| yjtng.blogspot.ug/ | 216.58.207.193 | | 195 B |
IP216.58.207.193:0
File typeHTML document, ASCII text Hasha366d9a6065e1cbd60f24cd1c53cac1d 588ff942da35c53890e244e566ad3424e7bca20c fe1739affd843ad11a9007bed4cbf7ff454b737cfaa37a9a23d63888eabca9c2
Analyzer | Verdict | Alert | OpenPhish | phishing | Gazprom |
GET / HTTP/1.1
Host: yjtng.blogspot.ug
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
location: https://yjtng.blogspot.com/
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Fri, 29 Mar 2024 04:42:02 GMT
expires: Fri, 29 Mar 2024 04:42:02 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 195
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| yjtng.blogspot.com/ | 216.58.207.193 | | 16 kB |
IP216.58.207.193:0
File typeHTML document, Unicode text, UTF-8 text, with very long lines (7139) Hashd60dc6a8bf2002ec26f553300393054e e9a776db7eeb2767b14c14c448cb63332d690b61 318c47b1541e08eee83243f1cc4eb4218c580d9c67635681ca35db7260d0f4a3
GET / HTTP/1.1
Host: yjtng.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Fri, 29 Mar 2024 04:42:02 GMT
date: Fri, 29 Mar 2024 04:42:02 GMT
cache-control: private, max-age=0
last-modified: Fri, 08 Mar 2024 04:06:25 GMT
etag: W/"bd0ebf01436c55a1ce3f7cdea4289a4d6ef01dd22184b2019f2f5b4af88cac7f"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 15566
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| sh4737904.c.had.su/auto_domain1700087633.php?sid=3405 | 81.91.178.100 | 302 Found | 0 B |
URL User Request GET HTTP/2sh4737904.c.had.su/auto_domain1700087633.php?sid=3405 IP81.91.178.100:443
CertificateIssuerLet's Encrypt Subjectsh4737904.c.had.su Fingerprint5D:B7:8A:F2:18:4B:ED:51:81:12:EC:64:12:69:EB:18:59:04:45:C6 ValidityTue, 05 Mar 2024 09:47:51 GMT - Mon, 03 Jun 2024 09:47:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /auto_domain1700087633.php?sid=3405 HTTP/1.1
Host: sh4737904.c.had.su
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://yjtng.blogspot.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: ddos-guard
date: Fri, 29 Mar 2024 04:42:03 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/8.2.16
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
set-cookie: __ddg1_=k9qmsQqJZslp5vW3xxun; Domain=.had.su; HttpOnly; Path=/; Expires=Sat, 29-Mar-2025 04:42:03 GMT
PHPSESSID=54e8db089a2d049c71ffe7c732abbacf; path=/
location: https://l2nv8.shop/XVp/go?sid=3405
X-Firefox-Spdy: h2
|
|
| g1jm3.shop/l/hello_kitty/content/pic1.jpg | 172.67.217.61 | 200 OK | 243 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/content/pic1.jpg IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.5 (Macintosh), datetime=2024:03:15 23:41:51], progressive, precision 8, 800x445, components 3 Size243 kB (242601 bytes) Hash48ed517d70ca58a35e227d3e25e64107 5c54f9779bfdda8386cb0af1a840e78064489691 cba9eadf9468d6d82ac193d4cb0572dd18d74176e7530c51aad772c243c23301
GET /l/hello_kitty/content/pic1.jpg HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: image/jpeg
content-length: 242601
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: "65f4c59b-3b3a9"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FmYw4xPOBbDQNYGdKCJARgbBN6j55cxKAtY4VfhPe95f2%2F7gApfGUYpZbjn7%2Fya2fhBxhsV9gvm0vawKZUTNDMZcvU%2FDtmJ%2BYwJ8WpOZ9w%2BQ%2Bl2Mn%2B21XdjACI%2BY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f48de1b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/content/pic3.jpg | 172.67.217.61 | 200 OK | 97 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/content/pic3.jpg IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.5 (Macintosh), datetime=2024:03:15 23:42:09], progressive, precision 8, 1280x825, components 3 Hashe9e5d8cd1cdeb5db6e9f501b195c3283 fb358c77d11a25a8da280f77e93774dc674aa1d0 c6286b4e9308fc8739e135e41e92e5bc1179e16fd58dff9154d34a90d935e0ed
GET /l/hello_kitty/content/pic3.jpg HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: image/jpeg
