firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 03:10:43 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: anrf-os1QU4YfwE_dJoiicpOmsTShbNGOQ-heXgR68iGXS-yGoG2pA==
Age: 3533
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15975
Expires: Fri, 16 Sep 2022 08:35:52 GMT
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 15 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: melTq6nkLTWLPDwZ7y4HYrNj24kpzpl-BYpaOEfjxd9dUHQFb8fyxw==
age: 84862
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 04:09:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 16 Sep 2022 04:03:22 GMT
Cache-Control: max-age=3600
Expires: Fri, 16 Sep 2022 04:14:12 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FSFoNSiq-K5jbLkXR0XXCLzk8d4KbLmtyBe8wWP0o2Qrp2tMvxzxGg==
Age: 375
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3729
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 04:09:38 GMT
Last-Modified: Fri, 16 Sep 2022 03:07:29 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
waptrick.one/en/free/mp3/bere-gratis
104.36.23.146301 Moved Permanently 4.4 kB URL HTTP/1.1 waptrick.one/en/free/mp3/bere-gratis
IP 104.36.23.146:0
File type gzip compressed data, from NTFS filesystem (NT)\012- data
Hash 05cdcfdbc5fced79326febc0a1e1c579
949a313a7f1bedf8433956329b431a5627ff0681
717fe5509ef2f817aa40996f049763f220657b26eefef24f581bfa5b94891061
GET /en/free/mp3/bere-gratis HTTP/1.1
Host: waptrick.one
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Microsoft-IIS/7.5
Date: Fri, 16 Sep 2022 04:09:44 GMT
Content-type: text/html
Pragma: no-cache
Cache-control: max-age=0, no-store, no-cache, must-revalidate
Vary: accept-encoding, user-agent
Location: http://waptrick.com/en/free/mp3/Bere-Gratis/
Connection: close
Content-encoding: gzip
a.exdynsrv.com/ad-provider.js
205.185.216.42200 OK 24 kB URL HTTP/1.1 a.exdynsrv.com/ad-provider.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 81ef2e5397caa335947731e7e737f5c3
6a05a4b2d22c13ad2692170510bc8685b16002bf
cec22380c4f1438b29077d202d0396a6ad32b41761ed51d968f1bfbdf2423378
GET /ad-provider.js HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 04:09:38 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 23727
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"d944899a6eb421496e94cbddc42"
X-HW: 1663301378.dop230.sk1.t,1663301378.cds237.sk1.shn,1663301378.dop230.sk1.t,1663301378.cds246.sk1.c
Access-Control-Allow-Origin: *, *
nabalpal.com/tvlP48j0j7GHQZa/37433
23.109.87.183200 OK 25 B URL HTTP/1.1 nabalpal.com/tvlP48j0j7GHQZa/37433
IP 23.109.87.183:0
File type ASCII text, with no line terminators
Hash d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
GET /tvlP48j0j7GHQZa/37433 HTTP/1.1
Host: nabalpal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtOwzAYhPMOVUnESDkAR2gi0rRLNqy4Q%2BTYf4Jp4r9y3Ae3xyDBbh6fZoIgiKoS4TWLEV9Ei%2BejGru9pJrkoW6a%2BuXQyLEdRDfWqunqdoeNXnsnhplcgseJDFkte8mKCjz56i85Gb6ZBOlghVEF0sUTc4F8sHxbyVYxEiMWQv6mLY1894T4ZIvouPdSGy%2FDHSJeq7jcIH3X5nIvt1lQFlmA7XkWbmS79Fp5m05WKEL4igcpHE1sv5ArWk%2BOzwDPqv%2Fnfz%2FT%2BWcNmaKrlt6y%2ByD7DTb9Sx8%3D; expires=Sat, 17-Sep-2022 04:09:38 GMT; Max-Age=86400; path=/
GL_GI10=eJxNjMFqg0AURXXSTCOK5UI%2FID9Qk7R2kW3TZdGFHzBY8xIGzDxxJm0mX181ULK5HA6cGwSBeE4hdIdku8m26yx%2FzTbvOWZHYoiiRNLw2bjeK1OfCLLg%2Frf2kD0dNRuI9RviG6uG94R5Ub7cuSmKS9vycjf%2BeDw0etxRIRr51j0O3eRm2nZIP1p9WVbcnt3wYhEZcsp2RHtEu%2Fq7pdVn9YX0304fMsRCW9X1fPEDPzl9oisbUnw4WHJSIPyR4g8Mt0dW; expires=Sat, 17-Sep-2022 04:09:38 GMT; Max-Age=86400; path=/
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
push.services.mozilla.com/
54.187.160.31101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.160.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hXcNQJhJY/pLVuKobVzaqQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ysjRxZ3WpgCmD302AmoJdzADQNI=
samp.waptrick.org/js/combinedv136.js
162.251.163.98200 OK 2.3 kB URL HTTP/1.1 samp.waptrick.org/js/combinedv136.js
IP 162.251.163.98:0
File type Unicode text, UTF-8 text, with very long lines (519), with CRLF line terminators
Hash 1c780d06b80889abc2b4dc2c42da1a0d
0b2e2d8d1dddd2e1a4644c5bd40fbac1c8ea1e45
3f40410d685839a594f1d8eb6dfec0e4c8adc7664774d4a796e84e912b038e51
GET /js/combinedv136.js HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 07:56:44 GMT
Accept-Ranges: bytes
ETag: "0c61b7b4adfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:36 GMT
Connection: close
Content-Length: 2279
samp.waptrick.org/js/jquery_scroll.js
162.251.163.98200 OK 2.0 kB URL HTTP/1.1 samp.waptrick.org/js/jquery_scroll.js
IP 162.251.163.98:0
File type ASCII text, with CRLF line terminators
Hash e183fa3c407ab5574fd031fc9dff9c82
60dcaf14911262a7312d92f5218d06c3c558cb8e
84714cc57554d33bcac659c53b181b27d590a77445ed1ca84c0876fea58dabe8
GET /js/jquery_scroll.js HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 07:58:36 GMT
Accept-Ranges: bytes
ETag: "09eddbd4adfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:36 GMT
Connection: close
Content-Length: 1995
samp.waptrick.org/css/htmlv125_basic.css
162.251.163.98200 OK 5.8 kB URL HTTP/1.1 samp.waptrick.org/css/htmlv125_basic.css
IP 162.251.163.98:0
File type ASCII text, with very long lines (25053), with no line terminators
Hash 04fc8047a2f34f1b1d0e61e00e6ac803
777ff47e71982bfa284e04d8b63df0f203b7a6f1
0dcdc08230cb9ba8e66315ca0aff736f5543c643e07304de785631bf342d6dfa
GET /css/htmlv125_basic.css HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 08:24:45 GMT
Accept-Ranges: bytes
ETag: "80410654edfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:36 GMT
Connection: close
Content-Length: 5752
cudgelridge.com/bf/0d/76/bf0d7612e94ed920aec918d8bc477e4f.js
192.243.59.20200 OK 20 kB URL HTTP/1.1 cudgelridge.com/bf/0d/76/bf0d7612e94ed920aec918d8bc477e4f.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (59372), with no line terminators
Hash bbe8b4709948dab29e2c02ba4380572c
d16dcf16b588e085d1c75df3572e716c62cac8d0
be8189f4fe79e1760ae894843bccd76a95314c928a5c844412035800b7f2e0c8
Analyzer Verdict Alert quad9 Sinkholed
GET /bf/0d/76/bf0d7612e94ed920aec918d8bc477e4f.js HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 16 Sep 2022 04:09:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 46325849d0dcaa6f160d29702e0cc472
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cudgelridge.com/da/fe/7e/dafe7e98dace1e50d48969e5c8a626a4.js
192.243.59.20200 OK 13 kB URL HTTP/1.1 cudgelridge.com/da/fe/7e/dafe7e98dace1e50d48969e5c8a626a4.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37107), with no line terminators
Hash c3a10410ed5b1741c2e42b50e805fae3
cd207a61439203193438ffcfac55aa77b00bb8be
7098db6797830c639248dd73ec6f1da168e347a8ac91a3e816d79df6a1ebb9ad
Analyzer Verdict Alert quad9 Sinkholed
GET /da/fe/7e/dafe7e98dace1e50d48969e5c8a626a4.js HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 16 Sep 2022 04:09:38 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: be50f5826b6a92edc5b17455777343ee
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
samp.waptrick.org/js/jquery-3.4.1.min.js
162.251.163.98200 OK 31 kB URL HTTP/1.1 samp.waptrick.org/js/jquery-3.4.1.min.js
IP 162.251.163.98:0
File type ASCII text, with very long lines (65451)
Hash 3195e7e20d5daf86f6c6f6107c7bad9d
f5dc59013bfc44a61d3379e5c2e0356935ccda0e
524f9b76882cacbfa2459d4e6464bd039da02db98a25dc29754c54ea4b2d8867
GET /js/jquery-3.4.1.min.js HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 08:01:30 GMT
Accept-Ranges: bytes
ETag: "0e993254bdfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:36 GMT
Connection: close
Content-Length: 30737
samp.waptrick.org/imgs/htmlcssv11/new_music_icon32x32.png
162.251.163.98200 OK 1.9 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/new_music_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 5403612166c9a0c55ae1006dfb55528f
6b043201338f85e7eb69a12465059ee8502e3367
7747dc4e3f40289c701afbf500a4956d9167867a6c2b62933027118dbec403ac
GET /imgs/htmlcssv11/new_music_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Mon, 26 Jan 2015 11:03:00 GMT
Accept-Ranges: bytes
ETag: "08ac7a55739d01:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:36 GMT
Connection: close
Content-Length: 1947
samp.waptrick.org/imgs/htmlcssv11/clear_icon.png
162.251.163.98200 OK 294 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/clear_icon.png
IP 162.251.163.98:0
File type PNG image data, 21 x 15, 8-bit colormap, non-interlaced\012- data
Hash e7932d617d61ef466439d3379e29c5b4
5ffb19024492dc19a6108d0b6f0487f2193aadf7
ddec118279ef42ab6c7170391e8422ab7d647a85875cfd12b9ea4d55ea8cc7d6
GET /imgs/htmlcssv11/clear_icon.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 05 Oct 2012 15:59:42 GMT
Accept-Ranges: bytes
ETag: "0eb5d6e12a3cd1:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:36 GMT
Connection: close
Content-Length: 294
nabalpal.com/tvlP48j0j7GHQZa/37433
23.109.87.183200 OK 25 B URL HTTP/1.1 nabalpal.com/tvlP48j0j7GHQZa/37433
IP 23.109.87.183:0
File type ASCII text, with no line terminators
Hash d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
GET /tvlP48j0j7GHQZa/37433 HTTP/1.1
