Report - ddlvalley.me

Report Overview

Visitedpublic

2024-08-04 18:52:50

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Host Summary

Host	Rank	Sent	Received	IP
www.ddlvalley.me	278347	8.9 kB	369 kB	104.21.26.57
ddlvalley.me	243286	467 B	50 kB	104.21.26.57
	unknown	1.1 kB	348 B	108.181.41.161
r10.o.lencr.org	unknown	1.6 kB	4.4 kB	23.36.77.32
r11.o.lencr.org	unknown	327 B	887 B	23.36.76.226
sj.classisclawers.com	unknown	415 B	1.5 kB	23.109.170.189
static.cbox.ws	161241	433 B	17 kB	104.21.85.24
www7.cbox.ws	507537	1.6 kB	13 kB	108.181.41.161
images.ddlvalley.me	unknown	3.9 kB	894 kB	104.21.26.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-08-04	medium	classisclawers.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	From	Size	First Seen	Last Seen
	www.ddlvalley.me/	ScriptElement	3.3 kB	2024-08-19	2024-08-19
URL www.ddlvalley.me/ IP / ASN 104.21.26.57 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2024-08-19 Last Seen 2024-08-19 Times Seen 1 Size 3.3 kB (3254 bytes) MD5 fefd550057a244f0325097fafc766a7b SHA1 61d7472ff5c22ad7f366b2c469220151273300c3 SHA256 958c552ce19ed7f73996082e032089c5987f962fe22c7a147e1e893a0767c3c8 Format Code Loading...

	www.ddlvalley.me/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1	ScriptElement	19 kB	2024-03-13	2025-08-02
URL www.ddlvalley.me/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1 IP / ASN 104.21.26.57 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2024-03-13 Last Seen 2025-08-02 Times Seen 55134 Size 19 kB (18726 bytes) MD5 b976b651932bfd25b9ddb5b7693d88a7 SHA1 7fcb7cb5c11227f9213b1e08a07d0212209e1432 SHA256 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Format Code Loading...

	sj.classisclawers.com/rgJV706BpI0D/EMBLv	ScriptElement	0 B	0001-01-01	2025-08-02
URL sj.classisclawers.com/rgJV706BpI0D/EMBLv IP / ASN 23.109.170.189 #7979 SERVERS-COM Introduced by ScriptElement Embedded false Resource Info First Seen 0001-01-01 Last Seen 2025-08-02 Times Seen 5606239 Size 0 B (0 bytes) MD5 d41d8cd98f00b204e9800998ecf8427e SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Format Code Loading...

	www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main	ScriptElement	0 B	0001-01-01	2025-08-02
URL www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main IP / ASN 108.181.41.161 #40676 AS40676 Introduced by ScriptElement Embedded true Resource Info First Seen 0001-01-01 Last Seen 2025-08-02 Times Seen 5606239 Size 0 B (0 bytes) MD5 d41d8cd98f00b204e9800998ecf8427e SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Format Code Loading...

	www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.min.js	ScriptElement	93 kB	2023-03-12	2025-07-10
URL www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.min.js IP / ASN 104.21.26.57 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-12 Last Seen 2025-07-10 Times Seen 18 Size 93 kB (92555 bytes) MD5 0178077912744e0856babe0fddd9c2b1 SHA1 f227d0414158da8bd3df7005c8fb56751927453e SHA256 ee52e397628159745db0f6bb67c2de9b428c3d3b67533c945a3eb375c219de1a Format Code Loading...

	www.ddlvalley.me/	ScriptElement	169 B	2024-08-19	2024-08-19
URL www.ddlvalley.me/ IP / ASN 104.21.26.57 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2024-08-19 Last Seen 2024-08-19 Times Seen 1 Size 169 B (169 bytes) MD5 964e387c38f66a99b86fe5150e5aaeb8 SHA1 0dec70379049b4af39f7aed88feef14de9bc6b6e SHA256 377d55a692a4ae7119e3e492a94010247a4a18f64370ba0e0dc9b17765e5a43d Format Code Loading...

	unknown	ScriptElement	236 B	2024-08-19	2024-08-19
URL IP / ASN 0.0.0.0 #0 Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-19 Last Seen 2024-08-19 Times Seen 1 Size 236 B (236 bytes) MD5 f898cfa1a6824cdd0e3d28e9bd6cf538 SHA1 641368e37cae525ad55aed42464fafa6eac30bf5 SHA256 fd5a3db4fc63cdd8d050f6c65a9267a6255cc2732a605cd80918910253baf515 Format Code Loading...

	www.ddlvalley.me/	ScriptElement	820 B	2024-08-19	2024-08-19
URL www.ddlvalley.me/ IP / ASN 104.21.26.57 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2024-08-19 Last Seen 2024-08-19 Times Seen 1 Size 820 B (820 bytes) MD5 c3fa690e048ae19b2a5c341eba750599 SHA1 bce731b165353d826f1ca47e4534913a76f2c174 SHA256 a193efbdc0eb99c73b50c76fd4d5f68af99ffafd5efae7c5eaf704661e7f22a7 Format Code Loading...

	www.ddlvalley.me/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.8 kB	2024-08-19	2024-08-19
URL www.ddlvalley.me/cdn-cgi/challenge-platform/scripts/jsd/main.js IP / ASN 104.21.26.57 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2024-08-19 Last Seen 2024-08-19 Times Seen 1 Size 7.8 kB (7785 bytes) MD5 01f839b6b3055d84d1a17c9c59540081 SHA1 275d68de8fccc2123d2260ae38150548e3871787 SHA256 04270bf867355be4836e9dbb1bae84ffcca6d50cec5a7f3067073f34a80a89e2 Format Code Loading...

	static.cbox.ws/jsc/jsc_1593163307.js	ScriptElement	49 kB	2023-03-07	2025-07-31
URL static.cbox.ws/jsc/jsc_1593163307.js IP / ASN 104.21.85.24 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-07-31 Times Seen 39 Size 49 kB (48555 bytes) MD5 deba7955e8512c181f0755445dfe55d2 SHA1 1b4e673a0098713213a2a43fac601877a68e2a0e SHA256 4a0bfe840910b6f2622d2a9a11ff97a2e655facd7db8fa94633607fdc082a46a Format Code Loading...

	www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form	ScriptElement	0 B	0001-01-01	2025-08-02
URL www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form IP / ASN 108.181.41.161 #40676 AS40676 Introduced by ScriptElement Embedded true Resource Info First Seen 0001-01-01 Last Seen 2025-08-02 Times Seen 5606239 Size 0 B (0 bytes) MD5 d41d8cd98f00b204e9800998ecf8427e SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709 SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Format Code Loading...

