| my.rtmark.net/gid.js?userId=7wh9xjyj0pouc0fq83xwixhic49qrig4 | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=7wh9xjyj0pouc0fq83xwixhic49qrig4 IP139.45.195.8:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
Hash5c84c2d1da55f7aec2fb2d84e31171ad 6944c46e7e593afaaa1e24eb3ec6e647b4a27d09 67b381960faa05d3af36b7f6a91b56850d8083bd0e0f99bfcededc4efd043e7d
GET /gid.js?userId=7wh9xjyj0pouc0fq83xwixhic49qrig4 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lifteque.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://lifteque.top
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=7wh9xjyj0pouc0fq83xwixhic49qrig4; expires=Sat, 10 May 2025 18:20:12 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| lifteque.top/js/v-index.js.da9f7529.js | 188.114.97.1 | | 14 kB |
URL lifteque.top/js/v-index.js.da9f7529.js IP188.114.97.1:0
File typeJavaScript source, ASCII text, with very long lines (40985), with no line terminators Hash47a5b821c80a532b5e989cf87d451283 c0f9e87128e1d7d634649fb3c7b6c08f714e79bc 2526538666fe9c7811b9afaf71794b4f8cb4f0751f62872e1a0d8c3a6c131f07
GET /js/v-index.js.da9f7529.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:11 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=40988
etag: W/"662b7651-a01c"
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7JGvL0z1eNm4JG4yEZYMSKaZEhNj5dBadM4UIYA%2B9fuQnspasOT2JVdmJZf1y9w9e3GsRzkCjiUrXQo9w8%2Fp3zHgbY1cdLnnifmRs8Gvk0rUuJd6OgXdycmREiuS1HE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11cbecd0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 0 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://lifteque.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:20:12 GMT
content-length: 0
access-control-allow-origin: https://lifteque.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 17 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hash5b64e8b89092b2e3dfd448b10700627f 484b3032619fa1acd135d114565b0a5166281c22 f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4
POST /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 708
Origin: https://lifteque.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/json; charset=utf-8
content-length: 17
x-trace-id: 8baaa7c7191f4dbdef3910deeba8588f
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://lifteque.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| lifteque.top/js/config/dict/cookie-consent-1.json?v=10 | 188.114.97.1 | 200 OK | 2.9 kB |
URL GET HTTP/3lifteque.top/js/config/dict/cookie-consent-1.json?v=10 IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
Hash4f1c632e971c4261f927ed0cf67bfdee 18c72b10719ca98b61b1f1f84e4b01f0ed8b3763 2bfa8e9b4326caea44f0d0c0345a31f34f19d47ae2e60fbc7c557df9ceffdca6
GET /js/config/dict/cookie-consent-1.json?v=10 HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:11 GMT
content-type: application/json
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
vary: Accept-Encoding
etag: W/"662b7651-1a65"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RC714IxZl%2BklPt%2FLKu2eA8XUV5z1vTjLZGvWmHpDosDu81BU%2FYl5q2xFKkfsFOvJTDVwGGPJqoYXae%2Bn4PQ%2FglS3rtnRu3sDsio8JQOtkr9CSjP6eHw9vHHQTUT19sY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11e69790b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/src_js_components_Footer_Footer_tsx.412b820b.js | 188.114.97.1 | 200 OK | 547 B |
URL GET HTTP/3lifteque.top/js/src_js_components_Footer_Footer_tsx.412b820b.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (1164), with no line terminators Hashad784be273d9bb58a1bdb776fe68c913 bf0b74a256306c77d24062d639367dad04d65e27 afcfb13a7df90df6a26380b17bccd58dbda36e93865b7adb59739c369cf6b622
GET /js/src_js_components_Footer_Footer_tsx.412b820b.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"662b7651-48d"
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MUJdSwPaaxMlzo%2FYu08BGpZb2akSW9VFWPpPgt5LnU4eyuyUvu0BjgkTeTZ4L5tgw1kXX2XehJq5m%2BTbvyVcWD0c3MxJwY4vhcMgRYM6RoQZhTcr%2FvgY1qiLpMHnq%2Bo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf1200b510b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 17 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hash5b64e8b89092b2e3dfd448b10700627f 484b3032619fa1acd135d114565b0a5166281c22 f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4
POST /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 757
