| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash59be8dfdd6f4ab82f394d3d5b927e065 dc8e8f1bbae495f84322e5efd0c42a39ef5be56c 7f251408f64b28bebfe96f3db5c3dde3d5ad5febbaf2964b3516c114eaa51f4d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7F251408F64B28BEBFE96F3DB5C3DDE3D5AD5FEBBAF2964B3516C114EAA51F4D"
Last-Modified: Mon, 31 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5206
Expires: Thu, 03 Nov 2022 04:57:56 GMT
Date: Thu, 03 Nov 2022 03:31:10 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash5f57d2cc1ab8bbee50dff2b2be18b9db 2c8acd2018995b9bbed8f4dbfa33c8044b293080 a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5598
Cache-Control: max-age=113593
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 03:31:10 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 11:04:23 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash44ee7bbc64b0396b20a28944ea4ec4d2 dbb18d4238fa3a980e5c254ff25d3b39590b0159 2cc72ff87dcdabcb0a67d8dda7a7c440f8650ffe77f71602954a3076762be50a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC72FF87DCDABCB0A67D8DDA7A7C440F8650FFE77F71602954A3076762BE50A"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9774
Expires: Thu, 03 Nov 2022 06:14:04 GMT
Date: Thu, 03 Nov 2022 03:31:10 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: zxwO1gr1anOvT4exMFEUq9y3Y4fmZDKJY6iBfQzJxURRDApLUUbZwU+0OYEAnGl7LhIEexOIPlg=
x-amz-request-id: K2GK17XWFEJ4HR20
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 03 Nov 2022 03:09:01 GMT
age: 1329
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| book.dypics.com/search/%E9%BB%91%E9%95%9C | 172.67.216.247 | 301 Moved Permanently | 184 B |
URL HTTP/1.1book.dypics.com/search/%E9%BB%91%E9%95%9C IP172.67.216.247:0
File typeHTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text Hashd802d1e7dfe289d8ef987e2a5693f858 dc6ceb429f472308d9a1a12798d9a25ed6b3735f b49a4b780e9ae0bef2d0ca1309b6d51326b5d0dbe481d851791a3977d4b9e6c0
GET /search/%E9%BB%91%E9%95%9C HTTP/1.1
Host: book.dypics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 03 Nov 2022 03:31:10 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.torrentkitty.lol/search/search/%E9%BB%91%E9%95%9C
X-Powered-By: ASP.NET
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kfYiBosATSv7zEBdQyO2UB%2FI6RZgHwwbOyuOjpNQpS6snRkVXkuvLPF5vO3JT9diDsO4Pi657TkVyunjCKOjhOtCH1n%2FeV8epGK1FRCPyJbpB%2F4OcjE%2BVYb8TEnQ0kUebGs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 764209127f76b506-OSL
alt-svc: h2=":443"; ma=60
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 03 Nov 2022 03:31:10 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash4f9e99749d3f2ba6bdfb4f4ee1369ca5 d46d7d830585a19d2b889b8b2c95674c4bd97d6e f021b6d260bc479bae5ad4f5e786156655437632ab080473f64ea12891fad8e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=171724
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 03:31:10 GMT
Etag: "636331ca-117"
Expires: Sat, 05 Nov 2022 03:13:14 GMT
Last-Modified: Thu, 03 Nov 2022 03:13:14 GMT
Server: nginx
Content-Length: 279
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashfd65439b27a0101cd831309f178fbb45 4daa9343dda0f37ba734e2b5500caf2728cf89db 37e6d155f598b5154e3ce96105c39798716b5d35e12a98b9aec172c160de5f6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6149
Cache-Control: max-age=109087
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 03:31:10 GMT
Etag: "63622518-1d7"
Expires: Fri, 04 Nov 2022 09:49:17 GMT
Last-Modified: Wed, 02 Nov 2022 08:06:48 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 35.80.175.197 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.80.175.197:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rwsBKuFdmojDtoqy7V/3RQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xYuEN4mz/MA7e/Hf4Ydo38XQ9Sw=
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash4f9e99749d3f2ba6bdfb4f4ee1369ca5 d46d7d830585a19d2b889b8b2c95674c4bd97d6e f021b6d260bc479bae5ad4f5e786156655437632ab080473f64ea12891fad8e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1
Cache-Control: max-age=171724
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 03:31:11 GMT
Etag: "636331ca-117"
Expires: Sat, 05 Nov 2022 03:13:15 GMT
Last-Modified: Thu, 03 Nov 2022 03:13:14 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash20b572990984dbcfe7f2f008ef6bda75 c3702a3ac955906b456586da466dfa6190b92c40 8fe9a62afdcd376906c6b6aaac67a48bb96b1c588b27d5b968685774b159cec2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8FE9A62AFDCD376906C6B6AAAC67A48BB96B1C588B27D5B968685774B159CEC2"
Last-Modified: Wed, 02 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3006
Expires: Thu, 03 Nov 2022 04:21:17 GMT
Date: Thu, 03 Nov 2022 03:31:11 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashea47ddff7f0ac5bb9669ae472de5df0c ea1b75a83ed6abcba962c7c7aa6e2339e58b6fde 823c5316a84d3f648f8aca459592100366dfee267903858a2c8cfc0b09f745d7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "823C5316A84D3F648F8ACA459592100366DFEE267903858A2C8CFC0B09F745D7"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19259
Expires: Thu, 03 Nov 2022 08:52:10 GMT
Date: Thu, 03 Nov 2022 03:31:11 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 504 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9a1ed9beecb926712745e32360d274c5 7a9b0d4ff42753b2d862e8e2eff4022ca10fb801 2c564e7af552cc24f0944b24c5124940187dbfdcb232775bf856eff50b7f59de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8FE9A62AFDCD376906C6B6AAAC67A48BB96B1C588B27D5B968685774B159CEC2"
Last-Modified: Wed, 02 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17225
Expires: Thu, 03 Nov 2022 08:18:16 GMT
Date: Thu, 03 Nov 2022 03:31:11 GMT
Connection: keep-alive
|
|
| charmshoist.com/90/56/63/90566380a88c4f754ae2676c3e590ba1.js | 192.243.61.227 | 403 Forbidden | 0 B |
URL HTTP/1.1charmshoist.com/90/56/63/90566380a88c4f754ae2676c3e590ba1.js IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /90/56/63/90566380a88c4f754ae2676c3e590ba1.js HTTP/1.1
