firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 16 Oct 2022 20:50:37 GMT
Expires: Sun, 16 Oct 2022 21:28:35 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6PcMqcBrtgpx5lZyPZXWUYNGqGhWSxQRpbfn8Y0kfCYe6yPBc2m82g==
Age: 3166
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 07b3389fc24c0f8eb82a9d05b546d17e
02716741b8952e548b9a223adbb3f16204eef2b2
25e13458988115ae1f8176cb2328dbfebd612eabebf256b4af64594d5e23d6ca
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25E13458988115AE1F8176CB2328DBFEBD612EABEBF256B4AF64594D5E23D6CA"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10416
Expires: Mon, 17 Oct 2022 00:36:59 GMT
Date: Sun, 16 Oct 2022 21:43:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a57d0f62d9bd29668b94a513fa45d18e
d7cb263502e21f9235b4523a596e2138d22042ec
df7acd4fe34cc9c4945a5d83ef538105a73dfc1a8b485bc7a62488c5406b1294
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7ACD4FE34CC9C4945A5D83EF538105A73DFC1A8B485BC7A62488C5406B1294"
Last-Modified: Sat, 15 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2369
Expires: Sun, 16 Oct 2022 22:22:52 GMT
Date: Sun, 16 Oct 2022 21:43:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: m7NIY8FenzDpRX2KRQByrR1m8tEHuRChO5wHlF1Jz8GmRhgyyDxmu/wTHENXPuzzXcVycDzID9k=
x-amz-request-id: 3MA50EYSHYSG31ZZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 16 Oct 2022 21:35:12 GMT
age: 491
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
rbebooks.site/comptia-security-exam-study-guide/
142.132.250.25200 OK 30 kB URL HTTP/1.1 rbebooks.site/comptia-security-exam-study-guide/
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (7671), with CRLF, LF line terminators
Hash 913429703d4bd9148f52af5dc90efd59
ff318195017327987caddc576cbae39bd8c32348
27280a064083def1484d02e9988e302cf05463a94b7e548bdc615f1d6daefd95
GET /comptia-security-exam-study-guide/ HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Pingback: http://rbebooks.site/xmlrpc.php
Link: <https://rbebooks.site/wp-json/>; rel="https://api.w.org/", <https://rbebooks.site/wp-json/wp/v2/posts/9086>; rel="alternate"; type="application/json", <https://rbebooks.site/?p=9086>; rel=shortlink
X-Mod-Pagespeed: 1.13.35.2-0
Cache-Control: max-age=0, no-cache, s-maxage=10
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/font-awesome/css/all.min.css?ver=6.0.2
142.132.250.25200 OK 13 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/font-awesome/css/all.min.css?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (59158)
Hash 15f654c4aff00b5e1e5c547242050a93
81bcb3f52469eae64ad9493fd9bb499506797325
4329f344a3a01e60369de829d257efd941d0acec24ded4b24e00d80d2ea151cb
GET /wp-content/themes/chromenews/assets/font-awesome/css/all.min.css?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:36 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/plugins/buymeacoffee/public/css/buy-me-a-coffee-public.css?ver=3.0
142.132.250.25200 OK 99 B URL HTTP/1.1 rbebooks.site/wp-content/plugins/buymeacoffee/public/css/buy-me-a-coffee-public.css?ver=3.0
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash 599e800a1c8642027bf9d6e121344994
c6b68e60840c9c2805e7888d54aa396ed08cbf65
1614f0cef6ccd70588e729d301766ef768f1aeaa1d93c2299f0f7654e5baa6f0
GET /wp-content/plugins/buymeacoffee/public/css/buy-me-a-coffee-public.css?ver=3.0 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: text/css
Content-Length: 99
Connection: keep-alive
Last-Modified: Mon, 22 Aug 2022 13:11:52 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
www.googletagmanager.com/gtag/js?id=G-CCWKBB1PCZ
142.250.74.168302 Found 253 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=G-CCWKBB1PCZ
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 97810e2062ea6c1fa4dbf7f184db405e
6fa70aea0e09afe7ae6344654cc35263fd978cfd
9678971a68add524e95ef0f64aa0ba8c7d35586ade694f5fd8c353a40ba297db
GET /gtag/js?id=G-CCWKBB1PCZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=G-CCWKBB1PCZ
Cross-Origin-Resource-Policy: cross-origin
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 253
X-XSS-Protection: 0
rbebooks.site/wp-content/themes/chromenews/assets/sidr/css/jquery.sidr.dark.css?ver=6.0.2
142.132.250.25200 OK 429 B URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/sidr/css/jquery.sidr.dark.css?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash e025998a07dd3a67b9e0810027a57003
faa78ac2c49c5f358553c191b598db29825f8044
58947c1e5de9f7fb407da160ec1e63fe43ab2b081d9932d9080e0a243f402b25
GET /wp-content/themes/chromenews/assets/sidr/css/jquery.sidr.dark.css?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:33 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/js/navigation.js?ver=20151215
142.132.250.25200 OK 1.1 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/js/navigation.js?ver=20151215
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash bbf0b6923019257667b4999aad3002c7
2511c93bf772db6bbdab10bcd3da1fc7a4531bbf
d8310a01180a019f08ecaf53f1051ffd14827f91e89225e731ab83f3a170d141
GET /wp-content/themes/chromenews/js/navigation.js?ver=20151215 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:32 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/magnific-popup/magnific-popup.css?ver=6.0.2
142.132.250.25200 OK 1.8 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/magnific-popup/magnific-popup.css?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash eb4d2fa5bd4dca3cba4a1ec4045e913b
c004d7bd9a1c4e40ed1b1cb77dd6a94821ee8b16
d758aefd39bbfcc2225a6b8be1ba0ab6bdd09f402b342de5a4932d60d4879607
GET /wp-content/themes/chromenews/assets/magnific-popup/magnific-popup.css?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:37 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/plugins/a3-lazy-load/assets/css/jquery.lazyloadxt.spinner.css?ver=6.0.2
142.132.250.25200 OK 212 B URL HTTP/1.1 rbebooks.site/wp-content/plugins/a3-lazy-load/assets/css/jquery.lazyloadxt.spinner.css?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash db66de13c05ea53fcf76501102756efa
e124611eaa5ac52ad1ffa6d8e13bd54ec53f251b
bcc8b236b089f186585569d3128078fcc27eafe97a8d01b2075f6f8528779e07
GET /wp-content/plugins/a3-lazy-load/assets/css/jquery.lazyloadxt.spinner.css?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 04 Oct 2022 15:21:01 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.9.1
142.132.250.25200 OK 3.3 kB URL HTTP/1.1 rbebooks.site/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.9.1
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1577)
Hash 1dee6a3decb1139caa392ff5205a75c4
9b21fb4d7c6e20a737d6b9b66c46d309d864825f
bb462344602a86ec3cfef29a834c0a1a4d47ef80c1754c8fec5be54e88de14d7
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.9.1 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 11 Oct 2022 22:10:16 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/plugins/buymeacoffee/public/js/buy-me-a-coffee-public.js?ver=3.0
142.132.250.25200 OK 481 B URL HTTP/1.1 rbebooks.site/wp-content/plugins/buymeacoffee/public/js/buy-me-a-coffee-public.js?ver=3.0
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash ef207c36e0fbaccd157f68eeff806315
bfd436d183577193494da0eaad406cb0bdd0c086
fc3dded98fd38d8fb072576b2a0743c22673d57ec0af0be9061efd2bc82b3e2f
GET /wp-content/plugins/buymeacoffee/public/js/buy-me-a-coffee-public.js?ver=3.0 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 22 Aug 2022 13:11:52 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/jquery.cookie.js?ver=6.0.2
142.132.250.25200 OK 1.4 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/jquery.cookie.js?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash 6dd3cde18a3b5a9dde1b2b766137afa5
b5d2c2d5e6d9317c5f7bb97227d30e334e8f3b03
d32265fc59a99736a3bfeacb73fa40ed34d672cd396a6d8c95ef38af59343a89
GET /wp-content/themes/chromenews/assets/jquery.cookie.js?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:36 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
142.132.250.25200 OK 5.1 kB URL HTTP/1.1 rbebooks.site/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (15660)
Hash 8592048ec656e41d4797240e7df5ac38
5ed5d9f50f67b9283dc78d0f0ad9e4ab53af595b
0865155ebddd7c505b677182ab113cc5f1ba66ccc7bd085c3aa8f94403fdc6cd
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 24 May 2022 20:16:24 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/slick/css/slick.min.css?ver=6.0.2
142.132.250.25200 OK 479 B URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/slick/css/slick.min.css?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1297), with no line terminators
Hash dccd4582f989e4502f589bbee430768b
74a54c10b7d3de27d692bf8cbbe93199c91c75f6
5548bf564e1afd4c6600b1fbdca874aee07e965a24dcaf6ce673624114e5bb3f
GET /wp-content/themes/chromenews/assets/slick/css/slick.min.css?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:36 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/toggle-script.js?ver=20221215
142.132.250.25200 OK 459 B URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/toggle-script.js?ver=20221215
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash 858ecfc9037450b3d288cd4087b87a81
d893123a6d04184289305131dd679192bb48d328
d705e65fa51020dbf098446f0a85e13d7740e3674108dde10762d648f3078be8
GET /wp-content/themes/chromenews/assets/toggle-script.js?ver=20221215 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:37 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/style.css?ver=6.0.2
142.132.250.25200 OK 55 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/style.css?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1142)
Hash 2fd9bd43441fec1825d3a32964d1548e
08d45043ddcd72f499044829e09efd5e44ec4dd8
c3cf152e34c317d8427e84d0465f2bbc0a5a83c1e676b591f20eefe50cbd4db1
GET /wp-content/themes/chromenews/style.css?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:32 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/js/skip-link-focus-fix.js?ver=20151215
142.132.250.25200 OK 417 B URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/js/skip-link-focus-fix.js?ver=20151215
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash 73f7704398d8f6be9748d30791950984
3231f3786c364c7665cd7123d8fae0f42bbfd836
c1d9b23aff05fb52e5d6e68aff86d808097185c6dbaac6c3fc3ec6e5bea31ef4
GET /wp-content/themes/chromenews/js/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:32 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/slick/js/slick.min.js?ver=6.0.2
142.132.250.25200 OK 10 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/slick/js/slick.min.js?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (32076)
Hash 2335ebc9d75d21335c2f4f24f66b48a6
40a402ea0f0f8b03ed04ec3e2a077b7e6c8a2bda
87513b04039b97d60f4873ef513790e28c77955bd47e17ded70031dfdcb1f194
GET /wp-content/themes/chromenews/assets/slick/js/slick.min.js?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:36 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/bootstrap/css/bootstrap.min.css?ver=6.0.2
142.132.250.25200 OK 20 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/bootstrap/css/bootstrap.min.css?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (65371)
Hash a8643ac2bb55fb711ad568077138092d
baa7c75af9a875bbeca8ca2d2482a7a15768e03c
3deb20fc65f8c4f74b68525e3a4fa25494e2b3c2c88f275675bd222f21d59184
GET /wp-content/themes/chromenews/assets/bootstrap/css/bootstrap.min.css?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:37 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/sidr/js/jquery.sidr.min.js?ver=6.0.2
142.132.250.25200 OK 2.6 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/sidr/js/jquery.sidr.min.js?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (6911)
Hash e1d8ea344d1917f9bc469a265326b152
daf3cc934edb3c1d89e715e86f1c75ee9da3f5da
4935b4d1de62da5048e79e2ca0c78c71c7c39fb3004f3a9c92e4d53aee26fca3
GET /wp-content/themes/chromenews/assets/sidr/js/jquery.sidr.min.js?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:33 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.0.2
142.132.250.25200 OK 7.4 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (20089)
Hash cafc6c8be8ba95cf4c1847c9fc5a9c9c
3c4763cfadeb20508a03479451873df1ffdb7b46
ed88ec33034896aede7740d8db2ab2dfae8d0dc0c0cfb473f1ca6186457763d7
GET /wp-content/themes/chromenews/assets/magnific-popup/jquery.magnific-popup.min.js?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:37 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.0.2
142.132.250.25200 OK 1.4 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (521)
Hash ead931d4b0da911c2b4f309d11bd3658
b0d0a9c50c058aa44ba679d15bca0818839b2641
c54d7bb9311371f47977c03c1bd7be0a407082411c67f66bc1cf1cb4a57e8749
GET /wp-content/themes/chromenews/assets/jquery-match-height/jquery.matchHeight.min.js?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:37 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/marquee/jquery.marquee.js?ver=6.0.2
142.132.250.25200 OK 4.6 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/marquee/jquery.marquee.js?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash 94aea8b944db3811110e78b30b2d10de
ad8b956c0dfca355e3c4b46f2ccd08384aae831f
58840de8bf969676e55b1b0227fc3b4bb964382ed0039cf255e228c03195c626
GET /wp-content/themes/chromenews/assets/marquee/jquery.marquee.js?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:36 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.0.2
142.132.250.25200 OK 1.7 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type HTML document, ASCII text, with very long lines (5370)
Hash bf4ffc4bde3b23f8cf1b4dc1b8eceb22
8e4b5998fa81e52f9b041b5ee339975adae6a140
f00ea856bb0e5e5048dc572feaa320895662008257b4daaed74e245a04afbb05
GET /wp-content/themes/chromenews/assets/theiaStickySidebar/theia-sticky-sidebar.min.js?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:36 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/bootstrap/js/bootstrap.min.js?ver=6.0.2
142.132.250.25200 OK 16 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/bootstrap/js/bootstrap.min.js?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (57791)
Hash b49da897d0bf7089fd31386bb44dc581
231cbc4bc7905ca458ae932531b4f1362a24be84
d5543fdb436c315a99208393c17a0136493c10c7bdc63000af51dc5f47a13ef6
GET /wp-content/themes/chromenews/assets/bootstrap/js/bootstrap.min.js?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:37 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0efa623bed47d42f69be9e523e7725f4
b301c00ee9ab5778b326edea3bc274f8ae46da15
c7d4afc16dd19b5216a9c34cf3048b4e6dff056608666d6d40c9f5eeeae309a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rbebooks.site/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.srcset.min.js?ver=2.6.1
142.132.250.25200 OK 764 B URL HTTP/1.1 rbebooks.site/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.srcset.min.js?ver=2.6.1
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (1533)
Hash 5482bab316d4745f945ceedf9a6a4a74
e19b9f0423ec7ea517fb3af8d04a08182e323da6
72be1dd2581dc327b485bb623a54884f951fa91ac86c39b534adf3ee80b87415
GET /wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.srcset.min.js?ver=2.6.1 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 04 Oct 2022 15:21:01 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/themes/chromenews/assets/script.js?ver=6.0.2
142.132.250.25200 OK 4.5 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/script.js?ver=6.0.2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash 75c4926942f7c0698e8d32b119eaafa9
c20c95c4b7b85256d6100ab4bcbd5cd81bb24ed6
0b99b849845a128e65b822928cbe1403ee8217511598e3a4e90972ef24f7ca7d
GET /wp-content/themes/chromenews/assets/script.js?ver=6.0.2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 10 Oct 2022 14:04:37 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extra.min.js?ver=2.6.1
142.132.250.25200 OK 1.5 kB URL HTTP/1.1 rbebooks.site/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extra.min.js?ver=2.6.1
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (2976)
Hash ef92f9c387fe31483aa1baa625d6f380
6af89e953cff5893779d1183467f89d6ea753b17
42bf5be4ace7a18492dc4fd2cbf563867812f799b7930021e648752e1e109e7a
GET /wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extra.min.js?ver=2.6.1 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 04 Oct 2022 15:21:01 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
rbebooks.site/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extend.js?ver=2.6.1
142.132.250.25200 OK 415 B URL HTTP/1.1 rbebooks.site/wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extend.js?ver=2.6.1
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash 62e6439ea22c07d86674d88b688a9fb1
e499a5c06d34f838fc1a5b36a924ca5600f4f9cd
2e117cc65e06418d0232894884eb7b596ecc9d82c5c7c2c5ea6ee2c630af8e43
GET /wp-content/plugins/a3-lazy-load/assets/js/jquery.lazyloadxt.extend.js?ver=2.6.1 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 04 Oct 2022 15:21:01 GMT
Expires: Tue, 15 Nov 2022 21:43:23 GMT
Cache-Control: max-age=2592000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f309b801fdcff49c832652cf9f67fed
f0b6a27d0995fd7fd40f23ee385f8fe1fd752c13
53663428a1b73aeee2fc68815b072ad9ced52bfd3726416aaab332c29eb3aab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ws-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetScript&ID=OneJS&WS=1&MarketPlace=US
52.94.230.46200 200 8.0 kB URL HTTP/1.1 ws-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetScript&ID=OneJS&WS=1&MarketPlace=US
IP 52.94.230.46:0
File type ASCII text, with very long lines (24699), with no line terminators
Hash 74d6c4a6916a3a08a77c9840e918cd00
21e142f3dd92491685b4d25bae60407b4fd16b3d
b0f9d5d6b1f36637013b6876bab4407030ca27fba61818e79db7afdffa6015fb
GET /widgets/q?ServiceVersion=20070822&Operation=GetScript&ID=OneJS&WS=1&MarketPlace=US HTTP/1.1
Host: ws-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 200
Date: Sun, 16 Oct 2022 21:43:23 GMT
Server: Server
Content-Encoding: gzip
charset: UTF-8
Access-Control-Allow-Origin: *
Cache-Control: public,max-age=86400,s-maxage=86400,no-transform
Expires: Mon, 17 Oct 2022 21:43:24 GMT
Pragma: Public
Content-Length: 7968
Vary: User-Agent
nnCoection: close
Content-Type: application/javascript;charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 16 Oct 2022 21:07:43 GMT
Cache-Control: max-age=3600
Expires: Sun, 16 Oct 2022 21:17:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xmr-d3sGYrzF6CMC6yCHDupw8_Hl2B0rFcjMYMKRybzoEMceub4dAA==
Age: 2141
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5f309b801fdcff49c832652cf9f67fed
f0b6a27d0995fd7fd40f23ee385f8fe1fd752c13
53663428a1b73aeee2fc68815b072ad9ced52bfd3726416aaab332c29eb3aab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0fed321269b6c2e851bf6bd91f7531ae
7a0c76407c86716f881a73eef92c6c288da7b252
f89e9b55e07ee05f877116aa6615c3717e7c88bcd3c50995eddee7c06029ad06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5117
Cache-Control: max-age=145486
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Etag: "634bfc4d-117"
Expires: Tue, 18 Oct 2022 14:08:10 GMT
Last-Modified: Sun, 16 Oct 2022 12:42:53 GMT
Server: ECS (amb/6BB3)
X-Cache: HIT
Content-Length: 279
www.googletagmanager.com/gtag/js?id=UA-217866199-1
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-217866199-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1962)
Hash 7194ae9949cb640e1e1149980bada351
8a88ae5bd625f70b63d32283b9112c675dc2a3b4
43c3e630d33b2ab9a86e8bac8f00a747b4be1acb6ae86308c0601b4332d32c0f
GET /gtag/js?id=UA-217866199-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 16 Oct 2022 21:43:24 GMT
expires: Sun, 16 Oct 2022 21:43:24 GMT
cache-control: private, max-age=900
last-modified: Sun, 16 Oct 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42484
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0efa623bed47d42f69be9e523e7725f4
b301c00ee9ab5778b326edea3bc274f8ae46da15
c7d4afc16dd19b5216a9c34cf3048b4e6dff056608666d6d40c9f5eeeae309a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-CCWKBB1PCZ
142.250.74.168200 OK 65 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-CCWKBB1PCZ
IP 142.250.74.168:0
File type ASCII text, with very long lines (2996)
Hash 0d05bf8f2e9f415df5afc7058e5182b5
0caaa736a164b6f130972a6bfae09ba0c5549cc5
a2f8d29927763256fbd666ad09eff4d0b4e8731672431080b63636a39bd5576f
GET /gtag/js?id=G-CCWKBB1PCZ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://rbebooks.site/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 16 Oct 2022 21:43:24 GMT
expires: Sun, 16 Oct 2022 21:43:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 64861
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0fed321269b6c2e851bf6bd91f7531ae
7a0c76407c86716f881a73eef92c6c288da7b252
f89e9b55e07ee05f877116aa6615c3717e7c88bcd3c50995eddee7c06029ad06
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5117
Cache-Control: max-age=145486
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Etag: "634bfc4d-117"
Expires: Tue, 18 Oct 2022 14:08:10 GMT