Origin: https://lifteque.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/json; charset=utf-8
content-length: 17
x-trace-id: cc22332c548c732c9634de825d5064e1
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://lifteque.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| lifteque.top/css/betting-survey.e1fedc09.css | 188.114.97.1 | 200 OK | 6.0 kB |
URL GET HTTP/3lifteque.top/css/betting-survey.e1fedc09.css IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeASCII text, with very long lines (26716), with no line terminators Hash1c2b049c08235d0c389647b4a3fdd028 5e16e961c86591db4cd7f2eda6d87864ac84359c 7cf8566500e87b9e115597e1ad62c170b9848fabeb475f90d67b4b722dfa8c72
GET /css/betting-survey.e1fedc09.css HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:11 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=26723
etag: W/"662b7650-6863"
last-modified: Fri, 26 Apr 2024 09:39:28 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xfqOjO%2F%2F2SH29NnWrepUDWLDD%2FRfAXJfiBu9SWd73nrBvKuxNSA0kiSS1iuTfY4CZdMZggICh8M3dlX61wEhRvhrma0UIVhWyDsiZmI8b8TQIXbjG5bexs0UKa1iadE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11e09020b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/s-checkSessionStorageAvailable.ts.e8412d91.js | 188.114.97.1 | | 16 kB |
URL lifteque.top/js/s-checkSessionStorageAvailable.ts.e8412d91.js IP188.114.97.1:0
File typeJavaScript source, ASCII text, with very long lines (330), with no line terminators Hasha1707fb484c103f2351843fcfb7028c4 43d3d0c0563335d6a9ba13a8920bdf7b70cea7bd bec32703d77fa5a512dd84399bdd43cb32735e483476e66d0eeb957a403c790c
GET /js/s-checkSessionStorageAvailable.ts.e8412d91.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:11 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"662b7651-14a"
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CIi2TZN43sqD3v2AsPnKwD6u3CuDkTYN8qrbbdV0%2FcRHnDFoJoGSGjyfJaMB9VacsJI5sRFr6G%2B%2FDgBZs3cARIn3Tqtij5lpSfXsWBBaz%2BZ8LKRfcUM5Z2Y1HSuP1v8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11cbed10b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/img/betting/sport-betting/ball.webp | 188.114.97.1 | | 2.9 kB |
URL lifteque.top/img/betting/sport-betting/ball.webp IP188.114.97.1:0
File typeRIFF (little-endian) data, Web/P image Hash825112e52d4395f2fea6284419244dfd 319282ad0d2a1da4c6cacd67784c7ddc897b33ec 97e541db3f4df8ef84da4e7269993281662249d4f0b5f01010801c5d73dddb23
GET /img/betting/sport-betting/ball.webp HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lifteque.top/css/betting-survey.e1fedc09.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: image/webp
content-length: 2850
last-modified: Fri, 26 Apr 2024 09:39:28 GMT
vary: Accept-Encoding
etag: "662b7650-b22"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A0N4YRyBVXnmAkZTUt%2FFlEHLsAFoKxU9OwulspYrgzHw%2FM8PhndvJ%2BvbtdXVtHxGOZmhkFF6jmzoTuZ2yHuS0POWM7XIbLHfaptsEFsSRrzdV%2BSdTfYxygITAoqHsSs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf1218cc00b41-OSL
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/BettingSurvey.ca3ef9f6.js | 188.114.97.1 | 200 OK | 1.5 kB |
URL GET HTTP/3lifteque.top/js/BettingSurvey.ca3ef9f6.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeJavaScript source, ASCII text, with very long lines (2196), with no line terminators Hash6c1fcd8d3d49e61d947c4e02b37ed91b d49e141498d678d7588e9a618eaeb79a3e880d08 4663a563732aa45d33f607d963d5d18477c23c2ab14914dbb74b1df43da9221b
GET /js/BettingSurvey.ca3ef9f6.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"662b7651-894"
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wzbkdKXZQCG8V8kCyrhUKR0IW2%2BNnLxbGpIYy4WxcfL14LwMKvHxjILF1THI46MJkDegGM7Pli%2B0WDSwlR8Uu76XluRHy5MpAfdmyoApIGCTeHDAwor8fd6d9WmE2iM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf1200b520b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 0 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Origin: https://lifteque.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:20:12 GMT
content-length: 0
access-control-allow-origin: https://lifteque.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a&ruid=6e1ecf70-d960-465c-92a7-d9c2e5054f08 | 37.48.68.71 | 200 OK | 12 B |
URL POST HTTP/1.1datatechonert.com/log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a&ruid=6e1ecf70-d960-465c-92a7-d9c2e5054f08 IP37.48.68.71:443 ASN#60781 LeaseWeb Netherlands B.V.