content-length: 96572
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: "65f4c59b-1793c"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XK0mHkkMxSRBePuRU212ffBnLkl1EzCoj7kD7P10zJe9ep51hifPDJXSQ1e4zVeHOI2tQp793pxi1O2FjnhHOg3SeBAC4dUOxxadw7no%2FUz8uhPH4EvyJqpZRlSK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f48de2b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/content/pic4.jpg | 172.67.217.61 | 200 OK | 82 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/content/pic4.jpg IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.5 (Macintosh), datetime=2024:03:15 23:42:34], progressive, precision 8, 1920x1080, components 3 Hashae6ee1525a40e1c166b09283750e34e0 a58ab378efe975a58e9b0de02d4c2b2343da21f7 ef88af929c5c577c591f70f6861b6ca529f632f117cf7411da608f9788e1accd
GET /l/hello_kitty/content/pic4.jpg HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: image/jpeg
content-length: 82443
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: "65f4c59b-1420b"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bEdwI2pg5e3qZ3yvnfd0KbojWycUn2Ri8mxLE2Ni%2BjOfPXdxXw9hf%2BdRkSJolcOQqpehu41q1jUN1k%2BwRUTunDwbDZo4AYNSaLnM9lBiTQ9h8qLxNEpmcX4i%2FDxj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f48de3b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/content/pic7.jpg | 172.67.217.61 | 200 OK | 57 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/content/pic7.jpg IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.5 (Macintosh), datetime=2024:03:15 23:43:32], progressive, precision 8, 870x400, components 3 Hash7542a68aae41b4ae59282116aa30d25f 4280d7f3af29bc8b50e1c4ae5867987430b0bc8d 385a1331c683ecb36eeafb04c3ce3c63928c79600eda11cded327b0173b786f8
GET /l/hello_kitty/content/pic7.jpg HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: image/jpeg
content-length: 56761
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: "65f4c59b-ddb9"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xp%2FmcaRlJqwRE2D30WrNuS2EmqkOr0YedwzCX24cE%2Fw9q%2F0KEoF4789ZYaPol%2FqYS3xe1dJ8ErYwMSMLtSpswbM7dXri%2BDEUi%2BLFd6NhvyLwHmEmhujRkCtWyWm8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f49de7b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/content/pic5.jpg | 172.67.217.61 | 200 OK | 130 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/content/pic5.jpg IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.5 (Macintosh), datetime=2024:03:15 23:42:53], progressive, precision 8, 900x900, components 3 Size130 kB (130185 bytes) Hashe3d0ad7562b050fe95e10a5b4a083d7b 3cd204be40b940753d0942379e77906853c350f6 16cc235730aaa390f75c2779d91a087dc2ed1ff3015ec3b1271d60559694f72f
GET /l/hello_kitty/content/pic5.jpg HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: image/jpeg
content-length: 130185
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: "65f4c59b-1fc89"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OfcnQUEDHcsgTLtwp%2FkawyL5hPLNgj4NRsQSNoQE6EpW0WnR433lSeJalTXjEhEr%2BOjIePDLEOzgWQX4%2Ff0V%2BTIqKsWOmlwPWgqSuQ0BoZPIjRPudIJASO1ZYLcE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f49de6b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/final-page.css | 172.67.217.61 | 200 OK | 249 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/final-page.css IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeASCII text, with very long lines (33105) Size249 kB (248553 bytes) Hashd406ae0e843fe32e24ebaa62af70dd7b 2d813e3c2d46dca714c2b61fd1fc31adb1e70be6 91db0ffc1c47bfb038af493e253458b15d956e53ca961dec3f343a5718e52b6a