Host: nabalpal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtOwzAYhPMOVUnESDkAR2gi0rRLNqy4Q%2BTYf4Jp4r9y3Ae3xyDBbh6fZoIgiKoS4TWLEV9Ei%2BejGru9pJrkoW6a%2BuXQyLEdRDfWqunqdoeNXnsnhplcgseJDFkte8mKCjz56i85Gb6ZBOlghVEF0sUTc4F8sHxbyVYxEiMWQv6mLY1894T4ZIvouPdSGy%2FDHSJeq7jcIH3X5nIvt1lQFlmA7XkWbmS79Fp5m05WKEL4igcpHE1sv5ArWk%2BOzwDPqv%2Fnfz%2FT%2BWcNmaKrlt6y%2ByD7DTb9Sx8%3D; expires=Sat, 17-Sep-2022 04:09:39 GMT; Max-Age=86400; path=/
GL_GI10=eJxNjMFqg0AURXXSTCOK5UI%2FID9Qk7R2kW3TZdGFHzBY8xIGzDxxJm0mX181ULK5HA6cGwSBeE4hdIdku8m26yx%2FzTbvOWZHYoiiRNLw2bjeK1OfCLLg%2Frf2kD0dNRuI9RviG6uG94R5Ub7cuSmKS9vycjf%2BeDw0etxRIRr51j0O3eRm2nZIP1p9WVbcnt3wYhEZcsp2RHtEu%2Fq7pdVn9YX0304fMsRCW9X1fPEDPzl9oisbUnw4WHJSIPyR4g8Mt0dW; expires=Sat, 17-Sep-2022 04:09:39 GMT; Max-Age=86400; path=/
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
192.243.59.20200 OK 1.1 kB URL HTTP/1.1 cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 85bcd5b40a1095c7851edbcf80636e68
ada1f8fcbeef9997beb42fdfb867bac718d62010
e70be3c22dcd0c537e053be14f5811c40a1097866d9ded12aef90070868b7734
Analyzer Verdict Alert quad9 Sinkholed
GET /watchnew?key=0d90779d5172c783ebd7800dad489a3d HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=14457359; expires=Sat, 17 Sep 2022 04:09:39 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.6k1zLKsdRe0HVR9_pedaogRuSi3jCy7OzdKkuB7rToQ; expires=Fri, 16 Sep 2022 04:10:39 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c9ccb674e0a2dca6efb92275e3fd3cee
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
samp.waptrick.org/imgs/htmlcssv11/back_home_icon32x32.png
162.251.163.98200 OK 459 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/back_home_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 208c830c05cacb548355849c1dd3bd81
087981869aa8e1ed51b7a5d36f74bad3ca24dc08
64253536f1c9ed9b084061ac08f0f80f068dab87302fa8114821a08d7d7fc483
GET /imgs/htmlcssv11/back_home_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Wed, 09 Apr 2014 08:31:00 GMT
Accept-Ranges: bytes
ETag: "0fa369ce53cf1:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 459
samp.waptrick.org/imgs/waptrick_html_flag.png
162.251.163.98200 OK 2.2 kB URL HTTP/1.1 samp.waptrick.org/imgs/waptrick_html_flag.png
IP 162.251.163.98:0
File type PNG image data, 155 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 8dabbade5c7050e85ed02fd7ffea93db
efaf45364e8d6041a27e1246a07591b002a67b2e
106ebe3072f58bb44727eb4d1700f1a8f7ca3b106282a36227245873fbbb3e46
GET /imgs/waptrick_html_flag.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 12 Dec 2019 07:05:11 GMT
Accept-Ranges: bytes
ETag: "fae0a77ebab0d51:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 2230
samp.waptrick.org/imgs/htmlcssv11/more_content_icon32x32.png
162.251.163.98200 OK 778 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/more_content_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash baec56d8e9b034c2849690fa5897ad47
d2ac9cce0eabd87eb375969970cc0647c03ec881
67c48950a529b391622aaddeaea1fe85fbb53c68557ecef82dbfc2c955171e2c
GET /imgs/htmlcssv11/more_content_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Wed, 09 Apr 2014 12:11:00 GMT
Accept-Ranges: bytes
ETag: "0227c5ec53cf1:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 778
addresseepaper.com/sfp.js
104.21.235.2200 OK 23 kB URL HTTP/1.1 addresseepaper.com/sfp.js
IP 104.21.235.2:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 487ad2b48cd98e36abf708a3b60f4a36
ccf7b110523d50bb619becd48c3f013cc5fdce87
768eff747f795e1232d182eb859170e32d4f06ed29da872c09af5363c459668f
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: a9ec638e4331482caff79078c691757a
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Fri, 16 Sep 2022 04:09:38 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TQD330ZCO168Bo6TD%2BLNlYMbataEOyMnEzptR%2F9%2BO7ME1hTvhqzwXV3ZuLWoO9spBpuFZT05JSxluoDD2lwppVyyfsk1Xd6o4vxCZyiaGI7D3OWHWIBD4%2BLpEIKyjc%2FZzgGQiRE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b6bf73c92874fd-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash acc0ef894f596201615e2b22fb94a71e
af7f628f396687d475e3d1010c0f2f24aae745f2
2873e960fa7b042b538aabfcee7c9156b35a395293569a6cbe9995ba1393f284
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 04:09:39 GMT
Last-Modified: Fri, 16 Sep 2022 02:27:00 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Z8ObPfORs9ZWlSHUlG-h5ivmP6QO7eMV69fBImf7pidO75QyQsbu-w==
Age: 6160
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash acc0ef894f596201615e2b22fb94a71e
af7f628f396687d475e3d1010c0f2f24aae745f2
2873e960fa7b042b538aabfcee7c9156b35a395293569a6cbe9995ba1393f284
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 04:09:39 GMT
Last-Modified: Fri, 16 Sep 2022 02:27:27 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZUUtBS5-NeDas9JruQ4hmcDsa_2YFIb_H2F0RJBmqQ11DlqFXluvtQ==
Age: 6132
syndication.exdynsrv.com/v1/api.php
95.211.229.246200 OK 8.9 kB URL HTTP/1.1 syndication.exdynsrv.com/v1/api.php
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (28229), with no line terminators
Hash 3fd1e8381867792d392264dd9a77306e
e27694e41f0a5a5e412d223040aa93536f1611dc
eb236adfb1371192eb4d7377e9d542284d0a4503a04a280ec5fa570dd719a962
POST /v1/api.php HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 345
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
creepingbrings.com/sfp.js
104.21.234.232200 OK 23 kB URL HTTP/1.1 creepingbrings.com/sfp.js
IP 104.21.234.232:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 487ad2b48cd98e36abf708a3b60f4a36
ccf7b110523d50bb619becd48c3f013cc5fdce87
768eff747f795e1232d182eb859170e32d4f06ed29da872c09af5363c459668f
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: f6bd49aac38fb273a523bf4b11ab17f6
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Fri, 16 Sep 2022 04:09:39 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fS8G8aKaskt5pHip56CMLAMqjSeIxcpBw6mYJ4ulRZvF%2FpqM3sgFCFgCIaCZVwLiSZL7tuThBHMsFqWwt56WPu%2FmVqFTb1iK9CB1SXeeTPVm1T7Nmda2Lio1g0kxTM6dz%2BxR5y4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b6bf73ba52dcd3-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
simplewebanalysis.com/stats
35.157.30.157200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.157.30.157:0
File type ASCII text, with no line terminators
Hash 18eca9357154876a15f747c212c302be
f6ec4716136a2cbc74fabafb7335fafbb053328b
0240568185f26ad3dcfb30c5ec8c2a455e8b87ce151c3cf32ae84bffd2ae5753
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://waptrick.com
access-control-allow-credentials: true
set-cookie: uid_id2=c5dab97f-816c-403e-8892-10dea981e8a3:3:1; expires=Mon, 13 Sep 2032 04:09:39 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
35.157.30.157200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 35.157.30.157:0
File type ASCII text, with no line terminators
Hash 8a0a0a77956ef0c2bf059a9b77fae3c9
3f91362c5ba7e2434a4ae71d1b0a41455c28a6f5
dc5a3f51a985e4e74da743018702a2504864e52ee54039af95ee101b011c9f79
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://waptrick.com
access-control-allow-credentials: true
set-cookie: uid_id2=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d:2:1; expires=Mon, 13 Sep 2032 04:09:39 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
samp.waptrick.org/imgs/htmlcssv11/back_change_language_icon32x32.png
162.251.163.98200 OK 3.0 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/back_change_language_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 9879e97102aaacacf42f1257a5afb761
e523a42312b049a9aadb51a0f0a62833ec1fca96
209d59d004a87671c892d53fffc966ec01aa511ba5cd5bef59c16b5455f24102
GET /imgs/htmlcssv11/back_change_language_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Wed, 09 Apr 2014 09:02:34 GMT
Accept-Ranges: bytes
ETag: "0712072d253cf1:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 3042
samp.waptrick.org/imgs/htmlcssv11/music_clip_list_icon_bg32x32.png
162.251.163.98200 OK 625 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/music_clip_list_icon_bg32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 626a4a0e6d0726fa82dc9bdaa27d92ff
fb658ad1d4eaf36e95a9fa0b1a61edff0f75810b
672078fc6728ce8d749f3b8b645b4c5900ac551d025b2476134531138474979a
GET /imgs/htmlcssv11/music_clip_list_icon_bg32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 30 Jan 2015 15:43:34 GMT
Accept-Ranges: bytes
ETag: "0174781a33cd01:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 625
samp.waptrick.org/imgs/flags/NORWAY.png
162.251.163.98200 OK 2.2 kB URL HTTP/1.1 samp.waptrick.org/imgs/flags/NORWAY.png
IP 162.251.163.98:0
File type PNG image data, 25 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d63618403a5116c6f67652c052780939
76a973780634b8753544f896c10c07cf1d308cb6
a2afdc332e5e773e12aae4ac22807a41b982c338398e103b5d46aa28ef5728c7
GET /imgs/flags/NORWAY.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 12 Dec 2019 08:10:42 GMT
Accept-Ranges: bytes
ETag: "0ad8ea5c3b0d51:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 2214
cudgelridge.com/watchnew?shu=c3d93a592c019377dab0fe0a5452a0ca696a1f0cce8f63d659db18f7294867913b9c861b2687ecf47a6b8160f5c77d618fb8ede2e85b2a512c70f70f006b29b1601ba99bc7b210df9282bcbdf8fa266ffc65d1&pst=1663301439&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F
