14 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 08 May 2024 11:14:14 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQzg0WNy3yK4EOEcx8SH_84DOuvzgVtobN6ZiL5NLmxJAUn2EyyWALCIQ7GoqIvCci-QSW4Oyg
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-5REyj477EqClGxvD64O1kA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: unsafe-none
cross-origin-resource-policy: cross-origin
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube

64.233.162.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
64.233.162.84:443
ASN
#15169 GOOGLE

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint75:65:5E:EB:A9:59:16:DF:32:A3:39:DC:8A:A2:FD:28:92:33:6B:0D
ValidityTue, 16 Apr 2024 04:20:43 GMT - Tue, 09 Jul 2024 04:20:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: application/binary
set-cookie: __Host-GAPS=1:_wiKLcHbdj7y5Papyp6rUGAAKIA7Dw:ZXUn_D3zXagUhKFZ; Expires=Fri, 08-May-2026 11:14:14 GMT; Path=/; Secure; HttpOnly; Priority=HIGH
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 08 May 2024 11:14:14 GMT
location: https://accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQxPmV6dZcNUQTgrJWoVU-sJ6dTE6AxQv_eeZmdokrK7Cc_tKs72aX4FC_N_sQETCq3Ztbbqyw
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: require-trusted-types-for 'script';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport, script-src 'nonce-VRFriFNkY7Oos7I_I47IIA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/AccountsSigninPassiveLoginHttp/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/AccountsSigninPassiveLoginHttp/cspreport/allowlist
cross-origin-opener-policy: unsafe-none
server: ESF
content-length: 0
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

habovethecit.info/d1djTG8WNQAhUBZqAWoaBTteaV0xclEKC0UjV3seByVbIQsfPBliDBs4FigJBTgNOEEZMhdpXTEZNQQMQjZSL1wwEQACDjQWBhQ5LTo5CSI4DyQGBSICCBYiHR0oGAcAMAYkLSQfGSsCNQEUCiZEODMdLTEvMys9IBUwKB82OiI4LR00FS4sJnJRDiYxES0JOzknMTRXPxkJIz41ElM1IB8GJhsBMmYmfRsgDlAFKyQGMnQOJT8nDQUiZCcgOiUeCSg9IxYTPSAlPycNBQRjJSQXLRI0CjU0AlYgNTFuIRsCLS8xBBs4DTQdDSIWNiUjMR4vGxZOJDIbQi0zOn8pMjJTeQMtFjUcOxoGNRgIThE5f14kFFI/GDoFMR8tPx0OAT4DNTkhPT8UJTgCFAI2BisjYw4JA08SL38pMTFSBgcSPAAqJxonD2oFBDgNPFICDiUdDC8CLCUb

143.204.55.79

200 OK

1.2 kB

URL GET HTTP/2
habovethecit.info/d1djTG8WNQAhUBZqAWoaBTteaV0xclEKC0UjV3seByVbIQsfPBliDBs4FigJBTgNOEEZMhdpXTEZNQQMQjZSL1wwEQACDjQWBhQ5LTo5CSI4DyQGBSICCBYiHR0oGAcAMAYkLSQfGSsCNQEUCiZEODMdLTEvMys9IBUwKB82OiI4LR00FS4sJnJRDiYxES0JOzknMTRXPxkJIz41ElM1IB8GJhsBMmYmfRsgDlAFKyQGMnQOJT8nDQUiZCcgOiUeCSg9IxYTPSAlPycNBQRjJSQXLRI0CjU0AlYgNTFuIRsCLS8xBBs4DTQdDSIWNiUjMR4vGxZOJDIbQi0zOn8pMjJTeQMtFjUcOxoGNRgIThE5f14kFFI/GDoFMR8tPx0OAT4DNTkhPT8UJTgCFAI2BisjYw4JA08SL38pMTFSBgcSPAAqJxonD2oFBDgNPFICDiUdDC8CLCUb
IP
143.204.55.79:443
ASN
#16509 AMAZON-02

