Report - ddlvalley.me

Report Overview

Visited public
2024-08-04 18:52:50
Tags
URL
ddlvalley.me
Finishing URL
www.ddlvalley.me/
IP / ASN
104.21.26.57
#13335 CLOUDFLARENET
Title
DDLValley - Rapidgator , Uploaded , Go4up & Openload links DDLValley

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Sent	Received	IP
www.ddlvalley.me	278347	8.9 kB	369 kB	104.21.26.57
ddlvalley.me	243286	467 B	50 kB	104.21.26.57
	unknown	1.1 kB	348 B	108.181.41.161
r10.o.lencr.org	unknown	1.6 kB	4.4 kB	23.36.77.32
r11.o.lencr.org	unknown	327 B	887 B	23.36.76.226
sj.classisclawers.com	unknown	415 B	1.5 kB	23.109.170.189
static.cbox.ws	161241	433 B	17 kB	104.21.85.24
www7.cbox.ws	507537	1.6 kB	13 kB	108.181.41.161
images.ddlvalley.me	unknown	3.9 kB	894 kB	104.21.26.57

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-08-04	medium	classisclawers.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (14)

	URL	From	Size	First Seen	Last Seen
	www.ddlvalley.me/	ScriptElement	3.3 kB	2024-08-19	2024-08-19
Pretty URL www.ddlvalley.me/ IP 104.21.26.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 14:39 Last Seen2024-08-19 14:39 Times Seen1 Hash fefd550057a244f0325097fafc766a7b 61d7472ff5c22ad7f366b2c469220151273300c3 958c552ce19ed7f73996082e032089c5987f962fe22c7a147e1e893a0767c3c8 Loading...

	www.ddlvalley.me/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1	ScriptElement	19 kB	2024-03-13	2025-06-18
Pretty URL www.ddlvalley.me/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1 IP 104.21.26.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 16:02 Last Seen2025-06-18 04:49 Times Seen47875 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

	sj.classisclawers.com/rgJV706BpI0D/EMBLv	ScriptElement	0 B	0001-01-01	2025-06-18
Pretty URL sj.classisclawers.com/rgJV706BpI0D/EMBLv IP 23.109.170.189 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen0001-01-01 00:00 Last Seen2025-06-18 05:20 Times Seen4999565 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main	ScriptElement	0 B	0001-01-01	2025-06-18
Pretty URL www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main IP 108.181.41.161 ASN #40676 AS40676 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-18 05:20 Times Seen4999565 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.min.js	ScriptElement	93 kB	2023-03-12	2025-04-16
Pretty URL www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.min.js IP 104.21.26.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:40 Last Seen2025-04-16 09:46 Times Seen17 Hash 0178077912744e0856babe0fddd9c2b1 f227d0414158da8bd3df7005c8fb56751927453e ee52e397628159745db0f6bb67c2de9b428c3d3b67533c945a3eb375c219de1a Loading...

	www.ddlvalley.me/	ScriptElement	169 B	2024-08-19	2024-08-19
Pretty URL www.ddlvalley.me/ IP 104.21.26.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 14:39 Last Seen2024-08-19 14:39 Times Seen1 Hash 964e387c38f66a99b86fe5150e5aaeb8 0dec70379049b4af39f7aed88feef14de9bc6b6e 377d55a692a4ae7119e3e492a94010247a4a18f64370ba0e0dc9b17765e5a43d Loading...

	unknown	ScriptElement	236 B	2024-08-19	2024-08-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 14:39 Last Seen2024-08-19 14:39 Times Seen1 Hash f898cfa1a6824cdd0e3d28e9bd6cf538 641368e37cae525ad55aed42464fafa6eac30bf5 fd5a3db4fc63cdd8d050f6c65a9267a6255cc2732a605cd80918910253baf515 Loading...

	www.ddlvalley.me/	ScriptElement	820 B	2024-08-19	2024-08-19
Pretty URL www.ddlvalley.me/ IP 104.21.26.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 14:39 Last Seen2024-08-19 14:39 Times Seen1 Hash c3fa690e048ae19b2a5c341eba750599 bce731b165353d826f1ca47e4534913a76f2c174 a193efbdc0eb99c73b50c76fd4d5f68af99ffafd5efae7c5eaf704661e7f22a7 Loading...

	www.ddlvalley.me/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.8 kB	2024-08-19	2024-08-19
Pretty URL www.ddlvalley.me/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.21.26.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-19 14:39 Last Seen2024-08-19 14:39 Times Seen1 Hash 01f839b6b3055d84d1a17c9c59540081 275d68de8fccc2123d2260ae38150548e3871787 04270bf867355be4836e9dbb1bae84ffcca6d50cec5a7f3067073f34a80a89e2 Loading...

	static.cbox.ws/jsc/jsc_1593163307.js	ScriptElement	49 kB	2023-03-07	2025-06-15
Pretty URL static.cbox.ws/jsc/jsc_1593163307.js IP 104.21.85.24 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39 Last Seen2025-06-15 05:30 Times Seen35 Hash deba7955e8512c181f0755445dfe55d2 1b4e673a0098713213a2a43fac601877a68e2a0e 4a0bfe840910b6f2622d2a9a11ff97a2e655facd7db8fa94633607fdc082a46a Loading...

	www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form	ScriptElement	0 B	0001-01-01	2025-06-18
Pretty URL www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form IP 108.181.41.161 ASN #40676 AS40676 Introduced by scriptElement Embedded in HTML true Observations First Seen0001-01-01 00:00 Last Seen2025-06-18 05:20 Times Seen4999565 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.ddlvalley.me/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js	ScriptElement	890 B	2023-03-07	2025-06-17
Pretty URL www.ddlvalley.me/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js IP 104.21.26.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:23 Last Seen2025-06-17 14:28 Times Seen525 Hash 3a7b373af67acb42960573e8102cea01 ace16912963355e393d455bc45742528a09aeb7c 9c01fb1b898505d38fd4bbf6060fd263bac9e0cb0cbeb0b4e1567618afb01f20 Loading...

	www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.cookie.min.js	ScriptElement	989 B	2023-03-07	2025-06-03
Pretty URL www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.cookie.min.js IP 104.21.26.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:42 Last Seen2025-06-03 02:00 Times Seen149 Hash bf3139efff7bbe9eece58391cdc52e32 114ab1d8421151e8bffc6f31355e7853d8b08529 3f1c66373abda331ee7a7e4bc6c7d15deb3e348696a20bb6662b3f4f425d49ac Loading...

	www.ddlvalley.me/	ScriptElement	921 B	2024-08-19	2024-08-19
Pretty URL www.ddlvalley.me/ IP 104.21.26.57 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-19 14:39 Last Seen2024-08-19 14:39 Times Seen1 Hash 5ae23959563e0bfede8d62b848df66b8 7e00c3197fbba5876888816f93a1a706de26655a 39daa27358f0f9e6793954bc0ed6d11731eb8866c3f4758101b7a2b17a4c5f27 Loading...

