| nostop.go2cloud.org/aff_i?offer_id=186&aff_id=2076&aff_sub=556fdb6223c35&aff_sub2=xci&aff_sub3=&aff_sub4=&aff_sub5=&source=2076-556fdb6223c35&adv_sub={EXTENSION_URL_ENC}&adv_sub5=Firefox&adv_sub4=&adv_sub3=&adv_sub2=moneythought.xyz | 52.210.174.128 | | 57 B |
URL nostop.go2cloud.org/aff_i?offer_id=186&aff_id=2076&aff_sub=556fdb6223c35&aff_sub2=xci&aff_sub3=&aff_sub4=&aff_sub5=&source=2076-556fdb6223c35&adv_sub={EXTENSION_URL_ENC}&adv_sub5=Firefox&adv_sub4=&adv_sub3=&adv_sub2=moneythought.xyz IP52.210.174.128:0
File typeGIF image data, version 89a, 1 x 1 Hash77d96eebccea5801290ad68b3ccb4199 eaf3924bfd87bbf1f1137c395de8687f20c4f3a6 ac05f643d51698438fc2504bc237b5a39ce1248b037dbf446aaca4ce65c3182c
GET /aff_i?offer_id=186&aff_id=2076&aff_sub=556fdb6223c35&aff_sub2=xci&aff_sub3=&aff_sub4=&aff_sub5=&source=2076-556fdb6223c35&adv_sub={EXTENSION_URL_ENC}&adv_sub5=Firefox&adv_sub4=&adv_sub3=&adv_sub2=moneythought.xyz HTTP/1.1
Host: nostop.go2cloud.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://moneythought.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 26 Apr 2024 23:40:16 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Pragma: no-cache
Tracking_id: 1020d0c4841bc331eb6b237878e385
Access-Control-Allow-Origin: *
X-Request-Id: 9d6f752edd96db48e617158f4cf52dfa
Access-Control-Allow-Headers: Tune-SDK-Version
Content-Encoding: gzip
|
|
| trk.rockwound.site/aff_c?source=2076-556fdb6223c35&offer_id=186&aff_click_id=ASRCcXpEaENcKDKMNqDPuE&aff_id=2076&aff_sub=556fdb6223c35&aff_sub2=xci&aff_sub3=&aff_sub4=&aff_sub5=&aff_unique1=&aff_unique2=&aff_unique3=&name=setupdonwloader&url= | 18.202.12.61 | 302 Found | 286 B |
URL User Request GET HTTP/1.1trk.rockwound.site/aff_c?source=2076-556fdb6223c35&offer_id=186&aff_click_id=ASRCcXpEaENcKDKMNqDPuE&aff_id=2076&aff_sub=556fdb6223c35&aff_sub2=xci&aff_sub3=&aff_sub4=&aff_sub5=&aff_unique1=&aff_unique2=&aff_unique3=&name=setupdonwloader&url= IP18.202.12.61:80
File typeHTML document, ASCII text Hashaeaeb00aa5a8405e9f7a021d4db0a8c1 3e52c3085d4bc757fdc77292c579ffa160db2fd1 6f7c64271ab67dfec5b5dc8af54f509f4cd2a73631526a919d60b100a624da68
GET /aff_c?source=2076-556fdb6223c35&offer_id=186&aff_click_id=ASRCcXpEaENcKDKMNqDPuE&aff_id=2076&aff_sub=556fdb6223c35&aff_sub2=xci&aff_sub3=&aff_sub4=&aff_sub5=&aff_unique1=&aff_unique2=&aff_unique3=&name=setupdonwloader&url= HTTP/1.1
Host: trk.rockwound.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 26 Apr 2024 23:40:16 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 286
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: Sat, 26 Jul 1997 05:00:00 GMT
Location: https://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1
P3p: CP="NOI CUR OUR NOR INT"
Pragma: no-cache
Set-Cookie: enc_aff_session_186=ENC032e7c683dba0da7ebbb020b3801a9c8492ff2855b0f1bd1b6244375944bb9617dff1b4db243431dfc66a23b257bfc96ebb45c1899ea260e22c40c9a3604c084af2b800f9506d4b32433ea35123a871ebfd7e5f4d9112c6610ce70953cffd99b6369ff24be04c6def9509f41181327ae989b525f51908a829c619ae3293eba0eff67476815811891277bb4448be384cf7e96adcd954c63edec3dfaa357828a054c30f07045; expires=Sun, 26 May 2024 23:40:16 GMT; path=/; SameSite=None; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiI5Ni4wIiwibW9iaWxlX2NhcnJpZXIiOiI/IiwidXNlcl9hZ2VudCI6Ik1vemlsbGEvNS4wIChYMTE7IExpbnV4IFg4Nl82NDsgUnY6OTYuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC85Ni4wIiwiYWNjZXB0X2xhbmd1YWdlIjoiZW4tVVMsZW47cT0wLjUiLCJjb25uZWN0aW9uX3NwZWVkIjoiYnJvYWRiYW5kIn0=; expires=Mon, 22 Mar 2027 10:20:16 GMT; path=/; SameSite=None; Secure