GET /l/hello_kitty/final-page.css HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-5cb92"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LD267Wq3PihCQfXOlraN8T82yon9d9GSURKAOALhoAuHkshNPq1aGUD8EUCRelMyo%2Faf0xuYfNMakP8ps0R27DW26JS5Pbm0IjdndjFGpULkVXTKuZ50Hn4qNfF0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f48ddfb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/content/video.gif | 172.67.217.61 | 200 OK | 1.1 MB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/content/video.gif IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeGIF image data, version 89a, 720 x 576 Size1.1 MB (1060841 bytes) Hash880cb11f47d949a4d2e69e6545d988fe 63fd0eb93a959bfa3336ae46331b450a008277be 748a635025a9afae758b6c00de7c266180dd189e06961f266fd125edd4ead358
GET /l/hello_kitty/content/video.gif HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: image/gif
content-length: 1060841
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: "65f4c59b-102fe9"
expires: Sun, 28 Apr 2024 04:05:28 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kzbkIWaYmiqcpS%2B7huqhDmy3Ij5wyg2Eao1%2BHoCXv30ImIIMw%2FU7PZ7VOkl%2FPJK90d0CJUgiP1%2BrM31u2ojvo1YthUFsu%2ByVkjDnr1DOkI%2BoIfKjIvaKKBhpzrgx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f65e50b50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/favicon.ico | 172.67.217.61 | 200 OK | 0 B |
IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: image/x-icon
content-length: 0
last-modified: Thu, 09 Feb 2023 00:38:17 GMT
etag: "63e44079-0"
expires: Sun, 28 Apr 2024 04:05:29 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2196
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2JnknavK6RC5eMMGsXp5gYB83ypKylCG1tms7myKBupQN4vVFWuiNFBT9UGkAiYJfLVG7%2B%2F1rkrvmB28gMFlRmCm0HPtmfOmkHE7zkXJZq%2FSNUTY1uDemsrwzbPU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f77e8bb50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/form/img/flags.png | 172.67.217.61 | 200 OK | 71 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/img/flags.png IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typePNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced Hash416250f60d785a2e02f17e054d2e4e44 21572c9751e5a3dc20395befa0fcb349c32c4811 0a012cf808a24573168308916092d2d4bd3f2b4af8e16b59167013cc77acee55
GET /l/hello_kitty/form/img/flags.png HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/l/hello_kitty/form/css/intlTelInput.css
Cookie: sid=3405
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: image/png
content-length: 70857
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: "65f4c59b-114c9"
expires: Sun, 28 Apr 2024 04:05:29 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2196
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AEEJ9Orlvw%2Bg%2BVGvAgqBndTxZpTPUKFGDMqHy1ZrSaiy9VZ65PGy%2BXr5mVhXrdfDOo96LdGZLJrN7OOdFbuRkgnLXUgBZeSRA%2B1H%2FAzlWxUFHA7qsP5Qjo6WbQSC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f78e8eb50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/style/app.css | 172.67.217.61 | 200 OK | 33 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/style/app.css IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
Hash3f061abacbdb579fe29aa6abae07ed5b 76509d96931d3dca282186e041b33d59dafb89b2 18a3021390d85960612d0078549a0aa4587ba21088e30f49baf1090ee6e01738
GET /l/hello_kitty/style/app.css HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-3d4c2"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SiImuz0r2LDBPjS2JQto3yQzRFTctQ1IsSJqtOejVEmQvlxJJvvOju9SfQpfI7pwEu2yC7n5IhivjtQe%2F6lMrBhFYGS%2BrXK8TOtEkXJwkViCZHzZubRv%2BgCTdG3a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f48ddbb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-04-29-22-13-57.chain; p384ecdsa=I-LTtBt4QgIBYBcenZPj173XkMJ-_AoaVDaFUbswhJl6NLIZvpcS4KvikrRJkP2qOD5_HgvSHQzGmxp2rkndeYh288RFp2Fn5I6-OTJUzh67ceYyJohYfTNJI4lhBByX
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Fri, 29 Mar 2024 04:41:10 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 70
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| g1jm3.shop/l/hello_kitty/form/js/libs.js | 172.67.217.61 | 200 OK | 136 B |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/js/libs.js IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeASCII text, with no line terminators Hash412b9a563a3527ea92c8acd0477d1256 a511a6b0e6feb8bcdec25e27404fa59a75bffd09 89e68d47f5ad24040ec77c8355be82213e9a0065f865a1d300d23125cadd8463
