| | 45.178.6.74 | 301 Moved Permanently | 162 B |
URL User Request GET HTTP/2IP45.178.6.74:443 ASN#64122 SWISS GLOBAL SERVICES S.A.S
CertificateIssuerLet's Encrypt Subjectf1stream.me FingerprintA7:83:D7:73:4C:50:85:C9:8E:86:10:2C:EE:9B:A8:28:4F:A1:32:0E ValidityTue, 26 Mar 2024 04:42:46 GMT - Mon, 24 Jun 2024 04:42:45 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: f1stream.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 24 Apr 2024 21:05:15 GMT
content-type: text/html
content-length: 162
location: https://f1box.me/
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
X-Firefox-Spdy: h2
|
|
| f1box.me/img/home.png | 45.178.6.74 | 200 OK | 4.2 kB |
IP45.178.6.74:443 ASN#64122 SWISS GLOBAL SERVICES S.A.S
CertificateIssuerLet's Encrypt Subjectf1box.me FingerprintA1:D5:A5:C7:E6:56:56:5C:DD:2A:C4:2E:83:89:4D:E7:20:1C:9A:5E ValidityTue, 26 Mar 2024 04:40:36 GMT - Mon, 24 Jun 2024 04:40:35 GMT
File typePNG image data, 74 x 370, 8-bit colormap, non-interlaced Hash842359338036767ee77240ddfa4297d0 af0ea58b7e7e1bc8b9193143f83ae9a567a17081 c7c544461f0345b16c62cb2258daf0f680703b7280c9df3cda7f5f03012d577f
GET /img/home.png HTTP/1.1
Host: f1box.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/home.min.css?v=2.1
Cookie: _dt_fs=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: image/png
content-length: 4163
last-modified: Mon, 04 Oct 2021 16:47:44 GMT
vary: accept-encoding
etag: "615b3030-1043"
expires: Wed, 24 Apr 2024 21:05:46 GMT
cache-control: max-age=30, must-revalidate
accept-ranges: bytes
|
|
| | 45.178.6.74 | 200 OK | 0 B |
URL User Request GET HTTP/2IP45.178.6.74:443 ASN#64122 SWISS GLOBAL SERVICES S.A.S
CertificateIssuerLet's Encrypt Subjectf1box.me FingerprintA1:D5:A5:C7:E6:56:56:5C:DD:2A:C4:2E:83:89:4D:E7:20:1C:9A:5E ValidityTue, 26 Mar 2024 04:40:36 GMT - Mon, 24 Jun 2024 04:40:35 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD / HTTP/1.1
Host: f1box.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f1box.me/
DNT: 1
Connection: keep-alive
Cookie: _dt_fs=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: application/octet-stream
content-length: 2
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f1box.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:37:01 GMT
expires: Fri, 18 Apr 2025 02:37:01 GMT
cache-control: public, max-age=31536000
age: 584895
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.163 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.163:443
CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com FingerprintF5:5C:D9:68:C6:5F:A3:33:5A:73:C3:79:B6:83:FE:44:2E:A4:83:74 ValidityMon, 18 Mar 2024 20:34:25 GMT - Mon, 10 Jun 2024 20:34:24 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0 Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://f1box.me
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 Apr 2024 10:46:32 GMT
expires: Wed, 23 Apr 2025 10:46:32 GMT
cache-control: public, max-age=31536000
age: 123524
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| doostozoa.net/tag.min.js | 139.45.197.243 | 200 OK | 25 kB |
IP139.45.197.243:443