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerAmazon
Subjecthabovethecit.info
Fingerprint38:74:19:B2:CD:B6:EF:31:D4:35:71:5C:7D:82:82:D3:98:DC:BB:F5
ValidityMon, 15 Apr 2024 00:00:00 GMT - Wed, 14 May 2025 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (3045), with no line terminators
Size
1.2 kB (1196 bytes)
Hash
56d8effa0047413b7ce0810c9617806b
d34e0e11af8eb50bdf1f9c6250dd23ee57d551e9
59d1d27c02bffc37bc413313493a6b6f7179cc8562511dc244af8edc77c5f120

HTTP Headers

GET /d1djTG8WNQAhUBZqAWoaBTteaV0xclEKC0UjV3seByVbIQsfPBliDBs4FigJBTgNOEEZMhdpXTEZNQQMQjZSL1wwEQACDjQWBhQ5LTo5CSI4DyQGBSICCBYiHR0oGAcAMAYkLSQfGSsCNQEUCiZEODMdLTEvMys9IBUwKB82OiI4LR00FS4sJnJRDiYxES0JOzknMTRXPxkJIz41ElM1IB8GJhsBMmYmfRsgDlAFKyQGMnQOJT8nDQUiZCcgOiUeCSg9IxYTPSAlPycNBQRjJSQXLRI0CjU0AlYgNTFuIRsCLS8xBBs4DTQdDSIWNiUjMR4vGxZOJDIbQi0zOn8pMjJTeQMtFjUcOxoGNRgIThE5f14kFFI/GDoFMR8tPx0OAT4DNTkhPT8UJTgCFAI2BisjYw4JA08SL38pMTFSBgcSPAAqJxonD2oFBDgNPFICDiUdDC8CLCUb HTTP/1.1
Host: habovethecit.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html
content-length: 1196
date: Wed, 08 May 2024 11:14:14 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List
x-cache: Miss from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: x_SerGH0ty2lJ-iuUqglx6_SEDEyUm3XITeMvH71rRLTrX5rFAFx8g==
X-Firefox-Spdy: h2

ads2550.bid/zD6SLGuxDAC_M1t-YkKUNpd3Nfk0lRZnnKCY_q1yNIWWmLU7NGyWLVM9yFZpK-qe2ZN-NkAPnnUZ6-9ltUfz9rQneqlbqZ3TiE-TpATpt84K6SToMUhCPVm4njDPxWVIWWr3FMBD44Qrzx_-afGlQoCJee2RzVmQsAP1_r3JcMrH5oiS4en79YbfytjVUG2HwY3iPC9ycQUyLLxvp0UgAT0lAU8wJWuhOYFWy_2EjNld5FH6cvidFWZMoGokcwTi8HQyA7DEnL42cTKUpIHkm-hOAbr1TCV2VEX7LvnPXirLUgTVgl25R4gykAU8MkBU-x2-6kw4ovuj2ZVDDoRfikdzub-rlIGd4qG2tHf63bYR0rSXGo0GGPavKdw9WqyWhEPR403IyirkScawPw3VkBg2umiOXRBDwY8j1B9Xba26HI8qFoywsxd01Aitu3Xfd1fCdnfo5hZ1uRKB-NRgRZzW749nkhcI-PoQmx37XY6_ZfbOc0hE?DC=WZ

74.117.182.84

200

49 B

URL GET HTTP/1.1
ads2550.bid/zD6SLGuxDAC_M1t-YkKUNpd3Nfk0lRZnnKCY_q1yNIWWmLU7NGyWLVM9yFZpK-qe2ZN-NkAPnnUZ6-9ltUfz9rQneqlbqZ3TiE-TpATpt84K6SToMUhCPVm4njDPxWVIWWr3FMBD44Qrzx_-afGlQoCJee2RzVmQsAP1_r3JcMrH5oiS4en79YbfytjVUG2HwY3iPC9ycQUyLLxvp0UgAT0lAU8wJWuhOYFWy_2EjNld5FH6cvidFWZMoGokcwTi8HQyA7DEnL42cTKUpIHkm-hOAbr1TCV2VEX7LvnPXirLUgTVgl25R4gykAU8MkBU-x2-6kw4ovuj2ZVDDoRfikdzub-rlIGd4qG2tHf63bYR0rSXGo0GGPavKdw9WqyWhEPR403IyirkScawPw3VkBg2umiOXRBDwY8j1B9Xba26HI8qFoywsxd01Aitu3Xfd1fCdnfo5hZ1uRKB-NRgRZzW749nkhcI-PoQmx37XY6_ZfbOc0hE?DC=WZ
IP
74.117.182.84:443
ASN
#40824 WZ-US-40824