Last-Modified: Sun, 16 Oct 2022 12:42:53 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
rbebooks.site/wp-content/plugins/a3-lazy-load/assets/images/lazy_placeholder.gif
142.132.250.25200 OK 42 B URL HTTP/1.1 rbebooks.site/wp-content/plugins/a3-lazy-load/assets/images/lazy_placeholder.gif
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /wp-content/plugins/a3-lazy-load/assets/images/lazy_placeholder.gif HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:24 GMT
Content-Type: image/gif
Content-Length: 42
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 15:21:00 GMT
Expires: Thu, 15 Dec 2022 21:43:24 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfc92c8f6ee7599505d969732542ac42
7f4804d49c8ccd76ccffa6b72d41b1df611eb090
406c057a8392b9fa0ab09efa8b3222a58ec5fc17fa73f55a1f093e3d1092b0e4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3701
Cache-Control: max-age=127504
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Etag: "634bbb97-1d7"
Expires: Tue, 18 Oct 2022 09:08:28 GMT
Last-Modified: Sun, 16 Oct 2022 08:06:47 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js
192.0.77.37200 OK 31 kB URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (65447)
Hash 4a388606679134ac3e9bb7a69c59b507
5622fbaecb8a8de1d25eaffbe953cbd6ad58ecd6
7e03121cbb619372c4895a69d4027d9f6f5e897dbd4ea5fed506f49070017190
GET /c/6.0.2/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 10 Mar 2021 15:07:24 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/jost/v14/92zatBhPNqw73oTd4g.woff2
216.58.207.195200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/jost/v14/92zatBhPNqw73oTd4g.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 26304, version 1.0\012- data
Hash 29404b5009a74d47f2a7923da5741fd5
c8c7a68af3f7e4f92d932203efda0c38e4d170ab
0b7e3af1cb23f3b1cc2c3418f3c31ab3bbadeaa2ba5e72f3cb818e4b44c420f4
GET /s/jost/v14/92zatBhPNqw73oTd4g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rbebooks.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26304
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 02:53:37 GMT
expires: Tue, 10 Oct 2023 02:53:37 GMT
cache-control: public, max-age=31536000
age: 586187
last-modified: Mon, 11 Jul 2022 20:29:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/js/imagesloaded.min.js
192.0.77.37200 OK 26 kB URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/imagesloaded.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (5477)
Hash 085fea1a20465a2dc52262f6c0ad326b
e940f827087bd78c962d15ca1ceda1aca116031c
babd979a570d52de6210f46fd3ed2dd811b1d8864fae7f12074b8b7eef8f5afa
GET /c/6.0.2/wp-includes/js/imagesloaded.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
rbebooks.site/wp-content/themes/chromenews/assets/font-awesome/webfonts/fa-solid-900.woff2
142.132.250.25200 OK 78 kB URL HTTP/1.1 rbebooks.site/wp-content/themes/chromenews/assets/font-awesome/webfonts/fa-solid-900.woff2
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
GET /wp-content/themes/chromenews/assets/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://rbebooks.site/wp-content/themes/chromenews/assets/font-awesome/css/all.min.css?ver=6.0.2
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:24 GMT
Content-Type: font/woff2
Content-Length: 78196
Connection: keep-alive
Last-Modified: Mon, 10 Oct 2022 14:04:35 GMT
Expires: Thu, 15 Dec 2022 21:43:24 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
192.243.61.227200 OK 9.3 kB URL HTTP/1.1 testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25074), with no line terminators
Hash 2fbd608b0cd72509d05e3fa0f4866271
1c1c2931d6312e5f5286ed7753b74ecfdc551a76
be30729b253187a09f5e073fea559e06d460ed75efe31529aee3ae6745cec863
Analyzer Verdict Alert quad9 Sinkholed
GET /0c610b74697d975fe227c0e71980368f/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:24 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: efaf118baa52da0203ecd43e3ffa12c9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9ff8baa10f3ae760b3381000160c019c
110203b49c88573922645c733203d2c490fab776
1269eea9442af2dea64048862196aac0422a9eabb9addcd9c4e948763cb4f08a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1269EEA9442AF2DEA64048862196AAC0422A9EABB9ADDCD9C4E948763CB4F08A"
Last-Modified: Fri, 14 Oct 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=633
Expires: Sun, 16 Oct 2022 21:53:57 GMT
Date: Sun, 16 Oct 2022 21:43:24 GMT
Connection: keep-alive
testimonypersuadedclinic.com/68e0643520cf297c96565ee5d590990a/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 testimonypersuadedclinic.com/68e0643520cf297c96565ee5d590990a/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26961), with no line terminators
Hash 3866b7d95346c448b07e42f42dbaaaaa
6cf447c154bab44d56111534e62c6b0e1f2df3d1
a548089c54f2383d8f2c65bd89b0d77246da5428c48702724009451260e17707
Analyzer Verdict Alert quad9 Sinkholed
GET /68e0643520cf297c96565ee5d590990a/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:24 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c8a1daf0b45a64ca5711fa6999ca33a7
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
testimonypersuadedclinic.com/3b/77/51/3b7751125a8505512c15b5bbbe1612b0.js
192.243.61.227200 OK 13 kB URL HTTP/1.1 testimonypersuadedclinic.com/3b/77/51/3b7751125a8505512c15b5bbbe1612b0.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37127), with no line terminators
Hash 43feea0ca25a0e9c5c093aaf44995306
e8a80d1613d881171b88945b2537acc1eaef9106
94989047198af57cc49b31f191c5275aea37684079212d96f3c2f3625a3cce1b
Analyzer Verdict Alert quad9 Sinkholed
GET /3b/77/51/3b7751125a8505512c15b5bbbe1612b0.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:24 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0e03119f1a48ff6fbee8e16bab885b41
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 251b9e31adcaaee18add58a5e5b2f7a6
2c4459225c8b140eab2d64fee238582db8946f34
a0fba206d5e5510c7cda89e8c42f9e09ff92b649a157a16f3d482e86b454013a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6564
Cache-Control: max-age=120292
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:24 GMT
Etag: "634b943c-1d7"
Expires: Tue, 18 Oct 2022 07:08:16 GMT
Last-Modified: Sun, 16 Oct 2022 05:18:52 GMT
Server: ECS (amb/6BB3)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.202.70.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.202.70.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jAZWHypR90RHFOIfUsfl7g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: H4dsgm7mYImgs7Ahitt2JD99InI=
rbebooks.site/wp-content/plugins/a3-lazy-load/assets/css/loading.gif
142.132.250.25200 OK 1.7 kB URL HTTP/1.1 rbebooks.site/wp-content/plugins/a3-lazy-load/assets/css/loading.gif
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 32 x 32\012- data
Hash 265808cc54404f22de9785c713e0cb7e
bf3d1b71957caee1c6273061ad00c99c5d785a0f
b6e4dff920e21e3f436a014140d01d43c97177e007556ede69f772f08cb7a7ec
GET /wp-content/plugins/a3-lazy-load/assets/css/loading.gif HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/wp-content/plugins/a3-lazy-load/assets/css/jquery.lazyloadxt.spinner.css?ver=6.0.2
Cookie: _ga_CCWKBB1PCZ=GS1.1.1665956608.1.1.1665956608.0.0.0; _ga=GA1.1.2074735278.1665956608
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:24 GMT
Content-Type: image/gif
Content-Length: 1690
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 15:21:01 GMT
Expires: Thu, 15 Dec 2022 21:43:24 GMT
Cache-Control: max-age=5184000
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Nginx-Upstream-Cache-Status: STALE
X-Server-Powered-By: Engintron
Accept-Ranges: bytes
c0.wp.com/p/jetpack/11.4/_inc/build/related-posts/related-posts.min.js
192.0.77.37200 OK 15 kB URL HTTP/2 c0.wp.com/p/jetpack/11.4/_inc/build/related-posts/related-posts.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (5644), with no line terminators
Hash 1bc08c4ce2f2e70aa21bef5b2233a467
799cf3992ca35b4a5474df3f364c1a993e7dd582
67325f977c8dda75da5304f08cea20aa39c0b761245fd6e865d0f55bbf72eb52
GET /p/jetpack/11.4/_inc/build/related-posts/related-posts.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash f0413efff3fc4435819eea0892565002
68f2cbf9d99cbc2f3500c911fe2906ea03a6d72f
f5ebdb13ab4ad27844b4ad00d4bb79c9238bd02937bdab5dc83d0802d956895f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=143746
Date: Sun, 16 Oct 2022 21:43:24 GMT
Etag: "634bf982-1d7"
Expires: Tue, 18 Oct 2022 13:39:10 GMT
Last-Modified: Sun, 16 Oct 2022 12:30:58 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xS5ozwnU4Q3LV1En56co97NMAMXuzy8-Uw3xDKAuxaFbyHS1eKUeLA==
Age: 4092
simplewebanalysis.com/stats
52.29.95.124200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.29.95.124:0
File type ASCII text, with no line terminators
Hash d5446c6b474d17e7565d744d388d6ed2
fbb6c6a33c7813f1a62b99a30f11dab1d5be2c99
7d9ce328e6da02d02b1f9d19838980d5ee27d1235f13c1c5d5cfc326b12bac74
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:24 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://rbebooks.site
access-control-allow-credentials: true
set-cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Wed, 13 Oct 2032 21:43:24 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
web-platforms.sfo2.digitaloceanspaces.com/WWW/Badge%203.svg
138.68.32.225200 OK 17 kB URL HTTP/2 web-platforms.sfo2.digitaloceanspaces.com/WWW/Badge%203.svg
IP 138.68.32.225:0
ASN #14061 DIGITALOCEAN-ASN
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7963)
Hash 5c1550cdd853175d55edcabcf2ddb009
3f991e610e69e10fc5b1b7974fe51d2753bfca8f
0508716156f7f19531bd730c83d0182214a9ae3dc752d0678a6786b95c238586
GET /WWW/Badge%203.svg HTTP/1.1
Host: web-platforms.sfo2.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 16696
accept-ranges: bytes
last-modified: Wed, 14 Apr 2021 17:59:46 GMT
x-rgw-object-type: Normal
etag: "5c1550cdd853175d55edcabcf2ddb009"
x-amz-request-id: tx00000000000009cb63e95-00634c7afc-40f84833-sfo2a
content-type: image/svg+xml
date: Sun, 16 Oct 2022 21:43:24 GMT
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-CCWKBB1PCZ>m=2oeaa0&_p=495130752&gdid=dZGIzZG&cid=2074735278.1665956608&ul=en-us&sr=1280x1024&_s=1&sid=1665956608&sct=1&seg=0&dl=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&dt=CompTIA%20Security%2B%20Exam%20Study%20Guide%20-%20Reading%20Bag%20library&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-CCWKBB1PCZ>m=2oeaa0&_p=495130752&gdid=dZGIzZG&cid=2074735278.1665956608&ul=en-us&sr=1280x1024&_s=1&sid=1665956608&sct=1&seg=0&dl=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&dt=CompTIA%20Security%2B%20Exam%20Study%20Guide%20-%20Reading%20Bag%20library&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-CCWKBB1PCZ>m=2oeaa0&_p=495130752&gdid=dZGIzZG&cid=2074735278.1665956608&ul=en-us&sr=1280x1024&_s=1&sid=1665956608&sct=1&seg=0&dl=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&dt=CompTIA%20Security%2B%20Exam%20Study%20Guide%20-%20Reading%20Bag%20library&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.link_attribution=true HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://rbebooks.site
date: Sun, 16 Oct 2022 21:43:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.topdisplayformat.com/3571d784a89a99fbed8310f791085655/invoke.js
192.243.59.12200 OK 9.8 kB URL HTTP/1.1 www.topdisplayformat.com/3571d784a89a99fbed8310f791085655/invoke.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26945), with no line terminators
Hash 67e9eaf79d0c163d4c5ddcf265fa1499
31bc20e457a83bc96951d8370ce79bef55cbd47b
6b616b22ff3a0cb4b8e4e22f6070a0ff3f2b32a90e76add49e31d34358aec8dd
Analyzer Verdict Alert quad9 Sinkholed
GET /3571d784a89a99fbed8310f791085655/invoke.js HTTP/1.1
Host: www.topdisplayformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 16 Oct 2022 21:43:24 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 31ea0c2c8104a3666ff8cca31aa95d61
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
testimonypersuadedclinic.com/0beffc764a59eda6bb1c999a258cb33a/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 testimonypersuadedclinic.com/0beffc764a59eda6bb1c999a258cb33a/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26971), with no line terminators
Hash c7b961551cb63ddf28eafec8f95ea384
e6970c8f4b412d761f41fbbaaacf70f83a0a5262
7c25e396beca3b61e34c4bda6307c61669113867a869122a2de7c4753a659c92
Analyzer Verdict Alert quad9 Sinkholed
GET /0beffc764a59eda6bb1c999a258cb33a/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0a312504894175459ec9f817134bab0d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
rbebooks.site/wp-json/wp-statistics/v2/hit?_=1665956603&_wpnonce=5b584b389e&wp_statistics_hit_rest=yes&referred=https%3A%2F%2Frbebooks.site&exclusion_match=no&exclusion_reason&track_all=1¤t_page_type=post¤t_page_id=9086&search_query&page_uri=/comptia-security-exam-study-guide/
142.132.250.25200 OK 28 kB URL HTTP/2 rbebooks.site/wp-json/wp-statistics/v2/hit?_=1665956603&_wpnonce=5b584b389e&wp_statistics_hit_rest=yes&referred=https%3A%2F%2Frbebooks.site&exclusion_match=no&exclusion_reason&track_all=1¤t_page_type=post¤t_page_id=9086&search_query&page_uri=/comptia-security-exam-study-guide/
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash 06e13785ca83a22cd2ca6ae517dd5ab2
9c8abe443d47113d540783f74db776b184562d4e
635d54fd1a02a0322fadbdbf285056127cfd9cf7e75f3418287fc800733f9ac8
OPTIONS /wp-json/wp-statistics/v2/hit?_=1665956603&_wpnonce=5b584b389e&wp_statistics_hit_rest=yes&referred=https%3A%2F%2Frbebooks.site&exclusion_match=no&exclusion_reason&track_all=1¤t_page_type=post¤t_page_id=9086&search_query&page_uri=/comptia-security-exam-study-guide/ HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: http://rbebooks.site/
Origin: http://rbebooks.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:24 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex
link: <https://rbebooks.site/wp-json/>; rel="https://api.w.org/"
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type, X-OptinMonster-ApiKey
x-wp-nonce: 5b584b389e
allow: GET
access-control-allow-origin: http://rbebooks.site
access-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE
access-control-allow-credentials: true
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 854ea6ecead46bf40602acbcd56bc13e
b096f44cb1389837c9dbf4dcc86e9f067e2ce7e4
30d317b85f077af998f59e827cf248753baf32be483f2de19fed98452e69e625
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "30D317B85F077AF998F59E827CF248753BAF32BE483F2DE19FED98452E69E625"
Last-Modified: Fri, 14 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5663
Expires: Sun, 16 Oct 2022 23:17:48 GMT
Date: Sun, 16 Oct 2022 21:43:25 GMT
Connection: keep-alive
testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26949), with no line terminators
Hash 1aacbbb8e92081c9e574dc9afa46431d
1434fa722a7364b7df682d9a054e2a49de38c07a
82d48adbd11a8c1b2a7bb48f0a9ba77cc91cf718a3b46f246d09b802f6b958fa
Analyzer Verdict Alert quad9 Sinkholed
GET /95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6d184c1ee0ff4cf2f7308ae5ce9ef028
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
192.243.61.227200 OK 9.3 kB URL HTTP/1.1 testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25062), with no line terminators
Hash 94d303537675ef535aca9041b6a2a931
f27c2483a0e6d18518b0cf3d921c6789123a81bf
b8d84ae5d3230994c43dd7695e1978e2177ae10c1e7656747d3a647c3253fb7a
Analyzer Verdict Alert quad9 Sinkholed
GET /0c610b74697d975fe227c0e71980368f/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ed6e2da4c037e92f1bced3cb3c400af3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26949), with no line terminators
Hash 1aacbbb8e92081c9e574dc9afa46431d
1434fa722a7364b7df682d9a054e2a49de38c07a
82d48adbd11a8c1b2a7bb48f0a9ba77cc91cf718a3b46f246d09b802f6b958fa
Analyzer Verdict Alert quad9 Sinkholed
GET /95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9aa1e19b54f081e171799fb78785b70d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
rbebooks.site/wp-json/wp-statistics/v2/hit?_=1665956603&_wpnonce=5b584b389e&wp_statistics_hit_rest=yes&referred=https%3A%2F%2Frbebooks.site&exclusion_match=no&exclusion_reason&track_all=1¤t_page_type=post¤t_page_id=9086&search_query&page_uri=/comptia-security-exam-study-guide/
142.132.250.25200 OK 588 B URL HTTP/2 rbebooks.site/wp-json/wp-statistics/v2/hit?_=1665956603&_wpnonce=5b584b389e&wp_statistics_hit_rest=yes&referred=https%3A%2F%2Frbebooks.site&exclusion_match=no&exclusion_reason&track_all=1¤t_page_type=post¤t_page_id=9086&search_query&page_uri=/comptia-security-exam-study-guide/
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
Hash 199136de45905cf16c99fcb44cb08188
81b5ea583549a926096492486d1d3f51a0c7dbdb
f609a753a7d9859a0e79ae464fbdce264089d8c4e959fda4d6d52fe76ae9d84d
GET /wp-json/wp-statistics/v2/hit?_=1665956603&_wpnonce=5b584b389e&wp_statistics_hit_rest=yes&referred=https%3A%2F%2Frbebooks.site&exclusion_match=no&exclusion_reason&track_all=1¤t_page_type=post¤t_page_id=9086&search_query&page_uri=/comptia-security-exam-study-guide/ HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:25 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex
link: <https://rbebooks.site/wp-json/>; rel="https://api.w.org/"
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type, X-OptinMonster-ApiKey
x-wp-nonce: 5b584b389e
allow: GET
access-control-allow-origin: http://rbebooks.site
access-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE
access-control-allow-credentials: true
cache-control: no-cache, s-maxage=10
x-xss-protection: 1; mode=block
x-content-type-options: nosniff, nosniff
x-nginx-upstream-cache-status: MISS
x-server-powered-by: Engintron
content-encoding: gzip
X-Firefox-Spdy: h2
harshlygiraffediscover.com/watch.1599531294872.js?key=68e0643520cf297c96565ee5d590990a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
192.243.61.225307 Temporary Redirect 0 B URL HTTP/1.1 harshlygiraffediscover.com/watch.1599531294872.js?key=68e0643520cf297c96565ee5d590990a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1599531294872.js?key=68e0643520cf297c96565ee5d590990a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: harshlygiraffediscover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://harshlygiraffediscover.com/watch.1599531294872.js?key=68e0643520cf297c96565ee5d590990a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=a867f7c44f9b65f1bc59deab897a83c2a8bef5fb62bcf8503e2f39502ca6e131d624f871b95ae117bc22b74fdc431d82f7cb454d21d7341d6155beaac097ce5222c4be7b45b8a9b26a411f37c204024568901316&pst=1665956665&rmtc=t
Set-Cookie: u_pl=17301153; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzMwMTE1MywiayI6IjY4ZTA2NDM1MjBjZjI5N2M5NjU2NWVlNWQ1OTA5OTBhIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODYxNDAzLCJwaWQiOjQ3MDEwMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyNywiYWlkIjoyNiwicHQiOjQsInBrIjoiYTI0NnJicXAxIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwOi8vcmJlYm9va3Muc2l0ZS9jb21wdGlhLXNlY3VyaXR5LWV4YW0tc3R1ZHktZ3VpZGUvIn19.WUlohn36Xu2cziik_OCCC0xEP1uP5CO8XgeWRCnTnkM; expires=Sun, 16 Oct 2022 21:44:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8b57f2ad658e6ae442d96a40e613d1ae
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 51888e524274dd5a9f545aaf74dc773d
f92d558999c2ac533d872c5a57ac65465456f3f1
cb956fb32fc9ad87e0ea3e114e0d0a68bf3eb8b0015a0125349ad5e63d6b47ef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB956FB32FC9AD87E0EA3E114E0D0A68BF3EB8B0015A0125349AD5E63D6B47EF"
Last-Modified: Fri, 14 Oct 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6617
Expires: Sun, 16 Oct 2022 23:33:42 GMT
Date: Sun, 16 Oct 2022 21:43:25 GMT
Connection: keep-alive
testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26945), with no line terminators
Hash 67e9eaf79d0c163d4c5ddcf265fa1499
31bc20e457a83bc96951d8370ce79bef55cbd47b
6b616b22ff3a0cb4b8e4e22f6070a0ff3f2b32a90e76add49e31d34358aec8dd
Analyzer Verdict Alert quad9 Sinkholed
GET /95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3b6a7cef260d8e6122b288b7dcd23b50
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
192.243.61.227200 OK 9.3 kB URL HTTP/1.1 testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25114), with no line terminators
Hash d84541497609e2d61aae2c1e19d34929
61a0a70023650f007466b4542dc5a4c1c1a28063
f3da2f44fa6c5dd4096521989d12266be785939383234f74fd0176bddf122641
Analyzer Verdict Alert quad9 Sinkholed
GET /0c610b74697d975fe227c0e71980368f/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 321070ceaebdaf528fcfc8483e65e9b0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
motivessuggest.com/watch.403354123389.js?key=3571d784a89a99fbed8310f791085655&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