	www.ddlvalley.me/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js	ScriptElement	890 B	2023-03-07	2025-07-31
URL www.ddlvalley.me/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js IP / ASN 104.21.26.57 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-07-31 Times Seen 789 Size 890 B (890 bytes) MD5 3a7b373af67acb42960573e8102cea01 SHA1 ace16912963355e393d455bc45742528a09aeb7c SHA256 9c01fb1b898505d38fd4bbf6060fd263bac9e0cb0cbeb0b4e1567618afb01f20 Format Code Loading...

	www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.cookie.min.js	ScriptElement	989 B	2023-03-07	2025-07-25
URL www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.cookie.min.js IP / ASN 104.21.26.57 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded false Resource Info First Seen 2023-03-07 Last Seen 2025-07-25 Times Seen 158 Size 989 B (989 bytes) MD5 bf3139efff7bbe9eece58391cdc52e32 SHA1 114ab1d8421151e8bffc6f31355e7853d8b08529 SHA256 3f1c66373abda331ee7a7e4bc6c7d15deb3e348696a20bb6662b3f4f425d49ac Format Code Loading...

	www.ddlvalley.me/	ScriptElement	921 B	2024-08-19	2024-08-19
URL www.ddlvalley.me/ IP / ASN 104.21.26.57 #13335 CLOUDFLARENET Introduced by ScriptElement Embedded true Resource Info First Seen 2024-08-19 Last Seen 2024-08-19 Times Seen 1 Size 921 B (921 bytes) MD5 5ae23959563e0bfede8d62b848df66b8 SHA1 7e00c3197fbba5876888816f93a1a706de26655a SHA256 39daa27358f0f9e6793954bc0ed6d11731eb8866c3f4758101b7a2b17a4c5f27 Format Code Loading...

HTTP Transactions (41)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-08-04

Last Seen2024-08-19

Times Seen13648

Size504 B (504 bytes)

MD5addc02313d62bf977d4b5dd463b48637

SHA149b5e37e2888a9db981bd54827c4f4c7b9f7b53a

SHA2569b553a61256a129f9c5c31614a702c4f0441a3f018cc2b3897ab2cc16e184eeb

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "9B553A61256A129F9C5C31614A702C4F0441A3F018CC2B3897AB2CC16E184EEB"
Last-Modified: Sat, 03 Aug 2024 18:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4706
Expires: Sun, 04 Aug 2024 20:10:49 GMT
Date: Sun, 04 Aug 2024 18:52:23 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-08-04

Last Seen2024-08-21

Times Seen24116

Size504 B (504 bytes)

MD5084406a853d82fa208410ee4bc78b67c

SHA11c6276ec2e9a0fa10937dc34d821a64633c7d16a

SHA2566d567507b5502a9e553e77b519b679e83b3a8a01896731cec08bd1da0699b379

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "6D567507B5502A9E553E77B519B679E83B3A8A01896731CEC08BD1DA0699B379"
Last-Modified: Sat, 03 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13477
Expires: Sun, 04 Aug 2024 22:37:00 GMT
Date: Sun, 04 Aug 2024 18:52:23 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-08-03

Last Seen2024-08-19

Times Seen30175

Size504 B (504 bytes)

MD58bd7201be8d12c4b511d2c5643b45dbc

SHA1f2ecb2ebafbf4f8d92f92007753001befcedc634

SHA25625cb2e6ad29d4503f32121fbe37e2b0f4ce64a7f6cb57233ebf16df5d6b78d53

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "25CB2E6AD29D4503F32121FBE37E2B0F4CE64A7F6CB57233EBF16DF5D6B78D53"
Last-Modified: Sat, 03 Aug 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5812
Expires: Sun, 04 Aug 2024 20:29:15 GMT
Date: Sun, 04 Aug 2024 18:52:23 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL

r10.o.lencr.org/

IP / ASN

23.36.77.32

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-08-04

Last Seen2024-08-21

Times Seen29425

Size504 B (504 bytes)

MD53653abf0951eea060f104ae59d60cf7c

SHA175790e8c59cb78c77ab522e7dc7140b62a046bb9

SHA256d059eeda67b64dd02259f5a9352df39cc808e3f9e03068a434e0f6486814893d

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "D059EEDA67B64DD02259F5A9352DF39CC808E3F9E03068A434E0F6486814893D"
Last-Modified: Sat, 03 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17506
Expires: Sun, 04 Aug 2024 23:44:09 GMT
Date: Sun, 04 Aug 2024 18:52:23 GMT
Connection: keep-alive

GET www.ddlvalley.me/wp-content/themes/ddlv/i/rss.gif

104.21.26.57

200 OK

149 B

URL

www.ddlvalley.me/wp-content/themes/ddlv/i/rss.gif

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeGIF image data, version 89a, 10 x 10

First Seen2024-08-04

Last Seen2024-10-04

Times Seen2

Size149 B (149 bytes)

MD537739014793fd5cf2777709bbb5909cc

SHA1ff844bd07fdfa23736a17996dd78cafbf509be27

SHA2562692df1e8a6c4a2faf902b39f84123b9b5faaa5a241ad50e24e7fd0e4f712140

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/themes/ddlv/i/rss.gif HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/gif
content-length: 149
last-modified: Tue, 02 Oct 2012 20:02:58 GMT
expires: Fri, 13 Jun 2025 10:59:01 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 4521203
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pdukvMwS6iPS6FV1OgQsVNyFqMTkdqe0Ogar4YxvOl9OGk1SBzunnyx4wD2mqNoNX42wKJQWKx4D5Isf3PYdtOSjg2JJ2YTczaOXaC6NorFPhyhYSqCodTxpRe4yC7CcaYjv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8cf9a656c6-OSL
alt-svc: h3=":443"; ma=86400

GET images.ddlvalley.me/images/19124830537944710524.jpg

104.21.26.57

200 OK

35 kB

URL

images.ddlvalley.me/images/19124830537944710524.jpg

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 500x120, components 3

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size35 kB (35270 bytes)

MD5527b9d11ba251b01ecf1447c333b36b5

SHA1223260240b381da737e7f48708f4ebb4afcfca42

SHA256261ba64a996f20aff037cc1563f56036ae6e112602a61c6b7767d90dc6d48780

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /images/19124830537944710524.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 35270
last-modified: Mon, 06 Dec 2021 18:12:11 GMT
expires: Sat, 05 Jul 2025 16:11:32 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2601652
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HCqN8eHltfNUHz1B8QI3xFY9BEkn%2BrnGBJTehBekrM2eWVV2sPZsdhV88%2B%2BkLefjFwYHaLDYOuOJJrRhtAd2DIlGma9Zv2DVJwe97K5eVskiXnAlcFFy2e4R5PubzV9sHkM1vqzV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09ba56c6-OSL
alt-svc: h3=":443"; ma=86400

