| 9xbuddy.com/build/291f13891176f90733ca.png | 104.21.235.82 | 200 OK | 2.5 kB |
URL GET HTTP/39xbuddy.com/build/291f13891176f90733ca.png IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typePNG image data, 217 x 55, 8-bit colormap, non-interlaced Hashf19a76e1de03a1ecb9c45dcfb96bce41 2156ba7ed189b2f22b87e87eb9ffcaa7ebb4db0c 55340830b75351b2ad4154871c488f34c0b66c8cef18719f3f7a8f9dc190cd58
GET /build/291f13891176f90733ca.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: image/png
content-length: 2501
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-9c5"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5972
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FbnIWyS6zp12Fgt1va1Kvnp%2FOumxyIh6rVo6YjXsaJTmhTf1oCINcYi6lnsPYy9EHhJy08Vz%2FD1b%2B3StYzIHwEk38kFGAj4Y%2Fwi5uBqEVJNE06NBL%2FpUn4EUVabttQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4aeb2a23f4-LHR
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.21.235.82 | 302 Found | 0 B |
URL GET HTTP/39xbuddy.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Sat, 04 May 2024 01:33:33 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pgdh3%2FGk%2Bdz3pIJHCZFVK53AQyTsuQUHSOk8uaO7jVB2KnSLNe1b5NgfN5qroLf%2F79N8y52PJOAbuXSLDGKpmLUN9c7ixYxUhw%2B9iEJE4f%2ByeAf3aFneYbT2bIWGww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4c3c6623f4-LHR
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/7.6ac395facebb07af7566.js | 104.21.235.82 | 200 OK | 3.5 kB |
URL GET HTTP/39xbuddy.com/build/7.6ac395facebb07af7566.js IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typeJavaScript source, ASCII text, with very long lines (8243), with no line terminators Hash5eea6ec2245ef30a583c0f8877bba359 079c2a541a04c968b29c28f083172cc16ef8f0e1 80303da6f6e9e66c5a89b08202e1dc22826b778edcc1d8c70f04e4e08d4414bf
GET /build/7.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-2033"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5973
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UaEpgjmuH2Vb14WmT8fASVOHPskXVpM3Z83giK7OZOIPVAN%2FWLNtXmn1cbrESxB4AHl5VmLPPNuLMgRv5uTTVG2X9AnilylYmPaikJmS6aTeGYiRp3%2B0rzsMEj01Rg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4c2c5e23f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/icons/apple-touch-icon.png | 104.21.235.82 | 200 OK | 5.3 kB |
URL GET HTTP/39xbuddy.com/icons/apple-touch-icon.png IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typePNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced Hash2a1f354702de7eb8d63c8f10d2d0beaf 5f42ee8dc3c78184fba322c0288776c86841f25d 447d4a8b2ef5e876f4bf0145893d9f300dd62a3a49ebbc04a49282a6e4c5475a
GET /icons/apple-touch-icon.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: image/png
content-length: 5323
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-14cb"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vgBC3PXYpw0Q6ofocfStWmYF8Bzp9%2Fd3g2FHI3yaX5vB4owuRAF5R5u%2F54Ns4vDGBcyrmpPenEeZ%2Fc1Jz%2BUBdCifeRYUc6HL90euBvhTRcrB%2B72b5ZXJq5LCArpw7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4c6c8823f4-LHR
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/70.6ac395facebb07af7566.js | 104.21.235.82 | 200 OK | 7.8 kB |
URL GET HTTP/39xbuddy.com/build/70.6ac395facebb07af7566.js IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typeJavaScript source, ASCII text, with very long lines (24012), with no line terminators Hash7def9fb61377f2cd87a96f42086d5c66 fea447a230810dd3f11ce609012229efe7251ea6 b61f3a61b6588516b2a589699b20689c04b5d91d4ce54eee4e116493e6715474
GET /build/70.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-5dcc"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5972
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GKXKQZfabharvpYZXd2nus2FJEKjUWHidA0mHsC9g7iuC9o%2BocI9P8F6pbsWRd280TnBhMkqMKKfPzBXEnjfmyG8Ul6NEbPQUc9HsIg%2BrRj%2FrMOATSfFaU6y5CGxgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4cacc423f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/main.6ac395facebb07af7566.js | 104.21.235.82 | 200 OK | 110 kB |