Tracking_id: 1027d5413cc779aa8a0b54786df6c1
X-Robots-Tag: noindex, nofollow
Access-Control-Allow-Origin: *
X-Request-Id: 722b1fc7276409b4fbd58d7163963e8d
Access-Control-Allow-Headers: Tune-SDK-Version
|
|
| fonts.googleapis.com/css?family=Fredoka+One | 142.250.74.106 | 200 OK | 16 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Fredoka+One IP142.250.74.106:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typegzip compressed data, max compression Hashd4f883d601bae1b8d2b3a511a426f43a 8d5801945aca9befc13b4f84de77aaab4f153a3c 3db943c212391a102b0b1e6a2131efd051f722eb4f917b75c9b3b2f6deb14475
GET /css?family=Fredoka+One HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ok.battletrain.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 23:40:17 GMT
date: Fri, 26 Apr 2024 23:40:17 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ok.battletrain.xyz/ee/1543246333.woff | 172.67.181.222 | 200 OK | 1.1 kB |
URL GET HTTP/3ok.battletrain.xyz/ee/1543246333.woff IP172.67.181.222:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerGoogle Trust Services LLC Subjectbattletrain.xyz Fingerprint02:46:6F:E4:DD:93:A4:E5:18:EA:94:7B:37:14:4B:CB:F0:D0:F4:C2 ValidityThu, 14 Mar 2024 22:20:29 GMT - Wed, 12 Jun 2024 22:20:28 GMT
File typeWeb Open Font Format, CFF, length 1144, version 1.0 Hash605dc29afa54d8310bb22266e452aca8 9986ecc366bbf2ed265738a2972ada6a66634820 ff284e26d3a139a31c82535aaaf0225e3ea76bff7bca7db5038558ee83fac623
GET /ee/1543246333.woff HTTP/1.1
Host: ok.battletrain.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://ok.battletrain.xyz/ee/icons.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:40:17 GMT
content-type: application/font-woff
content-length: 1144
last-modified: Wed, 29 May 2019 14:15:08 GMT
etag: "5cee93ec-478"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GA1jp4RGW%2FOhW8QOmgiBabLzg%2Boi7MPCc%2B1CJZxyHaAnrK8p7nM%2B1Ai5hErPl7G2BhQKAMymAitgmjuNSk4JHfNzZjUFmWnwbbFjM2O7gdSY64c2sAnV1baW0RduUs5wiiNm97g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa6ac20f3d1bfe-OSL
alt-svc: h3=":443"; ma=86400
|
|
| humsoolt.net/zone?pub=0&zone_id=2674728&is_mobile=false&domain=ok.battletrain.xyz&var=2076-556fdb6223c35&ymid=1027d5413cc779aa8a0b54786df6c1&var_3=&tg=0&sw=3.1.504 | 139.45.197.251 | 200 OK | 144 B |
URL GET HTTP/2humsoolt.net/zone?pub=0&zone_id=2674728&is_mobile=false&domain=ok.battletrain.xyz&var=2076-556fdb6223c35&ymid=1027d5413cc779aa8a0b54786df6c1&var_3=&tg=0&sw=3.1.504 IP139.45.197.251:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjecthumsoolt.net FingerprintA0:E9:3C:D2:51:F8:4E:F9:D3:48:53:8E:60:A6:47:4B:DD:97:3E:3B ValidityWed, 27 Mar 2024 05:04:27 GMT - Tue, 25 Jun 2024 05:04:26 GMT
Hash7d6b2b3f257459b9f456530e3b42cc1e 531ca355fba3d90f92c1505a796be91f2e3fc418 3ab83e12e0096d62dfeb0b64e022272ec8560c817a9b02395c65064da53519ba
GET /zone?pub=0&zone_id=2674728&is_mobile=false&domain=ok.battletrain.xyz&var=2076-556fdb6223c35&ymid=1027d5413cc779aa8a0b54786df6c1&var_3=&tg=0&sw=3.1.504 HTTP/1.1