GET ddlvalley.me/

104.21.26.57

301 Moved Permanently

49 kB

URL

ddlvalley.me/

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typedata

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size49 kB (48954 bytes)

MD58a4980a772846288274e13d91af1834e

SHA1593b605021b267cffe850a5156f6cbf22f1aa1e8

SHA25684e99000b9c038bd2dce4f877125a5d617a1562fa9a51200943fcab734cac56a

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET / HTTP/1.1
Host: ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Sun, 04 Aug 2024 18:52:23 GMT
content-type: text/html
location: https://www.ddlvalley.me/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FT9pN8zGhXAY7%2FgOhE2bLi1NIh1ejEz2bK2JJy%2BxVzphFC74eG5chmH63XhMKyUY6u0fpxRWmdt6qh5N1mIp%2BljpvL1Hwqs%2BMmKTHxNnwLmL3LVUzfbIK3J3VtG%2BiW0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be88ecbb569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

GET images.ddlvalley.me/images/2024/08/02/560b524b9cee1de8f5eb92b413dd9a16.jpg

104.21.26.57

200 OK

62 kB

URL

images.ddlvalley.me/images/2024/08/02/560b524b9cee1de8f5eb92b413dd9a16.jpg

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 303x450, components 3

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size62 kB (62185 bytes)

MD5861bfbed79c3e5ba389af1650a998cc0

SHA197b024b0e06149bdd05e723acecf418e50127398

SHA2564c2e3a6d2d1722fda5750007d0b81e567a5d0ff4231ccfcbf931c16d10ebc543

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /images/2024/08/02/560b524b9cee1de8f5eb92b413dd9a16.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 62185
last-modified: Fri, 02 Aug 2024 12:14:35 GMT
expires: Sat, 02 Aug 2025 12:43:29 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 194935
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yFEuXuXfU4PG9XtEBkcIPJ8p5iPKmwiulZDCFqwD0G0II%2BUpMQX3iV7m01syJoUAxDbahscbh2iAkF%2FwlCIJZoqtXDA51wszDp2JAe%2B83P9LWIGGSkUAWkMOaqttN4kPBrwpQnf%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09bf56c6-OSL
alt-svc: h3=":443"; ma=86400

GET images.ddlvalley.me/images/30162209397412713376.jpg

104.21.26.57

200 OK

143 kB

URL

images.ddlvalley.me/images/30162209397412713376.jpg

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=720, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=2880], baseline, precision 8, 500x120, components 3

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size143 kB (142660 bytes)

MD5b99c10e10c016082775c5a9d5430ceff

SHA118dd6c0e2876028583cfe49556bff696f2243e44

SHA2563a1bf24b519aed2940decd8c9526d5afa4dba4f8c7a302697c44e88ac2134c3d

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /images/30162209397412713376.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 142660
last-modified: Thu, 04 May 2023 15:20:56 GMT
expires: Sun, 03 Aug 2025 15:56:00 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 96984
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jnJRGNDWLuakhSKQX73hQ%2BcvXm63v9UzWpOHrlPHPkk%2BypZyriDwfi59rKUEEFzmF4bOIQmzBsFe1C7%2Fz9SKgU9ovPh%2BNt699SURJXgi18eaueqNLDk8%2BfN72TM0cQo5ZCNQtw8G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09bb56c6-OSL
alt-svc: h3=":443"; ma=86400

GET images.ddlvalley.me/images/87928324672217730948.png

104.21.26.57

200 OK

470 kB

URL

images.ddlvalley.me/images/87928324672217730948.png

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typePNG image data, 1382 x 722, 8-bit/color RGBA, non-interlaced

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size470 kB (469811 bytes)

MD577272515676614caef494251ddf7c4ea

SHA1dd6195af27d50a11e53be4d6181b27a09d15f2fd

SHA256f0845c5dd6d9f30714cdc03762ddfe2d27515678dc36fef736f8c9fcd0b907de

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /images/87928324672217730948.png HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/png
content-length: 469811
last-modified: Sat, 10 Jun 2023 09:33:15 GMT
expires: Fri, 11 Jul 2025 17:49:50 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2077354
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1%2BwhH5wCH1HzTZ%2BdICgEXeRxbwnIvy6r0oRsobLnq0v%2BPHNhZRy%2BACgnedVjUVjnpp0RBQqSt9mIiWZ9wuVTcwfnctBvhzbapdGqgwqRgj%2Fh1iO%2BJhG2JNMTEEq7U6OL888IAuCj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09b656c6-OSL
alt-svc: h3=":443"; ma=86400

GET images.ddlvalley.me/images/2024/07/15/37dd12ca3caeb452661f1e91c503a9eb.jpg

104.21.26.57

200 OK

76 kB

URL

images.ddlvalley.me/images/2024/07/15/37dd12ca3caeb452661f1e91c503a9eb.jpg

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 305x450, components 3

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size76 kB (76509 bytes)

MD5d53a517f085b17a9e47ab7a73b52ef29

SHA157b501a9b4b53907005896c464ad3ceac4e15687

SHA25667376741701f80b090bce50244255ce46cc16884e535f80abdb449e36baaf0bc

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /images/2024/07/15/37dd12ca3caeb452661f1e91c503a9eb.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 76509
last-modified: Mon, 15 Jul 2024 16:37:45 GMT
expires: Sat, 02 Aug 2025 15:23:12 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 185351
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YPNtO401hUp9jlsMa65ZTZSpTwQ6XuYFGVJKoQCc8paodGGGdd5Sj631fna3qW4pijph5HevLAmmwQsMQJeNlhACI3ibWicFJ9X5WSwvDfkUSbsiM66vsX5%2BxWBKEg4Kg3WBYuwf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09be56c6-OSL
alt-svc: h3=":443"; ma=86400

GET images.ddlvalley.me/images/2024/07/15/2789c86b980a501914c3e75998268c6b.jpg

104.21.26.57

200 OK

41 kB

URL

images.ddlvalley.me/images/2024/07/15/2789c86b980a501914c3e75998268c6b.jpg

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 303x450, components 3

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size41 kB (41267 bytes)