Host: charmshoist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Server: nginx/1.22.0
Date: Thu, 03 Nov 2022 03:31:12 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
|
|
| accentneglectporter.com/80497e49a2c17fe3a1aff4077eee1810/invoke.js | 173.233.137.36 | 403 Forbidden | 3.4 kB |
URL HTTP/1.1accentneglectporter.com/80497e49a2c17fe3a1aff4077eee1810/invoke.js IP173.233.137.36:0
Hash9db15d209d692334d805379395166edb cdb7a9bd87ae73367fd254eb4ab29808d3fe9bd5 fcac3fb3f55221303303b9eb7308782398ef3ae656a1e29d3c600a83522374be
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /80497e49a2c17fe3a1aff4077eee1810/invoke.js HTTP/1.1
Host: accentneglectporter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Server: nginx/1.19.5
Date: Thu, 03 Nov 2022 03:31:12 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10029
Expires: Thu, 03 Nov 2022 06:18:21 GMT
Date: Thu, 03 Nov 2022 03:31:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10029
Expires: Thu, 03 Nov 2022 06:18:21 GMT
Date: Thu, 03 Nov 2022 03:31:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10029
Expires: Thu, 03 Nov 2022 06:18:21 GMT
Date: Thu, 03 Nov 2022 03:31:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashc18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10029
Expires: Thu, 03 Nov 2022 06:18:21 GMT
Date: Thu, 03 Nov 2022 03:31:12 GMT
Connection: keep-alive
|
|
| charmshoist.com/26/ca/06/26ca065a5fb871c74739646a26f0622b.js | 192.243.61.227 | 200 OK | 13 kB |
URL HTTP/1.1charmshoist.com/26/ca/06/26ca065a5fb871c74739646a26f0622b.js IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
File typeASCII text, with very long lines (37131), with no line terminators Hash9aa7bb1d44061f06ecee7c533e57c517 2a84bd3d0393d57bae7c66ca9e13e6560149d44e 3be8d141174f8c8befcc36e26c3ce65504bdfe2e06ba6baa67af3064a3eab413
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /26/ca/06/26ca065a5fb871c74739646a26f0622b.js HTTP/1.1
Host: charmshoist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Thu, 03 Nov 2022 03:31:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 81e8c6556347a5357ab2b656a2dec3ce
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e223e61-933f-4fc4-b7d9-60cf31add88f.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e223e61-933f-4fc4-b7d9-60cf31add88f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe896c2f1ea9d1c3c19179f82cdb1d7b8 71e6e5b9d89be5af160359ea177bd89afaf76b7b b5c0f266401f8cf42efa9f602e05dda188a90105005c1b16b94d0e872eeef4af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e223e61-933f-4fc4-b7d9-60cf31add88f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10510
x-amzn-requestid: 5629172a-4d2d-44a5-8c25-f504a434df43
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: as6A_GwRIAMFYBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635b706c-6ca827940020697a2df4ef54;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 06:02:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yMFW4XQewX0X1HrT3ayWMQDrr8NyPkuSzrSgiXzDdTRVAKtc5A_Klw==
via: 1.1 2ac6b2644462a8466362b046856a127e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 05:47:33 GMT
age: 78219
etag: "71e6e5b9d89be5af160359ea177bd89afaf76b7b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda246f7a-035f-4d27-a68e-ec7f18ac88f6.jpeg | 34.120.237.76 | 200 OK | 5.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda246f7a-035f-4d27-a68e-ec7f18ac88f6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1d19375e12883523b165e8525c91b4e3 6bf3ca16bffa62ffce90f3fc1a6ddf9c9cfa2e01 f48594387c77d659e880cbac211b669f35fedc1226340544f593a57e9f8ea62b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda246f7a-035f-4d27-a68e-ec7f18ac88f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5723
x-amzn-requestid: 90768070-b25d-45db-bac0-a397e44d5de3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a_h-3FaCoAMFasg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6362e392-6546412536ad833d4e7d906a;Sampled=0
x-amzn-remapped-date: Wed, 02 Nov 2022 21:39:30 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9RjtT2Z8YdVzx9k4pha2dZ-a1QnQhoirLBYK3uHU0ygD4B6rjo0lRA==
via: 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 21:44:36 GMT
age: 20796
etag: "6bf3ca16bffa62ffce90f3fc1a6ddf9c9cfa2e01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3235a32d-fb0b-4624-8362-0b2d8fead111.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3235a32d-fb0b-4624-8362-0b2d8fead111.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash788a6ab1a5391958811453809e08ec74 c8188247edb78ee5f3c469a612b2430bbcd513b6 e961a4412a3f73ab7da9db2da06e72528a2abded50a442741687787933e98900
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3235a32d-fb0b-4624-8362-0b2d8fead111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10255
x-amzn-requestid: 5414f7ef-f510-4666-97f4-c8cb042f6877
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: atDhDEstIAMFlAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635b7fa0-76cd3cf7260dfe7c66ded970;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 07:07:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7V1UVCycRm1iW3P_Pm8zi-M9y4xwHdLwPe0rRIP7ASzvu8BfSJtnFw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 04:11:49 GMT
age: 83963
etag: "c8188247edb78ee5f3c469a612b2430bbcd513b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4e2853cc6ec6223160471401e6871f4b f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: w5Nv6yf06dCHv6q9wt8-guOfQSMywfZFoXxwWvcLc9FtdwgRIqPcUQ==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 17:57:00 GMT
age: 34452
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F623cd169-7ed9-42a3-aa0b-e5d3053dad6c.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F623cd169-7ed9-42a3-aa0b-e5d3053dad6c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf22f82690184549a27cacc59906590bd f387ae7704ac36d6a3e20da098cb9f75829d1e0f a9804db6a2263ed8d70634921ac39079c2a803f180a3347eeb92d7bbede66b67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F623cd169-7ed9-42a3-aa0b-e5d3053dad6c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9464