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerSectigo Limited Subjectdatatechonert.com Fingerprint3F:E1:50:2C:9F:FC:F9:37:03:E3:B6:34:00:06:89:69:01:E7:C3:27 ValiditySun, 10 Dec 2023 00:00:00 GMT - Mon, 23 Dec 2024 23:59:59 GMT
Hashadb4650bfc9d2a73d4dd69583b0ceb14 1ce399d6e936232aaf2192cd7903a279c5015f22 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=eacf36da-c06d-4d71-90cc-88e30cd4240a&ruid=6e1ecf70-d960-465c-92a7-d9c2e5054f08 HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1347
Origin: https://lifteque.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Fri, 10 May 2024 18:20:12 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://lifteque.top
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
|
|
| arleavannya.com/sync-metrics | 139.45.197.248 | 200 OK | 17 B |
URL OPTIONS HTTP/2arleavannya.com/sync-metrics IP139.45.197.248:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectarleavannya.com Fingerprint8A:67:B7:06:5F:61:ED:52:C0:9B:58:C2:64:98:7D:1B:64:03:3F:47 ValidityThu, 18 Apr 2024 17:09:05 GMT - Wed, 17 Jul 2024 17:09:04 GMT
Hash5b64e8b89092b2e3dfd448b10700627f 484b3032619fa1acd135d114565b0a5166281c22 f1ea07a1e51a389c8de07120ae5c2e432e9dd8f4fbd6f92489f185b0523a3fd4
POST /sync-metrics HTTP/1.1
Host: arleavannya.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1660
Origin: https://lifteque.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/json; charset=utf-8
content-length: 17
x-trace-id: 21bf8930dfa2628ed798e81483c16e03
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://lifteque.top
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| zopsouchil.com/contents/s/0f/b5/a0/eccfe6fe27747ca4a84abb1c9b/0926450336462.png | 188.114.96.1 | 200 OK | 11 kB |
URL GET HTTP/2zopsouchil.com/contents/s/0f/b5/a0/eccfe6fe27747ca4a84abb1c9b/0926450336462.png IP188.114.96.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerGoogle Trust Services LLC Subjectzopsouchil.com Fingerprint27:10:A1:52:10:EE:C5:7C:70:18:B8:67:B0:A8:C5:FB:3B:F2:6E:3C ValidityMon, 15 Apr 2024 09:21:15 GMT - Sun, 14 Jul 2024 09:21:14 GMT
File typePNG image data, 140 x 140, 8-bit/color RGB, non-interlaced Hash0fb5a0eccfe6fe27747ca4a84abb1c9b f83ae7f2c746872a9ba9da626928946e3b6de28d 70eba3a4b499c4ffe4a8e62461c1b8581a9dd904f14b5742b48632dbebdd30a6
GET /contents/s/0f/b5/a0/eccfe6fe27747ca4a84abb1c9b/0926450336462.png HTTP/1.1
Host: zopsouchil.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: image/png
content-length: 10580
last-modified: Thu, 21 Jan 2021 09:10:34 GMT
vary: Accept-Encoding
etag: "6009450a-2954"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L3wwavogAYDmzWR7lKkGAOYVyUspbj65atB53ToSsliRlPXYzJw9cZqAuBr%2BCUdNJ0xI6rbk7lmpk9RXXFedrwE8LdOlErCzKL3TGgtHxLI8oZ9HHKoJ6DhkrncMlohm%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf12259f8b4f7-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| lifteque.top/js/_each-land-config.3299fec3.js | 188.114.97.1 | | 32 kB |
URL lifteque.top/js/_each-land-config.3299fec3.js IP188.114.97.1:0
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash0ba3468fb169d838d511e11b5b33eaef fb53785cd4dcc6e5cf0fcebfcafed46a3968cbe9 6de414b4180a6f11c4f5a9ba570d5e97ac8e596b1f9c1bb86872a11ecd416384
GET /js/_each-land-config.3299fec3.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:11 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=72043
etag: W/"662b7651-1196b"
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W2RdbtBsRwsjGnIFQKEox0leJflXcB0dXBuSHzu4ATCBcFmxWQlLsaPHOFgLTcLzZiJbF9GgJeDncbKDXyn4bZqGRTl%2Ba%2FZ1WTrIljWgYRx41vvfWQEdbpPH3Ib8Z2s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11cbed60b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/css/_core-survey.d3ac2ee0.css | 188.114.97.1 | 200 OK | 8.8 kB |