MD59d6b2e340bf31ba747bcd6f3d28ab3dc

SHA1fd5e73f31976c66b2f0b20d0ca3ca1225394a15b

SHA2563c71e6b065b3e963ca820f37db9891502982505bb432d35a45286fc60ca70391

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /images/2024/07/15/2789c86b980a501914c3e75998268c6b.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 41267
last-modified: Mon, 15 Jul 2024 05:21:01 GMT
expires: Tue, 15 Jul 2025 06:23:20 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 1772944
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TIzFzJu8ib0j4EvLxA6Ujog2FG81abjqiADmQVpFzTXUR58p1Uq3%2BJ0hNF23EjexGMfLdCe%2Fylxz6al1nfVgr7UkxHIw390bx2cUqJ6ZIbD0qmShO2sereIbcDA4Zi1TNpj9dKAX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09c056c6-OSL
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/wp-content/themes/ddlv/i/bg.jpg

104.21.26.57

200 OK

4.2 kB

URL

www.ddlvalley.me/wp-content/themes/ddlv/i/bg.jpg

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3

First Seen2024-08-04

Last Seen2024-10-04

Times Seen2

Size4.2 kB (4161 bytes)

MD52456f312c4f760b1b9e913b527b82083

SHA12638bcf7f76d29e81edc9fb90bbcad05b3c73181

SHA2563f66d1ffcee5d47cdc6909db1d1af02ccf0c0758da034ba2d8a3293b18d394c3

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/themes/ddlv/i/bg.jpg HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/wp-content/themes/ddlv/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 4161
last-modified: Tue, 02 Oct 2012 20:02:58 GMT
expires: Fri, 13 Jun 2025 10:59:03 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 4521201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WGMDK3jtw%2BxPwzxI%2FKfxAmP5sxdvsC0QYwy%2BfBGdOYzszaO2Nv7azCEHCraVNnF%2FJCO9cc0KIQSIDgpQUOSvVZVKhTi8jiDm%2FUQFL9Eb%2BtjI6GKcEN2%2BiTJOfASnU2pkTc0b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8e7b6456c6-OSL
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/wp-content/themes/ddlv/i/sprite.png

104.21.26.57

200 OK

30 kB

URL

www.ddlvalley.me/wp-content/themes/ddlv/i/sprite.png

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typePNG image data, 800 x 400, 8-bit/color RGBA, non-interlaced

First Seen2024-08-04

Last Seen2024-10-04

Times Seen2

Size30 kB (29486 bytes)

MD573fcfb1a0602bc3ff36394fe270b86e9

SHA16ae8702b9f6d9dbd728a3efb159d2daba9dfbc85

SHA256509a074be227d6c4318048faf75b2774811a158623e9f99160e0132edc442fa2

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/themes/ddlv/i/sprite.png HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/wp-content/themes/ddlv/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/png
content-length: 29486
last-modified: Fri, 18 Apr 2014 01:33:02 GMT
expires: Fri, 13 Jun 2025 08:58:14 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 4528450
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JJ4u87CF%2F6UGHnzP6lDgt8vaCwteDe5JX2xZpzo06s%2Bn7BUK1Lq9Q7o49ihlfIJs4qBbHB7RDQLnc6vu793czFoCzW%2F2OXAW%2Bee6S0TxPVKSWM2xCLcP2WvwJOYdMhBdwo4F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8e8b7156c6-OSL
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/wp-content/themes/ddlv/i/cata.png

104.21.26.57

200 OK

359 B

URL

www.ddlvalley.me/wp-content/themes/ddlv/i/cata.png

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typePNG image data, 16 x 18, 8-bit/color RGBA, non-interlaced

First Seen2024-08-04

Last Seen2024-10-04

Times Seen2

Size359 B (359 bytes)

MD5e0c0ad56f91709db4b22c27f741cc6cb

SHA12a69cdf75a821f777244bb269be36ce7d809db01

SHA256013ad29d0ebef787aa32dadd45bb1ca6bd47e8820742c01fa9db6cbb5d515e12

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/themes/ddlv/i/cata.png HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/wp-content/themes/ddlv/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/png
content-length: 359
last-modified: Tue, 02 Oct 2012 20:02:58 GMT
expires: Sat, 02 Aug 2025 03:23:41 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 228523
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9lGQbEcutq3PVQP4Q8yaM%2BLmmhguxBMgXWY0t4A36kgjhhMiYGRX3C%2FoqANMsIZkEch%2B7fgn5yOAxu02kDSAbg3INfPCyUV7dIFvnkk8OIewj70tu754xKBi9QSCn%2FaH4VJK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8e8b7456c6-OSL
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/wp-content/themes/ddlv/i/catb.png

104.21.26.57

200 OK

355 B

URL

www.ddlvalley.me/wp-content/themes/ddlv/i/catb.png

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typePNG image data, 16 x 18, 8-bit/color RGBA, non-interlaced

First Seen2024-08-04

Last Seen2024-10-04

Times Seen2

Size355 B (355 bytes)

MD50dfa90e32b3aaf93fe02dff3d29a1086

SHA12cb479f043a83b979f4c532ae8bd177b7cae9863

SHA256e6cd79de873e04c450205fd19b7cc7989f0ac44796d1ca43880ae968d1c70a85

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/themes/ddlv/i/catb.png HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/wp-content/themes/ddlv/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/png
content-length: 355
last-modified: Tue, 02 Oct 2012 20:02:58 GMT
expires: Sat, 05 Jul 2025 09:00:02 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2627542
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zghzeVBiFQnEBJvSxBPqa9lRFX5%2FZ2kqr%2FUy7Jkhp1yHRiNte%2B5ZfhFL01NZOfA7rJ2oaDaZna6qDf7GQHX1eCkjJ0%2BGN2LHZlBigxcmN6d8Ks1JhDKV88tATZByvdGZ6APh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8e8b7656c6-OSL
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/wp-content/themes/ddlv/i/bg.png

104.21.26.57

200 OK

101 B

URL

www.ddlvalley.me/wp-content/themes/ddlv/i/bg.png

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typePNG image data, 1024 x 1, 2-bit colormap, non-interlaced

First Seen2024-08-04

Last Seen2024-10-04

Times Seen2

Size101 B (101 bytes)