x-amzn-requestid: 63126894-cf2b-4b97-9115-4782d4418e52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a2ZVpFtqoAMFZdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635f3c23-766a430e679848b74e1f7d06;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 03:08:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: C2OkZKFMBBgW_A2TEjx49rNbs3uYHwWAcNROojSt9K4J3Qsz2sJPHQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 03:25:28 GMT
age: 344
etag: "f387ae7704ac36d6a3e20da098cb9f75829d1e0f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77daf043-dc2c-488f-a016-721add19ba21.jpeg | 34.120.237.76 | 200 OK | 5.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77daf043-dc2c-488f-a016-721add19ba21.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashecf55d579f9ce828715804df5fea399c feceee1c1ab1f928774fb24f05f17e12474af516 c2a2a61e07ce5029ede1d6c0cfaf257529adae70e7a9c58e4ebbe6177072b9e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F77daf043-dc2c-488f-a016-721add19ba21.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5301
x-amzn-requestid: a80badb8-8525-4f47-88d2-125993751918
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a_iCYH-2IAMFx5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6362e3a8-7aa2d5cf36fb0a2a24f2dccc;Sampled=0
x-amzn-remapped-date: Wed, 02 Nov 2022 21:39:52 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: LoVOeH3IGscaJV88yepkrosmxF7nDaBvuO6O6A34L4LtCKtXBDyMPA==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 21:44:34 GMT
etag: "feceee1c1ab1f928774fb24f05f17e12474af516"
content-type: image/jpeg
age: 20798
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 345 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf55edf0f13ff05fba78079e6738406b4 5b84aa49c461cdee1a418e660cb79c43f61f7ea5 5e4c1824c3e76371737e1f40e1f53250296518915fd715760e5141429a7cfe0d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "5E4C1824C3E76371737E1F40E1F53250296518915FD715760E5141429A7CFE0D"
Last-Modified: Wed, 02 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12544
Expires: Thu, 03 Nov 2022 07:00:16 GMT
Date: Thu, 03 Nov 2022 03:31:12 GMT
Connection: keep-alive
|
|
| charmshoist.com/90/56/63/90566380a88c4f754ae2676c3e590ba1.js | 192.243.61.227 | 403 Forbidden | 0 B |
URL HTTP/1.1charmshoist.com/90/56/63/90566380a88c4f754ae2676c3e590ba1.js IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /90/56/63/90566380a88c4f754ae2676c3e590ba1.js HTTP/1.1
Host: charmshoist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Server: nginx/1.22.0
Date: Thu, 03 Nov 2022 03:31:12 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 345 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf55edf0f13ff05fba78079e6738406b4 5b84aa49c461cdee1a418e660cb79c43f61f7ea5 5e4c1824c3e76371737e1f40e1f53250296518915fd715760e5141429a7cfe0d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "5E4C1824C3E76371737E1F40E1F53250296518915FD715760E5141429A7CFE0D"
Last-Modified: Wed, 02 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12544
Expires: Thu, 03 Nov 2022 07:00:16 GMT
Date: Thu, 03 Nov 2022 03:31:12 GMT
Connection: keep-alive
|
|
| ocsp.sca1b.amazontrust.com/ | 52.222.137.60 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP52.222.137.60:0
Hashd2608d71d39f8b919d44f239ba915cf5 697d8afd5175b88cc985ebd99633641d15979945 8f4eb80bae6dbae7b93899be913fd22d97bf3e9c1c70287df46448662937d917
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=125032
Date: Thu, 03 Nov 2022 03:31:12 GMT
Etag: "63626304-1d7"
Expires: Fri, 04 Nov 2022 14:15:04 GMT
Last-Modified: Wed, 02 Nov 2022 12:31:00 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 ff34f581ad0f4009e4c404975952e7f0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: AMS50-C1
X-Amz-Cf-Id: k6Hr0Hw9oxoTbdh9NvI-C46B4J7PjcPRu6f1_YqzH0M-RdkTZQyjag==
Age: 6244
|
|
| simplewebanalysis.com/stats | 3.67.205.67 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP3.67.205.67:0
File typeASCII text, with no line terminators Hashd1a54a0166c1ff45fbee69a036d4c77f 0820fdb1895e92647f5acac50b95b202d8bab7b0 7724d6451a186b29f0b74640b102e501859789a9e32c8a8f0b71f1959ba34613
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.torrentkitty.lol
access-control-allow-credentials: true
set-cookie: uid_id2=a8ee6722-3bf2-4cdc-8d65-d885ce228411:3:1; expires=Sun, 31 Oct 2032 03:31:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| simplewebanalysis.com/stats | 3.67.205.67 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP3.67.205.67:0
File typeASCII text, with no line terminators Hashd1a54a0166c1ff45fbee69a036d4c77f 0820fdb1895e92647f5acac50b95b202d8bab7b0 7724d6451a186b29f0b74640b102e501859789a9e32c8a8f0b71f1959ba34613
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: uid_id2=a8ee6722-3bf2-4cdc-8d65-d885ce228411:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.torrentkitty.lol
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbe3a54699a3616ad820d954dc63672a4 862e7e02c27cd36015a7c70d76fd0ff471c36e92 5ade47211f4fc79be0093b0faf772a1e4d8f30a621f85f9b9e7f2d010c352443
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5ADE47211F4FC79BE0093B0FAF772A1E4D8F30A621F85F9B9E7F2D010C352443"
Last-Modified: Tue, 01 Nov 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18741
Expires: Thu, 03 Nov 2022 08:43:34 GMT
Date: Thu, 03 Nov 2022 03:31:13 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd6baf3369f80a76c7213b70d3ea05151 d14b337529db4dcd2d5c4376c7aa8ea8884913e4 5a741e29b0b57f2cfac67cd29bd1266b6d7e5a04762be8b1efad458dda18215e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A741E29B0B57F2CFAC67CD29BD1266B6D7E5A04762BE8B1EFAD458DDA18215E"