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerLet's Encrypt
Subjectads2550.bid
Fingerprint61:EF:FF:E5:CE:C9:12:7D:E5:30:6D:0E:9D:CE:78:A6:BB:45:C9:9B
ValiditySun, 05 May 2024 08:02:05 GMT - Sat, 03 Aug 2024 08:02:04 GMT

File type
GIF image data, version 89a, 1 x 1
Size
49 B (49 bytes)
Hash
56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef

HTTP Headers

GET /zD6SLGuxDAC_M1t-YkKUNpd3Nfk0lRZnnKCY_q1yNIWWmLU7NGyWLVM9yFZpK-qe2ZN-NkAPnnUZ6-9ltUfz9rQneqlbqZ3TiE-TpATpt84K6SToMUhCPVm4njDPxWVIWWr3FMBD44Qrzx_-afGlQoCJee2RzVmQsAP1_r3JcMrH5oiS4en79YbfytjVUG2HwY3iPC9ycQUyLLxvp0UgAT0lAU8wJWuhOYFWy_2EjNld5FH6cvidFWZMoGokcwTi8HQyA7DEnL42cTKUpIHkm-hOAbr1TCV2VEX7LvnPXirLUgTVgl25R4gykAU8MkBU-x2-6kw4ovuj2ZVDDoRfikdzub-rlIGd4qG2tHf63bYR0rSXGo0GGPavKdw9WqyWhEPR403IyirkScawPw3VkBg2umiOXRBDwY8j1B9Xba26HI8qFoywsxd01Aitu3Xfd1fCdnfo5hZ1uRKB-NRgRZzW749nkhcI-PoQmx37XY6_ZfbOc0hE?DC=WZ HTTP/1.1
Host: ads2550.bid
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Cookie: UUID=a5422175-f779-5bdd-9035-7ae658bf7920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
access-control-allow-origin: *
access-control-allow-methods: *
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
accept-ranges: bytes
etag: W/"49-1710406818000"
last-modified: Thu, 14 Mar 2024 09:00:18 GMT
content-type: image/gif
content-length: 49
date: Wed, 08 May 2024 11:14:14 GMT

o.pki.goog/wr2

216.58.211.3

471 B

URL
o.pki.goog/wr2
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d59e53e22f3681f080bc6a493b7508a1
50ec966f62f5efce0a5fbea8917c5c5b025eaccf
cffc1da003262cd2907f76fb611cccac521441669302d10fae3aeb0c9a81c181

HTTP Headers

POST /wr2 HTTP/1.1
Host: o.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 May 2024 11:14:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQzg0WNy3yK4EOEcx8SH_84DOuvzgVtobN6ZiL5NLmxJAUn2EyyWALCIQ7GoqIvCci-QSW4Oyg

64.233.162.84

302 Found

429 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQzg0WNy3yK4EOEcx8SH_84DOuvzgVtobN6ZiL5NLmxJAUn2EyyWALCIQ7GoqIvCci-QSW4Oyg
IP
64.233.162.84:443
ASN
#15169 GOOGLE

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint75:65:5E:EB:A9:59:16:DF:32:A3:39:DC:8A:A2:FD:28:92:33:6B:0D
ValidityTue, 16 Apr 2024 04:20:43 GMT - Tue, 09 Jul 2024 04:20:42 GMT

File type
HTML document, ASCII text, with very long lines (403)
Size
429 B (429 bytes)
Hash
3a47c352a42ba34354641cf6537fefed
5e54ea1efa9ebdb0f1798d0860a4697b22b42f6a
5e748d6f83cdd71d8c8fcd1c064b2b2dfbfb798c0ad9ed5b67b844eb5e3f38eb