MD5ac05eb2ce57ea288e2f23ea13faaa0ac

SHA139ccea1f4954d39ee80811db7584d43a22748764

SHA256e96eac3554fce0722dd72e498a0712aa6b9258b7e8ddbc79f59e5ecaea953b2b

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/themes/ddlv/i/bg.png HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/wp-content/themes/ddlv/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/png
content-length: 101
last-modified: Sat, 01 Jun 2013 00:07:25 GMT
expires: Fri, 13 Jun 2025 10:59:03 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 4521201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5v7LLeAwjrFTho0D1CneS2WNa%2B8i%2FzRvJjsPY7It17dEHwQvWVfyZnvecDQp4wT%2FsyxgZ%2FmKumJOOrapaJDJROew3JmYINIwxG88iUYN6nUs4UXy3vHs6UW8xLX1d4lmKelF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8e8b7256c6-OSL
alt-svc: h3=":443"; ma=86400

r11.o.lencr.org/

23.36.76.226

504 B

URL

r11.o.lencr.org/

IP / ASN

23.36.76.226

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size504 B (504 bytes)

MD53c218172c109574e25605e8c1f5cc1f6

SHA1453f6cf2ab4a7ba09f3a8fce2c91f9117bffd766

SHA2569b763cd9078e9817b5bc73572d61ce60232a79f15db8abacea06e858d1532adf

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "9B763CD9078E9817B5BC73572D61CE60232A79F15DB8ABACEA06E858D1532ADF"
Last-Modified: Sat, 03 Aug 2024 20:11:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9011
Expires: Sun, 04 Aug 2024 21:22:35 GMT
Date: Sun, 04 Aug 2024 18:52:24 GMT
Connection: keep-alive

GET sj.classisclawers.com/rgJV706BpI0D/EMBLv

23.109.170.189

200 OK

20 B

URL

sj.classisclawers.com/rgJV706BpI0D/EMBLv

IP / ASN

23.109.170.189

#7979 SERVERS-COM

Requested byhttps://www.ddlvalley.me/

Resource Info

File typegzip compressed data, from Unix

First Seen2023-04-09

Last Seen2025-03-02

Times Seen229342

Size20 B (20 bytes)

MD57029066c27ac6f5ef18d660d5741979a

SHA146c6643f07aa7f6bfe7118de926b86defc5087c4

SHA25659869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Certificate Info

IssuerLet's Encrypt

Subjectsj.classisclawers.com

Fingerprint2D:F2:70:F1:5B:4F:2D:86:2D:0D:AF:01:13:25:84:16:EF:0F:E3:59

ValidityTue, 25 Jun 2024 22:50:46 GMT - Mon, 23 Sep 2024 22:50:45 GMT

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rgJV706BpI0D/EMBLv HTTP/1.1
Host: sj.classisclawers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Aug 2024 18:52:24 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.ddlvalley.me
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Mon, 05-Aug-2024 18:52:24 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Mon, 05-Aug-2024 18:52:24 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

GET www.ddlvalley.me/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js

104.21.26.57

200 OK

398 B

URL

www.ddlvalley.me/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeASCII text

First Seen2023-03-07

Last Seen2025-07-31

Times Seen789

Size398 B (398 bytes)

MD53a7b373af67acb42960573e8102cea01

SHA1ace16912963355e393d455bc45742528a09aeb7c

SHA2569c01fb1b898505d38fd4bbf6060fd263bac9e0cb0cbeb0b4e1567618afb01f20

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: application/javascript
expires: Sat, 05 Jul 2025 09:56:00 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2624184
last-modified: Fri, 05 Jul 2024 09:56:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WkMSNOXjzjPmpoSGKjYJXixyJZFAXu27bQLZGx6tFiDUjwOvGtsBTGS0kRzZ%2B1hMRVdfQgA07qMBOb3t4USa4nfeL7qPqXCzpIYWJ29fRn0kH3OmuxOdt%2BA6Gf7tnnQTbkUU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8cf99e56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

POST www.ddlvalley.me/cdn-cgi/challenge-platform/h/b/jsd/r/8ae0be89ee6056c6

104.21.26.57

200 OK

0 B

URL

www.ddlvalley.me/cdn-cgi/challenge-platform/h/b/jsd/r/8ae0be89ee6056c6

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606239

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/8ae0be89ee6056c6 HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12146
Origin: https://www.ddlvalley.me
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.ddlvalley.me; HttpOnly; Secure; SameSite=None
cf_clearance=mE0xUOWlYD3Mdkmoi2y7nk3d_W5EVqYrvFdBFCoNuKM-1722797545-1.0.1.1-gCNVI10opzIyPkedl.TQkRR6gIqGiWfJZNB7xIjjE_s0RAuJeEK.aEjx1bc.x2uLl8SMc3TCQRfDVyjfa.Y37A; Path=/; Expires=Mon, 04-Aug-25 18:52:25 GMT; Domain=.ddlvalley.me; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U7pG9vEwwvK%2Frn8TJJdO65GLb2SSQvKp62xtlM%2F%2FKcq4H97vgYgE0nnnBYvFaVYOtCZPEmv%2Fy3tDbFDSsMMFm8A5Y6oSxTqFBpaO0ldR32bkPJlgTko9x2U4SWvC2Lh1ygSZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be908d9556c6-OSL
alt-svc: h3=":443"; ma=86400

GET images.ddlvalley.me/images/52868097689960050635.gif

104.21.26.57

200 OK

11 kB

URL

images.ddlvalley.me/images/52868097689960050635.gif

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main

Resource Info

File typeGIF image data, version 89a, 30 x 18

First Seen2023-06-01

Last Seen2025-06-28

Times Seen18

Size11 kB (11360 bytes)

MD57877501f9b3ffafe62da446da24e8dcf

SHA11618d2c18e99e165dbef15e697fd6d33229a2a54

SHA256b029c76378ea5eb0d17be0ae40b316f329298b08b0b47105020d3c5aaea4a82e

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /images/52868097689960050635.gif HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www7.cbox.ws/
Cookie: cf_clearance=mE0xUOWlYD3Mdkmoi2y7nk3d_W5EVqYrvFdBFCoNuKM-1722797545-1.0.1.1-gCNVI10opzIyPkedl.TQkRR6gIqGiWfJZNB7xIjjE_s0RAuJeEK.aEjx1bc.x2uLl8SMc3TCQRfDVyjfa.Y37A
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: image/gif
content-length: 11360
last-modified: Thu, 02 May 2013 06:48:24 GMT
expires: Wed, 30 Jul 2025 22:53:19 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 417545
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8yMYvfbomcV8oyLWM6HHInHU4B%2FPWxk6cUFrdHhdBAqoBj8hUXoyTLtaC2l8H%2B59jyRN%2F5SkXFN%2FmICLBML9e5UykkOA1UVrlMHm1Yq2qTZR1J1IBxL2PgZ0IUzEMF6LXu2h7OVd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be923f4d56c6-OSL
alt-svc: h3=":443"; ma=86400

r10.o.lencr.org/

23.33.119.57

504 B

URL

r10.o.lencr.org/

IP / ASN

23.33.119.57

#20940 Akamai International B.V.