173.233.137.60307 Temporary Redirect 0 B URL HTTP/1.1 motivessuggest.com/watch.403354123389.js?key=3571d784a89a99fbed8310f791085655&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.403354123389.js?key=3571d784a89a99fbed8310f791085655&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: motivessuggest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://motivessuggest.com/watch.403354123389.js?key=3571d784a89a99fbed8310f791085655&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=06f74965a32bbf649ec142c8afd0eb1f3625f9bffa255cc02aa0704705b6bc12de26407522f20ab6db65056ea8321964779310009eeeb1599cf63dadbf836686ce0d258e2da5e453f14469cbd329d712113ef1479e37d9db797ac9a51dfff4&pst=1665956665&rmtc=t
Set-Cookie: u_pl=17258380; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.BpPyYDBvSArdyIO_B-CiAvRMMu3infT9MDzSVc54bMo; expires=Sun, 16 Oct 2022 21:44:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c731c23d32d1c03d03957cb300584efc
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 902e977a1fbd86f0b5ee0b8cdba0ed96
879716a92ab59f6a3bd9b0e2f9a51df09596abf1
b73e5986f65b03f2dfded8b0a5b6be8e2b15d053cb7190d5dcf353993b36a3f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B73E5986F65B03F2DFDED8B0A5B6BE8E2B15D053CB7190D5DCF353993B36A3F3"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8807
Expires: Mon, 17 Oct 2022 00:10:12 GMT
Date: Sun, 16 Oct 2022 21:43:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3397
Expires: Sun, 16 Oct 2022 22:40:02 GMT
Date: Sun, 16 Oct 2022 21:43:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3397
Expires: Sun, 16 Oct 2022 22:40:02 GMT
Date: Sun, 16 Oct 2022 21:43:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3397
Expires: Sun, 16 Oct 2022 22:40:02 GMT
Date: Sun, 16 Oct 2022 21:43:25 GMT
Connection: keep-alive
harshlygiraffediscover.com/watch.1599531294872.js?key=68e0643520cf297c96565ee5d590990a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=a867f7c44f9b65f1bc59deab897a83c2a8bef5fb62bcf8503e2f39502ca6e131d624f871b95ae117bc22b74fdc431d82f7cb454d21d7341d6155beaac097ce5222c4be7b45b8a9b26a411f37c204024568901316&pst=1665956665&rmtc=t
192.243.61.225200 OK 2.0 kB URL HTTP/1.1 harshlygiraffediscover.com/watch.1599531294872.js?key=68e0643520cf297c96565ee5d590990a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=a867f7c44f9b65f1bc59deab897a83c2a8bef5fb62bcf8503e2f39502ca6e131d624f871b95ae117bc22b74fdc431d82f7cb454d21d7341d6155beaac097ce5222c4be7b45b8a9b26a411f37c204024568901316&pst=1665956665&rmtc=t
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2482)
Hash b4d8882a828cba00f6c9bdf2735819b0
196be7ae634738d6bede2c126439eb9643ec959d
a59bf2e43bf7d79d0498d114e8e617186e5455778db02c8c2460c56d70440ee6
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1599531294872.js?key=68e0643520cf297c96565ee5d590990a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=a867f7c44f9b65f1bc59deab897a83c2a8bef5fb62bcf8503e2f39502ca6e131d624f871b95ae117bc22b74fdc431d82f7cb454d21d7341d6155beaac097ce5222c4be7b45b8a9b26a411f37c204024568901316&pst=1665956665&rmtc=t HTTP/1.1
Host: harshlygiraffediscover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17301153; ain=eyJhbGciOiJIUzI1NiJ9.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.WUlohn36Xu2cziik_OCCC0xEP1uP5CO8XgeWRCnTnkM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:25 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
pdhtkv26=true; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
uncs26=1; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 767257a91642485b658766f7ad629e52
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 467c98217b3c90dedabafc249207b8eb
8a0756b2c6003aaaba58cc75be784e8e283feb45
82b3ac154fd4347d2a7827d48ff7f0ccc8c0abe562cb6796a52b02e7cc9b6467
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82B3AC154FD4347D2A7827D48FF7F0CCC8C0ABE562CB6796A52B02E7CC9B6467"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3397
Expires: Sun, 16 Oct 2022 22:40:02 GMT
Date: Sun, 16 Oct 2022 21:43:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cebbc75-2448-4faf-839b-c39ac6e47b98.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cebbc75-2448-4faf-839b-c39ac6e47b98.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6432c2bf0bab32f918d931dd98a6e1e4
bba4f37b146e5aea2b6490f8f7da63fa61ffc849
bde0d98cb1dcd70f22cd2aee5860eb0cd824d1bb12ab18245ab8eed06a79cf1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4cebbc75-2448-4faf-839b-c39ac6e47b98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7337
x-amzn-requestid: 43a16c4d-c5b9-4d01-8ba4-e811b09e96b1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z-WYqEwVoAMFe5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6348d104-121eda8b7a73518849342e7a;Sampled=0
x-amzn-remapped-date: Fri, 14 Oct 2022 03:01:24 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: z8x5zYoU_lGHWGt8ZhQFB6G9gS1Q4YhG_AxOdLCqIpZkXp_-f45ExA==
via: 1.1 25b9a991f871f75614e7f92f97b136a4.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 05:16:13 GMT
age: 59232
etag: "bba4f37b146e5aea2b6490f8f7da63fa61ffc849"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89b2ee08-a53a-4763-aca2-fe23fd25f3d1.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89b2ee08-a53a-4763-aca2-fe23fd25f3d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df5f38c3dc43ccc382d0274bffb6b350
9a305072cce8bb61ca3753bb98b999695fb4706e
20ff21892e65787fecbadca0f59c05e54dee3a1359271839dab0ee5c9e796ab0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89b2ee08-a53a-4763-aca2-fe23fd25f3d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6367
x-amzn-requestid: 485c3cf9-d305-4540-8eef-8304d1103ccc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5EHbOoAMFWsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a0-2ac206d826bf23193740e74c;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FDpKbEtkkBwyl0pq3hI50XU9_5Qk43D5_CCq2mdq6phymrT0Op_wzg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 15 Oct 2022 22:00:32 GMT
age: 85373
etag: "9a305072cce8bb61ca3753bb98b999695fb4706e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b183fddf1f6b1bf92543dbf8714dd945
f0f1021a0fc5f4f9c919a1ff79b83302b187368b
b4b50dc8c4b812085a9ad867d8d51433abdb6cd1f07c8c6875104e2c3551938c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B4B50DC8C4B812085A9AD867D8D51433ABDB6CD1F07C8C6875104E2C3551938C"
Last-Modified: Fri, 14 Oct 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9887
Expires: Mon, 17 Oct 2022 00:28:12 GMT
Date: Sun, 16 Oct 2022 21:43:25 GMT
Connection: keep-alive
motivessuggest.com/watch.1017309526399.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
173.233.137.60307 Temporary Redirect 0 B URL HTTP/1.1 motivessuggest.com/watch.1017309526399.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1017309526399.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: motivessuggest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17258380; ain=eyJhbGciOiJIUzI1NiJ9.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.BpPyYDBvSArdyIO_B-CiAvRMMu3infT9MDzSVc54bMo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://motivessuggest.com/watch.1017309526399.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=7839d72c20d017892f35336304368d676968485cee2cdc0cc2e4c858dd97d6c4a7e8e5ac0ac84b9a123cb7aa9ae08bafd2950aa5d2b2fd696aa5d01a682404454f3bd05b763f40c810f0b08ee67c7e180fc0adcfdd2761935e8d38e735699d&pst=1665956665&rmtc=t
Set-Cookie: u_pl=17258380,17258364; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzI1ODM2NCwiayI6Ijk1ZTRjNGNlNzc1NDMzZmE0ZGIyZTFkMGM0MGVhY2MzIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODYxNDAzLCJwaWQiOjQ3MDEwMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyNywiYWlkIjoyMywicHQiOjQsInBrIjoiYTUxdzR5ZGoiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHA6Ly9yYmVib29rcy5zaXRlL2NvbXB0aWEtc2VjdXJpdHktZXhhbS1zdHVkeS1ndWlkZS8ifX0.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; expires=Sun, 16 Oct 2022 21:44:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 16d023f93f2d90946f9fc2bf1a02bfde
Strict-Transport-Security: max-age=0; includeSubdomains
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af2b9dc-3279-48a4-b300-2aca0a094dd4.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af2b9dc-3279-48a4-b300-2aca0a094dd4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac5c50f8ffe0da11f1adb9f67d811cf
2b586d1c26208d6fe7df3a4cec286e28f21807ca
12414dcf4afa766503c9328fe626c2d1317a0d6838887e0dd30e9b56e85ea3d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2af2b9dc-3279-48a4-b300-2aca0a094dd4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8120
x-amzn-requestid: 42dc2299-203a-4269-a252-e239978fe80d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z7EhLHX0IAMF89g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6347813a-1357899758d9403e4b920418;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 03:08:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: WTKaFQ0rZbiSiVD_qjSwbcvMoCoWsf8hfsXsC7cVkT-hm04EXHWASA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 04:05:54 GMT
age: 63451
etag: "2b586d1c26208d6fe7df3a4cec286e28f21807ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdbc5b51-a9c2-4f99-ad40-8ab061924326.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdbc5b51-a9c2-4f99-ad40-8ab061924326.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd94762992136ed2f4d24dd34a745154
2050cee63f8005c5d9ac1a817730ada51b323f34
4548836d8846da958f477e1df952f6da9b9640e204804a7c76194d3e061b90a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdbc5b51-a9c2-4f99-ad40-8ab061924326.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7082
x-amzn-requestid: 5e98988f-faad-4e52-a49f-28d5a77b15d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL46HFloAMFSag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b269f-6759e36c79241479181c1d05;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: da7FnepQE-dYTKD6GnYUELiO1uMoKkiCuzZe2oeBkrvzT_IRsJJyPQ==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 21:37:11 GMT
age: 374
etag: "2050cee63f8005c5d9ac1a817730ada51b323f34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26965), with no line terminators
Hash 11725799ca96369b48e7732d0c9ccc65
a1b04e6543c7adf880090876cdd99cbc08995eac
da5f5241825d586ee556be97f5c87a577d6e652cec051d2f9fb323ba4087e386
Analyzer Verdict Alert quad9 Sinkholed
GET /95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 75735de14564f056257f588f7005f43f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
massacreintentionalmemorize.com/watch.508461833000.js?key=0beffc764a59eda6bb1c999a258cb33a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
173.233.137.60307 Temporary Redirect 0 B URL HTTP/1.1 massacreintentionalmemorize.com/watch.508461833000.js?key=0beffc764a59eda6bb1c999a258cb33a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.508461833000.js?key=0beffc764a59eda6bb1c999a258cb33a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: massacreintentionalmemorize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://massacreintentionalmemorize.com/watch.508461833000.js?key=0beffc764a59eda6bb1c999a258cb33a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=0e8d4068554148ff5733ff42953ecff2c0d2c09da9c703ad90e00159adb02e130de36d1012e8c7020e8ecdedc7e126e460f5f5e342cd3c0264c9186d4d4bbed5dfdcb4948210785b50148700a20c68c754fdb0d9806d4b328bc746c3beb8a07a&pst=1665956665&rmtc=t
Set-Cookie: u_pl=17258345; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzI1ODM0NSwiayI6IjBiZWZmYzc2NGE1OWVkYTZiYjFjOTk5YTI1OGNiMzNhIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODYxNDAzLCJwaWQiOjQ3MDEwMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyNywiYWlkIjoyNywicHQiOjQsInBrIjoiZ245ZTJ2dXRiIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwOi8vcmJlYm9va3Muc2l0ZS9jb21wdGlhLXNlY3VyaXR5LWV4YW0tc3R1ZHktZ3VpZGUvIn19.roOzP9gFBnQwTruIgmhW2Fh52Mm_MVoWXsflZNPaXUs; expires=Sun, 16 Oct 2022 21:44:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 186588feee19688c14c54d9d0ec97f12
Strict-Transport-Security: max-age=0; includeSubdomains
testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
192.243.61.227200 OK 9.3 kB URL HTTP/1.1 testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25054), with no line terminators
Hash 8f8dfd9de155e26a874a5ac1b4fe5018
1bcbb97f549c8fff60a791890d27dd24ca32fbc9
3c2e5ed7f0e261d9fe90c5666865a04dc5a399957e6a7a59e77c65e2ba02e8f1
Analyzer Verdict Alert quad9 Sinkholed
GET /0c610b74697d975fe227c0e71980368f/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7842080ce2e62d6e761b1d10754698d2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F223c148f-e76c-4625-8d19-0d3ef6b3ab03.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F223c148f-e76c-4625-8d19-0d3ef6b3ab03.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94dbefe5b048c0bebab2485de87367a1
a0df1068e09270f0b5ab7529dc31cc533a244cdd
e6e10ade9f819cccc5a36790016d41bc5ccb02512075f750afc136486d0fbc2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F223c148f-e76c-4625-8d19-0d3ef6b3ab03.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9904
x-amzn-requestid: b1678079-b51b-4b98-a44c-4024ad28451d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5XFbAIAMF08A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a2-1178963d495ce7232844459d;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 78g_SW44ROI02WoHKT-Ucio63_wHOJPupdF3-gOMOohlycSFQPqonQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 21:37:11 GMT
age: 374
etag: "a0df1068e09270f0b5ab7529dc31cc533a244cdd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e86d948bf8ed2f5918f8323b043ad5f
41548e231e2358d3453e7630f0d07a645cc25ddc
6602f2a020618234d34a9b6cd107398f0405de6dd14227e265aca84b38eaa5cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72044c0-fdd0-4da5-aa61-159d966f040f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7075
x-amzn-requestid: 254a8860-b3bf-4e8d-a08d-31effa209a6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aEL5iGQqIAMFmkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634b26a3-1a2820f550f35bf830444c22;Sampled=0
x-amzn-remapped-date: Sat, 15 Oct 2022 21:31:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1_0PyjSV8jM6gixQygL8DpgoL_awtlcNF7cVl65jbgqH36MRdfUtMA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 21:39:58 GMT
age: 207
etag: "41548e231e2358d3453e7630f0d07a645cc25ddc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
motivessuggest.com/watch.403354123389.js?key=3571d784a89a99fbed8310f791085655&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=06f74965a32bbf649ec142c8afd0eb1f3625f9bffa255cc02aa0704705b6bc12de26407522f20ab6db65056ea8321964779310009eeeb1599cf63dadbf836686ce0d258e2da5e453f14469cbd329d712113ef1479e37d9db797ac9a51dfff4&pst=1665956665&rmtc=t
173.233.137.60200 OK 2.0 kB URL HTTP/1.1 motivessuggest.com/watch.403354123389.js?key=3571d784a89a99fbed8310f791085655&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=06f74965a32bbf649ec142c8afd0eb1f3625f9bffa255cc02aa0704705b6bc12de26407522f20ab6db65056ea8321964779310009eeeb1599cf63dadbf836686ce0d258e2da5e453f14469cbd329d712113ef1479e37d9db797ac9a51dfff4&pst=1665956665&rmtc=t
IP 173.233.137.60:0
File type HTML document, ASCII text, with very long lines (2433)
Hash 7acded3242027ef0b52202f42cb03635
1d1d573dccfe34893e150f1c8ca1fc5946fe80e4
5c4d2bd753bb93a11a458b4643f77e3561cb9da8b8766ed8409234796404bcec
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.403354123389.js?key=3571d784a89a99fbed8310f791085655&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=06f74965a32bbf649ec142c8afd0eb1f3625f9bffa255cc02aa0704705b6bc12de26407522f20ab6db65056ea8321964779310009eeeb1599cf63dadbf836686ce0d258e2da5e453f14469cbd329d712113ef1479e37d9db797ac9a51dfff4&pst=1665956665&rmtc=t HTTP/1.1
Host: motivessuggest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258380; ain=eyJhbGciOiJIUzI1NiJ9.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.BpPyYDBvSArdyIO_B-CiAvRMMu3infT9MDzSVc54bMo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:25 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
pdhtkv5=true; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
uncs5=1; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e0fc5c6ab9dc175900aa63118e6022f2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 080680fedae997a35669650fb07e4576
b72a766d3a87e0f4658a6d41b0134b104d2303a4
8fef418fe584ac76eecad465d9caaf39998a38833f9a37c502c3a7f822696d3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8FEF418FE584AC76EECAD465D9CAAF39998A38833F9A37C502C3A7F822696D3C"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6511
Expires: Sun, 16 Oct 2022 23:31:56 GMT
Date: Sun, 16 Oct 2022 21:43:25 GMT
Connection: keep-alive
testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26947), with no line terminators
Hash 62588ee2b79fbd184409f5aa0af34afe
2e69b8b80742c13ac1ced1c6a220e1fea9212db6
9a1ab91a9f0b3671a6cf6e98459228b6b2e4b384d026783a52a39d9b6c8554f3
Analyzer Verdict Alert quad9 Sinkholed
GET /95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: af4086bc6b8c3f6447bf1868bb2ec543
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
192.243.61.227200 OK 9.3 kB URL HTTP/1.1 testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25070), with no line terminators
Hash a6c3279f74912670049d6ed7e761a6bc
c143555e0228cdfa7e55a105978a8aa47a56334a
2511a8cbdfcbbdfed8d4fb78d9e88eb1ca14b137d2eebb4f62c0e8017f79db8a
Analyzer Verdict Alert quad9 Sinkholed
GET /0c610b74697d975fe227c0e71980368f/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: aa173e0a470d8d86dcc2ebbc21ade958
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
sheschemetraitor.com/watch.211161893656.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
173.233.137.52307 Temporary Redirect 0 B URL HTTP/1.1 sheschemetraitor.com/watch.211161893656.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.211161893656.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: sheschemetraitor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://sheschemetraitor.com/watch.211161893656.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=f6f5f860fee05ea8640ee071c3b0f27f1a5a91e3dccccac8e89697262ebf6612c0e95494f4edb97b2c3d8fd1217379034765e1db494793dab821705cb91fac2dcfe1c4452a5c82ef9767ebea30d2fe7af3f5e83b024b033c55d5cebe343f25318a&pst=1665956665&rmtc=t
Set-Cookie: u_pl=17258364; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; expires=Sun, 16 Oct 2022 21:44:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b02a423ff2371ab86dbfe9fccfadf808
Strict-Transport-Security: max-age=0; includeSubdomains
massacreintentionalmemorize.com/watch.508461833000.js?key=0beffc764a59eda6bb1c999a258cb33a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=0e8d4068554148ff5733ff42953ecff2c0d2c09da9c703ad90e00159adb02e130de36d1012e8c7020e8ecdedc7e126e460f5f5e342cd3c0264c9186d4d4bbed5dfdcb4948210785b50148700a20c68c754fdb0d9806d4b328bc746c3beb8a07a&pst=1665956665&rmtc=t
173.233.137.60200 OK 2.0 kB URL HTTP/1.1 massacreintentionalmemorize.com/watch.508461833000.js?key=0beffc764a59eda6bb1c999a258cb33a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=0e8d4068554148ff5733ff42953ecff2c0d2c09da9c703ad90e00159adb02e130de36d1012e8c7020e8ecdedc7e126e460f5f5e342cd3c0264c9186d4d4bbed5dfdcb4948210785b50148700a20c68c754fdb0d9806d4b328bc746c3beb8a07a&pst=1665956665&rmtc=t
IP 173.233.137.60:0
File type HTML document, ASCII text, with very long lines (2430)
Hash 3c460d5938e481625fb73a6e3734ccf4
fda74bec175de6f36f8f311fb09fddd6c89c1a3e
41a7b89e1319818bc5fd32acb08755f12b51240ac8000091d1db17288cb7f29a
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.508461833000.js?key=0beffc764a59eda6bb1c999a258cb33a&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=0e8d4068554148ff5733ff42953ecff2c0d2c09da9c703ad90e00159adb02e130de36d1012e8c7020e8ecdedc7e126e460f5f5e342cd3c0264c9186d4d4bbed5dfdcb4948210785b50148700a20c68c754fdb0d9806d4b328bc746c3beb8a07a&pst=1665956665&rmtc=t HTTP/1.1
Host: massacreintentionalmemorize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258345; ain=eyJhbGciOiJIUzI1NiJ9.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.roOzP9gFBnQwTruIgmhW2Fh52Mm_MVoWXsflZNPaXUs
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:25 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
pdhtkv27=true; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
uncs27=1; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8dcff97767a64cfede2ac6f5b5a2cb50
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9f54a5e8bc9df618c759b36171c3dc59
daa13f44d63b193afc97b0f174b933aa20cb4f05
3b64fc1e4fb9f3f723929f5b66eecff56ffad04b823db4a168d363f5232314bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B64FC1E4FB9F3F723929F5B66EECFF56FFAD04B823DB4A168D363F5232314BB"
Last-Modified: Sat, 15 Oct 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6521
Expires: Sun, 16 Oct 2022 23:32:07 GMT
Date: Sun, 16 Oct 2022 21:43:26 GMT
Connection: keep-alive
sheschemetraitor.com/watch.210758551262.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