HTTP Headers

GET /InteractiveLogin?continue=https://www.google.com/favicon.ico&hl=en&passive=true&service=mail&uilel=3&ifkv=AaSxoQzg0WNy3yK4EOEcx8SH_84DOuvzgVtobN6ZiL5NLmxJAUn2EyyWALCIQ7GoqIvCci-QSW4Oyg HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gktorrent.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:7zci5SSXTYJRXdj5k2kR8aEZrgYqxw:2xv6ZpeTV_eWG7DE;Path=/;Expires=Fri, 08-May-2026 11:14:14 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 08 May 2024 11:14:14 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQzfMy1XVG_sL19Gpwk-cKiDQkeUPRcFALLzPOre7u9vYD_9gZWqZElELZycWA6CUyXSPB2lOQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-637221904%3A1715166854834642&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-fxuh7P9u-f_AMXLWlZu6Uw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 429
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

pogothere.xyz/

104.21.24.208

200 OK

455 B

URL GET HTTP/2
pogothere.xyz/
IP
104.21.24.208:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectpogothere.xyz
Fingerprint34:D3:33:F8:49:E2:1E:3E:44:A8:5D:74:68:9C:B8:A0:D5:F8:DD:0B
ValidityWed, 27 Mar 2024 02:15:30 GMT - Tue, 25 Jun 2024 02:15:29 GMT

File type
ASCII text, with no line terminators
Size
455 B (455 bytes)
Hash
4cf1bac9520987165d76b7d2ae2f3738
42f3dad32f540d5a1b36d7cc2759c3a024d37400
87a206d0a477eedf14e9e824856fae042e161fc2644a6725bcf2a233b180f66a

HTTP Headers

GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gktorrent.xyz/
Origin: https://www.gktorrent.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:14 GMT
content-type: text/plain
set-cookie: csu=1001863255267495@1@1715166854; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://www.gktorrent.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zuDgUpIHMWpPXHlZvee9eC971KWZnHaYZfR4zuZuw2lYwJBAWwW1lo%2BPoUsJX0%2BwLhN9vsEHmClVgwrCrWxymQNbTaSizAdsxAzmZddn4CnFFNsRs1vgkFoqBJxnrMkM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880906693e70712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

d2t47qpr8mdhkz.cloudfront.net/NVHc5a1c3GFcNaCAeXVZmZEMOXGJjUUkZMjJKThwgehBSHzgmBVwFI3oPQBFxPgRWBSdpAmAtBjcvbCQ+IFFNETNpRx8HNjoQBE0yOhQEWnE1E1tWY3IDSQQ8aRhDAjU3DlURIjdRTApqORhDAjs4FhxZEWFZCU5lZF9BWmZxRHtOZWQbUAUiLFILWy9sQW-ZdY3FEe05lZAVPTmQVTg9FZ31SC1swMRRSBHJmMQtbZmRHCFtmcUUJDT4mEl8EL3FFf1JhekcfHmpl

54.230.241.146

511 B

URL
d2t47qpr8mdhkz.cloudfront.net/NVHc5a1c3GFcNaCAeXVZmZEMOXGJjUUkZMjJKThwgehBSHzgmBVwFI3oPQBFxPgRWBSdpAmAtBjcvbCQ+IFFNETNpRx8HNjoQBE0yOhQEWnE1E1tWY3IDSQQ8aRhDAjU3DlURIjdRTApqORhDAjs4FhxZEWFZCU5lZF9BWmZxRHtOZWQbUAUiLFILWy9sQW-ZdY3FEe05lZAVPTmQVTg9FZ31SC1swMRRSBHJmMQtbZmRHCFtmcUUJDT4mEl8EL3FFf1JhekcfHmpl
IP
54.230.241.146:0
ASN
#16509 AMAZON-02