192.243.59.20200 OK 1.7 kB URL HTTP/1.1 cudgelridge.com/watchnew?shu=c3d93a592c019377dab0fe0a5452a0ca696a1f0cce8f63d659db18f7294867913b9c861b2687ecf47a6b8160f5c77d618fb8ede2e85b2a512c70f70f006b29b1601ba99bc7b210df9282bcbdf8fa266ffc65d1&pst=1663301439&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2331)
Hash c64fcbb81e21608339e5bcd3f9ac0113
bfdfddd71e88503f924e513004b6de889583ebe2
c55066092425dc445eb4dac98b14af100cf85f075d922583882b625e88613968
Analyzer Verdict Alert quad9 Sinkholed
GET /watchnew?shu=c3d93a592c019377dab0fe0a5452a0ca696a1f0cce8f63d659db18f7294867913b9c861b2687ecf47a6b8160f5c77d618fb8ede2e85b2a512c70f70f006b29b1601ba99bc7b210df9282bcbdf8fa266ffc65d1&pst=1663301439&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://waptrick.com/
Access-Control-Allow-Origin: http://waptrick.com/
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=14457359; expires=Sat, 17 Sep 2022 04:09:39 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Sep 2022 04:09:39 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Sep 2022 04:09:39 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 17 Sep 2022 04:09:39 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 17 Sep 2022 04:09:39 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3b4b19dff87cf8b2092e1c721509eb1d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OUUpEMQy8ihd4j0matM1++62geIButwURdxcVVMjhbQuiGdIOnUmmDOYNtlG8AQ6wQzA32g278E4qfnf/4EL+Wa4fb8/1Zb+cm6uSILpyZognRFUMUwYsuxINxdiGI2lQxBSd1INjgDWITLYDIPYMf3q8XU0DDB/nzHTOLoPja45ZDLlSPdUSQ2dJJ+KYcjo2aaxZyzT+/bFeXlfYihn6XPz7MLDRukbBFyvv3+fq/s8iHE3DZLpGg5MIxp7ajh3aakPq1TrXyCla6alnpKr9BxMUS65QAQAA
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OUUpEMQy8ihd4j0matM1++62geIButwURdxcVVMjhbQuiGdIOnUmmDOYNtlG8AQ6wQzA32g278E4qfnf/4EL+Wa4fb8/1Zb+cm6uSILpyZognRFUMUwYsuxINxdiGI2lQxBSd1INjgDWITLYDIPYMf3q8XU0DDB/nzHTOLoPja45ZDLlSPdUSQ2dJJ+KYcjo2aaxZyzT+/bFeXlfYihn6XPz7MLDRukbBFyvv3+fq/s8iHE3DZLpGg5MIxp7ajh3aakPq1TrXyCla6alnpKr9BxMUS65QAQAA
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01OUUpEMQy8ihd4j0matM1++62geIButwURdxcVVMjhbQuiGdIOnUmmDOYNtlG8AQ6wQzA32g278E4qfnf/4EL+Wa4fb8/1Zb+cm6uSILpyZognRFUMUwYsuxINxdiGI2lQxBSd1INjgDWITLYDIPYMf3q8XU0DDB/nzHTOLoPja45ZDLlSPdUSQ2dJJ+KYcjo2aaxZyzT+/bFeXlfYihn6XPz7MLDRukbBFyvv3+fq/s8iHE3DZLpGg5MIxp7ajh3aakPq1TrXyCla6alnpKr9BxMUS65QAQAA HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f703697b33.507800073178045686%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f703697b33.507800073178045686%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OUUoFMQy8ihfYZZImbfO+/VZQPEC3uwsivicqqJDDm+3H0w5NJmSSCYN5gk2Ub4AT7JTMjWbDLDyTit/dP7iQf7W3z/fn/jJfzptnYyVx5coQL8iqCFEFrLoSBUephV2kVCulOqknR4A1iRxsBkBe4U+Pt+NTgOERD0snxMoo8H2MWU61U197y2lnKStxDodlk421ajuEfzf2y+swGzbRdw7giolGigcfrH38nLv7P4lwNk0H0+soeaoLGi20tMR739K+bNoblbVlk9TaLzham5dNAQAA
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OUUoFMQy8ihfYZZImbfO+/VZQPEC3uwsivicqqJDDm+3H0w5NJmSSCYN5gk2Ub4AT7JTMjWbDLDyTit/dP7iQf7W3z/fn/jJfzptnYyVx5coQL8iqCFEFrLoSBUephV2kVCulOqknR4A1iRxsBkBe4U+Pt+NTgOERD0snxMoo8H2MWU61U197y2lnKStxDodlk421ajuEfzf2y+swGzbRdw7giolGigcfrH38nLv7P4lwNk0H0+soeaoLGi20tMR739K+bNoblbVlk9TaLzham5dNAQAA
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01OUUoFMQy8ihfYZZImbfO+/VZQPEC3uwsivicqqJDDm+3H0w5NJmSSCYN5gk2Ub4AT7JTMjWbDLDyTit/dP7iQf7W3z/fn/jJfzptnYyVx5coQL8iqCFEFrLoSBUephV2kVCulOqknR4A1iRxsBkBe4U+Pt+NTgOERD0snxMoo8H2MWU61U197y2lnKStxDodlk421ajuEfzf2y+swGzbRdw7giolGigcfrH38nLv7P4lwNk0H0+soeaoLGi20tMR739K+bNoblbVlk9TaLzham5dNAQAA HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f7037010a2.976261941316416178%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f7037010a2.976261941316416178%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OQUoEQQz8ih+YoZJOepI961VB8QFjuhdE3BUVVMjj7ZnDaoqkEqhKwmCe4BPVK+AAPxRPp9kxC8+kkrd39ymUX+vb5/tzvMznU88FrC6pbAwZU1XFEBnglkqUUrgwS4qXRW1oSLMkBliLyGCacTNpGvLx4XpPGmDkqNvJJHAOX+J7s3ktFhQt1lqOLEsjrostT106q+m6Cf9+jPPrGFUK2dgjIE7MqKbJA7hgop1GIPdu/fg5ReY/iXB1LVunFytla9GqRTh691jZW8CqdvIS4nH8BZpx2A5WAQAA
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OQUoEQQz8ih+YoZJOepI961VB8QFjuhdE3BUVVMjj7ZnDaoqkEqhKwmCe4BPVK+AAPxRPp9kxC8+kkrd39ymUX+vb5/tzvMznU88FrC6pbAwZU1XFEBnglkqUUrgwS4qXRW1oSLMkBliLyGCacTNpGvLx4XpPGmDkqNvJJHAOX+J7s3ktFhQt1lqOLEsjrostT106q+m6Cf9+jPPrGFUK2dgjIE7MqKbJA7hgop1GIPdu/fg5ReY/iXB1LVunFytla9GqRTh691jZW8CqdvIS4nH8BZpx2A5WAQAA
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01OQUoEQQz8ih+YoZJOepI961VB8QFjuhdE3BUVVMjj7ZnDaoqkEqhKwmCe4BPVK+AAPxRPp9kxC8+kkrd39ymUX+vb5/tzvMznU88FrC6pbAwZU1XFEBnglkqUUrgwS4qXRW1oSLMkBliLyGCacTNpGvLx4XpPGmDkqNvJJHAOX+J7s3ktFhQt1lqOLEsjrostT106q+m6Cf9+jPPrGFUK2dgjIE7MqKbJA7hgop1GIPdu/fg5ReY/iXB1LVunFytla9GqRTh691jZW8CqdvIS4nH8BZpx2A5WAQAA HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f70375ee61.550875042125541126%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f70375ee61.550875042125541126%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01P7UoEMQx8FV9gl0mapM399reC4gN0u3cg4p2ooEIe3uyCHx3aTsMkM2UwT/CJ7Ao4wA/Fw2l2zMIzqcTN7V0IxUd/eX99HE/z5XwMc1aSUG4MiQpTRYoa4C2UKDlqqxwitXmtEqRRAgnWIrKxGQBFQzzcX++bEozIc7MMQo7MBz63NrfSBo11dCsnlroSWzosRzmyNu2b8C/juDzvZruN2DaGfwqJifYrF2Jn/e3rPCL+SYTNtWxMf1szIPHSV88fETJN07b4yYp1Ezcf/A2Aw3bTTQEAAA==
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01P7UoEMQx8FV9gl0mapM399reC4gN0u3cg4p2ooEIe3uyCHx3aTsMkM2UwT/CJ7Ao4wA/Fw2l2zMIzqcTN7V0IxUd/eX99HE/z5XwMc1aSUG4MiQpTRYoa4C2UKDlqqxwitXmtEqRRAgnWIrKxGQBFQzzcX++bEozIc7MMQo7MBz63NrfSBo11dCsnlroSWzosRzmyNu2b8C/juDzvZruN2DaGfwqJifYrF2Jn/e3rPCL+SYTNtWxMf1szIPHSV88fETJN07b4yYp1Ezcf/A2Aw3bTTQEAAA==
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01P7UoEMQx8FV9gl0mapM399reC4gN0u3cg4p2ooEIe3uyCHx3aTsMkM2UwT/CJ7Ao4wA/Fw2l2zMIzqcTN7V0IxUd/eX99HE/z5XwMc1aSUG4MiQpTRYoa4C2UKDlqqxwitXmtEqRRAgnWIrKxGQBFQzzcX++bEozIc7MMQo7MBz63NrfSBo11dCsnlroSWzosRzmyNu2b8C/juDzvZruN2DaGfwqJifYrF2Jn/e3rPCL+SYTNtWxMf1szIPHSV88fETJN07b4yYp1Ezcf/A2Aw3bTTQEAAA== HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f703784ff7.964143953058666435%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f703784ff7.964143953058666435%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/widget-branding-logo.png
185.76.9.22200 OK 1.5 kB URL HTTP/1.1 s3t3d2y8.afcdn.net/widget-branding-logo.png
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type PNG image data, 94 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a95be207bf27c9a91720b8ac81976ca
6412e94ce13924fede8b1bec73cb8e049b76688c
5325d5beb64d82d48d3f7d78b606ee93b8e975a55868bba038905329ed1044b9
GET /widget-branding-logo.png HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: image/png
Content-Length: 1547
Connection: keep-alive
Last-Modified: Mon, 15 Apr 2019 09:03:59 GMT
ETag: "5cb448ff-60b"
Expires: Fri, 30 Jun 2023 16:01:02 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
X-Cache-OP: HIT
X-Accel-Expires: @1688195209
Server: CDN77-Turbo
X-77-NZT: AblMCRRAIxL/+lllAA
X-77-NZT-Ray: DDPC+P07yW4
X-Cache: HIT
X-Age: 6642170
X-77-POP: stockholmSE
X-77-Cache: HIT
Accept-Ranges: bytes
samp.waptrick.org/imgs/htmlcssv11/whatsapp_icon32x32.png
162.251.163.98200 OK 3.1 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/whatsapp_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 36 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash af1b134ddf468446228d0fb5f69c62d0
9ffd6a9d6d624e3ca00a6c49df8c0762aefeba30
f9f611dc16257617b61ba4b01892a5eeda564ed9430c14e0edf86d872d729097
GET /imgs/htmlcssv11/whatsapp_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 09 May 2019 10:03:17 GMT
Accept-Ranges: bytes
ETag: "89cf366c4e6d51:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 3057
samp.waptrick.org/imgs/htmlcssv11/golge_10px.png
162.251.163.98200 OK 91 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/golge_10px.png
IP 162.251.163.98:0
File type PNG image data, 2 x 10, 8-bit gray+alpha, non-interlaced\012- data
Hash 3adcffb90087422d4d7cfeb880a49597
4462b6a9ecf51133959b333e8014b9b3c9927031
ea5c7819f351e03a6adbb3957c73e8f1b516039869c2667da27b188c92121a65
GET /imgs/htmlcssv11/golge_10px.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 31 Aug 2012 07:13:58 GMT
Accept-Ranges: bytes
ETag: "03f38304887cd1:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 91
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEMRC8iheYUP1K0vutvwqKB5hJZkHE3UUFFfrwZuZjtYt+FF39YDBP8InyDXCAH8TDKTmSciLTuH94DKX4mi+f7y/tNZ1PaxSwuYZxZehg2QxDVAGvYUShwiLIoS5lNDnIQgIDbKI6MiXcTRYV8fx0uzsNMGLE7WQQOHQQfG9jnqU2ar3NWY6spRPnUsuy6spWbd6Efz+289ugpkJ17FEQBxI0a/AArphoT8MQezV//JxaxD+JcnaTrbLrKMUi4ktrR1nbcdHinbyv3a2wUVs6fgEABeOtVgEAAA==
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEMRC8iheYUP1K0vutvwqKB5hJZkHE3UUFFfrwZuZjtYt+FF39YDBP8InyDXCAH8TDKTmSciLTuH94DKX4mi+f7y/tNZ1PaxSwuYZxZehg2QxDVAGvYUShwiLIoS5lNDnIQgIDbKI6MiXcTRYV8fx0uzsNMGLE7WQQOHQQfG9jnqU2ar3NWY6spRPnUsuy6spWbd6Efz+289ugpkJ17FEQBxI0a/AArphoT8MQezV//JxaxD+JcnaTrbLrKMUi4ktrR1nbcdHinbyv3a2wUVs6fgEABeOtVgEAAA==
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEMRC8iheYUP1K0vutvwqKB5hJZkHE3UUFFfrwZuZjtYt+FF39YDBP8InyDXCAH8TDKTmSciLTuH94DKX4mi+f7y/tNZ1PaxSwuYZxZehg2QxDVAGvYUShwiLIoS5lNDnIQgIDbKI6MiXcTRYV8fx0uzsNMGLE7WQQOHQQfG9jnqU2ar3NWY6spRPnUsuy6spWbd6Efz+289ugpkJ17FEQBxI0a/AArphoT8MQezV//JxaxD+JcnaTrbLrKMUi4ktrR1nbcdHinbyv3a2wUVs6fgEABeOtVgEAAA== HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f7037cb341.910566861658406808%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f7037cb341.910566861658406808%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/692514/acd347fdcb1175ac14a50422a557843f31f66e4f.jpg