173.233.137.52307 Temporary Redirect 0 B URL HTTP/1.1 sheschemetraitor.com/watch.210758551262.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.210758551262.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: sheschemetraitor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://sheschemetraitor.com/watch.210758551262.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=aa36953f55e454903f88ba7cd4c773bb68161ea17f0eaebc598038bae148c97f3ae61b1efd63727af39ebe55666c0341d36e5db6d6e9b651b5f7d73b857545737389ddbcba5b64b39bea1016133acdcd9126a982111b05336219973a9ed740c1&pst=1665956665&rmtc=t
Set-Cookie: u_pl=17258364; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzI1ODM2NCwiayI6Ijk1ZTRjNGNlNzc1NDMzZmE0ZGIyZTFkMGM0MGVhY2MzIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODYxNDAzLCJwaWQiOjQ3MDEwMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyNywiYWlkIjoyMywicHQiOjQsInBrIjoiYTUxdzR5ZGoiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHA6Ly9yYmVib29rcy5zaXRlL2NvbXB0aWEtc2VjdXJpdHktZXhhbS1zdHVkeS1ndWlkZS8ifX0.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; expires=Sun, 16 Oct 2022 21:44:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 67f35885fbb304c22b1f47615966c3f3
Strict-Transport-Security: max-age=0; includeSubdomains
motivessuggest.com/watch.1017309526399.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=7839d72c20d017892f35336304368d676968485cee2cdc0cc2e4c858dd97d6c4a7e8e5ac0ac84b9a123cb7aa9ae08bafd2950aa5d2b2fd696aa5d01a682404454f3bd05b763f40c810f0b08ee67c7e180fc0adcfdd2761935e8d38e735699d&pst=1665956665&rmtc=t
173.233.137.60200 OK 2.0 kB URL HTTP/1.1 motivessuggest.com/watch.1017309526399.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=7839d72c20d017892f35336304368d676968485cee2cdc0cc2e4c858dd97d6c4a7e8e5ac0ac84b9a123cb7aa9ae08bafd2950aa5d2b2fd696aa5d01a682404454f3bd05b763f40c810f0b08ee67c7e180fc0adcfdd2761935e8d38e735699d&pst=1665956665&rmtc=t
IP 173.233.137.60:0
File type HTML document, ASCII text, with very long lines (2460)
Hash 4e7ba0ad9d996ec50caaadccc2bae2d9
d1b75572f1eb528029689ae4275f067fd973f5ca
7f5472fb48d4b381c60ce7dbf33c741cf8aa307c23b97bd7910a9f0d8b8146a2
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1017309526399.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=7839d72c20d017892f35336304368d676968485cee2cdc0cc2e4c858dd97d6c4a7e8e5ac0ac84b9a123cb7aa9ae08bafd2950aa5d2b2fd696aa5d01a682404454f3bd05b763f40c810f0b08ee67c7e180fc0adcfdd2761935e8d38e735699d&pst=1665956665&rmtc=t HTTP/1.1
Host: motivessuggest.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258380,17258364; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:25 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:25 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ef9c95d2386812900b01a98d0917e7af
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/90/fa/55/90fa55e79f85a5822e197862b4c53149/1663334602.png
45.133.44.10200 OK 33 kB URL HTTP/2 cdn.cloudimagesb.com/cti/90/fa/55/90fa55e79f85a5822e197862b4c53149/1663334602.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 160 x 300, 8-bit/color RGB, non-interlaced\012- data
Hash fb8a0af2c78607cf4c540a8be54248ef
795083ee49378071a4a04505ac40dfb4134acd74
1ad52c531815350c0f4411825fde5553748dd6b14bbc73752c939f6eba73c029
GET /cti/90/fa/55/90fa55e79f85a5822e197862b4c53149/1663334602.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:26 GMT
content-type: image/png
content-length: 33090
server: nginx/1.17.6
last-modified: Fri, 16 Sep 2022 13:23:30 GMT
etag: "632478d2-8142"
expires: Tue, 18 Oct 2022 21:43:26 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/ce/49/8f/ce498fda4d257b5536c0602a97b1b054/1663164642.gif
45.133.44.10200 OK 18 kB URL HTTP/2 cdn.cloudimagesb.com/cti/ce/49/8f/ce498fda4d257b5536c0602a97b1b054/1663164642.gif
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 300 x 250\012- data
Hash b28118fadfb79b2b315fb5ddab219c98
21dc09b7815006f7ac90414117e6d41ef963b04f
1e9cec97d74dbb42ae809f43289239e98ffd9e021a0ec5164536195477690353
GET /cti/ce/49/8f/ce498fda4d257b5536c0602a97b1b054/1663164642.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:26 GMT
content-type: image/gif
content-length: 17764
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:10:50 GMT
etag: "6321e0ea-4564"
expires: Tue, 18 Oct 2022 21:43:26 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26939), with no line terminators
Hash 649a9cfbbab17457e026315a6cd389fa
b72447ac1333187aaed6edf5a6429a9013f44b80
000ce2ddba6316a47520bff12f0d8a80fc14ffdd994376a4001e4b6877b8fb3a
Analyzer Verdict Alert quad9 Sinkholed
GET /95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fb4f7488de2bded04aaa1e1fb7d49f02
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
192.243.61.227200 OK 9.3 kB URL HTTP/1.1 testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25054), with no line terminators
Hash 8f8dfd9de155e26a874a5ac1b4fe5018
1bcbb97f549c8fff60a791890d27dd24ca32fbc9
3c2e5ed7f0e261d9fe90c5666865a04dc5a399957e6a7a59e77c65e2ba02e8f1
Analyzer Verdict Alert quad9 Sinkholed
GET /0c610b74697d975fe227c0e71980368f/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b1e83386a7ec020099cde923a6c9dead
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
firearmtire.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
192.243.61.227200 OK 0 B URL HTTP/1.1 firearmtire.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f HTTP/1.1
Host: firearmtire.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
sheschemetraitor.com/watch.211161893656.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=f6f5f860fee05ea8640ee071c3b0f27f1a5a91e3dccccac8e89697262ebf6612c0e95494f4edb97b2c3d8fd1217379034765e1db494793dab821705cb91fac2dcfe1c4452a5c82ef9767ebea30d2fe7af3f5e83b024b033c55d5cebe343f25318a&pst=1665956665&rmtc=t
173.233.137.52200 OK 2.0 kB URL HTTP/1.1 sheschemetraitor.com/watch.211161893656.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=f6f5f860fee05ea8640ee071c3b0f27f1a5a91e3dccccac8e89697262ebf6612c0e95494f4edb97b2c3d8fd1217379034765e1db494793dab821705cb91fac2dcfe1c4452a5c82ef9767ebea30d2fe7af3f5e83b024b033c55d5cebe343f25318a&pst=1665956665&rmtc=t
IP 173.233.137.52:0
File type HTML document, ASCII text, with very long lines (2420)
Hash b63646dd37609270dcca53cbcacd9adf
5fdbda4b2d6cc3b3832e861e585f6ccbeebf97a5
c2d6288d579f0a9fd43154603e95adb9cf185af1ec6ca90618ca9472edd3f500
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.211161893656.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=f6f5f860fee05ea8640ee071c3b0f27f1a5a91e3dccccac8e89697262ebf6612c0e95494f4edb97b2c3d8fd1217379034765e1db494793dab821705cb91fac2dcfe1c4452a5c82ef9767ebea30d2fe7af3f5e83b024b033c55d5cebe343f25318a&pst=1665956665&rmtc=t HTTP/1.1
Host: sheschemetraitor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258364; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:26 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 58ee4a2fb1563734eda7015e2ef9fe3f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/5f/63/61/5f6361597849bb97a5ceb2a85306fefe/1663165082.gif
45.133.44.10200 OK 12 kB URL HTTP/2 cdn.cloudimagesb.com/cti/5f/63/61/5f6361597849bb97a5ceb2a85306fefe/1663165082.gif
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 468 x 60\012- data
Hash ad021edb81269d90c89589eee0a49761
f210325e4ff509b0e349cfe554f412a9dafc1484
e60626ccf2b5c78c411246c7e9a82c367c4be1402ed4e4e404e787d70a5ead33
GET /cti/5f/63/61/5f6361597849bb97a5ceb2a85306fefe/1663165082.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:26 GMT
content-type: image/gif
content-length: 11610
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:18:10 GMT
etag: "6321e2a2-2d5a"
expires: Tue, 18 Oct 2022 21:43:26 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
sheschemetraitor.com/watch.210758551262.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=aa36953f55e454903f88ba7cd4c773bb68161ea17f0eaebc598038bae148c97f3ae61b1efd63727af39ebe55666c0341d36e5db6d6e9b651b5f7d73b857545737389ddbcba5b64b39bea1016133acdcd9126a982111b05336219973a9ed740c1&pst=1665956665&rmtc=t
173.233.137.52200 OK 1.9 kB URL HTTP/1.1 sheschemetraitor.com/watch.210758551262.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=aa36953f55e454903f88ba7cd4c773bb68161ea17f0eaebc598038bae148c97f3ae61b1efd63727af39ebe55666c0341d36e5db6d6e9b651b5f7d73b857545737389ddbcba5b64b39bea1016133acdcd9126a982111b05336219973a9ed740c1&pst=1665956665&rmtc=t
IP 173.233.137.52:0
File type HTML document, ASCII text, with very long lines (2390)
Hash 8225e20cdbe8f0377562d2860a6dd8b9
2be09432db389690edee372e676983ebedc5fdc3
f6ac89b57509bb84852327c6217a0ca3e955db4984932262671f0bebaa7a4903
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.210758551262.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=aa36953f55e454903f88ba7cd4c773bb68161ea17f0eaebc598038bae148c97f3ae61b1efd63727af39ebe55666c0341d36e5db6d6e9b651b5f7d73b857545737389ddbcba5b64b39bea1016133acdcd9126a982111b05336219973a9ed740c1&pst=1665956665&rmtc=t HTTP/1.1
Host: sheschemetraitor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258364; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzI1ODM2NCwiayI6Ijk1ZTRjNGNlNzc1NDMzZmE0ZGIyZTFkMGM0MGVhY2MzIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODYxNDAzLCJwaWQiOjQ3MDEwMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyNywiYWlkIjoyMywicHQiOjQsInBrIjoiYTUxdzR5ZGoiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHA6Ly9yYmVib29rcy5zaXRlL2NvbXB0aWEtc2VjdXJpdHktZXhhbS1zdHVkeS1ndWlkZS8ifX0.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:26 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 99997518b8827c5ec91c2b68b337ba52
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
concernederase.com/ntv.json?key=0c610b74697d975fe227c0e71980368f&vstc=4&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D
192.243.61.227200 OK 18 kB URL HTTP/1.1 concernederase.com/ntv.json?key=0c610b74697d975fe227c0e71980368f&vstc=4&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (17510), with no line terminators
Hash d503f95f6221f0be0706ac5e870bbe16
b0fdd9c7d292f232e12ba1842a23486b7d5ca51a
cd74148059d69fd7f15b6f0c8d176737fb057efc8e7cb1b6398b3c8d3d07970e
GET /ntv.json?key=0c610b74697d975fe227c0e71980368f&vstc=4&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&custom=%7B%22d37e3bc4%22%3A%22b%22%7D HTTP/1.1
Host: concernederase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: application/json
Content-Length: 17512
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17284620; expires=Mon, 17 Oct 2022 21:43:25 GMT; secure; SameSite=None
uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:25 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
pdhtkv49=true; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
uncs49=1; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
nlec0c610b74697d975fe227c0e71980368f=[3254334,3254335,3254354,3254345]; expires=Sun, 16 Oct 2022 21:43:31 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4779e8ce8600cc6243353b65acc85290
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/cti/da/01/05/da0105e4ae1a31a4d43bec6b6ef743d3/1663335078.png
45.133.44.10200 OK 38 kB URL HTTP/2 cdn.cloudimagesb.com/cti/da/01/05/da0105e4ae1a31a4d43bec6b6ef743d3/1663335078.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash aa0956fc38e9c4e68f6f8d8ebff739a2
fec142174247fdc87ae61a304ec8c2649e864c63
474d26f6cb035ab556e59f1b83aafa3941328ae2b3802cefd5a221f139693dfc
GET /cti/da/01/05/da0105e4ae1a31a4d43bec6b6ef743d3/1663335078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:26 GMT
content-type: image/png
content-length: 37947
server: nginx/1.17.6
last-modified: Fri, 16 Sep 2022 13:31:26 GMT
etag: "63247aae-943b"
expires: Tue, 18 Oct 2022 21:43:26 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 05cbabe3eb477f126c92a141a22e9161
19ebd1821ceaa76865da640b7a1c90beb36f54ea
ef5ec2d7054e7f318f831b92a70ce94b79f36830251658a32457edd57c1b0e52
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF5EC2D7054E7F318F831B92A70CE94B79F36830251658A32457EDD57C1B0E52"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6588
Expires: Sun, 16 Oct 2022 23:33:14 GMT
Date: Sun, 16 Oct 2022 21:43:26 GMT
Connection: keep-alive
testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
192.243.61.227200 OK 9.3 kB URL HTTP/1.1 testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25074), with no line terminators
Hash 2fbd608b0cd72509d05e3fa0f4866271
1c1c2931d6312e5f5286ed7753b74ecfdc551a76
be30729b253187a09f5e073fea559e06d460ed75efe31529aee3ae6745cec863
Analyzer Verdict Alert quad9 Sinkholed
GET /0c610b74697d975fe227c0e71980368f/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5e3abff4fe0b5d83e11eb77b4f0603e0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26951), with no line terminators
Hash 4facf7b88ff11c88f39b019676b5b36f
c1394179092f63f535cdc70074bb8260c491e8ad
42bcf65ece52a8852808b1f375f8d8c8871675d06e7fd658528aedb6d94d4b83
Analyzer Verdict Alert quad9 Sinkholed
GET /95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4674647ce5fad16d28f1243e5fd006fe
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/cb/3d/d2/cb3dd253d0efc9d9f6550d38b8063211/1627917331.png
45.133.44.10200 OK 53 kB URL HTTP/2 cdn.cloudimagesb.com/cti/cb/3d/d2/cb3dd253d0efc9d9f6550d38b8063211/1627917331.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash 6f53580f11cab6d69f4d14b753ce88b9
7207346b5c7900711744994dad77dc98bc61df54
570b6950078f257202916963af83af1001dd462a958ca947f8285720ca8eb9dd
GET /cti/cb/3d/d2/cb3dd253d0efc9d9f6550d38b8063211/1627917331.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:26 GMT
content-type: image/png
content-length: 52906
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 15:15:39 GMT
etag: "61080c1b-ceaa"
expires: Tue, 18 Oct 2022 21:43:26 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/27/cf/a9/27cfa94bc21f8231e12ae94f4cebe367/1627917273.png
45.133.44.10200 OK 56 kB URL HTTP/2 cdn.cloudimagesb.com/cti/27/cf/a9/27cfa94bc21f8231e12ae94f4cebe367/1627917273.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash 231d615f0b920b0f0c8758342141193b
ca68f0f6e4c9124bbe61c49d789d0447076b0332
3e24999c26c1c68485e879756ea30639ccee4d7f30f1e2c0e5190818cbab8996
GET /cti/27/cf/a9/27cfa94bc21f8231e12ae94f4cebe367/1627917273.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:26 GMT
content-type: image/png
content-length: 56505
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 15:14:41 GMT
etag: "61080be1-dcb9"
expires: Tue, 18 Oct 2022 21:43:26 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 360c586eb314120c1280daae1f80ccdc
a8e87aee675b865095d2b44c2d6eaeb99580606a
0707167996eed03a23f5fe73cffc117df6fbe12c29f87783a8534e29b1700800
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0707167996EED03A23F5FE73CFFC117DF6FBE12C29F87783A8534E29B1700800"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9346
Expires: Mon, 17 Oct 2022 00:19:12 GMT
Date: Sun, 16 Oct 2022 21:43:26 GMT
Connection: keep-alive
c0.wp.com/c/6.0.2/wp-includes/js/comment-reply.min.js
192.0.77.37200 OK 1.7 kB URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/comment-reply.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (2946)
Hash 89f78966a7b37acf43b7b0bdb1b8e727
22ed4669d66673bc15e8aa16d36ce9bca6248c3f
39a726811f5b8146624f6f4731733a126b1f65248682d16f2140704f9224c1d3
GET /c/6.0.2/wp-includes/js/comment-reply.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
concernederase.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
192.243.61.227200 OK 0 B URL HTTP/1.1 concernederase.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f HTTP/1.1
Host: concernederase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17284620; uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec0c610b74697d975fe227c0e71980368f=[3254334,3254335,3254354,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
192.243.61.227200 OK 9.8 kB URL HTTP/1.1 testimonypersuadedclinic.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26961), with no line terminators
Hash 12860fe70d72f8370b07194085ecaf7d
73a1d7e0aa1bfad7e7a7911e84ee0db72a651af0
4618c18294db817bbe6abf0fbe7c9a942b6fc46214ac34157b0947f1de1aa49e
Analyzer Verdict Alert quad9 Sinkholed
GET /95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 857c99e0d045674004e9127302710bcc
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
192.243.61.227200 OK 9.3 kB URL HTTP/1.1 testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25074), with no line terminators
Hash 2fbd608b0cd72509d05e3fa0f4866271
1c1c2931d6312e5f5286ed7753b74ecfdc551a76
be30729b253187a09f5e073fea559e06d460ed75efe31529aee3ae6745cec863
Analyzer Verdict Alert quad9 Sinkholed
GET /0c610b74697d975fe227c0e71980368f/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: close
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e1cd647f4ddd060697aeb32c8683338d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/si/75/c9/28/75c92834ede96f2f4d3581e4d43e6e4f/1645978427.jpg
45.133.44.10200 OK 22 kB URL HTTP/1.1 cdn.cloudimagesb.com/si/75/c9/28/75c92834ede96f2f4d3581e4d43e6e4f/1645978427.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash 796d425c7dcd3be5c1cdc6cdd56c1dab
e8cc1589c53cccdd638d3a732fef9e97aa4a45bc
f73ea8486409b59615869827f5c1b1f322ee1374d506e7789019bb4967348437
GET /si/75/c9/28/75c92834ede96f2f4d3581e4d43e6e4f/1645978427.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: image/jpeg
Content-Length: 22212
Connection: keep-alive
Server: nginx/1.17.6
Last-Modified: Sun, 27 Feb 2022 16:14:00 GMT
ETag: "621ba348-56c4"
Expires: Tue, 18 Oct 2022 21:43:26 GMT
Cache-Control: max-age=172800
X-Proxy-Cache: HIT
Accept-Ranges: bytes
cdn.cloudimagesb.com/si/49/30/49/4930498805b27e2ddd2e8b730324d990/1645978709.jpg
45.133.44.10200 OK 22 kB URL HTTP/1.1 cdn.cloudimagesb.com/si/49/30/49/4930498805b27e2ddd2e8b730324d990/1645978709.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash dea5f1ea2c9a47f7f4d05c62e70a2527
b88486270a197dd93dfc0ec3d6609c35dda8f928
638a55cc2116fa90536d6c306d288d9400921d7b3338ec9ff374eabc218f8b9c
GET /si/49/30/49/4930498805b27e2ddd2e8b730324d990/1645978709.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: image/jpeg
Content-Length: 21546
Connection: keep-alive
Server: nginx/1.17.6
Last-Modified: Sun, 27 Feb 2022 16:18:35 GMT
ETag: "621ba45b-542a"
Expires: Tue, 18 Oct 2022 21:43:26 GMT
Cache-Control: max-age=172800
X-Proxy-Cache: HIT
Accept-Ranges: bytes
strategicperplexanswered.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
192.243.59.12200 OK 0 B URL HTTP/1.1 strategicperplexanswered.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f HTTP/1.1
Host: strategicperplexanswered.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.cloudimagesb.com/si/5d/19/5d/5d195d7de14d8e7d59a9c7b1330750de/1645978440.jpg
45.133.44.10200 OK 25 kB URL HTTP/1.1 cdn.cloudimagesb.com/si/5d/19/5d/5d195d7de14d8e7d59a9c7b1330750de/1645978440.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash f1a49a7d784361bbce9f7ed99c6fc6ec
bb1a5732dc954a89c85089d16d71a00ade1fe682
deb5daa6fcbf7a78b9361e5ac56f09b27986953f03977adbaf32d04a93996bdd
GET /si/5d/19/5d/5d195d7de14d8e7d59a9c7b1330750de/1645978440.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: image/jpeg
Content-Length: 25012
Connection: keep-alive
Server: nginx/1.17.6
Last-Modified: Sun, 27 Feb 2022 16:14:05 GMT
ETag: "621ba34d-61b4"
Expires: Tue, 18 Oct 2022 21:43:26 GMT
Cache-Control: max-age=172800
X-Proxy-Cache: HIT
Accept-Ranges: bytes
cdn.cloudimagesb.com/si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg
45.133.44.10200 OK 21 kB URL HTTP/1.1 cdn.cloudimagesb.com/si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash e76141a73e3867caa30e71f21f24f019
7664dbf096108e45ad2d376514565d1a859bd169
98acf73ddbba7ea1c25ae6edf6ab6817ef442cf1c2343909083b2601ea8b62ca
GET /si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: image/jpeg
Content-Length: 21046
Connection: keep-alive
Server: nginx/1.17.6
Last-Modified: Sun, 27 Feb 2022 16:15:46 GMT
ETag: "621ba3b2-5236"
Expires: Tue, 18 Oct 2022 21:43:26 GMT
Cache-Control: max-age=172800
X-Proxy-Cache: HIT
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ab65590dc6c286b5aa4a2d5058be821c
efc5247e55abb2335dc9e8a50121aed57d6cd8d2
4f5b7c04a4fb741edf1cc4f4ecb977fb11004c205f0e6195979d7d4f18e8a7a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4F5B7C04A4FB741EDF1CC4F4ECB977FB11004C205F0E6195979D7D4F18E8A7A1"
Last-Modified: Fri, 14 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9844
Expires: Mon, 17 Oct 2022 00:27:30 GMT
Date: Sun, 16 Oct 2022 21:43:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash da394d50b3f92cb94af921e415388e70
6572b2e5238f6de6eb2eb9926d6e45717904e1ec
9b6bdd0f89a2cd66b52f8642c3f597282f42d14df49c848d94ffbe88b0373870
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B6BDD0F89A2CD66B52F8642C3F597282F42D14DF49C848D94FFBE88B0373870"
Last-Modified: Sun, 16 Oct 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8166
Expires: Sun, 16 Oct 2022 23:59:32 GMT
Date: Sun, 16 Oct 2022 21:43:26 GMT
Connection: keep-alive