Last-Modified: Tue, 01 Nov 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10456
Expires: Thu, 03 Nov 2022 06:25:29 GMT
Date: Thu, 03 Nov 2022 03:31:13 GMT
Connection: keep-alive
|
|
| unseenreport.com/pxf.gif?uuid=a8ee6722-3bf2-4cdc-8d65-d885ce228411&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=26ca065a5fb871c74739646a26f0622b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=3 | 192.243.59.20 | 200 OK | 1 B |
URL HTTP/1.1unseenreport.com/pxf.gif?uuid=a8ee6722-3bf2-4cdc-8d65-d885ce228411&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=26ca065a5fb871c74739646a26f0622b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=3 IP192.243.59.20:0 ASN#39572 DataWeb Global Group B.V.
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pxf.gif?uuid=a8ee6722-3bf2-4cdc-8d65-d885ce228411&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=26ca065a5fb871c74739646a26f0622b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=3 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Thu, 03 Nov 2022 03:31:13 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 15c0eacab311facb8e4db249dcf9c81b
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| nebulouslostpremium.com/sbar.json?key=26ca065a5fb871c74739646a26f0622b&uuid=a8ee6722-3bf2-4cdc-8d65-d885ce228411%3A3%3A1 | 173.233.137.52 | 200 OK | 4.1 kB |
URL HTTP/1.1nebulouslostpremium.com/sbar.json?key=26ca065a5fb871c74739646a26f0622b&uuid=a8ee6722-3bf2-4cdc-8d65-d885ce228411%3A3%3A1 IP173.233.137.52:0
File typeJSON data\012- , ASCII text, with very long lines (5758), with no line terminators Hashf5694fa0bdba084ca1fa84273b603790 b753037036f8d2e946264abed6ed501ad9212f36 e033317094c10d5419fb5a4035be12c9157d34cc436a387e75257e6015ee54a7
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /sbar.json?key=26ca065a5fb871c74739646a26f0622b&uuid=a8ee6722-3bf2-4cdc-8d65-d885ce228411%3A3%3A1 HTTP/1.1
Host: nebulouslostpremium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Nov 2022 03:31:13 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.torrentkitty.lol
Access-Control-Allow-Origin: https://www.torrentkitty.lol
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17550729; expires=Fri, 04 Nov 2022 03:31:13 GMT; secure; SameSite=None
uid_id2=a8ee6722-3bf2-4cdc-8d65-d885ce228411:3:1; expires=Thu, 10 Nov 2022 03:31:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 04 Nov 2022 03:31:13 GMT; secure; SameSite=None
uncs=1; expires=Fri, 04 Nov 2022 03:31:13 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 04 Nov 2022 03:31:13 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 04 Nov 2022 03:31:13 GMT; secure; SameSite=None
slec26ca065a5fb871c74739646a26f0622b=[3357660]; expires=Thu, 03 Nov 2022 03:31:18 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cd05b659c5eea0bcbb7b1287a695d6e7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hash7d67d82d712065ac8e4cfa0bc51ed64c 1e5b293512891240500e1c6da3880c6a0f0fcf1a 272f7157de85fb9a792e1bce0dbff5771bfb8a8a48737f26885657239d2fc2a2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6483
Cache-Control: max-age=142924
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 03:31:13 GMT
Etag: "6362a7fa-117"
Expires: Fri, 04 Nov 2022 19:13:17 GMT
Last-Modified: Wed, 02 Nov 2022 17:25:14 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 279
|
|
| nebulouslostpremium.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscRRSvTiIIOYjBi4IwBw8K7mx3z%2FR8GCEYY0IwXySRHLxYXz1bTk1XU1U9PbunYEDibXLz2PubTZZoUPMHCNIriCwKOx5kQfd%2FECEnDzKbgdF36Pde%2F97h91GfbxdHJERBD29cNVtKa7qeNMPGm3dUJkzpGtduN6KwGZ5t3FFZp322MVl87PidKEya4VuNS5IPzXocRmEYhVHjorIyNZP1YxQqf9KPmv2w2Y6bUdLGxP5%2Fd0UARwOI8RE5AyXmL2z8%2FBSK18hG312QbuhN%2FvYHo0JTbyzGYvejbJiZMsNoNaY2QJrtLq9h3JyQL0%2FAZLtLBTDjnYUCMDUnwe8RWLa7pAk2fvicKdOQGZg4jXJcQ%2Boaitbg5h6UOCAAF7h2Hdno0TVjS7oJRffA6QKdk1PP%2FoYq5%2BTUn68gG31zXqtJ45bRhVcmc5ikFdSkhhrUyIs9%2BK0AqtwD959BiV%2FJ%2BrMryEY71502UOLwDdqTstON47UWS%2BO1Nhd8rSc6yZro9RIu47jXjqJji5SqodIaWk5B3UkULkChAhRpgCIPMBKHDZr00zDspixttXptznmrxXnS64hEtNq9NETBFxqm8PkUXE%2FB7V3k9i6G6sFBcga2%2BAFuo4ITAZwnGIsKpSQoHUFJCUpFUHqCclw9FNrFrnoktCtYtOzxsreqmfGDbfrQ%2BIHMyHZ%2BRF5eeBec%2FuULDOVhI%2B5wGnYSmqSs1414t91t9TvtDo07adiJYwanKih3AtQF2FoE%2Be4D5OrgpUtgtIbTNbg6A1q8DlrOunEIujFr90JsZd96Y63M%2FFB5v9n0YwhTIfen4DeDbX1EXj0OsXX2D0i%2Bf%2B4TdnX%2B1%2BN%2FwG2F3Fb4VP1IMND3ZzdNSXZumtKRp9dzr0Zqiy4CvuWplye%2F%2BlBulsaKyxfc9PF7fAEsxie3pfNXaCZUNnDk6%2FNKCGkvGssl%2Bf6yuyPZjcJtnC9sVuRXbrx%2F8fIot9I5ZbIaVM0J%2BWkfXM3Ji6I8fryvuY%2BhbA1bVBgV%2B2RZUGYPPL8Ll6%2F4O0Ng9eqG5QHKoprZmK1%2BakWg5WqnrIL7z85W87a7j4ENQP09ZKMKY1thrCtQPYUrTs58bvfP%2FdY6LjAdzJi2wQ7TVj94bq5Thw2ZpGEqw1iytM%2FSLg1FP233Ge1HsssSGsG7Oeed4F8AAAD%2F%2FwEAAP%2F%2FYRbfYZQEAAA%3D | 173.233.137.52 | 200 OK | 7 B |
URL HTTP/1.1nebulouslostpremium.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscRRSvTiIIOYjBi4IwBw8K7mx3z%2FR8GCEYY0IwXySRHLxYXz1bTk1XU1U9PbunYEDibXLz2PubTZZoUPMHCNIriCwKOx5kQfd%2FECEnDzKbgdF36Pde%2F97h91GfbxdHJERBD29cNVtKa7qeNMPGm3dUJkzpGtduN6KwGZ5t3FFZp322MVl87PidKEya4VuNS5IPzXocRmEYhVHjorIyNZP1YxQqf9KPmv2w2Y6bUdLGxP5%2Fd0UARwOI8RE5AyXmL2z8%2FBSK18hG312QbuhN%2FvYHo0JTbyzGYvejbJiZMsNoNaY2QJrtLq9h3JyQL0%2FAZLtLBTDjnYUCMDUnwe8RWLa7pAk2fvicKdOQGZg4jXJcQ%2Boaitbg5h6UOCAAF7h2Hdno0TVjS7oJRffA6QKdk1PP%2FoYq5%2BTUn68gG31zXqtJ45bRhVcmc5ikFdSkhhrUyIs9%2BK0AqtwD959BiV%2FJ%2BrMryEY71502UOLwDdqTstON47UWS%2BO1Nhd8rSc6yZro9RIu47jXjqJji5SqodIaWk5B3UkULkChAhRpgCIPMBKHDZr00zDspixttXptznmrxXnS64hEtNq9NETBFxqm8PkUXE%2FB7V3k9i6G6sFBcga2%2BAFuo4ITAZwnGIsKpSQoHUFJCUpFUHqCclw9FNrFrnoktCtYtOzxsreqmfGDbfrQ%2BIHMyHZ%2BRF5eeBec%2FuULDOVhI%2B5wGnYSmqSs1414t91t9TvtDo07adiJYwanKih3AtQF2FoE%2Be4D5OrgpUtgtIbTNbg6A1q8DlrOunEIujFr90JsZd96Y63M%2FFB5v9n0YwhTIfen4DeDbX1EXj0OsXX2D0i%2Bf%2B4TdnX%2B1%2BN%2FwG2F3Fb4VP1IMND3ZzdNSXZumtKRp9dzr0Zqiy4CvuWplye%2F%2BlBulsaKyxfc9PF7fAEsxie3pfNXaCZUNnDk6%2FNKCGkvGssl%2Bf6yuyPZjcJtnC9sVuRXbrx%2F8fIot9I5ZbIaVM0J%2BWkfXM3Ji6I8fryvuY%2BhbA1bVBgV%2B2RZUGYPPL8Ll6%2F4O0Ng9eqG5QHKoprZmK1%2BakWg5WqnrIL7z85W87a7j4ENQP09ZKMKY1thrCtQPYUrTs58bvfP%2FdY6LjAdzJi2wQ7TVj94bq5Thw2ZpGEqw1iytM%2FSLg1FP233Ge1HsssSGsG7Oeed4F8AAAD%2F%2FwEAAP%2F%2FYRbfYZQEAAA%3D IP173.233.137.52:0