185.76.9.22200 OK 19 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/692514/acd347fdcb1175ac14a50422a557843f31f66e4f.jpg
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 6e24faee539ebedbe9c954f8f0a7ad4a
acd347fdcb1175ac14a50422a557843f31f66e4f
13b24df37ca05e71964fd4e3875e1cf4c82f6aa640f1f75c7ead2089117201ab
GET /library/692514/acd347fdcb1175ac14a50422a557843f31f66e4f.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: image/jpeg
content-length: 19070
last-modified: Thu, 22 Oct 2020 17:13:58 GMT
etag: "5f91bdd6-4a7e"
expires: Wed, 30 Aug 2023 14:54:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416603
server: CDN77-Turbo
x-77-nzt: AblMCRToDbf/6K0VAA
x-77-nzt-ray: vb1w1r6vGX8
x-cache: HIT
x-age: 1420776
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01O7UrEQAx8FV+gZfK1u7nf+ldB8QHabQ9EvDtUUCEPb1pBzZBNhkyyw2Ae4AOVK+AAP4iH0+gYlUcyjdu7+1CKj+ny/vrUn8fzaY0KNtcwbgxNVsyQogZ4CyMKFRbJkbrUYsJBFhJIsIlqVhpxM1g0xOPD9Z6UYES+25dB4NAk+NzWvEjr1Jc+FTmy1oW41FbnVVe2ZtMm/PPYzy9JTYVa3lEQB0ZU3+7xbuMHA+0lA7F309vXqUf8kygXN9k6+12lOBZBmXXtU7OjLO7prBXGCibDTN+KcyOyVgEAAA==
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01O7UrEQAx8FV+gZfK1u7nf+ldB8QHabQ9EvDtUUCEPb1pBzZBNhkyyw2Ae4AOVK+AAP4iH0+gYlUcyjdu7+1CKj+ny/vrUn8fzaY0KNtcwbgxNVsyQogZ4CyMKFRbJkbrUYsJBFhJIsIlqVhpxM1g0xOPD9Z6UYES+25dB4NAk+NzWvEjr1Jc+FTmy1oW41FbnVVe2ZtMm/PPYzy9JTYVa3lEQB0ZU3+7xbuMHA+0lA7F309vXqUf8kygXN9k6+12lOBZBmXXtU7OjLO7prBXGCibDTN+KcyOyVgEAAA==
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01O7UrEQAx8FV+gZfK1u7nf+ldB8QHabQ9EvDtUUCEPb1pBzZBNhkyyw2Ae4AOVK+AAP4iH0+gYlUcyjdu7+1CKj+ny/vrUn8fzaY0KNtcwbgxNVsyQogZ4CyMKFRbJkbrUYsJBFhJIsIlqVhpxM1g0xOPD9Z6UYES+25dB4NAk+NzWvEjr1Jc+FTmy1oW41FbnVVe2ZtMm/PPYzy9JTYVa3lEQB0ZU3+7xbuMHA+0lA7F309vXqUf8kygXN9k6+12lOBZBmXXtU7OjLO7prBXGCibDTN+KcyOyVgEAAA== HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f7037e0f45.800932754053063929%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f7037e0f45.800932754053063929%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/702594/4eb0e249dddf76cea2a5b38f3b0408f9e7a0a985.jpg
185.76.9.22200 OK 26 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/702594/4eb0e249dddf76cea2a5b38f3b0408f9e7a0a985.jpg
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash fe3f6bf1620ec522163605cbea68b3b0
4eb0e249dddf76cea2a5b38f3b0408f9e7a0a985
130e81904f94c4c1a49b337b3d1f58fcedf4b8a0772220f3f4a315d87a0dfeb6
GET /library/702594/4eb0e249dddf76cea2a5b38f3b0408f9e7a0a985.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: image/jpeg
content-length: 25465
last-modified: Tue, 16 Mar 2021 14:48:52 GMT
etag: "6050c554-6379"
expires: Fri, 30 Jun 2023 18:49:27 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195447
server: CDN77-Turbo
x-77-nzt: AblMCRTZP7H/DFllAA
x-77-nzt-ray: JJ3cUJmFe0k
x-cache: HIT
x-age: 6641932
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01O7UoEMQx8FV9gl0maNM399reC4gOs3R6IeHeooEIe3rbgR4a00zCTKYN5gS+Ur4AD/JA8nFbHKrySStzc3oVQfGyX99en+ryeTy2ys5KEcmFIGLIquqgAXkKJOocV4xCx4mY5SCMFOliTyGArAIqCeLi/nk0djOjniAxCX9kf+Bw2z6lUqnvdcjqy2E6ce8Jjk8ZadBvCvz/W88sMmzFqZWz+GXQsNK9eiMm2t69TjfgnEc6uaTD9tVJsaJUgcK68O2Tfj2ImrVrTala+AahPYjdNAQAA
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01O7UoEMQx8FV9gl0maNM399reC4gOs3R6IeHeooEIe3rbgR4a00zCTKYN5gS+Ur4AD/JA8nFbHKrySStzc3oVQfGyX99en+ryeTy2ys5KEcmFIGLIquqgAXkKJOocV4xCx4mY5SCMFOliTyGArAIqCeLi/nk0djOjniAxCX9kf+Bw2z6lUqnvdcjqy2E6ce8Jjk8ZadBvCvz/W88sMmzFqZWz+GXQsNK9eiMm2t69TjfgnEc6uaTD9tVJsaJUgcK68O2Tfj2ImrVrTala+AahPYjdNAQAA
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01O7UoEMQx8FV9gl0maNM399reC4gOs3R6IeHeooEIe3rbgR4a00zCTKYN5gS+Ur4AD/JA8nFbHKrySStzc3oVQfGyX99en+ryeTy2ys5KEcmFIGLIquqgAXkKJOocV4xCx4mY5SCMFOliTyGArAIqCeLi/nk0djOjniAxCX9kf+Bw2z6lUqnvdcjqy2E6ce8Jjk8ZadBvCvz/W88sMmzFqZWz+GXQsNK9eiMm2t69TjfgnEc6uaTD9tVJsaJUgcK68O2Tfj2ImrVrTala+AahPYjdNAQAA HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f7037eb554.482664813422595783%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f7037eb554.482664813422595783%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEQQy8iheYofLq7uy3/iooHqDtGUHE3UUFFXJ4M/OxmiKPgkpSDOYJPlG5Ag7wg3g4zY5ZeSbTuL27D6X46ufP95fxOp+Oa1SwuYZxY2iyYoYUNcBbGFGosDBpqEu1SgiykECCTVSz04ybyaIhHh+u96QEI7JuL4PAoUnwva15kTZoLKMXeWatC3GprT6turI165vwz+M4vSU1FWp5R0EcmFHTMidwwUR7y0DsU//4OY6IfxLl4ibbZJdVCvfeio+ytA5atVYtjYpxEV6Q7n4BEEPRVFYBAAA=
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEQQy8iheYofLq7uy3/iooHqDtGUHE3UUFFXJ4M/OxmiKPgkpSDOYJPlG5Ag7wg3g4zY5ZeSbTuL27D6X46ufP95fxOp+Oa1SwuYZxY2iyYoYUNcBbGFGosDBpqEu1SgiykECCTVSz04ybyaIhHh+u96QEI7JuL4PAoUnwva15kTZoLKMXeWatC3GprT6turI165vwz+M4vSU1FWp5R0EcmFHTMidwwUR7y0DsU//4OY6IfxLl4ibbZJdVCvfeio+ytA5atVYtjYpxEV6Q7n4BEEPRVFYBAAA=
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEQQy8iheYofLq7uy3/iooHqDtGUHE3UUFFXJ4M/OxmiKPgkpSDOYJPlG5Ag7wg3g4zY5ZeSbTuL27D6X46ufP95fxOp+Oa1SwuYZxY2iyYoYUNcBbGFGosDBpqEu1SgiykECCTVSz04ybyaIhHh+u96QEI7JuL4PAoUnwva15kTZoLKMXeWatC3GprT6turI165vwz+M4vSU1FWp5R0EcmFHTMidwwUR7y0DsU//4OY6IfxLl4ibbZJdVCvfeio+ytA5atVYtjYpxEV6Q7n4BEEPRVFYBAAA= HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f7037eeb17.746100673078824577%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f7037eeb17.746100673078824577%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEQQy8iheYoZJO+rHf+qugeICenl4QcXdRQYU6vD3zsZoiqQSqkihUJ5RJ4g1wQDmEwiJzwWw6ixvvHx5pwq96+Xx/aa/z+dSZoF6MrllhY4ruGKIMlEwXoQUNqpFWQvKsRnEGYkA9mA2WGXeTM4PPT7d7yoCCo24nKVAOH/G92UoMuUlbW43hqJZW0ZhyWrp19ex1E/792M5vY3QLkscegygxw1OmDuCKSXYaAe5d/fg5NfKfxDQWD1vnV6swhWU801Or6Hl1+LokNakxHY89LfIL/KtTjFYBAAA=
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEQQy8iheYoZJO+rHf+qugeICenl4QcXdRQYU6vD3zsZoiqQSqkihUJ5RJ4g1wQDmEwiJzwWw6ixvvHx5pwq96+Xx/aa/z+dSZoF6MrllhY4ruGKIMlEwXoQUNqpFWQvKsRnEGYkA9mA2WGXeTM4PPT7d7yoCCo24nKVAOH/G92UoMuUlbW43hqJZW0ZhyWrp19ex1E/792M5vY3QLkscegygxw1OmDuCKSXYaAe5d/fg5NfKfxDQWD1vnV6swhWU801Or6Hl1+LokNakxHY89LfIL/KtTjFYBAAA=
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEQQy8iheYoZJO+rHf+qugeICenl4QcXdRQYU6vD3zsZoiqQSqkihUJ5RJ4g1wQDmEwiJzwWw6ixvvHx5pwq96+Xx/aa/z+dSZoF6MrllhY4ruGKIMlEwXoQUNqpFWQvKsRnEGYkA9mA2WGXeTM4PPT7d7yoCCo24nKVAOH/G92UoMuUlbW43hqJZW0ZhyWrp19ex1E/792M5vY3QLkscegygxw1OmDuCKSXYaAe5d/fg5NfKfxDQWD1vnV6swhWU801Or6Hl1+LokNakxHY89LfIL/KtTjFYBAAA= HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f7037ef939.408055833948797903%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f7037ef939.408055833948797903%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA02PW0oEMRBFt+IGuqlnUjXffjuguIB0ugdEnBEdUKEWb6XBRy5JTsKtugkB0QQ+YbkBOIAf2MNxdpiFZlSJu+N9CMZHe72+PfXn+XLeojgpSigZgUSFogppMgC3UMRkqFYpRKp5TUANDkiRssigGQAwDOLx4XafmCKIXEdkIGTLPMDnKPPC1rGvvRU+kdQVqWTCsslGatqG8e+N/fKyh+0xxcro/HORmnDfckDs1N6/zj3in0WouPIg/S3FaMLaW1Ne+nKilZkNFysk3XHJf38D2Hdre00BAAA=
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA02PW0oEMRBFt+IGuqlnUjXffjuguIB0ugdEnBEdUKEWb6XBRy5JTsKtugkB0QQ+YbkBOIAf2MNxdpiFZlSJu+N9CMZHe72+PfXn+XLeojgpSigZgUSFogppMgC3UMRkqFYpRKp5TUANDkiRssigGQAwDOLx4XafmCKIXEdkIGTLPMDnKPPC1rGvvRU+kdQVqWTCsslGatqG8e+N/fKyh+0xxcro/HORmnDfckDs1N6/zj3in0WouPIg/S3FaMLaW1Ne+nKilZkNFysk3XHJf38D2Hdre00BAAA=
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA02PW0oEMRBFt+IGuqlnUjXffjuguIB0ugdEnBEdUKEWb6XBRy5JTsKtugkB0QQ+YbkBOIAf2MNxdpiFZlSJu+N9CMZHe72+PfXn+XLeojgpSigZgUSFogppMgC3UMRkqFYpRKp5TUANDkiRssigGQAwDOLx4XafmCKIXEdkIGTLPMDnKPPC1rGvvRU+kdQVqWTCsslGatqG8e+N/fKyh+0xxcro/HORmnDfckDs1N6/zj3in0WouPIg/S3FaMLaW1Ne+nKilZkNFysk3XHJf38D2Hdre00BAAA= HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f7037f11e8.969290362197100527%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f7037f11e8.969290362197100527%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
reapinject.com/pixel/purst?dl=0&th=0&sc=0&rs=1697&rd=1697&fd=643&bv=22.8.v.1&tmpl=70
173.233.137.52200 OK 0 B URL HTTP/1.1 reapinject.com/pixel/purst?dl=0&th=0&sc=0&rs=1697&rd=1697&fd=643&bv=22.8.v.1&tmpl=70
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1697&rd=1697&fd=643&bv=22.8.v.1&tmpl=70 HTTP/1.1
Host: reapinject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
s3t3d2y8.afcdn.net/library/692514/72928a7cad8198b3e9ab14a2f0220601aff56a07.jpg
185.76.9.22200 OK 26 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/692514/72928a7cad8198b3e9ab14a2f0220601aff56a07.jpg
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 316e02345cdd5d4167b5a17253fd855d
72928a7cad8198b3e9ab14a2f0220601aff56a07
c7b35046dc527d4f6167ea21967c71800a5bbb46b52d647f48294c61dc46f0ad
GET /library/692514/72928a7cad8198b3e9ab14a2f0220601aff56a07.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: image/jpeg
content-length: 25606
last-modified: Thu, 22 Oct 2020 17:10:55 GMT
etag: "5f91bd1f-6406"
expires: Wed, 30 Aug 2023 14:54:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416416
server: CDN77-Turbo
x-77-nzt: AblMCRTh/BH/o64VAA
x-77-nzt-ray: J8FjWPAqsfM
x-cache: HIT
x-age: 1420963
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/551406/71b846cedf3bcfb9da16bcea8b56802424beacbd.jpg