HTTP Transactions (41)

URL IP Response Size

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
addc02313d62bf977d4b5dd463b48637
49b5e37e2888a9db981bd54827c4f4c7b9f7b53a
9b553a61256a129f9c5c31614a702c4f0441a3f018cc2b3897ab2cc16e184eeb

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "9B553A61256A129F9C5C31614A702C4F0441A3F018CC2B3897AB2CC16E184EEB"
Last-Modified: Sat, 03 Aug 2024 18:28:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4706
Expires: Sun, 04 Aug 2024 20:10:49 GMT
Date: Sun, 04 Aug 2024 18:52:23 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
084406a853d82fa208410ee4bc78b67c
1c6276ec2e9a0fa10937dc34d821a64633c7d16a
6d567507b5502a9e553e77b519b679e83b3a8a01896731cec08bd1da0699b379

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "6D567507B5502A9E553E77B519B679E83B3A8A01896731CEC08BD1DA0699B379"
Last-Modified: Sat, 03 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13477
Expires: Sun, 04 Aug 2024 22:37:00 GMT
Date: Sun, 04 Aug 2024 18:52:23 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
8bd7201be8d12c4b511d2c5643b45dbc
f2ecb2ebafbf4f8d92f92007753001befcedc634
25cb2e6ad29d4503f32121fbe37e2b0f4ce64a7f6cb57233ebf16df5d6b78d53

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "25CB2E6AD29D4503F32121FBE37E2B0F4CE64A7F6CB57233EBF16DF5D6B78D53"
Last-Modified: Sat, 03 Aug 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5812
Expires: Sun, 04 Aug 2024 20:29:15 GMT
Date: Sun, 04 Aug 2024 18:52:23 GMT
Connection: keep-alive

r10.o.lencr.org/

23.36.77.32

504 B

URL
r10.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
3653abf0951eea060f104ae59d60cf7c
75790e8c59cb78c77ab522e7dc7140b62a046bb9
d059eeda67b64dd02259f5a9352df39cc808e3f9e03068a434e0f6486814893d

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "D059EEDA67B64DD02259F5A9352DF39CC808E3F9E03068A434E0F6486814893D"
Last-Modified: Sat, 03 Aug 2024 18:27:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17506
Expires: Sun, 04 Aug 2024 23:44:09 GMT
Date: Sun, 04 Aug 2024 18:52:23 GMT
Connection: keep-alive

www.ddlvalley.me/wp-content/themes/ddlv/i/rss.gif

104.21.26.57

200 OK

149 B

URL GET HTTP/3
www.ddlvalley.me/wp-content/themes/ddlv/i/rss.gif
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
GIF image data, version 89a, 10 x 10
Size
149 B (149 bytes)
Hash
37739014793fd5cf2777709bbb5909cc
ff844bd07fdfa23736a17996dd78cafbf509be27
2692df1e8a6c4a2faf902b39f84123b9b5faaa5a241ad50e24e7fd0e4f712140

HTTP Headers

GET /wp-content/themes/ddlv/i/rss.gif HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/gif
content-length: 149
last-modified: Tue, 02 Oct 2012 20:02:58 GMT
expires: Fri, 13 Jun 2025 10:59:01 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 4521203
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pdukvMwS6iPS6FV1OgQsVNyFqMTkdqe0Ogar4YxvOl9OGk1SBzunnyx4wD2mqNoNX42wKJQWKx4D5Isf3PYdtOSjg2JJ2YTczaOXaC6NorFPhyhYSqCodTxpRe4yC7CcaYjv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8cf9a656c6-OSL
alt-svc: h3=":443"; ma=86400

images.ddlvalley.me/images/19124830537944710524.jpg

104.21.26.57

200 OK

35 kB

URL GET HTTP/3
images.ddlvalley.me/images/19124830537944710524.jpg
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 500x120, components 3
Size
35 kB (35270 bytes)
Hash
527b9d11ba251b01ecf1447c333b36b5
223260240b381da737e7f48708f4ebb4afcfca42
261ba64a996f20aff037cc1563f56036ae6e112602a61c6b7767d90dc6d48780

HTTP Headers

GET /images/19124830537944710524.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 35270
last-modified: Mon, 06 Dec 2021 18:12:11 GMT
expires: Sat, 05 Jul 2025 16:11:32 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2601652
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HCqN8eHltfNUHz1B8QI3xFY9BEkn%2BrnGBJTehBekrM2eWVV2sPZsdhV88%2B%2BkLefjFwYHaLDYOuOJJrRhtAd2DIlGma9Zv2DVJwe97K5eVskiXnAlcFFy2e4R5PubzV9sHkM1vqzV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09ba56c6-OSL
alt-svc: h3=":443"; ma=86400

ddlvalley.me/

104.21.26.57

301 Moved Permanently

49 kB

URL User Request GET HTTP/2
ddlvalley.me/
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
data
Size
49 kB (48954 bytes)
Hash
8a4980a772846288274e13d91af1834e
593b605021b267cffe850a5156f6cbf22f1aa1e8
84e99000b9c038bd2dce4f877125a5d617a1562fa9a51200943fcab734cac56a

HTTP Headers

GET / HTTP/1.1
Host: ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Sun, 04 Aug 2024 18:52:23 GMT
content-type: text/html
location: https://www.ddlvalley.me/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FT9pN8zGhXAY7%2FgOhE2bLi1NIh1ejEz2bK2JJy%2BxVzphFC74eG5chmH63XhMKyUY6u0fpxRWmdt6qh5N1mIp%2BljpvL1Hwqs%2BMmKTHxNnwLmL3LVUzfbIK3J3VtG%2BiW0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be88ecbb569f-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

images.ddlvalley.me/images/2024/08/02/560b524b9cee1de8f5eb92b413dd9a16.jpg

104.21.26.57

200 OK

62 kB

URL GET HTTP/3
images.ddlvalley.me/images/2024/08/02/560b524b9cee1de8f5eb92b413dd9a16.jpg
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 303x450, components 3
Size
62 kB (62185 bytes)
Hash
861bfbed79c3e5ba389af1650a998cc0
97b024b0e06149bdd05e723acecf418e50127398
4c2e3a6d2d1722fda5750007d0b81e567a5d0ff4231ccfcbf931c16d10ebc543