concernederase.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSwVARdQL1U5%2BMABpMbdXTu7NpWoKCFVRGhLCion0PxaZ%2FB6Z5nZ9Trm0lKEevSBC5zWz0lToFTwBxAhpxJCkZDiWw5E4m9A4oiQ3QjDHL7ve%2FPe4el93xej%2FIS4yOnx6jt6oOKYXlqpudVXPvC8y9UNleT9ar8ZfBQ0LldN77VWUHNfrV6TvKMv%2Ba7nup7rVdeUkZHuX5qRUOmjlldrubWGX%2FNWGuib%2F2ObO7DUgeidkBehxLTyxDkHxSdIuj%2BsStvJdHrxrW4e00wb9MTe%2B0kn0UWC7mKMjIMo2TtVQ9ujtX3oZHduF7r3r5CpKXF%2B2QdL9k5NgvV25j5ZDJmAiedQ9CaQ8QSKTsD1PShxRAAucP0Gku6D69oUdPspS2fslFT%2B%2BhOqmJLK7%2BeQdB9fjVW%2FekvHeaZ0YtGPSqj%2BBKo9QZofIBucgSoOwLPPoARB0i2hxPHL9brHZaPlL9OVSCw3vIa3zGRUX2bNFmN%2BEDQj350Ho9QEKpoglkNQu4TcOsiVgzxykKcOuuK4yj3PC13BqdtscV4XoWSBcD0aRh713KCJnM%2B8D5GlQ%2FB4CG7uIDV3H4p6KOuMN0YMHTWEyX%2BG3SphxRJsNiXOu3fREyUKSVBYgoISFIqgyAiKXrkrYuvb8oGIbc680%2B6f9no51ll7RHd11pYJGaUn5IVZfs7Z%2FefRkcdVlweey8JG0ApFK1yJpO%2BH3JWh12q69aAZwaoSyp4BtQ4Gakpeal9Aqqbk7MXbYPQANj4AVxdAcw%2B0GIe%2BC7o1bjRdDJLvDZNM646tWZVJCF0izSrItp1RfELOzxfpPVyH5IdXPh%2F8ce3xuU%2FBTYnUlPhYPSFox%2FfHm7ogO5u6sOTHG2mmumpAZ0u%2BldFMLn37ttwutBHrq3b4zRt8RszGR%2B9Jm23QRKikbcl3V5UQ0qxpwyX5ad3eluxmbreu5ibJ042bb66td1MjrVU6mYCqow93wdWUPPPJb%2FPrPT%2FoQZkJTF6imx%2BS0welD8DTO7Dpwr3VSzDxQsPSCoq8HBufLT5jRRDLBaashP0PZot5ZO%2BjbXzQ7N78aHumRC8uQeMhbP7sOEvN4ZVfv5q9r8HiypjFprLDYhN%2FOYv29Vm5MiubT5O26rga1usuDVorXhhSGbKG34wCT1DqNwI%2FCGgdmZ3yjcHf%2FwAAAP%2F%2FAQAA%2F%2F%2By5qYQlwQAAA%3D%3D
192.243.61.227200 OK 7 B URL HTTP/1.1 concernederase.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSwVARdQL1U5%2BMABpMbdXTu7NpWoKCFVRGhLCion0PxaZ%2FB6Z5nZ9Trm0lKEevSBC5zWz0lToFTwBxAhpxJCkZDiWw5E4m9A4oiQ3QjDHL7ve%2FPe4el93xej%2FIS4yOnx6jt6oOKYXlqpudVXPvC8y9UNleT9ar8ZfBQ0LldN77VWUHNfrV6TvKMv%2Ba7nup7rVdeUkZHuX5qRUOmjlldrubWGX%2FNWGuib%2F2ObO7DUgeidkBehxLTyxDkHxSdIuj%2BsStvJdHrxrW4e00wb9MTe%2B0kn0UWC7mKMjIMo2TtVQ9ujtX3oZHduF7r3r5CpKXF%2B2QdL9k5NgvV25j5ZDJmAiedQ9CaQ8QSKTsD1PShxRAAucP0Gku6D69oUdPspS2fslFT%2B%2BhOqmJLK7%2BeQdB9fjVW%2FekvHeaZ0YtGPSqj%2BBKo9QZofIBucgSoOwLPPoARB0i2hxPHL9brHZaPlL9OVSCw3vIa3zGRUX2bNFmN%2BEDQj350Ho9QEKpoglkNQu4TcOsiVgzxykKcOuuK4yj3PC13BqdtscV4XoWSBcD0aRh713KCJnM%2B8D5GlQ%2FB4CG7uIDV3H4p6KOuMN0YMHTWEyX%2BG3SphxRJsNiXOu3fREyUKSVBYgoISFIqgyAiKXrkrYuvb8oGIbc680%2B6f9no51ll7RHd11pYJGaUn5IVZfs7Z%2FefRkcdVlweey8JG0ApFK1yJpO%2BH3JWh12q69aAZwaoSyp4BtQ4Gakpeal9Aqqbk7MXbYPQANj4AVxdAcw%2B0GIe%2BC7o1bjRdDJLvDZNM646tWZVJCF0izSrItp1RfELOzxfpPVyH5IdXPh%2F8ce3xuU%2FBTYnUlPhYPSFox%2FfHm7ogO5u6sOTHG2mmumpAZ0u%2BldFMLn37ttwutBHrq3b4zRt8RszGR%2B9Jm23QRKikbcl3V5UQ0qxpwyX5ad3eluxmbreu5ibJ042bb66td1MjrVU6mYCqow93wdWUPPPJb%2FPrPT%2FoQZkJTF6imx%2BS0welD8DTO7Dpwr3VSzDxQsPSCoq8HBufLT5jRRDLBaashP0PZot5ZO%2BjbXzQ7N78aHumRC8uQeMhbP7sOEvN4ZVfv5q9r8HiypjFprLDYhN%2FOYv29Vm5MiubT5O26rga1usuDVorXhhSGbKG34wCT1DqNwI%2FCGgdmZ3yjcHf%2FwAAAP%2F%2FAQAA%2F%2F%2By5qYQlwQAAA%3D%3D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSwVARdQL1U5%2BMABpMbdXTu7NpWoKCFVRGhLCion0PxaZ%2FB6Z5nZ9Trm0lKEevSBC5zWz0lToFTwBxAhpxJCkZDiWw5E4m9A4oiQ3QjDHL7ve%2FPe4el93xej%2FIS4yOnx6jt6oOKYXlqpudVXPvC8y9UNleT9ar8ZfBQ0LldN77VWUHNfrV6TvKMv%2Ba7nup7rVdeUkZHuX5qRUOmjlldrubWGX%2FNWGuib%2F2ObO7DUgeidkBehxLTyxDkHxSdIuj%2BsStvJdHrxrW4e00wb9MTe%2B0kn0UWC7mKMjIMo2TtVQ9ujtX3oZHduF7r3r5CpKXF%2B2QdL9k5NgvV25j5ZDJmAiedQ9CaQ8QSKTsD1PShxRAAucP0Gku6D69oUdPspS2fslFT%2B%2BhOqmJLK7%2BeQdB9fjVW%2FekvHeaZ0YtGPSqj%2BBKo9QZofIBucgSoOwLPPoARB0i2hxPHL9brHZaPlL9OVSCw3vIa3zGRUX2bNFmN%2BEDQj350Ho9QEKpoglkNQu4TcOsiVgzxykKcOuuK4yj3PC13BqdtscV4XoWSBcD0aRh713KCJnM%2B8D5GlQ%2FB4CG7uIDV3H4p6KOuMN0YMHTWEyX%2BG3SphxRJsNiXOu3fREyUKSVBYgoISFIqgyAiKXrkrYuvb8oGIbc680%2B6f9no51ll7RHd11pYJGaUn5IVZfs7Z%2FefRkcdVlweey8JG0ApFK1yJpO%2BH3JWh12q69aAZwaoSyp4BtQ4Gakpeal9Aqqbk7MXbYPQANj4AVxdAcw%2B0GIe%2BC7o1bjRdDJLvDZNM646tWZVJCF0izSrItp1RfELOzxfpPVyH5IdXPh%2F8ce3xuU%2FBTYnUlPhYPSFox%2FfHm7ogO5u6sOTHG2mmumpAZ0u%2BldFMLn37ttwutBHrq3b4zRt8RszGR%2B9Jm23QRKikbcl3V5UQ0qxpwyX5ad3eluxmbreu5ibJ042bb66td1MjrVU6mYCqow93wdWUPPPJb%2FPrPT%2FoQZkJTF6imx%2BS0welD8DTO7Dpwr3VSzDxQsPSCoq8HBufLT5jRRDLBaashP0PZot5ZO%2BjbXzQ7N78aHumRC8uQeMhbP7sOEvN4ZVfv5q9r8HiypjFprLDYhN%2FOYv29Vm5MiubT5O26rga1usuDVorXhhSGbKG34wCT1DqNwI%2FCGgdmZ3yjcHf%2FwAAAP%2F%2FAQAA%2F%2F%2By5qYQlwQAAA%3D%3D HTTP/1.1
Host: concernederase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17284620; uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec0c610b74697d975fe227c0e71980368f=[3254334,3254335,3254354,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: df48988d5514fecfb4c36cbc961a54e8
Strict-Transport-Security: max-age=0; includeSubdomains
invaderannihilationperky.com/watch.235499837771.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
192.243.59.20307 Temporary Redirect 0 B URL HTTP/1.1 invaderannihilationperky.com/watch.235499837771.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.235499837771.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: invaderannihilationperky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.9
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://invaderannihilationperky.com/watch.235499837771.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=a107bce6b508d0a13405d5f5fc33f89031acf159fbe7c88c77e3ec4f9519043beff404c8686546e324f5574151ca4f933e736779ac4e64e3cb7c330349bc44965980727f4058cd2783b0eb1cf8b4a064575df495&pst=1665956666&rmtc=t
Set-Cookie: u_pl=17258364; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; expires=Sun, 16 Oct 2022 21:44:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cd545cbcab1ab642d1e8861049ee794e
Strict-Transport-Security: max-age=0; includeSubdomains
cuesingle.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
192.243.59.13200 OK 0 B URL HTTP/1.1 cuesingle.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f HTTP/1.1
Host: cuesingle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
192.243.61.227200 OK 9.3 kB URL HTTP/1.1 testimonypersuadedclinic.com/0c610b74697d975fe227c0e71980368f/invoke.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type Unicode text, UTF-8 text, with very long lines (25070), with no line terminators
Hash a6c3279f74912670049d6ed7e761a6bc
c143555e0228cdfa7e55a105978a8aa47a56334a
2511a8cbdfcbbdfed8d4fb78d9e88eb1ca14b137d2eebb4f62c0e8017f79db8a
Analyzer Verdict Alert quad9 Sinkholed
GET /0c610b74697d975fe227c0e71980368f/invoke.js HTTP/1.1
Host: testimonypersuadedclinic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 69df98a18ac3fecd4a7be3a3ed0cd435
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 085811651eb4fafa30703f99053a6a47
81e2ebac369759ebe97647a12323f77020bea644
1ff435e1bdc018ba0b717f48b97fd164e0cdd61a0f1dae3f340cd8a415c3d973
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1FF435E1BDC018BA0B717F48B97FD164E0CDD61A0F1DAE3F340CD8A415C3D973"
Last-Modified: Sun, 16 Oct 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6830
Expires: Sun, 16 Oct 2022 23:37:16 GMT
Date: Sun, 16 Oct 2022 21:43:26 GMT
Connection: keep-alive
www.topdisplayformat.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
192.243.59.12200 OK 9.8 kB URL HTTP/1.1 www.topdisplayformat.com/95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (26933), with no line terminators
Hash 08d7dbc725a6d3911178054e35a43e9b
dc175178be1e917f5536c443e552097f3b4273fe
74d2efbf0f438558d0ee161e4a9078b866d13d4147aba421cb18e9efb9d80422
Analyzer Verdict Alert quad9 Sinkholed
GET /95e4c4ce775433fa4db2e1d0c40eacc3/invoke.js HTTP/1.1
Host: www.topdisplayformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3bac085d8f474dc340c5860cabbacf6a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
concernederase.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
192.243.61.227200 OK 0 B URL HTTP/1.1 concernederase.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f HTTP/1.1
Host: concernederase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17284620; uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec0c610b74697d975fe227c0e71980368f=[3254334,3254335,3254354,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
invaderannihilationperky.com/watch.235499837771.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=a107bce6b508d0a13405d5f5fc33f89031acf159fbe7c88c77e3ec4f9519043beff404c8686546e324f5574151ca4f933e736779ac4e64e3cb7c330349bc44965980727f4058cd2783b0eb1cf8b4a064575df495&pst=1665956666&rmtc=t
192.243.59.20200 OK 1.9 kB URL HTTP/1.1 invaderannihilationperky.com/watch.235499837771.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=a107bce6b508d0a13405d5f5fc33f89031acf159fbe7c88c77e3ec4f9519043beff404c8686546e324f5574151ca4f933e736779ac4e64e3cb7c330349bc44965980727f4058cd2783b0eb1cf8b4a064575df495&pst=1665956666&rmtc=t
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2396)
Hash 35dd6877ad4b540063238ddcb68e6035
365ed37d96a4b674b603868961ad535a22ff02ab
481dc9536f1f23cf1462d952a0fe6bc4039d0036eb6796e2496b59328e766f4b
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.235499837771.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=a107bce6b508d0a13405d5f5fc33f89031acf159fbe7c88c77e3ec4f9519043beff404c8686546e324f5574151ca4f933e736779ac4e64e3cb7c330349bc44965980727f4058cd2783b0eb1cf8b4a064575df495&pst=1665956666&rmtc=t HTTP/1.1
Host: invaderannihilationperky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258364; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:26 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1cd46f58d4bdc202e06f15d0637f1380
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
concernederase.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSP48b1Rd9k7WUn37QgNJEoXBBAVLWmRl7Z2wiERHCRiuWJCSgUIHev3Eefp43vDfjcUyTEIRSuqCBanycTQKECD4AEfJGQrDVutuClfgMSJQI2awwvOLee945xdG597NJcUh8FPTgwltmpLSmZzYafv2l94LgbH1bpcWwPmxHH0Sts3U7eKUTNfyX6xcl75kzoR%2F4fuAH9U1lZWKGZxYkVPaoEzQ6fqMVNoKNFob2v9gVHhz1IAaH5HkoMa899U5A8RnS%2FncXpOvlJjv9Rr%2FQNDcWA%2FHg3bSXmjJFfzUm1kOSPjhSw7j9zScw6c7SLszgHyFTc%2BL99AQsfXBkEmxwb%2BmTacgUTDyDcjCD1DMoOgM3d6DEPgG4wKXLSPv3Lxlb0pt%2Fs3TBzkntj9%2Bhyjmp%2FXoCaf%2Fxea2G9WtGF7kyqcMwqaCGM6juDFmxi3x0DKrcBc8%2FgRIEab%2BCEgcvNpsBl61OuE43ErHeClrBOpNJc521O4yFUdROQn8ZjFIzqGQGLcegbg2F81AoD0Xiocg89MVBnQdBEPuCU7%2Fd4bwpYski4Qc0TgIa%2BFEbBV94HyPPxuB6DG5vIbO3H4pmLJuMtyYMPTWGLX6Eu1HBiTW4fE68t29jICqUkqB0BCUlKBVBmROUg2pHaBe66r7QrmDBUQ%2BPerOamrw7oTsm78qUTLJD8twiP%2B%2F4k2fRkwd1n0eBz%2BJW1IlFJ95IZBjG3Jdx0Gn7zaidwKkKyh0DdR5Gak5e6J5Cpubk%2BOnrYHQXTu%2BCq1OgRQBaTuPQB70xbbV9jNJvLZPMmJ5rOJVLCFMhy2vIb3oTfUhOLhcZPDwHyffOfTr67eLjEx%2BD2wqZrfChekrQ1XenV01J7l01pSPfX85y1VcjuljytZzmcu3rN%2BXN0lixdcGNv3qNL4jF%2BOgd6fJtmgqVdh355rwSQtpNY7kkP2y565JdKdyN84VNi2z7yuubW%2F3MSueUSWegav%2F9HXA1J%2F%2F76Jfl9Z4caSg7gy0q9Is9cvSgzC54dgsuW7l3Zg1WrzQsO4ayqKY2ZKtPrQi0XGHKKrh%2FYbaaJ%2B4uujYEze8sj3ZgKwx0BarHcMX%2Fp3lm9879%2FMXifQmma1Ombe0e01Z%2Fvoj21WW%2Bi3J1Ubbg1EE9bjZ9GnU2gjimMmatsJ1EgaA0bEVhFNEmcjfn26M%2F%2FwIAAP%2F%2FAQAA%2F%2F%2BHu5CElwQAAA%3D%3D
192.243.61.227200 OK 7 B URL HTTP/1.1 concernederase.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSP48b1Rd9k7WUn37QgNJEoXBBAVLWmRl7Z2wiERHCRiuWJCSgUIHev3Eefp43vDfjcUyTEIRSuqCBanycTQKECD4AEfJGQrDVutuClfgMSJQI2awwvOLee945xdG597NJcUh8FPTgwltmpLSmZzYafv2l94LgbH1bpcWwPmxHH0Sts3U7eKUTNfyX6xcl75kzoR%2F4fuAH9U1lZWKGZxYkVPaoEzQ6fqMVNoKNFob2v9gVHhz1IAaH5HkoMa899U5A8RnS%2FncXpOvlJjv9Rr%2FQNDcWA%2FHg3bSXmjJFfzUm1kOSPjhSw7j9zScw6c7SLszgHyFTc%2BL99AQsfXBkEmxwb%2BmTacgUTDyDcjCD1DMoOgM3d6DEPgG4wKXLSPv3Lxlb0pt%2Fs3TBzkntj9%2Bhyjmp%2FXoCaf%2Fxea2G9WtGF7kyqcMwqaCGM6juDFmxi3x0DKrcBc8%2FgRIEab%2BCEgcvNpsBl61OuE43ErHeClrBOpNJc521O4yFUdROQn8ZjFIzqGQGLcegbg2F81AoD0Xiocg89MVBnQdBEPuCU7%2Fd4bwpYski4Qc0TgIa%2BFEbBV94HyPPxuB6DG5vIbO3H4pmLJuMtyYMPTWGLX6Eu1HBiTW4fE68t29jICqUkqB0BCUlKBVBmROUg2pHaBe66r7QrmDBUQ%2BPerOamrw7oTsm78qUTLJD8twiP%2B%2F4k2fRkwd1n0eBz%2BJW1IlFJ95IZBjG3Jdx0Gn7zaidwKkKyh0DdR5Gak5e6J5Cpubk%2BOnrYHQXTu%2BCq1OgRQBaTuPQB70xbbV9jNJvLZPMmJ5rOJVLCFMhy2vIb3oTfUhOLhcZPDwHyffOfTr67eLjEx%2BD2wqZrfChekrQ1XenV01J7l01pSPfX85y1VcjuljytZzmcu3rN%2BXN0lixdcGNv3qNL4jF%2BOgd6fJtmgqVdh355rwSQtpNY7kkP2y565JdKdyN84VNi2z7yuubW%2F3MSueUSWegav%2F9HXA1J%2F%2F76Jfl9Z4caSg7gy0q9Is9cvSgzC54dgsuW7l3Zg1WrzQsO4ayqKY2ZKtPrQi0XGHKKrh%2FYbaaJ%2B4uujYEze8sj3ZgKwx0BarHcMX%2Fp3lm9879%2FMXifQmma1Ombe0e01Z%2Fvoj21WW%2Bi3J1Ubbg1EE9bjZ9GnU2gjimMmatsJ1EgaA0bEVhFNEmcjfn26M%2F%2FwIAAP%2F%2FAQAA%2F%2F%2BHu5CElwQAAA%3D%3D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSP48b1Rd9k7WUn37QgNJEoXBBAVLWmRl7Z2wiERHCRiuWJCSgUIHev3Eefp43vDfjcUyTEIRSuqCBanycTQKECD4AEfJGQrDVutuClfgMSJQI2awwvOLee945xdG597NJcUh8FPTgwltmpLSmZzYafv2l94LgbH1bpcWwPmxHH0Sts3U7eKUTNfyX6xcl75kzoR%2F4fuAH9U1lZWKGZxYkVPaoEzQ6fqMVNoKNFob2v9gVHhz1IAaH5HkoMa899U5A8RnS%2FncXpOvlJjv9Rr%2FQNDcWA%2FHg3bSXmjJFfzUm1kOSPjhSw7j9zScw6c7SLszgHyFTc%2BL99AQsfXBkEmxwb%2BmTacgUTDyDcjCD1DMoOgM3d6DEPgG4wKXLSPv3Lxlb0pt%2Fs3TBzkntj9%2Bhyjmp%2FXoCaf%2Fxea2G9WtGF7kyqcMwqaCGM6juDFmxi3x0DKrcBc8%2FgRIEab%2BCEgcvNpsBl61OuE43ErHeClrBOpNJc521O4yFUdROQn8ZjFIzqGQGLcegbg2F81AoD0Xiocg89MVBnQdBEPuCU7%2Fd4bwpYski4Qc0TgIa%2BFEbBV94HyPPxuB6DG5vIbO3H4pmLJuMtyYMPTWGLX6Eu1HBiTW4fE68t29jICqUkqB0BCUlKBVBmROUg2pHaBe66r7QrmDBUQ%2BPerOamrw7oTsm78qUTLJD8twiP%2B%2F4k2fRkwd1n0eBz%2BJW1IlFJ95IZBjG3Jdx0Gn7zaidwKkKyh0DdR5Gak5e6J5Cpubk%2BOnrYHQXTu%2BCq1OgRQBaTuPQB70xbbV9jNJvLZPMmJ5rOJVLCFMhy2vIb3oTfUhOLhcZPDwHyffOfTr67eLjEx%2BD2wqZrfChekrQ1XenV01J7l01pSPfX85y1VcjuljytZzmcu3rN%2BXN0lixdcGNv3qNL4jF%2BOgd6fJtmgqVdh355rwSQtpNY7kkP2y565JdKdyN84VNi2z7yuubW%2F3MSueUSWegav%2F9HXA1J%2F%2F76Jfl9Z4caSg7gy0q9Is9cvSgzC54dgsuW7l3Zg1WrzQsO4ayqKY2ZKtPrQi0XGHKKrh%2FYbaaJ%2B4uujYEze8sj3ZgKwx0BarHcMX%2Fp3lm9879%2FMXifQmma1Ombe0e01Z%2Fvoj21WW%2Bi3J1Ubbg1EE9bjZ9GnU2gjimMmatsJ1EgaA0bEVhFNEmcjfn26M%2F%2FwIAAP%2F%2FAQAA%2F%2F%2BHu5CElwQAAA%3D%3D HTTP/1.1
Host: concernederase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17284620; uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec0c610b74697d975fe227c0e71980368f=[3254334,3254335,3254354,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 22d9799a396277ffd141123082b5aa63
Strict-Transport-Security: max-age=0; includeSubdomains
concernederase.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSwVARdQL1U5%2BMABpMbdXTu7NpWoKCFVRGhLCion0PxaZ%2FB6Z5nZ9TrmQEsR6tEHLnBaPydNgVLBH0CEnEoI5RSLSw5E4m9A4oiQTYRhDt%2F3vXnv8PS%2B7%2FNRfkJc5PR49S09UHFML63U3OpL73ne5eqGSvJ%2Btd8MPggal6um90orqLkvV69J3tGXfNdzXc%2F1qmvKyEj3L81IqPRRy6u13FrDr3krDfTN%2F7HNHVjqQPROyPNQYlp54pyD4hMk3e9Xpe1kOr34RjePaaYNemLv3aST6CJBdzFGxkGU7J2qoe3R2j50sju3C937V8jUlDg%2F74Mle6cmwXo7c58shkzAxDMoehPIeAJFJ%2BD6HpQ4IgAXuH4DSffBdW0Kuv0PS2fslFT%2B%2FAOqmJLKb%2BeQdB9fjVW%2FekvHeaZ0YtGPSqj%2BBKo9QZofIBucgSoOwLNPoQRB0i2hxPGL9brHZaPlL9OVSCw3vIa3zGRUX2bNFmN%2BEDQj350Ho9QEKpoglkNQu4TcOsiVgzxykKcOuuK4yj3PC13BqdtscV4XoWSBcD0aRh713KCJnM%2B8D5GlQ%2FB4CG7uIDV3H4p6KOuMN0YMHTWEyX%2BC3SphxRJsNiXO23fREyUKSVBYgoISFIqgyAiKXrkrYuvb8oGIbc680%2B6f9no51ll7RHd11pYJGaUn5LlZfs7Z%2FWfRkcdVlweey8JG0ApFK1yJpO%2BH3JWh12q69aAZwaoSyp4BtQ4GakpeaF9Aqqbk7MXbYPQANj4AVxdAcw%2B0GIe%2BC7o1bjRdDJLvDJNM646tWZVJCF0izSrItp1RfELOzxfpPdyE5IdXPhv8fu3xuY%2FBTYnUlPhQPSFox%2FfHm7ogO5u6sOSHG2mmumpAZ0u%2BldFMLn3zptwutBHrq3b49Wt8RszGR%2B9Im23QRKikbcm3V5UQ0qxpwyX5cd3eluxmbreu5ibJ042br6%2Btd1MjrVU6mYCqo%2Fd3wdWUPPXRr%2FPrPT%2F4BMpMYPIS3fyQnD4ofQCe3oFNF%2B6tXoKJFxqWLqHIy7Hx2eIzVgSxXGDKStj%2FYLaYR%2FY%2B2sYHze7Nj7ZnSvTiEjQewuZPj7PUHF755cvZ%2BwosroxZbCo7LDbxF7NoX52VK%2FOQZ2UdVh1Xw3rdpUFrxQtDKkPW8JtR4AlK%2FUbgBwGtI7NTvjH4628AAAD%2F%2FwEAAP%2F%2FopP9YJcEAAA%3D
192.243.61.227200 OK 7 B URL HTTP/1.1 concernederase.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSwVARdQL1U5%2BMABpMbdXTu7NpWoKCFVRGhLCion0PxaZ%2FB6Z5nZ9TrmQEsR6tEHLnBaPydNgVLBH0CEnEoI5RSLSw5E4m9A4oiQTYRhDt%2F3vXnv8PS%2B7%2FNRfkJc5PR49S09UHFML63U3OpL73ne5eqGSvJ%2Btd8MPggal6um90orqLkvV69J3tGXfNdzXc%2F1qmvKyEj3L81IqPRRy6u13FrDr3krDfTN%2F7HNHVjqQPROyPNQYlp54pyD4hMk3e9Xpe1kOr34RjePaaYNemLv3aST6CJBdzFGxkGU7J2qoe3R2j50sju3C937V8jUlDg%2F74Mle6cmwXo7c58shkzAxDMoehPIeAJFJ%2BD6HpQ4IgAXuH4DSffBdW0Kuv0PS2fslFT%2B%2FAOqmJLKb%2BeQdB9fjVW%2FekvHeaZ0YtGPSqj%2BBKo9QZofIBucgSoOwLNPoQRB0i2hxPGL9brHZaPlL9OVSCw3vIa3zGRUX2bNFmN%2BEDQj350Ho9QEKpoglkNQu4TcOsiVgzxykKcOuuK4yj3PC13BqdtscV4XoWSBcD0aRh713KCJnM%2B8D5GlQ%2FB4CG7uIDV3H4p6KOuMN0YMHTWEyX%2BC3SphxRJsNiXO23fREyUKSVBYgoISFIqgyAiKXrkrYuvb8oGIbc680%2B6f9no51ll7RHd11pYJGaUn5LlZfs7Z%2FWfRkcdVlweey8JG0ApFK1yJpO%2BH3JWh12q69aAZwaoSyp4BtQ4GakpeaF9Aqqbk7MXbYPQANj4AVxdAcw%2B0GIe%2BC7o1bjRdDJLvDJNM646tWZVJCF0izSrItp1RfELOzxfpPdyE5IdXPhv8fu3xuY%2FBTYnUlPhQPSFox%2FfHm7ogO5u6sOSHG2mmumpAZ0u%2BldFMLn3zptwutBHrq3b49Wt8RszGR%2B9Im23QRKikbcm3V5UQ0qxpwyX5cd3eluxmbreu5ibJ042br6%2Btd1MjrVU6mYCqo%2Fd3wdWUPPXRr%2FPrPT%2F4BMpMYPIS3fyQnD4ofQCe3oFNF%2B6tXoKJFxqWLqHIy7Hx2eIzVgSxXGDKStj%2FYLaYR%2FY%2B2sYHze7Nj7ZnSvTiEjQewuZPj7PUHF755cvZ%2BwosroxZbCo7LDbxF7NoX52VK%2FOQZ2UdVh1Xw3rdpUFrxQtDKkPW8JtR4AlK%2FUbgBwGtI7NTvjH4628AAAD%2F%2FwEAAP%2F%2FopP9YJcEAAA%3D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSwVARdQL1U5%2BMABpMbdXTu7NpWoKCFVRGhLCion0PxaZ%2FB6Z5nZ9TrmQEsR6tEHLnBaPydNgVLBH0CEnEoI5RSLSw5E4m9A4oiQTYRhDt%2F3vXnv8PS%2B7%2FNRfkJc5PR49S09UHFML63U3OpL73ne5eqGSvJ%2Btd8MPggal6um90orqLkvV69J3tGXfNdzXc%2F1qmvKyEj3L81IqPRRy6u13FrDr3krDfTN%2F7HNHVjqQPROyPNQYlp54pyD4hMk3e9Xpe1kOr34RjePaaYNemLv3aST6CJBdzFGxkGU7J2qoe3R2j50sju3C937V8jUlDg%2F74Mle6cmwXo7c58shkzAxDMoehPIeAJFJ%2BD6HpQ4IgAXuH4DSffBdW0Kuv0PS2fslFT%2B%2FAOqmJLKb%2BeQdB9fjVW%2FekvHeaZ0YtGPSqj%2BBKo9QZofIBucgSoOwLNPoQRB0i2hxPGL9brHZaPlL9OVSCw3vIa3zGRUX2bNFmN%2BEDQj350Ho9QEKpoglkNQu4TcOsiVgzxykKcOuuK4yj3PC13BqdtscV4XoWSBcD0aRh713KCJnM%2B8D5GlQ%2FB4CG7uIDV3H4p6KOuMN0YMHTWEyX%2BC3SphxRJsNiXO23fREyUKSVBYgoISFIqgyAiKXrkrYuvb8oGIbc680%2B6f9no51ll7RHd11pYJGaUn5LlZfs7Z%2FWfRkcdVlweey8JG0ApFK1yJpO%2BH3JWh12q69aAZwaoSyp4BtQ4GakpeaF9Aqqbk7MXbYPQANj4AVxdAcw%2B0GIe%2BC7o1bjRdDJLvDJNM646tWZVJCF0izSrItp1RfELOzxfpPdyE5IdXPhv8fu3xuY%2FBTYnUlPhQPSFox%2FfHm7ogO5u6sOSHG2mmumpAZ0u%2BldFMLn3zptwutBHrq3b49Wt8RszGR%2B9Im23QRKikbcm3V5UQ0qxpwyX5cd3eluxmbreu5ibJ042br6%2Btd1MjrVU6mYCqo%2Fd3wdWUPPXRr%2FPrPT%2F4BMpMYPIS3fyQnD4ofQCe3oFNF%2B6tXoKJFxqWLqHIy7Hx2eIzVgSxXGDKStj%2FYLaYR%2FY%2B2sYHze7Nj7ZnSvTiEjQewuZPj7PUHF755cvZ%2BwosroxZbCo7LDbxF7NoX52VK%2FOQZ2UdVh1Xw3rdpUFrxQtDKkPW8JtR4AlK%2FUbgBwGtI7NTvjH4628AAAD%2F%2FwEAAP%2F%2FopP9YJcEAAA%3D HTTP/1.1
Host: concernederase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17284620; uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec0c610b74697d975fe227c0e71980368f=[3254334,3254335,3254354,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f8da223cfa031e22b2d9d4f39b509de6
Strict-Transport-Security: max-age=0; includeSubdomains
concernederase.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST28b1Rd901jqTz%2FYgLqpysILFiA17szYmbGpREUIqSJCW1JQWYHev3EeHs8b3pvxOGbTUoS69IINrMbHSVOgVPABiJBTCUFW8S4LIvEZkFgiZBNheIt773nnLI7OvZ%2BN8lPiIqcna2%2FpgYpjemWl5lZfes%2FzrlY3VZL3q%2F1m8EHQuFo1vVdaQc19uXpd8o6%2B4rue63quV11XRka6f2VGQqWPW16t5dYafs1baaBv%2Fott7sBSB6J3Sp6HEtPKU%2BcCFJ8g6X63Jm0n0%2BnlN7p5TDNt0BP77yadRBcJuosxMg6iZP9MDW2P1w%2Bgk725XejeP0KmpsT56QAs2T8zCdbbnftkMWQCJp5B0ZtAxhMoOgHX96HEMQG4wI2bSLoPb2hT0J2%2FWTpjp6Tyx%2B9QxZRUfr2ApPtkNVb96m0d55nSiUU%2FKqH6E6j2BGl%2BiGxwDqo4BM8%2BgRIESbeEEicv1usel42Wv0xXIrHc8BreMpNRfZk1W4z5QdCMfHcejFITqGiCWA5B7RJy6yBXDvLIQZ466IqTKvc8L3QFp26zxXldhJIFwvVoGHnUc4Mmcj7zPkSWDsHjIbi5i9TceyTqoawz3hgxdNQQJv8RdruEFUuw2ZQ4b99DT5QoJEFhCQpKUCiCIiMoeuWeiK1vy4citjnzzrp%2F1uvlWGftEd3TWVsmZJSekudm%2BTnnD55FR55UXR54LgsbQSsUrXAlkr4fcleGXqvp1oNmBKtKKHsO1DoYqCl5oX0JqZqS85fvgNFD2PgQXF0CzT3QYhz6Luj2uNF0MUi%2BNUwyrTu2ZlUmIXSJNKsg23FG8Sm5OF%2Bk9%2BhVSH507dPBb9efXPgY3JRITYkP1VOCdvxgvKULsrulC0u%2Bv5lmqqsGdLbk2xnN5NLXb8qdQhuxsWaHX73GZ8RsfPyOtNkmTYRK2pZ8s6qEkGZdGy7JDxv2jmS3cru9mpskTzdvvb6%2B0U2NtFbpZAKqjt%2FfA1dT8r%2BPfplf78VBB8pMYPIS3fyInD0ofQie3oVNF%2B6tXoKJFxqWOijycmx8tviMFUEsF5iyEvZfmC3mkX2AtvFBs%2Fvzo%2B2ZEr24BI2HsPn%2Fx1lqjq79%2FMXsfQkWV8YsNpVdFpv483m0s3JtVrZmZQNWnVTDet2lQWvFC0MqQ9bwm1HgCUr9RuAHAa0js1O%2BOfjzLwAAAP%2F%2FAQAA%2F%2F9T0YBZlwQAAA%3D%3D
192.243.61.227200 OK 7 B URL HTTP/1.1 concernederase.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST28b1Rd901jqTz%2FYgLqpysILFiA17szYmbGpREUIqSJCW1JQWYHev3EeHs8b3pvxOGbTUoS69IINrMbHSVOgVPABiJBTCUFW8S4LIvEZkFgiZBNheIt773nnLI7OvZ%2BN8lPiIqcna2%2FpgYpjemWl5lZfes%2FzrlY3VZL3q%2F1m8EHQuFo1vVdaQc19uXpd8o6%2B4rue63quV11XRka6f2VGQqWPW16t5dYafs1baaBv%2Fott7sBSB6J3Sp6HEtPKU%2BcCFJ8g6X63Jm0n0%2BnlN7p5TDNt0BP77yadRBcJuosxMg6iZP9MDW2P1w%2Bgk725XejeP0KmpsT56QAs2T8zCdbbnftkMWQCJp5B0ZtAxhMoOgHX96HEMQG4wI2bSLoPb2hT0J2%2FWTpjp6Tyx%2B9QxZRUfr2ApPtkNVb96m0d55nSiUU%2FKqH6E6j2BGl%2BiGxwDqo4BM8%2BgRIESbeEEicv1usel42Wv0xXIrHc8BreMpNRfZk1W4z5QdCMfHcejFITqGiCWA5B7RJy6yBXDvLIQZ466IqTKvc8L3QFp26zxXldhJIFwvVoGHnUc4Mmcj7zPkSWDsHjIbi5i9TceyTqoawz3hgxdNQQJv8RdruEFUuw2ZQ4b99DT5QoJEFhCQpKUCiCIiMoeuWeiK1vy4citjnzzrp%2F1uvlWGftEd3TWVsmZJSekudm%2BTnnD55FR55UXR54LgsbQSsUrXAlkr4fcleGXqvp1oNmBKtKKHsO1DoYqCl5oX0JqZqS85fvgNFD2PgQXF0CzT3QYhz6Luj2uNF0MUi%2BNUwyrTu2ZlUmIXSJNKsg23FG8Sm5OF%2Bk9%2BhVSH507dPBb9efXPgY3JRITYkP1VOCdvxgvKULsrulC0u%2Bv5lmqqsGdLbk2xnN5NLXb8qdQhuxsWaHX73GZ8RsfPyOtNkmTYRK2pZ8s6qEkGZdGy7JDxv2jmS3cru9mpskTzdvvb6%2B0U2NtFbpZAKqjt%2FfA1dT8r%2BPfplf78VBB8pMYPIS3fyInD0ofQie3oVNF%2B6tXoKJFxqWOijycmx8tviMFUEsF5iyEvZfmC3mkX2AtvFBs%2Fvzo%2B2ZEr24BI2HsPn%2Fx1lqjq79%2FMXsfQkWV8YsNpVdFpv483m0s3JtVrZmZQNWnVTDet2lQWvFC0MqQ9bwm1HgCUr9RuAHAa0js1O%2BOfjzLwAAAP%2F%2FAQAA%2F%2F9T0YBZlwQAAA%3D%3D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST28b1Rd901jqTz%2FYgLqpysILFiA17szYmbGpREUIqSJCW1JQWYHev3EeHs8b3pvxOGbTUoS69IINrMbHSVOgVPABiJBTCUFW8S4LIvEZkFgiZBNheIt773nnLI7OvZ%2BN8lPiIqcna2%2FpgYpjemWl5lZfes%2FzrlY3VZL3q%2F1m8EHQuFo1vVdaQc19uXpd8o6%2B4rue63quV11XRka6f2VGQqWPW16t5dYafs1baaBv%2Fott7sBSB6J3Sp6HEtPKU%2BcCFJ8g6X63Jm0n0%2BnlN7p5TDNt0BP77yadRBcJuosxMg6iZP9MDW2P1w%2Bgk725XejeP0KmpsT56QAs2T8zCdbbnftkMWQCJp5B0ZtAxhMoOgHX96HEMQG4wI2bSLoPb2hT0J2%2FWTpjp6Tyx%2B9QxZRUfr2ApPtkNVb96m0d55nSiUU%2FKqH6E6j2BGl%2BiGxwDqo4BM8%2BgRIESbeEEicv1usel42Wv0xXIrHc8BreMpNRfZk1W4z5QdCMfHcejFITqGiCWA5B7RJy6yBXDvLIQZ466IqTKvc8L3QFp26zxXldhJIFwvVoGHnUc4Mmcj7zPkSWDsHjIbi5i9TceyTqoawz3hgxdNQQJv8RdruEFUuw2ZQ4b99DT5QoJEFhCQpKUCiCIiMoeuWeiK1vy4citjnzzrp%2F1uvlWGftEd3TWVsmZJSekudm%2BTnnD55FR55UXR54LgsbQSsUrXAlkr4fcleGXqvp1oNmBKtKKHsO1DoYqCl5oX0JqZqS85fvgNFD2PgQXF0CzT3QYhz6Luj2uNF0MUi%2BNUwyrTu2ZlUmIXSJNKsg23FG8Sm5OF%2Bk9%2BhVSH507dPBb9efXPgY3JRITYkP1VOCdvxgvKULsrulC0u%2Bv5lmqqsGdLbk2xnN5NLXb8qdQhuxsWaHX73GZ8RsfPyOtNkmTYRK2pZ8s6qEkGZdGy7JDxv2jmS3cru9mpskTzdvvb6%2B0U2NtFbpZAKqjt%2FfA1dT8r%2BPfplf78VBB8pMYPIS3fyInD0ofQie3oVNF%2B6tXoKJFxqWOijycmx8tviMFUEsF5iyEvZfmC3mkX2AtvFBs%2Fvzo%2B2ZEr24BI2HsPn%2Fx1lqjq79%2FMXsfQkWV8YsNpVdFpv483m0s3JtVrZmZQNWnVTDet2lQWvFC0MqQ9bwm1HgCUr9RuAHAa0js1O%2BOfjzLwAAAP%2F%2FAQAA%2F%2F9T0YBZlwQAAA%3D%3D HTTP/1.1