URL GET HTTP/3lifteque.top/css/_core-survey.d3ac2ee0.css IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeASCII text, with no line terminators Hash30d726a40ffe74d794b282ca1795b44c b43155653a1b9cc8d257687df9a75e0f204db348 4916da6d6e00e0e6681cccaf9107eb45fdfc78fe2e476444623c30a64959b5e4
GET /css/_core-survey.d3ac2ee0.css HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:11 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=84
etag: W/"662b7650-54"
last-modified: Fri, 26 Apr 2024 09:39:28 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gtdXqoYIvWq%2BXf7UntIwhHlCivpqQhARo16BlwLQ4v%2BI%2F9dQaKT3YL2YnYYIHxmGKBlThYoSz92Vk7wlOsW7bNnTJMJvV%2FIUtbPfAAoaEGATp7n9jE8wS5%2FJP%2BirOe0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11cdefe0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/v-redux-toolkit.esm.js.fe3487ca.js | 188.114.97.1 | | 11 kB |
URL lifteque.top/js/v-redux-toolkit.esm.js.fe3487ca.js IP188.114.97.1:0
File typeJavaScript source, ASCII text, with very long lines (11319), with no line terminators Hash5aa3676547abc9a38889c09e69ca968d d19ea919192e86f97c34c0a5959ad05c52299aec 21648e7ba668a077e403b6bd1a38f05d55d987737b959d57e3b3c53787107eb7
GET /js/v-redux-toolkit.esm.js.fe3487ca.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:11 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"662b7651-2c37"
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7rgo9wwiDWJ67mRCeIVDpRnqhciwWhlzVDMn93LNgDL5v0BodT5tStUjbd7RPkya5nhn%2FIiVomSFOqgVxCLnIqVAAp3i2vB8r8uJCvQh2TzJPeLPVKhy6Rg9RvsGACo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11cbed40b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/v-react-dom.production.min.js.c3329619.js | 188.114.97.1 | 200 OK | 129 kB |
URL GET HTTP/3lifteque.top/js/v-react-dom.production.min.js.c3329619.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeJavaScript source, ASCII text, with very long lines (65440) Size129 kB (129359 bytes) Hashf5e47be85ac64238a6511377c99bef6b 14202f5ec5092ffcb622a84db5877f1c99493b4c 198b63ec93086fb7042c6052dc6558626c506852de0903547cd1b2d52780839e
GET /js/v-react-dom.production.min.js.c3329619.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:11 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 09:39:28 GMT
vary: Accept-Encoding
etag: W/"662b7650-1f94f"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bDEI1ieLXbhcStROX0idok0X8ixdpat1hpBI%2FOo2lzJEbjp4aTwAYjKYXrudQdoSA20LyUBeo5jO0AlTc39ekfPVICJQ%2F%2F0w91NPiKaFMxwSQ9a142BGzMI6iJxipFQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11cbeda0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/v-constants.js.49317f47.js | 188.114.97.1 | 200 OK | 600 B |
URL GET HTTP/3lifteque.top/js/v-constants.js.49317f47.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeASCII text, with very long lines (664), with no line terminators Hashcf8c486ed295e4a6a30f4fb155bf9fd3 9942a3d40672242af15f2d5cc95df2c06872914f 83c4b13e336b66f673d082c8b9b2b20fb98772916cb5da52f9e48c929cafc9cb
GET /js/v-constants.js.49317f47.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
vary: Accept-Encoding
etag: W/"662b7651-258"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tDyLA9ELY6EQvMBDWHG5MMmjlkiBVrsGMPDvnD990OszFSjQ%2F4X1cjkzdzkTDDiOYxB67VdfX9cgoWZya7o3m9wMGltcYDNhLunM7aWEj0%2FhhJryhdtCdIECSSnbQqI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf1200b490b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/pfe/current/stattag.js | 188.114.97.1 | 200 OK | 19 kB |
URL GET HTTP/3lifteque.top/pfe/current/stattag.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeJavaScript source, ASCII text, with very long lines (19053), with no line terminators Hash3a74216e872211a9c770302bb7d4a63f 7e63556174a7d66eee407218e503ec0aae2c0f9e 03405209d89a927b81d53eb13968663069760776389c5400bb79d11bd9f78f78
GET /pfe/current/stattag.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"662b7651-4a6d"