Host: humsoolt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ok.battletrain.xyz/
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:17 GMT
content-type: application/json; charset=utf-8
content-length: 144
x-trace-id: fd6fc696831549838d1ea7bfd7abecab
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| humsoolt.net/custom | 139.45.197.251 | 200 OK | 0 B |
IP139.45.197.251:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjecthumsoolt.net FingerprintA0:E9:3C:D2:51:F8:4E:F9:D3:48:53:8E:60:A6:47:4B:DD:97:3E:3B ValidityWed, 27 Mar 2024 05:04:27 GMT - Tue, 25 Jun 2024 05:04:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: humsoolt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ok.battletrain.xyz/
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| humsoolt.net/custom | 139.45.197.251 | 200 OK | 0 B |
IP139.45.197.251:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjecthumsoolt.net FingerprintA0:E9:3C:D2:51:F8:4E:F9:D3:48:53:8E:60:A6:47:4B:DD:97:3E:3B ValidityWed, 27 Mar 2024 05:04:27 GMT - Tue, 25 Jun 2024 05:04:26 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: humsoolt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ok.battletrain.xyz/
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| humsoolt.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjecthumsoolt.net FingerprintA0:E9:3C:D2:51:F8:4E:F9:D3:48:53:8E:60:A6:47:4B:DD:97:3E:3B ValidityWed, 27 Mar 2024 05:04:27 GMT - Tue, 25 Jun 2024 05:04:26 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: humsoolt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ok.battletrain.xyz/
Content-Type: application/json
Content-Length: 845
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 34b19e613062a69873e842558a53b57a
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| humsoolt.net/custom | 139.45.197.251 | 200 OK | 39 B |
IP139.45.197.251:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjecthumsoolt.net FingerprintA0:E9:3C:D2:51:F8:4E:F9:D3:48:53:8E:60:A6:47:4B:DD:97:3E:3B ValidityWed, 27 Mar 2024 05:04:27 GMT - Tue, 25 Jun 2024 05:04:26 GMT
Hash058b158c2be925f556454ef762d93538 cc6fc563b4b6baee880fdbc7fcfaa134978e33c9 ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: humsoolt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ok.battletrain.xyz/
Content-Type: application/json
Content-Length: 466
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 2002d04dffff73658cb32037caed3a33
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ok.battletrain.xyz/
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ok.battletrain.xyz/
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 0 B |
IP139.45.197.250:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://ok.battletrain.xyz/
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashc1e4cd9a4a9bd4cec6a0e8bfed9da224 b1e417e7268d9681d8a5e7fe6d9b22fec2df2a9b f66011badb48fe9af8b3369f06e1735473ead79484136c4e7ff38ef3860b7b51
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ok.battletrain.xyz/
Content-Type: application/json
Content-Length: 574
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hashb02965451292dbaaeea376c053edf817 7dbe21caf52175ae4484c1a1c40933f4495af05c 7a76a6c90db2543de33b04a3f807f408e5d69c6d875dd29bc4cdc69202ffb409