Host: concernederase.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17284620; uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec0c610b74697d975fe227c0e71980368f=[3254334,3254335,3254354,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0f32d4f2484523eee160bb233ef5dc23
Strict-Transport-Security: max-age=0; includeSubdomains
dwightadjoining.com/watch.1465829683269.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
192.243.59.13307 Temporary Redirect 0 B URL HTTP/1.1 dwightadjoining.com/watch.1465829683269.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1465829683269.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: dwightadjoining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.6
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://dwightadjoining.com/watch.1465829683269.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=e6d0d123821780b103d489059250ef3dec581ed65bd1c60e5236955c6670d6cbf3a0af5d2597ffa2ca50b82c8b625c81b04aff695427af3f54f39a0ed4dcddc7343475c0e1794652a2b32f7b1c6f73e8a261f8&pst=1665956666&rmtc=t
Set-Cookie: u_pl=17258364; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; expires=Sun, 16 Oct 2022 21:44:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4d1904abccc5fd9f446a6af05ad93761
Strict-Transport-Security: max-age=0; includeSubdomains
burlydeclined.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
192.243.61.225200 OK 0 B URL HTTP/1.1 burlydeclined.com/pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/nvwbdp?key=0c610b74697d975fe227c0e71980368f HTTP/1.1
Host: burlydeclined.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
pixel.wp.com/g.gif?v=ext&j=1%3A11.4&blog=202384053&post=9086&tz=0&srv=rbebooks.site&host=rbebooks.site&ref=&fcp=1318&rand=0.014829324298334279
192.0.76.3200 OK 50 B URL HTTP/1.1 pixel.wp.com/g.gif?v=ext&j=1%3A11.4&blog=202384053&post=9086&tz=0&srv=rbebooks.site&host=rbebooks.site&ref=&fcp=1318&rand=0.014829324298334279
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A11.4&blog=202384053&post=9086&tz=0&srv=rbebooks.site&host=rbebooks.site&ref=&fcp=1318&rand=0.014829324298334279 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *
prawnsimply.com/watch.884037329167.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
192.243.59.20307 Temporary Redirect 0 B URL HTTP/1.1 prawnsimply.com/watch.884037329167.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.884037329167.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: prawnsimply.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.9
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://prawnsimply.com/watch.884037329167.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=e2d345da2fce6776acde213916ae7d64a9e8f8157c2c978ede668874de4c9810cf7a77d27163c1fa057535c1decbde5c110715382d82239d30fef46fe84b6b1b3efeae4229b662fe738ef67a6b9c7a1b872e701125bdeec2f3ba06bb4b0cbf25&pst=1665956666&rmtc=t
Set-Cookie: u_pl=17258364; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; expires=Sun, 16 Oct 2022 21:44:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 38b33041967775b0aca5ceee428ac868
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b90192985a95a9e4c54fcf57e57dd90a
ea522ffee7781b6a91427c82912a7915f7c4fba9
d579b6e786505d365327b3dad5bd3856cd46f2f598a92e53ab8db9030731cf1b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D579B6E786505D365327B3DAD5BD3856CD46F2F598A92E53AB8DB9030731CF1B"
Last-Modified: Sat, 15 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10001
Expires: Mon, 17 Oct 2022 00:30:07 GMT
Date: Sun, 16 Oct 2022 21:43:26 GMT
Connection: keep-alive
creepingbrings.com/sfp.js
104.21.234.233200 OK 28 kB URL HTTP/1.1 creepingbrings.com/sfp.js
IP 104.21.234.233:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash b1fa950e77a7db5425f9a5257af02e9c
2d5580451f34ad96218f8b97edf9708f9ee1be87
d999c4320df27dc4a1d3de5aec22bb3ef201560b47a7eff3f28f4133c1997a14
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: f2879a25e6eeaf856f280773e83762b8
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 16 Oct 2022 21:43:26 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6DQrP6Zqz0vy4IFAznvxOQHcIfzZfp0X0oGtw8vgpWrlIZGmAfnOV4yl%2BmDdDQXsnYtNxmFh7GFbY8JAYBpxR%2B8p1StoWD44WE80yRifq0X0e5LYP9GxzxS3%2FnjgYG%2BlSFGcXYk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75b3f8588ff0742b-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
dwightadjoining.com/watch.1465829683269.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=e6d0d123821780b103d489059250ef3dec581ed65bd1c60e5236955c6670d6cbf3a0af5d2597ffa2ca50b82c8b625c81b04aff695427af3f54f39a0ed4dcddc7343475c0e1794652a2b32f7b1c6f73e8a261f8&pst=1665956666&rmtc=t
192.243.59.13200 OK 1.9 kB URL HTTP/1.1 dwightadjoining.com/watch.1465829683269.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=e6d0d123821780b103d489059250ef3dec581ed65bd1c60e5236955c6670d6cbf3a0af5d2597ffa2ca50b82c8b625c81b04aff695427af3f54f39a0ed4dcddc7343475c0e1794652a2b32f7b1c6f73e8a261f8&pst=1665956666&rmtc=t
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2387)
Hash 45af02df5b95342ae7b7e6164ce2dad1
7cf566590886306822aa04a3711f2969b722e3f5
7251ca8a4a95c438207a8e6f3cb7c989e7c8583b71398c58e204d3f569aed2a7
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1465829683269.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=e6d0d123821780b103d489059250ef3dec581ed65bd1c60e5236955c6670d6cbf3a0af5d2597ffa2ca50b82c8b625c81b04aff695427af3f54f39a0ed4dcddc7343475c0e1794652a2b32f7b1c6f73e8a261f8&pst=1665956666&rmtc=t HTTP/1.1
Host: dwightadjoining.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258364; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:26 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 17 Oct 2022 21:43:26 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 58cd73a7b343bb38efa477c389bca1a6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2f97c9bfa9c663834a49af36d4d57890
f37fd4a8d5befcbbfd7bec79357279e2efe734e4
a61d438f3c6e735657e79dff169beff3690747a70b8c97ff380e672e28269e8c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6011
Cache-Control: max-age=165807
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:27 GMT
Etag: "634c4833-1d7"
Expires: Tue, 18 Oct 2022 19:46:54 GMT
Last-Modified: Sun, 16 Oct 2022 18:06:43 GMT
Server: ECS (amb/6BB3)
X-Cache: HIT
Content-Length: 471
prawnsimply.com/watch.884037329167.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=e2d345da2fce6776acde213916ae7d64a9e8f8157c2c978ede668874de4c9810cf7a77d27163c1fa057535c1decbde5c110715382d82239d30fef46fe84b6b1b3efeae4229b662fe738ef67a6b9c7a1b872e701125bdeec2f3ba06bb4b0cbf25&pst=1665956666&rmtc=t
192.243.59.20200 OK 2.0 kB URL HTTP/1.1 prawnsimply.com/watch.884037329167.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=e2d345da2fce6776acde213916ae7d64a9e8f8157c2c978ede668874de4c9810cf7a77d27163c1fa057535c1decbde5c110715382d82239d30fef46fe84b6b1b3efeae4229b662fe738ef67a6b9c7a1b872e701125bdeec2f3ba06bb4b0cbf25&pst=1665956666&rmtc=t
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2421)
Hash 3aadfa802c09d96d3815bb57112f1fb4
830eec561740092786af9246c93070465dcf3ab2
27f62e1207a70efd8aa718a1bd75a9c9497266282272909ab241922e6abad249
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.884037329167.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=e2d345da2fce6776acde213916ae7d64a9e8f8157c2c978ede668874de4c9810cf7a77d27163c1fa057535c1decbde5c110715382d82239d30fef46fe84b6b1b3efeae4229b662fe738ef67a6b9c7a1b872e701125bdeec2f3ba06bb4b0cbf25&pst=1665956666&rmtc=t HTTP/1.1
Host: prawnsimply.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258364; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 16 Oct 2022 21:43:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:26 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2e28f0f9a08498274f31bffa320741ec
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8afdc3e81df62e1b7a0b602a05361ef2
2714b76c29f50a37e373683983ac654ff9054e20
5dceafedab5b5922b863ded985dcd38e4303d81685e60641aee834a83950ad01
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5DCEAFEDAB5B5922B863DED985DCD38E4303D81685E60641AEE834A83950AD01"
Last-Modified: Sat, 15 Oct 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12680
Expires: Mon, 17 Oct 2022 01:14:47 GMT
Date: Sun, 16 Oct 2022 21:43:27 GMT
Connection: keep-alive
obsessivepetsbean.com/watch.1271023661722.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
192.243.59.20307 Temporary Redirect 0 B URL HTTP/1.1 obsessivepetsbean.com/watch.1271023661722.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1271023661722.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: obsessivepetsbean.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.9
Date: Sun, 16 Oct 2022 21:43:27 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://obsessivepetsbean.com/watch.1271023661722.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=88a144d1f7f5e16f82aa594ae58a7349c5280bf5e0f18eb062b6124f87b9df839a981583afd8f743140f29ad6a1aa5fb1ebf751e1984f90d3bb0d06da97e79058132af43c0f1fdb4a28a0c94b2228d8e0a81ce&pst=1665956667&rmtc=t
Set-Cookie: u_pl=17258364; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; expires=Sun, 16 Oct 2022 21:44:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5201acaf029a260d14314558ddd0ecb1
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 77d11a6c92b9335995fe312f417ecc06
6083bb9a82f40b06b48851ffb33591183b0189e6
460f71bf24cdfa0136ed97a06665941b923c9370170aa8abc1f3cc8572605fd4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "460F71BF24CDFA0136ED97A06665941B923C9370170AA8ABC1F3CC8572605FD4"
Last-Modified: Sat, 15 Oct 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10219
Expires: Mon, 17 Oct 2022 00:33:46 GMT
Date: Sun, 16 Oct 2022 21:43:27 GMT
Connection: keep-alive
cdn.cloudimagesb.com/cti/69/eb/5b/69eb5b050a7926bd63f5b298436d7d7f/1663166466.png
45.133.44.10200 OK 40 kB URL HTTP/2 cdn.cloudimagesb.com/cti/69/eb/5b/69eb5b050a7926bd63f5b298436d7d7f/1663166466.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 729 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash ce59bc76d5eadd3d7212d0343a5465e2
2c0b557a604b474a9e026c9e5ed4aef27c978333
1c6d20b8317b0f3e6dff1328237a84df733fdccdb2a8d7df05ae4ca7c8b289db
GET /cti/69/eb/5b/69eb5b050a7926bd63f5b298436d7d7f/1663166466.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:27 GMT
content-type: image/png
content-length: 40500
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:41:14 GMT
etag: "6321e80a-9e34"
expires: Tue, 18 Oct 2022 21:43:27 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
obsessivepetsbean.com/watch.1271023661722.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=88a144d1f7f5e16f82aa594ae58a7349c5280bf5e0f18eb062b6124f87b9df839a981583afd8f743140f29ad6a1aa5fb1ebf751e1984f90d3bb0d06da97e79058132af43c0f1fdb4a28a0c94b2228d8e0a81ce&pst=1665956667&rmtc=t
192.243.59.20200 OK 2.0 kB URL HTTP/1.1 obsessivepetsbean.com/watch.1271023661722.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=88a144d1f7f5e16f82aa594ae58a7349c5280bf5e0f18eb062b6124f87b9df839a981583afd8f743140f29ad6a1aa5fb1ebf751e1984f90d3bb0d06da97e79058132af43c0f1fdb4a28a0c94b2228d8e0a81ce&pst=1665956667&rmtc=t
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2441)
Hash 203575178a9975cf293b1e614533f3b7
a9edd579b9f6473e1034115253c3f312e66d13f3
3d5feac737f69a707af1cbd7320d2b6f2fb374aaea49fd3c2154c63183ae3e43
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1271023661722.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=88a144d1f7f5e16f82aa594ae58a7349c5280bf5e0f18eb062b6124f87b9df839a981583afd8f743140f29ad6a1aa5fb1ebf751e1984f90d3bb0d06da97e79058132af43c0f1fdb4a28a0c94b2228d8e0a81ce&pst=1665956667&rmtc=t HTTP/1.1
Host: obsessivepetsbean.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258364; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzI1ODM2NCwiayI6Ijk1ZTRjNGNlNzc1NDMzZmE0ZGIyZTFkMGM0MGVhY2MzIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODYxNDAzLCJwaWQiOjQ3MDEwMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyNywiYWlkIjoyMywicHQiOjQsInBrIjoiYTUxdzR5ZGoiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHA6Ly9yYmVib29rcy5zaXRlL2NvbXB0aWEtc2VjdXJpdHktZXhhbS1zdHVkeS1ndWlkZS8ifX0.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 16 Oct 2022 21:43:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a4c739dc0b9d5da5d5f4a8982c08945e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
standardscaldexcessive.com/watch.409872199511.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
192.243.59.12307 Temporary Redirect 0 B URL HTTP/1.1 standardscaldexcessive.com/watch.409872199511.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.409872199511.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: standardscaldexcessive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.6
Date: Sun, 16 Oct 2022 21:43:27 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://standardscaldexcessive.com/watch.409872199511.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=4877b02a3301ae7c95de0ebb9467fc66e635b887369eddfe563c1e4ae959e456ca43ffad8be33d0289e289adbd5385edde6f2d5a860a4a60189a44eead792bf8987fd7bc8f052f5e405a74269d6404770fc6e8&pst=1665956667&rmtc=t
Set-Cookie: u_pl=17258364; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzI1ODM2NCwiayI6Ijk1ZTRjNGNlNzc1NDMzZmE0ZGIyZTFkMGM0MGVhY2MzIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODYxNDAzLCJwaWQiOjQ3MDEwMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyNywiYWlkIjoyMywicHQiOjQsInBrIjoiYTUxdzR5ZGoiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHA6Ly9yYmVib29rcy5zaXRlL2NvbXB0aWEtc2VjdXJpdHktZXhhbS1zdHVkeS1ndWlkZS8ifX0.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; expires=Sun, 16 Oct 2022 21:44:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 995365932b634e881f07f86b018a1dff
Strict-Transport-Security: max-age=0; includeSubdomains
rbebooks.site/comptia-security-exam-study-guide/?relatedposts=1
142.132.250.25200 OK 997 B URL HTTP/1.1 rbebooks.site/comptia-security-exam-study-guide/?relatedposts=1
IP 142.132.250.25:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text, with very long lines (2703), with no line terminators
Hash f5f2cfdcb39f95d834f6cc978a36c54d
c82eca1915199458bb7b5347031c11b6fd2170da
6a82ce3f44d1f297bf94ba594881ad8b955dd500e9a241f152729f3fffa3b74b
GET /comptia-security-exam-study-guide/?relatedposts=1 HTTP/1.1
Host: rbebooks.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
x-requested-with: XMLHttpRequest
Connection: keep-alive
Referer: http://rbebooks.site/comptia-security-exam-study-guide/
Cookie: _ga_CCWKBB1PCZ=GS1.1.1665956608.1.1.1665956608.0.0.0; _ga=GA1.1.2074735278.1665956608; dom3ic8zudi28v8lr6fgphwffqoz0j6c=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=concernederase.com
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 16 Oct 2022 21:43:27 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Pingback: http://rbebooks.site/xmlrpc.php
Cache-Control: s-maxage=10
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff, nosniff
X-Nginx-Upstream-Cache-Status: MISS
X-Server-Powered-By: Engintron
Content-Encoding: gzip
monkyank.com/watch.1342727640761.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
173.233.137.36307 Temporary Redirect 0 B URL HTTP/1.1 monkyank.com/watch.1342727640761.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 173.233.137.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1342727640761.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: monkyank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:27 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Location: https://monkyank.com/watch.1342727640761.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=b618f6b6adf61af52777f1f58eac104023f420cff63eb1aac60b1fd249c8837a4c910179e2e0a413f39c6e61f5045320b9cb0eb18b06d7e5f8224b860dd02d1d4f2668765e8588136ccef6bc5a890dd9343f6bae5fb67bb9a3157c045135&pst=1665956667&rmtc=t
Set-Cookie: u_pl=17258364; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzI1ODM2NCwiayI6Ijk1ZTRjNGNlNzc1NDMzZmE0ZGIyZTFkMGM0MGVhY2MzIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxODYxNDAzLCJwaWQiOjQ3MDEwMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyNywiYWlkIjoyMywicHQiOjQsInBrIjoiYTUxdzR5ZGoiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6Nzk5NTQxOTYsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjoxODExMCwib24iOiJMaW51eCIsIm92IjoiVW5rbm93biIsImJpZCI6MTE2NjcwLCJibiI6IkZpcmVmb3giLCJidiI6Ijk2LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHA6Ly9yYmVib29rcy5zaXRlL2NvbXB0aWEtc2VjdXJpdHktZXhhbS1zdHVkeS1ndWlkZS8ifX0.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; expires=Sun, 16 Oct 2022 21:44:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e282768b9ec87341eba18eb741885ec5
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/cti/b2/af/8a/b2af8ac2a38a3a519d5e4c5787c1d9cb/1663335057.png
45.133.44.10200 OK 60 kB URL HTTP/2 cdn.cloudimagesb.com/cti/b2/af/8a/b2af8ac2a38a3a519d5e4c5787c1d9cb/1663335057.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash dcc2cb1dabee57e298b368c25b4d72c7
05742ee7c81b766aa3f2ce0ca0bc222acbef8d62
df8034422253387414eaf1c24f9ee191d84b0fcd534e31100b4a5960b04ed4ed
GET /cti/b2/af/8a/b2af8ac2a38a3a519d5e4c5787c1d9cb/1663335057.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:27 GMT
content-type: image/png
content-length: 60299
server: nginx/1.17.6
last-modified: Fri, 16 Sep 2022 13:31:05 GMT
etag: "63247a99-eb8b"
expires: Tue, 18 Oct 2022 21:43:27 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
bmc-cdn.nyc3.digitaloceanspaces.com/Fonts/65d75eb0-2601-4da5-a9a4-9ee67a470a59.woff
162.243.189.2200 OK 22 kB URL HTTP/2 bmc-cdn.nyc3.digitaloceanspaces.com/Fonts/65d75eb0-2601-4da5-a9a4-9ee67a470a59.woff
IP 162.243.189.2:0
ASN #14061 DIGITALOCEAN-ASN
File type Web Open Font Format, TrueType, length 22051, version 1.0\012- data
Hash edc05a13a301b3a6e023292eb0762d1c
df8a2b7200cb4b9eb5f73c7fd2ff67d92ff5d833
ab4883df74435cbd0eb4d9ddfa492e7cc2a4be7ceff47fcefe82199aed9c4ed0
GET /Fonts/65d75eb0-2601-4da5-a9a4-9ee67a470a59.woff HTTP/1.1
Host: bmc-cdn.nyc3.digitaloceanspaces.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 22051
last-modified: Wed, 02 May 2018 07:26:09 GMT
x-rgw-object-type: Normal
etag: "edc05a13a301b3a6e023292eb0762d1c"
cache-control: max-age=60000
x-amz-request-id: tx000000000000005f0a146-00634c7aff-21d2b872-nyc3a
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 0
content-type: application/font-woff
date: Sun, 16 Oct 2022 21:43:27 GMT
age: 0
accept-ranges: bytes
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
strict-transport-security: max-age=15552000; includeSubDomains; preload
X-Firefox-Spdy: h2
standardscaldexcessive.com/watch.409872199511.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=4877b02a3301ae7c95de0ebb9467fc66e635b887369eddfe563c1e4ae959e456ca43ffad8be33d0289e289adbd5385edde6f2d5a860a4a60189a44eead792bf8987fd7bc8f052f5e405a74269d6404770fc6e8&pst=1665956667&rmtc=t
192.243.59.12200 OK 2.0 kB URL HTTP/1.1 standardscaldexcessive.com/watch.409872199511.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=4877b02a3301ae7c95de0ebb9467fc66e635b887369eddfe563c1e4ae959e456ca43ffad8be33d0289e289adbd5385edde6f2d5a860a4a60189a44eead792bf8987fd7bc8f052f5e405a74269d6404770fc6e8&pst=1665956667&rmtc=t
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2423)
Hash 08235325217bb6e052fe4e387acba591
fc52f9789c0fdf7ab9adcdea18ecf8fa32665940
e58317a386dc4da85c0a6debc6e485d95918a93987c14082826c48839f7e5b71