185.76.9.22200 OK 20 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/551406/71b846cedf3bcfb9da16bcea8b56802424beacbd.jpg
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash b06ffaf9182429e0b597f59e84c5eb11
71b846cedf3bcfb9da16bcea8b56802424beacbd
4365de2e53c5d9770a818e6a4fd94454c7490ea5e9b10a1fc994f211499341e3
GET /library/551406/71b846cedf3bcfb9da16bcea8b56802424beacbd.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: image/jpeg
content-length: 19915
last-modified: Wed, 08 Jun 2022 05:29:20 GMT
etag: "62a033b0-4dcb"
expires: Fri, 30 Jun 2023 11:15:34 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688945543
server: CDN77-Turbo
x-77-nzt: AblMCRTlOPD//OZZAA
x-77-nzt-ray: gZgPgWPXjjE
x-cache: HIT
x-age: 5891836
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/692514/86b9d1d123aa03a62d60845e0fa8135cce3d696f.jpg
185.76.9.22200 OK 25 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/692514/86b9d1d123aa03a62d60845e0fa8135cce3d696f.jpg
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 5763897785e578a5b08a4ae789e90fce
86b9d1d123aa03a62d60845e0fa8135cce3d696f
f29442007cb5e45fbc1f7a37aa5b38e7ec90a0bc800a49156a5daa5252dbcd25
GET /library/692514/86b9d1d123aa03a62d60845e0fa8135cce3d696f.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: image/jpeg
content-length: 25232
last-modified: Thu, 22 Oct 2020 17:15:51 GMT
etag: "5f91be47-6290"
expires: Wed, 30 Aug 2023 14:54:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416548
server: CDN77-Turbo
x-77-nzt: AblMCRTpQLb/H64VAA
x-77-nzt-ray: zz+asYTt4og
x-cache: HIT
x-age: 1420831
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/692514/256a97246e3c156df59d7612a801981e4d7b6f60.jpg
185.76.9.22200 OK 21 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/692514/256a97246e3c156df59d7612a801981e4d7b6f60.jpg
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 87df1254be7028626bec8e98533e593b
256a97246e3c156df59d7612a801981e4d7b6f60
b3fca07dd0f9d11beec78730576211dbb96b88a74388c1b45fa0bb39d9c08668
GET /library/692514/256a97246e3c156df59d7612a801981e4d7b6f60.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: image/jpeg
content-length: 21070
last-modified: Thu, 22 Oct 2020 16:57:07 GMT
etag: "5f91b9e3-524e"
expires: Wed, 30 Aug 2023 14:54:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416436
server: CDN77-Turbo
x-77-nzt: AblMCRSY0Rf/j64VAA
x-77-nzt-ray: ikNt8a+SaLw
x-cache: HIT
x-age: 1420943
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/702594/2b7b3b156a813a32eb2a87cb0ea65ed5bfd670c4.jpg
185.76.9.22200 OK 30 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/702594/2b7b3b156a813a32eb2a87cb0ea65ed5bfd670c4.jpg
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 2de4908f50cfadaedcb2a063c02c32d0
2b7b3b156a813a32eb2a87cb0ea65ed5bfd670c4
70f5e038174bbc6f5978450ed16aee416b306f2bc2f8461876af40bebde4c8af
GET /library/702594/2b7b3b156a813a32eb2a87cb0ea65ed5bfd670c4.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: image/jpeg
content-length: 29946
last-modified: Tue, 16 Mar 2021 14:48:51 GMT
etag: "6050c553-74fa"
expires: Fri, 30 Jun 2023 18:51:40 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195272
server: CDN77-Turbo
x-77-nzt: AblMCRTw1BT/u1llAA
x-77-nzt-ray: 90hQcEKNaK8
x-cache: HIT
x-age: 6642107
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/702594/34164b445eb4bce210a5a91f15bffbab97851545.jpg
185.76.9.22200 OK 22 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/702594/34164b445eb4bce210a5a91f15bffbab97851545.jpg
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 94x94, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 9a2f644a3c71dddca9d9b40704c0fc09
34164b445eb4bce210a5a91f15bffbab97851545
f129f4d7a34fc05f5cb95b534d574fc27ae8ee5b8ba1bdc05d2395c95e2161ee
GET /library/702594/34164b445eb4bce210a5a91f15bffbab97851545.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: image/jpeg
content-length: 21927
last-modified: Tue, 16 Mar 2021 14:48:51 GMT
etag: "6050c553-55a7"
expires: Fri, 30 Jun 2023 16:51:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195423
server: CDN77-Turbo
x-77-nzt: AblMCRRrht3/JFllAA
x-77-nzt-ray: 47Axl6iufLM
x-cache: HIT
x-age: 6641956
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/702594/832b1e5f844247f9d790506842b372edfa4619ab.jpg
185.76.9.22200 OK 26 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/702594/832b1e5f844247f9d790506842b372edfa4619ab.jpg
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 2fef2cc084550c6874ddbf0cb190666f
832b1e5f844247f9d790506842b372edfa4619ab
a2bd40815c40e5e49cb8dfa8513059f34daaf6eda39914671a382f4dbde83101
GET /library/702594/832b1e5f844247f9d790506842b372edfa4619ab.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: image/jpeg
content-length: 25662
last-modified: Tue, 16 Mar 2021 14:48:52 GMT
etag: "6050c554-643e"
expires: Fri, 30 Jun 2023 12:58:12 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195447
server: CDN77-Turbo
x-77-nzt: AblMCRQNDlz/DFllAA
x-77-nzt-ray: l7HQnlb39zk
x-cache: HIT
x-age: 6641932
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01QbUoFMQy8ihfYMvnqNu+3/lVQPMDa3QcivicqqJDDm66gdmiTCRNmKIN5gk9UL4AD/CAeTsVRlAuZxvXNbSjFx/Ly/vrYn8r5tMUMNtcwbgxNVs2QogZ4CyMKFRYmDXWZbUYLspBAgk1Us1LB1WTREPd3l/ulBCPyHZZB4NAk+BxrXqV16mtfqhxZ55W4zm1+2HRja7YM4V/Gfn5OaiqUzlAQBwqa12Gxx/jBRHvJg9i75e3r1CP+SZSrm4zOflcpjr6Oae+8VXaXuq7SXLb8CMpw/g3zlD3hVgEAAA==
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01QbUoFMQy8ihfYMvnqNu+3/lVQPMDa3QcivicqqJDDm66gdmiTCRNmKIN5gk9UL4AD/CAeTsVRlAuZxvXNbSjFx/Ly/vrYn8r5tMUMNtcwbgxNVs2QogZ4CyMKFRYmDXWZbUYLspBAgk1Us1LB1WTREPd3l/ulBCPyHZZB4NAk+BxrXqV16mtfqhxZ55W4zm1+2HRja7YM4V/Gfn5OaiqUzlAQBwqa12Gxx/jBRHvJg9i75e3r1CP+SZSrm4zOflcpjr6Oae+8VXaXuq7SXLb8CMpw/g3zlD3hVgEAAA==
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01QbUoFMQy8ihfYMvnqNu+3/lVQPMDa3QcivicqqJDDm66gdmiTCRNmKIN5gk9UL4AD/CAeTsVRlAuZxvXNbSjFx/Ly/vrYn8r5tMUMNtcwbgxNVs2QogZ4CyMKFRYmDXWZbUYLspBAgk1Us1LB1WTREPd3l/ulBCPyHZZB4NAk+BxrXqV16mtfqhxZ55W4zm1+2HRja7YM4V/Gfn5OaiqUzlAQBwqa12Gxx/jBRHvJg9i75e3r1CP+SZSrm4zOflcpjr6Oae+8VXaXuq7SXLb8CMpw/g3zlD3hVgEAAA== HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226323f70382fe86.44322388222037609%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f70382fe86.44322388222037609%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEQQy8iheYppJOutP7rb8KigeYfiyIuLuooEIOb898rKbIo0KFCoN5QVko3QAHlEMsXigUBOFAKn7/8OhC/rVePt9f2ms4n4ZnsBZxZWPIZEkVU2RAMVcil8iR2VxKzGpiTurRMcEaRWangLtF3eDPT7d70gTDZ90sncAuk+B7OyspWqPW25rikSV34pQt1yGD1XTdhH8/tvPbpCqRpjMExI4AK+o8gSsW2tsM+D6tHz+n5v5PIpyKxm3S6yl5PVKO1FHNeh+1jso2V3X0VTGs/wJAdiEqVgEAAA==
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEQQy8iheYppJOutP7rb8KigeYfiyIuLuooEIOb898rKbIo0KFCoN5QVko3QAHlEMsXigUBOFAKn7/8OhC/rVePt9f2ms4n4ZnsBZxZWPIZEkVU2RAMVcil8iR2VxKzGpiTurRMcEaRWangLtF3eDPT7d70gTDZ90sncAuk+B7OyspWqPW25rikSV34pQt1yGD1XTdhH8/tvPbpCqRpjMExI4AK+o8gSsW2tsM+D6tHz+n5v5PIpyKxm3S6yl5PVKO1FHNeh+1jso2V3X0VTGs/wJAdiEqVgEAAA==
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA01OW0oEQQy8iheYppJOutP7rb8KigeYfiyIuLuooEIOb898rKbIo0KFCoN5QVko3QAHlEMsXigUBOFAKn7/8OhC/rVePt9f2ms4n4ZnsBZxZWPIZEkVU2RAMVcil8iR2VxKzGpiTurRMcEaRWangLtF3eDPT7d70gTDZ90sncAuk+B7OyspWqPW25rikSV34pQt1yGD1XTdhH8/tvPbpCqRpjMExI4AK+o8gSsW2tsM+D6tHz+n5v5PIpyKxm3S6yl5PVKO1FHNeh+1jso2V3X0VTGs/wJAdiEqVgEAAA== HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226323f70383ccc5.806155863080124769%22%3B%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226323f70383ccc5.806155863080124769%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Sun, 15 Sep 2024 04:09:39 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aaad3a26f84f60e985a684b5a242e6c2
59829cf69e790b44720a7091c4edc20553976f71
f2ed2f495273196197f166d9b932c52eaad079cbc12e010f8ea85922ac82f48c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F2ED2F495273196197F166D9B932C52EAAD079CBC12E010F8EA85922AC82F48C"
Last-Modified: Wed, 14 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3915
Expires: Fri, 16 Sep 2022 05:14:54 GMT
Date: Fri, 16 Sep 2022 04:09:39 GMT
Connection: keep-alive
cdn.cloudimagesb.com/cti/ce/49/8f/ce498fda4d257b5536c0602a97b1b054/1663164642.gif
45.133.44.9200 OK 18 kB URL HTTP/2 cdn.cloudimagesb.com/cti/ce/49/8f/ce498fda4d257b5536c0602a97b1b054/1663164642.gif
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 300 x 250\012- data
Hash b28118fadfb79b2b315fb5ddab219c98
21dc09b7815006f7ac90414117e6d41ef963b04f
1e9cec97d74dbb42ae809f43289239e98ffd9e021a0ec5164536195477690353
GET /cti/ce/49/8f/ce498fda4d257b5536c0602a97b1b054/1663164642.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cudgelridge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:39 GMT
content-type: image/gif
content-length: 17764
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:10:50 GMT
etag: "6321e0ea-4564"
expires: Sun, 18 Sep 2022 04:09:39 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
samp.waptrick.org/imgs/htmlcssv11/newheader_sprite.png
162.251.163.98200 OK 7.7 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/newheader_sprite.png
IP 162.251.163.98:0
File type PNG image data, 132 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash c69713a312d1b997f56a3cb735d20c18