Certificate
IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT

File type
ASCII text, with very long lines (738), with no line terminators
Size
511 B (511 bytes)
Hash
20a6befa56097f8a0cdb717d2fd7c107
d0d8acd0d0c87179f4f23c75ab204579b4a48ee8
eb59d67608d91574280e2670fc423b85fc3854b718cf9ff42643f6b4e3010a63

HTTP Headers

GET /NVHc5a1c3GFcNaCAeXVZmZEMOXGJjUUkZMjJKThwgehBSHzgmBVwFI3oPQBFxPgRWBSdpAmAtBjcvbCQ+IFFNETNpRx8HNjoQBE0yOhQEWnE1E1tWY3IDSQQ8aRhDAjU3DlURIjdRTApqORhDAjs4FhxZEWFZCU5lZF9BWmZxRHtOZWQbUAUiLFILWy9sQW-ZdY3FEe05lZAVPTmQVTg9FZ31SC1swMRRSBHJmMQtbZmRHCFtmcUUJDT4mEl8EL3FFf1JhekcfHmpl HTTP/1.1
Host: d2t47qpr8mdhkz.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://habovethecit.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-length: 511
date: Wed, 08 May 2024 11:14:15 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oNuq_EivVrdEry06IlJVvL1EBjxvSwBWUOtIkDu6SMXh7ue7CpntMw==
X-Firefox-Spdy: h2

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQx3l--HmlNqyrfSysMyA-SBcfvQxH-6GIiyuftLwC2JuKrJBVtT9VsW3x_o0mb3E8tiIy4iCQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S486562443%3A1715166854834559&theme=mn&ddm=0

64.233.162.84

403 Forbidden

804 B

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQx3l--HmlNqyrfSysMyA-SBcfvQxH-6GIiyuftLwC2JuKrJBVtT9VsW3x_o0mb3E8tiIy4iCQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S486562443%3A1715166854834559&theme=mn&ddm=0
IP
64.233.162.84:443
ASN
#15169 GOOGLE

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint9F:A1:53:E4:09:E1:ED:82:F8:E0:30:B6:39:FA:EC:03:B4:89:46:8A
ValidityTue, 16 Apr 2024 03:19:40 GMT - Tue, 09 Jul 2024 03:19:39 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (1644), with no line terminators
Size
804 B (804 bytes)
Hash
f5fdfd135f8fdb645609dbca0264637f
19528b3204a43aa40f08f50ec871e5b6d05f9055
bf5b9b046b87c2c06354e27ed6041b206434f452a943d0369c58db2178cd70df

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQx3l--HmlNqyrfSysMyA-SBcfvQxH-6GIiyuftLwC2JuKrJBVtT9VsW3x_o0mb3E8tiIy4iCQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S486562443%3A1715166854834559&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gktorrent.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 08 May 2024 11:14:14 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-j4kV0Z-5_EcFvgCXd299Tg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

tigainareputaon.info/popunder.gif

104.21.18.115

200 OK

11 kB

URL GET HTTP/3
tigainareputaon.info/popunder.gif
IP
104.21.18.115:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjecttigainareputaon.info
Fingerprint05:C6:98:66:10:C1:C4:21:E9:78:30:6D:B4:FC:8C:F0:9F:11:B9:BA
ValidityMon, 01 Apr 2024 06:58:58 GMT - Sun, 30 Jun 2024 06:58:57 GMT

File type
GIF image data, version 89a, 1 x 1
Size
11 kB (11218 bytes)
Hash
8f8a25412b3cc80b88a32dada18b4423
5cf5e60d05a803d9c63d1045cbb65c900875eca4
063fafb67d5f9b24b4439550dbddeb8d76610163b1ae1cfd4a5fce38a73fbba9