GET /l/hello_kitty/form/js/libs.js HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: application/javascript; charset=utf8
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-88"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IaUo3mNN6QWZH80trqYFscoUPAtXTJuAFj9H9iT8lBXAZf4hs3P4qVRQUFi63pXJRuA0VQ%2F%2F0DLi%2F1wGCBVW6KFm4v5RBv1XFJCJKhSY2X3LJv4U6YX7IU2kgia8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f4adf2b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/form/js/main-form.js?v=3.2 | 172.67.217.61 | 200 OK | 11 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/js/main-form.js?v=3.2 IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/hello_kitty/form/js/main-form.js?v=3.2 HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: application/javascript; charset=utf8
last-modified: Wed, 27 Mar 2024 19:42:54 GMT
etag: W/"660476be-2b9f"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mF%2BGjXyobFu%2FQahyeYYTv25%2BypHjeMiZgUU8U55hr%2BBJGOQQHqvZ9buXIxsByTCAL4dP82AxAj8PANLoWNN5F1lZtDEGokdjqYgo7mK40%2BuPT5%2FhbmNS8QPPeOOo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f4adf3b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/form/css/intlTelInput.css | 172.67.217.61 | 200 OK | 25 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/css/intlTelInput.css IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
Hasha69aa970266649e0b08c2cb4bc166568 d9314a52085a2bb6d284421bb18a4c546ecb73d4 ad32b1248207ba91fb945a37d38e7c9deafcba849245872203482db42930d491
GET /l/hello_kitty/form/css/intlTelInput.css HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/l/hello_kitty/form/css/form.css
Cookie: sid=3405
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-62a6"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hD5PzNzRLz3QA3yWanf5yVc%2BUp3%2B%2BGa10X4OEkMY6HEPvLVI%2FD2wHDSu32wYcjI7Z%2F2gNQSVYPOqNohCb7SjzeHgmx3x2xB%2Fv6bksTZBJeNtaIhsfJMrLvUFWyML"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f5ee3cb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/js/custom.js | 172.67.217.61 | 200 OK | 1.5 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/js/custom.js IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJavaScript source, ASCII text, with very long lines (1688), with no line terminators Hasha7dd43cd0a4faf3a5d7987968e5607b4 1fdb7a97bd6fe031f7417e97aa3a8c645396a338 17952283c6fc648b37d2fc23ad6ab2636392ab9d30f17545fb1b0cfe03ef834e
GET /l/hello_kitty/js/custom.js HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: application/javascript; charset=utf8
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-5fb"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aAlREBbgPSMOKa83hsA2Mt9wjg9pQSC188%2F49Oz90JzyIt0g8eoUVQbnJMFRM66EtfIHsr%2FYTXKwr4FWzTdKuMLITbm3Acd3uO5Od5MRgbO9sLE2fumLtlIqF47T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f49dedb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/form/css/flags.css | 172.67.217.61 | 200 OK | 0 B |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/css/flags.css IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/hello_kitty/form/css/flags.css HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/l/hello_kitty/form/css/form.css
Cookie: sid=3405
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: text/css
content-length: 0
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: "65f4c59b-0"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jp4glNGYnbLSN3mcuNSotU07%2Fzm4XurMURRLKIfcobuHPGKOo3sMv2hHc7zEKOFsJRK1oG8C6mvUQkxEOQ32IH2KXYNZFmQuKy4QkelCBIZHKbgbSrfUCSuBZ7Bw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f5ee3bb50c-OSL
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/qkad/2zXA?sid=3405 | 172.67.217.61 | 302 Found | 62 kB |