HTTP Headers

GET /images/2024/08/02/560b524b9cee1de8f5eb92b413dd9a16.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 62185
last-modified: Fri, 02 Aug 2024 12:14:35 GMT
expires: Sat, 02 Aug 2025 12:43:29 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 194935
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yFEuXuXfU4PG9XtEBkcIPJ8p5iPKmwiulZDCFqwD0G0II%2BUpMQX3iV7m01syJoUAxDbahscbh2iAkF%2FwlCIJZoqtXDA51wszDp2JAe%2B83P9LWIGGSkUAWkMOaqttN4kPBrwpQnf%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09bf56c6-OSL
alt-svc: h3=":443"; ma=86400

images.ddlvalley.me/images/30162209397412713376.jpg

104.21.26.57

200 OK

143 kB

URL GET HTTP/3
images.ddlvalley.me/images/30162209397412713376.jpg
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=720, bps=0, PhotometricInterpretation=RGB, orientation=upper-left, width=2880], baseline, precision 8, 500x120, components 3
Size
143 kB (142660 bytes)
Hash
b99c10e10c016082775c5a9d5430ceff
18dd6c0e2876028583cfe49556bff696f2243e44
3a1bf24b519aed2940decd8c9526d5afa4dba4f8c7a302697c44e88ac2134c3d

HTTP Headers

GET /images/30162209397412713376.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 142660
last-modified: Thu, 04 May 2023 15:20:56 GMT
expires: Sun, 03 Aug 2025 15:56:00 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 96984
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jnJRGNDWLuakhSKQX73hQ%2BcvXm63v9UzWpOHrlPHPkk%2BypZyriDwfi59rKUEEFzmF4bOIQmzBsFe1C7%2Fz9SKgU9ovPh%2BNt699SURJXgi18eaueqNLDk8%2BfN72TM0cQo5ZCNQtw8G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09bb56c6-OSL
alt-svc: h3=":443"; ma=86400

images.ddlvalley.me/images/87928324672217730948.png

104.21.26.57

200 OK

470 kB

URL GET HTTP/3
images.ddlvalley.me/images/87928324672217730948.png
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
PNG image data, 1382 x 722, 8-bit/color RGBA, non-interlaced
Size
470 kB (469811 bytes)
Hash
77272515676614caef494251ddf7c4ea
dd6195af27d50a11e53be4d6181b27a09d15f2fd
f0845c5dd6d9f30714cdc03762ddfe2d27515678dc36fef736f8c9fcd0b907de

HTTP Headers

GET /images/87928324672217730948.png HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/png
content-length: 469811
last-modified: Sat, 10 Jun 2023 09:33:15 GMT
expires: Fri, 11 Jul 2025 17:49:50 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2077354
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1%2BwhH5wCH1HzTZ%2BdICgEXeRxbwnIvy6r0oRsobLnq0v%2BPHNhZRy%2BACgnedVjUVjnpp0RBQqSt9mIiWZ9wuVTcwfnctBvhzbapdGqgwqRgj%2Fh1iO%2BJhG2JNMTEEq7U6OL888IAuCj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09b656c6-OSL
alt-svc: h3=":443"; ma=86400

images.ddlvalley.me/images/2024/07/15/37dd12ca3caeb452661f1e91c503a9eb.jpg

104.21.26.57

200 OK

76 kB

URL GET HTTP/3
images.ddlvalley.me/images/2024/07/15/37dd12ca3caeb452661f1e91c503a9eb.jpg
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 305x450, components 3
Size
76 kB (76509 bytes)
Hash
d53a517f085b17a9e47ab7a73b52ef29
57b501a9b4b53907005896c464ad3ceac4e15687
67376741701f80b090bce50244255ce46cc16884e535f80abdb449e36baaf0bc

HTTP Headers

GET /images/2024/07/15/37dd12ca3caeb452661f1e91c503a9eb.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 76509
last-modified: Mon, 15 Jul 2024 16:37:45 GMT
expires: Sat, 02 Aug 2025 15:23:12 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 185351
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YPNtO401hUp9jlsMa65ZTZSpTwQ6XuYFGVJKoQCc8paodGGGdd5Sj631fna3qW4pijph5HevLAmmwQsMQJeNlhACI3ibWicFJ9X5WSwvDfkUSbsiM66vsX5%2BxWBKEg4Kg3WBYuwf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09be56c6-OSL
alt-svc: h3=":443"; ma=86400

images.ddlvalley.me/images/2024/07/15/2789c86b980a501914c3e75998268c6b.jpg

104.21.26.57

200 OK

41 kB

URL GET HTTP/3
images.ddlvalley.me/images/2024/07/15/2789c86b980a501914c3e75998268c6b.jpg
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 303x450, components 3
Size
41 kB (41267 bytes)
Hash
9d6b2e340bf31ba747bcd6f3d28ab3dc
fd5e73f31976c66b2f0b20d0ca3ca1225394a15b
3c71e6b065b3e963ca820f37db9891502982505bb432d35a45286fc60ca70391

HTTP Headers

GET /images/2024/07/15/2789c86b980a501914c3e75998268c6b.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 41267
last-modified: Mon, 15 Jul 2024 05:21:01 GMT
expires: Tue, 15 Jul 2025 06:23:20 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 1772944
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TIzFzJu8ib0j4EvLxA6Ujog2FG81abjqiADmQVpFzTXUR58p1Uq3%2BJ0hNF23EjexGMfLdCe%2Fylxz6al1nfVgr7UkxHIw390bx2cUqJ6ZIbD0qmShO2sereIbcDA4Zi1TNpj9dKAX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09c056c6-OSL
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/wp-content/themes/ddlv/i/bg.jpg