HTTP Headers

GET /popunder.gif HTTP/1.1
Host: tigainareputaon.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:15 GMT
content-type: image/gif
access-control-allow-origin: *
pragma: public
cache-control: public, max-age=604800, immutable
cf-cache-status: HIT
age: 35275
last-modified: Wed, 08 May 2024 01:26:20 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4i6%2FUmbdzjMMf3tdkBzF9XAIXrfFME1yJ9O1fJ23nzPTWUKlLVtfBJS%2FD8l18zoIngDUFI%2BBpCXpiDyQkNvgM%2BPeMpXVYGEcru5c30%2FFjN7TPWahG%2FRZ7lbRKhguTIPykJjzXmKuXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809066e3a865690-OSL
alt-svc: h3=":443"; ma=86400

tigainareputaon.info/VlFnbm95bgQdUhhgJSc9LBwkNwEuYiQJWjw3Ly8kEmMtFgkxBEEaBjJsVl5bYWZSWUkmOANTXnAiEw8bIyJaXV9mYEEHATA+Wl5fZmBBGFJnf1RaQWVnSVpJI2xWXl9naVFdXWNkVVhYYmhSSBsmMABTXnAhExoDa2BQX1pnZ1FWWmNiVVY

104.21.18.115

204 No Content

0 B

URL GET HTTP/3
tigainareputaon.info/VlFnbm95bgQdUhhgJSc9LBwkNwEuYiQJWjw3Ly8kEmMtFgkxBEEaBjJsVl5bYWZSWUkmOANTXnAiEw8bIyJaXV9mYEEHATA+Wl5fZmBBGFJnf1RaQWVnSVpJI2xWXl9naVFdXWNkVVhYYmhSSBsmMABTXnAhExoDa2BQX1pnZ1FWWmNiVVY
IP
104.21.18.115:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjecttigainareputaon.info
Fingerprint05:C6:98:66:10:C1:C4:21:E9:78:30:6D:B4:FC:8C:F0:9F:11:B9:BA
ValidityMon, 01 Apr 2024 06:58:58 GMT - Sun, 30 Jun 2024 06:58:57 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /VlFnbm95bgQdUhhgJSc9LBwkNwEuYiQJWjw3Ly8kEmMtFgkxBEEaBjJsVl5bYWZSWUkmOANTXnAiEw8bIyJaXV9mYEEHATA+Wl5fZmBBGFJnf1RaQWVnSVpJI2xWXl9naVFdXWNkVVhYYmhSSBsmMABTXnAhExoDa2BQX1pnZ1FWWmNiVVY HTTP/1.1
Host: tigainareputaon.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 204 No Content
date: Wed, 08 May 2024 11:14:15 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M1altQD7KLPkEXK0RJRRbYOgiFLq9nuLmqETb%2FFFpDETtdmgn9P11bZYfbHtIiyz5gIQz09AAbB6w1KTo6tHQ4%2FHnGUpuL0NLEBdgQOWxOOdFhF4njOattEj%2FseyGyik4Hi%2B4BR66w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809066e2a795690-OSL
alt-svc: h3=":443"; ma=86400

www.gktorrent.xyz/themes/default/img/favicon.ico

172.67.128.172

200 OK

3.1 kB

URL GET HTTP/3
www.gktorrent.xyz/themes/default/img/favicon.ico
IP
172.67.128.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectgktorrent.xyz
FingerprintF5:2C:D1:F3:76:17:73:CC:25:6D:B7:D6:AA:74:9E:17:C8:64:FA:AE
ValidityMon, 29 Apr 2024 18:23:06 GMT - Sun, 28 Jul 2024 18:23:05 GMT

File type
PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced
Size
3.1 kB (3077 bytes)
Hash
d5700e3c1ad986257bd180f35de64842
3c49da1bf28247474b12a00f0eec579e7d76afb7
e7c404f5ac885d47faf16dfb691a60f11dd3d182ebd95c6a57008e7f56ef5954

HTTP Headers

GET /themes/default/img/favicon.ico HTTP/1.1
Host: www.gktorrent.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/recherche/fire%20country
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:14 GMT
content-type: image/x-icon
last-modified: Wed, 13 Sep 2023 07:05:48 GMT
etag: W/"c05-605383066c414-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 663233
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AQ54vxtELTdO3SXdONJJuzBF4woOsyrAkEzdHG%2Fe%2FobdlMJSz02ZA30j8X6KUp2bazNScyFwlFxvKHuCTbObBOW1i2Oldu3Z1rrgdmnMPk%2Fj7peD4pfgg1%2Ft89EYZGegr5UJSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 88090668ee21b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.gktorrent.xyz/themes/default/css/style.css