URL GET HTTP/39xbuddy.com/build/main.6ac395facebb07af7566.js IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size110 kB (110487 bytes) Hash2d1130b47d460439a32428ad13adeb98 61541c0a5980007e94ff6e851e5be4c0695132a9 1b01dbe940879da9a0c7e86f0d912b0aa1dcffa2c247697a54c539cee242ddd4
GET /build/main.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-51e93"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5973
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZGjKIcNTnSqeAg3Ct%2BTCIZRhQdUNbJg%2B9YnEFoTDFwhRkunq0QLVwm8snBtSpnU0%2F8Se4AgoTf6FhctFqwUKnT9qcNm0ApCPxxK9AzEOmBAZGDjI1FfAla0vsIoPcA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4aeb2d23f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| ab.9xbud.com/token | 188.114.97.1 | 200 OK | 12 kB |
IP188.114.97.1:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbud.com Fingerprint1F:FD:59:1E:53:09:FD:D2:80:03:C6:BD:69:34:5B:A5:3D:41:C5:FD ValidityFri, 26 Apr 2024 18:12:47 GMT - Thu, 25 Jul 2024 18:12:46 GMT
Hashf7c9d1e747076a0ef2f345150159571f 790853e7175e92f6091674a6c2f65b97320d6c21 6cccedc81fa7574c0eaead1ac80b5ab9c26d5e9c0d7377a596165c4f5083db18
POST /token HTTP/1.1
Host: ab.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: xmlhttprequest
x-auth-token: b66YqpvK2mWT0c+bmZadm5pqk8OYm5mWnZuaapPDmJGky7JnpK2vlW+JhYeJv8CEcban3dvD25mdrJDXbmdmY22UmQ==
x-requested-domain: 9xbuddy.com
x-access-token: false
Content-Length: 2
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 04 May 2024 01:33:34 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.28
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1q2rtBKQukk%2Bf%2FbOH6%2FTo1gtkCe%2BB4NiOPhHRDf7cP9KsryP%2B%2F5fK2FTYZyUcicWdgBEavrMfkuT%2FQR1%2F7h3M%2FqvGv0Nd6SWCa5s0ehL989mbPCn0H4oU9BYSCwygCg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4be4f4b7e56a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 9xbuddy.com/build/bddcb5cd2357411ec12c.png | 104.21.235.82 | 200 OK | 1.4 kB |
URL GET HTTP/39xbuddy.com/build/bddcb5cd2357411ec12c.png IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typePNG image data, 320 x 180, 8-bit colormap, non-interlaced Hash0c669ae648cad87524bbd2f813f19456 c7157d3fa492f0538a94c40e78f64cdf073385ab be0fb81b1e6a4c784bae40dd35e460aa956802ef7a292f41fe6b973bfe9786ca
GET /build/bddcb5cd2357411ec12c.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Cookie: cf_clearance=4h75x_24RwvTOTWz3W2yJDuedaGjKA8ngvaLLdEDHq4-1714786413-1.0.1.1-qm8ZiLhI96JzytGt9h2pfSZLNmci0YdSby0B0jU93SsNvEQWlJnagOJxGOn9Afd4Gn68sywzSIkf7YMODJPdag
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:35 GMT
content-type: image/png
content-length: 1351
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-547"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1987
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FndQynZh3mRaHXKyrKFa2kM0w2LW%2FV9eCHoupB0SgI9oT%2B9zn%2BsgIl7XRtO27NVGNvtPmbetIm6Vr8zY%2Ftj9zZSA%2FIQqRezPzi523qvluMQCeLM8%2FivwIkzLbyFfEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be585d2723f4-LHR
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/bddcb5cd2357411ec12c.png | 104.21.235.82 | 200 OK | 1.4 kB |
URL GET HTTP/39xbuddy.com/build/bddcb5cd2357411ec12c.png IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typePNG image data, 320 x 180, 8-bit colormap, non-interlaced Hash0c669ae648cad87524bbd2f813f19456 c7157d3fa492f0538a94c40e78f64cdf073385ab be0fb81b1e6a4c784bae40dd35e460aa956802ef7a292f41fe6b973bfe9786ca
GET /build/bddcb5cd2357411ec12c.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Cookie: cf_clearance=4h75x_24RwvTOTWz3W2yJDuedaGjKA8ngvaLLdEDHq4-1714786413-1.0.1.1-qm8ZiLhI96JzytGt9h2pfSZLNmci0YdSby0B0jU93SsNvEQWlJnagOJxGOn9Afd4Gn68sywzSIkf7YMODJPdag
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:35 GMT