Requested byN/A

Resource Info

File typedata

First Seen2024-08-04

Last Seen2024-08-21

Times Seen27770

Size504 B (504 bytes)

MD578be19d93b8add0d8f3c63b67e490038

SHA12ed9c5d656a70a78ced84cd8fedbf0dcceb35bd6

SHA256b8a162cbf6a846ccd9bd65a8744c313d48c66700352346c24777bdc1c2358726

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B8A162CBF6A846CCD9BD65A8744C313D48C66700352346C24777BDC1C2358726"
Last-Modified: Sat, 03 Aug 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6166
Expires: Sun, 04 Aug 2024 20:35:11 GMT
Date: Sun, 04 Aug 2024 18:52:25 GMT
Connection: keep-alive

GET static.cbox.ws/jsc/jsc_1593163307.js

104.21.85.24

200 OK

17 kB

URL

static.cbox.ws/jsc/jsc_1593163307.js

IP / ASN

104.21.85.24

#13335 CLOUDFLARENET

Requested byhttps://www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form

Resource Info

File typeJavaScript source, ASCII text, with very long lines (538)

First Seen2023-03-07

Last Seen2025-07-31

Times Seen39

Size17 kB (16559 bytes)

MD5deba7955e8512c181f0755445dfe55d2

SHA11b4e673a0098713213a2a43fac601877a68e2a0e

SHA2564a0bfe840910b6f2622d2a9a11ff97a2e655facd7db8fa94633607fdc082a46a

Certificate Info

IssuerLet's Encrypt

Subjectcbox.ws

FingerprintF5:C3:DE:CF:30:F9:36:4F:4F:86:8D:A9:1F:BA:07:2C:F7:23:98:8A

ValidityWed, 12 Jun 2024 08:07:52 GMT - Tue, 10 Sep 2024 08:07:51 GMT

HTTP Headers

GET /jsc/jsc_1593163307.js HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www7.cbox.ws
DNT: 1
Connection: keep-alive
Referer: https://www7.cbox.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: application/x-javascript
content-length: 16559
last-modified: Fri, 26 Jun 2020 09:21:54 GMT
etag: "5ef5be32-40af"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3589875
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vT3yH%2Fqwkit5ZSqhY%2FpY4WCBsDXGsij%2BEOpljI75r3SoVRx0vGJtZvDQFUcXcMmgPY5ouo786r%2BTx9w2lAtNgSyPuwPbOatRC7wxrbS70g2Pxk8uYEbSPE7u4liZaDji%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be9389281c0a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

flr-la0.cbox.ws:4430/?pool=7-467799-0

108.181.41.161

0 B

URL

flr-la0.cbox.ws:4430/?pool=7-467799-0

IP / ASN

108.181.41.161

#40676 AS40676

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606239

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?pool=7-467799-0 HTTP/1.1
Host: flr-la0.cbox.ws:4430
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www7.cbox.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZiMMD6FZ+l1gNgCc9H6rOw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-Websocket-Accept: VC/NEfDxHEpeiOIQo3MVJzVNNCM=
Sec-WebSocket-Extensions: permessage-deflate

GET www.ddlvalley.me/wp-content/themes/ddlv/style.css

104.21.26.57

200 OK

12 kB

URL

www.ddlvalley.me/wp-content/themes/ddlv/style.css

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeUnicode text, UTF-8 text, with very long lines (337), with CRLF line terminators

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size12 kB (12389 bytes)

MD537d73bc523f557bde5aee12322947555

SHA14b1dc1183b711eca2dacd0bb3f836d641058beea

SHA25691b277464838de9f67f6264abfab310fb0dd74bab513b2bd3d3c4c6667860b6e

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/themes/ddlv/style.css HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 05 Sep 2019 00:30:15 GMT
expires: Fri, 11 Jul 2025 16:25:25 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 2082419
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KhpRgbzSatjfoFpfXtWgqa7kpjEcfGc3ArCNIlp29VwaTyiPzf96ADI65jCyS76xFzvSA0UaFmOX4FgRD4nPZ3Noqn6xZVdaKwVtHVXaYCu752w57m%2F16OjDET4dvK2umlE7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be8cf99256c6-OSL
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/wp-includes/css/dist/block-library/style.min.css

104.21.26.57

200 OK

113 kB

URL

www.ddlvalley.me/wp-includes/css/dist/block-library/style.min.css

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606239

Size113 kB (113381 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 03 Apr 2024 08:23:51 GMT
expires: Fri, 13 Jun 2025 11:27:54 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 4519470
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tDL6dAHI5OPBT82m8VS3OZiYBEmvBhaQeJPISvptPVT5y4LYBT7fyF%2BBGhwhV5x3T%2BeAyHCxjoGRT3ofUwds9b9VhGFYWINv8YWfUFIxAj9uaN7UX%2FT6vLENwBOBiNAx52d7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be8cf99656c6-OSL
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.min.js

104.21.26.57

200 OK

93 kB

URL

www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.min.js

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJavaScript source, ASCII text, with very long lines (65481), with CRLF line terminators

First Seen2023-03-12

Last Seen2025-07-10

Times Seen18

Size93 kB (92555 bytes)

MD50178077912744e0856babe0fddd9c2b1

SHA1f227d0414158da8bd3df7005c8fb56751927453e

SHA256ee52e397628159745db0f6bb67c2de9b428c3d3b67533c945a3eb375c219de1a

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/themes/ddlv/js/jquery.min.js HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: application/javascript
expires: Fri, 13 Jun 2025 08:58:13 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 4528451
last-modified: Thu, 13 Jun 2024 08:58:13 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wS1WXX4FYr4mPj6df7sDBBOJJ9tDdLa30iQf0k2SOlO7u1R4X1CbNQ2h%2BPPynIGgWo6x%2BdwkgnKEKn%2BUpfbqt8fQ0awrT6eimQiy3KEvH7odTkvb0HsFhFzOte9gg3KpN3BH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8cf9a056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js?

104.21.26.57

200 OK

7.8 kB

URL

www.ddlvalley.me/cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js?