URL User Request GET HTTP/2g1jm3.shop/qkad/2zXA?sid=3405 IP172.67.217.61:443
CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /qkad/2zXA?sid=3405 HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yjtng.blogspot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: text/html; charset=UTF-8
location: https://g1jm3.shop/qkad/2zXA
x-powered-by: PHP/8.2.13
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: sid=3405; expires=Tue, 14 Mar 2084 04:42:04 GMT; Max-Age=1892160000; path=/; httponly; samesite=lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2FdOHPUZkv4vOxhGe5IKAPi8ce3yiWu1S9%2FQMQMU9otipiQ3R1k9Nu79VX1DU1DY1%2Bi%2BH6KUrzL5j6QUdKJbIMrRBDIfnkllpbqZUsiEGH9KkHTGERG6AKtIKRu2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd30f08feeb505-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| g1jm3.shop/l/hello_kitty/js/main.js | 172.67.217.61 | 200 OK | 218 B |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/js/main.js IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeUnicode text, UTF-8 text, with no line terminators Hash6744ee14a2ff901a384e836d91be6ae1 0b9fc1e6adba8dae4ee2701371e44b53196e806d e3f909ec16da01389e2cd2ca61df466e355ccb3d4aece742bb1bc68460e7e846
GET /l/hello_kitty/js/main.js HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: application/javascript; charset=utf8
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-da"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bMj3JvyXAKKosKEe1CoJNwBQv5egsVtmaOxbUaGAwmPDlaxtsXJT6uYelv6gnBAphNDIC%2BWpjxXciVysTlA%2FHKI6%2BurM7Hpn67w5kw1FwhwY%2FtnOrRP9VnR6YhfR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f49df1b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/form/js/libs/utils.js | 172.67.217.61 | 200 OK | 382 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/js/libs/utils.js IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJavaScript source, ASCII text, with very long lines (1338) Size382 kB (381683 bytes) Hashfa4d12a59a70432bcfea49469386291e 3b24fcc6ef44ca3635266a10530d68df4857e7a1 5084ebd7703c470e9e39d58de78661fa7780812d49bf2293217f278429b66c78
GET /l/hello_kitty/form/js/libs/utils.js HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/l/hello_kitty/form/js/libs.js
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: application/javascript; charset=utf8
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-5d2f3"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QEYpfzMvqJXRl97znSW0Zoi9%2BPmwDdoqC%2F0MnIGayTu%2Fz28lXWIEIPhi1b%2F%2B5pWZHsEOeymbqNE8WUEf5lp00QwYelAj%2BYTFPBCBX8d7EPjs7uSqRn0s6H3DplWM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f60e43b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| l2nv8.shop/XVp/go?sid=3405 | 188.114.96.1 | 302 Found | 62 kB |
URL User Request GET HTTP/2l2nv8.shop/XVp/go?sid=3405 IP188.114.96.1:443
CertificateIssuerLet's Encrypt Subjectl2nv8.shop Fingerprint3C:C3:59:C8:F2:46:67:D3:91:0E:46:09:AB:7B:72:70:C2:C9:F0:C8 ValidityTue, 12 Mar 2024 21:44:20 GMT - Mon, 10 Jun 2024 21:44:19 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /XVp/go?sid=3405 HTTP/1.1
Host: l2nv8.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yjtng.blogspot.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: text/html; charset=UTF-8
location: https://g1jm3.shop/qkad/2zXA?sid=3405
x-powered-by: PHP/8.2.13
cache-control: max-age=0, must-revalidate, no-cache, no-store, private
pragma: no-cache
expires: -1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c7MbV2gYMj%2FL8iovrcV9cuUfoFD0EZUv85NSkaBzxc3hNk4i%2BTwg9cNMprgnbNXV%2FnI%2BGOaayzpzVwkB2Q8gCjhFr2aDNcn7%2F3AIw3hkr0%2B7Ite%2FUPvM5k%2BTVCEw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd30ecfc865690-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| g1jm3.shop/l/hello_kitty/form/css/form.css | 172.67.217.61 | 200 OK | 6.7 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/css/form.css IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeASCII text, with very long lines (7069), with no line terminators Hash6e7e4c67941295ea1ecae563daa4a932 2001dd163e53cda179c5bccfc0bd9665a77c2928 54dde84d93f7586c1de76072940a5f5d4d23729aaa1e61c094912cbaf8f8dbed