e5cf3bfddfe63e46bae6878a3822b60df05708ac
1283d6887d31cbf075e56f03e88b9300ef4a5a1504203880046b7189b4e2dcef
GET /imgs/htmlcssv11/newheader_sprite.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 18 Apr 2013 10:39:32 GMT
Accept-Ranges: bytes
ETag: "0cadd2213cce1:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 7735
samp.waptrick.org/imgs/htmlcssv11/white_transparent_bg.png
162.251.163.98200 OK 156 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/white_transparent_bg.png
IP 162.251.163.98:0
File type PNG image data, 50 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash 393837b5c8fb68fcb4d40762f47409ad
78a9a294025c862052fe164d785b2687cbdbdc7b
2bfe590cdd9bc99659992219cc6ece86327ffcb6e66ab95cd0e04098708467a8
GET /imgs/htmlcssv11/white_transparent_bg.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 13 Jul 2012 08:36:56 GMT
Accept-Ranges: bytes
ETag: "0419a9d260cd1:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 156
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19368
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:09:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19368
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:09:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19368
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:09:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19368
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 04:09:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hhh1q_MrZVAaRWwmc1IuJbL3KhhwwHQgceaL15okbg4NvKJlWfUjyA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:02:34 GMT
age: 22025
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 512280055633fcce9abc7d11a9816a24
de5c3e010fca76659455a144875a52c25fa72bdd
435eadb36830928b20d4cf8ead62134b75bd0ed3228489d9fdee66450bcbeaed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13536
x-amzn-requestid: 5533b257-1558-472b-aeb9-8207a78e1110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDzFa4IAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb1-05d0dfde7a488ed97d2a40d5;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aCCBUNe1NErAN4RiVGCdh-sBxSnMm-XfcFzE-h8IcCq6W1Om-UX45g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:46 GMT
age: 23033
etag: "de5c3e010fca76659455a144875a52c25fa72bdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4f3e6b013d785036c9b9c16aef3404f
28bf10400e47ad48eee5db04829b88340e021840
98596627e914528b177b8a3d2be8766bdf210c62415961ab99afefa465440819
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbd68450-8c97-4e9a-a798-8484ec30f381.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8854
x-amzn-requestid: ae78dca7-cd78-40ad-8ef3-5b287d99b0e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YO1suGFuoAMFptg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631c3651-12f3fedb07f856af06e8b1e5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 07:01:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JW4h9nBwMpVgCeegH2wkBEY0xmBuf4LpTQVaDU47Zb8Z4IVkdy0oHg==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:56:40 GMT
age: 22379
etag: "28bf10400e47ad48eee5db04829b88340e021840"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e3eca0d-da18-4b3c-8625-afa9f187d0e3.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e3eca0d-da18-4b3c-8625-afa9f187d0e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8bedb04287b8f09d30fed0ae386b9bcc
2b8a6de0faac5c1a99b48c28da9c05f520ef6add
cec3955f3330184ace4388b7c00262b52c9ca43e9ece6fb8f2fdec2ee9e53a9e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8e3eca0d-da18-4b3c-8625-afa9f187d0e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4955
x-amzn-requestid: e7c21397-14e0-42fd-86f3-3f1e6940da8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0zG1uIAMF_mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b51-386abef75b6435a0656e86cd;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: psbU0gPXDKEAq7hBKNMHHjMm7icXZ2WbJZ6xd0CeXGdue92n5shrHg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:02:34 GMT
age: 22025
etag: "2b8a6de0faac5c1a99b48c28da9c05f520ef6add"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ac817a0-279c-44ad-92b0-a799997b91ed.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ac817a0-279c-44ad-92b0-a799997b91ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 918f9961aa6acc47b01feb731750d208
2029669d941625cb78a23b52cd6511af111c8591
1f8cfc977ecea3b3dba2992fd4e310f8d426be1316c467f516e5ed2332ecaf96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ac817a0-279c-44ad-92b0-a799997b91ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8843
x-amzn-requestid: 900d8c43-e1ac-44a8-a62e-eb2d236740ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVAAEGuIAMFwXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b99-2058e30e243cd2d40251ef91;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:39:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NM3FqdByJydwwqMENcrSxPZtTyRWBDECz5cBEWSUg1hIc2HteOTLDw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:51:06 GMT
age: 22713
etag: "2029669d941625cb78a23b52cd6511af111c8591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a4ed510756efe784c4ca84c61c4b5ba
10262867cfb19d3ba8f618e235d1a98531048f34
b5ba0de5ce381579e49e3e3c23244048fc8aac693ce0c977560f28b9a51f6a0b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e55a42-9f36-46db-9415-ab10753c0fb8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10163
x-amzn-requestid: 7c849e5d-468e-4f6a-ad44-c7995bfa81bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YYvuGFU5oAMF_Og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63202cc0-5376d2432c79a3146b6c29f4;Sampled=0
x-amzn-remapped-date: Tue, 13 Sep 2022 07:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: J5lOTqdLhgg3Hzfw3b86ScfLkODllGEA_y9xUSxBxBCS4sI5nAWKZQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 23:35:10 GMT
age: 16469
etag: "10262867cfb19d3ba8f618e235d1a98531048f34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
banquetunarmedgrater.com/advertisers.js
173.233.139.164200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 173.233.139.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Sep 2022 04:09:39 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2e3f528914be011ffe103a58408b1089
Strict-Transport-Security: max-age=0; includeSubdomains
samp.waptrick.org/special/imgs/arrow2.gif
162.251.163.98200 OK 12 kB URL HTTP/1.1 samp.waptrick.org/special/imgs/arrow2.gif
IP 162.251.163.98:0
File type GIF image data, version 89a, 41 x 43\012- data
Hash f8189d98cbf1b8071b0df6ab8e637d97
b50d92ab9ff465669c3fdc3eae879c68b7561ff2
199258e3d406ba3d92ea0d3286a3fb6b482c53719d30ada80fdf225854ed8575
GET /special/imgs/arrow2.gif HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/gif
Last-Modified: Tue, 26 Mar 2019 06:53:24 GMT
Accept-Ranges: bytes
ETag: "264949ba0e3d41:0"
Server: Microsoft-IIS/8.5
Date: Fri, 16 Sep 2022 04:09:37 GMT
Connection: close
Content-Length: 11840
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3f4ade9d9f40e6368e1b9b8badd1cc54
a0b49d7decec0ba76289b889d15d4c7e7e3f4103
f39d34cc00e36ed0b102355931c8856e1a7d4328701ff32cac5786c2ca9cba00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F39D34CC00E36ED0B102355931C8856E1A7D4328701FF32CAC5786C2CA9CBA00"
Last-Modified: Wed, 14 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3154
Expires: Fri, 16 Sep 2022 05:02:13 GMT
Date: Fri, 16 Sep 2022 04:09:39 GMT
Connection: keep-alive
reapinject.com/sbar.json?key=dafe7e98dace1e50d48969e5c8a626a4&uuid=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d%3A2%3A1
173.233.137.52200 OK 3.8 kB URL HTTP/1.1 reapinject.com/sbar.json?key=dafe7e98dace1e50d48969e5c8a626a4&uuid=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d%3A2%3A1
IP 173.233.137.52:0
File type JSON data\012- , ASCII text, with very long lines (5607), with no line terminators
Hash e8a5031ec89c9bf496d68eaea2df01cf
a021626eb65ec168abad683768a41f49a6cf7ad6
71a129b62800f7f00af9baaf206d765f0db9bf31f1055702ba14b86262f6be6e
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=dafe7e98dace1e50d48969e5c8a626a4&uuid=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d%3A2%3A1 HTTP/1.1
Host: reapinject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Sep 2022 04:09:40 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://waptrick.com
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15627934; expires=Sat, 17 Sep 2022 04:09:39 GMT; secure; SameSite=None
uid_id2=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d:2:1; expires=Fri, 23 Sep 2022 04:09:39 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Sep 2022 04:09:40 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Sep 2022 04:09:40 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 17 Sep 2022 04:09:40 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 17 Sep 2022 04:09:40 GMT; secure; SameSite=None
slecdafe7e98dace1e50d48969e5c8a626a4=[3364903]; expires=Fri, 16 Sep 2022 04:09:45 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5775dc9c4d463d29d5e19cdd7a1911d0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