104.21.26.57

200 OK

4.2 kB

URL GET HTTP/3
www.ddlvalley.me/wp-content/themes/ddlv/i/bg.jpg
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x100, components 3
Size
4.2 kB (4161 bytes)
Hash
2456f312c4f760b1b9e913b527b82083
2638bcf7f76d29e81edc9fb90bbcad05b3c73181
3f66d1ffcee5d47cdc6909db1d1af02ccf0c0758da034ba2d8a3293b18d394c3

HTTP Headers

GET /wp-content/themes/ddlv/i/bg.jpg HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/wp-content/themes/ddlv/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 4161
last-modified: Tue, 02 Oct 2012 20:02:58 GMT
expires: Fri, 13 Jun 2025 10:59:03 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 4521201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WGMDK3jtw%2BxPwzxI%2FKfxAmP5sxdvsC0QYwy%2BfBGdOYzszaO2Nv7azCEHCraVNnF%2FJCO9cc0KIQSIDgpQUOSvVZVKhTi8jiDm%2FUQFL9Eb%2BtjI6GKcEN2%2BiTJOfASnU2pkTc0b"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8e7b6456c6-OSL
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/wp-content/themes/ddlv/i/sprite.png

104.21.26.57

200 OK

30 kB

URL GET HTTP/3
www.ddlvalley.me/wp-content/themes/ddlv/i/sprite.png
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
PNG image data, 800 x 400, 8-bit/color RGBA, non-interlaced
Size
30 kB (29486 bytes)
Hash
73fcfb1a0602bc3ff36394fe270b86e9
6ae8702b9f6d9dbd728a3efb159d2daba9dfbc85
509a074be227d6c4318048faf75b2774811a158623e9f99160e0132edc442fa2

HTTP Headers

GET /wp-content/themes/ddlv/i/sprite.png HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/wp-content/themes/ddlv/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/png
content-length: 29486
last-modified: Fri, 18 Apr 2014 01:33:02 GMT
expires: Fri, 13 Jun 2025 08:58:14 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 4528450
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JJ4u87CF%2F6UGHnzP6lDgt8vaCwteDe5JX2xZpzo06s%2Bn7BUK1Lq9Q7o49ihlfIJs4qBbHB7RDQLnc6vu793czFoCzW%2F2OXAW%2Bee6S0TxPVKSWM2xCLcP2WvwJOYdMhBdwo4F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8e8b7156c6-OSL
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/wp-content/themes/ddlv/i/cata.png

104.21.26.57

200 OK

359 B

URL GET HTTP/3
www.ddlvalley.me/wp-content/themes/ddlv/i/cata.png
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
PNG image data, 16 x 18, 8-bit/color RGBA, non-interlaced
Size
359 B (359 bytes)
Hash
e0c0ad56f91709db4b22c27f741cc6cb
2a69cdf75a821f777244bb269be36ce7d809db01
013ad29d0ebef787aa32dadd45bb1ca6bd47e8820742c01fa9db6cbb5d515e12

HTTP Headers

GET /wp-content/themes/ddlv/i/cata.png HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/wp-content/themes/ddlv/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/png
content-length: 359
last-modified: Tue, 02 Oct 2012 20:02:58 GMT
expires: Sat, 02 Aug 2025 03:23:41 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 228523
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9lGQbEcutq3PVQP4Q8yaM%2BLmmhguxBMgXWY0t4A36kgjhhMiYGRX3C%2FoqANMsIZkEch%2B7fgn5yOAxu02kDSAbg3INfPCyUV7dIFvnkk8OIewj70tu754xKBi9QSCn%2FaH4VJK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8e8b7456c6-OSL
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/wp-content/themes/ddlv/i/catb.png

104.21.26.57

200 OK

355 B

URL GET HTTP/3
www.ddlvalley.me/wp-content/themes/ddlv/i/catb.png
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
PNG image data, 16 x 18, 8-bit/color RGBA, non-interlaced
Size
355 B (355 bytes)
Hash
0dfa90e32b3aaf93fe02dff3d29a1086
2cb479f043a83b979f4c532ae8bd177b7cae9863
e6cd79de873e04c450205fd19b7cc7989f0ac44796d1ca43880ae968d1c70a85

HTTP Headers

GET /wp-content/themes/ddlv/i/catb.png HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/wp-content/themes/ddlv/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/png
content-length: 355
last-modified: Tue, 02 Oct 2012 20:02:58 GMT
expires: Sat, 05 Jul 2025 09:00:02 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2627542
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zghzeVBiFQnEBJvSxBPqa9lRFX5%2FZ2kqr%2FUy7Jkhp1yHRiNte%2B5ZfhFL01NZOfA7rJ2oaDaZna6qDf7GQHX1eCkjJ0%2BGN2LHZlBigxcmN6d8Ks1JhDKV88tATZByvdGZ6APh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8e8b7656c6-OSL
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/wp-content/themes/ddlv/i/bg.png

104.21.26.57

200 OK

101 B

URL GET HTTP/3
www.ddlvalley.me/wp-content/themes/ddlv/i/bg.png
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
PNG image data, 1024 x 1, 2-bit colormap, non-interlaced
Size
101 B (101 bytes)
Hash
ac05eb2ce57ea288e2f23ea13faaa0ac
39ccea1f4954d39ee80811db7584d43a22748764
e96eac3554fce0722dd72e498a0712aa6b9258b7e8ddbc79f59e5ecaea953b2b

HTTP Headers

GET /wp-content/themes/ddlv/i/bg.png HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/wp-content/themes/ddlv/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/png
content-length: 101
last-modified: Sat, 01 Jun 2013 00:07:25 GMT
expires: Fri, 13 Jun 2025 10:59:03 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 4521201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5v7LLeAwjrFTho0D1CneS2WNa%2B8i%2FzRvJjsPY7It17dEHwQvWVfyZnvecDQp4wT%2FsyxgZ%2FmKumJOOrapaJDJROew3JmYINIwxG88iUYN6nUs4UXy3vHs6UW8xLX1d4lmKelF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8e8b7256c6-OSL
alt-svc: h3=":443"; ma=86400

r11.o.lencr.org/

23.36.76.226

504 B

URL
r11.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
3c218172c109574e25605e8c1f5cc1f6
453f6cf2ab4a7ba09f3a8fce2c91f9117bffd766
9b763cd9078e9817b5bc73572d61ce60232a79f15db8abacea06e858d1532adf