CertificateIssuerLet's Encrypt Subjectdoostozoa.net FingerprintD2:DF:1F:14:DE:6E:01:3C:2C:9F:87:EF:0F:2F:B9:31:DE:94:FB:EA ValidityMon, 18 Mar 2024 12:16:13 GMT - Sun, 16 Jun 2024 12:16:12 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashe99f6c63b22a42174bfe544d218b53d5 8b268f2e4e6d3e839c7953e4310422bb4844a69d f433713bd5b1a4c40e338f6a3603505aaf66dcedfaf0884fc20593bb1dd2a767
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /tag.min.js HTTP/1.1
Host: doostozoa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: text/javascript; charset=utf-8
content-length: 25311
content-encoding: br
x-trace-id: e027b09493fc2a3e3b5fa0c8b1ad191d
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Wed, 24 Apr 2024 16:48:57 GMT
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| f1box.me/fav/apple-touch-icon.png | 45.178.6.74 | 200 OK | 1.7 kB |
URL GET HTTP/3f1box.me/fav/apple-touch-icon.png IP45.178.6.74:443 ASN#64122 SWISS GLOBAL SERVICES S.A.S
CertificateIssuerLet's Encrypt Subjectf1box.me FingerprintA1:D5:A5:C7:E6:56:56:5C:DD:2A:C4:2E:83:89:4D:E7:20:1C:9A:5E ValidityTue, 26 Mar 2024 04:40:36 GMT - Mon, 24 Jun 2024 04:40:35 GMT
File typePNG image data, 180 x 180, 8-bit colormap, non-interlaced Hashe944b6ea81a6790dde10a979bd409ad0 322a4664d57cd818156759b4924aa30437e788a2 66b97900429d333ede14fe02b2c420fc2972e63942564effc8d1a0f3ffaee672
GET /fav/apple-touch-icon.png HTTP/1.1
Host: f1box.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f1box.me/
DNT: 1
Connection: keep-alive
Cookie: _dt_fs=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: image/png
content-length: 1689
last-modified: Mon, 04 Oct 2021 16:50:26 GMT
vary: accept-encoding
etag: "615b30d2-699"
expires: Fri, 24 May 2024 21:05:16 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
|
|
| f1box.me/fav/favicon-32x32.png | 45.178.6.74 | 200 OK | 626 B |
URL GET HTTP/3f1box.me/fav/favicon-32x32.png IP45.178.6.74:443 ASN#64122 SWISS GLOBAL SERVICES S.A.S
CertificateIssuerLet's Encrypt Subjectf1box.me FingerprintA1:D5:A5:C7:E6:56:56:5C:DD:2A:C4:2E:83:89:4D:E7:20:1C:9A:5E ValidityTue, 26 Mar 2024 04:40:36 GMT - Mon, 24 Jun 2024 04:40:35 GMT
File typePNG image data, 32 x 32, 8-bit colormap, non-interlaced Hash562eec6d5d86931f8628ebe58ee9396a 99c856e8e81cccf32b9960bfbf29195b5b43826a 94b51d6f9af589164e79a87e27791613aba31a30d4b850fa112c9a4167081e75
GET /fav/favicon-32x32.png HTTP/1.1
Host: f1box.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f1box.me/
DNT: 1
Connection: keep-alive
Cookie: _dt_fs=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: image/png
content-length: 626
last-modified: Mon, 04 Oct 2021 16:50:28 GMT
vary: accept-encoding
etag: "615b30d4-272"
expires: Fri, 24 May 2024 21:05:16 GMT
cache-control: max-age=2592000, public
accept-ranges: bytes
|
|
| my.rtmark.net/gid.js?userId=00804811bb834479f7d1db845ff047f0 | 139.45.195.8 | 200 OK | 65 B |
URL GET HTTP/2my.rtmark.net/gid.js?userId=00804811bb834479f7d1db845ff047f0 IP139.45.195.8:443
CertificateIssuerLet's Encrypt Subjectrtmark.net FingerprintDB:C0:8B:64:1C:E3:2A:9C:B9:04:0D:F3:6F:5A:E0:35:F4:C7:75:CC ValiditySat, 02 Mar 2024 21:53:43 GMT - Fri, 31 May 2024 21:53:42 GMT
Hashb870977850644d267a79dd7243ef1a83 fb952810d7f2daa81352b1094ead693ba2729546 77df87786f2bd86ee408cc7416f8e793e412b7950d8a086cf1f14d658aa660df