172.67.128.172

200 OK

16 kB

URL GET HTTP/3
www.gktorrent.xyz/themes/default/css/style.css
IP
172.67.128.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectgktorrent.xyz
FingerprintF5:2C:D1:F3:76:17:73:CC:25:6D:B7:D6:AA:74:9E:17:C8:64:FA:AE
ValidityMon, 29 Apr 2024 18:23:06 GMT - Sun, 28 Jul 2024 18:23:05 GMT

File type

Size
16 kB (15668 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /themes/default/css/style.css HTTP/1.1
Host: www.gktorrent.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/recherche/fire%20country
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=19483
etag: W/"4c1b-615fec87e4202-gzip"
last-modified: Sat, 13 Apr 2024 18:44:49 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 656314
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zmG16r5oalBMWlb8ISP6u90q2CFt1O%2FZ8CmWLltA2TJWTyfu2T%2FBOSRzBUhLLoGiWqb3rm0ookYeOGUTTm8AHbuZ4QRo3c75oeSBCc9cWwihJ1Eudhx5vxt7NC9MsTiZf7%2BZ%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880906625e84b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

zimages.ws/uploads/image/2b4a13b5a0f54f5e0abb14cec9eb764d7507bd16.jpg

104.21.86.244

200 OK

137 kB

URL GET HTTP/2
zimages.ws/uploads/image/2b4a13b5a0f54f5e0abb14cec9eb764d7507bd16.jpg
IP
104.21.86.244:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectzimages.ws
FingerprintC7:96:DF:5E:0F:2F:64:4C:DA:B8:1F:6F:29:4C:AD:74:FC:5D:81:22
ValidityThu, 04 Apr 2024 22:36:27 GMT - Wed, 03 Jul 2024 22:36:26 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 250x375, components 3
Size
137 kB (137352 bytes)
Hash
24ef5680c3ba27dc345b71e5d9535e53
63adefef302f706424b2200ac04c2f86d8505a93
874528de3b14d4dbfa4b7481aaf2f95943fdf4980acf80526a06996a6ffe6a04

HTTP Headers

GET /uploads/image/2b4a13b5a0f54f5e0abb14cec9eb764d7507bd16.jpg HTTP/1.1
Host: zimages.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: image/jpeg
content-length: 137352
last-modified: Wed, 15 Feb 2023 12:09:48 GMT
etag: "21888-5f4bbf4e0fb00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 141252
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ATka4HEk%2Fx1HaPaIPGQl3V5eBQx%2FoSXEPG6Bgt1y4aCey3mq5TAf4d%2FbUan7ObBIPTSVdIiUWdZ3nL4n%2BnFA6ZmGhqXtcopho5lQiSnuV%2BK6Z%2FJIHUsoiJK9QPVI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 880906636dca56a4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQxPmV6dZcNUQTgrJWoVU-sJ6dTE6AxQv_eeZmdokrK7Cc_tKs72aX4FC_N_sQETCq3Ztbbqyw

64.233.162.84

302 Found

0 B

URL GET HTTP/2
accounts.google.com/InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQxPmV6dZcNUQTgrJWoVU-sJ6dTE6AxQv_eeZmdokrK7Cc_tKs72aX4FC_N_sQETCq3Ztbbqyw
IP
64.233.162.84:443
ASN
#15169 GOOGLE