HTTP Headers

POST / HTTP/1.1
Host: r11.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "9B763CD9078E9817B5BC73572D61CE60232A79F15DB8ABACEA06E858D1532ADF"
Last-Modified: Sat, 03 Aug 2024 20:11:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9011
Expires: Sun, 04 Aug 2024 21:22:35 GMT
Date: Sun, 04 Aug 2024 18:52:24 GMT
Connection: keep-alive

sj.classisclawers.com/rgJV706BpI0D/EMBLv

23.109.170.189

200 OK

20 B

URL GET HTTP/1.1
sj.classisclawers.com/rgJV706BpI0D/EMBLv
IP
23.109.170.189:443
ASN
#7979 SERVERS-COM

Requested by
https://www.ddlvalley.me/
Certificate
IssuerLet's Encrypt
Subjectsj.classisclawers.com
Fingerprint2D:F2:70:F1:5B:4F:2D:86:2D:0D:AF:01:13:25:84:16:EF:0F:E3:59
ValidityTue, 25 Jun 2024 22:50:46 GMT - Mon, 23 Sep 2024 22:50:45 GMT

File type
gzip compressed data, from Unix
Size
20 B (20 bytes)
Hash
7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /rgJV706BpI0D/EMBLv HTTP/1.1
Host: sj.classisclawers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Aug 2024 18:52:24 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.ddlvalley.me
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for, x-requested-with, cache-control, pragma, expires
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Mon, 05-Aug-2024 18:52:24 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Mon, 05-Aug-2024 18:52:24 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

www.ddlvalley.me/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js

104.21.26.57

200 OK

398 B

URL GET HTTP/3
www.ddlvalley.me/wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
ASCII text
Size
398 B (398 bytes)
Hash
3a7b373af67acb42960573e8102cea01
ace16912963355e393d455bc45742528a09aeb7c
9c01fb1b898505d38fd4bbf6060fd263bac9e0cb0cbeb0b4e1567618afb01f20

HTTP Headers

GET /wp-content/plugins/visitors-traffic-real-time-statistics/js/front.js HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: application/javascript
expires: Sat, 05 Jul 2025 09:56:00 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2624184
last-modified: Fri, 05 Jul 2024 09:56:00 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WkMSNOXjzjPmpoSGKjYJXixyJZFAXu27bQLZGx6tFiDUjwOvGtsBTGS0kRzZ%2B1hMRVdfQgA07qMBOb3t4USa4nfeL7qPqXCzpIYWJ29fRn0kH3OmuxOdt%2BA6Gf7tnnQTbkUU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8cf99e56c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/cdn-cgi/challenge-platform/h/b/jsd/r/8ae0be89ee6056c6

104.21.26.57

200 OK

0 B

URL POST HTTP/3
www.ddlvalley.me/cdn-cgi/challenge-platform/h/b/jsd/r/8ae0be89ee6056c6
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/8ae0be89ee6056c6 HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12146
Origin: https://www.ddlvalley.me
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=; Path=/; Expires=Thu, 01-Jan-70 00:00:00 GMT; Domain=.ddlvalley.me; HttpOnly; Secure; SameSite=None
cf_clearance=mE0xUOWlYD3Mdkmoi2y7nk3d_W5EVqYrvFdBFCoNuKM-1722797545-1.0.1.1-gCNVI10opzIyPkedl.TQkRR6gIqGiWfJZNB7xIjjE_s0RAuJeEK.aEjx1bc.x2uLl8SMc3TCQRfDVyjfa.Y37A; Path=/; Expires=Mon, 04-Aug-25 18:52:25 GMT; Domain=.ddlvalley.me; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=U7pG9vEwwvK%2Frn8TJJdO65GLb2SSQvKp62xtlM%2F%2FKcq4H97vgYgE0nnnBYvFaVYOtCZPEmv%2Fy3tDbFDSsMMFm8A5Y6oSxTqFBpaO0ldR32bkPJlgTko9x2U4SWvC2Lh1ygSZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be908d9556c6-OSL
alt-svc: h3=":443"; ma=86400

images.ddlvalley.me/images/52868097689960050635.gif

104.21.26.57

200 OK

11 kB

URL GET HTTP/3
images.ddlvalley.me/images/52868097689960050635.gif
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
GIF image data, version 89a, 30 x 18
Size
11 kB (11360 bytes)
Hash
7877501f9b3ffafe62da446da24e8dcf
1618d2c18e99e165dbef15e697fd6d33229a2a54
b029c76378ea5eb0d17be0ae40b316f329298b08b0b47105020d3c5aaea4a82e

HTTP Headers

GET /images/52868097689960050635.gif HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www7.cbox.ws/
Cookie: cf_clearance=mE0xUOWlYD3Mdkmoi2y7nk3d_W5EVqYrvFdBFCoNuKM-1722797545-1.0.1.1-gCNVI10opzIyPkedl.TQkRR6gIqGiWfJZNB7xIjjE_s0RAuJeEK.aEjx1bc.x2uLl8SMc3TCQRfDVyjfa.Y37A
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: image/gif
content-length: 11360
last-modified: Thu, 02 May 2013 06:48:24 GMT
expires: Wed, 30 Jul 2025 22:53:19 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 417545
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8yMYvfbomcV8oyLWM6HHInHU4B%2FPWxk6cUFrdHhdBAqoBj8hUXoyTLtaC2l8H%2B59jyRN%2F5SkXFN%2FmICLBML9e5UykkOA1UVrlMHm1Yq2qTZR1J1IBxL2PgZ0IUzEMF6LXu2h7OVd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be923f4d56c6-OSL
alt-svc: h3=":443"; ma=86400

r10.o.lencr.org/

23.33.119.57

504 B

URL
r10.o.lencr.org/
IP
23.33.119.57:0
ASN
#20940 Akamai International B.V.