GET /l/hello_kitty/form/css/form.css HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-1a1f"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=axjLdtfrfkZ9pRs9f70Nk686TQByVYxyRNqShmu4kbNHSK%2FkFGuNCQRN0QDnwANy43d6NRfx%2F1FyMZMzuB9cFU1qioPEMfDCj7NKxDyc0J3SjLe0V%2Fvo2R63GQVQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f48ddab50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/form/js/libs/jquery-3.6.0.min.js | 172.67.217.61 | 200 OK | 151 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/js/libs/jquery-3.6.0.min.js IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJavaScript source, ASCII text, with very long lines (755) Size151 kB (150945 bytes) Hash2f9ce5c0e6e3b112156a7ff05ba9e682 5da37b54f5ac446e0d72005a12fcd21dd86f3ac0 8c1d8308190d402fce06d8cd4119a3013d87f1599c65cc6b34a698ed093b191d
GET /l/hello_kitty/form/js/libs/jquery-3.6.0.min.js HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/l/hello_kitty/form/js/libs.js
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: application/javascript; charset=utf8
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-24da1"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qbw1pAwuqO1aYYx7KAOyhtQBzbf9Qx6iWJFMSZYrsp6G9bFDctt18ZMkOWpML0sryKji6XxNUZWPAvQ38Af9BB4F0s0KGjdsEvy43DrUkS%2Fhcf7LVaiWsoqGBYlv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f60e41b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 172.67.217.61 | 200 OK | 62 kB |
URL User Request GET HTTP/2IP172.67.217.61:443
CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /qkad/2zXA HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://yjtng.blogspot.com/
DNT: 1
Connection: keep-alive
Cookie: sid=3405
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.2.13
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BOOICRj7Vd5UMY0ZwTZ6hSxcX2qEHkSgIiaFP6SURlEGnsb5S9%2B8fm2bZ3LHN9ns1X4bNM261V6beQkXVVO4w0xLkBO%2BkotaefxG045%2FhURRbw4GuhrcKktG86fr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bd30f21857b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| g1jm3.shop/l/hello_kitty/chunk-vendors.css | 172.67.217.61 | 200 OK | 309 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/chunk-vendors.css IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeASCII text, with very long lines (58126) Size309 kB (308569 bytes) Hashdb356a68a05b7743b166031b677190ab c3327a043adb6bed2d1ebec33277bedb3a004750 c4c8b35ba21338214dcee8a9a9e26972fd8029cc9b8d26940cc654e459b51fac
GET /l/hello_kitty/chunk-vendors.css HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-4b559"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fST4oZfWnfpIboh6K%2B6nrTLOYcWjuAy8WHAB%2BkFMV8Nsx%2BW8hPv%2Br4JaVB6oLTGpgMj0U%2FW3vbG5ZeVZ5Sk8cwP4wPFlOretMDcq3e%2FnlkykuWKEXKrIC2CV8vLu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f48dddb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| get.geojs.io/v1/ip/country.json | 104.26.0.100 | 200 OK | 71 B |
URL GET HTTP/2get.geojs.io/v1/ip/country.json IP104.26.0.100:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerLet's Encrypt Subjectgeojs.io FingerprintB4:9E:CC:F3:6D:DD:E3:68:A0:4A:B0:10:ED:5E:C2:60:0E:41:FE:36 ValidityMon, 11 Mar 2024 03:28:55 GMT - Sun, 09 Jun 2024 03:28:54 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashc2e58ee58e944b511238efb5a3d9137f a88d5d17096b9d989640717f15ff283d24518e05 f0c22e4edc2bd23e07eb0e2372551f213d59f46a4d32f76c3f106a04e4115043
GET /v1/ip/country.json HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://g1jm3.shop
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: application/json