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJavaScript source, ASCII text, with very long lines (7785), with no line terminators

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size7.8 kB (7785 bytes)

MD501f839b6b3055d84d1a17c9c59540081

SHA1275d68de8fccc2123d2260ae38150548e3871787

SHA25604270bf867355be4836e9dbb1bae84ffcca6d50cec5a7f3067073f34a80a89e2

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js? HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bvcp0xzRklVf%2BqGXz5aDxGbkr%2BfC8B%2BIpaN3LfNhMboBXcosPT%2BJ4m7zPT25ULS9inWo3hA0R%2FVlWT2%2BUgVHH3zRsCT4PMn1w7VbkWB%2FvqTWMEQkzarlAjZl2paoMNcYpE9n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8f5c6056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/

104.21.26.57

200 OK

64 kB

URL

www.ddlvalley.me/

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byN/A

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606239

Size64 kB (63724 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET / HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Sun, 04 Aug 2024 18:52:24 GMT
cache-control: max-age=0, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a2%2FCzYn5aAbdUV3dPJRQwUIY3JfUJv6xBoQfVV0Q9zJftpNnIZSN5Lne%2FDuCOvPqoZRqvtGGPmqIXhJW5gsSla1vBZpWvh%2FTKVZB8JfvodqZffg%2F42HeSoZS%2BSnMwb%2BA39g9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be89ee6056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET flr-la0.cbox.ws:4430/?pool=7-467799-0

108.181.41.161

101 Switching Protocols

0 B

URL

flr-la0.cbox.ws:4430/?pool=7-467799-0

IP / ASN

108.181.41.161

#40676 AS40676

Requested byhttps://www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606239

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerLet's Encrypt

Subjectcbox.ws

Fingerprint1C:9E:A9:39:1C:D1:D7:BD:91:71:1C:97:25:C9:80:A6:D4:EF:C8:A1

ValidityFri, 26 Jul 2024 10:17:37 GMT - Thu, 24 Oct 2024 10:17:36 GMT

HTTP Headers

GET /?pool=7-467799-0 HTTP/1.1
Host: flr-la0.cbox.ws:4430
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www7.cbox.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZiMMD6FZ+l1gNgCc9H6rOw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-Websocket-Accept: VC/NEfDxHEpeiOIQo3MVJzVNNCM=
Sec-WebSocket-Extensions: permessage-deflate

GET www.ddlvalley.me/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1

104.21.26.57

200 OK

19 kB

URL

www.ddlvalley.me/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJavaScript source, ASCII text, with very long lines (15752)

First Seen2024-03-13

Last Seen2025-08-02

Times Seen55134

Size19 kB (18726 bytes)

MD5b976b651932bfd25b9ddb5b7693d88a7

SHA17fcb7cb5c11227f9213b1e08a07d0212209e1432

SHA2564e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.6.1 HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: application/javascript
expires: Wed, 23 Jul 2025 17:52:29 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 1040395
last-modified: Tue, 23 Jul 2024 17:52:29 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2cDQjoiMpBrEc%2B2x%2Fv5KfNtVzpzOgxV1R8KFcC9CHb06uWdYK%2BhjTMykxlfbcGFoskYlwnLNk%2BWP0mVXxwUiWZR9qyZtpZ2As65K003POIide1ahIAZTxj%2Bt5mc3lPaYAeMZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8eebc656c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=css&i=1525978207

108.181.41.161

200 OK

2.1 kB

URL

www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=css&i=1525978207

IP / ASN

108.181.41.161

#40676 AS40676

Requested byhttps://www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main

Resource Info

File typeASCII text, with very long lines (2506), with no line terminators

First Seen2024-08-04

Last Seen2024-10-04

Times Seen2

Size2.1 kB (2096 bytes)

MD57ed864a671fa3cda20c03d94a2a31088

SHA1aa5355c43abb4ecb133139d8effad5bdbdd77fa0

SHA256719989650de0cde04e0ea5896e616ee58b402eeaf22d21e8e4e8695c1a660227

Certificate Info

IssuerLet's Encrypt

Subjectcbox.ws

Fingerprint1C:9E:A9:39:1C:D1:D7:BD:91:71:1C:97:25:C9:80:A6:D4:EF:C8:A1

ValidityFri, 26 Jul 2024 10:17:37 GMT - Thu, 24 Oct 2024 10:17:36 GMT

HTTP Headers

GET /box/?boxid=467799&boxtag=h5mwfj&sec=css&i=1525978207 HTTP/1.1
Host: www7.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: text/css;charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
expires: Sun, 20 Oct 2024 00:14:24 GMT
cache-control: public, max-age=10368000
x-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

POST www.ddlvalley.me/wp-admin/admin-ajax.php

104.21.26.57

200 OK

0 B

URL

www.ddlvalley.me/wp-admin/admin-ajax.php

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606239

Size0 B (0 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 223
Origin: https://www.ddlvalley.me
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://www.ddlvalley.me
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fq0RaaYAjo9NUh%2F%2BDG1LD2XmawEi8u%2BUVgVFgSU5k6stOHlzslwqjA%2BhWY0ggo%2BeMlyGUvUGVmRj6rZts1axzrNhkvcORokgBC7KYi%2FPSjvPxhEX0PWvf6PskBqfEQyF6otN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be8e0ad356c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/favicon.ico

104.21.26.57

200 OK

1.2 kB

URL

www.ddlvalley.me/favicon.ico

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeMS Windows icon resource - 1 icon, 16x16, 32 bits/pixel

First Seen2024-08-04

Last Seen2024-10-04

Times Seen2

Size1.2 kB (1150 bytes)

MD597bf214de854d0ce3e6e43c82c5428fd

SHA1b2aecb3a58575f1083cf06fa455aa86fca608109

SHA256689e33095bb1c8be67ec240325e03c0256f69f422db08e8ae8e1203e5b95223c

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/x-icon
vary: Accept-Encoding
last-modified: Tue, 19 Aug 2014 22:43:26 GMT
expires: Sat, 05 Jul 2025 09:00:02 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 2627542
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gxg2yTN37%2F3yO2tUcL%2BBoa6ZnKtQxBGaQCdkDzN%2FNCz9trEz22TnsSTkEKL3tGdOpGtpr%2FLmwXyWoEvv5enjAI1NDG8O8H0qp6O9jGrpWMhhS13LWk7nltPx4md7tKZYjMxi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be8fecf056c6-OSL
alt-svc: h3=":443"; ma=86400

GET images.ddlvalley.me/images/2024/07/02/38704926044e88a657a1fbd2e4ab109d.jpg

104.21.26.57

200 OK

49 kB

URL

images.ddlvalley.me/images/2024/07/02/38704926044e88a657a1fbd2e4ab109d.jpg

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 304x450, components 3

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size49 kB (48792 bytes)