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.409872199511.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=4877b02a3301ae7c95de0ebb9467fc66e635b887369eddfe563c1e4ae959e456ca43ffad8be33d0289e289adbd5385edde6f2d5a860a4a60189a44eead792bf8987fd7bc8f052f5e405a74269d6404770fc6e8&pst=1665956667&rmtc=t HTTP/1.1
Host: standardscaldexcessive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258364; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 16 Oct 2022 21:43:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 655c9cf135c0e7bb7889a6e5f427ace8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/48/65/95/486595255d263d9b2e21d76f4a17789a/1663165344.gif
45.133.44.10200 OK 17 kB URL HTTP/2 cdn.cloudimagesb.com/cti/48/65/95/486595255d263d9b2e21d76f4a17789a/1663165344.gif
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 728 x 90\012- data
Hash 9827a684548028835e797ea6fefa1981
ed4fca3e5240078a7eab11a5d9c8bcfc00e6504d
b920715f48738062f796ef90f7b0dc7ce636f563d1319a3f6148dd6719922d09
GET /cti/48/65/95/486595255d263d9b2e21d76f4a17789a/1663165344.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:27 GMT
content-type: image/gif
content-length: 17303
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:22:32 GMT
etag: "6321e3a8-4397"
expires: Tue, 18 Oct 2022 21:43:27 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
monkyank.com/watch.1342727640761.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=b618f6b6adf61af52777f1f58eac104023f420cff63eb1aac60b1fd249c8837a4c910179e2e0a413f39c6e61f5045320b9cb0eb18b06d7e5f8224b860dd02d1d4f2668765e8588136ccef6bc5a890dd9343f6bae5fb67bb9a3157c045135&pst=1665956667&rmtc=t
173.233.137.36200 OK 2.0 kB URL HTTP/1.1 monkyank.com/watch.1342727640761.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=b618f6b6adf61af52777f1f58eac104023f420cff63eb1aac60b1fd249c8837a4c910179e2e0a413f39c6e61f5045320b9cb0eb18b06d7e5f8224b860dd02d1d4f2668765e8588136ccef6bc5a890dd9343f6bae5fb67bb9a3157c045135&pst=1665956667&rmtc=t
IP 173.233.137.36:0
File type HTML document, ASCII text, with very long lines (2418)
Hash 525adbcc2084c11d0bed0176621710c6
819e83197ba408fcb386aebee761c5a357863291
82f6536bf28d0ea56114f3ce1dcdaa2158d8525de4f5ba251f023e280d044079
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.1342727640761.js?key=95e4c4ce775433fa4db2e1d0c40eacc3&kw=%5B%22comptia%22%2C%22security%2B%22%2C%22exam%22%2C%22study%22%2C%22guide%22%2C%22-%22%2C%22reading%22%2C%22bag%22%2C%22library%22%5D&refer=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&tz=0&dev=r&res=12.29&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1&shu=b618f6b6adf61af52777f1f58eac104023f420cff63eb1aac60b1fd249c8837a4c910179e2e0a413f39c6e61f5045320b9cb0eb18b06d7e5f8224b860dd02d1d4f2668765e8588136ccef6bc5a890dd9343f6bae5fb67bb9a3157c045135&pst=1665956667&rmtc=t HTTP/1.1
Host: monkyank.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Referer: http://rbebooks.site/
Connection: keep-alive
Cookie: u_pl=17258364; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 16 Oct 2022 21:43:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0d00f61c12784f5564b9c68c056fc36a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
obsessivepetsbean.com/sbar.json?key=3b7751125a8505512c15b5bbbe1612b0&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
192.243.59.20200 OK 4.4 kB URL HTTP/1.1 obsessivepetsbean.com/sbar.json?key=3b7751125a8505512c15b5bbbe1612b0&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (6321), with no line terminators
Hash 8b364fa92d3a84b5a2e48fb2e7a6ff47
59a8bba852a7c83e28183c0cfd3c7db666154cb9
d96ba780d13c5292308d4368de65fba6bd0e64689d59b9996b3d720e57c563f9
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=3b7751125a8505512c15b5bbbe1612b0&uuid=331ce492-a5fd-4141-bef3-b89bb2668f20%3A3%3A1 HTTP/1.1
Host: obsessivepetsbean.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17258364; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 16 Oct 2022 21:43:27 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://rbebooks.site
Access-Control-Allow-Origin: http://rbebooks.site
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17258364,17284613; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; expires=Sun, 23 Oct 2022 21:43:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uncs=1; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
pdhtkv29=true; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
uncs29=1; expires=Mon, 17 Oct 2022 21:43:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 594677cbb5f0d24f8b4d32f0d3f68c3b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.viglink.com/api/vglnk.js?key=752ad05306b71e358ada055c5134176f
104.16.160.13200 OK 29 kB URL HTTP/1.1 cdn.viglink.com/api/vglnk.js?key=752ad05306b71e358ada055c5134176f
IP 104.16.160.13:0
File type ASCII text, with very long lines (693)
Hash 072eaf64a771815874455704fca9301b
6c6226d00f14bb800cd4390b3cd42df941be43b1
bb35c8c300bd1acfe7ed86eb988f74ff2e8d86a4fb0409c5d78a890f9fd14b8e
GET /api/vglnk.js?key=752ad05306b71e358ada055c5134176f HTTP/1.1
Host: cdn.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 21:43:27 GMT
Content-Type: text/javascript
Content-Length: 28567
Connection: keep-alive
x-amz-id-2: qlrdnJ4oZi2sS4attXPPGzhBfHpdhvLn6cCWyqu1d+1mNPKQT+YaBvpsIMynqExGDb9fYjMt8fw=
x-amz-request-id: TZVYCXFBQ4W9FQJR
Last-Modified: Wed, 02 Dec 2020 18:57:12 GMT
ETag: "072eaf64a771815874455704fca9301b"
Cache-Control: public, max-age=604800
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 2072220
Expires: Sun, 23 Oct 2022 21:43:27 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75b3f85d8adab4fa-OSL
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sun, 16 Oct 2022 20:41:09 GMT
expires: Sun, 16 Oct 2022 22:41:09 GMT
cache-control: public, max-age=7200
age: 3738
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/rbebooks.site/wp-content/uploads/2022/07/cropped-JKI-Yyv4_400x400.jpg?fit=192%2C192&ssl=1
192.0.77.2200 OK 2.9 kB URL HTTP/2 i0.wp.com/rbebooks.site/wp-content/uploads/2022/07/cropped-JKI-Yyv4_400x400.jpg?fit=192%2C192&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 96cdb16c2b702ca730d9dae56b9f45ce
e7894e604a37018fda82684e4f44ae3d1d867d75
778361b9cbf23eefeeb0adfeb0387a64059cf2ea825fc78539f04b740b54e688
GET /rbebooks.site/wp-content/uploads/2022/07/cropped-JKI-Yyv4_400x400.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:27 GMT
content-type: image/webp
content-length: 2858
last-modified: Fri, 14 Oct 2022 10:52:33 GMT
expires: Sun, 13 Oct 2024 22:52:33 GMT
cache-control: public, max-age=63115200
link: <https://rbebooks.site/wp-content/uploads/2022/07/cropped-JKI-Yyv4_400x400.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "d82227d207d8e47b"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/rbebooks.site/wp-content/uploads/2022/07/cropped-JKI-Yyv4_400x400.jpg?fit=32%2C32&ssl=1
192.0.77.2200 OK 356 B URL HTTP/2 i0.wp.com/rbebooks.site/wp-content/uploads/2022/07/cropped-JKI-Yyv4_400x400.jpg?fit=32%2C32&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 83abcfe9a8053bca357c4939f88a8499
fddac03828ee6289dd4eb92339c0e094310b97d5
779c8e75afb48a64a57e7be1fcd176208cfddd6dec41ca8c5ff2171bb2b4ab1d
GET /rbebooks.site/wp-content/uploads/2022/07/cropped-JKI-Yyv4_400x400.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:27 GMT
content-type: image/webp
content-length: 356
last-modified: Sun, 02 Oct 2022 12:27:04 GMT
expires: Wed, 02 Oct 2024 00:27:04 GMT
cache-control: public, max-age=63115200
link: <https://rbebooks.site/wp-content/uploads/2022/07/cropped-JKI-Yyv4_400x400.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "627b3add881064b7"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2624179402393224
142.250.74.34200 OK 54 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2624179402393224
IP 142.250.74.34:0
File type ASCII text, with very long lines (2776)
Hash b61817330af04d1334ab86168ae8dab5
99df6f9c5b8f29fc846b3e86678167af368bbddd
012c0c00d15343e39da0214c6c9d21fdfe4cf6234cea9627f2b8325832ee9422
GET /pagead/js/adsbygoogle.js?client=ca-pub-2624179402393224 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 16 Oct 2022 21:43:27 GMT
expires: Sun, 16 Oct 2022 21:43:27 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 4021386336311495355
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 54343
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20221012/r20190131/zrt_lookup.html
216.58.207.194200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221012/r20190131/zrt_lookup.html
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20221012/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Sun, 16 Oct 2022 07:55:51 GMT
expires: Sun, 30 Oct 2022 07:55:51 GMT
cache-control: public, max-age=1209600
age: 49656
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
aax-us-east.amazon-adsystem.com/x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit%22%2C%22tracking_id%22%3A%22redbluebooks-20%22%2C%22ad_type%22%3A%22link_enhancement_widget%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%22d97cbd1c32534d1ef1edcb5749b1eb16%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22redbluebooks-20%22%2C%22slotNum%22%3A0%7D&u=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&jscb=amzn_assoc_jsonp_callback_adunit_0
209.54.181.42200 OK 7.4 kB URL HTTP/1.1 aax-us-east.amazon-adsystem.com/x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit%22%2C%22tracking_id%22%3A%22redbluebooks-20%22%2C%22ad_type%22%3A%22link_enhancement_widget%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%22d97cbd1c32534d1ef1edcb5749b1eb16%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22redbluebooks-20%22%2C%22slotNum%22%3A0%7D&u=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&jscb=amzn_assoc_jsonp_callback_adunit_0
IP 209.54.181.42:0
File type HTML document, ASCII text, with very long lines (35134)
Hash a1c979ee66e2222a761f0742ec0b8ba1
99ef29b27ea182ab44e08e644fdb792917c2dbc6
f2e23413635b1451672fc7d3c1539b877f8e12914c2cb86c9cec63a5bb8cd9c5
GET /x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit%22%2C%22tracking_id%22%3A%22redbluebooks-20%22%2C%22ad_type%22%3A%22link_enhancement_widget%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%22d97cbd1c32534d1ef1edcb5749b1eb16%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22redbluebooks-20%22%2C%22slotNum%22%3A0%7D&u=http%3A%2F%2Frbebooks.site%2Fcomptia-security-exam-study-guide%2F&jscb=amzn_assoc_jsonp_callback_adunit_0 HTTP/1.1
Host: aax-us-east.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Date: Sun, 16 Oct 2022 21:43:27 GMT
Server: Server
Content-Type: text/javascript;charset=UTF-8
Set-Cookie: ad-id=Az5mWb6VjkRqoB8tPZkLzhA; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 21:43:27 GMT; Path=/; Secure; HttpOnly; SameSite=None
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
x-amz-rid: 115PGVJDS4XRK4VX6ES4
Content-Length: 7390
cdn.cloudimagesb.com/cti/36/90/13/369013892c357d415d1ad7748ed75879/1627917230.png
45.133.44.10200 OK 62 kB URL HTTP/2 cdn.cloudimagesb.com/cti/36/90/13/369013892c357d415d1ad7748ed75879/1627917230.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 728 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash aab722bc84ce26456c71f76bf135d39d
931d9bda71c71ca06e3774c1d67d9842b2c2dc7e
47f5ef20379af39109b365fa5700137a998dd749ca0ea5faf3e82b94be508c59
GET /cti/36/90/13/369013892c357d415d1ad7748ed75879/1627917230.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:27 GMT
content-type: image/png
content-length: 61633
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 15:13:57 GMT
etag: "61080bb5-f0c1"
expires: Tue, 18 Oct 2022 21:43:27 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash b005f858e2e5cabd56d4f141c83315ac
938eccb8ee7385df2097a140c5f5d06378100659
3bceb2c7e20d4a2d72c3f998ead8b442359830ba3bf0f4c6c5dc4aeb0613a5ef
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121123
Date: Sun, 16 Oct 2022 21:43:27 GMT
Etag: "634baab6-1d7"
Expires: Tue, 18 Oct 2022 07:22:10 GMT
Last-Modified: Sun, 16 Oct 2022 06:54:46 GMT
Server: ECS (nyb/1D2B)
X-Cache: Miss from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _5lOgEDLzBZXa8R5n4nRIob-AJIPlHvGZBg5D-HRbSRQQDJjzkQbXQ==
Age: 1644
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a7fa1c039d519ef2d27a3e4366c13105
d057cc01d17ca686a49954dc28598fa5b0580ced
b8430db24461bcf9c022e1f13ee557e938f1fa6a06e881a73ded6aa2342dac38
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8430DB24461BCF9C022E1F13EE557E938F1FA6A06E881A73DED6AA2342DAC38"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10703
Expires: Mon, 17 Oct 2022 00:41:50 GMT
Date: Sun, 16 Oct 2022 21:43:27 GMT
Connection: keep-alive
obsessivepetsbean.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRit3kQWdk%2FKXiS6zMHDLmwmXT0zPTOuEIwxEoy760ZdBUGqumsm5dR0NVXd05NBJLgge3P8Dzpv8gPdKHoWg3QWPOSU8RTE%2FBOLXpWZDUa%2Fy%2Feq3vvg8b7vy%2B30jLhI2enyO3oglWILtbJbuvEhpbdLazJK%2B6V%2Bw%2F%2FEr94umd6rTb%2Fs3iy9JYKOXvBc6rrUpaUVaURL9xcmJGR80KTlpluuemVaq6Jv%2Fv%2B2qQPLHIS9M%2FICZDiefeJcgwwKRN0floXtJDq%2B9WY3VSzRBr1w%2F%2F2oE%2BksQvcCtoyDVrR%2Froa2JyuH0NHu1C50718hl2Pi%2FHoIHu2fmwTv7Ux9cgURgYdXkfUKCFVAsgKBfggZnhAgCHHnLqLu3h1tMrb5jGUTdkxm%2F3oKmY3J7B%2FXEHW%2FX1KyX1rXKk2kjiz6rRyyX0C2C8TpEZLBJcjsCEHyBWRIEHVzyPD0lUqFBqLa9OZZrRXOV2mVznPRqszzRpNzz%2FcbLc%2BdBiNlAdkqoMQQzM4gtQ5S6SBtOUhjB93wtBRQSutuGDC30QyCSlgX3A9dyuotyqjrN5AGE%2B9DJPEQgRoiMFuIzRY6cgiT%2FgK7kcOGV2CTMXHe%2FRy9MEcmCDJLkDGCTBJkCUHWy3dDZT2b74XKppyed%2B%2B8V%2FKRTtrbbFcnbRGR7fiMPD8Jzbl8%2BBw64rRU4fV6jVKvxho1t1ajXkBrvMY5F9SnHndhZQ5pL4FZBwM5Ji%2B15xDLMbl86wE4O4JVRwjkHFj6Mlg2qnsu2Mao2nAxiL4zXHCtO7ZsZSIQ6hxxMotk09lWZ%2BTF6fYaewwiOF48uPFn8dXHNxGYHLHJ8al8QtBWj0b3dUZ27uvMkh%2FvxonsygGbbHY9YYmY%2BfZtsZlpE64u2%2BE3rwcTYgIP3hM2WWNRKKO2JY%2BXZBgKs6JNIMjPq%2FaB4PdSu7GUmiiN1%2B69sbLajY2wVuqoAJMnH3yGQI7Jlbny9GSvX%2F0d0hQwaY5uekzOC1IXCOIt2PjCvdUzMOpCw2MHWZqPjMcvPpUcE%2B%2FpOpQ4Xtz56fFrH60BjOew4j%2BDF3jbPkLbXAdLHk6vtWdy9FQOpoaw6cwoic3x4m%2BVaYErZ8SVcXa4MurrZ%2FFaeVqqVyou85s1Wq8zUedVr9HyaciYV%2FU932cVJHYcrA3%2B%2FgcAAP%2F%2FAQAA%2F%2F%2B%2BgL8egQQAAA%3D%3D
192.243.59.20200 OK 7 B URL HTTP/1.1 obsessivepetsbean.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRit3kQWdk%2FKXiS6zMHDLmwmXT0zPTOuEIwxEoy760ZdBUGqumsm5dR0NVXd05NBJLgge3P8Dzpv8gPdKHoWg3QWPOSU8RTE%2FBOLXpWZDUa%2Fy%2Feq3vvg8b7vy%2B30jLhI2enyO3oglWILtbJbuvEhpbdLazJK%2B6V%2Bw%2F%2FEr94umd6rTb%2Fs3iy9JYKOXvBc6rrUpaUVaURL9xcmJGR80KTlpluuemVaq6Jv%2Fv%2B2qQPLHIS9M%2FICZDiefeJcgwwKRN0floXtJDq%2B9WY3VSzRBr1w%2F%2F2oE%2BksQvcCtoyDVrR%2Froa2JyuH0NHu1C50718hl2Pi%2FHoIHu2fmwTv7Ux9cgURgYdXkfUKCFVAsgKBfggZnhAgCHHnLqLu3h1tMrb5jGUTdkxm%2F3oKmY3J7B%2FXEHW%2FX1KyX1rXKk2kjiz6rRyyX0C2C8TpEZLBJcjsCEHyBWRIEHVzyPD0lUqFBqLa9OZZrRXOV2mVznPRqszzRpNzz%2FcbLc%2BdBiNlAdkqoMQQzM4gtQ5S6SBtOUhjB93wtBRQSutuGDC30QyCSlgX3A9dyuotyqjrN5AGE%2B9DJPEQgRoiMFuIzRY6cgiT%2FgK7kcOGV2CTMXHe%2FRy9MEcmCDJLkDGCTBJkCUHWy3dDZT2b74XKppyed%2B%2B8V%2FKRTtrbbFcnbRGR7fiMPD8Jzbl8%2BBw64rRU4fV6jVKvxho1t1ajXkBrvMY5F9SnHndhZQ5pL4FZBwM5Ji%2B15xDLMbl86wE4O4JVRwjkHFj6Mlg2qnsu2Mao2nAxiL4zXHCtO7ZsZSIQ6hxxMotk09lWZ%2BTF6fYaewwiOF48uPFn8dXHNxGYHLHJ8al8QtBWj0b3dUZ27uvMkh%2FvxonsygGbbHY9YYmY%2BfZtsZlpE64u2%2BE3rwcTYgIP3hM2WWNRKKO2JY%2BXZBgKs6JNIMjPq%2FaB4PdSu7GUmiiN1%2B69sbLajY2wVuqoAJMnH3yGQI7Jlbny9GSvX%2F0d0hQwaY5uekzOC1IXCOIt2PjCvdUzMOpCw2MHWZqPjMcvPpUcE%2B%2FpOpQ4Xtz56fFrH60BjOew4j%2BDF3jbPkLbXAdLHk6vtWdy9FQOpoaw6cwoic3x4m%2BVaYErZ8SVcXa4MurrZ%2FFaeVqqVyou85s1Wq8zUedVr9HyaciYV%2FU932cVJHYcrA3%2B%2FgcAAP%2F%2FAQAA%2F%2F%2B%2BgL8egQQAAA%3D%3D
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRit3kQWdk%2FKXiS6zMHDLmwmXT0zPTOuEIwxEoy760ZdBUGqumsm5dR0NVXd05NBJLgge3P8Dzpv8gPdKHoWg3QWPOSU8RTE%2FBOLXpWZDUa%2Fy%2Feq3vvg8b7vy%2B30jLhI2enyO3oglWILtbJbuvEhpbdLazJK%2B6V%2Bw%2F%2FEr94umd6rTb%2Fs3iy9JYKOXvBc6rrUpaUVaURL9xcmJGR80KTlpluuemVaq6Jv%2Fv%2B2qQPLHIS9M%2FICZDiefeJcgwwKRN0floXtJDq%2B9WY3VSzRBr1w%2F%2F2oE%2BksQvcCtoyDVrR%2Froa2JyuH0NHu1C50718hl2Pi%2FHoIHu2fmwTv7Ux9cgURgYdXkfUKCFVAsgKBfggZnhAgCHHnLqLu3h1tMrb5jGUTdkxm%2F3oKmY3J7B%2FXEHW%2FX1KyX1rXKk2kjiz6rRyyX0C2C8TpEZLBJcjsCEHyBWRIEHVzyPD0lUqFBqLa9OZZrRXOV2mVznPRqszzRpNzz%2FcbLc%2BdBiNlAdkqoMQQzM4gtQ5S6SBtOUhjB93wtBRQSutuGDC30QyCSlgX3A9dyuotyqjrN5AGE%2B9DJPEQgRoiMFuIzRY6cgiT%2FgK7kcOGV2CTMXHe%2FRy9MEcmCDJLkDGCTBJkCUHWy3dDZT2b74XKppyed%2B%2B8V%2FKRTtrbbFcnbRGR7fiMPD8Jzbl8%2BBw64rRU4fV6jVKvxho1t1ajXkBrvMY5F9SnHndhZQ5pL4FZBwM5Ji%2B15xDLMbl86wE4O4JVRwjkHFj6Mlg2qnsu2Mao2nAxiL4zXHCtO7ZsZSIQ6hxxMotk09lWZ%2BTF6fYaewwiOF48uPFn8dXHNxGYHLHJ8al8QtBWj0b3dUZ27uvMkh%2FvxonsygGbbHY9YYmY%2BfZtsZlpE64u2%2BE3rwcTYgIP3hM2WWNRKKO2JY%2BXZBgKs6JNIMjPq%2FaB4PdSu7GUmiiN1%2B69sbLajY2wVuqoAJMnH3yGQI7Jlbny9GSvX%2F0d0hQwaY5uekzOC1IXCOIt2PjCvdUzMOpCw2MHWZqPjMcvPpUcE%2B%2FpOpQ4Xtz56fFrH60BjOew4j%2BDF3jbPkLbXAdLHk6vtWdy9FQOpoaw6cwoic3x4m%2BVaYErZ8SVcXa4MurrZ%2FFaeVqqVyou85s1Wq8zUedVr9HyaciYV%2FU932cVJHYcrA3%2B%2FgcAAP%2F%2FAQAA%2F%2F%2B%2BgL8egQQAAA%3D%3D HTTP/1.1
Host: obsessivepetsbean.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17258364,17284613; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; pdhtkv=true; uncs=1; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 16 Oct 2022 21:43:27 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 25973068e6e7ca57d9e990e969e1f464
Strict-Transport-Security: max-age=0; includeSubdomains
api.viglink.com/api/ping
34.248.7.88403 Forbidden 979 B IP 34.248.7.88:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (979), with no line terminators
Hash 1edc3fac1e0eb87ed6b19d4ecd08f8ef
bc58af52fa6a97e7506db76cb9e5a1895c92dcfd
613acec36f8b4ee7869a9907bc4b81eb6c24bcdd373520d6ee3a9b040d78ed98
POST /api/ping HTTP/1.1
Host: api.viglink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 157
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Content-Language: en
Content-Type: text/html;charset=utf-8
Date: Sun, 16 Oct 2022 21:43:26 GMT
P3P: CP="ALL IND DSP COR CUR ADM TAIo PSDo OUR COM INT NAV PUR STA UNI"
Server: Apache-Coyote/1.1
Content-Length: 979
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 483b069ba949f3b38cb5efaa5133def4
9926ffeacae23089f625bf687f5aaaa1c592acb1
20c3bcfcb4987e5b014dff8beb7b15e984388ae7ad0279a576e6d137a078ade3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "20C3BCFCB4987E5B014DFF8BEB7B15E984388AE7AD0279A576E6D137A078ADE3"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6270
Expires: Sun, 16 Oct 2022 23:27:58 GMT
Date: Sun, 16 Oct 2022 21:43:28 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 483b069ba949f3b38cb5efaa5133def4
9926ffeacae23089f625bf687f5aaaa1c592acb1
20c3bcfcb4987e5b014dff8beb7b15e984388ae7ad0279a576e6d137a078ade3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "20C3BCFCB4987E5B014DFF8BEB7B15E984388AE7AD0279A576E6D137A078ADE3"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6270
Expires: Sun, 16 Oct 2022 23:27:58 GMT
Date: Sun, 16 Oct 2022 21:43:28 GMT
Connection: keep-alive
ws-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetAdHtml&OneJS=1&placement=adunit®ion=US&marketplace=amazon&debug=false&linkid=d97cbd1c32534d1ef1edcb5749b1eb16&ad_type=link_enhancement_widget&tracking_id=redbluebooks-20&slotNum=0
52.94.230.46200 200 12 kB URL HTTP/1.1 ws-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetAdHtml&OneJS=1&placement=adunit®ion=US&marketplace=amazon&debug=false&linkid=d97cbd1c32534d1ef1edcb5749b1eb16&ad_type=link_enhancement_widget&tracking_id=redbluebooks-20&slotNum=0
IP 52.94.230.46:0
File type ASCII text, with very long lines (1304)
Hash e4ac92b9666a6abe55400d18d756e927
f4df57483243b99ed06ab8d093c8c323f90d2967
1c9e0c8ddc0f26e3e18e120360634747fc03b4430d0af4946e3606d8ce649ec2
GET /widgets/q?ServiceVersion=20070822&Operation=GetAdHtml&OneJS=1&placement=adunit®ion=US&marketplace=amazon&debug=false&linkid=d97cbd1c32534d1ef1edcb5749b1eb16&ad_type=link_enhancement_widget&tracking_id=redbluebooks-20&slotNum=0 HTTP/1.1
Host: ws-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 200
Date: Sun, 16 Oct 2022 21:43:28 GMT
Server: Server
Content-Encoding: gzip
Cache-Control: must-revalidate
Pragma: no-cache
Expires: -1
p3p: policyref="http://www.amazon.com/w3c/p3p.xml",CP="CAO DSP LAW CUR ADM IVAo IVDo CONo OTPo OUR DELi PUBi OTRi BUS PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA HEA PRE LOC GOV OTC "
charset: UTF-8
Access-Control-Allow-Origin: *
Content-Length: 11497
Vary: User-Agent
nnCoection: close
Content-Type: application/javascript;charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 695cea3df950db7392b70395df1d8b05
b7fe7c9dd9f38fd23ad37dd92b9085f35a6fe823
4bad472e725699f54c9983fe6cb3ce0783b831ea2877b1a22f80197b953cfaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a6e1c15b41a9baf3dcf134b8132912a6
7a9c0e0a369023808a9d9732610cd6f206c584ab
f247489aeb512583b0e1721922abd34e7d98bfb71d2de21d0c6f179cf585d365
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=rbebooks.site
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=rbebooks.site