reapinject.com/ren.gif?sid=H4sIAAAAAAAC%2F1SST28bRRjGZ9scEBwQqBxAAlkCCZCIu2uv1zY9VIQQFJH%2BUQuiN5idGTuDZ3dWMzu7Tk4RFVWP7hdAm8dJo0KEQOJKhZxKPeRUc8qBfAQkhAQXDshuhGEu7%2FvO8xx%2Bet73zq47JT4cPVm9orelUvRiq%2B7X3roVBJdqGzJ1w9qwE30WhZdqpni3G9X9t2sfCjbQFxt%2B4PuBH9TWpBE9Pbw4EyGzw25Q7%2Fr1sFEPWiGG5v%2BzdR4s9cCLU%2FIiJJ8uPfIuQLIJ0uT7VWEHuc7e%2BSBxiubaoOAHn6SDVJcpkkXbMx566cGZG9o%2BWXsIne7PcaGLf42xnBLv8UPE6cEZJOJib84ZK4gUMX8OZTGBUBNIOgHTtyH5EwIwjqvXkCb3r2pT0q2nKp2pU7L05x%2BQ5ZQs%2FXoBafLdipLD2k2tXC51ajHsVZDDCWR%2FgswdId8%2BB1kegeVfQnKCNKkg%2BckbvghavV6LLvMWi5ZDFraWO90gXmY85GHgtxsi4vNgpJxA9iZQYgRqz8FZD056cD0PLvOQ8JMaC4Kg7XNG%2FU6XsSZvizjifkDbvYAGftSBYzP2EfJsBKZGYGYHmdnBQI5g3M%2BwmxUs92BzgoJXKAVBaQlKSlBKgjInKItqnyvbsNV9rqyLg7PaOKvNaqzz%2Fi7d13lfpGQ3OyUvzAP7rfgaA3FS47Qn2qLb4ZSJQLR8Hna6UVe0WIdGjYiGsLKCtOdArYft2fLuPY9sVleeRUyPYNURmHwJ1L0KWo7bDR90cxx2fGynhyXNciPZoM50Aq4rZPkS8i1vV52Sl%2BcczVtvQrDjy5%2FHV6a%2FP%2FgbzFTITIUv5COCvro7vqFLsndDl5b8cC3LZSK36WypN3Oai%2FPffCS2Sm34%2BqodPXiPzYRZe%2FixsPkGTblM%2B5Z8uyI5F2ZNGybIT%2Bv2UxFfd3ZzxZnUZRvX319bTzIjrJU6nYDKKSGPj8HklDzz4%2F78Xl%2F56g6kmcC4Cok7JmcPUh%2BBZTuw2YLf6vMwauGJMw%2Blq8amES8%2BlSRQYjHTuIL9zxwv%2Bl17F33zGmh%2Be36mhalQqApUjWDd%2BXGemePLvzTnD7HyxrEy3l6sjLr3NFwrT2rtZtOnUbcVtNtUtOOw0elFAae0EUaNKKJN5HbKXv9r6R8AAAD%2F%2FwEAAP%2F%2FpHk7fHoEAAA%3D
173.233.137.52200 OK 7 B URL HTTP/1.1 reapinject.com/ren.gif?sid=H4sIAAAAAAAC%2F1SST28bRRjGZ9scEBwQqBxAAlkCCZCIu2uv1zY9VIQQFJH%2BUQuiN5idGTuDZ3dWMzu7Tk4RFVWP7hdAm8dJo0KEQOJKhZxKPeRUc8qBfAQkhAQXDshuhGEu7%2FvO8xx%2Bet73zq47JT4cPVm9orelUvRiq%2B7X3roVBJdqGzJ1w9qwE30WhZdqpni3G9X9t2sfCjbQFxt%2B4PuBH9TWpBE9Pbw4EyGzw25Q7%2Fr1sFEPWiGG5v%2BzdR4s9cCLU%2FIiJJ8uPfIuQLIJ0uT7VWEHuc7e%2BSBxiubaoOAHn6SDVJcpkkXbMx566cGZG9o%2BWXsIne7PcaGLf42xnBLv8UPE6cEZJOJib84ZK4gUMX8OZTGBUBNIOgHTtyH5EwIwjqvXkCb3r2pT0q2nKp2pU7L05x%2BQ5ZQs%2FXoBafLdipLD2k2tXC51ajHsVZDDCWR%2FgswdId8%2BB1kegeVfQnKCNKkg%2BckbvghavV6LLvMWi5ZDFraWO90gXmY85GHgtxsi4vNgpJxA9iZQYgRqz8FZD056cD0PLvOQ8JMaC4Kg7XNG%2FU6XsSZvizjifkDbvYAGftSBYzP2EfJsBKZGYGYHmdnBQI5g3M%2BwmxUs92BzgoJXKAVBaQlKSlBKgjInKItqnyvbsNV9rqyLg7PaOKvNaqzz%2Fi7d13lfpGQ3OyUvzAP7rfgaA3FS47Qn2qLb4ZSJQLR8Hna6UVe0WIdGjYiGsLKCtOdArYft2fLuPY9sVleeRUyPYNURmHwJ1L0KWo7bDR90cxx2fGynhyXNciPZoM50Aq4rZPkS8i1vV52Sl%2BcczVtvQrDjy5%2FHV6a%2FP%2FgbzFTITIUv5COCvro7vqFLsndDl5b8cC3LZSK36WypN3Oai%2FPffCS2Sm34%2BqodPXiPzYRZe%2FixsPkGTblM%2B5Z8uyI5F2ZNGybIT%2Bv2UxFfd3ZzxZnUZRvX319bTzIjrJU6nYDKKSGPj8HklDzz4%2F78Xl%2F56g6kmcC4Cok7JmcPUh%2BBZTuw2YLf6vMwauGJMw%2Blq8amES8%2BlSRQYjHTuIL9zxwv%2Bl17F33zGmh%2Be36mhalQqApUjWDd%2BXGemePLvzTnD7HyxrEy3l6sjLr3NFwrT2rtZtOnUbcVtNtUtOOw0elFAae0EUaNKKJN5HbKXv9r6R8AAAD%2F%2FwEAAP%2F%2FpHk7fHoEAAA%3D
IP 173.233.137.52:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1SST28bRRjGZ9scEBwQqBxAAlkCCZCIu2uv1zY9VIQQFJH%2BUQuiN5idGTuDZ3dWMzu7Tk4RFVWP7hdAm8dJo0KEQOJKhZxKPeRUc8qBfAQkhAQXDshuhGEu7%2FvO8xx%2Bet73zq47JT4cPVm9orelUvRiq%2B7X3roVBJdqGzJ1w9qwE30WhZdqpni3G9X9t2sfCjbQFxt%2B4PuBH9TWpBE9Pbw4EyGzw25Q7%2Fr1sFEPWiGG5v%2BzdR4s9cCLU%2FIiJJ8uPfIuQLIJ0uT7VWEHuc7e%2BSBxiubaoOAHn6SDVJcpkkXbMx566cGZG9o%2BWXsIne7PcaGLf42xnBLv8UPE6cEZJOJib84ZK4gUMX8OZTGBUBNIOgHTtyH5EwIwjqvXkCb3r2pT0q2nKp2pU7L05x%2BQ5ZQs%2FXoBafLdipLD2k2tXC51ajHsVZDDCWR%2FgswdId8%2BB1kegeVfQnKCNKkg%2BckbvghavV6LLvMWi5ZDFraWO90gXmY85GHgtxsi4vNgpJxA9iZQYgRqz8FZD056cD0PLvOQ8JMaC4Kg7XNG%2FU6XsSZvizjifkDbvYAGftSBYzP2EfJsBKZGYGYHmdnBQI5g3M%2BwmxUs92BzgoJXKAVBaQlKSlBKgjInKItqnyvbsNV9rqyLg7PaOKvNaqzz%2Fi7d13lfpGQ3OyUvzAP7rfgaA3FS47Qn2qLb4ZSJQLR8Hna6UVe0WIdGjYiGsLKCtOdArYft2fLuPY9sVleeRUyPYNURmHwJ1L0KWo7bDR90cxx2fGynhyXNciPZoM50Aq4rZPkS8i1vV52Sl%2BcczVtvQrDjy5%2FHV6a%2FP%2FgbzFTITIUv5COCvro7vqFLsndDl5b8cC3LZSK36WypN3Oai%2FPffCS2Sm34%2BqodPXiPzYRZe%2FixsPkGTblM%2B5Z8uyI5F2ZNGybIT%2Bv2UxFfd3ZzxZnUZRvX319bTzIjrJU6nYDKKSGPj8HklDzz4%2F78Xl%2F56g6kmcC4Cok7JmcPUh%2BBZTuw2YLf6vMwauGJMw%2Blq8amES8%2BlSRQYjHTuIL9zxwv%2Bl17F33zGmh%2Be36mhalQqApUjWDd%2BXGemePLvzTnD7HyxrEy3l6sjLr3NFwrT2rtZtOnUbcVtNtUtOOw0elFAae0EUaNKKJN5HbKXv9r6R8AAAD%2F%2FwEAAP%2F%2FpHk7fHoEAAA%3D HTTP/1.1
Host: reapinject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: u_pl=15627934; uid_id2=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdafe7e98dace1e50d48969e5c8a626a4=[3364903]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Sep 2022 04:09:40 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8fa527b2cf4c365a0270440b6c5104d3
Strict-Transport-Security: max-age=0; includeSubdomains
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1c5a90b907ba2e50b259b39b49caf6d3
287e01d274686c854e1174c2bbc33c8d57a5241e
78b8edd5748f0a5308279b2a084c87d90080829db82738205be3a1977337a0a9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "78B8EDD5748F0A5308279B2A084C87D90080829DB82738205BE3A1977337A0A9"
Last-Modified: Thu, 15 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6141
Expires: Fri, 16 Sep 2022 05:52:01 GMT
Date: Fri, 16 Sep 2022 04:09:40 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1c5a90b907ba2e50b259b39b49caf6d3
287e01d274686c854e1174c2bbc33c8d57a5241e
78b8edd5748f0a5308279b2a084c87d90080829db82738205be3a1977337a0a9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "78B8EDD5748F0A5308279B2A084C87D90080829DB82738205BE3A1977337A0A9"
Last-Modified: Thu, 15 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6141
Expires: Fri, 16 Sep 2022 05:52:01 GMT
Date: Fri, 16 Sep 2022 04:09:40 GMT
Connection: keep-alive
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/index.html
172.67.74.218200 OK 427 B URL HTTP/2 cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/index.html
IP 172.67.74.218:0
File type HTML document text\012- HTML document, ASCII text
Hash 8693070f0adf83df6bb1cb58b14baf71
d465d54050430256e7faac3a5e5c1c5767fa85e9
3ac43eb1b36509f20c611a6c95cec9101245835a58910dea433c7270e16fecd6
GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:40 GMT
content-type: text/html
last-modified: Wed, 09 Feb 2022 11:25:40 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 502
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X1cLB4DlFgSUt%2FBsgf50Qax9j6uigiQaoW35rGe5kxIT0g60W3zMgf%2Bs2Pwl46IAKoenhuEqZD5o5vyAWYllfckUraSulPDK6Y41u669yuUUiNf0LhVFichWy85P5FeqLQGhROk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b6bf7acff61bfa-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/style.css
172.64.134.27200 OK 3.1 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/style.css
IP 172.64.134.27:0
Hash 4a30d4af2ec6ae1f4b727e637ec93ad2
275b9e2bd7366f8d23dcc3fa0e8cbbec383e2256
6365f7f90af8ab567c9234b8c7af8d528f19a69e705fafb0b2393ccc095c5628
GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:40 GMT
content-type: text/css
last-modified: Wed, 09 Feb 2022 11:25:27 GMT
etag: W/"6203a4a7-2751"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 508095
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GGKFysTHPvPbYKWW5xdLLRrAJYA5BGoAcqrDvClhWyp5SavqN7bhImAIZ01Ej6I4a1MEB5OSSKpEiy5%2B4vhYSpP23n9gCMJFlIdnYSBSEYXLiKMRbnK%2F30%2BKK1xJngIwJr4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b6bf7b6b887773-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=0&pk=bf0d7612e94ed920aec918d8bc477e4f&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4
192.243.61.227200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=0&pk=bf0d7612e94ed920aec918d8bc477e4f&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=0&pk=bf0d7612e94ed920aec918d8bc477e4f&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 16 Sep 2022 04:09:40 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a1491365e0b5b41fa0949108e8b0187f
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=0&pk=dafe7e98dace1e50d48969e5c8a626a4&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4
192.243.61.227200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=0&pk=dafe7e98dace1e50d48969e5c8a626a4&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d&eb=da08d6844107154a138edda4653a0f4b&te=f6ce28b9ffd697cd2ee52a12f20448bb&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.29&b_frame=0&pk=dafe7e98dace1e50d48969e5c8a626a4&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 16 Sep 2022 04:09:40 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1bdfc8e501755c9cd8bb27fecbd95800
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/animate.css
172.64.134.27200 OK 88 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/animate.css
IP 172.64.134.27:0
Hash 3377daf01acffa88df19b7bac28681df
90127244a899d7dd6134a9d2d47e7523e3fe5b6a
6907514a178931e437b558916cf27d6834efbba7ee4fd12bce23c5856e1711c4
GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/css/animate.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:40 GMT
content-type: text/css
last-modified: Mon, 17 Jan 2022 14:25:59 GMT
etag: W/"61e57c77-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 508095
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MZZlbMAT4FEfxXvzoGhXRea27YNCX5ajjXOGBVQiqaII7U4AETQmz%2FTFel7QZFaFnUej5ysGi7vnncHqNb7z273Jr%2B24I%2F97nd0CXC8hjTjQqMFor5MyDoGo%2FXudnZTYazA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b6bf7b6b8d7773-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 344 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1c5a90b907ba2e50b259b39b49caf6d3
287e01d274686c854e1174c2bbc33c8d57a5241e
78b8edd5748f0a5308279b2a084c87d90080829db82738205be3a1977337a0a9
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "78B8EDD5748F0A5308279B2A084C87D90080829DB82738205BE3A1977337A0A9"