File type
data
Size
504 B (504 bytes)
Hash
78be19d93b8add0d8f3c63b67e490038
2ed9c5d656a70a78ced84cd8fedbf0dcceb35bd6
b8a162cbf6a846ccd9bd65a8744c313d48c66700352346c24777bdc1c2358726

HTTP Headers

POST / HTTP/1.1
Host: r10.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 504
ETag: "B8A162CBF6A846CCD9BD65A8744C313D48C66700352346C24777BDC1C2358726"
Last-Modified: Sat, 03 Aug 2024 18:58:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6166
Expires: Sun, 04 Aug 2024 20:35:11 GMT
Date: Sun, 04 Aug 2024 18:52:25 GMT
Connection: keep-alive

static.cbox.ws/jsc/jsc_1593163307.js

104.21.85.24

200 OK

17 kB

URL GET HTTP/2
static.cbox.ws/jsc/jsc_1593163307.js
IP
104.21.85.24:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form
Certificate
IssuerLet's Encrypt
Subjectcbox.ws
FingerprintF5:C3:DE:CF:30:F9:36:4F:4F:86:8D:A9:1F:BA:07:2C:F7:23:98:8A
ValidityWed, 12 Jun 2024 08:07:52 GMT - Tue, 10 Sep 2024 08:07:51 GMT

File type
JavaScript source, ASCII text, with very long lines (538)
Size
17 kB (16559 bytes)
Hash
deba7955e8512c181f0755445dfe55d2
1b4e673a0098713213a2a43fac601877a68e2a0e
4a0bfe840910b6f2622d2a9a11ff97a2e655facd7db8fa94633607fdc082a46a

HTTP Headers

GET /jsc/jsc_1593163307.js HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www7.cbox.ws
DNT: 1
Connection: keep-alive
Referer: https://www7.cbox.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: application/x-javascript
content-length: 16559
last-modified: Fri, 26 Jun 2020 09:21:54 GMT
etag: "5ef5be32-40af"
content-encoding: gzip
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 3589875
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vT3yH%2Fqwkit5ZSqhY%2FpY4WCBsDXGsij%2BEOpljI75r3SoVRx0vGJtZvDQFUcXcMmgPY5ouo786r%2BTx9w2lAtNgSyPuwPbOatRC7wxrbS70g2Pxk8uYEbSPE7u4liZaDji%2BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be9389281c0a-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

flr-la0.cbox.ws:4430/?pool=7-467799-0

108.181.41.161

0 B

URL
flr-la0.cbox.ws:4430/?pool=7-467799-0
IP
108.181.41.161:0
ASN
#40676 AS40676

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?pool=7-467799-0 HTTP/1.1
Host: flr-la0.cbox.ws:4430
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www7.cbox.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZiMMD6FZ+l1gNgCc9H6rOw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-Websocket-Accept: VC/NEfDxHEpeiOIQo3MVJzVNNCM=
Sec-WebSocket-Extensions: permessage-deflate

www.ddlvalley.me/wp-content/themes/ddlv/style.css

104.21.26.57

200 OK

12 kB

URL GET HTTP/3
www.ddlvalley.me/wp-content/themes/ddlv/style.css
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
Unicode text, UTF-8 text, with very long lines (337), with CRLF line terminators
Size
12 kB (12389 bytes)
Hash
37d73bc523f557bde5aee12322947555
4b1dc1183b711eca2dacd0bb3f836d641058beea
91b277464838de9f67f6264abfab310fb0dd74bab513b2bd3d3c4c6667860b6e

HTTP Headers

GET /wp-content/themes/ddlv/style.css HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 05 Sep 2019 00:30:15 GMT
expires: Fri, 11 Jul 2025 16:25:25 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 2082419
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KhpRgbzSatjfoFpfXtWgqa7kpjEcfGc3ArCNIlp29VwaTyiPzf96ADI65jCyS76xFzvSA0UaFmOX4FgRD4nPZ3Noqn6xZVdaKwVtHVXaYCu752w57m%2F16OjDET4dvK2umlE7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be8cf99256c6-OSL
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/wp-includes/css/dist/block-library/style.min.css

104.21.26.57

200 OK

113 kB

URL GET HTTP/3
www.ddlvalley.me/wp-includes/css/dist/block-library/style.min.css
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type

Size
113 kB (113381 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 03 Apr 2024 08:23:51 GMT
expires: Fri, 13 Jun 2025 11:27:54 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 4519470
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tDL6dAHI5OPBT82m8VS3OZiYBEmvBhaQeJPISvptPVT5y4LYBT7fyF%2BBGhwhV5x3T%2BeAyHCxjoGRT3ofUwds9b9VhGFYWINv8YWfUFIxAj9uaN7UX%2FT6vLENwBOBiNAx52d7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be8cf99656c6-OSL
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.min.js

104.21.26.57

200 OK

93 kB

URL GET HTTP/3
www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.min.js
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JavaScript source, ASCII text, with very long lines (65481), with CRLF line terminators
Size
93 kB (92555 bytes)
Hash
0178077912744e0856babe0fddd9c2b1
f227d0414158da8bd3df7005c8fb56751927453e
ee52e397628159745db0f6bb67c2de9b428c3d3b67533c945a3eb375c219de1a

HTTP Headers

GET /wp-content/themes/ddlv/js/jquery.min.js HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: application/javascript
expires: Fri, 13 Jun 2025 08:58:13 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 4528451
last-modified: Thu, 13 Jun 2024 08:58:13 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wS1WXX4FYr4mPj6df7sDBBOJJ9tDdLa30iQf0k2SOlO7u1R4X1CbNQ2h%2BPPynIGgWo6x%2BdwkgnKEKn%2BUpfbqt8fQ0awrT6eimQiy3KEvH7odTkvb0HsFhFzOte9gg3KpN3BH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8cf9a056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js?

104.21.26.57

200 OK

7.8 kB

URL GET HTTP/3
www.ddlvalley.me/cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js?
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JavaScript source, ASCII text, with very long lines (7785), with no line terminators
Size
7.8 kB (7785 bytes)
Hash
01f839b6b3055d84d1a17c9c59540081
275d68de8fccc2123d2260ae38150548e3871787
04270bf867355be4836e9dbb1bae84ffcca6d50cec5a7f3067073f34a80a89e2

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js? HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bvcp0xzRklVf%2BqGXz5aDxGbkr%2BfC8B%2BIpaN3LfNhMboBXcosPT%2BJ4m7zPT25ULS9inWo3hA0R%2FVlWT2%2BUgVHH3zRsCT4PMn1w7VbkWB%2FvqTWMEQkzarlAjZl2paoMNcYpE9n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8f5c6056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/

104.21.26.57

200 OK

64 kB

URL User Request GET HTTP/3
www.ddlvalley.me/
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type