GET /gid.js?userId=00804811bb834479f7d1db845ff047f0 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f1box.me
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://f1box.me
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=00804811bb834479f7d1db845ff047f0; expires=Thu, 24 Apr 2025 21:05:16 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
|
|
| atampharosom.com/apu.php?zoneid=6534634&var=6297472 | 139.45.197.242 | 200 OK | 42 kB |
URL GET HTTP/2atampharosom.com/apu.php?zoneid=6534634&var=6297472 IP139.45.197.242:443
CertificateIssuerLet's Encrypt Subjectatampharosom.com FingerprintDB:00:48:82:E0:15:ED:F1:5F:8B:04:40:F9:2C:5D:05:B1:7C:B5:64 ValidityWed, 24 Apr 2024 13:19:12 GMT - Tue, 23 Jul 2024 13:19:11 GMT
File typegzip compressed data, max speed, from Unix Hash8c57895ca66ca193b8210d652016325b 32b5efa6b6dabfc93afc120695ef91c8574ebccc 7c6ae4934bd76da24e5394da7f51222e6c5f503cc70c38844f3b9b057aff22f4
GET /apu.php?zoneid=6534634&var=6297472 HTTP/1.1
Host: atampharosom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: application/javascript
x-trace-id: 1ed108c1fe8a340f0d89162b3026e32b
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=0080487856924c9cf3bcd10f14a49f3e; expires=Thu, 24 Apr 2025 21:05:16 GMT; path=/; secure; SameSite=None
oaidts=1713992716; expires=Thu, 24 Apr 2025 21:05:16 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| f1box.me/img/f1streams.svg | 45.178.6.74 | 200 OK | 1.6 kB |
URL GET HTTP/3f1box.me/img/f1streams.svg IP45.178.6.74:443 ASN#64122 SWISS GLOBAL SERVICES S.A.S
CertificateIssuerLet's Encrypt Subjectf1box.me FingerprintA1:D5:A5:C7:E6:56:56:5C:DD:2A:C4:2E:83:89:4D:E7:20:1C:9A:5E ValidityTue, 26 Mar 2024 04:40:36 GMT - Mon, 24 Jun 2024 04:40:35 GMT
File typeSVG Scalable Vector Graphics image Hash481cd947f1b7640127f961e74547dc6f 42b513294b21851960a6a7b82a42feeb740964b3 019ec14f0088ba5af745d6f30edcf4e5baab904bc9ab9637822da2d75ef4eb91
GET /img/f1streams.svg HTTP/1.1
Host: f1box.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f1box.me/
DNT: 1
Connection: keep-alive
Cookie: _dt_fs=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: image/svg+xml
last-modified: Tue, 05 Oct 2021 02:50:38 GMT
vary: accept-encoding
etag: W/"615bbd7e-114d"
expires: Wed, 24 Apr 2024 21:05:46 GMT
cache-control: max-age=30, must-revalidate
content-encoding: br
|
|
| f1box.me/home.min.css?v=2.1 | 45.178.6.74 | 200 OK | 12 kB |
URL GET HTTP/3f1box.me/home.min.css?v=2.1 IP45.178.6.74:443 ASN#64122 SWISS GLOBAL SERVICES S.A.S
CertificateIssuerLet's Encrypt Subjectf1box.me FingerprintA1:D5:A5:C7:E6:56:56:5C:DD:2A:C4:2E:83:89:4D:E7:20:1C:9A:5E ValidityTue, 26 Mar 2024 04:40:36 GMT - Mon, 24 Jun 2024 04:40:35 GMT
File typeASCII text, with very long lines (15412), with no line terminators Hash751e104c6dd902556de0e6f9ebab4cef d4fc744c586dbfe6414bb39110bca95b15ef3ac7 2a164b30e71307f6e04a939946f1bc8786220a28b3dab891f7da6d7c58ffea1b
GET /home.min.css?v=2.1 HTTP/1.1
Host: f1box.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/
Cookie: _dt_fs=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: text/css
last-modified: Wed, 30 Aug 2023 04:38:44 GMT
vary: accept-encoding
etag: W/"64eec7d4-3c34"
expires: Fri, 24 May 2024 21:05:16 GMT
cache-control: max-age=2592000, must-revalidate