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services
Subjectaccounts.google.com
Fingerprint75:65:5E:EB:A9:59:16:DF:32:A3:39:DC:8A:A2:FD:28:92:33:6B:0D
ValidityTue, 16 Apr 2024 04:20:43 GMT - Tue, 09 Jul 2024 04:20:42 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /InteractiveLogin?continue=https://www.youtube.com/favicon.ico&hl=en&passive=true&service=youtube&uilel=3&ifkv=AaSxoQxPmV6dZcNUQTgrJWoVU-sJ6dTE6AxQv_eeZmdokrK7Cc_tKs72aX4FC_N_sQETCq3Ztbbqyw HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gktorrent.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
set-cookie: __Host-GAPS=1:Ie6CL4FyD8E7HF-t0FleixVzu0-NXw:qbFgSPFYbM_edJtY;Path=/;Expires=Fri, 08-May-2026 11:14:14 GMT;Secure;HttpOnly;Priority=HIGH
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 08 May 2024 11:14:14 GMT
location: https://accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQx3l--HmlNqyrfSysMyA-SBcfvQxH-6GIiyuftLwC2JuKrJBVtT9VsW3x_o0mb3E8tiIy4iCQ&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S486562443%3A1715166854834559&theme=mn&ddm=0
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: script-src 'nonce-oIuI-K7cFOdk9p24NjW9IQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 427
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQzfMy1XVG_sL19Gpwk-cKiDQkeUPRcFALLzPOre7u9vYD_9gZWqZElELZycWA6CUyXSPB2lOQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-637221904%3A1715166854834642&theme=mn&ddm=0

64.233.162.84

403 Forbidden

0 B

URL GET HTTP/3
accounts.google.com/v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQzfMy1XVG_sL19Gpwk-cKiDQkeUPRcFALLzPOre7u9vYD_9gZWqZElELZycWA6CUyXSPB2lOQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-637221904%3A1715166854834642&theme=mn&ddm=0
IP
64.233.162.84:443
ASN
#15169 GOOGLE

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services
Subject*.google.com
Fingerprint9F:A1:53:E4:09:E1:ED:82:F8:E0:30:B6:39:FA:EC:03:B4:89:46:8A
ValidityTue, 16 Apr 2024 03:19:40 GMT - Tue, 09 Jul 2024 03:19:39 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /v3/signin/identifier?continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&ifkv=AaSxoQzfMy1XVG_sL19Gpwk-cKiDQkeUPRcFALLzPOre7u9vYD_9gZWqZElELZycWA6CUyXSPB2lOQ&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&dsh=S-637221904%3A1715166854834642&theme=mn&ddm=0 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.gktorrent.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 08 May 2024 11:14:14 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-mTY52C5-E2lVxBsfvL1Jrw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factor, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gktorrent.xyz/themes/default/css/bootstrap.css

172.67.128.172

200 OK

118 kB

URL GET HTTP/3
www.gktorrent.xyz/themes/default/css/bootstrap.css
IP
172.67.128.172:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.gktorrent.xyz/recherche/fire%20country
Certificate
IssuerGoogle Trust Services LLC
Subjectgktorrent.xyz
FingerprintF5:2C:D1:F3:76:17:73:CC:25:6D:B7:D6:AA:74:9E:17:C8:64:FA:AE
ValidityMon, 29 Apr 2024 18:23:06 GMT - Sun, 28 Jul 2024 18:23:05 GMT

File type
ASCII text, with very long lines (65267)
Size
118 kB (118005 bytes)
Hash
a395c3de44c16c1a3e9258bf546dbac0
0da977e4f00b90a2e547f474598ce8f71c1ddde6
ba2b3c228bc222a45f855224ca14be96f7a11ccaed70dd9b5e8aafe9bc93c705

HTTP Headers

GET /themes/default/css/bootstrap.css HTTP/1.1
Host: www.gktorrent.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gktorrent.xyz/recherche/fire%20country
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 11:14:13 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=151026
etag: W/"24df2-611acf874a82c-gzip"
last-modified: Sun, 18 Feb 2024 19:27:40 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 667241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZVFu1Atz%2BX%2BDO5UjErh%2F54oACvu0iksyTlqc4btWf5YK5boAplhwY%2BMLx%2BE8MFZ0NCdFG5Fey0GdzTcEbUq%2BoZbL9eJT6gyCok%2BR%2BOLWlgHCIODMIcqL0IIIQgS9nWskacZXqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880906625e85b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (43)

URL GET HTTP/3

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/3

IP

ASN

Requested by

Certificate