content-type: image/png
content-length: 1351
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-547"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1987
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2BrWRjaX1Z7VHLSaypbzxXn7VTHTZMx1RvAUPDP%2Fvls2QNvPE1MaJK9LCJmAWk9p5dj3tISAbh53zQiQq13RioMXYxTmCaKSAdBSgVdo0RTV0u2otXKJd%2BN%2B1oRHAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be58ad5d23f4-LHR
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/682.6ac395facebb07af7566.js | 104.21.235.82 | 200 OK | 9.7 kB |
URL GET HTTP/39xbuddy.com/build/682.6ac395facebb07af7566.js IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typeJavaScript source, ASCII text, with very long lines (41085), with no line terminators Hash758f72849bd5f1b5e14e0fb2ce1a5bad b7f2ecef93b6ad57d8d00803c327f71e3aa6603a 2198e710fdb497eb0384715a6468de6f3e2c1f0c72d199c6d2dcb940888129e4
GET /build/682.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-a07d"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5972
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wOeCdhRSP4fm5bsBoj5P7r0xYTgrqT4izAAhok1bxyqW%2FopRsZmRI3urWpgKzxtcSnlz44izRJ6IMF%2FxcrP7ijsixg668k2SaBHd6d8zN%2Bl%2F9kACdf5ezGNpuxqhxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4cacc523f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/19.6ac395facebb07af7566.js | 104.21.235.82 | 200 OK | 7.8 kB |
URL GET HTTP/39xbuddy.com/build/19.6ac395facebb07af7566.js IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typeJavaScript source, ASCII text, with very long lines (20973), with no line terminators Hash0d89fe65f87cddedad6a912166e53208 a4e8cffd08639b4f3f5b3d86f303dbe6c89548b6 f43c153d7b7585febe16926ed2a6cd72dc6382cadad91d2f187c9a6f5af938c8
GET /build/19.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-51ed"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5972
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dT84fw5j0eVrqRSnrMOsSd5jYcJI%2Flo9WbFK06hcVOVow2Ong0O4Mo1RNLGnAnDIFWjJxlDxpQX49pEjs35LsnwijjoCmjwC0H4P60ladjFYRkqelp8SrmgWOgfk6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4cacc123f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/24.6ac395facebb07af7566.js | 104.21.235.82 | 200 OK | 5.9 kB |
URL GET HTTP/39xbuddy.com/build/24.6ac395facebb07af7566.js IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typeJavaScript source, ASCII text, with very long lines (2728), with no line terminators Hash9e0c8ceced4c67d97bbfb7b5140c84ec 9846a26f19da27631f68c50302fcb834b75f4ab6 531d554235351c8ac0289b937de9d7238ff80d877a904045aa913920ee83e004
GET /build/24.6ac395facebb07af7566.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-aa8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5972
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TTU%2Fh6g16ci5FeThyOLL04UM4XUK7NKKaQ2n3lPDiEGrl5%2Bfg6ULPDhxjkFDOVUjFlcKFtmEfYyGhn4CKjIcY901%2BmNpOIqFokzpg0UZwQatAnRult%2BjF7GlhXSL7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4cacc223f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js | 104.21.235.82 | 200 OK | 7.9 kB |
URL GET HTTP/39xbuddy.com/cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typeJavaScript source, ASCII text, with very long lines (7852), with no line terminators Hash7a3eb01be0acd65c5e3932fd04bf57de 401cec79e0cc2c28ffa0d416334e19cf092c40f1 e343177c7909bee246744bf42965b27b03432dc5aa1d5e272c6e29656eed24ba
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/d0ff3ebede6b/main.js HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
cache-control: max-age=14400, public
x-content-type-options: nosniff
content-encoding: br
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HD8hO17Pd7NBiQ9CC0Bmfc8hiGHp4%2FAoNQpGbccSC5kdnIxb8JvcsKRNM025jR0pc9rFyV6mJV9bztFon7wCf0obOyCaAKcolX4F8aUOYik80fX8SLPN0Ri6Y34p1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87e4be4cccda23f4-LHR
alt-svc: h3=":443"; ma=86400
|
|