x-request-id: 995e9a4f3233d8047d3e68aa1bc02115-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rPYRUP9H6VjY0dYbu18KAC1IH48TT42ogmLhjAy4Sp%2BAealRPkgG7%2FK6GBLF12Pxqvos2%2Bye3VEtQkiRDVwHniT2LNUbpRVavgR96AVtrv9URelS6spe5n6v60C06Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86bd30f708dd56bf-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| g1jm3.shop/l/hello_kitty/app.css | 172.67.217.61 | 200 OK | 251 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/app.css IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
Size251 kB (251074 bytes) Hash3f061abacbdb579fe29aa6abae07ed5b 76509d96931d3dca282186e041b33d59dafb89b2 18a3021390d85960612d0078549a0aa4587ba21088e30f49baf1090ee6e01738
GET /l/hello_kitty/app.css HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-3d4c2"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mkgly%2FrpjR7wdtsV3l5FN3yp6ZFmH52aDswf3o2I82AsJUZEcw%2F54d5Zfg4QKN9GRtovZjNx5YDCJPXao09hgObgX4CgQ7B3cmg%2FVEm5x12n2KkrL06KI34g0qSI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f48ddeb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/style/css_002.css | 172.67.217.61 | 200 OK | 7.6 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/style/css_002.css IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeASCII text, with very long lines (7860), with no line terminators Hashdd7011d80d6cc455e39ee5c0dd22c5c9 9e2e1e309028ef62b252be4c0b75fc577155260b 018b57c2738888ac6c710457c47fbbe00e32d86c801817683ed9f6a931b77ef4
GET /l/hello_kitty/style/css_002.css HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-1dd4"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S912nJeG6fs5%2FbiLutZcX6cHSeZ7lumA0C9K40A%2BGnBRu65avS%2BXPJyXpjzyMbTuOCERXDOdk%2FUZlJy5GZUfUSNRZ4N47V39kghFhVpU0XcjZrBkmWqL8aYhjwvd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f48de0b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/form/js/libs/intlTelInput.js | 172.67.217.61 | 200 OK | 97 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/js/libs/intlTelInput.js IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l/hello_kitty/form/js/libs/intlTelInput.js HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/l/hello_kitty/form/js/libs.js
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: application/javascript; charset=utf8
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-179d9"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kETWxkOV9sgy8bIAtkCx%2By2fffXgW%2FqWKTxigfamstOnR%2BRtJen9UsZxGYicFFhUJIhSAEG5PsH%2B3TmO0riQK4TUICQKxNiyEpPPy7dZebeFH%2BAXomZvdwWwzFc9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f60e42b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/js/jquery-3.1.1.min.js | 172.67.217.61 | 200 OK | 87 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/js/jquery-3.1.1.min.js IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJavaScript source, ASCII text, with very long lines (32030) Hashe071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf
GET /l/hello_kitty/js/jquery-3.1.1.min.js HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: application/javascript; charset=utf8
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-152b5"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lFVbHGf4nP7JVlHvf8eh8aydMMp7MMi3JN%2BJ6ARoWkoBpiqve%2FScQIS64JHAhX%2FpEcIsfWsnpAkXjWR35m18RxLhPDrJeyyV7YGlkpR0D6%2BCWAKn9tvZcl3B8Pn5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f49de9b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/assets/js/bootstrap.min.js | 172.67.217.61 | 200 OK | 60 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/assets/js/bootstrap.min.js IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJavaScript source, ASCII text, with very long lines (59893) Hash6bea60c34c5db6797150610dacdc6bce 544afefd148715da7dd52d368a414703390ca0e0 38544024da1a0fc2f706be6582557b5722d17f48ad9a8073594a0cf928e2e3ff