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ok.battletrain.xyz/
Content-Type: application/json
Content-Length: 574
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| amunfezanttor.com/event | 139.45.197.250 | 200 OK | 94 B |
IP139.45.197.250:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjectamunfezanttor.com FingerprintAB:2C:60:54:FF:D7:D6:23:0E:87:1A:98:EC:94:B3:9B:29:1A:F3:AA ValidityWed, 10 Apr 2024 19:04:12 GMT - Tue, 09 Jul 2024 19:04:11 GMT
Hash39dba225914b0ca1d5417c45e885f7e8 dfc404226b02539c4151bf48cad60acf1e3b759c b408b6d71cbb1fdbc64f84f2fffb11e5ba24c5d0407b51b476cd2e79811cc3e5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ok.battletrain.xyz/
Content-Type: application/json
Content-Length: 574
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: application/json; charset=utf-8
content-length: 94
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-102-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-06-09-11-51-10.chain; p384ecdsa=th5VE-UbKp7x5ztbkCdLTDITwZ96dVSjHWVG3nOmEsxMOO8KFdPCBd3YH9iFcWQ4ZfPcWDVbU7gKUlaT_0P9Xarwvkrj3515YzFhzlPydmT4LnhHHpPtS0QwI19oEu_u
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Fri, 26 Apr 2024 23:39:28 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 66
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/fredokaone/v14/k3kUo8kEI-tA1RRcTZGmTlHGCac.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/fredokaone/v14/k3kUo8kEI-tA1RRcTZGmTlHGCac.woff2 IP216.58.207.227:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33 ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15596, version 1.0 Hash72bb194f7e275c92ecf5536060952844 a7419d2e8b92cbc5f89c3c03771f45c4f632964c e9986c62b19bce3791c4c103a4aa87c91d22d9e1c9f252f7f802ea26d3405769
GET /s/fredokaone/v14/k3kUo8kEI-tA1RRcTZGmTlHGCac.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:05:27 GMT
expires: Sat, 26 Apr 2025 06:05:27 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 20:35:18 GMT
content-type: font/woff2
age: 63290
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ok.battletrain.xyz/ee/icons.css | 172.67.181.222 | 200 OK | 1.1 kB |
URL GET HTTP/3ok.battletrain.xyz/ee/icons.css IP172.67.181.222:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerGoogle Trust Services LLC Subjectbattletrain.xyz Fingerprint02:46:6F:E4:DD:93:A4:E5:18:EA:94:7B:37:14:4B:CB:F0:D0:F4:C2 ValidityThu, 14 Mar 2024 22:20:29 GMT - Wed, 12 Jun 2024 22:20:28 GMT
File typeASCII text, with very long lines (1206), with no line terminators Hashcc77dba7458d0531eee73b1014ebf114 e169e3b29aa9c97c7d2afd9d5150be2d414e15e8 24b82e74a45bc0793072ba1c1b3e6713abee616c03d9f752d9b66ee333c9626a
GET /ee/icons.css HTTP/1.1
Host: ok.battletrain.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 23:40:17 GMT
content-type: text/css
last-modified: Wed, 29 May 2019 14:15:09 GMT
etag: W/"5cee93ed-46a"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JW8I5gvD8PYKt53LAV2d6c23XF7JSFEiJ%2BYPCbGac4tAVx72JlLmFuEIkD7A4mr%2F3HfvvTM5SH%2BoApU0kEW%2Fm2bc%2BcRZ0DItNVQQ5jKn7dAu2r43vCytsjAu7buIgYpcJJgziu8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87aa6ac06e8e1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| humsoolt.net/pfe/current/standalone.min.js?v=3.1.504 | 139.45.197.251 | 200 OK | 73 kB |