| ab.9xbud.com/extract | 188.114.97.1 | 200 OK | 0 B |
IP188.114.97.1:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbud.com Fingerprint1F:FD:59:1E:53:09:FD:D2:80:03:C6:BD:69:34:5B:A5:3D:41:C5:FD ValidityFri, 26 Apr 2024 18:12:47 GMT - Thu, 25 Jul 2024 18:12:46 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /extract HTTP/1.1
Host: ab.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-access-token,x-auth-token,x-requested-domain,x-requested-with
Referer: https://9xbuddy.com/
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 01:33:34 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.28
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FmgShX%2FMpwusc4wxa%2Fj52dDdgRvT8SIFd%2BsOH95y6J2bnpR2QLlMW8GllfFmPBN6ipBxQjE2ZCQXLUn8Kuujs4JLnCaDqavTn7fkjq9Zeh6B57EcQ6zIhoRsNA%2FM49Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4be4fcba756a4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ab.9xbud.com/extract | 188.114.97.1 | 200 OK | 19 kB |
IP188.114.97.1:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbud.com Fingerprint1F:FD:59:1E:53:09:FD:D2:80:03:C6:BD:69:34:5B:A5:3D:41:C5:FD ValidityFri, 26 Apr 2024 18:12:47 GMT - Thu, 25 Jul 2024 18:12:46 GMT
Hashc48a8a0e6a7271ac015738cbbd7a7189 d01b1194a4ea7cdb165ead8173ac09d92850b9b8 37e81e4ce2f33e06b674b00f11bb22d00078911435b3448ff99cf942704f3979
POST /extract HTTP/1.1
Host: ab.9xbud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: xmlhttprequest
x-auth-token: b66YqpvK2mWT0c+bmZadm5pqk8OYm5mWnZuaapPDmJGky7JnpK2vlW+JhYeJv8CEcban3dvD25mdrJDXbmdmY22UmQ==
x-requested-domain: 9xbuddy.com
x-access-token: cWePnGNnaZiPlJqWyqSr0dlxZGVvqZKjmpKxZMTSoGlehqjIyM3RX2mRl2dlZ2ZiUHSfoJ2c0NticmuUkZOckpY=
Content-Length: 248
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:35 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/8.1.28
access-control-allow-origin: https://9xbuddy.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 1728000
access-control-allow-headers: content-type,x-requested-with,x-auth-token,x-requested-domain,x-access-token
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LGnkf5WmEE2wqoyAw7ACKtrO%2BR88yignCQTtoBKr3dsJ7ReZdVArQWO2sM4oc7ctKCWiMx4x6oYe7Zb6rHchWYgXyDvECkvNdmZYZ6651R248EZ7ld97lS5KsaV%2FE30%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87e4be503ecb568b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/build/main.6ac395facebb07af7566.css | 104.21.235.82 | 200 OK | 34 kB |
URL GET HTTP/39xbuddy.com/build/main.6ac395facebb07af7566.css IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typeASCII text, with very long lines (33979) Hash77c104a4d6d731ef1d0a576f44229d26 f9c7f7c6dbaa981a8f08a8fe7868e78042d71ae1 c92c7409b5bae6e8b27d3cb8aff612ad5412dda418aa4f201e653efcea6150c1
GET /build/main.6ac395facebb07af7566.css HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: text/css
last-modified: Tue, 30 Apr 2024 16:24:09 GMT
vary: Accept-Encoding
etag: W/"66311b29-84fb"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5973
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eZqovYD7gPkuZqsJvUIMAUNZQ5cUFUzM5G44O5OClazz5WwmjelvJfxz8WaRqd%2BU4nGLdSsOLCSmi8bzZIqy39lz0UWaQ6iaTXosNJVQSjvXDlaNasRiOCddI%2FMD6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4adb2823f4-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| 9xbuddy.com/cdn-cgi/challenge-platform/h/g/jsd/r/87e4be492fe39557 | 104.21.235.82 | 200 OK | 0 B |
URL POST HTTP/39xbuddy.com/cdn-cgi/challenge-platform/h/g/jsd/r/87e4be492fe39557 IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/challenge-platform/h/g/jsd/r/87e4be492fe39557 HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12231
Origin: https://9xbuddy.com