GET /l/hello_kitty/assets/js/bootstrap.min.js HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/qkad/2zXA
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:04 GMT
content-type: application/javascript; charset=utf8
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-eb0e"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3p2U8MLTieHFgmJiX%2F%2BYKk9MxGPcyo26ekAxIy1EeCskCxioKza4DosxFPu6bHurEgkURrskVyafx0lzW%2BIZZ2R%2FFRryw%2BKAI%2FmvTQqknsJ0Ac1%2BpcvftS1GX3Ky"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f49debb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/form/css/modal-error.css | 172.67.217.61 | 200 OK | 4.0 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/css/modal-error.css IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeASCII text, with very long lines (4209), with no line terminators Hashc690ad3206aec810e24ea2a2f90c023d 9b229c4d9ff6acdde231dd7b278f116713bda30b d8202caf1c0d1d4d4e4199d8766f31f8dcb13d680d824d658df21e5812dfd3c8
GET /l/hello_kitty/form/css/modal-error.css HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/l/hello_kitty/form/css/form.css
Cookie: sid=3405
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-f83"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pUt2IpWTAucqSTiRzGxNH6xPMW20%2BgXNDKMrnr0DRJok4x6kzCpGVu1rGBVnRwbfmbhic1n1hZOuP7kOnEjXeoPdmUDI1%2BDmrlr2vDBNBqXGRTucxokcW3%2B7i7Cw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f5ee3db50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/form/js/libs/jquery.maskedinput.js | 172.67.217.61 | 200 OK | 17 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/js/libs/jquery.maskedinput.js IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeJavaScript source, ASCII text Hashd37c584165f7d01f34ba29f5852daacb 7607f09ab544c30e1942c834e54410d15043c60a d4fe2470c43d76c8d1be7f4cf8c835b1032d48641efbd071da6ab79fb506d786
GET /l/hello_kitty/form/js/libs/jquery.maskedinput.js HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/l/hello_kitty/form/js/libs.js
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: application/javascript; charset=utf8
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-416a"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tH0cxqW6etJWEuJTc20Q2qifsBpNiiq%2BjRYdkZMTtB5TVvJr5I0J1JMuzZNXdtaQkMOzA4ATW4QoNyWQ%2BIn%2FejSPf8Xyf9sYm54td99gYR7dQSHySyatbW3xeZ6%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f60e46b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| g1jm3.shop/l/hello_kitty/form/js/functions.js?v=6 | 172.67.217.61 | 200 OK | 8.1 kB |
URL GET HTTP/3g1jm3.shop/l/hello_kitty/form/js/functions.js?v=6 IP172.67.217.61:443
Requested byhttps://g1jm3.shop/qkad/2zXA CertificateIssuerGoogle Trust Services LLC Subjectg1jm3.shop Fingerprint41:C2:2B:F1:CC:67:49:79:C4:CA:B3:55:30:EA:EF:70:17:8D:43:EE ValiditySun, 24 Mar 2024 12:06:25 GMT - Sat, 22 Jun 2024 12:06:24 GMT
File typeUnicode text, UTF-8 text, with very long lines (8264), with no line terminators Hash445d29b579d8c8891938596d87178172 d7aa070c8d6959f9dbff50dcb1861903fad8d677 4cecc898bea1e927ce0c3a773cc422ec25271d67d756a2b8536b2206739c8fbe
GET /l/hello_kitty/form/js/functions.js?v=6 HTTP/1.1
Host: g1jm3.shop
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://g1jm3.shop/l/hello_kitty/form/js/main-form.js?v=3.2
Cookie: sid=3405
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 29 Mar 2024 04:42:05 GMT
content-type: application/javascript; charset=utf8
last-modified: Fri, 15 Mar 2024 22:03:07 GMT
etag: W/"65f4c59b-1f8a"
expires: Sun, 28 Apr 2024 04:05:27 GMT
cache-control: max-age=2592000
cf-cache-status: HIT
age: 2198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G86oFih2rec67R0UPP0LnJWz%2BcORo70wL2n%2B2Ttk9cfi5ZMOy9zbrOw%2FcwvVdrwVWZCaUxabkQcFE7adRjiOIG7FpAILu0jNsgsQ6h%2Fw6URchwEw8sbxUbPjkmF9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 86bd30f60e47b50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|