content-encoding: br
|
|
| ipp.littlecdn.com/web/static/ball.png | 104.22.24.116 | 200 OK | 9.6 kB |
URL GET HTTP/2ipp.littlecdn.com/web/static/ball.png IP104.22.24.116:443
CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced Hash903ff2b408f3246176c88a3936d5fd22 158954159a9ee7549b03bd5b93faa739dbbae7c3 7d82e30c72c434e3660014ff97d2cceea967d2014ce801844d784095133896cc
GET /web/static/ball.png HTTP/1.1
Host: ipp.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 21:05:17 GMT
content-type: image/png
content-length: 9637
last-modified: Fri, 16 Apr 2021 13:05:23 GMT
etag: "903ff2b408f3246176c88a3936d5fd22"
expires: Thu, 25 Apr 2024 20:22:05 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 2592
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 87990cf14e645689-OSL
X-Firefox-Spdy: h2
|
|
| f1box.me/partytown/partytown.js | 45.178.6.74 | 200 OK | 1.4 kB |
URL GET HTTP/3f1box.me/partytown/partytown.js IP45.178.6.74:443 ASN#64122 SWISS GLOBAL SERVICES S.A.S
CertificateIssuerLet's Encrypt Subjectf1box.me FingerprintA1:D5:A5:C7:E6:56:56:5C:DD:2A:C4:2E:83:89:4D:E7:20:1C:9A:5E ValidityTue, 26 Mar 2024 04:40:36 GMT - Mon, 24 Jun 2024 04:40:35 GMT
File typeJavaScript source, ASCII text, with very long lines (1499), with no line terminators Hash3e7fcf963d3a3881dca322531ebe8d65 7a1fdc098342c7b5004b0ba85a122883738ae41e a82951c4ecd17cdd54bcfae59922f6b9485599141744a6ebe1a93a65592b694e
GET /partytown/partytown.js HTTP/1.1
Host: f1box.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f1box.me/
DNT: 1
Connection: keep-alive
Cookie: _dt_fs=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: application/javascript
last-modified: Tue, 22 Aug 2023 05:53:17 GMT
vary: accept-encoding
etag: W/"64e44d4d-5a7"
expires: Fri, 24 May 2024 21:05:16 GMT
cache-control: max-age=2592000, must-revalidate
content-encoding: br
|
|
| si.castanydm.com/?utm_data=cGdlPWhvbWUmbGFuZz1lbiZkb209ZnMmcmVmPSZoPTE%3D | 188.114.96.1 | 200 OK | 69 B |
URL GET HTTP/2si.castanydm.com/?utm_data=cGdlPWhvbWUmbGFuZz1lbiZkb209ZnMmcmVmPSZoPTE%3D IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectcastanydm.com Fingerprint18:29:76:D3:C8:56:5F:03:F8:38:B4:7D:B9:83:04:DA:F6:CF:DA:0D ValidityWed, 03 Apr 2024 18:28:06 GMT - Tue, 02 Jul 2024 18:28:05 GMT
File typePNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced Hash6c7a8e573e15b784caf2c2e09712e43b bdcee93526ab5766a6622fdbb18464871411e121 0fe6baf08e550e4c7cd40b1f8d08b0cfbd00e8c6bd78a53a1822d6216bcd73d8
GET /?utm_data=cGdlPWhvbWUmbGFuZz1lbiZkb209ZnMmcmVmPSZoPTE%3D HTTP/1.1
Host: si.castanydm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: image/png
ser-loc-id: loc-004
access-control-allow-origin: *
access-control-allow-credentials: true
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ON58JWGpm0RVPrIRAdVe2WpemhHX2K3Ossl8eit6KpHWEhtcG3iuXWZq%2FKoj1TkKaDtH44ZexmOyAJKFU9Jp7hcQXy6CewchifrsWl4gdV%2B4KBUW0BPC29pjSfCR%2BMZHRTNr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87990cede97056c4-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| doostozoa.net/?rb=TtiqR1HOyEcQY4qN46pQ55GJLqz6RKndFQPLGwHLI0wLWE5VUUImUXWlgjCB4sHYpePXebQKIaWXUnrw5rbtRb1rGCMIFn9WPDPPk0YzTmDAkPor38UR8kxj3l2T2AzJBA3nn7aDHogApw5sGBQYfxkW-rCXJHlNI2YCFiu4aI6UL8GlLIFLsuALkyKK0vwSku7SaAycsuYDQSo9Ail7uZVaL7WeR9OTRPf100BgAKRz-6komr4z0TqqUsIl7pa8KbLO8w%3D%3D&request_ab2=0&zoneid=6297472&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Ff1box.me%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=1&bs=beffa706-a152-4fdc-a636-4bea81a062c2&userId=00804811bb834479f7d1db845ff047f0&m=link | 139.45.197.243 | 200 OK | 2.3 kB |