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=4h75x_24RwvTOTWz3W2yJDuedaGjKA8ngvaLLdEDHq4-1714786413-1.0.1.1-qm8ZiLhI96JzytGt9h2pfSZLNmci0YdSby0B0jU93SsNvEQWlJnagOJxGOn9Afd4Gn68sywzSIkf7YMODJPdag; path=/; expires=Sun, 04-May-25 01:33:33 GMT; domain=.9xbuddy.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Na71ekNH2088x5scLi0sb2wbvHJUEr8Kstt4yPI5a8sZLxLTaxYKazcgr5vAivK7ftk3yv6dinLSgSDD6NGG3yLnLeHDbiy1hD1WSNp4kmyw23JVxQRZ0p00IqDGNw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4dfd9b23f4-LHR
alt-svc: h3=":443"; ma=86400
|
|
| dewerpicry.top/rHH727qVeN4r6/7972 | 23.109.170.212 | 200 OK | 0 B |
URL GET HTTP/1.1dewerpicry.top/rHH727qVeN4r6/7972 IP23.109.170.212:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subjectdewerpicry.top Fingerprint26:89:4F:4E:AD:A8:97:43:7A:80:93:3B:41:74:A3:22:9F:DA:E3:25 ValidityMon, 15 Apr 2024 06:57:35 GMT - Sun, 14 Jul 2024 06:57:34 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /rHH727qVeN4r6/7972 HTTP/1.1
Host: dewerpicry.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 01:33:36 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://9xbuddy.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Sun, 05-May-2024 01:33:36 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Sun, 05-May-2024 01:33:36 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|
| 9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ | 104.21.235.82 | 200 OK | 20 kB |
URL User Request GET HTTP/29xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ IP104.21.235.82:443
CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typeHTML document, ASCII text, with very long lines (13324) Hash43b2f22e9564419dadab687c40fcee10 44d8a735686e0f5efe8054e821eac441c2799eb5 188f716bbe61fda62da00ca3ac34febeaf9707f07ec0675cfcd6591783663cb5
GET /process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3RA%2B87qlvOIXdqbGI%2FGySb6jkum7ixqw2A6V%2BlvD5Bdr2DJuMc9qH5hEVDH6R%2BFFTk7LYaRv1qQJ%2FlohF2H1%2FE3ZhKYvpEs0g4ZNKZqg4NObCfBi%2BZ0dXK0F4xCuBQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be492fe39557-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 9xbuddy.com/icons/favicon-16x16.png | 104.21.235.82 | 200 OK | 680 B |
URL GET HTTP/39xbuddy.com/icons/favicon-16x16.png IP104.21.235.82:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subject9xbuddy.com Fingerprint80:5E:71:F1:F4:71:13:C2:0D:12:17:9B:B4:61:2D:EE:11:B5:4E:86 ValidityTue, 30 Apr 2024 03:18:30 GMT - Mon, 29 Jul 2024 03:18:29 GMT
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced Hashf310dc4b30e94e078aa3d8ce14a93a7d f6b2f0419a8bb65aafd4c185079584494439cf4a 5261947833061f72396f2e0f6b27598ae37585d8de6da4bed8df9f683181aaab
GET /icons/favicon-16x16.png HTTP/1.1
Host: 9xbuddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 04 May 2024 01:33:33 GMT
content-type: image/png
content-length: 680
last-modified: Sun, 06 Nov 2022 06:05:05 GMT
etag: "63674e91-2a8"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, nosnippet, noarchive
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1985
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6tp25gKUz%2F6h3CJQ8l83GwGxJgJKR1m8FoW6BaOl5wjtH5RgnnFz5sQref4Tdi%2B82BOVQQXtiYTxlr275OOY1x9tnk5BtGwWCzJJwTvMjO3gfVHSOeEWVYciWzAvgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 87e4be4c6c8c23f4-LHR
alt-svc: h3=":443"; ma=86400
|
|
| dewerpicry.top/1clkn/9537 | 23.109.170.212 | 200 OK | 6 B |
URL GET HTTP/1.1dewerpicry.top/1clkn/9537 IP23.109.170.212:443
Requested byhttps://9xbuddy.com/process?url=https://tezfiles.com/file/8a51e8d53273e?site=https://superips.com/ CertificateIssuerLet's Encrypt Subjectdewerpicry.top Fingerprint26:89:4F:4E:AD:A8:97:43:7A:80:93:3B:41:74:A3:22:9F:DA:E3:25 ValidityMon, 15 Apr 2024 06:57:35 GMT - Sun, 14 Jul 2024 06:57:34 GMT
File typeASCII text, with no line terminators Hash9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /1clkn/9537 HTTP/1.1
Host: dewerpicry.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://9xbuddy.com/
Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 May 2024 01:33:36 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
|
|