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzYscRRSvTiIIOYjBi4IwBw8K7mx3z%2FR8GCEYY0IwXySRHLxYXz1bTk1XU1U9PbunYEDibXLz2PubTZZoUPMHCNIriCwKOx5kQfd%2FECEnDzKbgdF36Pde%2F97h91GfbxdHJERBD29cNVtKa7qeNMPGm3dUJkzpGtduN6KwGZ5t3FFZp322MVl87PidKEya4VuNS5IPzXocRmEYhVHjorIyNZP1YxQqf9KPmv2w2Y6bUdLGxP5%2Fd0UARwOI8RE5AyXmL2z8%2FBSK18hG312QbuhN%2FvYHo0JTbyzGYvejbJiZMsNoNaY2QJrtLq9h3JyQL0%2FAZLtLBTDjnYUCMDUnwe8RWLa7pAk2fvicKdOQGZg4jXJcQ%2Boaitbg5h6UOCAAF7h2Hdno0TVjS7oJRffA6QKdk1PP%2FoYq5%2BTUn68gG31zXqtJ45bRhVcmc5ikFdSkhhrUyIs9%2BK0AqtwD959BiV%2FJ%2BrMryEY71502UOLwDdqTstON47UWS%2BO1Nhd8rSc6yZro9RIu47jXjqJji5SqodIaWk5B3UkULkChAhRpgCIPMBKHDZr00zDspixttXptznmrxXnS64hEtNq9NETBFxqm8PkUXE%2FB7V3k9i6G6sFBcga2%2BAFuo4ITAZwnGIsKpSQoHUFJCUpFUHqCclw9FNrFrnoktCtYtOzxsreqmfGDbfrQ%2BIHMyHZ%2BRF5eeBec%2FuULDOVhI%2B5wGnYSmqSs1414t91t9TvtDo07adiJYwanKih3AtQF2FoE%2Be4D5OrgpUtgtIbTNbg6A1q8DlrOunEIujFr90JsZd96Y63M%2FFB5v9n0YwhTIfen4DeDbX1EXj0OsXX2D0i%2Bf%2B4TdnX%2B1%2BN%2FwG2F3Fb4VP1IMND3ZzdNSXZumtKRp9dzr0Zqiy4CvuWplye%2F%2BlBulsaKyxfc9PF7fAEsxie3pfNXaCZUNnDk6%2FNKCGkvGssl%2Bf6yuyPZjcJtnC9sVuRXbrx%2F8fIot9I5ZbIaVM0J%2BWkfXM3Ji6I8fryvuY%2BhbA1bVBgV%2B2RZUGYPPL8Ll6%2F4O0Ng9eqG5QHKoprZmK1%2BakWg5WqnrIL7z85W87a7j4ENQP09ZKMKY1thrCtQPYUrTs58bvfP%2FdY6LjAdzJi2wQ7TVj94bq5Thw2ZpGEqw1iytM%2FSLg1FP233Ge1HsssSGsG7Oeed4F8AAAD%2F%2FwEAAP%2F%2FYRbfYZQEAAA%3D HTTP/1.1
Host: nebulouslostpremium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=a8ee6722-3bf2-4cdc-8d65-d885ce228411:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec26ca065a5fb871c74739646a26f0622b=[3357660]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Nov 2022 03:31:13 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 44358ed06a3a639f30d0bd83bf978faf
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 346 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash1b35fcb220648974629bb0171409b427 0603c13feefc68601733c820c05b886412e507b0 9874f52ea2d5a6323ced6474b168adc7611877c7746e7b7e5bbc94a4fa01e998
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "9874F52EA2D5A6323CED6474B168ADC7611877C7746E7B7E5BBC94A4FA01E998"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13372
Expires: Thu, 03 Nov 2022 07:14:06 GMT
Date: Thu, 03 Nov 2022 03:31:14 GMT
Connection: keep-alive
|
|
| nebulouslostpremium.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F7%2Findex.html&l=2186&fd=706 | 173.233.137.52 | 200 OK | 0 B |
URL HTTP/1.1nebulouslostpremium.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F7%2Findex.html&l=2186&fd=706 IP173.233.137.52:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F7%2Findex.html&l=2186&fd=706 HTTP/1.1
Host: nebulouslostpremium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=a8ee6722-3bf2-4cdc-8d65-d885ce228411:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec26ca065a5fb871c74739646a26f0622b=[3357660]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Nov 2022 03:31:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/arrow.png | 172.64.111.27 | 200 OK | 2.0 kB |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/arrow.png IP172.64.111.27:0
File typePNG image data, 52 x 81, 8-bit/color RGBA, non-interlaced\012- data Hashef2bad0eceeff00bf615df0a433a5bff a910af81d23d78c96283b46c241d3d9652562009 9c362044a93ac6919b7174a1620d4d82dbe1940a450aea1abca32a48fd160d40
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/arrow.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:14 GMT
content-type: image/png
content-length: 2008
last-modified: Fri, 21 May 2021 10:10:48 GMT
etag: "60a78728-7d8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 7925213
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wizqfchAvqXKHCdIOs%2B9w0S69ZYoXii9DEVZClLzjX3LYn0CGL%2FB9Y1tsCVzV0gi0cCKNgBdS10MfCjTeR8ertM0%2BfcX7IgTWGK3c%2B7mbbWi4%2BBoX1A7izkDitNHRBLt29Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7642092ef804773d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/close.png | 172.64.111.27 | 200 OK | 6.0 kB |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/close.png IP172.64.111.27:0
File typePNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data Hashc489ce2c491a22ee37a55e26a92dfd73 2fa588ab09e94dd902e5bd24b48f98ad1949c9d6 1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/close.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:14 GMT
content-type: image/png
content-length: 5982
last-modified: Fri, 21 May 2021 10:10:48 GMT
etag: "60a78728-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1880996
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xqygaEkYK559U9O43OjIQzVmoOMvV5NlzEKiLLGvozKQLz4nqiWl%2BD6en4EBONbJTK5DMmZV6fMkTQVyBcFO40NGuWDiRkq7XZDL3kDJDhha28uorbx0YfTCeT9iWEadlnA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7642092ef803773d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/number.png | 172.64.111.27 | 200 OK | 1.1 kB |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/number.png IP172.64.111.27:0
File typePNG image data, 43 x 43, 8-bit/color RGBA, non-interlaced\012- data Hash9e4414e85c588bf7db195e49c02ab2bb 09254e79b255f1b2dfe45adbbe44583a4b433782 0b977ec6e7cf5d35df03cd3a8041f5f523f5d4059ac67c152c0a7b613e20b762
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/number.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:14 GMT
content-type: image/png
content-length: 1138
last-modified: Fri, 21 May 2021 10:10:48 GMT
etag: "60a78728-472"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 7925213
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RsRtl2iwZ0pZNXIF716PqfZ%2BaaiUR%2FB8wK%2FFuCuvObkTXEIkjhlj7zw5aeL5OfXcVl9Xt0zRz7GhgE9wWwoDqsNP8hqvpnHrTWDN%2FKr3Bzsx6ol6GS6y8vpUUodG%2BLaitdc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7642092ef809773d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/icon.png | 172.64.111.27 | 200 OK | 46 kB |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/icon.png IP172.64.111.27:0