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=s1yd1vGLxjfAuuU1AAypwxBX6XQu7JsCssftwv6NQ26J4lK2d8hCkzkptsLhl8KiY4L4HkKZ81CRtXNYhmroErFisMzUpKwS3XYKmqQ6TZLq3NDxURnCcm1DkMYqj3A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11ffb310b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/v-node.js.28d8082c.js | 188.114.97.1 | 200 OK | 6.3 kB |
URL GET HTTP/3lifteque.top/js/v-node.js.28d8082c.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeJavaScript source, ASCII text, with very long lines (6337), with no line terminators Hashb11cf8c1d8d8183e4d11a8f17a41189c 2f912e66ec3992d21e66e7c8e4ff40a2142a4d64 9e69f7af4cfb7fa8b5eb0d67ed8a36f5d23c276ba29b7209565faefab84b71ba
GET /js/v-node.js.28d8082c.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 09:39:28 GMT
vary: Accept-Encoding
etag: W/"662b7650-186b"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3mbkP8SVuwnWr5uMg4jl3SMwqIYv00RDwYtVCgLWNQQA9TndTLvFxkmJ7vu7SJQPXthmsPtjj%2FVs4A5v1nh7R%2Fxs8hvvo8472mnCjRrOenvaSl5c5ziV4yqZEsTnhHo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11ffb390b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/v-utilities.js.d1112fc4.js | 188.114.97.1 | 200 OK | 2.6 kB |
URL GET HTTP/3lifteque.top/js/v-utilities.js.d1112fc4.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeJavaScript source, ASCII text, with very long lines (2645), with no line terminators Hash3f45699a0edf3555d230727e3e1ba866 f30b9f52153e77b9ce60a30ecb15f36657792908 1b312ac32a5c37ffe1c4bf861a048a76d807155fe494adf5dd356d067367f488
GET /js/v-utilities.js.d1112fc4.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"662b7651-a11"
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KZ3gGeW8zldtwVx9DdtF3bAkHn%2F%2BnUBGA2xW8Y0OSVceTyrt4CoTB01r49Y%2Besq6XCzka7CF3bmbW5bUg7s2TpIKa%2Bw3n19Whz9rOR9oMmz9WlhwCg%2FtVHKfX5G1miI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf1200b3e0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/v-html-to-dom.js.ff1ae7e0.js | 188.114.97.1 | 200 OK | 364 B |
URL GET HTTP/3lifteque.top/js/v-html-to-dom.js.ff1ae7e0.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeJavaScript source, ASCII text, with very long lines (373), with no line terminators Hash57f543d4f79657dc92755e2f2031da65 4884f924743049d7812b58958633a40f65e159b5 0fcc39a4a2b765b1ed92a6093fe6dc70e0a886914746f5af6fda6e3d1dc7417d
GET /js/v-html-to-dom.js.ff1ae7e0.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"662b7651-16c"
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sw4YKQXn4u7ZWV2o0RyHL4qt5MbkmPsqDLkwx9pz3m0dXqsosbsG7iSSCQeHDhqStfHTscafw9NNhgjtvP7VIGl%2F1stFeVI4USXhuA6mte2fHdAJoZs2JVTsbvFRVN8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf1200b470b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/css/src_js_components_Footer_Footer_tsx.ae79160e.css | 188.114.97.1 | 200 OK | 383 B |
URL GET HTTP/3lifteque.top/css/src_js_components_Footer_Footer_tsx.ae79160e.css IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeASCII text, with very long lines (383), with no line terminators Hash8a1e27d3fe40dacdf45f3c2a0c72c3dc c4244fdf92ac42303ec5435499115d0e928804d9 d4c729196d5c4de3a3d812ffca60afe93a1b66f20163107b8f065cfdca1e6190
GET /css/src_js_components_Footer_Footer_tsx.ae79160e.css HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=384
etag: W/"662b7650-180"
last-modified: Fri, 26 Apr 2024 09:39:28 GMT
strict-transport-security: max-age=1
vary: Accept-Encoding
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HsUAZw28cpJB05BrV1Xkcnjn9HsXh3MXbp2Z2WWBn1nqQwnxYuhyNXbnTBvj%2FNFxvF1Yro6bREMp6J9llec1GyXQcoTgTui1pNpMEX4pElsGrPK4GOnAtUMnp80ylmw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf1200b4f0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/s-checkLocalStorageAvailable.ts.f2fef93d.js | 188.114.97.1 | 200 OK | 330 B |
URL GET HTTP/3lifteque.top/js/s-checkLocalStorageAvailable.ts.f2fef93d.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (338), with no line terminators Hash9a78659da737fccc89546e61f0eb6213 84e705584bdbc81715e0326742f426c2f472d3a9 bb46fe2e65cc91e5a01a8e731754fdc9b8f30813835a673bd96b48672ac82d60