URL GET HTTP/2doostozoa.net/?rb=TtiqR1HOyEcQY4qN46pQ55GJLqz6RKndFQPLGwHLI0wLWE5VUUImUXWlgjCB4sHYpePXebQKIaWXUnrw5rbtRb1rGCMIFn9WPDPPk0YzTmDAkPor38UR8kxj3l2T2AzJBA3nn7aDHogApw5sGBQYfxkW-rCXJHlNI2YCFiu4aI6UL8GlLIFLsuALkyKK0vwSku7SaAycsuYDQSo9Ail7uZVaL7WeR9OTRPf100BgAKRz-6komr4z0TqqUsIl7pa8KbLO8w%3D%3D&request_ab2=0&zoneid=6297472&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Ff1box.me%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=1&bs=beffa706-a152-4fdc-a636-4bea81a062c2&userId=00804811bb834479f7d1db845ff047f0&m=link IP139.45.197.243:443
CertificateIssuerLet's Encrypt Subjectdoostozoa.net FingerprintD2:DF:1F:14:DE:6E:01:3C:2C:9F:87:EF:0F:2F:B9:31:DE:94:FB:EA ValidityMon, 18 Mar 2024 12:16:13 GMT - Sun, 16 Jun 2024 12:16:12 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2301), with no line terminators Hash9f03b968a10c2739351b943d789a5b9f c7d8f1e81917cf6466c0198a545e426822d56d33 4e082bb093314e322fc504c334f2dde8d596d9af1b9acf68117173a7109d3b4c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /?rb=TtiqR1HOyEcQY4qN46pQ55GJLqz6RKndFQPLGwHLI0wLWE5VUUImUXWlgjCB4sHYpePXebQKIaWXUnrw5rbtRb1rGCMIFn9WPDPPk0YzTmDAkPor38UR8kxj3l2T2AzJBA3nn7aDHogApw5sGBQYfxkW-rCXJHlNI2YCFiu4aI6UL8GlLIFLsuALkyKK0vwSku7SaAycsuYDQSo9Ail7uZVaL7WeR9OTRPf100BgAKRz-6komr4z0TqqUsIl7pa8KbLO8w%3D%3D&request_ab2=0&zoneid=6297472&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Ff1box.me%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=1&bs=beffa706-a152-4fdc-a636-4bea81a062c2&userId=00804811bb834479f7d1db845ff047f0&m=link HTTP/1.1
Host: doostozoa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f1box.me
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/
Cookie: OAID=00804811bb834479f7d1db845ff047f0; oaidts=1713992716
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: application/json
x-trace-id: fba5bec30e72d84841b5233959f2cab1
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://f1box.me
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804811bb834479f7d1db845ff047f0; expires=Thu, 24 Apr 2025 21:05:16 GMT; path=/; secure; SameSite=None
oaidts=1713992716; expires=Thu, 24 Apr 2025 21:05:16 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Wed, 01 May 2024 21:05:16 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| doostozoa.net/5/6297472/?oo=1&aab=1 | 139.45.197.243 | 200 OK | 3.8 kB |
URL GET HTTP/2doostozoa.net/5/6297472/?oo=1&aab=1 IP139.45.197.243:443
CertificateIssuerLet's Encrypt Subjectdoostozoa.net FingerprintD2:DF:1F:14:DE:6E:01:3C:2C:9F:87:EF:0F:2F:B9:31:DE:94:FB:EA ValidityMon, 18 Mar 2024 12:16:13 GMT - Sun, 16 Jun 2024 12:16:12 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (3768), with no line terminators Hash3cb6da683f6438a5a3024a2e560ed2a4 93e2feafd3146230d67b049a2b72e1e71988f114 8687c7fe701f2224a4866491f74ed8469b5052aca33217ffbbf25d6c62676015