File typePNG image data, 340 x 340, 8-bit/color RGB, non-interlaced\012- data Hash0d687af39faa7241d1a584f1c3eec050 ccd68a2138d3da9c44c93a139a72fcd8fd750614 cdd30ab847b158f337faaca366647fa594365de0c63b58c9e8243dec575df329
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/img/icon.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:14 GMT
content-type: image/png
content-length: 45627
last-modified: Tue, 01 Feb 2022 11:50:51 GMT
etag: "61f91e9b-b23b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 209741
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bBQf3nc22lDgbBLE8RgUqlGbaDn2krnjv3wjgUR4A5jsHUg8c69oEJchGpdwWg%2BafZniuicdQnR8a%2FlrW83ObHAEGhnKqirm9hwah5WKnccTKNVAacK1RxDhuxlzIJV34PM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7642092ef80a773d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashe539fa08ddc0ce1396c84ecc16c2bec7 69414e0693690cc9cc14b48b2f952efe942198d5 b6609b24198f2c6c9eefaa3b1cb2f2db9dd8b81c6a7135a5b46c3a9a165c8266
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 03:31:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 346 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash1b35fcb220648974629bb0171409b427 0603c13feefc68601733c820c05b886412e507b0 9874f52ea2d5a6323ced6474b168adc7611877c7746e7b7e5bbc94a4fa01e998
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "9874F52EA2D5A6323CED6474B168ADC7611877C7746E7B7E5BBC94A4FA01E998"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13372
Expires: Thu, 03 Nov 2022 07:14:06 GMT
Date: Thu, 03 Nov 2022 03:31:14 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashe539fa08ddc0ce1396c84ecc16c2bec7 69414e0693690cc9cc14b48b2f952efe942198d5 b6609b24198f2c6c9eefaa3b1cb2f2db9dd8b81c6a7135a5b46c3a9a165c8266
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 03:31:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.10 | 200 OK | 660 B |
URL HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.10:0
Hash5860c780c8e9daa4f852038f02b5bdc2 c75c8b4db36bffe075ce493f06d011f855d5541a f11b9f8e851e15c0c6abd53a9994c6dcef78ceeebd0f0b8bbde610fec8332c85
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 03 Nov 2022 03:31:14 GMT
date: Thu, 03 Nov 2022 03:31:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/js/jquery.min.js | 172.64.111.27 | 200 OK | 32 kB |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/js/jquery.min.js IP172.64.111.27:0
File typeASCII text, with very long lines (65451) Hashc1fcfdd480feeb47a41cfc787b7346e4 e5fd5e809695ffc4c9ba9ac6fbc5a8bd79483e11 fb47644686a2ccbd35fd6316eabfff765993e80a872c3a16da6268c0cc36a879
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/js/jquery.min.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:14 GMT
content-type: application/javascript
last-modified: Fri, 21 May 2021 10:10:50 GMT
etag: W/"60a7872a-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 7925213
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F3QJedbShETzmybcwTWhBnlnUNee9jBCI7Vh6iNwqzsZ07SJ9ZNIFsV903VZWWo7lfF96PGSYUD%2FP9JayHPFKVUZ5fyViQvogL5r3oDrMcNObqS5DhUZOMRjhYdgafLyrJQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7642092ef80c773d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4873b91ff9e1327d57e6ad100a152cec 4e5c092b944615affe4ecd481c2a33fa6dbb2bb6 05467c141fbcdf4af9b8b7e1153e60509f51ce729a4dcad88f9e0d2d4debfd34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 03:31:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4873b91ff9e1327d57e6ad100a152cec 4e5c092b944615affe4ecd481c2a33fa6dbb2bb6 05467c141fbcdf4af9b8b7e1153e60509f51ce729a4dcad88f9e0d2d4debfd34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 03:31:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:34:08 GMT
expires: Thu, 02 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 28626
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP142.250.74.99:0
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 02 Nov 2022 19:34:08 GMT
expires: Thu, 02 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 28626
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4873b91ff9e1327d57e6ad100a152cec 4e5c092b944615affe4ecd481c2a33fa6dbb2bb6 05467c141fbcdf4af9b8b7e1153e60509f51ce729a4dcad88f9e0d2d4debfd34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 03 Nov 2022 03:31:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| nebulouslostpremium.com/pixel/sbs?c=1 | 173.233.137.52 | 200 OK | 0 B |
URL HTTP/1.1nebulouslostpremium.com/pixel/sbs?c=1 IP173.233.137.52:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pixel/sbs?c=1 HTTP/1.1
Host: nebulouslostpremium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=a8ee6722-3bf2-4cdc-8d65-d885ce228411:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec26ca065a5fb871c74739646a26f0622b=[3357660]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Nov 2022 03:31:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| nebulouslostpremium.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F7%2Fjs%2Fscript.js&l=711&fd=261 | 173.233.137.52 | 200 OK | 0 B |
URL HTTP/1.1nebulouslostpremium.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F7%2Fjs%2Fscript.js&l=711&fd=261 IP173.233.137.52:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F7%2Fjs%2Fscript.js&l=711&fd=261 HTTP/1.1