URL GET HTTP/2humsoolt.net/pfe/current/standalone.min.js?v=3.1.504 IP139.45.197.251:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjecthumsoolt.net FingerprintA0:E9:3C:D2:51:F8:4E:F9:D3:48:53:8E:60:A6:47:4B:DD:97:3E:3B ValidityWed, 27 Mar 2024 05:04:27 GMT - Tue, 25 Jun 2024 05:04:26 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash5bbe376b5677a5f07051dfa9c6f3221a fb0f0dbb4d45faeaf905d778949d9480f8c19d0a ab0af71125c64d7b60915222764907708423f47cf5ea23f54d7162127696485e
GET /pfe/current/standalone.min.js?v=3.1.504 HTTP/1.1
Host: humsoolt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ok.battletrain.xyz/
Origin: https://ok.battletrain.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:18 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:52 GMT
etag: W/"662a3514-11c35"
access-control-allow-origin: https://ok.battletrain.xyz
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 | 172.67.181.222 | 200 OK | 5.4 kB |
URL User Request GET HTTP/2ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 IP172.67.181.222:443
CertificateIssuerGoogle Trust Services LLC Subjectbattletrain.xyz Fingerprint02:46:6F:E4:DD:93:A4:E5:18:EA:94:7B:37:14:4B:CB:F0:D0:F4:C2 ValidityThu, 14 Mar 2024 22:20:29 GMT - Wed, 12 Jun 2024 22:20:28 GMT
File typeHTML document, ASCII text, with very long lines (5562), with no line terminators Hashef5948e5843f7955073dd0757f4666a6 f4b67d767367f6fd595ead56466c00ea916f93c0 e400cf26c47323fcf952d48710f5af468e74db731b08899d5c8d84f431999525
GET /ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 HTTP/1.1
Host: ok.battletrain.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 23:40:17 GMT
content-type: text/html
x-powered-by: PHP/5.4.16
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eqfVwA%2BLUvqokASdprJoEhp9kxjpo191w4pN3NMZma9DeOSbVuK4AMglINez3qTVnhhOlbJ8Iu3TJlCoCNGOaM6hNlgwztfk7i5lfvrjkLzRrqff1Px5MuiUnA2HETJkQ3mSIe0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87aa6abe1df8b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| humsoolt.net/pfe/current/tag.min.js?z=2674728&t=standalone&ymid=1027d5413cc779aa8a0b54786df6c1&var=2076-556fdb6223c35 | 139.45.197.251 | 200 OK | 15 kB |
URL GET HTTP/2humsoolt.net/pfe/current/tag.min.js?z=2674728&t=standalone&ymid=1027d5413cc779aa8a0b54786df6c1&var=2076-556fdb6223c35 IP139.45.197.251:443
Requested byhttps://ok.battletrain.xyz/ee/indexN.php?sid=2076-556fdb6223c35&cid=1027d5413cc779aa8a0b54786df6c1 CertificateIssuerLet's Encrypt Subjecthumsoolt.net FingerprintA0:E9:3C:D2:51:F8:4E:F9:D3:48:53:8E:60:A6:47:4B:DD:97:3E:3B ValidityWed, 27 Mar 2024 05:04:27 GMT - Tue, 25 Jun 2024 05:04:26 GMT
File typeJavaScript source, ASCII text, with very long lines (14612), with no line terminators Hashffdd38e0a5a1a47cb341a116a3318e0e 2fd730feff506cf56e14c531e9d89cdea2cca424 7d8e97e9586d3f04c4a2a703692378868e49120c6159d079ae7ed1eca2ca2b5c
GET /pfe/current/tag.min.js?z=2674728&t=standalone&ymid=1027d5413cc779aa8a0b54786df6c1&var=2076-556fdb6223c35 HTTP/1.1
Host: humsoolt.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ok.battletrain.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 23:40:17 GMT
content-type: application/javascript
last-modified: Thu, 25 Apr 2024 10:48:53 GMT
etag: W/"662a3515-3914"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|