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /5/6297472/?oo=1&aab=1 HTTP/1.1
Host: doostozoa.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f1box.me
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: application/json
x-trace-id: a0fa03880dcabe8082476f180496b436
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://yonmewon.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://f1box.me
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=00804811bb834479f7d1db845ff047f0; expires=Thu, 24 Apr 2025 21:05:16 GMT; path=/; secure; SameSite=None
oaidts=1713992716; expires=Thu, 24 Apr 2025 21:05:16 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| atampharosom.com/?rb=ikx87jLmrk8GFiImwXkTi9-lAulMGEfvbRSgnZahFsok5E4kSBj1iyf1sR7stamJcWOVwgw4KRLKTbCTgB0Rq7xI9ILsOcdP46w4ukgfqNo9tsPftb1sRjSAxNcnG0oIOTjiyVXYmO6WjJ4P7eKnozLEQmLxDNfaIxgujybFL4NQlH_P1J0W0-vSiR_ncK-qaVzG8kmm5GWYCBvcIFqxe4t4AX3fBsxGesCnY4BMqS0kZXfJnR2wL7HOvH-Cu4_eqnlwZGcSFtKUfSsW&request_ab2=0&zoneid=6534634&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Ff1box.me%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=673c5033-6f44-448f-826c-5d3026676423&userId=00804811bb834479f7d1db845ff047f0&m=link | 139.45.197.242 | 200 OK | 2.3 kB |
URL GET HTTP/2atampharosom.com/?rb=ikx87jLmrk8GFiImwXkTi9-lAulMGEfvbRSgnZahFsok5E4kSBj1iyf1sR7stamJcWOVwgw4KRLKTbCTgB0Rq7xI9ILsOcdP46w4ukgfqNo9tsPftb1sRjSAxNcnG0oIOTjiyVXYmO6WjJ4P7eKnozLEQmLxDNfaIxgujybFL4NQlH_P1J0W0-vSiR_ncK-qaVzG8kmm5GWYCBvcIFqxe4t4AX3fBsxGesCnY4BMqS0kZXfJnR2wL7HOvH-Cu4_eqnlwZGcSFtKUfSsW&request_ab2=0&zoneid=6534634&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Ff1box.me%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=673c5033-6f44-448f-826c-5d3026676423&userId=00804811bb834479f7d1db845ff047f0&m=link IP139.45.197.242:443
CertificateIssuerLet's Encrypt Subjectatampharosom.com FingerprintDB:00:48:82:E0:15:ED:F1:5F:8B:04:40:F9:2C:5D:05:B1:7C:B5:64 ValidityWed, 24 Apr 2024 13:19:12 GMT - Tue, 23 Jul 2024 13:19:11 GMT
File typetroff or preprocessor input, ASCII text, with very long lines (2332), with no line terminators Hashbdd6becf363d9a07369898fdf476a9ec e96cedb8a49f4f795c55a291d1246291646208bb 2e55477c54978b62ed98757a787d848e73dfde820d61d99519744c35130b0ceb
GET /?rb=ikx87jLmrk8GFiImwXkTi9-lAulMGEfvbRSgnZahFsok5E4kSBj1iyf1sR7stamJcWOVwgw4KRLKTbCTgB0Rq7xI9ILsOcdP46w4ukgfqNo9tsPftb1sRjSAxNcnG0oIOTjiyVXYmO6WjJ4P7eKnozLEQmLxDNfaIxgujybFL4NQlH_P1J0W0-vSiR_ncK-qaVzG8kmm5GWYCBvcIFqxe4t4AX3fBsxGesCnY4BMqS0kZXfJnR2wL7HOvH-Cu4_eqnlwZGcSFtKUfSsW&request_ab2=0&zoneid=6534634&js_build=iclick-v1.779.2-auto&jsp=1&fs=0&cf=0&sw=1280&sh=1024&wih=1024&wiw=1280&ww=1280&wh=1024&sah=1024&wx=0&wy=0&cw=1280&wfc=1&pl=https%3A%2F%2Ff1box.me%2F&drf=&np=1&pt=0&nb=1&ng=0&ix=0&nw=1&tb=false&btz=UTC&bto=0&wgl=&js_build=iclick-v1.779.2-auto&navlng=en-US&pnt=0&pnrc=0&wasm=-1&bs=673c5033-6f44-448f-826c-5d3026676423&userId=00804811bb834479f7d1db845ff047f0&m=link HTTP/1.1
Host: atampharosom.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://f1box.me
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/
Cookie: OAID=0080487856924c9cf3bcd10f14a49f3e; oaidts=1713992716
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: application/json
x-trace-id: d572005e94a7da9f4f0cfebc022f644b