MD54312c1cb649647267a64128edcd4f2c9

SHA1cc549462456aafed3cd339f0d3a95c6ffc71b050

SHA256e460fca7276ab946ea892f1f6dcedac6cbaf7f33244534f1002e4094a5222c46

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /images/2024/07/02/38704926044e88a657a1fbd2e4ab109d.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 48792
last-modified: Tue, 02 Jul 2024 21:54:31 GMT
expires: Sun, 03 Aug 2025 15:35:25 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 98219
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hEOaM52suUnwnnTc05bx6FhlX1Am%2B1GksXGSDdMW0xPpew9kqoNDWBS7Ctwp8sReGteviqpTS3x2iA71mixR%2BKO7Awc1NrZHqUZWZTQOF8MGG1LGHXFc2uKtJSYsIEqJhrWvJElq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09bc56c6-OSL
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/wp-content/plugins/wordpress-sphinx-plugin/templates/sphinxsearch.css

104.21.26.57

200 OK

771 B

URL

www.ddlvalley.me/wp-content/plugins/wordpress-sphinx-plugin/templates/sphinxsearch.css

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeASCII text, with very long lines (817), with no line terminators

First Seen2023-06-13

Last Seen2024-08-19

Times Seen2

Size771 B (771 bytes)

MD5e3552c1f355fb166bc616f63d15420b0

SHA12d2d75f36b22c3278e2ce7e3db3d64ccfcb9a6b2

SHA256857860a713b607419a51221580ae9e82c44ac4a7f40a0098d6373ee6172c47ce

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/plugins/wordpress-sphinx-plugin/templates/sphinxsearch.css HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 19 Jan 2018 07:41:44 GMT
expires: Fri, 13 Jun 2025 11:27:54 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 4519470
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BRtLZXX4jeCeUEdT46OQacpb561RZ1Dg%2FN9J%2BDcGzXngXtxP3usUhX%2BT0PBTO0q40vYxmAa2uJR5nmKMNNADwd4yeVLrK60sI2eF%2Brqu9K3dKcSWmQK8xKQD2jfF2BSTLjVd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be8cf99956c6-OSL
alt-svc: h3=":443"; ma=86400

GET www.ddlvalley.me/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.21.26.57

302 Found

7.8 kB

URL

www.ddlvalley.me/cdn-cgi/challenge-platform/scripts/jsd/main.js

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeN/A

First Seen0001-01-01

Last Seen2025-08-02

Times Seen5606239

Size7.8 kB (7785 bytes)

MD5d41d8cd98f00b204e9800998ecf8427e

SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Sun, 04 Aug 2024 18:52:24 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BrOn%2BOOV2O8kp0BCC1HStxEpW4TAN1vlC61TZ7w%2B0jvYZBt%2B%2BvqgGP0UmZDLoroc72NiiQsXnLQOwNcmXZXuK5AKXM0TdJjguYx0HDgrnC9VIC0mme02anSkiGCla0LWRClU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8efbe956c6-OSL
alt-svc: h3=":443"; ma=86400

GET www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main

108.181.41.161

200 OK

5.9 kB

URL

www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main

IP / ASN

108.181.41.161

#40676 AS40676

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeHTML document, ASCII text, with very long lines (6248), with no line terminators

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size5.9 kB (5883 bytes)

MD5c15f6329969b5c0209de8145e7c6bb76

SHA1e427f45ecca5f40d6ce4555d0da7f4501d44d5ea

SHA256d9537990002c3fd42c9121a0aeb92bdf98436e2ca5cb25a29ade76cec5e66c2e

Certificate Info

IssuerLet's Encrypt

Subjectcbox.ws

Fingerprint1C:9E:A9:39:1C:D1:D7:BD:91:71:1C:97:25:C9:80:A6:D4:EF:C8:A1

ValidityFri, 26 Jul 2024 10:17:37 GMT - Thu, 24 Oct 2024 10:17:36 GMT

HTTP Headers

GET /box/?boxid=467799&boxtag=h5mwfj&sec=main HTTP/1.1
Host: www7.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
cache-control: public, must-revalidate, max-age=5
last-modified: Sun, 04 Aug 2024 18:52:23 GMT
x-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

GET www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form

108.181.41.161

200 OK

4.5 kB

URL

www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form

IP / ASN

108.181.41.161

#40676 AS40676

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeHTML document, ASCII text, with very long lines (4838), with no line terminators

First Seen2024-08-19

Last Seen2024-08-19

Times Seen1

Size4.5 kB (4516 bytes)

MD5625ee50ffb8b1f6ca4cb615d1ce0d623

SHA13fc388978f628c05150c64ec672db38cbb65c07d

SHA256b719b6a3cf30582fcdab13768ccfe7be340e2f8c61d3ba542b03cc01678727ce

Certificate Info

IssuerLet's Encrypt

Subjectcbox.ws

Fingerprint1C:9E:A9:39:1C:D1:D7:BD:91:71:1C:97:25:C9:80:A6:D4:EF:C8:A1

ValidityFri, 26 Jul 2024 10:17:37 GMT - Thu, 24 Oct 2024 10:17:36 GMT

HTTP Headers

GET /box/?boxid=467799&boxtag=h5mwfj&sec=form HTTP/1.1
Host: www7.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
expires: Mon, 04 Aug 2025 18:52:21 GMT
cache-control: public, max-age=31536000
x-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

GET www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.cookie.min.js

104.21.26.57

200 OK

989 B

URL

www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.cookie.min.js

IP / ASN

104.21.26.57

#13335 CLOUDFLARENET

Requested byhttps://www.ddlvalley.me/

Resource Info

File typeJavaScript source, ASCII text, with very long lines (989), with no line terminators

First Seen2023-03-07

Last Seen2025-07-25

Times Seen158

Size989 B (989 bytes)

MD5bf3139efff7bbe9eece58391cdc52e32

SHA1114ab1d8421151e8bffc6f31355e7853d8b08529

SHA2563f1c66373abda331ee7a7e4bc6c7d15deb3e348696a20bb6662b3f4f425d49ac

Certificate Info

IssuerGoogle Trust Services

Subjectddlvalley.me

FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA

ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

HTTP Headers

GET /wp-content/themes/ddlv/js/jquery.cookie.min.js HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: application/javascript
expires: Sat, 05 Jul 2025 09:28:01 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2625863
last-modified: Fri, 05 Jul 2024 09:28:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AqZC7ninrVYBcBY5A42phBal46odc8mP%2BK2rqMjbQaIl7my2Fzq5qUrvijo%2FR96p77Aufr5S%2FJ5xC1IpT8s048gcF0a%2B%2B2gdbR3%2FrR2sARVFdF3Qhf7L8dpyt6tK8JQPrEOt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8cf9a556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400