GET /js/s-checkLocalStorageAvailable.ts.f2fef93d.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:11 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
vary: Accept-Encoding
etag: W/"662b7651-14a"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QFvri%2BlP9lNqASITvIF1WC5jI8GBsp0zEhGiup0zFCuc6NqHBqqOJMVlP5%2BoFvN3fw9juwJ%2FoKUlPsJDMIzpmHX3dxMQOnQj%2B0iYkA%2BukyBFmPCOrwwzfk1CFLPniu0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11cbed30b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/_core-survey.1b09882a.js | 188.114.97.1 | 200 OK | 170 kB |
URL GET HTTP/3lifteque.top/js/_core-survey.1b09882a.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
Size170 kB (169676 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/_core-survey.1b09882a.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:11 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 09:39:30 GMT
vary: Accept-Encoding
etag: W/"662b7652-296cc"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YwSpGoLYsCRb4gi2e0rk5neJmJg2tZhMmXU5xuiwVSiyi9PfB9vMFtq2x3iNG3TzUEb4Z64%2F2g%2Bf86Rod77EJWNWwJ%2FEy3V7XD69UiIo6Hhw9x6oyQPtpfEvk%2FbCP1I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf11cbedc0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| lifteque.top/js/SurveyContainer.e2959212.js | 188.114.97.1 | 200 OK | 57 kB |
URL GET HTTP/3lifteque.top/js/SurveyContainer.e2959212.js IP188.114.97.1:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectlifteque.top Fingerprint46:51:F7:27:16:B9:30:19:D1:CD:ED:EE:42:CB:5C:66:1B:F5:8D:6A ValidityWed, 27 Mar 2024 15:34:19 GMT - Tue, 25 Jun 2024 15:34:18 GMT
File typeJavaScript source, ASCII text, with very long lines (57003) Hash1716bf0d79004adf0eb2cdcd64159891 67852b096bcc8817fb0b9b98abf264e40a59310c 56cd17eb9def743ef4bc4909a6eacb77266b749181cfcaec4d478336b1c6ff21
GET /js/SurveyContainer.e2959212.js HTTP/1.1
Host: lifteque.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/javascript
last-modified: Fri, 26 Apr 2024 09:39:29 GMT
vary: Accept-Encoding
etag: W/"662b7651-defd"
strict-transport-security: max-age=1
x-content-type-options: nosniff
cache-control: max-age=1800
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AueppuJYAhT5BF3DARZzHQEr4BHq8rWNvTf7XIJsF3Au0Ccp0QmNHTW1bav8GokOJ%2Fcpxo5Yvk9KXvNMCH4dnh%2BIF3EfsFj7efW%2BgHSbKUbfiau4IaCF1WfChev6hio%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881bf1200b4a0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| offpichuan.com/rotate?zz=5592660;5592658;5592700;5592702&var=&uid=7wh9xjyj0pouc0fq83xwixhic49qrig4 | 139.45.197.237 | 200 OK | 1.8 kB |
URL GET HTTP/2offpichuan.com/rotate?zz=5592660;5592658;5592700;5592702&var=&uid=7wh9xjyj0pouc0fq83xwixhic49qrig4 IP139.45.197.237:443
Requested byhttps://lifteque.top/betting-survey.html CertificateIssuerLet's Encrypt Subjectoffpichuan.com Fingerprint8B:DE:51:B7:81:9E:EA:DE:73:A4:3D:67:F9:5E:6F:7B:F4:D6:77:5A ValidityMon, 15 Apr 2024 21:54:27 GMT - Sun, 14 Jul 2024 21:54:26 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (1779), with no line terminators Hash3dc83cd994652205fb61edd240ec873b 3e5fd5fed7191166bbc057f93efb023510809f7e 942635a178bafed142a3dab460c4dbafd29752efa849f94ca754597a1d96ae93
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /rotate?zz=5592660;5592658;5592700;5592702&var=&uid=7wh9xjyj0pouc0fq83xwixhic49qrig4 HTTP/1.1
Host: offpichuan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lifteque.top
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 10 May 2024 18:20:12 GMT
content-type: application/javascript
x-trace-id: e145f102fd3c8785844b6e12cc48e2c8
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: https://lifteque.top
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
set-cookie: OAID=7wh9xjyj0pouc0fq83xwixhic49qrig4; expires=Sat, 10 May 2025 18:20:12 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|