Host: nebulouslostpremium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=a8ee6722-3bf2-4cdc-8d65-d885ce228411:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec26ca065a5fb871c74739646a26f0622b=[3357660]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Nov 2022 03:31:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| nebulouslostpremium.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYscRRSvTiIIOYjBi4IwBw8K7mx%2FzvQaIRhjQjBfJJEcvFhdVb1bTk1XU1U9PbunYEDibXLz2PubTZZoUPMHCNIriCwKOx5kQfd%2FECEnDzKbgdF36Pde%2F97h91Gfb1dHxEdFD29c1VtSKbqadP3Om3dkwXVtO9dudwK%2F65%2Ft3JFFLz7bGc8%2FZvRO4Cdd%2F63OJcEGejX0A98P%2FKBzURqR6%2FHqMQpZPlkLumt%2BNw67QRJjbP6%2F28qDpR746IicgeSzFzZ%2BfgrJWhTD7y4IO3C6fPuDYaWo0wYjvvtRMSh0XWC4HHPjIS92F9fQdkbIlyegi92FAujRzlwBMjkj3u8BsmJ3QRPZ6OFzppmCKJDx06hHLYRqIWkLpu9B8gMCMI5r11EMH13TpqabkHQPjM7RGTn17G%2FIekZO%2FfkKiuE355Ucd25pVTmpC4tx3kCOW8j1FmW1B7flQdZ7YO4zSP4rWX12BcVw57pVGpIfvkFTIXr9MFyJsjxciRlnKynvJSs8TRMmwjCNg%2BDYIilbyLyFEhNQexKV9VBJD1XuoSo9DPlhhyZrue%2F38yyPojRmjEURY0na4wmP4jT3UbG5hglcOQFTEzBzF6W5i4F8cJCcgal%2BgN1oYLkH6whGvEEtCGpLUFOCWhLUjqAeNQ%2B5sqFtHnFlqyxY9HDRo2aq3fo2fajduijIdnlEXp57553%2B5QsMxGEn7DHq9xKa5FnaD1g%2F7kdrvbhHw17u98Iwg5UNpD0Baj1szYN89wFKefDSJWS0hVUtmDwDWr0OWk%2F7oQ%2B6MY1TH1vFt04bIwo3kM5tdt0IXDco3Sm4TW9bHZFXj0OMzv4BwfbPfZJdnf31%2BB8w06A0DT6VPxKsq%2FvTm7omOzd1bcnT66WTQ7lF5wHfctSJk199KDZrbfjlC3by%2BD02B%2Bbjk9vCuiu04LJYt%2BTr85JzYS5qwwT5%2FrK9I7Ibld04X5miKq%2FceP%2Fi5WFphLVSFy2onBHy0z6YnJEXeX38eF%2BzH0OaFqZqMKz2yaIg9R5YeRe2XPK3msCo5U1WeqirZmrCbPlTSQIlljvNGtj%2F7Nly3rb3sW48UHcPxbDByDQYqQZUTWCrk1NXmv1zv0XHhUx500wZbydTRj14bq6Vh50kiEWapX3GeSYYD%2FphlEa%2BH3Ie99dEsAZnZ4z1vH8BAAD%2F%2FwEAAP%2F%2FdR5Rh5QEAAA%3D | 173.233.137.52 | 200 OK | 7 B |
URL HTTP/1.1nebulouslostpremium.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzYscRRSvTiIIOYjBi4IwBw8K7mx%2FzvQaIRhjQjBfJJEcvFhdVb1bTk1XU1U9PbunYEDibXLz2PubTZZoUPMHCNIriCwKOx5kQfd%2FECEnDzKbgdF36Pde%2F97h91Gfb1dHxEdFD29c1VtSKbqadP3Om3dkwXVtO9dudwK%2F65%2Ft3JFFLz7bGc8%2FZvRO4Cdd%2F63OJcEGejX0A98P%2FKBzURqR6%2FHqMQpZPlkLumt%2BNw67QRJjbP6%2F28qDpR746IicgeSzFzZ%2BfgrJWhTD7y4IO3C6fPuDYaWo0wYjvvtRMSh0XWC4HHPjIS92F9fQdkbIlyegi92FAujRzlwBMjkj3u8BsmJ3QRPZ6OFzppmCKJDx06hHLYRqIWkLpu9B8gMCMI5r11EMH13TpqabkHQPjM7RGTn17G%2FIekZO%2FfkKiuE355Ucd25pVTmpC4tx3kCOW8j1FmW1B7flQdZ7YO4zSP4rWX12BcVw57pVGpIfvkFTIXr9MFyJsjxciRlnKynvJSs8TRMmwjCNg%2BDYIilbyLyFEhNQexKV9VBJD1XuoSo9DPlhhyZrue%2F38yyPojRmjEURY0na4wmP4jT3UbG5hglcOQFTEzBzF6W5i4F8cJCcgal%2BgN1oYLkH6whGvEEtCGpLUFOCWhLUjqAeNQ%2B5sqFtHnFlqyxY9HDRo2aq3fo2fajduijIdnlEXp57553%2B5QsMxGEn7DHq9xKa5FnaD1g%2F7kdrvbhHw17u98Iwg5UNpD0Baj1szYN89wFKefDSJWS0hVUtmDwDWr0OWk%2F7oQ%2B6MY1TH1vFt04bIwo3kM5tdt0IXDco3Sm4TW9bHZFXj0OMzv4BwfbPfZJdnf31%2BB8w06A0DT6VPxKsq%2FvTm7omOzd1bcnT66WTQ7lF5wHfctSJk199KDZrbfjlC3by%2BD02B%2Bbjk9vCuiu04LJYt%2BTr85JzYS5qwwT5%2FrK9I7Ibld04X5miKq%2FceP%2Fi5WFphLVSFy2onBHy0z6YnJEXeX38eF%2BzH0OaFqZqMKz2yaIg9R5YeRe2XPK3msCo5U1WeqirZmrCbPlTSQIlljvNGtj%2F7Nly3rb3sW48UHcPxbDByDQYqQZUTWCrk1NXmv1zv0XHhUx500wZbydTRj14bq6Vh50kiEWapX3GeSYYD%2FphlEa%2BH3Ie99dEsAZnZ4z1vH8BAAD%2F%2FwEAAP%2F%2FdR5Rh5QEAAA%3D IP173.233.137.52:0
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzYscRRSvTiIIOYjBi4IwBw8K7mx%2FzvQaIRhjQjBfJJEcvFhdVb1bTk1XU1U9PbunYEDibXLz2PubTZZoUPMHCNIriCwKOx5kQfd%2FECEnDzKbgdF36Pde%2F97h91Gfb1dHxEdFD29c1VtSKbqadP3Om3dkwXVtO9dudwK%2F65%2Ft3JFFLz7bGc8%2FZvRO4Cdd%2F63OJcEGejX0A98P%2FKBzURqR6%2FHqMQpZPlkLumt%2BNw67QRJjbP6%2F28qDpR746IicgeSzFzZ%2BfgrJWhTD7y4IO3C6fPuDYaWo0wYjvvtRMSh0XWC4HHPjIS92F9fQdkbIlyegi92FAujRzlwBMjkj3u8BsmJ3QRPZ6OFzppmCKJDx06hHLYRqIWkLpu9B8gMCMI5r11EMH13TpqabkHQPjM7RGTn17G%2FIekZO%2FfkKiuE355Ucd25pVTmpC4tx3kCOW8j1FmW1B7flQdZ7YO4zSP4rWX12BcVw57pVGpIfvkFTIXr9MFyJsjxciRlnKynvJSs8TRMmwjCNg%2BDYIilbyLyFEhNQexKV9VBJD1XuoSo9DPlhhyZrue%2F38yyPojRmjEURY0na4wmP4jT3UbG5hglcOQFTEzBzF6W5i4F8cJCcgal%2BgN1oYLkH6whGvEEtCGpLUFOCWhLUjqAeNQ%2B5sqFtHnFlqyxY9HDRo2aq3fo2fajduijIdnlEXp57553%2B5QsMxGEn7DHq9xKa5FnaD1g%2F7kdrvbhHw17u98Iwg5UNpD0Baj1szYN89wFKefDSJWS0hVUtmDwDWr0OWk%2F7oQ%2B6MY1TH1vFt04bIwo3kM5tdt0IXDco3Sm4TW9bHZFXj0OMzv4BwfbPfZJdnf31%2BB8w06A0DT6VPxKsq%2FvTm7omOzd1bcnT66WTQ7lF5wHfctSJk199KDZrbfjlC3by%2BD02B%2Bbjk9vCuiu04LJYt%2BTr85JzYS5qwwT5%2FrK9I7Ibld04X5miKq%2FceP%2Fi5WFphLVSFy2onBHy0z6YnJEXeX38eF%2BzH0OaFqZqMKz2yaIg9R5YeRe2XPK3msCo5U1WeqirZmrCbPlTSQIlljvNGtj%2F7Nly3rb3sW48UHcPxbDByDQYqQZUTWCrk1NXmv1zv0XHhUx500wZbydTRj14bq6Vh50kiEWapX3GeSYYD%2FphlEa%2BH3Ie99dEsAZnZ4z1vH8BAAD%2F%2FwEAAP%2F%2FdR5Rh5QEAAA%3D HTTP/1.1
Host: nebulouslostpremium.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=a8ee6722-3bf2-4cdc-8d65-d885ce228411:3:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec26ca065a5fb871c74739646a26f0622b=[3357660]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 03 Nov 2022 03:31:14 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fc1b9a0d2c1a88edad6d7f29242bba3c
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc600bc18-3213-430b-b353-7f50d85a8d1f.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc600bc18-3213-430b-b353-7f50d85a8d1f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfe7008ac553cd153f6467a68c24584db d04c36b518234dbd312f932948368feb7327b012 6ff403a89196f357cd0e4fa20b08be47a3a3453cada474cd071f0801372593cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc600bc18-3213-430b-b353-7f50d85a8d1f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10132
x-amzn-requestid: 37673a89-cf18-4a11-a6e2-b79235b0b6f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: awWPBEZJoAMFwJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635cd0c6-72be16d3634c902936957bb4;Sampled=0
x-amzn-remapped-date: Sat, 29 Oct 2022 07:05:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HKfGQfuAGEW2BC3qxeWn5uvzC_jWBncuXGKomia6sPMqJAcGnbut4A==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 08:27:03 GMT
age: 68656
etag: "d04c36b518234dbd312f932948368feb7327b012"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| secure.statcounter.com/counter/counter.js | 104.20.229.67 | 200 OK | 0 B |
URL HTTP/2secure.statcounter.com/counter/counter.js IP104.20.229.67:0
GET /counter/counter.js HTTP/1.1
Host: secure.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:12 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 02 Nov 2022 16:22:24 GMT
etag: W/"63629940-aa70"
expires: Thu, 03 Nov 2022 05:44:39 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 35193
server: cloudflare