Last-Modified: Thu, 15 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6141
Expires: Fri, 16 Sep 2022 05:52:01 GMT
Date: Fri, 16 Sep 2022 04:09:40 GMT
Connection: keep-alive
reapinject.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fcss%2Fstyle.css&l=10065&fd=106
173.233.137.52200 OK 0 B URL HTTP/1.1 reapinject.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fcss%2Fstyle.css&l=10065&fd=106
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fcss%2Fstyle.css&l=10065&fd=106 HTTP/1.1
Host: reapinject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Sep 2022 04:09:40 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
reapinject.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fjs%2Fscript.js&l=468&fd=104
173.233.137.52200 OK 0 B URL HTTP/1.1 reapinject.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fjs%2Fscript.js&l=468&fd=104
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fflip_icon%2F16%2Fjs%2Fscript.js&l=468&fd=104 HTTP/1.1
Host: reapinject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Sep 2022 04:09:40 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/js/script.js
172.64.134.27200 OK 257 B URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/js/script.js
IP 172.64.134.27:0
Hash 8e903260935524c1f5eb8e07417fc653
2eba6224960e767d7d9ceb5641fa06204551f668
b7a9e40afd034f0fe6d1fce20d4e469416b5ca9208593096fe2cc61dd441e44f
GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:40 GMT
content-type: application/javascript
last-modified: Mon, 17 Jan 2022 14:40:54 GMT
etag: W/"61e57ff6-1e8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 508095
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=863fzQRfOcvhtjGoxScN2o44EBSoYyc6d2iKMU9VT7CQ%2BNg6gqucG9l%2Bi5lub3CnuedKOD5fuWFhwAtb8nkJ%2BtG4DkXKyZAIrdz4V3NDIe3DdsI576yWP6%2B6c4WAaYyOfc4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b6bf7b6b907773-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 14 Sep 2022 20:15:32 GMT
Expires: Thu, 14 Sep 2023 20:15:32 GMT
Cache-Control: public, max-age=31536000
Age: 114848
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 14 Sep 2022 20:15:32 GMT
Expires: Thu, 14 Sep 2023 20:15:32 GMT
Cache-Control: public, max-age=31536000
Age: 114848
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
reapinject.com/impr.gif?sid=H4sIAAAAAAAC%2F1SSzWtcVRjGz22zEF2IUhcKyoCCCmZ678ydL7soxhgJph%2B0it3p%2BbqT45y553LOPXMnWQWLpcvpPyA3zyQN1SAKbi0yKXSRVcdVFuZPEETQjQuZaXD0bN73Pc%2Bz%2BPG8751df0pCeHqyesVsK63pxUY1rLx1K4ouVTZU6oeVYbv5WTO%2BVLGDdzvNavh25UPJe%2BZiLYzCMAqjypqyMjHDizMRKjvsRNVOWI1r1agRY2j%2FPzsfwNEAYnBKXoQS06VHwQUoPkHa%2F35Vul5usnc%2B6HtNc2MxEAefpL3UFCn6izaxAZL04MwN456sPYRJ9%2Be4MIN%2FjUxNSfD4IVh6cAYJNtibczINmYKJ51AMJpB6AkUn4OY2lHhCAC5w9RrS%2Fv2rxhZ066lKZ%2BqULP35B1QxJUu%2FXkDa%2F25Fq2HlptE%2BVyZ1GCYl1HAC1Z0g80fIt89BFUfg%2BZdQgiDtl1Di5I1QRo0kadBl0eDN5ZjHjeV2J2LLXMQijsJWTTbFPBilJlDJBFqOQN05eBfAqwA%2BCeCzAH1xUuFRFLVCwWnY7nBeFy3JmiKMaCuJaBQ22%2FB8xj5Cno3A9Qjc7iCzO%2BipEaz%2FGW6zhBMBXE4wECUKSVA4goISFIqgyAmKQbkvtKu58r7QzrPorNbOar0cm7y7S%2FdN3pUp2c1OyQvzwH4bfI2ePKkImsiW7LQF5TKSjVDE7U6zIxu8TZu1Jo3hVAnlzoG6ANuz5d17HtmsrjwLRo%2Fg9BG4egnUvwpajFu1EHRzHLdDbKeHBc1yq3ivyk0fwpTI8iXkW8GuPiUvzznqt96E5MeXP2dXpr8%2F%2BBvclshsiS%2FUI4Kuvju%2BYQqyd8MUjvxwLctVX23T2VJv5jSX57%2F5SG4Vxor1VTd68B6fCbP28GPp8g2aCpV2Hfl2RQkh7ZqxXJKf1t2nkl33bnPF29RnG9ffX1vvZ1Y6p0w6AVVTQh4fg6speebH%2Ffm9vvLVHSg7gfUl%2Bv6YnD0ocwSe7cBlC35nzsPqhYdlAQpfjm2NLT61ItByMVNWwv1nZot%2B191F174Gmt%2Ben%2BnAlhjoElSP4Pz5cZ7Z48u%2F1OcPTAdjpm2wx7TV956G69RJpR6KFpOJbDEZN%2BJEcsEaDRbyhLO6aLc5cjflr%2F%2B19A8AAAD%2F%2FwEAAP%2F%2FJK3ulHoEAAA%3D
173.233.137.52200 OK 7 B URL HTTP/1.1 reapinject.com/impr.gif?sid=H4sIAAAAAAAC%2F1SSzWtcVRjGz22zEF2IUhcKyoCCCmZ678ydL7soxhgJph%2B0it3p%2BbqT45y553LOPXMnWQWLpcvpPyA3zyQN1SAKbi0yKXSRVcdVFuZPEETQjQuZaXD0bN73Pc%2Bz%2BPG8751df0pCeHqyesVsK63pxUY1rLx1K4ouVTZU6oeVYbv5WTO%2BVLGDdzvNavh25UPJe%2BZiLYzCMAqjypqyMjHDizMRKjvsRNVOWI1r1agRY2j%2FPzsfwNEAYnBKXoQS06VHwQUoPkHa%2F35Vul5usnc%2B6HtNc2MxEAefpL3UFCn6izaxAZL04MwN456sPYRJ9%2Be4MIN%2FjUxNSfD4IVh6cAYJNtibczINmYKJ51AMJpB6AkUn4OY2lHhCAC5w9RrS%2Fv2rxhZ066lKZ%2BqULP35B1QxJUu%2FXkDa%2F25Fq2HlptE%2BVyZ1GCYl1HAC1Z0g80fIt89BFUfg%2BZdQgiDtl1Di5I1QRo0kadBl0eDN5ZjHjeV2J2LLXMQijsJWTTbFPBilJlDJBFqOQN05eBfAqwA%2BCeCzAH1xUuFRFLVCwWnY7nBeFy3JmiKMaCuJaBQ22%2FB8xj5Cno3A9Qjc7iCzO%2BipEaz%2FGW6zhBMBXE4wECUKSVA4goISFIqgyAmKQbkvtKu58r7QzrPorNbOar0cm7y7S%2FdN3pUp2c1OyQvzwH4bfI2ePKkImsiW7LQF5TKSjVDE7U6zIxu8TZu1Jo3hVAnlzoG6ANuz5d17HtmsrjwLRo%2Fg9BG4egnUvwpajFu1EHRzHLdDbKeHBc1yq3ivyk0fwpTI8iXkW8GuPiUvzznqt96E5MeXP2dXpr8%2F%2BBvclshsiS%2FUI4Kuvju%2BYQqyd8MUjvxwLctVX23T2VJv5jSX57%2F5SG4Vxor1VTd68B6fCbP28GPp8g2aCpV2Hfl2RQkh7ZqxXJKf1t2nkl33bnPF29RnG9ffX1vvZ1Y6p0w6AVVTQh4fg6speebH%2Ffm9vvLVHSg7gfUl%2Bv6YnD0ocwSe7cBlC35nzsPqhYdlAQpfjm2NLT61ItByMVNWwv1nZot%2B191F174Gmt%2Ben%2BnAlhjoElSP4Pz5cZ7Z48u%2F1OcPTAdjpm2wx7TV956G69RJpR6KFpOJbDEZN%2BJEcsEaDRbyhLO6aLc5cjflr%2F%2B19A8AAAD%2F%2FwEAAP%2F%2FJK3ulHoEAAA%3D
IP 173.233.137.52:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1SSzWtcVRjGz22zEF2IUhcKyoCCCmZ678ydL7soxhgJph%2B0it3p%2BbqT45y553LOPXMnWQWLpcvpPyA3zyQN1SAKbi0yKXSRVcdVFuZPEETQjQuZaXD0bN73Pc%2Bz%2BPG8751df0pCeHqyesVsK63pxUY1rLx1K4ouVTZU6oeVYbv5WTO%2BVLGDdzvNavh25UPJe%2BZiLYzCMAqjypqyMjHDizMRKjvsRNVOWI1r1agRY2j%2FPzsfwNEAYnBKXoQS06VHwQUoPkHa%2F35Vul5usnc%2B6HtNc2MxEAefpL3UFCn6izaxAZL04MwN456sPYRJ9%2Be4MIN%2FjUxNSfD4IVh6cAYJNtibczINmYKJ51AMJpB6AkUn4OY2lHhCAC5w9RrS%2Fv2rxhZ066lKZ%2BqULP35B1QxJUu%2FXkDa%2F25Fq2HlptE%2BVyZ1GCYl1HAC1Z0g80fIt89BFUfg%2BZdQgiDtl1Di5I1QRo0kadBl0eDN5ZjHjeV2J2LLXMQijsJWTTbFPBilJlDJBFqOQN05eBfAqwA%2BCeCzAH1xUuFRFLVCwWnY7nBeFy3JmiKMaCuJaBQ22%2FB8xj5Cno3A9Qjc7iCzO%2BipEaz%2FGW6zhBMBXE4wECUKSVA4goISFIqgyAmKQbkvtKu58r7QzrPorNbOar0cm7y7S%2FdN3pUp2c1OyQvzwH4bfI2ePKkImsiW7LQF5TKSjVDE7U6zIxu8TZu1Jo3hVAnlzoG6ANuz5d17HtmsrjwLRo%2Fg9BG4egnUvwpajFu1EHRzHLdDbKeHBc1yq3ivyk0fwpTI8iXkW8GuPiUvzznqt96E5MeXP2dXpr8%2F%2BBvclshsiS%2FUI4Kuvju%2BYQqyd8MUjvxwLctVX23T2VJv5jSX57%2F5SG4Vxor1VTd68B6fCbP28GPp8g2aCpV2Hfl2RQkh7ZqxXJKf1t2nkl33bnPF29RnG9ffX1vvZ1Y6p0w6AVVTQh4fg6speebH%2Ffm9vvLVHSg7gfUl%2Bv6YnD0ocwSe7cBlC35nzsPqhYdlAQpfjm2NLT61ItByMVNWwv1nZot%2B191F174Gmt%2Ben%2BnAlhjoElSP4Pz5cZ7Z48u%2F1OcPTAdjpm2wx7TV956G69RJpR6KFpOJbDEZN%2BJEcsEaDRbyhLO6aLc5cjflr%2F%2B19A8AAAD%2F%2FwEAAP%2F%2FJK3ulHoEAAA%3D HTTP/1.1
Host: reapinject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: u_pl=15627934; uid_id2=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdafe7e98dace1e50d48969e5c8a626a4=[3364903]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Sep 2022 04:09:40 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b313d6dd559d16e3d23e623462a52686
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/img/close.svg
172.64.134.27200 OK 1.9 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/img/close.svg
IP 172.64.134.27:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Hash 64799e05c402e09d9061818c85d78361
4c9f951bafd17a84d8035d4763489513c3767a9b
0fb99b89c4e89e0f5c0716093e306507bc0fc4a3680f0677e9834f6658d64b60
GET /sb/notifications/utility/default/us/blog/Progamerage/flip_icon/16/img/close.svg HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Sep 2022 04:09:40 GMT
content-type: image/svg+xml
last-modified: Mon, 17 Jan 2022 14:26:00 GMT
etag: W/"61e57c78-415"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1184398
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dk3dO7%2BM1JDu9vbYYWFumzcqtl3apcPYu%2FWQGCdh73I8tzyy%2Bpe6fwhGObw1jjntr02wg7thfAndipwXcu4%2BJglA9iuDVY9UiTvB%2F9XZb60TbWLJEPjNUe%2B8W107bkRXCFU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74b6bf7babb47773-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
reapinject.com/pixel/sbs?c=1
173.233.137.52200 OK 0 B URL HTTP/1.1 reapinject.com/pixel/sbs?c=1
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: reapinject.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: u_pl=15627934; uid_id2=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdafe7e98dace1e50d48969e5c8a626a4=[3364903]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Sep 2022 04:09:41 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
waptrick.com/favicon.ico
104.36.23.153301 Moved Permanently 0 B IP 104.36.23.153:0
GET /favicon.ico HTTP/1.1
Host: waptrick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/en/free/mp3/Bere-Gratis/
Cookie: uuid=0x06a15a55be84cdf8; adsterra=Y; dom3ic8zudi28v8lr6fgphwffqoz0j6c=0e15ff5a-d5c6-4c45-891b-cd4d41072e6d%3A2%3A1; sb_main_dafe7e98dace1e50d48969e5c8a626a4=1; sb_count_dafe7e98dace1e50d48969e5c8a626a4=1; ppu_main_bf0d7612e94ed920aec918d8bc477e4f=1
HTTP/1.1 301 Moved Permanently
Server: Microsoft-IIS/7.5
Date: Fri, 16 Sep 2022 04:09:47 GMT
Content-type: text/html
Location: http://samp.waptrick.org/favicon.ico
Connection: close
Content-encoding: gzip
waptrick.mobi/en/free/mp3/Bere-Gratis
104.36.23.145301 Moved Permanently 0 B URL HTTP/1.1 waptrick.mobi/en/free/mp3/Bere-Gratis
IP 104.36.23.145:0
GET /en/free/mp3/Bere-Gratis HTTP/1.1
Host: waptrick.mobi
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Microsoft-IIS/7.5
Date: Fri, 16 Sep 2022 04:09:44 GMT
Content-type: text/html
Location: http://waptrick.one/en/free/mp3/bere-gratis
Connection: close
Content-encoding: gzip