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://f1box.me
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace, favicon
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=00804811bb834479f7d1db845ff047f0; expires=Thu, 24 Apr 2025 21:05:16 GMT; path=/; secure; SameSite=None
oaidts=1713992716; expires=Thu, 24 Apr 2025 21:05:16 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Wed, 01 May 2024 21:05:16 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap | 142.250.74.106 | 200 OK | 4.7 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap IP142.250.74.106:443
CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (4786), with no line terminators Hashc8ea484de9f8d29d52b3297bf12ebcd4 d80d042dffa0aa28c84d983490de88307a3f6b94 d22823463f2014e907a4ac0cd6f42f369fab071947f3becb21873dabd8671d6e
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 24 Apr 2024 21:05:16 GMT
date: Wed, 24 Apr 2024 21:05:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| f1box.me/home.lite.bun.min.js?v=2.3 | 45.178.6.74 | 200 OK | 17 kB |
URL GET HTTP/3f1box.me/home.lite.bun.min.js?v=2.3 IP45.178.6.74:443 ASN#64122 SWISS GLOBAL SERVICES S.A.S
CertificateIssuerLet's Encrypt Subjectf1box.me FingerprintA1:D5:A5:C7:E6:56:56:5C:DD:2A:C4:2E:83:89:4D:E7:20:1C:9A:5E ValidityTue, 26 Mar 2024 04:40:36 GMT - Mon, 24 Jun 2024 04:40:35 GMT
File typeJavaScript source, ASCII text, with very long lines (16516) Hash7a473035e40a92231fb1345aef156746 7ef5d686d255dd9ffdcfa492b53361f65e2c34d7 dd05c8445340a0d99d18119afd0e93ea8ef8ebca7e8299e3ce92238c06108ca9
GET /home.lite.bun.min.js?v=2.3 HTTP/1.1
Host: f1box.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://f1box.me/
DNT: 1
Connection: keep-alive
Cookie: _dt_fs=AAAAAhQCEQNhZHMUAREEaG9tZRQBEQNwb3AGABEHcmVmZXJlcg0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: nginx
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: application/javascript
last-modified: Wed, 25 Oct 2023 18:31:58 GMT
vary: accept-encoding
etag: W/"65395f1e-441e"
expires: Fri, 24 May 2024 21:05:16 GMT
cache-control: max-age=2592000, must-revalidate
content-encoding: br
|
|
| ipp.littlecdn.com/web/static/sport.js | 104.22.24.116 | 200 OK | 12 kB |
URL GET HTTP/2ipp.littlecdn.com/web/static/sport.js IP104.22.24.116:443
CertificateIssuerLet's Encrypt Subjectlittlecdn.com Fingerprint42:A1:9F:5B:B7:1B:88:CB:90:58:FC:E9:D1:96:3C:48:38:66:3A:9A ValidityMon, 11 Mar 2024 02:10:57 GMT - Sun, 09 Jun 2024 02:10:56 GMT
File typeJavaScript source, ASCII text, with very long lines (12128), with no line terminators Hashd9fd7638e4b5122530bbc3715cdba2ad d8b0877cb7a6096e1abb944cd6ccc5efa837cdde dd4392dd1d6854ed374273926c38160e4a931f52170d17cdfde4056da9d30127
GET /web/static/sport.js HTTP/1.1
Host: ipp.littlecdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://f1box.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 21:05:16 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 12:40:16 GMT
etag: W/"d9fd7638e4b5122530bbc3715cdba2ad"
expires: Thu, 25 Apr 2024 20:22:05 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 2591
vary: Accept-Encoding
server: cloudflare
cf-ray: 87990cf0edec5689-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|