cf-ray: 764209217af2b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.cloudflare.com/cdn-cgi/trace | 104.16.123.96 | 200 OK | 0 B |
URL HTTP/2www.cloudflare.com/cdn-cgi/trace IP104.16.123.96:0
GET /cdn-cgi/trace HTTP/1.1
Host: www.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:12 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 764209228af1fac0-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| c.statcounter.com/t.php?sc_project=10571718&u1=03B42ACC6C674FF95A8A22922C662808&java=1&security=6b4a9073&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.torrentkitty.lol/search/search/%25E9%25BB%2591%25E9%2595%259C&t=search%20-%20Torrent%20Kitty&invisible=1&sc_rum_e_s=2474&sc_rum_e_e=2480&sc_rum_f_s=0&sc_rum_f_e=2465&get_config=true | 104.20.229.67 | 200 OK | 0 B |
URL HTTP/2c.statcounter.com/t.php?sc_project=10571718&u1=03B42ACC6C674FF95A8A22922C662808&java=1&security=6b4a9073&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.torrentkitty.lol/search/search/%25E9%25BB%2591%25E9%2595%259C&t=search%20-%20Torrent%20Kitty&invisible=1&sc_rum_e_s=2474&sc_rum_e_e=2480&sc_rum_f_s=0&sc_rum_f_e=2465&get_config=true IP104.20.229.67:0
GET /t.php?sc_project=10571718&u1=03B42ACC6C674FF95A8A22922C662808&java=1&security=6b4a9073&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.torrentkitty.lol/search/search/%25E9%25BB%2591%25E9%2595%259C&t=search%20-%20Torrent%20Kitty&invisible=1&sc_rum_e_s=2474&sc_rum_e_e=2480&sc_rum_f_s=0&sc_rum_f_e=2465&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:12 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc10571718.1667446272.0; SameSite=None; Secure; Expires=Tuesday, 02-Nov-2027 11:31:12 HKT; Path=/; Domain=.statcounter.com
is_visitor_unique=1667446272553464430; SameSite=None; Secure; Expires=Saturday, 02-Nov-2024 11:31:12 HKT; Path=/; Domain=.statcounter.com
access-control-allow-origin: https://www.torrentkitty.lol
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 764209233bb0b4e8-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/index.html | 172.67.74.218 | 200 OK | 0 B |
URL HTTP/2cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/index.html IP172.67.74.218:0
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:14 GMT
content-type: text/html
last-modified: Tue, 01 Feb 2022 13:22:32 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9Szd4GInZOuf9nm8DhcIDt%2BDcrQrtl7g8staVmpans6Y%2BgwUz1EhpWOaoeicArEZKhJHDNsTYPPU0YY%2FIpssxlBuruGXNopWq3kZcupUl9eNRJVPB2xdaH%2FZfEb1tLn8cYKuQ04%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7642092a0f3eb4ee-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/js/script.js | 172.64.111.27 | 200 OK | 0 B |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/js/script.js IP172.64.111.27:0
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:14 GMT
content-type: application/javascript
last-modified: Fri, 21 May 2021 10:10:50 GMT
etag: W/"60a7872a-2c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GKmQuR5tt%2BR0k%2F2GWWS4BLD%2Fixxcju%2FElp7PRYZvBGxJmRSmiDGrT%2BtYIVV%2FTkh66ekwu9Rbc2HPkN1ZGzctn5ta9X11Uhd1Nou7Nwol5AmsvqN1Wml0pjFLVYdn9hJS0xY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7642092f88ab773d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.torrentkitty.lol/search/search/%E9%BB%91%E9%95%9C | 172.67.217.107 | 200 OK | 0 B |
URL HTTP/2www.torrentkitty.lol/search/search/%E9%BB%91%E9%95%9C IP172.67.217.107:0
GET /search/search/%E9%BB%91%E9%95%9C HTTP/1.1
Host: www.torrentkitty.lol
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:11 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: max-age=14400, must-revalidate
pragma: no-cache
cf-cache-status: MISS
last-modified: Thu, 03 Nov 2022 03:31:11 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uKf2R1VqnCUrniDzc%2BSNrh2rpYbp5IQjR7OxFYSu%2FzmNLT2bBdZCbWxjZ%2FIxbMB5JHIiMIB%2BHWk4A4GtldZYhXJa8QlRSNVFq1Wa4jmP8woqg3PSo6Zsh5L6o7KgKHbnGWx6SXmEKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76420915e8f7b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| get.geojs.io/v1/ip/geo.js | 104.26.0.100 | 200 OK | 0 B |
URL HTTP/2get.geojs.io/v1/ip/geo.js IP104.26.0.100:0
GET /v1/ip/geo.js HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:11 GMT
content-type: application/javascript; charset=utf-8
x-request-id: a8cdebdddbfbaa45558ca88b1dd80a61-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BgAX%2FNZPMHPA2dg8ALDyrik2z9RoBdh3%2F1oKvMlb9zZ7QAclNB9Eklx%2BRlIvFIKQ%2F949I%2B%2BUOFsaxE06gut6VTUyAHWtqOXIonGrWq%2BdmHvSEnXmSt6lRF%2Fn0JyDug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7642091c59d4b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| friendshipmale.com/sfp.js | 172.67.184.205 | 200 OK | 0 B |
URL HTTP/2friendshipmale.com/sfp.js IP172.67.184.205:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:12 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: e7e68d88bd4af9889e31ed6a5d1b15bb
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 03 Nov 2022 03:31:12 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G%2FO98IJnQim34jTcq2dnnEV0pkmu69J%2B%2F0k09X18rBfJJqHBY6c7fCBhWluafg0gJUo3%2FU551pNmyYpHVXEpe8bLeYgvKBN%2F3s6nOTL%2FAF%2FIr2lK4le%2FqTut3i37jweOtNYsWHw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76420921ebd6b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/css/style.css | 172.64.111.27 | 200 OK | 0 B |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/css/style.css IP172.64.111.27:0
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/7/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 03 Nov 2022 03:31:14 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 14:46:40 GMT
etag: W/"61f7f650-2516"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3rrDYsdWsn5e7RC9wqyCU2iK52zH8WRbxq6JjCsXptBgV9KtDQlLstHFHH3QNGZQ3SO6nhn49c4H2Ghq9DGm0o3KUhtbGCsR03215EVbsjVdbNzUCI4M2Fc9Pjukdw6qH2w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7642092eafa9773d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|