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=rbebooks.site HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 16 Oct 2022 21:43:28 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/d3/49/c7/d349c7d166e8e0a16864c210257b8d7c/1658583131.jpg
45.133.44.10200 OK 8.7 kB URL HTTP/2 cdn.cloudimagesb.com/si/d3/49/c7/d349c7d166e8e0a16864c210257b8d7c/1658583131.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 2c29eb5172d6284ce44e9bdddbc9f7f9
7e636afa5c449686a67c15a3eb42e24b4060f3e2
843c2d3a6a428708bfc4ff66793db619e93662cd4a0fe42657ddbc612b4faa7e
GET /si/d3/49/c7/d349c7d166e8e0a16864c210257b8d7c/1658583131.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:28 GMT
content-type: image/jpeg
content-length: 8684
server: nginx/1.17.6
last-modified: Sat, 23 Jul 2022 13:32:19 GMT
etag: "62dbf863-21ec"
expires: Tue, 18 Oct 2022 21:43:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/13/4a/c3/134ac3b991474857437b71a207adf0d5/1658583166.jpg
45.133.44.10200 OK 11 kB URL HTTP/2 cdn.cloudimagesb.com/si/13/4a/c3/134ac3b991474857437b71a207adf0d5/1658583166.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 60f4178edf0467f7bcde165ceef1b8de
bae1ad4c4ec353ed2546c30aee459ccbe2305479
9b140f19559bc0912bce99d756ac39a8c062481a2d2326902000e1ae59db3d65
GET /si/13/4a/c3/134ac3b991474857437b71a207adf0d5/1658583166.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:28 GMT
content-type: image/jpeg
content-length: 11400
server: nginx/1.17.6
last-modified: Sat, 23 Jul 2022 13:32:55 GMT
etag: "62dbf887-2c88"
expires: Tue, 18 Oct 2022 21:43:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.10200 OK 660 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.10:0
Hash 55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 16 Oct 2022 21:43:28 GMT
Date: Sun, 16 Oct 2022 21:43:28 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
cdn.sb4you1.com/sb/ssp/vpn/classic-push/big1/img/close.png
172.64.110.27200 OK 591 B URL HTTP/2 cdn.sb4you1.com/sb/ssp/vpn/classic-push/big1/img/close.png
IP 172.64.110.27:0
File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fd5bcb6103d86e317bd1eb019bcbe71
6b5a52ea669dcb74946f2bed4bdd7ec985026113
0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae
GET /sb/ssp/vpn/classic-push/big1/img/close.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:28 GMT
content-type: image/png
content-length: 591
last-modified: Mon, 21 Feb 2022 10:06:44 GMT
etag: "62136434-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6435539
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ck4KwA%2BwuNVUJkE7yf19gH%2FxLpCeaSWkn2UfcpjWQcy9KFHgpyf8uBdo7z884JwuARmjV7HZoh1wKAxwAYqwljFMQWQ0oWEIr2xGpc893ZtxPYqIImH8a%2BiFsGYIs7K2hPI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75b3f8608c498e2c-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=rbebooks.site
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=rbebooks.site
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=rbebooks.site HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 16 Oct 2022 21:43:28 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 695cea3df950db7392b70395df1d8b05
b7fe7c9dd9f38fd23ad37dd92b9085f35a6fe823
4bad472e725699f54c9983fe6cb3ce0783b831ea2877b1a22f80197b953cfaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 483b069ba949f3b38cb5efaa5133def4
9926ffeacae23089f625bf687f5aaaa1c592acb1
20c3bcfcb4987e5b014dff8beb7b15e984388ae7ad0279a576e6d137a078ade3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "20C3BCFCB4987E5B014DFF8BEB7B15E984388AE7AD0279A576E6D137A078ADE3"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6270
Expires: Sun, 16 Oct 2022 23:27:58 GMT
Date: Sun, 16 Oct 2022 21:43:28 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a6e1c15b41a9baf3dcf134b8132912a6
7a9c0e0a369023808a9d9732610cd6f206c584ab
f247489aeb512583b0e1721922abd34e7d98bfb71d2de21d0c6f179cf585d365
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3f1ddf48f38bb4cbabd67c207aa0f407
51f08476ed6b1789da55cdc10287034a24eff6f4
927a97847f88ad2ecae86fef7050c64db6f17d3d4f054546531f8669cece5262
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=rbebooks.site&callback=_gfp_s_&client=ca-pub-2624179402393224&gpid_exp=1
172.217.21.162200 OK 254 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=rbebooks.site&callback=_gfp_s_&client=ca-pub-2624179402393224&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with very long lines (393), with no line terminators
Hash d85a9285f47486706381c318248b0c67
9e5716c799f6e4500fe2a7b94c1face18bc4134e
98b6852dab3eab75fc8b1b626dd344a5aeaeef161b7cdaa8e46d7f377ca0460d
GET /gampad/cookie.js?domain=rbebooks.site&callback=_gfp_s_&client=ca-pub-2624179402393224&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 16 Oct 2022 21:43:28 GMT
server: cafe
cache-control: private
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/ssp/vpn/classic-push/big1/js/script.js
172.64.110.27200 OK 810 B URL HTTP/2 cdn.sb4you1.com/sb/ssp/vpn/classic-push/big1/js/script.js
IP 172.64.110.27:0
Hash a4b5864757d088bbbd31e31f516eaf7f
9ab613767f2f7368310204a3debfd9b15f21d9a1
5af3f9bfbe5f9c83e86ce50031b379b9e6064d6c06c2f3ab355717b664348db9
GET /sb/ssp/vpn/classic-push/big1/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:28 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 10:06:46 GMT
etag: W/"62136436-3be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 20987
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UX2imk2gzNngrx1zbZ1tiBAbUJ1s%2Bxl7lJVJUDe9taa8a%2F9a7kPfkgbm%2F1E9%2FbqvjTBnguu8e%2FSmnVoUGvKWkex5mffR4ghQnbRpQ2s3kBwg1OpCpG4xaA6TqHTsFA%2BWE%2F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75b3f8611ce58e2c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
aax-us-east.amazon-adsystem.com/x/px/RP0sCbSQaE3KDWucp3PsTu8AAAGD4sB3KAEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICDGMy86/?assoc_payload=%7B%22adUnitType%22%3A%22link_enhancement_widget%22%2C%22trackingId%22%3A%22redbluebooks-20%22%2C%22region%22%3A%22US%22%2C%22deviceType%22%3A%22BROWSER%22%2C%22logType%22%3A%22lew_impressions%22%2C%22viewerCountry%22%3A%22%22%2C%22marketplace%22%3A%22amazon%22%2C%22link_id%22%3A%22d97cbd1c32534d1ef1edcb5749b1eb16%22%2C%22action%22%3A%22onPageLoad%22%2C%22regionId%22%3A%221%22%2C%22ref%22%3A%22assoc_res_lew_np_%22%2C%22amzn_expDetails%22%3A%7B%7D%2C%22isMobileOptmizedSite%22%3A%22false%22%7D
209.54.181.42200 OK 43 B URL HTTP/1.1 aax-us-east.amazon-adsystem.com/x/px/RP0sCbSQaE3KDWucp3PsTu8AAAGD4sB3KAEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICDGMy86/?assoc_payload=%7B%22adUnitType%22%3A%22link_enhancement_widget%22%2C%22trackingId%22%3A%22redbluebooks-20%22%2C%22region%22%3A%22US%22%2C%22deviceType%22%3A%22BROWSER%22%2C%22logType%22%3A%22lew_impressions%22%2C%22viewerCountry%22%3A%22%22%2C%22marketplace%22%3A%22amazon%22%2C%22link_id%22%3A%22d97cbd1c32534d1ef1edcb5749b1eb16%22%2C%22action%22%3A%22onPageLoad%22%2C%22regionId%22%3A%221%22%2C%22ref%22%3A%22assoc_res_lew_np_%22%2C%22amzn_expDetails%22%3A%7B%7D%2C%22isMobileOptmizedSite%22%3A%22false%22%7D
IP 209.54.181.42:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /x/px/RP0sCbSQaE3KDWucp3PsTu8AAAGD4sB3KAEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICDGMy86/?assoc_payload=%7B%22adUnitType%22%3A%22link_enhancement_widget%22%2C%22trackingId%22%3A%22redbluebooks-20%22%2C%22region%22%3A%22US%22%2C%22deviceType%22%3A%22BROWSER%22%2C%22logType%22%3A%22lew_impressions%22%2C%22viewerCountry%22%3A%22%22%2C%22marketplace%22%3A%22amazon%22%2C%22link_id%22%3A%22d97cbd1c32534d1ef1edcb5749b1eb16%22%2C%22action%22%3A%22onPageLoad%22%2C%22regionId%22%3A%221%22%2C%22ref%22%3A%22assoc_res_lew_np_%22%2C%22amzn_expDetails%22%3A%7B%7D%2C%22isMobileOptmizedSite%22%3A%22false%22%7D HTTP/1.1
Host: aax-us-east.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Sun, 16 Oct 2022 21:43:28 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: DC3PJJXEKK5X26P2R22M
Cache-Control: no-cache
Pragma: no-cache
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 12 Oct 2022 20:16:37 GMT
Expires: Thu, 12 Oct 2023 20:16:37 GMT
Cache-Control: public, max-age=31536000
Age: 350811
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 12 Oct 2022 20:16:37 GMT
Expires: Thu, 12 Oct 2023 20:16:37 GMT
Cache-Control: public, max-age=31536000
Age: 350811
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
obsessivepetsbean.com/pixel/sbs?c=1
192.243.59.20200 OK 0 B URL HTTP/1.1 obsessivepetsbean.com/pixel/sbs?c=1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: obsessivepetsbean.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17258364,17284613; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; pdhtkv=true; uncs=1; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 16 Oct 2022 21:43:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
obsessivepetsbean.com/impr.gif?sid=H4sIAAAAAAAC%2F1RS32scVRi900QK7ZPSF6mWffChhWY7M7uzP6xQrDESjG1t1CoIcn%2FN5rqzc4d7Z3Y2i0iwIH1z%2FQ8mZ%2FMDbRR9FoNMCj7kKetTEPNPFH1VdhuMfi%2FfufecDw7n%2B77czE6Ii4weL76jhyqK6I2g6laufuh5NysrKs4GlUGr8UmjfrNi%2Bq%2B2G1X3WuUtybv6hu96ruu5XmVJGRnqwY0pCZXstb1q263W%2FaoX1DEw%2F3%2FbzIGlDkT%2FhLwAJSbzT5xLULxE3PthUdpuqpPrb%2FayiKbaoC9234%2B7sc5j9M5gaByE8e6pGtoeLe1Dx9szu9D9f4VMTYjz6z5YvHtqEqy%2FNfPJIsgYTFxE3i8hoxKKluD6IZQ4IgAXuHMXcW%2FnjjY5XX%2FG0ik7IfN%2FPYXKJ2T%2Bj0uIe9%2FfjtSgsqqjLFU6thiEBdSghOqUSLIDpMNzUPkBePoFlCCIewWUOH6lVvO4rLf9BRqEYqHu1b0FJsPaAmu1GfMbjVbou7NglCqhwhKRHIHaOWTWQaYcZKGDLHHQE8cV7nle0xWcuq025zXRlKwhXI82Q496bqOFjE%2B9j5AmI%2FBoBG42kJgNdNUIJvsFdq2AFRdg0wlx3v0cfVEglwS5JcgpQa4I8pQg7xfbIrK%2BLXZEZDPmnXb%2FtNeKsU47m3Rbpx0Zk83khDw%2FDc05v%2F8cuvK4UmPNZuB5fkBbgRsEns%2B9gAWMMek1PJ%2B5sKqAsudArYOhmpCXOpeRqAk5f%2F0BGD2AjQ7A1WXQ7GXQfNz0XdC1cb3lYhh%2FZ5hkWndt1apUQugCSTqPdN3ZjE7Ii7PttXYoJD%2B8tXf1z%2FKrj6%2BBmwKJKfCpekLQiR6N7%2BucbN3XuSU%2F3k1S1VNDOt3sakpTOfft23I910YsL9rRN6%2FzKTGFe%2B9Jm67QWKi4Y8nj20oIaZa04ZL8vGwfSHYvs2u3MxNnycq9N5aWe4mR1iodl6Dq6IPPwNWEXLhcnZ3slYu%2FQ5kSJivQyw7JaUHpEjzZgE3O3Fs9BxOdaVjiIM%2BKsfHZ2WekJsR%2FuopIHt7a%2Bunxax%2BtAJQVsPI%2Fg2d40z5Cx1wBTR%2FOrrVvCvSjAjQawWZz4zQxh7d%2Bq80KLHLGLDLOFotM9PWzeK06rtRc0WQylE0m60E9lFywIGAuDzmriVaLI7UTvjL8%2Bx8AAAD%2F%2FwEAAP%2F%2FPlRq9oEEAAA%3D
192.243.59.20200 OK 7 B URL HTTP/1.1 obsessivepetsbean.com/impr.gif?sid=H4sIAAAAAAAC%2F1RS32scVRi900QK7ZPSF6mWffChhWY7M7uzP6xQrDESjG1t1CoIcn%2FN5rqzc4d7Z3Y2i0iwIH1z%2FQ8mZ%2FMDbRR9FoNMCj7kKetTEPNPFH1VdhuMfi%2FfufecDw7n%2B77czE6Ii4weL76jhyqK6I2g6laufuh5NysrKs4GlUGr8UmjfrNi%2Bq%2B2G1X3WuUtybv6hu96ruu5XmVJGRnqwY0pCZXstb1q263W%2FaoX1DEw%2F3%2FbzIGlDkT%2FhLwAJSbzT5xLULxE3PthUdpuqpPrb%2FayiKbaoC9234%2B7sc5j9M5gaByE8e6pGtoeLe1Dx9szu9D9f4VMTYjz6z5YvHtqEqy%2FNfPJIsgYTFxE3i8hoxKKluD6IZQ4IgAXuHMXcW%2FnjjY5XX%2FG0ik7IfN%2FPYXKJ2T%2Bj0uIe9%2FfjtSgsqqjLFU6thiEBdSghOqUSLIDpMNzUPkBePoFlCCIewWUOH6lVvO4rLf9BRqEYqHu1b0FJsPaAmu1GfMbjVbou7NglCqhwhKRHIHaOWTWQaYcZKGDLHHQE8cV7nle0xWcuq025zXRlKwhXI82Q496bqOFjE%2B9j5AmI%2FBoBG42kJgNdNUIJvsFdq2AFRdg0wlx3v0cfVEglwS5JcgpQa4I8pQg7xfbIrK%2BLXZEZDPmnXb%2FtNeKsU47m3Rbpx0Zk83khDw%2FDc05v%2F8cuvK4UmPNZuB5fkBbgRsEns%2B9gAWMMek1PJ%2B5sKqAsudArYOhmpCXOpeRqAk5f%2F0BGD2AjQ7A1WXQ7GXQfNz0XdC1cb3lYhh%2FZ5hkWndt1apUQugCSTqPdN3ZjE7Ii7PttXYoJD%2B8tXf1z%2FKrj6%2BBmwKJKfCpekLQiR6N7%2BucbN3XuSU%2F3k1S1VNDOt3sakpTOfft23I910YsL9rRN6%2FzKTGFe%2B9Jm67QWKi4Y8nj20oIaZa04ZL8vGwfSHYvs2u3MxNnycq9N5aWe4mR1iodl6Dq6IPPwNWEXLhcnZ3slYu%2FQ5kSJivQyw7JaUHpEjzZgE3O3Fs9BxOdaVjiIM%2BKsfHZ2WekJsR%2FuopIHt7a%2Bunxax%2BtAJQVsPI%2Fg2d40z5Cx1wBTR%2FOrrVvCvSjAjQawWZz4zQxh7d%2Bq80KLHLGLDLOFotM9PWzeK06rtRc0WQylE0m60E9lFywIGAuDzmriVaLI7UTvjL8%2Bx8AAAD%2F%2FwEAAP%2F%2FPlRq9oEEAAA%3D
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RS32scVRi900QK7ZPSF6mWffChhWY7M7uzP6xQrDESjG1t1CoIcn%2FN5rqzc4d7Z3Y2i0iwIH1z%2FQ8mZ%2FMDbRR9FoNMCj7kKetTEPNPFH1VdhuMfi%2FfufecDw7n%2B77czE6Ii4weL76jhyqK6I2g6laufuh5NysrKs4GlUGr8UmjfrNi%2Bq%2B2G1X3WuUtybv6hu96ruu5XmVJGRnqwY0pCZXstb1q263W%2FaoX1DEw%2F3%2FbzIGlDkT%2FhLwAJSbzT5xLULxE3PthUdpuqpPrb%2FayiKbaoC9234%2B7sc5j9M5gaByE8e6pGtoeLe1Dx9szu9D9f4VMTYjz6z5YvHtqEqy%2FNfPJIsgYTFxE3i8hoxKKluD6IZQ4IgAXuHMXcW%2FnjjY5XX%2FG0ik7IfN%2FPYXKJ2T%2Bj0uIe9%2FfjtSgsqqjLFU6thiEBdSghOqUSLIDpMNzUPkBePoFlCCIewWUOH6lVvO4rLf9BRqEYqHu1b0FJsPaAmu1GfMbjVbou7NglCqhwhKRHIHaOWTWQaYcZKGDLHHQE8cV7nle0xWcuq025zXRlKwhXI82Q496bqOFjE%2B9j5AmI%2FBoBG42kJgNdNUIJvsFdq2AFRdg0wlx3v0cfVEglwS5JcgpQa4I8pQg7xfbIrK%2BLXZEZDPmnXb%2FtNeKsU47m3Rbpx0Zk83khDw%2FDc05v%2F8cuvK4UmPNZuB5fkBbgRsEns%2B9gAWMMek1PJ%2B5sKqAsudArYOhmpCXOpeRqAk5f%2F0BGD2AjQ7A1WXQ7GXQfNz0XdC1cb3lYhh%2FZ5hkWndt1apUQugCSTqPdN3ZjE7Ii7PttXYoJD%2B8tXf1z%2FKrj6%2BBmwKJKfCpekLQiR6N7%2BucbN3XuSU%2F3k1S1VNDOt3sakpTOfft23I910YsL9rRN6%2FzKTGFe%2B9Jm67QWKi4Y8nj20oIaZa04ZL8vGwfSHYvs2u3MxNnycq9N5aWe4mR1iodl6Dq6IPPwNWEXLhcnZ3slYu%2FQ5kSJivQyw7JaUHpEjzZgE3O3Fs9BxOdaVjiIM%2BKsfHZ2WekJsR%2FuopIHt7a%2Bunxax%2BtAJQVsPI%2Fg2d40z5Cx1wBTR%2FOrrVvCvSjAjQawWZz4zQxh7d%2Bq80KLHLGLDLOFotM9PWzeK06rtRc0WQylE0m60E9lFywIGAuDzmriVaLI7UTvjL8%2Bx8AAAD%2F%2FwEAAP%2F%2FPlRq9oEEAAA%3D HTTP/1.1
Host: obsessivepetsbean.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Cookie: u_pl=17258364,17284613; ain=eyJhbGciOiJIUzI1NiJ9.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.hTJiPbB0RTrc7c4-3yUYpbH5vC9jNZG8tqIP2xcq6NY; uid_id2=331ce492-a5fd-4141-bef3-b89bb2668f20:3:1; pdhtkv=true; uncs=1; pdhtkv23=true; uncs23=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 16 Oct 2022 21:43:28 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3bc07d50fe994b069d5260c1ef0cbfb0
Strict-Transport-Security: max-age=0; includeSubdomains
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221012&st=env
142.250.74.34200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221012&st=env
IP 142.250.74.34:0
File type JSON data\012- , ASCII text, with very long lines (14675), with no line terminators
Hash 845fdd70b6c8aaeb46c28e6442c55275
6291816fc927e215d24f1bec35412b46e0d2fd2d
97515ec67ad0024caa5cbed7f3e07d6e3c085c31bd887705b9ec7ea9ae7a1f33
GET /getconfig/sodar?sv=200&tid=gda&tv=r20221012&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 16 Oct 2022 21:43:28 GMT
server: cafe
cache-control: private
content-length: 11140
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8e6f6976c2624725b3157701bdab1087
f121ac64525ed4b42198c684b9315ff6dea0d28c
1e0f4f65292b9f008855697bd235d1eb72a1a7205ce07de3e94092f123b79c59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.sb4you1.com/sb/ssp/vpn/classic-push/big1/css/style.css
172.64.110.27200 OK 7.4 kB URL HTTP/2 cdn.sb4you1.com/sb/ssp/vpn/classic-push/big1/css/style.css
IP 172.64.110.27:0
Hash 0919d0debfaa5207fe0fa242d9d9e41b
6cf00b2e15d358c17bbfe1b0b59a8529e22a18c8
ec4e8452891136e20cd82b82db8ea9af2cb6b126c09f1fe997147306cd57c4c1
GET /sb/ssp/vpn/classic-push/big1/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:28 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 10:59:09 GMT
etag: W/"6213707d-1048"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 20987
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M8oV71okOrcdGvjnfLqeHMoJmXjreg68vmvPxLjXPzhjMSPPFlyWindJ%2F3CSfgU4s0zgbF%2Bvb5vZ2NlbM7E8jJ2kT7SJc1mq4dkIlJ8EXJzq%2FAoXylKupnGLyV5KqRHJgWs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75b3f8606c2b8e2c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 231a5834edd086a67640c2c0cc18c55c
3427d0baffebad62c95754da193be354ca2b270c
2533d2d520b731b0073fcd224375cdd6dc2fde77908f93dcb0c659ec6dc7501b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 16 Oct 2022 21:43:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 12c00f67c3b4350a9c5d5f562634e819
44b2eb866df034df81ea222c4d1a050e2bec47c0
42542db552d239a831fe256705bdfb2a8de14a03ad21a333511a74361d43e56f
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 16 Oct 2022 21:43:28 GMT
date: Sun, 16 Oct 2022 21:43:28 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-xKajjuA_Pd1JGIRpZMC3NA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html
45.133.44.3200 OK 5.3 kB URL HTTP/2 cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
Hash 9a6a46d261bf1fce498cfe761c345a70
feaf8b5a7f3cae166f21fc36d099f9278f79efe4
0bf3927b35cf84e96f1f549344ede36365b707d0ddd471a8da8f19604054e3cb
GET /sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rbebooks.site
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:27 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Tue, 29 Mar 2022 08:27:10 GMT
etag: W/"6242c2de-602"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sun, 16 Oct 2022 22:43:27 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=331ce492-a5fd-4141-bef3-b89bb2668f20&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.29&b_frame=0&pk=3b7751125a8505512c15b5bbbe1612b0&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=331ce492-a5fd-4141-bef3-b89bb2668f20&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.29&b_frame=0&pk=3b7751125a8505512c15b5bbbe1612b0&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=331ce492-a5fd-4141-bef3-b89bb2668f20&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.29&b_frame=0&pk=3b7751125a8505512c15b5bbbe1612b0&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=21 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rbebooks.site/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 16 Oct 2022 21:43:29 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 91b33ccaad99ea9a61e2340203355933
Strict-Transport-Security: max-age=0; includeSubdomains
c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Jost:200,300,400,500,600,700,900|Noto%20Serif:400,400italic,700|Jost:200,300,400,500,600,700,900&subset=latin,latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Jost:200,300,400,500,600,700,900|Noto%20Serif:400,400italic,700|Jost:200,300,400,500,600,700,900&subset=latin,latin-ext
IP 142.250.74.10:0
GET /css?family=Jost:200,300,400,500,600,700,900|Noto%20Serif:400,400italic,700|Jost:200,300,400,500,600,700,900&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 16 Oct 2022 21:43:24 GMT
date: Sun, 16 Oct 2022 21:43:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js
172.64.110.27200 OK 0 B URL HTTP/2 cdn.sb4you1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js
IP 172.64.110.27:0
GET /sb/ssp/vpn/classic-push/big1/js/jquery.min.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:28 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 10:06:46 GMT
etag: W/"62136436-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6435539
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B3ihkGb0gFRxTxXiSM7BdJHK5zXwpzCuSXmytrrCb0ywaDE%2BgEeIIdI401O7oFUzH7A0WvO4SEg3ZuvEW4RLanfWhzmuU8VMqVm2UM3gx%2FOxSZacmXxQ3TCC%2FM49uYFfbpE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75b3f8609c518e2c-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.4/_inc/build/photon/photon.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.4/_inc/build/photon/photon.min.js
IP 192.0.77.37:0
GET /p/jetpack/11.4/_inc/build/photon/photon.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/js/masonry.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/masonry.min.js
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/js/masonry.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/css/dist/block-library/style.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/css/dist/block-library/style.min.css
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 04 Jul 2022 12:10:37 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
stats.wp.com/e-202241.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202241.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Mon, 02 Oct 2023 06:18:32 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
cdnjs.buymeacoffee.com/1.0.0/widget.prod.min.js
104.26.10.39200 OK 0 B URL HTTP/2 cdnjs.buymeacoffee.com/1.0.0/widget.prod.min.js
IP 104.26.10.39:0
GET /1.0.0/widget.prod.min.js HTTP/1.1
Host: cdnjs.buymeacoffee.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 16 Oct 2022 21:43:24 GMT
content-type: application/javascript; charset=UTF-8
age: 737554
cache-control: public, max-age=2678400, must-revalidate
etag: W/"04fdc5869e458463191b1590830f47bc-ssl-df"
vary: Accept-Encoding
x-nf-request-id: 01GCA3ZK099MAGGF6D0H0VRYTW
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wZJM1EavElPlw1r37XjBYxY2DhTNY4FSlLqHLE7Rv%2B4Mrl8pEaEia6SJWlHboKgBzeNpt0Eg7Au5r0akb0qb60pOkPa7pwk6%2BIYL1bs8rwx%2FrAEgO4KXGIPvflGtCLs6Q5HSMXFGEQU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b3f8479fc1b4ed-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.4/css/jetpack.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.4/css/jetpack.css
IP 192.0.77.37:0
GET /p/jetpack/11.4/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Thu, 22 Sep 2022 17:43:06 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js
IP 192.0.77.37:0
GET /c/6.0.2/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rbebooks.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 16 Oct 2022 21:43:23 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Mon, 16 Oct 2023 21:43:23 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 1
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2