Size
64 kB (63724 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Sun, 04 Aug 2024 18:52:24 GMT
cache-control: max-age=0, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a2%2FCzYn5aAbdUV3dPJRQwUIY3JfUJv6xBoQfVV0Q9zJftpNnIZSN5Lne%2FDuCOvPqoZRqvtGGPmqIXhJW5gsSla1vBZpWvh%2FTKVZB8JfvodqZffg%2F42HeSoZS%2BSnMwb%2BA39g9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be89ee6056c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

flr-la0.cbox.ws:4430/?pool=7-467799-0

108.181.41.161

101 Switching Protocols

0 B

URL GET HTTP/1.1
flr-la0.cbox.ws:4430/?pool=7-467799-0
IP
108.181.41.161:4430
ASN
#40676 AS40676

Requested by
https://www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form
Certificate
IssuerLet's Encrypt
Subjectcbox.ws
Fingerprint1C:9E:A9:39:1C:D1:D7:BD:91:71:1C:97:25:C9:80:A6:D4:EF:C8:A1
ValidityFri, 26 Jul 2024 10:17:37 GMT - Thu, 24 Oct 2024 10:17:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?pool=7-467799-0 HTTP/1.1
Host: flr-la0.cbox.ws:4430
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www7.cbox.ws
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZiMMD6FZ+l1gNgCc9H6rOw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Upgrade: websocket
Connection: Upgrade
Sec-Websocket-Accept: VC/NEfDxHEpeiOIQo3MVJzVNNCM=
Sec-WebSocket-Extensions: permessage-deflate

www.ddlvalley.me/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1

104.21.26.57

200 OK

19 kB

URL GET HTTP/3
www.ddlvalley.me/wp-includes/js/wp-emoji-release.min.js?ver=6.6.1
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JavaScript source, ASCII text, with very long lines (15752)
Size
19 kB (18726 bytes)
Hash
b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.6.1 HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: application/javascript
expires: Wed, 23 Jul 2025 17:52:29 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 1040395
last-modified: Tue, 23 Jul 2024 17:52:29 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2cDQjoiMpBrEc%2B2x%2Fv5KfNtVzpzOgxV1R8KFcC9CHb06uWdYK%2BhjTMykxlfbcGFoskYlwnLNk%2BWP0mVXxwUiWZR9qyZtpZ2As65K003POIide1ahIAZTxj%2Bt5mc3lPaYAeMZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8eebc656c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=css&i=1525978207

108.181.41.161

200 OK

2.1 kB

URL GET HTTP/2
www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=css&i=1525978207
IP
108.181.41.161:443
ASN
#40676 AS40676

Requested by
https://www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main
Certificate
IssuerLet's Encrypt
Subjectcbox.ws
Fingerprint1C:9E:A9:39:1C:D1:D7:BD:91:71:1C:97:25:C9:80:A6:D4:EF:C8:A1
ValidityFri, 26 Jul 2024 10:17:37 GMT - Thu, 24 Oct 2024 10:17:36 GMT

File type
ASCII text, with very long lines (2506), with no line terminators
Size
2.1 kB (2096 bytes)
Hash
7ed864a671fa3cda20c03d94a2a31088
aa5355c43abb4ecb133139d8effad5bdbdd77fa0
719989650de0cde04e0ea5896e616ee58b402eeaf22d21e8e4e8695c1a660227

HTTP Headers

GET /box/?boxid=467799&boxtag=h5mwfj&sec=css&i=1525978207 HTTP/1.1
Host: www7.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: text/css;charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
expires: Sun, 20 Oct 2024 00:14:24 GMT
cache-control: public, max-age=10368000
x-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

www.ddlvalley.me/wp-admin/admin-ajax.php

104.21.26.57

200 OK

0 B

URL POST HTTP/3
www.ddlvalley.me/wp-admin/admin-ajax.php
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 223
Origin: https://www.ddlvalley.me
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://www.ddlvalley.me
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fq0RaaYAjo9NUh%2F%2BDG1LD2XmawEi8u%2BUVgVFgSU5k6stOHlzslwqjA%2BhWY0ggo%2BeMlyGUvUGVmRj6rZts1axzrNhkvcORokgBC7KYi%2FPSjvPxhEX0PWvf6PskBqfEQyF6otN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be8e0ad356c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/favicon.ico

104.21.26.57

200 OK

1.2 kB

URL GET HTTP/3
www.ddlvalley.me/favicon.ico
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
97bf214de854d0ce3e6e43c82c5428fd
b2aecb3a58575f1083cf06fa455aa86fca608109
689e33095bb1c8be67ec240325e03c0256f69f422db08e8ae8e1203e5b95223c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/x-icon
vary: Accept-Encoding
last-modified: Tue, 19 Aug 2014 22:43:26 GMT
expires: Sat, 05 Jul 2025 09:00:02 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 2627542
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gxg2yTN37%2F3yO2tUcL%2BBoa6ZnKtQxBGaQCdkDzN%2FNCz9trEz22TnsSTkEKL3tGdOpGtpr%2FLmwXyWoEvv5enjAI1NDG8O8H0qp6O9jGrpWMhhS13LWk7nltPx4md7tKZYjMxi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be8fecf056c6-OSL
alt-svc: h3=":443"; ma=86400

images.ddlvalley.me/images/2024/07/02/38704926044e88a657a1fbd2e4ab109d.jpg

104.21.26.57

200 OK

49 kB

URL GET HTTP/3
images.ddlvalley.me/images/2024/07/02/38704926044e88a657a1fbd2e4ab109d.jpg
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 0x0, segment length 16, baseline, precision 8, 304x450, components 3
Size
49 kB (48792 bytes)
Hash
4312c1cb649647267a64128edcd4f2c9
cc549462456aafed3cd339f0d3a95c6ffc71b050
e460fca7276ab946ea892f1f6dcedac6cbaf7f33244534f1002e4094a5222c46

HTTP Headers

GET /images/2024/07/02/38704926044e88a657a1fbd2e4ab109d.jpg HTTP/1.1
Host: images.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: image/jpeg
content-length: 48792
last-modified: Tue, 02 Jul 2024 21:54:31 GMT
expires: Sun, 03 Aug 2025 15:35:25 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 98219
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hEOaM52suUnwnnTc05bx6FhlX1Am%2B1GksXGSDdMW0xPpew9kqoNDWBS7Ctwp8sReGteviqpTS3x2iA71mixR%2BKO7Awc1NrZHqUZWZTQOF8MGG1LGHXFc2uKtJSYsIEqJhrWvJElq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8d09bc56c6-OSL
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/wp-content/plugins/wordpress-sphinx-plugin/templates/sphinxsearch.css

104.21.26.57

200 OK

771 B

URL GET HTTP/3
www.ddlvalley.me/wp-content/plugins/wordpress-sphinx-plugin/templates/sphinxsearch.css
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
ASCII text, with very long lines (817), with no line terminators
Size
771 B (771 bytes)
Hash
e3552c1f355fb166bc616f63d15420b0
2d2d75f36b22c3278e2ce7e3db3d64ccfcb9a6b2
857860a713b607419a51221580ae9e82c44ac4a7f40a0098d6373ee6172c47ce

HTTP Headers

GET /wp-content/plugins/wordpress-sphinx-plugin/templates/sphinxsearch.css HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 19 Jan 2018 07:41:44 GMT
expires: Fri, 13 Jun 2025 11:27:54 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
content-encoding: gzip
cf-cache-status: HIT
age: 4519470
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BRtLZXX4jeCeUEdT46OQacpb561RZ1Dg%2FN9J%2BDcGzXngXtxP3usUhX%2BT0PBTO0q40vYxmAa2uJR5nmKMNNADwd4yeVLrK60sI2eF%2Brqu9K3dKcSWmQK8xKQD2jfF2BSTLjVd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8ae0be8cf99956c6-OSL
alt-svc: h3=":443"; ma=86400

www.ddlvalley.me/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.21.26.57

302 Found

7.8 kB

URL GET HTTP/3
www.ddlvalley.me/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type

Size
7.8 kB (7785 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Sun, 04 Aug 2024 18:52:24 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/8c81cb09042c/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BrOn%2BOOV2O8kp0BCC1HStxEpW4TAN1vlC61TZ7w%2B0jvYZBt%2B%2BvqgGP0UmZDLoroc72NiiQsXnLQOwNcmXZXuK5AKXM0TdJjguYx0HDgrnC9VIC0mme02anSkiGCla0LWRClU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8efbe956c6-OSL
alt-svc: h3=":443"; ma=86400

www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main

108.181.41.161

200 OK

5.9 kB

URL GET HTTP/2
www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=main
IP
108.181.41.161:443
ASN
#40676 AS40676

Requested by
https://www.ddlvalley.me/
Certificate
IssuerLet's Encrypt
Subjectcbox.ws
Fingerprint1C:9E:A9:39:1C:D1:D7:BD:91:71:1C:97:25:C9:80:A6:D4:EF:C8:A1
ValidityFri, 26 Jul 2024 10:17:37 GMT - Thu, 24 Oct 2024 10:17:36 GMT

File type
HTML document, ASCII text, with very long lines (6248), with no line terminators
Size
5.9 kB (5883 bytes)
Hash
c15f6329969b5c0209de8145e7c6bb76
e427f45ecca5f40d6ce4555d0da7f4501d44d5ea
d9537990002c3fd42c9121a0aeb92bdf98436e2ca5cb25a29ade76cec5e66c2e

HTTP Headers

GET /box/?boxid=467799&boxtag=h5mwfj&sec=main HTTP/1.1
Host: www7.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
cache-control: public, must-revalidate, max-age=5
last-modified: Sun, 04 Aug 2024 18:52:23 GMT
x-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form

108.181.41.161

200 OK

4.5 kB

URL GET HTTP/2
www7.cbox.ws/box/?boxid=467799&boxtag=h5mwfj&sec=form
IP
108.181.41.161:443
ASN
#40676 AS40676

Requested by
https://www.ddlvalley.me/
Certificate
IssuerLet's Encrypt
Subjectcbox.ws
Fingerprint1C:9E:A9:39:1C:D1:D7:BD:91:71:1C:97:25:C9:80:A6:D4:EF:C8:A1
ValidityFri, 26 Jul 2024 10:17:37 GMT - Thu, 24 Oct 2024 10:17:36 GMT

File type
HTML document, ASCII text, with very long lines (4838), with no line terminators
Size
4.5 kB (4516 bytes)
Hash
625ee50ffb8b1f6ca4cb615d1ce0d623
3fc388978f628c05150c64ec672db38cbb65c07d
b719b6a3cf30582fcdab13768ccfe7be340e2f8c61d3ba542b03cc01678727ce

HTTP Headers

GET /box/?boxid=467799&boxtag=h5mwfj&sec=form HTTP/1.1
Host: www7.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Sun, 04 Aug 2024 18:52:25 GMT
content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
expires: Mon, 04 Aug 2025 18:52:21 GMT
cache-control: public, max-age=31536000
x-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.cookie.min.js

104.21.26.57

200 OK

989 B

URL GET HTTP/3
www.ddlvalley.me/wp-content/themes/ddlv/js/jquery.cookie.min.js
IP
104.21.26.57:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.ddlvalley.me/
Certificate
IssuerGoogle Trust Services
Subjectddlvalley.me
FingerprintF3:8E:F9:32:69:E9:F8:F7:FD:01:3C:58:9C:3D:AA:60:C4:E1:57:BA
ValiditySun, 30 Jun 2024 21:47:45 GMT - Sat, 28 Sep 2024 21:47:44 GMT

File type
JavaScript source, ASCII text, with very long lines (989), with no line terminators
Size
989 B (989 bytes)
Hash
bf3139efff7bbe9eece58391cdc52e32
114ab1d8421151e8bffc6f31355e7853d8b08529
3f1c66373abda331ee7a7e4bc6c7d15deb3e348696a20bb6662b3f4f425d49ac

HTTP Headers

GET /wp-content/themes/ddlv/js/jquery.cookie.min.js HTTP/1.1
Host: www.ddlvalley.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ddlvalley.me/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 04 Aug 2024 18:52:24 GMT
content-type: application/javascript
expires: Sat, 05 Jul 2025 09:28:01 GMT
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
pragma: public
cf-cache-status: HIT
age: 2625863
last-modified: Fri, 05 Jul 2024 09:28:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AqZC7ninrVYBcBY5A42phBal46odc8mP%2BK2rqMjbQaIl7my2Fzq5qUrvijo%2FR96p77Aufr5S%2FJ5xC1IpT8s048gcF0a%2B%2B2gdbR3%2FrR2sARVFdF3Qhf7L8dpyt6tK8JQPrEOt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8ae0be8cf9a556c6-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (14)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash