r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3873
Expires: Wed, 07 Dec 2022 23:30:29 GMT
Date: Wed, 07 Dec 2022 22:25:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14781
Expires: Thu, 08 Dec 2022 02:32:17 GMT
Date: Wed, 07 Dec 2022 22:25:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5534
Expires: Wed, 07 Dec 2022 23:58:10 GMT
Date: Wed, 07 Dec 2022 22:25:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 07 Dec 2022 22:08:05 GMT
content-type: application/json
age: 1071
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nDCW8+Xj0j/NLJ6jInfUgQ+gPGH3evvUEPeMYDwLHzxSoigUDvv2K0+b8GccagA/qqILdfMRWng=
x-amz-request-id: HDXTREQK2VWNX3ZX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 07 Dec 2022 21:49:31 GMT
age: 2185
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:25:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
streaming-french.net/wp-content/themes/PsyPlayAAA/css/bootstrap.min.css?v=0.1
104.21.64.33200 OK 27 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/css/bootstrap.min.css?v=0.1
IP 104.21.64.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 140dce4a6fc7180c2f36b15b90b1952c
b9d94cc7068e2c6812ef5d5adaef300fe0b9c6c8
8611bb5d080e08b8cbc4312543a40838644e679ffd1367888ff2e10d7ff0ff0f
GET /wp-content/themes/PsyPlayAAA/css/bootstrap.min.css?v=0.1 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/css
Content-Length: 27270
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Sat, 02 Sep 2023 18:33:44 GMT
last-modified: Mon, 07 Feb 2022 22:59:21 GMT
etag: "1f59d-6201a449-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 8308333
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SjxnAnkZyauI8sYva7tWzieiSMIWGHBpryaVCd%2F%2BABjSQ%2BK5fVfBIbg4%2FXzv2RaKaPcOzPOApGCgBYpNHJdR96HqRQ9DiJ9t1oD41gjfKSvliatCvsv4eYmGh0enhMcsYvuSdCUh1g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1db8a1b50b-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/css/main.dark.css?ver=1.1.7
104.21.64.33200 OK 29 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/css/main.dark.css?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 723867b27dcd3c1101185259d0e7ceed
27e4e9ddf188dc1457f6aa614d4a7d44fb5b8949
5f8d350ef982b18301b50b3322ecefbf33b452be51c35712edeb9cb565dd1481
GET /wp-content/themes/PsyPlayAAA/css/main.dark.css?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/css
Content-Length: 28648
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 19:03:11 GMT
last-modified: Wed, 04 May 2022 23:09:02 GMT
etag: "1b662-6273078e-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 1135366
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BTIq9AR3n5YtLjD3XvYkW3MeuLE6FS2gC7Gvxqf3r8kcRcMyRRLIUB%2FACu5Fg%2FpjDI%2FhadlAHs2YmAsHFTYhNxw77x4iguDOFQeYsVVh3tmPbgBb5ivayFKbqCe%2BShwdMGZM0L3Fyw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1dbe20b4ff-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/css/jquery.cluetip.css?ver=1.1.7
104.21.64.33200 OK 1.1 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/css/jquery.cluetip.css?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (3987), with no line terminators
Hash b6e24a9b528ae535ed635cddc6b011dc
48f00952526cc92ec0f04d9a9fc7aa331f5e2632
34f99693b42513102a29230785cb00b28d4b6ac9616c14f939c8e2b4d467ea69
GET /wp-content/themes/PsyPlayAAA/css/jquery.cluetip.css?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/css
Content-Length: 1067
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 17 Aug 2023 18:33:53 GMT
last-modified: Mon, 07 Feb 2022 22:59:21 GMT
etag: "f93-6201a449-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 9690723
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gJw1DMOK6acLOR68sMS2cjzRnqM53cRkE99c%2B2OoFphGTKDAKSUgtQ9fR%2BG1Jo6Y%2FL0FGydBv3UXGo3H%2BgrKHhd9JhKQrSgsSJWqJOnapBZB8hNv2BwyWnLnAW7XY0zM%2FBGhL28h7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1dbb73b4f7-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/css/custom.css?ver=1.1.7
104.21.64.33200 OK 1.6 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/css/custom.css?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (7310), with no line terminators
Hash 0372ab8552e1b9624f5fe278d737bb61
9fcf60df42876b89992c39d12023f1a37cf55adf
49799e80342b23e4ac082539d818986217906ce3b7ac8a1dfefe1671d685b4e1
GET /wp-content/themes/PsyPlayAAA/css/custom.css?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/css
Content-Length: 1581
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Sat, 14 Oct 2023 13:42:36 GMT
last-modified: Mon, 07 Feb 2022 22:59:21 GMT
etag: "1c8e-6201a449-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 4697001
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SD4%2B9wPbjE9UhE%2FDfLeqcWzrbXgW2hOjYcwgUegSfvXUi%2B8U%2FqPMibfLSUMZyFnJSocRjNMEV31VrB4U7fa9xW1koP5FmWb8lZYzUMXwNvDylDhFMNg%2BrthfeV9G2xC0MSzsYsY9nQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1dcb4c1c02-OSL
alt-svc: h2=":443"; ma=60
www.googletagmanager.com/gtag/js?id=UA-228010212-1
142.250.74.168302 Found 255 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=UA-228010212-1
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash b995b267c5283037cf28cf5cd91de560
3aa8a633d160f06ea315da44951a51b1e4450d36
d1135f90b610b2c4f56799f04654745d5e91a31b56969c6899e52a3d3acbfcb1
GET /gtag/js?id=UA-228010212-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-228010212-1
Cross-Origin-Resource-Policy: cross-origin
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 255
X-XSS-Protection: 0
streaming-french.net/wp-content/themes/PsyPlayAAA/css/jquery.qtip.min.css?ver=1.1.7
104.21.64.33200 OK 2.4 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/css/jquery.qtip.min.css?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (8913), with no line terminators
Hash 4f340f11845ce11852c3850260f9479d
6012dc03c5b1b8389bede026b80366d075f617f1
586ca1694e05e234553d6120ae783eab60d59b70b566006e6ed7ee2363f1b223
GET /wp-content/themes/PsyPlayAAA/css/jquery.qtip.min.css?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/css
Content-Length: 2447
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 19:03:11 GMT
last-modified: Mon, 07 Feb 2022 22:59:21 GMT
etag: "22d1-6201a449-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 1135366
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HA06N9GsSI%2BOLyUWKvXQ8mSS%2FM76H4BXHimrlkhcJOmuMQHNzg%2BwVaX7uxFc3XVQwamNVQvlhpsDmljRWFv1dDfhID4K24irPGx8UzYsdmbe7OTZ7or6V8uN5MzMwwRlaET3FjURjA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1dccb20b02-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/css/slide.css?ver=1.1.7
104.21.64.33200 OK 2.7 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/css/slide.css?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (14370), with no line terminators
Hash 9581eda62b75326da083cae1bc804d2c
8dc629b1fdf9dbc8936166ce0bb087f882c5838d
45836d3d457b02a83e5f7decea8f61716a535ce706032dfd5fba94e6d759090c
GET /wp-content/themes/PsyPlayAAA/css/slide.css?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/css
Content-Length: 2666
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 17 Aug 2023 18:33:53 GMT
last-modified: Mon, 07 Feb 2022 22:59:21 GMT
etag: "3822-6201a449-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 9690723
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jeTUoDQpNtgGhwWFrhtFabsbdWa%2FkFCaSJ29PzNPmdIp1UTgAjSidaJk30BBRjpoYOW%2BFHOYGxxgRGDvY74avratj1Gqbt6uppRDIJZyU2jVNRQFz6Ql2Mm8gme2C%2F97QSerBgxgNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1de8e9b50b-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
104.21.64.33200 OK 16 kB URL HTTP/1.1 streaming-french.net/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 104.21.64.33:0
File type ASCII text, with very long lines (47826)
Hash 8fcbe39bcb9e5564e2d065bd20a2a8b3
b309ac5c8c34638895e50f00920dcd629db87570
c61f30083f26d37ebc5d1fcdfb8a57c0a8a7c94f2bd84eb3c2ceebf3abd54cca
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/css
Content-Length: 15754
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 16 Nov 2023 13:31:13 GMT
last-modified: Wed, 16 Nov 2022 01:48:27 GMT
etag: "172a9-6374416b-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 1846484
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6u9Xl3Cwh4PamsgMgTH8vE4Cgb5BggbZEwx%2FbvtHJlCBwZJaUw7h3CBnLwJ%2Fut9%2B4ydNX6XrPtjmElI9LjDfrwq4UwjSUB3JmFFhTjOveTcDwLh27Xf5nKee06W6X5TnyPYQj2niJA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1dfe75b4ff-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-includes/css/classic-themes.min.css?ver=1
104.21.64.33200 OK 188 B URL HTTP/1.1 streaming-french.net/wp-includes/css/classic-themes.min.css?ver=1
IP 104.21.64.33:0
Hash 8ac085745a5bcc97c54f8088973df029
4e065566e82d4623d0f5b4d9275d3ee29e15acd1
a0b69c3418ce7d86bcd33d370dec1ba31f2d9c143d932f52de7c4f98427a813f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 02 Nov 2023 16:44:32 GMT
last-modified: Wed, 02 Nov 2022 12:39:42 GMT
etag: W/"d9-6362650e-0;;;"
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 3044485
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cxNcasEmxhLOSsWhv2po2kfb04jEjlCieKwZ6hlh8twPrwNrJAr4C37%2Fl8FCERQM1GbcsuCbZKInuMGxjWiIrSWmfxee%2BPavwRKRyjDpuIMmZNCUqVCUMkTooT73kJr7iSfAsgW%2BJg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7760ae1dfbbbb4f7-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1
104.21.64.33200 OK 3.5 kB URL HTTP/1.1 streaming-french.net/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1
IP 104.21.64.33:0
File type ASCII text, with very long lines (1577)
Hash 60f412f8c28495f7170ef7c759aaface
21187c6f7c6468a1f686d562996226d92bedfbc4
2eccd7428058293adca75a01365e17f194122d3c232b867dd4c362fbc86194f3
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 3470
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Fri, 10 Nov 2023 12:28:29 GMT
last-modified: Thu, 10 Nov 2022 12:03:04 GMT
etag: "2e7a-636ce878-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 2368648
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=znETumM5qRF3EMa4DciYepGqMtW1EsKpocDSF38M9xD0wBAXJw5eN79FISInM5nrOhHNIIKS9iw9WqHIsCLyzAZxWaqoqwx0DBYsUYU7W1odbh3rZPO%2B3RJjlCqbkNxmeXGT7eQmMw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1dfcd10b02-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.90
104.21.64.33200 OK 437 B URL HTTP/1.1 streaming-french.net/wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.90
IP 104.21.64.33:0
Hash 5247602a84152497d5c9c5ca2a9f4cbb
1891cd1759f5258ecd224c51f1a5cf64c4958aec
e2d54c958bf03438c0e8f6c0584ce237d0ec2593eb00c4b0a71bc470b3d42c26
GET /wp-content/plugins/wp-postratings/css/postratings-css.css?ver=1.90 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/css
Content-Length: 437
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Sun, 03 Sep 2023 19:19:31 GMT
last-modified: Fri, 31 Mar 2017 07:15:28 GMT
etag: "549-58de0210-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 8219186
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=grcHS2anuY3gUS8550WBr9q5GBgoPlrMp20DeMd6GgzF2Bkj0WfDlSIEbCc2wK4bNzFF2c%2BtggUBYCLCUKy%2FZeqSM9yqTWFSN7nIlrJVEMdTrwo7iDXutkSksvFVwco4FQxUefyjJw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1dfb7a1c02-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/simple-likes-public.js?ver=0.5
104.21.64.33200 OK 490 B URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/simple-likes-public.js?ver=0.5
IP 104.21.64.33:0
File type ASCII text, with very long lines (614)
Hash 50fba37a4b51114ec263fe418a7d0d30
187eea122234bc2630b2f6180cbc436e2742664f
e9ea4159231a68002f71cbc705a7eac9c16a406bc6dd047594e5da095e5a9364
GET /wp-content/themes/PsyPlayAAA/js/simple-likes-public.js?ver=0.5 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 490
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Sat, 14 Oct 2023 13:42:37 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "3e9-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 4697000
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kN9uAmuJAz7xDuV%2B%2FGzOu18FYzXEvCCfNXzqXKh6%2BLVI%2FJ0wyXvShshyRNt2ozDgYDNE97zOATjT64rLkMGaZxsUL8gnWdPN9NUj9Q4XdomR347nS%2B3rwdffKb%2B1LEibC2oP4EQ05g%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1e1921b50b-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
104.21.64.33200 OK 25 kB URL HTTP/1.1 streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
IP 104.21.64.33:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14368), with CRLF, LF line terminators
Hash fe48ef6ff621f06109b337fddc9077c1
dfbe9dd45bf5ec93f3679e90e21ec8d235b2cafc
89bde40fcdcf321fe4ab77d10adf79c4ba9ce6480725907891266639f3d5501a
GET /pirates-des-caraibes-jusquau-bout-du-monde/ HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-powered-by: PHP/7.2.34
set-cookie: wordpress_a4ba197bfc9f647a377284f769348f46=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/wp-content/plugins; HttpOnly
wordpress_a4ba197bfc9f647a377284f769348f46=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/wp-admin; HttpOnly
wordpress_logged_in_a4ba197bfc9f647a377284f769348f46=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
x-litespeed-cache-control: public,max-age=604800
x-litespeed-tag: 33f_HTTP.200,33f_post,33f_URL.bd567a2ebef51d7ee2c87bfa33866e7c,33f_Po.5040,33f_
x-pingback: http://streaming-french.net/xmlrpc.php
link: <https://streaming-french.net/wp-json/>; rel="https://api.w.org/", <https://streaming-french.net/wp-json/wp/v2/posts/5040>; rel="alternate"; type="application/json", <https://streaming-french.net/?p=5040>; rel=shortlink
last-modified: Wed, 07 Dec 2022 22:25:57 GMT
vary: Accept-Encoding
x-litespeed-cache: miss
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Umnq%2BOH%2Fb6IjWiLYkmvayR4ExC8nJuyRSqOiTvIwcuVwM3QRh9al6T9LUVjFe%2Fryu5vHSc%2FXjfTllnAPtCLfj5YdX8%2BqFrR48I8HSxsuXUkLw%2B4wpTSLq8AzkCGoqXY8ACYOBG1Bcg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae192dadb52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/jquery.lazyload.js?ver=1.1.7
104.21.64.33200 OK 1.3 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/jquery.lazyload.js?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (658)
Hash f1e073057ba6e6816ef580d67b60bd99
e1a389bf2037b61a93bcce270f9b342f87bf83d4
9b85b4f18cb3dc4169f69b43f57e4fa82b793d531c1fac9827e11f4437297666
GET /wp-content/themes/PsyPlayAAA/js/jquery.lazyload.js?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 1277
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 28 Sep 2023 17:15:21 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "ccd-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 6066636
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1oI%2FiTK5By%2FChy7y3mZUeCy1KZ%2BZ8%2FbPPXN8CzFN1NPd5ldojDEXqNcXBjMAApHSMXNWhKi0%2FkzOP7aXPLFf6A8noYp5tNQQqu%2BCfSx3ulGvgfEKcogBfALGd1idS2zrCRAdeTZRcA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1e2ed4b4ff-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/jquery.cookie.js?ver=1.1.7
104.21.64.33200 OK 932 B URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/jquery.cookie.js?ver=1.1.7
IP 104.21.64.33:0
Hash 628190735ee3a3cffb5d63f0bd2aab0a
86390d58ac6a1ce92235a60c73c629a640f80221
59368ecbf9ec1febd3932f10dbf3d220a6ff50496c4aa13bb8b92d98cd4a1698
GET /wp-content/themes/PsyPlayAAA/js/jquery.cookie.js?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 932
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 19:03:11 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "799-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 1135366
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Zmv5loSejZKOPl40g%2FVbQbSjF0uGw7c%2BXMF4wgz1KXdlovmeqn4AZkKO2BmWERxfiNf1wndAut3G5J6I%2BbVd2zFHyguL25uWL2w%2FM2Emt2BkWcQZKXG5wVoG2520E6B89jOieJCMig%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1e2cf80b02-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/detectmobilebrowser.js?ver=1.1.7s
104.21.64.33200 OK 1.4 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/detectmobilebrowser.js?ver=1.1.7s
IP 104.21.64.33:0
File type ASCII text, with very long lines (2065)
Hash 7212a84c131807b7f9c4922ba0a45f3c
addcd775b4418810e304bad0f201cf2f56615ba4
adbdc0da133f2762d04c74a6d7ad4ba989d2e2fc3fd1f3fc22c132dd90b71332
GET /wp-content/themes/PsyPlayAAA/js/detectmobilebrowser.js?ver=1.1.7s HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 1381
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 17 Aug 2023 18:33:53 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "8a3-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 9690723
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ngi1nOjQJuARrIr%2FDzxYAOLxttpsf2LlFaccsz2QtAjuUh1FU38WrhLh4hUKLKJmXAX34%2BsDzS%2BrPLqSElRTSuP2RG1SzFXLpYBzPqNl2Kd4mJdAQOAnSR7Rq0zJyV85OFsqxFCjZg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1e2ba61c02-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/psyplay.custom.min.js?ver=1.1.7
104.21.64.33200 OK 1.1 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/psyplay.custom.min.js?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash f954cfd9847d53c6bf74a3edb6876da6
249bdae25bfe300b016724cb790afce7d12b9b06
0744b0eaadfb91116bbc7a818f388dd147f092df130009130b948cac3a03fa97
GET /wp-content/themes/PsyPlayAAA/js/psyplay.custom.min.js?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 1081
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Sat, 14 Oct 2023 13:42:37 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "b7a-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 4697000
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VeVVqgpBk0nt6Upl8DSMOGs4Wez10Rg0dX8%2FzJQ2Zfxyh57HbJZn6xhFAomNTSQdGt4%2Fz5AFLaFTwOwcg0rOSW8eJv6tsvzhlfNgMW0258iGETZ1TCnQ%2FbtPl8AHQ4QqpaqZxLsbew%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1e495cb50b-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/jquery.qtip.min.js?ver=1.1.7
104.21.64.33200 OK 18 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/jquery.qtip.min.js?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (32120)
Hash 347e75884a6f05bb74677d75c5346eaa
357061aebf062ebcb993a3dde943a366f65033b9
ab26748b9743d472b00b742dbb4fef177202d39d32b2b2704cda7187544d0f75
GET /wp-content/themes/PsyPlayAAA/js/jquery.qtip.min.js?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 17946
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Sat, 14 Oct 2023 13:42:37 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "ad08-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 4697000
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U%2BJcNKtrZwW1ZWKglP1OGi2LY4Ozn8rYslMwWsLc%2BlkM3leetNLHPrGJCCW7r0GC3ogflU2jqkJtHt08lqEGEjerqnxr145G81jDqk%2FG0c5qGKGRHmXUn5hYZ4NQ6x5FGjYmw%2FGBgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1e2c07b4f7-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/jquery.idTabs.min.js?ver=1.1.7
104.21.64.33200 OK 922 B URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/jquery.idTabs.min.js?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (1984), with no line terminators
Hash 99fa2d85f28c5b9948e25337109d9896
630aaa4d00d8493bd70bae6e3a47e2d1cda33e07
49e5fafbb9bafcb13d5ff9e3f99a65687d611344ed9d9d09ac084d685fd2f542
GET /wp-content/themes/PsyPlayAAA/js/jquery.idTabs.min.js?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 922
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 17 Aug 2023 18:33:53 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "7c0-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 9690723
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NbtWrN2o%2BRWkY7Mxvjt1wTFltnunLgtpwtqlzow6kqYt6t%2BJA5bbpIpDIwtQV74FXq2MB8ftliW1z4K0ACrQUP%2B1p0AKW%2BiLf%2B%2FhoJFHNW1lOTbPwcWT%2BcilgwULA2ymTl2XmDIvfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1e8cafb52d-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/owl.carousel.js?ver=1.1.7
104.21.64.33200 OK 7.5 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/owl.carousel.js?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (635), with CRLF line terminators
Hash 33396f8d268a243d86618eec608f8ad0
d0d78fecff32b50c1a2775ca76a20a2e3d4087fb
422284d9273d0e6197cd8ef5b7d9fb282d24364bd0f08c0dbdc56792f4df5aab
GET /wp-content/themes/PsyPlayAAA/js/owl.carousel.js?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 7459
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Sat, 02 Dec 2023 08:41:43 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "5d80-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 481454
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=np%2BqxHzqudCIJbcCQhQPnbKCJwTkn%2FyTUJLxQGhLGmVIMjdx28%2BkhXdPEtfZvAvZAZ9lF4tvz80w0aIGMjq14HqYdECflmYQIVSFbTLpuIvnMJ1ceum%2Bsqe5%2FbN91l6m2ODRlNeX%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1e8f5cb4ff-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4f48748dc87020a0f1368e6d3bb9a24c
4eeade3f02cc6b02390af43bd5e7d67da4a707e0
7cb746c8d9392ac22b2a06ce10ef0266bebf5a7a09febdafeea27a29fa0bd1a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 07 Dec 2022 22:07:55 GMT
age: 1082
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js?ver=2.1.3
172.217.21.170200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js?ver=2.1.3
IP 172.217.21.170:0
File type ASCII text, with very long lines (32180)
Hash f16500423cc2867eff8b773df637c48f
1cd32d75b59a89c3a70274e383151a61ce0594f4
6ca5dc8ad67639c69117ace46c93703cf5fff82824cfc0bada0cf0fb3b2d41d7
GET /ajax/libs/jquery/2.1.3/jquery.min.js?ver=2.1.3 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 20:41:48 GMT
expires: Wed, 06 Dec 2023 20:41:48 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 92649
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
streaming-french.net/wp-content/themes/PsyPlayAAA/js/bootstrap-select.js?v=0.1
104.21.64.33200 OK 7.7 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/bootstrap-select.js?v=0.1
IP 104.21.64.33:0
File type ASCII text, with very long lines (609)
Hash 2ca412f7a6be371d609e7b5e2e39cf07
01dd305c52e0b71c9dc5403edfbc0f1922064662
11cbc2b62574f0a4c1c72a07f8504d385d88a935bd69185e0d8a17636b1dacff
GET /wp-content/themes/PsyPlayAAA/js/bootstrap-select.js?v=0.1 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 7708
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 17 Aug 2023 18:33:55 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "5acd-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 9690722
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SSVnsBaKGWy2%2BGrqXALBNkdCEH%2FZyDZT4IVEnj0cJh1WFr%2BzfiqF0GraXKhPGyWPl5%2BkcP4A%2FAe3QkKGPfGdGO8ZtWx3tGanH5CsVvY7kRtDKyzYufR3%2BrbBZu7mnH4NSelVa43RvA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1f4a89b50b-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/slide.min.js?ver=1.1.7
104.21.64.33200 OK 19 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/slide.min.js?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (32101)
Hash cfcd692e2dab3b5ba6a9c17af09962a9
f8b2ef8e583bc368022c89a538446b84c1cc4466
e3bfe66b98cb526b66dc2b780bc1f047569a008e860ec16396a696ff7fa5298d
GET /wp-content/themes/PsyPlayAAA/js/slide.min.js?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 18591
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 19:03:11 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "f1ee-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 1135365
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QAspWEJerPqpLpM%2FAdFhWtaXppJ6APPN%2B5HAWF5TFgUg%2BnBO0SuDlEZHhanaG8f%2BR5mz2Hll1wCnXHDL5ZXXvKZrPBsApRFExBQ8KY9YxzUZXLQWAFi1%2FAoExd46vhifeXCq5z1vpA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1f4dbab4f7-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/psbar.jquery.min.js?ver=1.1.7
104.21.64.33200 OK 6.7 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/psbar.jquery.min.js?ver=1.1.7
IP 104.21.64.33:0
File type ASCII text, with very long lines (22497)
Hash d6ae2e2e66115796ea668275eaea4c3b
18ef4fae7c951dbf4f73c5a92058525ba9ab9586
26115b85d05e701ad8f8f1eedd12489f86ddb21f2cacdafb436e44adb86de4fc
GET /wp-content/themes/PsyPlayAAA/js/psbar.jquery.min.js?ver=1.1.7 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 6663
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 19:03:12 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "5800-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 1135365
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6pum4Ip6t1iIGW6QtFvAOX%2FwNA4ltGZGuEwwVGot9n%2B7SzpMlJwCiIqWCtMTzIJ%2FtxhLQUReaWGjqO0aswx66R2rZI8V0sXcRQbt%2F3YsTWCq7gYY4x8Cf1kxcNZgj59aI3P9BbNrOg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1f4dd30b02-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.90
104.21.64.33200 OK 822 B URL HTTP/1.1 streaming-french.net/wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.90
IP 104.21.64.33:0
File type ASCII text, with very long lines (516)
Hash a1cf8fcc8189092ca047c322a6f3153a
0a15a542c4261b813ac76dfc5f2af572cfb482d3
6b4cd6596c0feea1733036eac47360696e2de535b9bfd32bba47ad5dfb7818fd
GET /wp-content/plugins/wp-postratings/js/postratings-js.js?ver=1.90 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 822
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Fri, 01 Sep 2023 20:21:30 GMT
last-modified: Thu, 08 Dec 2016 08:51:50 GMT
etag: "d01-58491f26-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 8388266
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9fd0EaHVD2j%2FiZU3LU1uM1Ki6uW8gWrlc3SlJIU99%2BaDs47Fb%2FDXZSEgTEHn6uiCxzmbGRZtv25MfoPcJQDetaS5ys%2FmnQuIk5OL6L475FKgMV9B1QjPgcTUn7bQp1IszSDCcpy0ng%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1f4ca91c02-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/bootstrap.min.js?v=0.1
104.21.64.33200 OK 11 kB URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/bootstrap.min.js?v=0.1
IP 104.21.64.33:0
File type ASCII text, with very long lines (32025)
Hash 9de3e63e7d93d91158059c822d71d471
ca3d495e65cf50a97d07077ae0329a66d2fb1ea5
80613621747a1fcc3ef4b93b6866a1365f7643c046cf9c7010af5b35237fcc2c
GET /wp-content/themes/PsyPlayAAA/js/bootstrap.min.js?v=0.1 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 11147
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 17 Aug 2023 18:33:55 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "8c6f-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 9690722
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gJ%2Bi5kdquCLxylyfZgRI5ikj%2FDoRYqWlGr6LMPmH2%2B0L%2FLdj7%2Fr02FFA45C2juFSVCROPfHAqSxgRFOu%2FsuQyT2lm3Dbzde0r%2FzCuC%2Fd%2B5MrNuys7XMOLuMDWvvcu%2FX%2FpM1ogPCeRA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1f4867b4ff-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/plugins/wp-postviews/postviews-cache.js?ver=1.68
104.21.64.33200 OK 124 B URL HTTP/1.1 streaming-french.net/wp-content/plugins/wp-postviews/postviews-cache.js?ver=1.68
IP 104.21.64.33:0
File type ASCII text, with no line terminators
Hash 3b3ea3f9bad335350abce9b3e8367b4d
0e5287a14a7b6e06495a022604a93165b276ac9a
4862e7d5c879483dfd072b87702dd50531f79e8a3ceda1c4974ae6456c06ba6f
GET /wp-content/plugins/wp-postviews/postviews-cache.js?ver=1.68 HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 07 Dec 2023 18:18:02 GMT
last-modified: Wed, 20 Feb 2019 18:46:37 GMT
etag: W/"85-5c6da08d-0;;;"
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 14875
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=86pZrDl%2Fej3TWjddlHnQjUXadly1HR4JMB7hNxu3UUO0XNRrXsorKcJraeGp8EUaUciU1ZoNX0fYHENAUXcLQzEVwh47%2FqCZ1nTyWJOg6Xc3FCvW2KHnRKHqtWXyHAgkQajug%2FOSQg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7760ae1f4d7bb52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/themes/PsyPlayAAA/js/user-login.js
104.21.64.33200 OK 813 B URL HTTP/1.1 streaming-french.net/wp-content/themes/PsyPlayAAA/js/user-login.js
IP 104.21.64.33:0
File type ASCII text, with CRLF line terminators
Hash 0e5d065c359a11ca45655bc6f51213c2
f34da4eaeba1d5ab9cce71260d746efafa75b35b
0580020a019989c86b0e018d7038de7edb88afacd51329456a3581d6c49e5601
GET /wp-content/themes/PsyPlayAAA/js/user-login.js HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/x-javascript
Content-Length: 813
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Thu, 17 Aug 2023 18:33:55 GMT
last-modified: Mon, 07 Feb 2022 22:59:20 GMT
etag: "b36-6201a448-0;gz"
content-encoding: gzip
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 9690722
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EGtz1eZq8tb8BdRyPHAgpcIMTgnDODqIST5oUgN6S977ycJWyt4CUAniEoaVwKyOTehGJE56v6lOCiW0gwIPirNoc9jHO%2F9m%2F5%2FTKvVHh%2FS1FUW3VhYPwbhNTdfSWyM%2FzcTd684%2FAA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7760ae1f6aa9b50b-OSL
alt-svc: h2=":443"; ma=60
www.googletagmanager.com/gtag/js?id=UA-228010212-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-228010212-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 0c9da112e9c7278de7fd75b8fca70d27
802ea9fb69940e25dbf626e86b82cad7ef56ba90
bb4c6a5c6879467d0ed9071b00497992d7ac14770f93168c2ea1c8baf4ab40dc
GET /gtag/js?id=UA-228010212-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://streaming-french.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 07 Dec 2022 22:25:57 GMT
expires: Wed, 07 Dec 2022 22:25:57 GMT
cache-control: private, max-age=900
last-modified: Wed, 07 Dec 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43632
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 053aff7451e55d4269dd9610ab070f3f
b3376256d11d159b0c7280ba1515b78d7d9e12ca
24114ca560fe70d03185bd66985603fd5a03dc310aa9a8ea7a7b3723ed46ce3e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3208
Cache-Control: max-age=128061
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:57 GMT
Etag: "639057aa-1d7"
Expires: Fri, 09 Dec 2022 10:00:18 GMT
Last-Modified: Wed, 07 Dec 2022 09:06:50 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4f48748dc87020a0f1368e6d3bb9a24c
4eeade3f02cc6b02390af43bd5e7d67da4a707e0
7cb746c8d9392ac22b2a06ce10ef0266bebf5a7a09febdafeea27a29fa0bd1a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9084a518c70ad57bb3226fb519b648fd
79348ebe6f5900a035d4d65e08a7409fd9708f15
f0c6b0f66c31aa7cb2d2808eb4c04c3681d48e731efc8cbba0f3fef1d218ce7b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3074a66f6d9b2e2af9b41ec0e2f4e2db
942e2c49b3848f11da966937f5914c62aed24bce
7c3b21b91aab06aff58cc56ce4b7273a7d320df8b0b4ad685c660e03ba0b72aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 30aec170d58f580f2ed4da4b92d72cc7
3b11a98ba9563f7f266e7a935e3b78bd0c0712aa
7b25e66e4383cdb29228d0451a4810eeab7d194ca81045e066c00c9467f29312
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js
142.250.74.164200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 1309ff133720d219cc98090d66a051ed
b96fc5a893e42be16d687d7abdecdb13d348a019
358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 07 Dec 2022 22:25:57 GMT
date: Wed, 07 Dec 2022 22:25:57 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 45b2dadf01e7947c5d5dcda17170a308
8b47cf698134e7e4e903fddacdb1b2053673a2de
e02cea2e4cc4e9b523c46a572725ca172a53b7e422007605723ad7fae3c069df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E02CEA2E4CC4E9B523C46A572725CA172A53B7E422007605723AD7FAE3C069DF"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10296
Expires: Thu, 08 Dec 2022 01:17:33 GMT
Date: Wed, 07 Dec 2022 22:25:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 45b2dadf01e7947c5d5dcda17170a308
8b47cf698134e7e4e903fddacdb1b2053673a2de
e02cea2e4cc4e9b523c46a572725ca172a53b7e422007605723ad7fae3c069df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E02CEA2E4CC4E9B523C46A572725CA172A53B7E422007605723AD7FAE3C069DF"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10296
Expires: Thu, 08 Dec 2022 01:17:33 GMT
Date: Wed, 07 Dec 2022 22:25:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 45b2dadf01e7947c5d5dcda17170a308
8b47cf698134e7e4e903fddacdb1b2053673a2de
e02cea2e4cc4e9b523c46a572725ca172a53b7e422007605723ad7fae3c069df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E02CEA2E4CC4E9B523C46A572725CA172A53B7E422007605723AD7FAE3C069DF"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10296
Expires: Thu, 08 Dec 2022 01:17:33 GMT
Date: Wed, 07 Dec 2022 22:25:57 GMT
Connection: keep-alive
image.tmdb.org/t/p/w300/bFNiKVUSBldwJ4nCGtNgVaGazFf.jpg
138.199.37.231200 OK 23 B URL HTTP/2 image.tmdb.org/t/p/w300/bFNiKVUSBldwJ4nCGtNgVaGazFf.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type ASCII text, with no line terminators
Hash 622871d7ae98a2599db868987865d5fb
c72de48c4d552203745f199776ca8daa5d531c64
87bfb503c51339fe649c746b4988b01d4c93021ff752a509cd7765dc7d1b0363
GET /t/p/w300/bFNiKVUSBldwJ4nCGtNgVaGazFf.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
content-length: 23
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "62743262-17"
last-modified: Thu, 05 May 2022 20:24:02 GMT
cdn-storageserver: DE-165
cdn-requestpullsuccess: True
cdn-fileserver: 283
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/30/2022 12:18:08
cdn-edgestorageid: 722
cdn-status: 200
cdn-requestid: 564366a5d1d13a4e39975a43194fb161
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cd6dabd083ee1c237c8ea3ba38cc48d5
bbe4420bf1c0fe0d5621336865563418d2f16f39
c9314cdac13bc2ea94505f473538ab4d5c0a940dfbc2f5447e6f22a5af580572
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
image.tmdb.org/t/p/w300/kobscH4qOsYQNTZnkrF5zkPCsvX.jpg
138.199.37.231200 OK 16 kB URL HTTP/2 image.tmdb.org/t/p/w300/kobscH4qOsYQNTZnkrF5zkPCsvX.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3\012- data
Hash 65d8099f4db03c3d8bf1cfdd438abddd
dad21bf9d76da67cd9e6413861a3f68a192aad81
ac61bf883426323ca29dd6f06bc8a0681c6358418a97b4fcf9c89a88e5b2f37d
GET /t/p/w300/kobscH4qOsYQNTZnkrF5zkPCsvX.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: image/jpeg
content-length: 16459
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=31919000
etag: "6272bb40-404b"
last-modified: Wed, 04 May 2022 17:43:28 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 267
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/11/2022 02:43:10
cdn-edgestorageid: 1048
cdn-status: 200
cdn-requestid: 5a7eb330c6a888586e13311b5d1202de
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/bbtgr1zvhosi9q06vBiX7jg3nsz.jpg
138.199.37.231200 OK 23 B URL HTTP/2 image.tmdb.org/t/p/w300/bbtgr1zvhosi9q06vBiX7jg3nsz.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type ASCII text, with no line terminators
Hash 622871d7ae98a2599db868987865d5fb
c72de48c4d552203745f199776ca8daa5d531c64
87bfb503c51339fe649c746b4988b01d4c93021ff752a509cd7765dc7d1b0363
GET /t/p/w300/bbtgr1zvhosi9q06vBiX7jg3nsz.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
content-length: 23
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6273d157-17"
last-modified: Thu, 05 May 2022 13:29:59 GMT
cdn-storageserver: DE-168
cdn-requestpullsuccess: True
cdn-fileserver: 306
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 09/02/2022 17:55:50
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: 31ae4974a846908a4b52c006d9e19426
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/9TFF5GLMi2o9IuUyJQqh3pvict9.jpg
138.199.37.231200 OK 14 kB URL HTTP/2 image.tmdb.org/t/p/w300/9TFF5GLMi2o9IuUyJQqh3pvict9.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x169, components 3\012- data
Hash 766f12e858131dc0f75d4954133f13fb
96c4c8f9e593fd934d55f73f1c6bcbb1eec58745
44bf7d125730277c42ff55a6e120e376edd924db79d2ff7b25b7e1b0d2f80cd1
GET /t/p/w300/9TFF5GLMi2o9IuUyJQqh3pvict9.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: image/jpeg
content-length: 13763
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "6272bf32-35c3"
last-modified: Wed, 04 May 2022 18:00:18 GMT
cdn-storageserver: DE-164
cdn-requestpullsuccess: True
cdn-fileserver: 293
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 09/02/2022 11:21:31
cdn-edgestorageid: 755
cdn-status: 200
cdn-requestid: dcfc0d44322fa011222394711f252099
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/EDloimImeTz1rFM7YIJ5Dw1mzU.jpg
138.199.37.231200 OK 23 B URL HTTP/2 image.tmdb.org/t/p/w300/EDloimImeTz1rFM7YIJ5Dw1mzU.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type ASCII text, with no line terminators
Hash 622871d7ae98a2599db868987865d5fb
c72de48c4d552203745f199776ca8daa5d531c64
87bfb503c51339fe649c746b4988b01d4c93021ff752a509cd7765dc7d1b0363
GET /t/p/w300/EDloimImeTz1rFM7YIJ5Dw1mzU.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
content-length: 23
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "62768662-17"
last-modified: Sat, 07 May 2022 14:46:58 GMT
cdn-storageserver: NY-266
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/18/2022 06:22:01
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: bd01af43c10ea373aa9d571116a95c13
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/6dxbPWKRziMRdyJSnow96CcR6YC.jpg
138.199.37.231200 OK 23 B URL HTTP/2 image.tmdb.org/t/p/w300/6dxbPWKRziMRdyJSnow96CcR6YC.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type ASCII text, with no line terminators
Hash 622871d7ae98a2599db868987865d5fb
c72de48c4d552203745f199776ca8daa5d531c64
87bfb503c51339fe649c746b4988b01d4c93021ff752a509cd7765dc7d1b0363
GET /t/p/w300/6dxbPWKRziMRdyJSnow96CcR6YC.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
content-length: 23
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "62743262-17"
last-modified: Thu, 05 May 2022 20:24:02 GMT
cdn-storageserver: NY-267
cdn-requestpullsuccess: True
cdn-fileserver: 341
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/18/2022 08:14:21
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: edef99356de3aef950059a4ac188ce71
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/4vfbZP8SrswvjX0ls7LiTS4nT9v.jpg
138.199.37.231200 OK 23 B URL HTTP/2 image.tmdb.org/t/p/w300/4vfbZP8SrswvjX0ls7LiTS4nT9v.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type ASCII text, with no line terminators
Hash 622871d7ae98a2599db868987865d5fb
c72de48c4d552203745f199776ca8daa5d531c64
87bfb503c51339fe649c746b4988b01d4c93021ff752a509cd7765dc7d1b0363
GET /t/p/w300/4vfbZP8SrswvjX0ls7LiTS4nT9v.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
content-length: 23
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "62768663-17"
last-modified: Sat, 07 May 2022 14:46:59 GMT
cdn-storageserver: NY-426
cdn-requestpullsuccess: True
cdn-fileserver: 268
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 12/03/2022 21:24:21
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: 16c1cc58f4a6af85e966dd94b15f084b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/qNqB7ZVw3oQbjAWmJnM1cPMDPc2.jpg
138.199.37.231200 OK 23 B URL HTTP/2 image.tmdb.org/t/p/w300/qNqB7ZVw3oQbjAWmJnM1cPMDPc2.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type ASCII text, with no line terminators
Hash 622871d7ae98a2599db868987865d5fb
c72de48c4d552203745f199776ca8daa5d531c64
87bfb503c51339fe649c746b4988b01d4c93021ff752a509cd7765dc7d1b0363
GET /t/p/w300/qNqB7ZVw3oQbjAWmJnM1cPMDPc2.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
content-length: 23
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "62743262-17"
last-modified: Thu, 05 May 2022 20:24:02 GMT
cdn-storageserver: NY-266
cdn-requestpullsuccess: True
cdn-fileserver: 267
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 12/03/2022 21:24:21
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: f31717bcba2ae7ee1ca8a5fe23dda22d
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/shwq4w1nPMkyFFvv1STcIOtJEhM.jpg
138.199.37.231200 OK 23 B URL HTTP/2 image.tmdb.org/t/p/w300/shwq4w1nPMkyFFvv1STcIOtJEhM.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type ASCII text, with no line terminators
Hash 622871d7ae98a2599db868987865d5fb
c72de48c4d552203745f199776ca8daa5d531c64
87bfb503c51339fe649c746b4988b01d4c93021ff752a509cd7765dc7d1b0363
GET /t/p/w300/shwq4w1nPMkyFFvv1STcIOtJEhM.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
content-length: 23
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "62743262-17"
last-modified: Thu, 05 May 2022 20:24:02 GMT
cdn-storageserver: NY-430
cdn-requestpullsuccess: True
cdn-fileserver: 267
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 11/15/2022 10:38:49
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: 20133d0944003fdeb19ce507990b8891
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/mVA8TF6Ar3o7iDdO7TCSdt3WcLb.jpg
138.199.37.231200 OK 23 B URL HTTP/2 image.tmdb.org/t/p/w300/mVA8TF6Ar3o7iDdO7TCSdt3WcLb.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type ASCII text, with no line terminators
Hash 622871d7ae98a2599db868987865d5fb
c72de48c4d552203745f199776ca8daa5d531c64
87bfb503c51339fe649c746b4988b01d4c93021ff752a509cd7765dc7d1b0363
GET /t/p/w300/mVA8TF6Ar3o7iDdO7TCSdt3WcLb.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
content-length: 23
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "627b7091-17"
last-modified: Wed, 11 May 2022 08:15:13 GMT
cdn-storageserver: DE-169
cdn-requestpullsuccess: True
cdn-fileserver: 350
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 08/25/2022 19:07:42
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: 04fd2a9810f410548ef96965ed0aa141
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/r6MI2zzZkjgFzfgyxFsHE2tpi11.jpg
138.199.37.231200 OK 23 B URL HTTP/2 image.tmdb.org/t/p/w300/r6MI2zzZkjgFzfgyxFsHE2tpi11.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type ASCII text, with no line terminators
Hash 622871d7ae98a2599db868987865d5fb
c72de48c4d552203745f199776ca8daa5d531c64
87bfb503c51339fe649c746b4988b01d4c93021ff752a509cd7765dc7d1b0363
GET /t/p/w300/r6MI2zzZkjgFzfgyxFsHE2tpi11.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
content-length: 23
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
etag: "62743262-17"
last-modified: Thu, 05 May 2022 20:24:02 GMT
cdn-storageserver: DE-169
cdn-requestpullsuccess: True
cdn-fileserver: 283
perma-cache: HIT
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-cachedat: 09/02/2022 11:54:51
cdn-edgestorageid: 752
cdn-status: 200
cdn-requestid: c15560f5ac827e2963badfdacad2f6d9
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
wordpersonify.com/e58cf46e9c2f53cf4f51ab0c8f840155/invoke.js
173.233.137.44200 OK 9.3 kB URL HTTP/1.1 wordpersonify.com/e58cf46e9c2f53cf4f51ab0c8f840155/invoke.js
IP 173.233.137.44:0
File type Unicode text, UTF-8 text, with very long lines (25064), with no line terminators
Hash bd53932c5ea013dc0322c07fd01c3e94
63c64a98879892b6ee92db689222b7b1bc2afa70
1a41acaaaebb0ab8605a1647e08bc842714f6b11ab97c28e08531c99f3c37c65
Analyzer Verdict Alert quad9 Sinkholed
GET /e58cf46e9c2f53cf4f51ab0c8f840155/invoke.js HTTP/1.1
Host: wordpersonify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c6520c8a5ed063e6d2f0d4735c27da2d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
push.services.mozilla.com/
52.35.190.173101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.190.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3ZFOg6f28KysfTRjl8DgxA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QHVpHsmTYWufoAEvBhxftOZEnsY=
wordpersonify.com/82/32/65/823265dc0947b13ee3ec719fa4becf65.js
173.233.137.44200 OK 13 kB URL HTTP/1.1 wordpersonify.com/82/32/65/823265dc0947b13ee3ec719fa4becf65.js
IP 173.233.137.44:0
File type ASCII text, with very long lines (37122), with no line terminators
Hash 54371124dc685735288bdcae9f50ca2e
c2ab264c307a05fb4fd5bb07f5f1736cd1733fd5
0747e0200abe8bda16b56c0e4f7cf53740de847ffe8c279db0acdd0287a0909e
Analyzer Verdict Alert quad9 Sinkholed
GET /82/32/65/823265dc0947b13ee3ec719fa4becf65.js HTTP/1.1
Host: wordpersonify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1750b4864e9b76e6386ab34bba937659
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
wordpersonify.com/5f/b3/c8/5fb3c870da0885f30dc0898f56175db3.js
173.233.137.44200 OK 21 kB URL HTTP/1.1 wordpersonify.com/5f/b3/c8/5fb3c870da0885f30dc0898f56175db3.js
IP 173.233.137.44:0
File type HTML document, ASCII text, with very long lines (60156), with no line terminators
Hash 42c85e7ef39545571cfa7c073dcc4713
395f4c444800fcb094307b8c37cce9454737fe57
7b2a9a31f5c88053948a8b25173892e0ebd4201c61ec93082b911047f98b08a4
Analyzer Verdict Alert quad9 Sinkholed
GET /5f/b3/c8/5fb3c870da0885f30dc0898f56175db3.js HTTP/1.1
Host: wordpersonify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:25:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b88cd82b518027cdcbab07e1821cb874
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
streaming-french.net/wp-content/uploads/2022/05/streaming-french.net_-7.png
104.21.64.33200 OK 10 kB URL HTTP/1.1 streaming-french.net/wp-content/uploads/2022/05/streaming-french.net_-7.png
IP 104.21.64.33:0
File type PNG image data, 374 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash aa3ee801c50c4652d2b62481f7b1c517
0d3a575949932c4e6074cb6b02652ab80feae68f
d152eaaba6867d7c5570e85bd9799b6440bfaf07333957fad80c19eea700be1c
GET /wp-content/uploads/2022/05/streaming-french.net_-7.png HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:58 GMT
Content-Type: image/png
Content-Length: 10110
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Sat, 14 Oct 2023 13:42:38 GMT
last-modified: Wed, 04 May 2022 22:34:01 GMT
etag: "277e-6272ff59-0;;;"
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 4697000
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s8jbIoEiH1HZAJ52NWtnmiw4eIBzxSlNyhuhz0v84KjxbIALwmAXME6tAGjSdUKN9b8lV%2Bvm9i0gynnh70ckUuHLsVXr3phwKYfZ7y3606hq11znrI3IrYg2JFsGN%2FJ22ZMehWGn1A%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7760ae21ddd3b50b-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/plugins/wp-postratings/images/stars_flat_png/rating_off.png
104.21.64.33200 OK 424 B URL HTTP/1.1 streaming-french.net/wp-content/plugins/wp-postratings/images/stars_flat_png/rating_off.png
IP 104.21.64.33:0
File type PNG image data, 17 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash eadf46e6f90b94e932eacf981a651216
5a55f93d664dc3c2d9a366427aa4616ec227a4c8
9ecbf775c4edfb3753ef437b4b6a147cec3839c680f5c477e2e313feb2840dff
GET /wp-content/plugins/wp-postratings/images/stars_flat_png/rating_off.png HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:58 GMT
Content-Type: image/png
Content-Length: 424
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Sat, 14 Oct 2023 13:42:37 GMT
last-modified: Fri, 21 Dec 2018 15:07:26 GMT
etag: "1a8-5c1d01ae-0;;;"
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 4697001
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4NkYNbrWqOAUdYi%2BqpZP3MquIKsWEyevkHg55qAzoWdQKWDjdfN5tM8pqAWJY1%2FIDU9K7%2FTyr2dmV34qTQ0Rys7V3Ah4mVniYa2yhja06bd3AHXgUTGUGiCa1JcEY0LWjfCD9CH%2FLA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7760ae21dbd9b4ff-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/plugins/wp-postratings/images/loading.gif
104.21.64.33200 OK 770 B URL HTTP/1.1 streaming-french.net/wp-content/plugins/wp-postratings/images/loading.gif
IP 104.21.64.33:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 8ae1afcd44a2a3ea3c8f86bc74702b05
4f605e49a1ce94999619beef3f92dd923ca63b6d
561d133e612d60ea988fd5ab8819c6ea9c2336c8a3e3a054ac78a1bab3a73178
GET /wp-content/plugins/wp-postratings/images/loading.gif HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:58 GMT
Content-Type: image/gif
Content-Length: 770
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 19:03:12 GMT
last-modified: Mon, 20 Nov 2017 13:47:02 GMT
etag: "302-5a12dcd6-0;;;"
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 1135366
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0uL%2BYRk04YpGj%2Fhfh8%2FtUoRCVBZ%2BMGHzuveNAxVDiIMpJL74a0RACNmeXgTdFqm0Q0bv6yibxrV%2FNx6NSndF0rgnXZonSYglBMGH1ElAEvJMzHe0b7e4tDeR7qZRDRdWVQI5X3X2Mg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7760ae21d8dfb4f7-OSL
alt-svc: h2=":443"; ma=60
streaming-french.net/wp-content/plugins/wp-postratings/images/stars_flat_png/rating_over.png
104.21.64.33200 OK 358 B URL HTTP/1.1 streaming-french.net/wp-content/plugins/wp-postratings/images/stars_flat_png/rating_over.png
IP 104.21.64.33:0
File type PNG image data, 17 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash e86b549b40825a59f2259b154a7d262a
037669dee44cb98ff5e84c0126dbeacbcb2a5b65
218411d18ca268909d1d31f415b0af8edcb3181d20e295e525958622eb5043ee
GET /wp-content/plugins/wp-postratings/images/stars_flat_png/rating_over.png HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:58 GMT
Content-Type: image/png
Content-Length: 358
Connection: keep-alive
cache-control: public, max-age=31536000
expires: Fri, 24 Nov 2023 19:03:12 GMT
last-modified: Fri, 21 Dec 2018 15:07:26 GMT
etag: "166-5c1d01ae-0;;;"
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
CF-Cache-Status: HIT
Age: 1135366
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8R4ZrSychCyGI432vj1FMIG0jyBeQoR34nA8HkSi90SLww0rgOEv2Um5G2dttASYVYzOlyaoXeYe75JIVvE3uBzNNHmUTnmq7znjiAKgfqjZ6pP2k4bBSJdFjpl9IB44Ymg6JW2VOw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7760ae22cd26b4ff-OSL
alt-svc: h2=":443"; ma=60
www.youtube.com/embed/rF6k1bXAVIg
142.250.74.14301 Moved Permanently 0 B URL HTTP/1.1 www.youtube.com/embed/rF6k1bXAVIg
IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/rF6k1bXAVIg HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
X-Content-Type-Options: nosniff
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Wed, 07 Dec 2022 22:25:58 GMT
Location: https://www.youtube.com/embed/rF6k1bXAVIg
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
image.tmdb.org/t/p/w300/8ZgpAftUiYTU76IhUADITa3Ur9n.jpg
138.199.37.231404 Not Found 11 kB URL HTTP/2 image.tmdb.org/t/p/w300/8ZgpAftUiYTU76IhUADITa3Ur9n.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash 4785f9762bec19ad86d0cf7752e59256
f1df4ae3e0fe156dc34ec609e4df4b7ce3aa68f0
0257121ff9e375c001e00b76c26175ac5a70adf1b5d61bda1eeda6a0b0892dd2
GET /t/p/w300/8ZgpAftUiYTU76IhUADITa3Ur9n.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 12:19:39
cdn-edgestorageid: 865
cdn-status: 404
cdn-requestid: b3d4157be19cea71fd5d5ffd1be0c1bb
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/i8BBXEoqt1LTDEiNMNZlhji8L0L.jpg
138.199.37.231404 Not Found 2.0 kB URL HTTP/2 image.tmdb.org/t/p/w300/i8BBXEoqt1LTDEiNMNZlhji8L0L.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash 0687aa282fafa11ef0564b49643ad52f
29b5e182929439a9ab6ddaa5af15eb07a7ac4ab4
2cf5fa449c120eb046794c56570e8523ce433ecedd679c698a701a7d8fd90965
GET /t/p/w300/i8BBXEoqt1LTDEiNMNZlhji8L0L.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 12:19:39
cdn-edgestorageid: 874
cdn-status: 404
cdn-requestid: 9cfef164bf7f2397ade7c9ca00efc9c2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/2mFGzDOMx0KN1W9NxoQDQyzLtpM.jpg
138.199.37.231404 Not Found 1.0 kB URL HTTP/2 image.tmdb.org/t/p/w300/2mFGzDOMx0KN1W9NxoQDQyzLtpM.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash c4a0fa57b0ee4cb238eaa17268cba95b
a959ff0c04f4273f54ac4da6a15eade192dfa40a
e3c7e11d82f28e56a4b5c7ff8a41af5ad16af9e1b97787362f390310605a2a0b
GET /t/p/w300/2mFGzDOMx0KN1W9NxoQDQyzLtpM.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 12:19:39
cdn-edgestorageid: 1048
cdn-status: 404
cdn-requestid: 4e38a5bd9100d8049a701c5e1dabf6ef
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/hDEJwkJ6PFVgahobPOgs9GicwqB.jpg
138.199.37.231404 Not Found 6.0 kB URL HTTP/2 image.tmdb.org/t/p/w300/hDEJwkJ6PFVgahobPOgs9GicwqB.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash 1ea32f35f098872c89b87cfcf9ca480a
0be6c9af33e01277c69a7584b4eeebaea463058d
faeac030a179f4c815a37d6faa2235aee49c80f407d9d919f36fae00a442d4dd
GET /t/p/w300/hDEJwkJ6PFVgahobPOgs9GicwqB.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 12:19:40
cdn-edgestorageid: 722
cdn-status: 404
cdn-requestid: 0846557315eb013bbcf811fdc9f69068
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/d0sPxqQq1jjaiYuoqUQcCn9Tbuy.jpg
138.199.37.231404 Not Found 58 kB URL HTTP/2 image.tmdb.org/t/p/w300/d0sPxqQq1jjaiYuoqUQcCn9Tbuy.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash 20c5d56769cd32f7b63422c3db6a1c13
c74781f57d233548cf5878e49b9ac5885cd791eb
e7b53ea71f78c22d58d9e1b67bb528d5e860b4eef24208865391aeab380af331
GET /t/p/w300/d0sPxqQq1jjaiYuoqUQcCn9Tbuy.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 12:19:39
cdn-edgestorageid: 1048
cdn-status: 404
cdn-requestid: 180a5bd268d8d483ef56230f3814f91d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
172.64.162.31200 OK 28 kB URL HTTP/1.1 friendshipmale.com/sfp.js
IP 172.64.162.31:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash b1fa950e77a7db5425f9a5257af02e9c
2d5580451f34ad96218f8b97edf9708f9ee1be87
d999c4320df27dc4a1d3de5aec22bb3ef201560b47a7eff3f28f4133c1997a14
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:58 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: 39b7a851698c5e6515ede091b463ef22
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Wed, 07 Dec 2022 22:25:58 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ln4zZRIOK381f%2FhhaFFXSexMN%2FX7BF7OQX3ZkjlCzRTqOcE29SjyLkNgZTMbB3QqmN09N8XkST32lhhZw1RNev4SEmEcgblsq3seJPPT3JaO3cLNNmGISX5sx%2Fp2xJFffCo4n8o%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7760ae228eaf76ed-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
image.tmdb.org/t/p/w300/8ZgpAftUiYTU76IhUADITa3Ur9n.jpg
138.199.37.231404 Not Found 1.5 kB URL HTTP/2 image.tmdb.org/t/p/w300/8ZgpAftUiYTU76IhUADITa3Ur9n.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash 9b30552190d5bd11b72a6c773322d3ee
a690ddd6a4a2ef45247fffeb21b266b824282bc9
a7597f8ac4f41d251d13051c40c376671f392817e0420d5450d48b737dc0a39e
GET /t/p/w300/8ZgpAftUiYTU76IhUADITa3Ur9n.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 12:19:39
cdn-edgestorageid: 865
cdn-status: 404
cdn-requestid: fc22ad73c21ce54674b16e183fc4f7cf
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w185/gfDdVjCx5Nsfxv9p0OCy05mQdaV.jpg
138.199.37.231404 Not Found 1.5 kB URL HTTP/2 image.tmdb.org/t/p/w185/gfDdVjCx5Nsfxv9p0OCy05mQdaV.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash 523651595acf5819666d96fa026b8c0c
0a6450caa482fb9351de7bab0f1cc97e620c7d91
472f1e137cce55b094c255943f499ea15b91ee7603a41fe3a6109fea36178262
GET /t/p/w185/gfDdVjCx5Nsfxv9p0OCy05mQdaV.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 11:07:45
cdn-edgestorageid: 755
cdn-status: 404
cdn-requestid: 76bedb02772883fa301ba7b32181210c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b9083cdf8a3f174763927ae3e9ca3934
1d1ca843e0517b384f693ff52b55fcafc48f9ee7
0f42326e84100eb58e3ac1d2eb5e21f7f0ba3502ddea7f607627a465cc234801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
snappedanticipation.com/pixel/purst?dl=0&th=0&sc=0&rs=1513&rd=1513&fd=725&bv=22.10.v.9&tmpl=70
192.243.61.225200 OK 0 B URL HTTP/1.1 snappedanticipation.com/pixel/purst?dl=0&th=0&sc=0&rs=1513&rd=1513&fd=725&bv=22.10.v.9&tmpl=70
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1513&rd=1513&fd=725&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: snappedanticipation.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:25:58 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash 8ecd8389c55d32d55e00983dade43b90
59fc7ed3d96b75f584afbf714e324714f44f2e53
73fd82500a6c4a7a22eb5581626b06dea9903c579edabb99d1f70ec3f8e94125
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streaming-french.net
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://streaming-french.net
access-control-allow-credentials: true
set-cookie: uid_id2=72c5f3de-3162-42d6-a829-ce2cb5562bee:3:1; expires=Sat, 04 Dec 2032 22:25:58 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash 0ed66da766a5b6568519532fbe1ed2bc
0b4208a01136a718eb16278f4fbf22ddab2d794d
78294360b84772c36d20eba87a9304a8da8527b6d4efefd7441a75e5d68e131c
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streaming-french.net
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://streaming-french.net
access-control-allow-credentials: true
set-cookie: uid_id2=90fbf3a9-15c5-4931-8cd9-bfd960481901:1:1; expires=Sat, 04 Dec 2032 22:25:58 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2
216.58.207.227200 OK 9.8 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9840, version 1.0\012- data
Hash afda6e429fd299054de28e1f157c683d
c1847d6f3df5fe11d5e96fd5e6a59b73ff7ed96b
81cd29d1413ecf75834fb3ce1da572fe5c39e53b22c61f5dafec5b14ed4ee12e
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1_FvsUZiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://streaming-french.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 21:18:06 GMT
expires: Tue, 05 Dec 2023 21:18:06 GMT
cache-control: public, max-age=31536000
age: 176872
last-modified: Mon, 18 Jul 2022 19:24:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://streaming-french.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:30:11 GMT
expires: Sat, 02 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 489347
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0fe2253f8a303003493bba5a572c2934
a599fb033f5bd2a95cc8fbe704f7af61f7eea551
612584fb1bb712b932588b0b8c2d57fb2b0595ccaba72954bab02d2b9f173e7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2493
Cache-Control: max-age=92447
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:58 GMT
Etag: "638fcf58-117"
Expires: Fri, 09 Dec 2022 00:06:45 GMT
Last-Modified: Tue, 06 Dec 2022 23:25:12 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash 0ed66da766a5b6568519532fbe1ed2bc
0b4208a01136a718eb16278f4fbf22ddab2d794d
78294360b84772c36d20eba87a9304a8da8527b6d4efefd7441a75e5d68e131c
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streaming-french.net
Connection: keep-alive
Referer: http://streaming-french.net/
Cookie: uid_id2=90fbf3a9-15c5-4931-8cd9-bfd960481901:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://streaming-french.net
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ec6ece82a7cb8faa3ba171efae3a9eda
7ee75fba9a9d1078960f7834d71961c38f514b82
301d0c4d73b444369e488ee4f78b3a994a9168ec6c6d46cd7f3448722a841a2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/ac058a09/www-player.css
142.250.74.14200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/ac058a09/www-player.css
IP 142.250.74.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 5a5b8eb5d8a3df4b72089b611a5e7deb
9eb088fd709aba51fcc2261764df57ddb6df1498
3e06a6dbf24b719e85dac71b46a939a516c246dee204817e5aee68f580b83406
GET /s/player/ac058a09/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/rF6k1bXAVIg
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 49862
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 16:00:53 GMT
expires: Tue, 05 Dec 2023 16:00:53 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 01:22:00 GMT
content-type: text/css
age: 195905
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/ac058a09/www-embed-player.vflset/www-embed-player.js
142.250.74.14200 OK 99 kB URL HTTP/2 www.youtube.com/s/player/ac058a09/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (679)
Hash f87416e031d065a607bd0ef62fc7b0c6
667338b85fa358e402b548e423a917f7495a2575
d837a92b57b61e18f1ef785093ebb065cc0b4ba588d6e609c4cfcb26763dc63d
GET /s/player/ac058a09/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/rF6k1bXAVIg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 99188
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 16:00:53 GMT
expires: Tue, 05 Dec 2023 16:00:53 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 01:22:00 GMT
content-type: text/javascript
age: 195905
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b9083cdf8a3f174763927ae3e9ca3934
1d1ca843e0517b384f693ff52b55fcafc48f9ee7
0f42326e84100eb58e3ac1d2eb5e21f7f0ba3502ddea7f607627a465cc234801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.youtube.com/s/player/ac058a09/fetch-polyfill.vflset/fetch-polyfill.js
142.250.74.14200 OK 2.8 kB URL HTTP/2 www.youtube.com/s/player/ac058a09/fetch-polyfill.vflset/fetch-polyfill.js
IP 142.250.74.14:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (555)
Hash 80fe2d229007996c8397073b00755dc7
121f82c77bcf2a297a1085e3b092415c463fcafe
033dfa8941482c82d4f1aaa4a9172fb379b9e46a02d5b36297c5476bbbfdea2c
GET /s/player/ac058a09/fetch-polyfill.vflset/fetch-polyfill.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/rF6k1bXAVIg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 2786
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 16:00:53 GMT
expires: Tue, 05 Dec 2023 16:00:53 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 01:22:00 GMT
content-type: text/javascript
age: 195905
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/ac058a09/player_ias.vflset/en_US/base.js
142.250.74.14200 OK 595 kB URL HTTP/2 www.youtube.com/s/player/ac058a09/player_ias.vflset/en_US/base.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (554)
Size 595 kB (594613 bytes)
Hash 2253669666695acc15f5a0a5be8a96f5
0a5523414f97d569ea3d085c417d58c9a89ee507
42e6e02ccbf301d28228f2bb3d8013f36f17f4a265d40d2261d0dec6aef13282
GET /s/player/ac058a09/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/rF6k1bXAVIg
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 594613
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 16:03:26 GMT
expires: Tue, 05 Dec 2023 16:03:26 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 05 Dec 2022 01:22:00 GMT
content-type: text/javascript
age: 195752
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
uqload.com/js/custom-pop.js?v=14
104.26.0.58200 OK 0 B URL HTTP/2 uqload.com/js/custom-pop.js?v=14
IP 104.26.0.58:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/custom-pop.js?v=14 HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: application/javascript
content-length: 0
last-modified: Tue, 15 Jan 2019 07:42:00 GMT
etag: "0-57f7a4beb4200"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2494
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WcRD1LbBCj8b75lzwiFEG2QAzjQnFVPyLSvy2%2FDtdNkqC9NaZvvk65wG2rpVgORCPDmRgfgNFW7W%2BF7Rg771HqckdManzCwp%2FzqqMMI2B%2BEQNd2j13zkw0rXan8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae25fd0ab51b-OSL
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/2mFGzDOMx0KN1W9NxoQDQyzLtpM.jpg
138.199.37.231404 Not Found 1.1 kB URL HTTP/2 image.tmdb.org/t/p/w300/2mFGzDOMx0KN1W9NxoQDQyzLtpM.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash 902c4180eb2ed07ceb12fc287ca84de9
278a61121a3b269f8d3053dae1aa7cfa776b8882
a1acc61f374b60c029e217b2fe53f4e3b46e0f63e51de5b902b2b2eb7ef61b4b
GET /t/p/w300/2mFGzDOMx0KN1W9NxoQDQyzLtpM.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 12:19:39
cdn-edgestorageid: 1048
cdn-status: 404
cdn-requestid: 3dac8519712116cbe135980fa9e5cc14
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
addresseepaper.com/sfp.js
34.160.73.230200 OK 2.6 kB URL HTTP/1.1 addresseepaper.com/sfp.js
IP 34.160.73.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: openresty
Date: Wed, 07 Dec 2022 22:25:58 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Tue, 06 Dec 2022 22:15:21 GMT
ETag: "638fbef9-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_ksH1sTc9EjXCmWZup74uFSR+dkwy0KAqHyDjqCX5+b0zeGjsBDwHGeUXqHO1YTnGXNMqi9DZqRg/7nsDREvaAw
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=enom.EXPIRED.305E185C-5D0C-4AD0-86FE-5F99F413CC83;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
fonts.googleapis.com/css?family=Oswald|Montserrat:400,700
142.250.74.106200 OK 4.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Oswald|Montserrat:400,700
IP 142.250.74.106:0
Hash b4f29a51ac6b34270d9f304382cb2299
4a11dc820d9f548f7a0403306c7f1b4efff07fda
dda7154aef727860e69a2135062f49e16d71ffb58fe00e9aa7184e0b111b5615
GET /css?family=Oswald|Montserrat:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 07 Dec 2022 22:25:57 GMT
date: Wed, 07 Dec 2022 22:25:57 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
uqload.com/js/actions.js?v=6
104.26.0.58200 OK 22 kB URL HTTP/2 uqload.com/js/actions.js?v=6
IP 104.26.0.58:0
File type ASCII text, with very long lines (2013)
Hash 82c2111ba446326c65764761d5faf72b
05038c004b908205c18dbdb43a19abb13f90dce8
3c77d166c03b1d3b4e4124914ecb8831c382c9b6d6775123ddfd5003f2afafbc
GET /js/actions.js?v=6 HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: application/javascript
last-modified: Fri, 26 Mar 2021 21:33:33 GMT
etag: W/"1579-5be7748b44e3c"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CCyhD631Ov5ZeQnXRfnl5C3wAVqKEwZooMSRNY%2BRU2NKhDNW0%2Fr9LvTrY1TMssKpeO8P75uCyd%2FQPOk89SQWHHUR51Tj%2BTy2rcb27Mzkls5g9bSc1NL5slwrlTI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae25dccdb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.com/player_clappr/clappr.min.js?v=5
104.26.0.58200 OK 123 kB URL HTTP/2 uqload.com/player_clappr/clappr.min.js?v=5
IP 104.26.0.58:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 123 kB (122862 bytes)
Hash 816a6d5e71826931c7d96ab1b0c0cc8e
7dd3b6969aa7c918938024099f5c09ef0935fe60
e188f6e7a630955ab18e377d713cc05f4be2ea78d7ea117670b4c71aa64390ad
GET /player_clappr/clappr.min.js?v=5 HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: application/javascript
last-modified: Mon, 16 Dec 2019 01:52:00 GMT
etag: W/"76955-599c8750f5000"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2494
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IgGrhajlu5ci9nWCV1lZH7UX1fADvwAg3AjlQLLeCaWQDUkZM4WzEZGJYw8Mteoh84Pv71qjzWCoERLNAEp7IJo%2FwfIr7crJJESi5VViZRGTLOOpAteXnmMpFGA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae25fceeb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.com/js/jquery.cookie.js
104.26.0.58200 OK 31 kB URL HTTP/2 uqload.com/js/jquery.cookie.js
IP 104.26.0.58:0
Hash 16b57144900700cdd9127d549e9351dd
c2869e3b29f53c88b03534e13755ac751e119367
a14ef2d631a0a5f127df67800bdb1d1ec83ab81130285d0b35322cc6ffb8b45e
GET /js/jquery.cookie.js HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: application/javascript
last-modified: Wed, 01 Jun 2011 04:53:00 GMT
etag: W/"10eb-4a49f4b7bc300"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2494
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=muwfogvF%2BnG2jfqCpXOfFC2DCMNlmulTs1k70q5kyE%2BXnHRDlzSMiG1OHMtsUXmtEqjwMOHGSsQmoYCbw9nZSHEOW%2FyPWZnR6swLIknXdzwQaflrJTjY6OWcvpU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae25dccbb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.com/js/bootstrap.min.js
104.26.0.58200 OK 173 kB URL HTTP/2 uqload.com/js/bootstrap.min.js
IP 104.26.0.58:0
File type ASCII text, with very long lines (32003)
Size 173 kB (173141 bytes)
Hash f3b289519fab63cadf05b9813c43e169
2674f5c8192ead9502bf2984b90010c6b35e5fcd
f0b336a9073f54df4da10018021479915b5df1a3435a748c1e864087c677b478
GET /js/bootstrap.min.js HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: application/javascript
last-modified: Thu, 02 Nov 2017 20:50:00 GMT
etag: W/"9004-55d0621b12e00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JP0QvtR8blRnZNBJQtztUg8jwYfVDmyKh7fNbTolYqPa3Ql6DDcIDRFrLKTI03Y9tXCYtCFsmVRDRw%2BK6NoRCc%2FbVQ49lPLs3chYKju1Stso2%2FBgzb1AE3fA%2B%2Fc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae25dcc0b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
uqload.com/embed-pp7z8c8do197.html
104.26.0.58200 OK 0 B URL HTTP/2 uqload.com/embed-pp7z8c8do197.html
IP 104.26.0.58:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /embed-pp7z8c8do197.html HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: text/html; charset=UTF-8
expires: Tue, 06 Dec 2022 22:25:59 GMT
x-frame-options: 1
set-cookie: lang=1; domain=.uqload.com; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BHEODbQBizXiXUoZa4n1AlSQVu05i5JO4xzHJEJDMVY%2Bm%2BRmng8j34pyUSJC%2FSX50XDQYPKQlOBuwT39Zy2Zi8kMQqUB%2F%2BzbM%2BUrCAaEgAcZOCl5T249LkRk3wo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7760ae282fc4b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/d0sPxqQq1jjaiYuoqUQcCn9Tbuy.jpg
138.199.37.231404 Not Found 1.4 kB URL HTTP/2 image.tmdb.org/t/p/w300/d0sPxqQq1jjaiYuoqUQcCn9Tbuy.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash 674648aebe68c2ac2ea6998d6a974789
25ea59c5b458f3a85ec693440119ba320c302985
400e1c035b7a998ce215ae751030b9263d7562b5ef6a85986e03d7b4d5923213
GET /t/p/w300/d0sPxqQq1jjaiYuoqUQcCn9Tbuy.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 12:19:39
cdn-edgestorageid: 1048
cdn-status: 404
cdn-requestid: 2c4574eaded881af6181c4ba7ff7d6c2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash faa04ca79d10652f60eea68fc1b0e519
daf6107d9c6cbc77f04a1ec39dfa4b0a5816590e
a4e55dacdf6afcecb6867af251ba0c6fb9b80087a6273510ce7cf368ec833da2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A4E55DACDF6AFCECB6867AF251BA0C6FB9B80087A6273510CE7CF368EC833DA2"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3921
Expires: Wed, 07 Dec 2022 23:31:20 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8e2262c4ef5db0228091c3d8871b6828
72ca720f2a972f42d6c7913c57ec1c19e23ba608
7046e66b0fce348a957c3eac37394f072fd3c3f344dc548c0474f7db8f8ad438
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7046E66B0FCE348A957C3EAC37394F072FD3C3F344DC548C0474F7DB8F8AD438"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5494
Expires: Wed, 07 Dec 2022 23:57:33 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
uqload.com/embed-pp7z8c8do197.html
104.26.0.58200 OK 0 B URL HTTP/2 uqload.com/embed-pp7z8c8do197.html
IP 104.26.0.58:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /embed-pp7z8c8do197.html HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: text/html; charset=UTF-8
expires: Tue, 06 Dec 2022 22:25:59 GMT
x-frame-options: 1
set-cookie: lang=1; domain=.uqload.com; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CHBs7MD%2FhTge%2BwmbvujmsJBKV%2BwKJdMhVJdke8vjuAbfkjFffhg9EZ0ryu%2BmIxV2pH67Z%2FxbMLikhd2U81vaKX2MownA9Zcjw9DJZjqsSP%2BfYAwBjhbkBO7%2Beho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7760ae288830b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
streaming-french.net/wp-content/uploads/2022/05/cropped-streamingfrench-192x192.jpg
104.21.64.33200 OK 5.6 kB URL HTTP/2 streaming-french.net/wp-content/uploads/2022/05/cropped-streamingfrench-192x192.jpg
IP 104.21.64.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 5b86f90b1f29aa9e3d5428b16ae38420
2e41b328c096de779412ec255b2a667bd2c1d252
fd5df41b0d101145e3f107e493f47d7c5bab1f1acf68597a8811e83aa79feb95
GET /wp-content/uploads/2022/05/cropped-streamingfrench-192x192.jpg HTTP/1.1
Host: streaming-french.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://streaming-french.net/pirates-des-caraibes-jusquau-bout-du-monde/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: image/jpeg
content-length: 5624
cache-control: public, max-age=31536000
expires: Sun, 12 Nov 2023 00:33:37 GMT
last-modified: Wed, 04 May 2022 22:53:51 GMT
etag: "15f8-627303ff-0;;;"
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 2238742
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oDvgbDyDZRpR3HoKVux2IH4EX%2FenVDwVlKHjb%2BwBbUVy%2FNxOlwrtlBCU9dpyi1xcIo8xHsQ%2BI64nbeA1dJIzk1%2F%2Fxjpo7lkHG5S5fLIFRF%2F3VmpnX6hp2jOIACu%2FV3GSIYS4gzl%2FWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae28ca511c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash faa04ca79d10652f60eea68fc1b0e519
daf6107d9c6cbc77f04a1ec39dfa4b0a5816590e
a4e55dacdf6afcecb6867af251ba0c6fb9b80087a6273510ce7cf368ec833da2
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A4E55DACDF6AFCECB6867AF251BA0C6FB9B80087A6273510CE7CF368EC833DA2"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3921
Expires: Wed, 07 Dec 2022 23:31:20 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
image.tmdb.org/t/p/w300/i8BBXEoqt1LTDEiNMNZlhji8L0L.jpg
138.199.37.231404 Not Found 1.5 kB URL HTTP/2 image.tmdb.org/t/p/w300/i8BBXEoqt1LTDEiNMNZlhji8L0L.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash 7c38f7cdfabc4204634414d56d5214d9
09777666cf638e7f7e285e644883dc879a1c99e8
72a2ae2544fd2bc0b9c87e08d3fc185b9a56b2d0f4a2094b65a7627dc397e0e0
GET /t/p/w300/i8BBXEoqt1LTDEiNMNZlhji8L0L.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 12:19:39
cdn-edgestorageid: 874
cdn-status: 404
cdn-requestid: 7c761c1d44b4b2c5aa9c9a6677a4abca
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f8db7a7782137e510a2ed8fb6cbbe851
706746d2621011371428996a456b5fd606e342e9
d75915bc1cce76e50a6a94794d5687099ec833cb03766df9e9562ca98c4ac97d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D75915BC1CCE76E50A6A94794D5687099EC833CB03766DF9E9562CA98C4AC97D"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13774
Expires: Thu, 08 Dec 2022 02:15:33 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 82c8ae7c966d55c945eaee50dd5be6a9
a6f54573f6bcc8f7f6aac0d8900c4196ee3b3b67
d5fd716f84bee1552fdaef7b712353708ccc21b084324d4813a0406862ca33c4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5FD716F84BEE1552FDAEF7B712353708CCC21B084324D4813A0406862CA33C4"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1969
Expires: Wed, 07 Dec 2022 22:58:48 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
lassampy.com/tag.min.js
139.45.197.237200 OK 23 kB IP 139.45.197.237:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 391a9fe961c74a035ed5ac424bfc5fb2
65bf15f254531c80c76212bb6d3c5f33d6a501ee
73f16b3e042c5e5f34570279688fb08577d95105d0707d1a21b11c0c1524dcfb
Analyzer Verdict Alert quad9 Sinkholed
GET /tag.min.js HTTP/1.1
Host: lassampy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: text/javascript; charset=utf-8
content-length: 23393
content-encoding: br
x-trace-id: 1ae46e3c4fb5ab54fcf8eb25e7c04a73
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 02 Dec 2022 10:17:26 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3637
Expires: Wed, 07 Dec 2022 23:26:36 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3637
Expires: Wed, 07 Dec 2022 23:26:36 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3637
Expires: Wed, 07 Dec 2022 23:26:36 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3637
Expires: Wed, 07 Dec 2022 23:26:36 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ab1615b2c8cc26b12fc0cf41734ff07
a7d54b3709ce75a20210e20013e6f06b0aa88e2d
22b22118173565879d7c4a2d54a3546aeab6a4a30e69268b294a98019fbd6ba1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22B22118173565879D7C4A2D54A3546AEAB6A4A30E69268B294A98019FBD6BA1"
Last-Modified: Tue, 06 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3637
Expires: Wed, 07 Dec 2022 23:26:36 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
iceboxlitre.com/ntv.json?key=e58cf46e9c2f53cf4f51ab0c8f840155&vstc=4
173.233.139.164200 OK 17 kB URL HTTP/1.1 iceboxlitre.com/ntv.json?key=e58cf46e9c2f53cf4f51ab0c8f840155&vstc=4
IP 173.233.139.164:0
File type JSON data\012- , ASCII text, with very long lines (16665), with no line terminators
Hash c123c9431c625ffbbee08941e99b1ee7
ae2c5432fe1db6b74bce0e4d4c43f09c44c227b8
32edb5f3f8231359627fdf0fc0779156d8192039acb4fd521f4e9a0afacd1828
Analyzer Verdict Alert quad9 Sinkholed
GET /ntv.json?key=e58cf46e9c2f53cf4f51ab0c8f840155&vstc=4 HTTP/1.1
Host: iceboxlitre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streaming-french.net
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:25:59 GMT
Content-Type: application/json
Content-Length: 16665
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://streaming-french.net
Access-Control-Allow-Origin: http://streaming-french.net
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15795427; expires=Thu, 08 Dec 2022 22:25:59 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 08 Dec 2022 22:25:59 GMT; secure; SameSite=None
uncs=1; expires=Thu, 08 Dec 2022 22:25:59 GMT; secure; SameSite=None
pdhtkv49=true; expires=Thu, 08 Dec 2022 22:25:59 GMT; secure; SameSite=None
uncs49=1; expires=Thu, 08 Dec 2022 22:25:59 GMT; secure; SameSite=None
nlece58cf46e9c2f53cf4f51ab0c8f840155=[2229213,2229212,2106764,2229215]; expires=Wed, 07 Dec 2022 22:26:04 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b0cc3fe53e7e099a7121fb9e703d7cc9
Strict-Transport-Security: max-age=0; includeSubdomains
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fstreaming-french.net
192.229.233.25200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fstreaming-french.net
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 2b4968b185495eddda0d85b2351ebb71
c665785ca0f4039f8c71d94631cd50a879d866b5
eb8af089d8082a58a6e90fedc23007f17a9e89ddbc6a29b6e535e4847ba94160
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fstreaming-french.net HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 2007
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 07 Dec 2022 22:25:59 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b15136d60fd0a5e0f657a4f5c75d540f
36082b7329d473829178f280cb71a83b1531e486
79478269b1f5dcfd1e45ccd4264fa44805b37c5c8fec820bcbd2fa1689dfbbd8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F962c65f4-b402-46b4-83ba-50f3159341f2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11224
x-amzn-requestid: 938de0b8-1055-4416-9ad7-162ab5f4db9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csUINEwdoAMFuOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6701-38b079ef341bb17e567de773;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ViuPsZBEVJ-aGOcsfrl3nXu244mzMUMQVhpPeNlO7W3sBrrfuUfXpA==
via: 1.1 f0ac467993db44dbfc36b778dfcaf73c.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Dec 2022 22:32:04 GMT
age: 86035
etag: "36082b7329d473829178f280cb71a83b1531e486"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a7ee62c5e846e8ad4808f4724f15146d
6d55b299f906908309f91eaf0a720ad65866db04
0d8f51d6f7f3bad4bb9d9c3000999739147f6dd718b290b0dca71a4cba85cb38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80a12c85-454b-4e03-bf75-3fa8228659c0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6846
x-amzn-requestid: 53452103-6559-460c-ac40-4685e6816aa4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdGx4E-mIAMFatg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851a5-5327ec9a2f247cc91654df80;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Znjnq24wuXoi43Bfc9aPdcUHhMh-a00hSCXUHFpHq3sTtQQoUYe6Uw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 07:10:36 GMT
age: 54923
etag: "6d55b299f906908309f91eaf0a720ad65866db04"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22e3174edbfe337cc29266cc38abb51e
80283cb298a1b2326620be406ee3daa42ee0b3ef
520858a9d9540d5768988d0ebb04f0162ded5eb9cd8f4718989b033d04702111
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8116e95d-8c6c-4a81-8560-89710dcf8c9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 3b64a1cf-0ad7-4ecf-a25e-ca65c06330ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csVFcECMoAMF1SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e6889-42dde2da60f083383ab06b82;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:54:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z3yEknYzqJG3oEe-t3nxHYkDXSYGdWkRdbB1V4ixYcJjV5DjxzLzEA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 08:48:55 GMT
age: 49024
etag: "80283cb298a1b2326620be406ee3daa42ee0b3ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fb1ea0161d261518c99909aff49e6f58
c3b915cb579b651db25442fea0bbedd0d292c0fc
d877a21abfd883a368da0136c4e56d7f590fa9e9ea09dec3675823211fe56385
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e6c8e9d-aef1-4772-8747-82ef7e4ceeb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6110
x-amzn-requestid: 2ebf542a-dacc-472a-81c0-0c69cb1ec143
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEQAH2doAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb3ff-7173ff7941b57fa163e3cc6b;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5fxuPjC35VBDaymSCPY_iBxDnQY4CFHgolHSmnDhCRUjzw5UzY7ovA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 04:14:32 GMT
age: 65487
etag: "c3b915cb579b651db25442fea0bbedd0d292c0fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3801236dc22938e1cc18947e90ea5326
5979d7dc3ba0eb61947282a4adeac8208b4148ae
3bd4eab29590ec3c316597abd2be65281cd9a6137add037ad57c093f1fca12e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5995
x-amzn-requestid: 25b34277-c486-4642-aea7-21e0598babc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzOGGjoAMF4kw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e1-6f43ab8e0c1a5260327bce11;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzpOZW9e-54LuSSOigtmFRb0sUGpIRpqZ-UtINp-B_Uzk6lFPnb6dw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:22:39 GMT
age: 200
etag: "5979d7dc3ba0eb61947282a4adeac8208b4148ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9257f2e3b9bd1b3aa262b0f4bf57968
4bcdd6ecd63834aa1010faf19457a97f37ae99fa
9afd592279c51b533b3bf72a860cf4a8f2bc6cf01b07d1ab6f11f0ff302e0ef6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feeb81330-af0b-4cc3-bd0e-591ba064667a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7392
x-amzn-requestid: f4b6890a-7a8f-48f8-b2af-365cb5f681e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpwREFiXoAMFSMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d60d3-009e524f30c72d0629c877bb;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 03:09:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C0-H0LUbxaxMEXoDf6PXEFAvVTj2D9K2M7eshRo39QzAAWSk2ubepA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 03:27:19 GMT
age: 68320
etag: "4bcdd6ecd63834aa1010faf19457a97f37ae99fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 42bdfac4b74435a3d8add640fc703403
e1a183562d91f7cec147112026b6d9d904533ed1
4366d9c119721babbd7188548e8885917a1c011f1cf828dceef088140e8fe8c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.134200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.134:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 22:21:04 GMT
expires: Wed, 07 Dec 2022 22:36:04 GMT
cache-control: public, max-age=900
age: 295
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
142.250.74.162302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Wed, 07 Dec 2022 22:25:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 42bdfac4b74435a3d8add640fc703403
e1a183562d91f7cec147112026b6d9d904533ed1
4366d9c119721babbd7188548e8885917a1c011f1cf828dceef088140e8fe8c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 81a7e0ed8b45460991a7d9b719423d48
fa4824b64d5484b955cecebbeea06710ced4fba5
2fb356139722003d5c83566b936968a5ce9ba3756f69ace50a53bea6c1b9f7eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
image.tmdb.org/t/p/w185/gfDdVjCx5Nsfxv9p0OCy05mQdaV.jpg
138.199.37.231404 Not Found 4.4 kB URL HTTP/2 image.tmdb.org/t/p/w185/gfDdVjCx5Nsfxv9p0OCy05mQdaV.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (317)
Hash 10a84cd80d57fea5d618c2594cb5c67f
01ad94a73405da77e693b4be51fabf17d57112ff
612ec133a4960c9cdb6a8e79bfad0a6737fd30efe1682067a67017ade5addd70
GET /t/p/w185/gfDdVjCx5Nsfxv9p0OCy05mQdaV.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 11:07:45
cdn-edgestorageid: 755
cdn-status: 404
cdn-requestid: fcc61f51598175cd1599b4283a958025
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id?slf_rd=1
142.250.74.162200 OK 120 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id?slf_rd=1
IP 142.250.74.162:0
Hash a3df6620065d5c3dcf3d058e10164d84
2e8e36fa6f12503e00122aa31a2b9e851b3d68d9
2046c814ec2c0a5c789fb8f19103bee87bb19a6f2fc0eb5d8a599c9784307436
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Wed, 07 Dec 2022 22:25:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e4b8e7040eebfb8e185403768fb073e9
2fbc724eb611397e01e37de80777d90050353e5c
8c3043c549ed118aabb47a3893a121b1ef98db5e50d41b38f9602509c95ae050
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8C3043C549ED118AABB47A3893A121B1EF98DB5E50D41B38F9602509C95AE050"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4860
Expires: Wed, 07 Dec 2022 23:46:59 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
tzegilo.com/stattag.js
104.21.84.149200 OK 42 kB IP 104.21.84.149:0
File type ASCII text, with very long lines (12966), with no line terminators
Hash e005ccf08c647e8904928a71dcb2665e
368f97c8e1fd09f2742f80a5b3c8808c22f8932f
d8ad7a5b3a59ba411deae155d1e237b4e8e126eae9e515d7db19c0f950612442
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 7078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oE0ztZtAwFFbxm438tSNuL1t43F0NhyNSkfsepDKeGtereMMR4wyGkLFRMEboMvSRLmqrSN2k3BMcc5RQUeHDsTsFyfN25CeW5wHpStljVAxWhhYQXnG7Y7tPkCQOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae2b6ce40b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3148a5e77464b1ff351a927020a149a6
ae96fba0e792ec4e6b46f667f8d9b235fc91d580
09d12ab58323d7e0457464b8d8a8e71474941bee901ad52142e75c064098c0e3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "09D12AB58323D7E0457464B8D8A8E71474941BEE901AD52142E75C064098C0E3"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8261
Expires: Thu, 08 Dec 2022 00:43:40 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash ccd3659f545fc94e190b8c11e114d743
cedc2e3f3f6a64c6b61f885e59fff2a423eeda3f
35cbe80420a33499be2ef673055327170fca5b572ed9057e88dd86cabd77618d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:25:59 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 06 Dec 2022 17:29:12 GMT
Expires: Tue, 13 Dec 2022 17:29:11 GMT
Etag: "cedc2e3f3f6a64c6b61f885e59fff2a423eeda3f"
Cache-Control: max-age=499991,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7760ae2aac110b55-OSL
cdn.itskiddien.club/apu.php?zoneid=3388947
139.45.197.236200 OK 968 B URL HTTP/2 cdn.itskiddien.club/apu.php?zoneid=3388947
IP 139.45.197.236:0
File type ASCII text, with very long lines (801)
Hash e60f431678ffc257af03dd93558a773a
d1bb362e6068038d857c5878b3903913ff710409
e32ef06f528bddea4b27adec9ea4267365784dc4fa903b1f8f347aaff3a65167
GET /apu.php?zoneid=3388947 HTTP/1.1
Host: cdn.itskiddien.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: application/javascript
content-length: 968
x-trace-id: 3facc7efe3165f0e25e99a8eca2ef68d
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=57929865b4824fb3b69ee36c3551932e; expires=Thu, 07 Dec 2023 22:25:59 GMT; path=/; secure; SameSite=None
oaidts=1670451959; expires=Thu, 07 Dec 2023 22:25:59 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.42200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 14a1be1ccfdf4b17a1d48db23c15249b
ee5e8083efb080d7867a92ebbfc616a1bf196325
427b297ff8278dadf9e6ea4b5463c321e2b5690bd6496c0551592a6a5094bea2
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 07 Dec 2022 22:25:59 GMT
server: ESF
cache-control: private
content-length: 31127
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash b68c0834f3bbe7a04e7cf0b08619a7b2
c029463e9bbf3bdc8744556153a185cb7dde13a9
2ffc47ad25ff74f4fd72c9d409b602e23adc558e1408775ea5bcab6e51110849
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1624
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:59 GMT
Last-Modified: Wed, 07 Dec 2022 21:58:55 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 313
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash acea7cb44141792f5d84b0c9ab8c57e4
69f1e46739200324bd891063d17c7a7083f313b7
4c0d144b20ab8cf7fec972a66e08ed2b993121e9c4b6c88bbf0f3e7388f2b058
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C0D144B20AB8CF7FEC972A66E08ED2B993121E9C4B6C88BBF0F3E7388F2B058"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9784
Expires: Thu, 08 Dec 2022 01:09:03 GMT
Date: Wed, 07 Dec 2022 22:25:59 GMT
Connection: keep-alive
pushagim.com/zone?pub=0&zone_id=3482084&is_mobile=false&domain=uqload.com&var=&ymid=&var_3=
139.45.197.250200 OK 180 B URL HTTP/2 pushagim.com/zone?pub=0&zone_id=3482084&is_mobile=false&domain=uqload.com&var=&ymid=&var_3=
IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash a05e130e2ed5a977231be4ec211bf860
e14ab29820075937870bbe4ff321cd6b836e8550
5b44a3a80a8754c7c8eb45d4b3a6d99d9b3e029c0804c68d900cf5ac44c7b7c0
GET /zone?pub=0&zone_id=3482084&is_mobile=false&domain=uqload.com&var=&ymid=&var_3= HTTP/1.1
Host: pushagim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uqload.com/
Origin: https://uqload.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: application/json; charset=utf-8
content-length: 180
x-trace-id: ba8048aa26925d5e42935b237d4cd54d
access-control-allow-origin: https://uqload.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/JNJj-Xek6-M
IP 142.250.74.131:0
Hash 0574554eeced9a54b5af9af033c7a085
0535f701d8d4823e26cf8d5d19859b5ec43d5fb8
29688d8cf321fca783808603849bfd935529be2ce66fb62b65b4aff6d6defe90
POST /s/gts1p5/JNJj-Xek6-M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:25:59 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.rtmark.net/gid.js?pub=0&userId=&zoneId=3482084&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=&zoneId=3482084&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 929fca7585db3fc7f8b70d022322b387
d9d410773d84c44aea110430ce72f6871a4d6ccc
48c889d2a151c1ad469581b4500490dea0186b813628b4f97d84b07cafd7b1cf
GET /gid.js?pub=0&userId=&zoneId=3482084&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uqload.com/
Origin: https://uqload.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://uqload.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=935b38d0076240bcba9c278dbd5a2dde; expires=Thu, 07 Dec 2023 22:25:59 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=c1f04c81d62ee16609791459408dc7143c15d2c7
104.244.42.136200 OK 386 B URL HTTP/2 syndication.twitter.com/settings?session_id=c1f04c81d62ee16609791459408dc7143c15d2c7
IP 104.244.42.136:0
File type JSON data\012- , ASCII text, with very long lines (980), with no line terminators
Hash d8191391c888619de075f6e68400d5d0
c50e4465150fa960db0be7c1eb5907a5f96eb5ed
115d700c917d36ef2d666d1c634f3b77413b2bccb78266bdba043b318009f773
GET /settings?session_id=c1f04c81d62ee16609791459408dc7143c15d2c7 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:59 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 07 Dec 2022 22:25:59 GMT
content-length: 386
content-encoding: gzip
x-transaction-id: b130d4c7fa4e3639
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 108
x-connection-hash: 683c676dc79ee322ed9b562b8c65c7fb4380c6d77db41f39f1ba11d30fc5fcab
X-Firefox-Spdy: h2
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 929fca7585db3fc7f8b70d022322b387
d9d410773d84c44aea110430ce72f6871a4d6ccc
48c889d2a151c1ad469581b4500490dea0186b813628b4f97d84b07cafd7b1cf
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uqload.com
Connection: keep-alive
Referer: https://uqload.com/
Cookie: ID=935b38d0076240bcba9c278dbd5a2dde
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:26:00 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://uqload.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=935b38d0076240bcba9c278dbd5a2dde; expires=Thu, 07 Dec 2023 22:26:00 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
iceboxlitre.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReuzs4PP3rR1YvgYRAUBZl0z0wnM%2B5hMa6RYEzi7mrO1VXVkzLVXU1V9%2FQkp%2Bii7MHDCB7UU%2BebZINrEPfoQZGJlyUobF8k4MaDJ4%2BLsHqUnh0YfdDvfa%2B%2Fd%2Fi%2B9%2Bqj%2FeycuMjo2cZbelcqRef9hlt%2FcVPGXOe2vna97rkN91J9U8YL7Uv1QZVM%2FxXP9RvuS%2FU3BNvW803Xc13P9erL0ohQD%2BYnLGRy3PUaXbfRbjY8v42B%2BW9vMweWOuD9c3IRkpf%2F27p7B5KNEUffXBF2O9XJy69HmaKpNujzo3fi7VjnMaIZDI2DMD6aTkPbkpDP5qDjo6kD6P5B5QCBLInzi4cgPprKRNA%2FfKQ0UBAxAv448v4YQo0h6RhM34Dk9wjAONbWEUe31rTJ6c4jllZsSWoP%2F4TMS1K7%2FzTi6OslJQf1a1plqdSxxSAsIAdjyN4YSXaCdNeBzE%2FA0g8g%2Bc9k%2FuEq4uhg3SoNyYuJeynHkOEYSgxBrYOs%2BqSDLHSQJQ4iflanfjd03cUwCFutTpsx1mox5ncWuM9b7U7oImOVvCHSZAimhmBmD4nZw7YcwmQ%2FwG4VsNyBTUvivL2HPi%2BQC4LcEuSUIJcEeUqQ94tDrmzTFre4slngTWtzWlvFSKe9fXqo056IyX5yTp6c7OVB7Xdsi7O68DssbC%2BILmuGfouF7dD3aOCyTthpu57vw8oC0s5NrO7Kkjz17gMksiRzw28R0BNYdQImHdDMA81Hi00XdGvU7rjYjY97hqahkoOGNj1wXSBJa0h3nH11Tp6Z6Hjuwn0Idnr59rPH%2F%2Fde%2BAPMFEhMgffkjwQ9dXN0Vefk4KrOLbmznqQykru0ut21lKbiwu03xU6uDV%2B5YodfvsoqooLH14VNV2nMZdyz5Kslybkwy9owQb5bsZsi2Mjs1lJm4ixZ3XhteSVKjLBW6ngMKu%2Bt%2Fw0mS1J7%2F%2FvJq3zipw8hzRgmKxBlp2QakPoELNmDTWbqrSYwajYTJA7yrBiZZjD7qSSBErOeBgXsv%2FpghvftTfRMDTS9gTgq0DcF%2BqoAVUPY7LFRmpjTy3c%2Fr%2BILBKo2CpSpHQTKqE8nq63SryWpP%2F9xhX6DldXFQzcUblMEYTcIF6nLu2G7G9CuJxYDn3pIbck%2BufjXPwAAAP%2F%2FAQAA%2F%2F91MvJSfAQAAA%3D%3D
173.233.139.164200 OK 7 B URL HTTP/1.1 iceboxlitre.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReuzs4PP3rR1YvgYRAUBZl0z0wnM%2B5hMa6RYEzi7mrO1VXVkzLVXU1V9%2FQkp%2Bii7MHDCB7UU%2BebZINrEPfoQZGJlyUobF8k4MaDJ4%2BLsHqUnh0YfdDvfa%2B%2Fd%2Fi%2B9%2Bqj%2FeycuMjo2cZbelcqRef9hlt%2FcVPGXOe2vna97rkN91J9U8YL7Uv1QZVM%2FxXP9RvuS%2FU3BNvW803Xc13P9erL0ohQD%2BYnLGRy3PUaXbfRbjY8v42B%2BW9vMweWOuD9c3IRkpf%2F27p7B5KNEUffXBF2O9XJy69HmaKpNujzo3fi7VjnMaIZDI2DMD6aTkPbkpDP5qDjo6kD6P5B5QCBLInzi4cgPprKRNA%2FfKQ0UBAxAv448v4YQo0h6RhM34Dk9wjAONbWEUe31rTJ6c4jllZsSWoP%2F4TMS1K7%2FzTi6OslJQf1a1plqdSxxSAsIAdjyN4YSXaCdNeBzE%2FA0g8g%2Bc9k%2FuEq4uhg3SoNyYuJeynHkOEYSgxBrYOs%2BqSDLHSQJQ4iflanfjd03cUwCFutTpsx1mox5ncWuM9b7U7oImOVvCHSZAimhmBmD4nZw7YcwmQ%2FwG4VsNyBTUvivL2HPi%2BQC4LcEuSUIJcEeUqQ94tDrmzTFre4slngTWtzWlvFSKe9fXqo056IyX5yTp6c7OVB7Xdsi7O68DssbC%2BILmuGfouF7dD3aOCyTthpu57vw8oC0s5NrO7Kkjz17gMksiRzw28R0BNYdQImHdDMA81Hi00XdGvU7rjYjY97hqahkoOGNj1wXSBJa0h3nH11Tp6Z6Hjuwn0Idnr59rPH%2F%2Fde%2BAPMFEhMgffkjwQ9dXN0Vefk4KrOLbmznqQykru0ut21lKbiwu03xU6uDV%2B5YodfvsoqooLH14VNV2nMZdyz5Kslybkwy9owQb5bsZsi2Mjs1lJm4ixZ3XhteSVKjLBW6ngMKu%2Bt%2Fw0mS1J7%2F%2FvJq3zipw8hzRgmKxBlp2QakPoELNmDTWbqrSYwajYTJA7yrBiZZjD7qSSBErOeBgXsv%2FpghvftTfRMDTS9gTgq0DcF%2BqoAVUPY7LFRmpjTy3c%2Fr%2BILBKo2CpSpHQTKqE8nq63SryWpP%2F9xhX6DldXFQzcUblMEYTcIF6nLu2G7G9CuJxYDn3pIbck%2BufjXPwAAAP%2F%2FAQAA%2F%2F91MvJSfAQAAA%3D%3D
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReuzs4PP3rR1YvgYRAUBZl0z0wnM%2B5hMa6RYEzi7mrO1VXVkzLVXU1V9%2FQkp%2Bii7MHDCB7UU%2BebZINrEPfoQZGJlyUobF8k4MaDJ4%2BLsHqUnh0YfdDvfa%2B%2Fd%2Fi%2B9%2Bqj%2FeycuMjo2cZbelcqRef9hlt%2FcVPGXOe2vna97rkN91J9U8YL7Uv1QZVM%2FxXP9RvuS%2FU3BNvW803Xc13P9erL0ohQD%2BYnLGRy3PUaXbfRbjY8v42B%2BW9vMweWOuD9c3IRkpf%2F27p7B5KNEUffXBF2O9XJy69HmaKpNujzo3fi7VjnMaIZDI2DMD6aTkPbkpDP5qDjo6kD6P5B5QCBLInzi4cgPprKRNA%2FfKQ0UBAxAv448v4YQo0h6RhM34Dk9wjAONbWEUe31rTJ6c4jllZsSWoP%2F4TMS1K7%2FzTi6OslJQf1a1plqdSxxSAsIAdjyN4YSXaCdNeBzE%2FA0g8g%2Bc9k%2FuEq4uhg3SoNyYuJeynHkOEYSgxBrYOs%2BqSDLHSQJQ4iflanfjd03cUwCFutTpsx1mox5ncWuM9b7U7oImOVvCHSZAimhmBmD4nZw7YcwmQ%2FwG4VsNyBTUvivL2HPi%2BQC4LcEuSUIJcEeUqQ94tDrmzTFre4slngTWtzWlvFSKe9fXqo056IyX5yTp6c7OVB7Xdsi7O68DssbC%2BILmuGfouF7dD3aOCyTthpu57vw8oC0s5NrO7Kkjz17gMksiRzw28R0BNYdQImHdDMA81Hi00XdGvU7rjYjY97hqahkoOGNj1wXSBJa0h3nH11Tp6Z6Hjuwn0Idnr59rPH%2F%2Fde%2BAPMFEhMgffkjwQ9dXN0Vefk4KrOLbmznqQykru0ut21lKbiwu03xU6uDV%2B5YodfvsoqooLH14VNV2nMZdyz5Kslybkwy9owQb5bsZsi2Mjs1lJm4ixZ3XhteSVKjLBW6ngMKu%2Bt%2Fw0mS1J7%2F%2FvJq3zipw8hzRgmKxBlp2QakPoELNmDTWbqrSYwajYTJA7yrBiZZjD7qSSBErOeBgXsv%2FpghvftTfRMDTS9gTgq0DcF%2BqoAVUPY7LFRmpjTy3c%2Fr%2BILBKo2CpSpHQTKqE8nq63SryWpP%2F9xhX6DldXFQzcUblMEYTcIF6nLu2G7G9CuJxYDn3pIbck%2BufjXPwAAAP%2F%2FAQAA%2F%2F91MvJSfAQAAA%3D%3D HTTP/1.1
Host: iceboxlitre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Cookie: u_pl=15795427; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlece58cf46e9c2f53cf4f51ab0c8f840155=[2229213,2229212,2106764,2229215]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 79bd56adcaad7e6d293e0778862d4fa6
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg
45.133.44.10200 OK 23 kB URL HTTP/1.1 cdn.cloudimagesb.com/cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash c6f19781c79ff746b99178f813cfbff2
5c307e43c63001535aa3a3683777dbb1a7f0775b
816b5a5d078f27271fa2d7c210d708f386a6f9fbd9242531b07f0b051382870d
GET /cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: image/jpeg
Content-Length: 22883
Connection: keep-alive
Server: nginx/1.17.6
Last-Modified: Tue, 10 Aug 2021 09:15:16 GMT
ETag: "611243a4-5963"
Expires: Fri, 09 Dec 2022 22:26:00 GMT
Cache-Control: max-age=172800
X-Proxy-Cache: HIT
Accept-Ranges: bytes
cdn.cloudimagesb.com/cti/29/eb/08/29eb08c32bad57ff8c8e14af3a16e9c1/1628586955.jpg
45.133.44.10200 OK 23 kB URL HTTP/1.1 cdn.cloudimagesb.com/cti/29/eb/08/29eb08c32bad57ff8c8e14af3a16e9c1/1628586955.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash 4452445afb73fab8af9ff308eb667024
130401c47d822426e1cce9981c30d775cba1b576
923b0ac505decd181f473f1fa460f21590777993c3581723f127b032d8c45bdd
GET /cti/29/eb/08/29eb08c32bad57ff8c8e14af3a16e9c1/1628586955.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: image/jpeg
Content-Length: 22987
Connection: keep-alive
Server: nginx/1.17.6
Last-Modified: Tue, 10 Aug 2021 09:16:05 GMT
ETag: "611243d5-59cb"
Expires: Fri, 09 Dec 2022 22:26:00 GMT
Cache-Control: max-age=172800
X-Proxy-Cache: HIT
Accept-Ranges: bytes
cdn.cloudimagesb.com/cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg
45.133.44.10200 OK 29 kB URL HTTP/1.1 cdn.cloudimagesb.com/cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash 76f54f42b70d14a6d6bfe2f8b1945265
197daa3737be8968bf39ff28000663c1c17deeb2
c864fde3026e05a2cc34b4348fa4888d3ae44202179277877d082cadd9971abc
GET /cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: image/jpeg
Content-Length: 28852
Connection: keep-alive
Server: nginx/1.17.6
Last-Modified: Tue, 10 Aug 2021 09:18:59 GMT
ETag: "61124483-70b4"
Expires: Fri, 09 Dec 2022 22:26:00 GMT
Cache-Control: max-age=172800
X-Proxy-Cache: HIT
Accept-Ranges: bytes
cdn.cloudimagesb.com/cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg
45.133.44.10200 OK 30 kB URL HTTP/1.1 cdn.cloudimagesb.com/cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash a87779ccaaa4021b0b4f33812742679a
87322480f885dc0b6463c182b7bdb3eb60ab2592
a8f8dbc930527f94496d5a9883b6034e27a673090a89b518596d6e2b656df96f
GET /cti/51/bb/80/51bb807c8b914e3cc08eace2b0587473/1628586935.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: image/jpeg
Content-Length: 30127
Connection: keep-alive
Server: nginx/1.17.6
Last-Modified: Tue, 10 Aug 2021 09:15:44 GMT
ETag: "611243c0-75af"
Expires: Fri, 09 Dec 2022 22:26:00 GMT
Cache-Control: max-age=172800
X-Proxy-Cache: HIT
Accept-Ranges: bytes
sweptpeculiar.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuuzubjEz25eBEU5%2BQPlEn39Ewms4sE4xoJxiTuruRcXVU9KVNd1VR1T09ykOCCLHhw9uax80yywXVZ3eMeFJ14kYBge9AczB%2BxC%2BtVZjIQfaH7faqet%2BB53vf9fD8%2FIz5yerrxodmVStG5Vt2vvb4pNTeFq63drAV%2B3b9a25R6vnm11h%2F%2FbO9K4Lfq%2Fhu19wXbNnMNP%2FD9wA9qy9KK2PTnJixker8T1Dt%2BvdmoB60m%2Bva%2FZ5d7cNQD752Ry5C8%2Bt%2FWLw8h2Qg6%2Be6acNuZSd96L8kVzYxFjx99rLe1KTSSCxhbD7E%2BmlbDuIqQr2Zg9NHUAUzvYOwAkayI90eASB9NZSLqHZ4rjRSERsSfQ9EbQagRJB2BmVuQ%2FDcCMI61dejk7pqxBd05Z%2BmYrcjs0yeQRUVm%2F3oBOnmwpGS%2FdsOoPJNGO%2FTjErI%2FguyOkObHyHY9yOIYLPsMkv9K5p6uQicH604ZSF5O3Es5goxHUGIA6jzk4096yGMPeeoh4ac12urEvt%2BOozgMF5qMsTBkrLUwz1s8bC7EPnI2ljdAlg7A1ADM7iG1e9iWA9j8R7itEo57cFlFvI%2F20OMlCkFQOIKCEhSSoMgIil55yJVruPIuVy6PgmluTHNYDk3W3aeHJusKTfbTM%2FL8uC%2Fe%2F396E9vitLbQCBvzLc78TrMdBaEQoWDtoBPTZiRYPN%2BCkyWkm5lY3ZUVecl8ilRWZGbwCBE9hlPHYNIDzV8GLYbthg%2B6NWwu%2BNjVD5hhxmVW0KSuRQZuSqTZLLIdb1%2BdkRcnE7pSfgvBThYfx5MAsyVSW%2BIT%2BTNBV90eXjcFObhuCkcerqeZTOQuHU%2FvRkYzceneB2KnMJavXHODr99hY2IM798ULlulmkvddeSbJcm5sMvGMkG%2BX3GbItrI3dZSbnWerm68u7ySpFY4J40egY438Zm3wWRFni3%2FnGzmK%2BILSDuCzUsk%2BQmZBqQ5Bkv34NIL%2Fc4QWHVRE6Ueirwc2kZ0calkRcJXH0OJk8VHP3z55LV7EjQq4cS%2FHl7gfXcbXeuBZregkxI9W6KnSlA1gMsvDbPUniz%2BHk4CkfKGkbLeQaSsunPeYCdPa6IV%2B7HwGyKKO1Hcpj7vxM1ORDuBaEctGiBzFbtz%2Be9%2FAAAA%2F%2F8BAAD%2F%2FxjhSBN1BAAA
192.243.59.13200 OK 7 B URL HTTP/1.1 sweptpeculiar.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuuzubjEz25eBEU5%2BQPlEn39Ewms4sE4xoJxiTuruRcXVU9KVNd1VR1T09ykOCCLHhw9uax80yywXVZ3eMeFJ14kYBge9AczB%2BxC%2BtVZjIQfaH7faqet%2BB53vf9fD8%2FIz5yerrxodmVStG5Vt2vvb4pNTeFq63drAV%2B3b9a25R6vnm11h%2F%2FbO9K4Lfq%2Fhu19wXbNnMNP%2FD9wA9qy9KK2PTnJixker8T1Dt%2BvdmoB60m%2Bva%2FZ5d7cNQD752Ry5C8%2Bt%2FWLw8h2Qg6%2Be6acNuZSd96L8kVzYxFjx99rLe1KTSSCxhbD7E%2BmlbDuIqQr2Zg9NHUAUzvYOwAkayI90eASB9NZSLqHZ4rjRSERsSfQ9EbQagRJB2BmVuQ%2FDcCMI61dejk7pqxBd05Z%2BmYrcjs0yeQRUVm%2F3oBOnmwpGS%2FdsOoPJNGO%2FTjErI%2FguyOkObHyHY9yOIYLPsMkv9K5p6uQicH604ZSF5O3Es5goxHUGIA6jzk4096yGMPeeoh4ac12urEvt%2BOozgMF5qMsTBkrLUwz1s8bC7EPnI2ljdAlg7A1ADM7iG1e9iWA9j8R7itEo57cFlFvI%2F20OMlCkFQOIKCEhSSoMgIil55yJVruPIuVy6PgmluTHNYDk3W3aeHJusKTfbTM%2FL8uC%2Fe%2F396E9vitLbQCBvzLc78TrMdBaEQoWDtoBPTZiRYPN%2BCkyWkm5lY3ZUVecl8ilRWZGbwCBE9hlPHYNIDzV8GLYbthg%2B6NWwu%2BNjVD5hhxmVW0KSuRQZuSqTZLLIdb1%2BdkRcnE7pSfgvBThYfx5MAsyVSW%2BIT%2BTNBV90eXjcFObhuCkcerqeZTOQuHU%2FvRkYzceneB2KnMJavXHODr99hY2IM798ULlulmkvddeSbJcm5sMvGMkG%2BX3GbItrI3dZSbnWerm68u7ySpFY4J40egY438Zm3wWRFni3%2FnGzmK%2BILSDuCzUsk%2BQmZBqQ5Bkv34NIL%2Fc4QWHVRE6Ueirwc2kZ0calkRcJXH0OJk8VHP3z55LV7EjQq4cS%2FHl7gfXcbXeuBZregkxI9W6KnSlA1gMsvDbPUniz%2BHk4CkfKGkbLeQaSsunPeYCdPa6IV%2B7HwGyKKO1Hcpj7vxM1ORDuBaEctGiBzFbtz%2Be9%2FAAAA%2F%2F8BAAD%2F%2FxjhSBN1BAAA
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuuzubjEz25eBEU5%2BQPlEn39Ewms4sE4xoJxiTuruRcXVU9KVNd1VR1T09ykOCCLHhw9uax80yywXVZ3eMeFJ14kYBge9AczB%2BxC%2BtVZjIQfaH7faqet%2BB53vf9fD8%2FIz5yerrxodmVStG5Vt2vvb4pNTeFq63drAV%2B3b9a25R6vnm11h%2F%2FbO9K4Lfq%2Fhu19wXbNnMNP%2FD9wA9qy9KK2PTnJixker8T1Dt%2BvdmoB60m%2Bva%2FZ5d7cNQD752Ry5C8%2Bt%2FWLw8h2Qg6%2Be6acNuZSd96L8kVzYxFjx99rLe1KTSSCxhbD7E%2BmlbDuIqQr2Zg9NHUAUzvYOwAkayI90eASB9NZSLqHZ4rjRSERsSfQ9EbQagRJB2BmVuQ%2FDcCMI61dejk7pqxBd05Z%2BmYrcjs0yeQRUVm%2F3oBOnmwpGS%2FdsOoPJNGO%2FTjErI%2FguyOkObHyHY9yOIYLPsMkv9K5p6uQicH604ZSF5O3Es5goxHUGIA6jzk4096yGMPeeoh4ac12urEvt%2BOozgMF5qMsTBkrLUwz1s8bC7EPnI2ljdAlg7A1ADM7iG1e9iWA9j8R7itEo57cFlFvI%2F20OMlCkFQOIKCEhSSoMgIil55yJVruPIuVy6PgmluTHNYDk3W3aeHJusKTfbTM%2FL8uC%2Fe%2F396E9vitLbQCBvzLc78TrMdBaEQoWDtoBPTZiRYPN%2BCkyWkm5lY3ZUVecl8ilRWZGbwCBE9hlPHYNIDzV8GLYbthg%2B6NWwu%2BNjVD5hhxmVW0KSuRQZuSqTZLLIdb1%2BdkRcnE7pSfgvBThYfx5MAsyVSW%2BIT%2BTNBV90eXjcFObhuCkcerqeZTOQuHU%2FvRkYzceneB2KnMJavXHODr99hY2IM798ULlulmkvddeSbJcm5sMvGMkG%2BX3GbItrI3dZSbnWerm68u7ySpFY4J40egY438Zm3wWRFni3%2FnGzmK%2BILSDuCzUsk%2BQmZBqQ5Bkv34NIL%2Fc4QWHVRE6Ueirwc2kZ0calkRcJXH0OJk8VHP3z55LV7EjQq4cS%2FHl7gfXcbXeuBZregkxI9W6KnSlA1gMsvDbPUniz%2BHk4CkfKGkbLeQaSsunPeYCdPa6IV%2B7HwGyKKO1Hcpj7vxM1ORDuBaEctGiBzFbtz%2Be9%2FAAAA%2F%2F8BAAD%2F%2FxjhSBN1BAAA HTTP/1.1
Host: sweptpeculiar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Cookie: u_pl=17285419; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec823265dc0947b13ee3ec719fa4becf65=[3842223]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 627f84cae089723a43e921f07e7132d7
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 200fbab5e89aa7def1734122074b4394
5d14c5617b8c4901253e37177d9b7e9c7caadc54
a71b25190bb6ff84eeca8da0a090a7f51e6c703f190efb94bec0dd7ab5f272da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A71B25190BB6FF84EECA8DA0A090A7F51E6C703F190EFB94BEC0DD7AB5F272DA"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8329
Expires: Thu, 08 Dec 2022 00:44:49 GMT
Date: Wed, 07 Dec 2022 22:26:00 GMT
Connection: keep-alive
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 07 Dec 2022 22:26:00 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 36f1e49c3bdeda15408a6f36c440be82
4c4dfd446bba9e9b315504514498f2b28538cc2e
7c8f91838f7b9194933317395f552b9e5459b5d8dec8f06dd1c1e41bc6124c90
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 05 Dec 2022 00:52:19 GMT
Expires: Mon, 12 Dec 2022 00:52:18 GMT
Etag: "4c4dfd446bba9e9b315504514498f2b28538cc2e"
Cache-Control: max-age=353777,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7760ae301fbb0b55-OSL
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.42200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.42:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8535db3e4c82fcfd86f58c340cd7ead1
e4835136bf168e618815adbbb8a012afd8ef8988
31036322186067557eeaf49d5672012f0b8dde49bf19a4fd3228ee6d046caf5f
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1251
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 07 Dec 2022 22:26:00 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
iceboxlitre.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2gkxRut3p0f%2FNCLrl4ED4OgKMike2Y6mXEPi3GNBGMSd1dzrq6qnpSp7mqquqcnOUUXdA8eRvCgnjpvkg2uQdyjB0UmXpagsH2RgBsPnjwuwupRejIw%2BkF%2Ff%2Fp9h%2FfeVx%2FuZWfERUZP19%2FSO1IpOuc33PqLGzLmOrf11Rt1z224l%2BsbMp5vX64PqmT6r3iu33Bfqr8h2Jaea7qe63quV1%2BSRoR6MDdBIZOjrtfouo12s%2BH5bQzMf2ebObDUAe%2BfkUuQvPzf5r27kGyMOPrmqrBbqU5efj3KFE21QZ8fvhNvxTqPEc3a0DgI48PpNrQtCfnsAnR8OFUA3d%2BvFCCQJXF%2B8RDEh1OaCPoH50wDBREj4I8j748h1BiSjsH0TUh%2BnwCMY3UNcXR7VZucbp%2BjtEJLUnv0J2RektqDpxFHXy8qOahf1ypLpY4tBmEBORhD9sZIsmOkOw5kfgyWfgDJfyZzj1YQR%2FtrVmlIXkzUSzmGDMdQYghqHWTVJx1koYMscRDx0zr1u6HrLoRB2Gp12oyxVosxvzPPfd5qd0IXGavoDZEmQzA1BDO7SMwutuQQJvsBdrOA5Q5sWhLn7V30eYFcEOSWIKcEuSTIU4K8XxxwZZu2uM2VzQJvWpvT2ipGOu3t0QOd9kRM9pIz8uTEl4e137ElTuvC77CwPS%2B6rBn6LRa2Q9%2Bjgcs6Yafter4PKwtIe2EidUeW5Kl3HyKRJbkw%2FBYBPYZVx2DSAc080Hy00HRBN0ftjoud%2BKhnaBoqOWho0wPXBZK0hnTb2VNn5JkJj%2Bcu%2FgbBTq7cefbo%2F94Lf4CZAokp8J78kaCnbo2u6ZzsX9O5JXfXklRGcodWt7ue0lRcvPOm2M614ctX7fDLV1kFVO3RDWHTFRpzGfcs%2BWpRci7MkjZMkO%2BW7YYI1jO7uZiZOEtW1l9bWo4SI6yVOh6Dyvtrf4PJktTe%2F37yKp%2F46SNIM4bJCkTZCZkGpD4GS3Zhkxl7qwmMmu0ESQ15VoxMM5j9VJJAidlMgwL2X3Mw6%2FfsLfRMDTS9iTgq0DcF%2BqoAVUPY7LFRmpiTK%2Fc%2Br%2BILBKo2CpSp7QfKqE8rax9U6deS1J%2F%2F%2BNxpK6uLh24o3KYIwm4QLlCXd8N2N6BdTywEPvWQ2pJ9cumvfwAAAP%2F%2FAQAA%2F%2F9Wr8EUfAQAAA%3D%3D
173.233.139.164200 OK 7 B URL HTTP/1.1 iceboxlitre.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST2gkxRut3p0f%2FNCLrl4ED4OgKMike2Y6mXEPi3GNBGMSd1dzrq6qnpSp7mqquqcnOUUXdA8eRvCgnjpvkg2uQdyjB0UmXpagsH2RgBsPnjwuwupRejIw%2BkF%2Ff%2Fp9h%2FfeVx%2FuZWfERUZP19%2FSO1IpOuc33PqLGzLmOrf11Rt1z224l%2BsbMp5vX64PqmT6r3iu33Bfqr8h2Jaea7qe63quV1%2BSRoR6MDdBIZOjrtfouo12s%2BH5bQzMf2ebObDUAe%2BfkUuQvPzf5r27kGyMOPrmqrBbqU5efj3KFE21QZ8fvhNvxTqPEc3a0DgI48PpNrQtCfnsAnR8OFUA3d%2BvFCCQJXF%2B8RDEh1OaCPoH50wDBREj4I8j748h1BiSjsH0TUh%2BnwCMY3UNcXR7VZucbp%2BjtEJLUnv0J2RektqDpxFHXy8qOahf1ypLpY4tBmEBORhD9sZIsmOkOw5kfgyWfgDJfyZzj1YQR%2FtrVmlIXkzUSzmGDMdQYghqHWTVJx1koYMscRDx0zr1u6HrLoRB2Gp12oyxVosxvzPPfd5qd0IXGavoDZEmQzA1BDO7SMwutuQQJvsBdrOA5Q5sWhLn7V30eYFcEOSWIKcEuSTIU4K8XxxwZZu2uM2VzQJvWpvT2ipGOu3t0QOd9kRM9pIz8uTEl4e137ElTuvC77CwPS%2B6rBn6LRa2Q9%2Bjgcs6Yafter4PKwtIe2EidUeW5Kl3HyKRJbkw%2FBYBPYZVx2DSAc080Hy00HRBN0ftjoud%2BKhnaBoqOWho0wPXBZK0hnTb2VNn5JkJj%2Bcu%2FgbBTq7cefbo%2F94Lf4CZAokp8J78kaCnbo2u6ZzsX9O5JXfXklRGcodWt7ue0lRcvPOm2M614ctX7fDLV1kFVO3RDWHTFRpzGfcs%2BWpRci7MkjZMkO%2BW7YYI1jO7uZiZOEtW1l9bWo4SI6yVOh6Dyvtrf4PJktTe%2F37yKp%2F46SNIM4bJCkTZCZkGpD4GS3Zhkxl7qwmMmu0ESQ15VoxMM5j9VJJAidlMgwL2X3Mw6%2FfsLfRMDTS9iTgq0DcF%2BqoAVUPY7LFRmpiTK%2Fc%2Br%2BILBKo2CpSp7QfKqE8rax9U6deS1J%2F%2F%2BNxpK6uLh24o3KYIwm4QLlCXd8N2N6BdTywEPvWQ2pJ9cumvfwAAAP%2F%2FAQAA%2F%2F9Wr8EUfAQAAA%3D%3D
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST2gkxRut3p0f%2FNCLrl4ED4OgKMike2Y6mXEPi3GNBGMSd1dzrq6qnpSp7mqquqcnOUUXdA8eRvCgnjpvkg2uQdyjB0UmXpagsH2RgBsPnjwuwupRejIw%2BkF%2Ff%2Fp9h%2FfeVx%2FuZWfERUZP19%2FSO1IpOuc33PqLGzLmOrf11Rt1z224l%2BsbMp5vX64PqmT6r3iu33Bfqr8h2Jaea7qe63quV1%2BSRoR6MDdBIZOjrtfouo12s%2BH5bQzMf2ebObDUAe%2BfkUuQvPzf5r27kGyMOPrmqrBbqU5efj3KFE21QZ8fvhNvxTqPEc3a0DgI48PpNrQtCfnsAnR8OFUA3d%2BvFCCQJXF%2B8RDEh1OaCPoH50wDBREj4I8j748h1BiSjsH0TUh%2BnwCMY3UNcXR7VZucbp%2BjtEJLUnv0J2RektqDpxFHXy8qOahf1ypLpY4tBmEBORhD9sZIsmOkOw5kfgyWfgDJfyZzj1YQR%2FtrVmlIXkzUSzmGDMdQYghqHWTVJx1koYMscRDx0zr1u6HrLoRB2Gp12oyxVosxvzPPfd5qd0IXGavoDZEmQzA1BDO7SMwutuQQJvsBdrOA5Q5sWhLn7V30eYFcEOSWIKcEuSTIU4K8XxxwZZu2uM2VzQJvWpvT2ipGOu3t0QOd9kRM9pIz8uTEl4e137ElTuvC77CwPS%2B6rBn6LRa2Q9%2Bjgcs6Yafter4PKwtIe2EidUeW5Kl3HyKRJbkw%2FBYBPYZVx2DSAc080Hy00HRBN0ftjoud%2BKhnaBoqOWho0wPXBZK0hnTb2VNn5JkJj%2Bcu%2FgbBTq7cefbo%2F94Lf4CZAokp8J78kaCnbo2u6ZzsX9O5JXfXklRGcodWt7ue0lRcvPOm2M614ctX7fDLV1kFVO3RDWHTFRpzGfcs%2BWpRci7MkjZMkO%2BW7YYI1jO7uZiZOEtW1l9bWo4SI6yVOh6Dyvtrf4PJktTe%2F37yKp%2F46SNIM4bJCkTZCZkGpD4GS3Zhkxl7qwmMmu0ESQ15VoxMM5j9VJJAidlMgwL2X3Mw6%2FfsLfRMDTS9iTgq0DcF%2BqoAVUPY7LFRmpiTK%2Fc%2Br%2BILBKo2CpSp7QfKqE8rax9U6deS1J%2F%2F%2BNxpK6uLh24o3KYIwm4QLlCXd8N2N6BdTywEPvWQ2pJ9cumvfwAAAP%2F%2FAQAA%2F%2F9Wr8EUfAQAAA%3D%3D HTTP/1.1
Host: iceboxlitre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Cookie: u_pl=15795427; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlece58cf46e9c2f53cf4f51ab0c8f840155=[2229213,2229212,2106764,2229215]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c17baf27a2f2f6d26d1651b6f195bfcc
Strict-Transport-Security: max-age=0; includeSubdomains
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.254200 OK 12 B URL HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.254:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 936
Origin: https://uqload.com
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Wed, 07 Dec 2022 22:26:06 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://uqload.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
iceboxlitre.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js
173.233.139.164200 OK 29 kB URL HTTP/1.1 iceboxlitre.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js
IP 173.233.139.164:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash d4dbfada7f5340bcf4b417b0ba0c2874
2c05d80619b9f6ff889051fcbd15fd7bfe3e5277
e7d637ef9f5892dd9aa71ca3d247802108591c3d782097a71a06e2c093369de7
Analyzer Verdict Alert quad9 Sinkholed
GET /65/aa/28/65aa283021630dfd9030555c4c61a78c.js HTTP/1.1
Host: iceboxlitre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3760744079952b09a3fb82821db730f9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
pushagim.com/pfe/current/extra.min.js?z=3482084
139.45.197.250200 OK 9.7 kB URL HTTP/2 pushagim.com/pfe/current/extra.min.js?z=3482084
IP 139.45.197.250:0
Hash 6eb17f469f2f46bd6cad4c8300a8261a
45d10e84a6989688e201985910ad0472bb13b692
cff18be1bd4c93a796753c559327919b49a68ac9f37fcb06b851a7f29cb60863
GET /pfe/current/extra.min.js?z=3482084 HTTP/1.1
Host: pushagim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: application/javascript
last-modified: Thu, 01 Dec 2022 15:42:47 GMT
etag: W/"6388cb77-5e8f"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
iceboxlitre.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReuzs4PP3rR1YvgYRAUBZl0z0wnM%2B5hMa6RYEzi7mrO1VXVkzLVXU1V9%2FQkp%2BiK7MHDCB7UU%2BebZINrEPfoQZGJlyUobF8k4MaDJ4%2BLsHqUnh0YfVD1vlffO3zfe%2FXRfnZOXGT0bOMtvSuVovN%2Bw62%2FuCljrnNbX7te99yGe6m%2BKeOF9qX6oLpM%2FxXP9RvuS%2FU3BNvW803Xc13P9erL0ohQD%2BYnLGRy3PUaXbfRbjY8v42B%2BW9tMweWOuD9c3IRkpf%2F27p7B5KNEUffXBF2O9XJy69HmaKpNujzo3fi7VjnMaIZDI2DMD6adkPbkpDP5qDjo6kD6P5B5QCBLInzi4cgPprKRNA%2FfKQ0UBAxAv448v4YQo0h6RhM34Dk9wjAONbWEUe31rTJ6c4jllZsSWoP%2F4TMS1K7%2FzTi6OslJQf1a1plqdSxxSAsIAdjyN4YSXaCdNeBzE%2FA0g8g%2Bc9k%2FuEq4uhg3SoNyYuJeynHkOEYSgxBrYOsOtJBFjrIEgcRP6tTvxu67mIYhK1Wp80Ya7UY8zsL3Oetdid0kbFK3hBpMgRTQzCzh8TsYVsOYbIfYLcKWO7ApiVx3t5DnxfIBUFuCXJKkEuCPCXI%2B8UhV7Zpi1tc2Szwprk5za1ipNPePj3UaU%2FEZD85J09O5vKg9ju2xVld%2BB0WthdElzVDv8XCduh7NHBZJ%2By0Xc%2F3YWUBaecmVndlSZ569wESWZK54bcI6AmsOgGTDmjmgeajxaYLujVqd1zsxsc9Q9NQyUFDmx64LpCkNaQ7zr46J89MdDx34VcIdnr59rPH%2F%2Fde%2BAPMFEhMgffkjwQ9dXN0Vefk4KrOLbmznqQykru02t21lKbiwu03xU6uDV%2B5YodfvsoqooLH14VNV2nMZdyz5Kslybkwy9owQb5bsZsi2Mjs1lJm4ixZ3XhteSVKjLBW6ngMKu%2Bt%2Fw0mS1J7%2F%2FvJr3zipw8hzRgmKxBlp2QakPoELNmDTWbqrSYwatYTJHPIs2JkmsHsUUkCJWY1DQrYf9XBDO%2Fbm%2BiZGmh6A3FUoG8K9FUBqoaw2WOjNDGnl%2B9%2BXsUXCFRtFChTOwiUUZ9Wo70%2FmW9J6s9%2FXKHfYGW18dANhdsUQdgNwkXq8m7Y7ga064nFwKceUluyTy7%2B9Q8AAAD%2F%2FwEAAP%2F%2FdYFsgnwEAAA%3D
173.233.139.164200 OK 7 B URL HTTP/1.1 iceboxlitre.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReuzs4PP3rR1YvgYRAUBZl0z0wnM%2B5hMa6RYEzi7mrO1VXVkzLVXU1V9%2FQkp%2BiK7MHDCB7UU%2BebZINrEPfoQZGJlyUobF8k4MaDJ4%2BLsHqUnh0YfVD1vlffO3zfe%2FXRfnZOXGT0bOMtvSuVovN%2Bw62%2FuCljrnNbX7te99yGe6m%2BKeOF9qX6oLpM%2FxXP9RvuS%2FU3BNvW803Xc13P9erL0ohQD%2BYnLGRy3PUaXbfRbjY8v42B%2BW9tMweWOuD9c3IRkpf%2F27p7B5KNEUffXBF2O9XJy69HmaKpNujzo3fi7VjnMaIZDI2DMD6adkPbkpDP5qDjo6kD6P5B5QCBLInzi4cgPprKRNA%2FfKQ0UBAxAv448v4YQo0h6RhM34Dk9wjAONbWEUe31rTJ6c4jllZsSWoP%2F4TMS1K7%2FzTi6OslJQf1a1plqdSxxSAsIAdjyN4YSXaCdNeBzE%2FA0g8g%2Bc9k%2FuEq4uhg3SoNyYuJeynHkOEYSgxBrYOsOtJBFjrIEgcRP6tTvxu67mIYhK1Wp80Ya7UY8zsL3Oetdid0kbFK3hBpMgRTQzCzh8TsYVsOYbIfYLcKWO7ApiVx3t5DnxfIBUFuCXJKkEuCPCXI%2B8UhV7Zpi1tc2Szwprk5za1ipNPePj3UaU%2FEZD85J09O5vKg9ju2xVld%2BB0WthdElzVDv8XCduh7NHBZJ%2By0Xc%2F3YWUBaecmVndlSZ569wESWZK54bcI6AmsOgGTDmjmgeajxaYLujVqd1zsxsc9Q9NQyUFDmx64LpCkNaQ7zr46J89MdDx34VcIdnr59rPH%2F%2Fde%2BAPMFEhMgffkjwQ9dXN0Vefk4KrOLbmznqQykru02t21lKbiwu03xU6uDV%2B5YodfvsoqooLH14VNV2nMZdyz5Kslybkwy9owQb5bsZsi2Mjs1lJm4ixZ3XhteSVKjLBW6ngMKu%2Bt%2Fw0mS1J7%2F%2FvJr3zipw8hzRgmKxBlp2QakPoELNmDTWbqrSYwatYTJHPIs2JkmsHsUUkCJWY1DQrYf9XBDO%2Fbm%2BiZGmh6A3FUoG8K9FUBqoaw2WOjNDGnl%2B9%2BXsUXCFRtFChTOwiUUZ9Wo70%2FmW9J6s9%2FXKHfYGW18dANhdsUQdgNwkXq8m7Y7ga064nFwKceUluyTy7%2B9Q8AAAD%2F%2FwEAAP%2F%2FdYFsgnwEAAA%3D
IP 173.233.139.164:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReuzs4PP3rR1YvgYRAUBZl0z0wnM%2B5hMa6RYEzi7mrO1VXVkzLVXU1V9%2FQkp%2BiK7MHDCB7UU%2BebZINrEPfoQZGJlyUobF8k4MaDJ4%2BLsHqUnh0YfVD1vlffO3zfe%2FXRfnZOXGT0bOMtvSuVovN%2Bw62%2FuCljrnNbX7te99yGe6m%2BKeOF9qX6oLpM%2FxXP9RvuS%2FU3BNvW803Xc13P9erL0ohQD%2BYnLGRy3PUaXbfRbjY8v42B%2BW9tMweWOuD9c3IRkpf%2F27p7B5KNEUffXBF2O9XJy69HmaKpNujzo3fi7VjnMaIZDI2DMD6adkPbkpDP5qDjo6kD6P5B5QCBLInzi4cgPprKRNA%2FfKQ0UBAxAv448v4YQo0h6RhM34Dk9wjAONbWEUe31rTJ6c4jllZsSWoP%2F4TMS1K7%2FzTi6OslJQf1a1plqdSxxSAsIAdjyN4YSXaCdNeBzE%2FA0g8g%2Bc9k%2FuEq4uhg3SoNyYuJeynHkOEYSgxBrYOsOtJBFjrIEgcRP6tTvxu67mIYhK1Wp80Ya7UY8zsL3Oetdid0kbFK3hBpMgRTQzCzh8TsYVsOYbIfYLcKWO7ApiVx3t5DnxfIBUFuCXJKkEuCPCXI%2B8UhV7Zpi1tc2Szwprk5za1ipNPePj3UaU%2FEZD85J09O5vKg9ju2xVld%2BB0WthdElzVDv8XCduh7NHBZJ%2By0Xc%2F3YWUBaecmVndlSZ569wESWZK54bcI6AmsOgGTDmjmgeajxaYLujVqd1zsxsc9Q9NQyUFDmx64LpCkNaQ7zr46J89MdDx34VcIdnr59rPH%2F%2Fde%2BAPMFEhMgffkjwQ9dXN0Vefk4KrOLbmznqQykru02t21lKbiwu03xU6uDV%2B5YodfvsoqooLH14VNV2nMZdyz5Kslybkwy9owQb5bsZsi2Mjs1lJm4ixZ3XhteSVKjLBW6ngMKu%2Bt%2Fw0mS1J7%2F%2FvJr3zipw8hzRgmKxBlp2QakPoELNmDTWbqrSYwatYTJHPIs2JkmsHsUUkCJWY1DQrYf9XBDO%2Fbm%2BiZGmh6A3FUoG8K9FUBqoaw2WOjNDGnl%2B9%2BXsUXCFRtFChTOwiUUZ9Wo70%2FmW9J6s9%2FXKHfYGW18dANhdsUQdgNwkXq8m7Y7ga064nFwKceUluyTy7%2B9Q8AAAD%2F%2FwEAAP%2F%2FdYFsgnwEAAA%3D HTTP/1.1
Host: iceboxlitre.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Cookie: u_pl=15795427; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlece58cf46e9c2f53cf4f51ab0c8f840155=[2229213,2229212,2106764,2229215]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9ea52588fa0cc336cd6446cd9345cfe4
Strict-Transport-Security: max-age=0; includeSubdomains
rndskittytor.com/500/3094561?excludes=&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=3&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false
139.45.197.238200 OK 0 B URL HTTP/2 rndskittytor.com/500/3094561?excludes=&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=3&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false
IP 139.45.197.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/3094561?excludes=&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=3&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://uqload.com/
Origin: https://uqload.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:26:00 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://uqload.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
addresseepaper.com/sfp.js
34.160.73.230200 OK 2.6 kB URL HTTP/1.1 addresseepaper.com/sfp.js
IP 34.160.73.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2551), with no line terminators
Hash 41f66bb0ac50f2d851236170e7c71341
59bcec216302151922219b51be8ad8ab6d0b8384
ec99cca58b612ce268e6ada818dfcec0acc22dd1bbe372487be9abbdd07ce073
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: openresty
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: text/html
Content-Length: 2551
Last-Modified: Tue, 06 Dec 2022 22:15:21 GMT
ETag: "638fbef9-9f7"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_ksH1sTc9EjXCmWZup74uFSR+dkwy0KAqHyDjqCX5+b0zeGjsBDwHGeUXqHO1YTnGXNMqi9DZqRg/7nsDREvaAw
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=91.90.42.154;Path=/;Max-Age=86400;
country=NO;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=enom.EXPIRED.305E185C-5D0C-4AD0-86FE-5F99F413CC83;Path=/;Max-Age=86400;
Accept-Ranges: bytes
Via: 1.1 google
rndskittytor.com/500/3094561?excludes=&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=3&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false
139.45.197.238200 OK 797 B URL HTTP/2 rndskittytor.com/500/3094561?excludes=&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=3&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false
IP 139.45.197.238:0
File type JSON data\012- , ASCII text, with very long lines (797), with no line terminators
Hash 4cb2686f7974f8c368cca68695105d18
8fda70b8bf5bba1818d8bb0ebf626c64eeeb935e
59dc0be1b416327bcdaf0382045618b5dfcc241eb6194864a4cb76895d3e81a3
Analyzer Verdict Alert quad9 Sinkholed
GET /500/3094561?excludes=&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=3&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://uqload.com
Connection: keep-alive
Referer: https://uqload.com/
Cookie: OAID=7e0383fee40645b9b9a61e3faae8476c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:26:00 GMT
content-type: application/javascript
content-length: 797
x-trace-id: c8e70f9e973a414486df441f367926e2
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: https://uqload.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=935b38d0076240bcba9c278dbd5a2dde; expires=Thu, 07 Dec 2023 22:26:00 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8ac6bb5ec410082735de861edb520b25
b06f6ea6673e2960489debb6bae693de841407ec
fbd9c5239531d5ffbc1cc788a87f98b91e7b05b4dacaffebce2ca7370215afe3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "FBD9C5239531D5FFBC1CC788A87F98B91E7B05B4DACAFFEBCE2CA7370215AFE3"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14079
Expires: Thu, 08 Dec 2022 02:20:39 GMT
Date: Wed, 07 Dec 2022 22:26:00 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK 660 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.106:0
Hash 55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 07 Dec 2022 22:26:00 GMT
Date: Wed, 07 Dec 2022 22:26:00 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 63a533e7b5caf59058266a837420c342
4eca831fb15dccf4eb608e983fe8b89250fc0313
d8904e4cc9a407e7c154cbbf6afe3985a55adcb878dacfb80a0e3cd92ea9703e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8904E4CC9A407E7C154CBBF6AFE3985A55ADCB878DACFB80A0E3CD92EA9703E"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4006
Expires: Wed, 07 Dec 2022 23:32:46 GMT
Date: Wed, 07 Dec 2022 22:26:00 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash a4b2661f9faaf638f68d08191f11b9eb
93a120c099c114d90fd533168343641c6768e3fa
65fd78249b3277256ee56b23d213f0816412daa4c2028d2447a90bbc861af5ba
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 07 Dec 2022 22:26:00 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 04 Dec 2022 11:33:42 GMT
Expires: Sun, 11 Dec 2022 11:33:41 GMT
Etag: "93a120c099c114d90fd533168343641c6768e3fa"
Cache-Control: max-age=305860,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7760ae33ba0c0b55-OSL
uqload.com/js/clipboard.min.js
104.26.0.58200 OK 7.4 kB URL HTTP/2 uqload.com/js/clipboard.min.js
IP 104.26.0.58:0
File type Unicode text, UTF-8 text, with very long lines (10003)
Hash 680fcd312b2cdaed4c8d5f291421a3fc
20fd61095412fe5f21f1b22a0d9bc1954efef6d1
cab82e4eab1877b6319ca7a9e51b57e995ef6678bd24b85d8c6c35e8c458d9fa
GET /js/clipboard.min.js HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: application/javascript
last-modified: Sat, 18 Jun 2016 06:49:00 GMT
etag: W/"2780-53587ddb46f00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hE6HzqdnqNRoCuURKiJepWvdmQJQ9VPUHaJlrFOohtIAZd65ComzZTN%2F1uXmfiY4uSRGBPfVTy2B2h1%2FJlHkIPnuN1CIyJJP3I7lokHRvjd77%2FvuC%2Bub9cnRlKM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae25ece0b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
whos.amung.us/pingjs/?k=kwhbyurh7quk&t=&c=c&x=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&y=http%3A%2F%2Fstreaming-french.net%2F&a=0&d=0.965&v=27&r=133
104.22.75.171200 OK 54 B URL HTTP/2 whos.amung.us/pingjs/?k=kwhbyurh7quk&t=&c=c&x=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&y=http%3A%2F%2Fstreaming-french.net%2F&a=0&d=0.965&v=27&r=133
IP 104.22.75.171:0
File type ASCII text, with no line terminators
Hash 0145e0babceeb0ceb1c7c7f6499416b4
3ac9760cc05e6f6be54c82ba1afcb47317e7024a
a42a79a286eaf7ce42a526895e09af8fc62e5ce21f5053efafefd2ea0e2bf905
GET /pingjs/?k=kwhbyurh7quk&t=&c=c&x=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&y=http%3A%2F%2Fstreaming-french.net%2F&a=0&d=0.965&v=27&r=133 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:26:00 GMT
content-type: text/javascript;charset=UTF-8
content-encoding: gzip
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7760ae31687195eb-ARN
X-Firefox-Spdy: h2
lassampy.com/?rb=0SNo63bHcRD217W7fEK_R54ZnZ5ayUm2vON7kOURvhLIURgiLiX7PoSC4NXc3EHonhuHhWDRC8ZjfpYE8ngXIPns2K7cyrYwdeV0wja494gBaEXzfriRvKjwP5F4emwScUAoFYDxpXHjP5mzKjtNrnsmBAXuol9NfeezB5Y0dIkRgiMEYtQdIhz7thmb2ePlvD75eEeQB0LvaG_bJwxMZxSidvAgj-g20zrXv2AsWpk%3D&request_ab2=96003&zoneid=4485812&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wih=0&wiw=0&wfc=3&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&js_build=iclick-v1.458.0&bs=b9daeb51-9d3d-4f81-9f20-7fa02990fea7&userId=935b38d0076240bcba9c278dbd5a2dde&m=link
139.45.197.237200 OK 1.4 kB URL HTTP/2 lassampy.com/?rb=0SNo63bHcRD217W7fEK_R54ZnZ5ayUm2vON7kOURvhLIURgiLiX7PoSC4NXc3EHonhuHhWDRC8ZjfpYE8ngXIPns2K7cyrYwdeV0wja494gBaEXzfriRvKjwP5F4emwScUAoFYDxpXHjP5mzKjtNrnsmBAXuol9NfeezB5Y0dIkRgiMEYtQdIhz7thmb2ePlvD75eEeQB0LvaG_bJwxMZxSidvAgj-g20zrXv2AsWpk%3D&request_ab2=96003&zoneid=4485812&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wih=0&wiw=0&wfc=3&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&js_build=iclick-v1.458.0&bs=b9daeb51-9d3d-4f81-9f20-7fa02990fea7&userId=935b38d0076240bcba9c278dbd5a2dde&m=link
IP 139.45.197.237:0
File type JSON data\012- , ASCII text, with very long lines (1734), with no line terminators
Hash fc64f75da0ddd98e46305489d17e5cca
ef9e60a80c232554bae26e2ca1c362b6ebef7616
a0be810995e3cb2988a02985bd95f6d5d897f240de05bae80abb1046ac8c3bdc
Analyzer Verdict Alert quad9 Sinkholed
GET /?rb=0SNo63bHcRD217W7fEK_R54ZnZ5ayUm2vON7kOURvhLIURgiLiX7PoSC4NXc3EHonhuHhWDRC8ZjfpYE8ngXIPns2K7cyrYwdeV0wja494gBaEXzfriRvKjwP5F4emwScUAoFYDxpXHjP5mzKjtNrnsmBAXuol9NfeezB5Y0dIkRgiMEYtQdIhz7thmb2ePlvD75eEeQB0LvaG_bJwxMZxSidvAgj-g20zrXv2AsWpk%3D&request_ab2=96003&zoneid=4485812&js_build=iclick-v1.458.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wih=0&wiw=0&wfc=3&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false&js_build=iclick-v1.458.0&bs=b9daeb51-9d3d-4f81-9f20-7fa02990fea7&userId=935b38d0076240bcba9c278dbd5a2dde&m=link HTTP/1.1
Host: lassampy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://uqload.com/
Origin: https://uqload.com
Connection: keep-alive
Cookie: OAID=d48f259e9f5843eba1de2fd815f5a8fc; oaidts=1670451959
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:26:00 GMT
content-type: application/json
x-trace-id: a5731966042a8d1507494d3032904ea3
access-control-allow-origin: https://uqload.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=935b38d0076240bcba9c278dbd5a2dde; expires=Thu, 07 Dec 2023 22:26:00 GMT; path=/; secure; SameSite=None
oaidts=1670451960; expires=Thu, 07 Dec 2023 22:26:00 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Wed, 14 Dec 2022 22:26:00 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/92/d4/78/92d478d8042ff325fb6dd1f4f0a51caf/1670417019.png
45.133.44.10200 OK 67 kB URL HTTP/2 cdn.cloudimagesb.com/si/92/d4/78/92d478d8042ff325fb6dd1f4f0a51caf/1670417019.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 974bec00ccda3eca066dd4d8f0946a9e
11fc0dd0e55999641f5fd84093d89ec045a41bb9
5208e6052ffc642377fda287c69488324bd90a7f1396b1025d450eb9c75bd22d
GET /si/92/d4/78/92d478d8042ff325fb6dd1f4f0a51caf/1670417019.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:26:00 GMT
content-type: image/png
content-length: 67428
server: nginx/1.17.6
last-modified: Wed, 07 Dec 2022 12:43:48 GMT
etag: "63908a84-10764"
expires: Fri, 09 Dec 2022 22:26:00 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 312c1a805584030da9a374976380cde1
eb8c1dc682a704b12ea8924f2fdf64dcc2d27535
512c38ab6189afa6161b367c8fddbdaad93ebdf9eabb1d8a1157cd695bd06442
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 781
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 07 Dec 2022 22:26:01 GMT
Etag: "638ff522-118"
Last-Modified: Wed, 07 Dec 2022 22:13:00 GMT
Server: ECS (amb/6BB8)
X-Cache: HIT
Content-Length: 280
littlecdn.com/contents/s/6f/ff/49/d618b9c167ead557de6448ea44/09023711255.png
172.67.10.98200 OK 56 kB URL HTTP/2 littlecdn.com/contents/s/6f/ff/49/d618b9c167ead557de6448ea44/09023711255.png
IP 172.67.10.98:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 6fff49d618b9c167ead557de6448ea44
08fffd6ecd99290fae7665c10bb604ac8e5248ac
adfd94d82626b3d2c0d9c2cd89a13f75cdcd4e563c8ed431a4c73b430b365e5e
GET /contents/s/6f/ff/49/d618b9c167ead557de6448ea44/09023711255.png HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:26:01 GMT
content-type: image/png
content-length: 55954
last-modified: Fri, 10 Apr 2020 15:56:06 GMT
etag: "5e909716-da92"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 3467
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae347d4eb4e8-OSL
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 345 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8ac6bb5ec410082735de861edb520b25
b06f6ea6673e2960489debb6bae693de841407ec
fbd9c5239531d5ffbc1cc788a87f98b91e7b05b4dacaffebce2ca7370215afe3
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "FBD9C5239531D5FFBC1CC788A87F98B91E7B05B4DACAFFEBCE2CA7370215AFE3"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14078
Expires: Thu, 08 Dec 2022 02:20:39 GMT
Date: Wed, 07 Dec 2022 22:26:01 GMT
Connection: keep-alive
sweptpeculiar.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fjs%2Fscript.js&l=386&fd=427
192.243.59.13200 OK 0 B URL HTTP/1.1 sweptpeculiar.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fjs%2Fscript.js&l=386&fd=427
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fjs%2Fscript.js&l=386&fd=427 HTTP/1.1
Host: sweptpeculiar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 07 Dec 2022 22:26:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F&t=uqload.com
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F&t=uqload.com
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F&t=uqload.com HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 07 Dec 2022 22:26:01 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
sweptpeculiar.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fstyle.css&l=5644&fd=455
192.243.59.13200 OK 0 B URL HTTP/1.1 sweptpeculiar.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fstyle.css&l=5644&fd=455
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fstyle.css&l=5644&fd=455 HTTP/1.1
Host: sweptpeculiar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 07 Dec 2022 22:26:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F&t=uqload.com
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F&t=uqload.com
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F&t=uqload.com HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 07 Dec 2022 22:26:01 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
sweptpeculiar.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fanimate.css&l=79245&fd=455
192.243.59.13200 OK 0 B URL HTTP/1.1 sweptpeculiar.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fanimate.css&l=79245&fd=455
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fwindows%2Fflash-all%2Fssp%2F1%2Fcss%2Fanimate.css&l=79245&fd=455 HTTP/1.1
Host: sweptpeculiar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 07 Dec 2022 22:26:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F&t=uqload.com
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F&t=uqload.com
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F&t=uqload.com HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 07 Dec 2022 22:26:01 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=w!kwhbyurh7quk&dn=TC&cc=1&r=http%3A%2F%2Fstreaming-french.net%2F
67.202.105.34200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!kwhbyurh7quk&dn=TC&cc=1&r=http%3A%2F%2Fstreaming-french.net%2F
IP 67.202.105.34:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!kwhbyurh7quk&dn=TC&cc=1&r=http%3A%2F%2Fstreaming-french.net%2F HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=86400
expires: Thu, 08 Dec 2022 22:26:01 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Wed, 07 Dec 2022 22:26:01 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1&r=http%3A%2F%2Fstreaming-french.net%2F HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 07 Dec 2022 22:26:01 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://streaming-french.net
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 21:12:42 GMT
Expires: Thu, 07 Dec 2023 21:12:42 GMT
Cache-Control: public, max-age=31536000
Age: 4399
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://streaming-french.net
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 07 Dec 2022 21:13:27 GMT
Expires: Thu, 07 Dec 2023 21:13:27 GMT
Cache-Control: public, max-age=31536000
Age: 4354
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 07 Dec 2022 22:26:01 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
sweptpeculiar.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3t2PT%2FTk4kVQnJM%2FUCbd0zOZmV0kGNdIMCZxdyXn6qrqSZnqqqaqe3qSgwQXZMGDszePnWeSDa7L6h73oOjEiwQE24PmYP6IXVivMpOB6Avd71P1vAXP877v53v5KfGR05P1D82OVIrOtep%2B7fUNqbkpXG31Zi3w6%2F7V2obU882rtcHkZ%2FtXAr9V99%2BovS%2FYlplr%2BIHvB35QW5JWxGYwN2Uh0%2FvdoN71681GPWg1MbD%2FPbvcg6MeeP%2BUXIbk1f82f3kIycbQyXfXhNvKTPrWe0muaGYs%2BvzwY72lTaGRnMPYeoj14awaxlWEfHUBRh%2FOHMD09ycOEMmKeH8EiPThTCai%2FsGZ0khBaET8ORT9MYQaQ9IxmLkFyX8jAONYXYNO7q4aW9DtM5ZO2IpcevoEsqjIpb9egE4eLCo5qN0wKs%2Bk0Q6DuIQcjCF7Y6T5EbIdD7I4Ass%2Bg%2BS%2FkrmnK9DJ%2FppTBpKXU%2FdSjiHjMZQYgjoP%2BeSTHvLYQ556SPhJjba6se%2B34ygOw06TMRaGjLU687zFw2Yn9pGzibwhsnQIpoZgdhep3cWWHMLmP8JtlnDcg8sq4n20iz4vUQiCwhEUlKCQBEVGUPTLA65cw5V3uXJ5FMxyY5bDcmSy3h49MFlPaLKXnpLnJ33x%2Fv%2FTm9gSJ7VOI2zMtzjzu812FIRChIK1g25Mm5Fg8XwLTpaQ7sLU6o6syEvmU6SyIheGjxDRIzh1BCY90Pxl0GLUbvigm6Nmx8eOfsAMMy6zgiZ1LTJwUyLNLiHb9vbUKXlxOqEr5bcQ7HjhcTwNMFsitSU%2BkT8T9NTt0XVTkP3rpnDk4VqayUTu0Mn0bmQ0ExfvfSC2C2P58jU3%2FPodNiEm8P5N4bIVqrnUPUe%2BWZScC7tkLBPk%2B2W3IaL13G0u5lbn6cr6u0vLSWqFc9LoMehkE595G0xW5Nnyz%2BlmviK%2BgLRj2LxEkh%2BTWUCaI7B0Fy491%2B8MgVXnNVHqocjLkW1E55dKViR89TGUOF549MOXT167J0GjEk786%2BE53nO30bMeaHYLOinRtyX6qgRVQ7j84ihL7fHC7%2BE0EClvFCnr7UfKqjtnDXbypNYKmqITddqM80gwHrQbYSf0%2FQbnzXZXBF1krmJ3Lv%2F9DwAAAP%2F%2FAQAA%2F%2F8M6cb1dQQAAA%3D%3D
192.243.59.13200 OK 7 B URL HTTP/1.1 sweptpeculiar.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3t2PT%2FTk4kVQnJM%2FUCbd0zOZmV0kGNdIMCZxdyXn6qrqSZnqqqaqe3qSgwQXZMGDszePnWeSDa7L6h73oOjEiwQE24PmYP6IXVivMpOB6Avd71P1vAXP877v53v5KfGR05P1D82OVIrOtep%2B7fUNqbkpXG31Zi3w6%2F7V2obU882rtcHkZ%2FtXAr9V99%2BovS%2FYlplr%2BIHvB35QW5JWxGYwN2Uh0%2FvdoN71681GPWg1MbD%2FPbvcg6MeeP%2BUXIbk1f82f3kIycbQyXfXhNvKTPrWe0muaGYs%2BvzwY72lTaGRnMPYeoj14awaxlWEfHUBRh%2FOHMD09ycOEMmKeH8EiPThTCai%2FsGZ0khBaET8ORT9MYQaQ9IxmLkFyX8jAONYXYNO7q4aW9DtM5ZO2IpcevoEsqjIpb9egE4eLCo5qN0wKs%2Bk0Q6DuIQcjCF7Y6T5EbIdD7I4Ass%2Bg%2BS%2FkrmnK9DJ%2FppTBpKXU%2FdSjiHjMZQYgjoP%2BeSTHvLYQ556SPhJjba6se%2B34ygOw06TMRaGjLU687zFw2Yn9pGzibwhsnQIpoZgdhep3cWWHMLmP8JtlnDcg8sq4n20iz4vUQiCwhEUlKCQBEVGUPTLA65cw5V3uXJ5FMxyY5bDcmSy3h49MFlPaLKXnpLnJ33x%2Fv%2FTm9gSJ7VOI2zMtzjzu812FIRChIK1g25Mm5Fg8XwLTpaQ7sLU6o6syEvmU6SyIheGjxDRIzh1BCY90Pxl0GLUbvigm6Nmx8eOfsAMMy6zgiZ1LTJwUyLNLiHb9vbUKXlxOqEr5bcQ7HjhcTwNMFsitSU%2BkT8T9NTt0XVTkP3rpnDk4VqayUTu0Mn0bmQ0ExfvfSC2C2P58jU3%2FPodNiEm8P5N4bIVqrnUPUe%2BWZScC7tkLBPk%2B2W3IaL13G0u5lbn6cr6u0vLSWqFc9LoMehkE595G0xW5Nnyz%2BlmviK%2BgLRj2LxEkh%2BTWUCaI7B0Fy491%2B8MgVXnNVHqocjLkW1E55dKViR89TGUOF549MOXT167J0GjEk786%2BE53nO30bMeaHYLOinRtyX6qgRVQ7j84ihL7fHC7%2BE0EClvFCnr7UfKqjtnDXbypNYKmqITddqM80gwHrQbYSf0%2FQbnzXZXBF1krmJ3Lv%2F9DwAAAP%2F%2FAQAA%2F%2F8M6cb1dQQAAA%3D%3D
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3t2PT%2FTk4kVQnJM%2FUCbd0zOZmV0kGNdIMCZxdyXn6qrqSZnqqqaqe3qSgwQXZMGDszePnWeSDa7L6h73oOjEiwQE24PmYP6IXVivMpOB6Avd71P1vAXP877v53v5KfGR05P1D82OVIrOtep%2B7fUNqbkpXG31Zi3w6%2F7V2obU882rtcHkZ%2FtXAr9V99%2BovS%2FYlplr%2BIHvB35QW5JWxGYwN2Uh0%2FvdoN71681GPWg1MbD%2FPbvcg6MeeP%2BUXIbk1f82f3kIycbQyXfXhNvKTPrWe0muaGYs%2BvzwY72lTaGRnMPYeoj14awaxlWEfHUBRh%2FOHMD09ycOEMmKeH8EiPThTCai%2FsGZ0khBaET8ORT9MYQaQ9IxmLkFyX8jAONYXYNO7q4aW9DtM5ZO2IpcevoEsqjIpb9egE4eLCo5qN0wKs%2Bk0Q6DuIQcjCF7Y6T5EbIdD7I4Ass%2Bg%2BS%2FkrmnK9DJ%2FppTBpKXU%2FdSjiHjMZQYgjoP%2BeSTHvLYQ556SPhJjba6se%2B34ygOw06TMRaGjLU687zFw2Yn9pGzibwhsnQIpoZgdhep3cWWHMLmP8JtlnDcg8sq4n20iz4vUQiCwhEUlKCQBEVGUPTLA65cw5V3uXJ5FMxyY5bDcmSy3h49MFlPaLKXnpLnJ33x%2Fv%2FTm9gSJ7VOI2zMtzjzu812FIRChIK1g25Mm5Fg8XwLTpaQ7sLU6o6syEvmU6SyIheGjxDRIzh1BCY90Pxl0GLUbvigm6Nmx8eOfsAMMy6zgiZ1LTJwUyLNLiHb9vbUKXlxOqEr5bcQ7HjhcTwNMFsitSU%2BkT8T9NTt0XVTkP3rpnDk4VqayUTu0Mn0bmQ0ExfvfSC2C2P58jU3%2FPodNiEm8P5N4bIVqrnUPUe%2BWZScC7tkLBPk%2B2W3IaL13G0u5lbn6cr6u0vLSWqFc9LoMehkE595G0xW5Nnyz%2BlmviK%2BgLRj2LxEkh%2BTWUCaI7B0Fy491%2B8MgVXnNVHqocjLkW1E55dKViR89TGUOF549MOXT167J0GjEk786%2BE53nO30bMeaHYLOinRtyX6qgRVQ7j84ihL7fHC7%2BE0EClvFCnr7UfKqjtnDXbypNYKmqITddqM80gwHrQbYSf0%2FQbnzXZXBF1krmJ3Lv%2F9DwAAAP%2F%2FAQAA%2F%2F8M6cb1dQQAAA%3D%3D HTTP/1.1
Host: sweptpeculiar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Cookie: u_pl=17285419; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec823265dc0947b13ee3ec719fa4becf65=[3842223]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 07 Dec 2022 22:26:01 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4e30809b02543d71af43e29c016e7a49
Strict-Transport-Security: max-age=0; includeSubdomains
ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 07 Dec 2022 22:26:01 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!kwhbyurh7quk&lm=3&ts=1670451960529&dn=TC&iso=1 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Wed, 07 Dec 2022 22:26:02 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
sweptpeculiar.com/pixel/sbs?c=1
192.243.59.13200 OK 0 B URL HTTP/1.1 sweptpeculiar.com/pixel/sbs?c=1
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: sweptpeculiar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Cookie: u_pl=17285419; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec823265dc0947b13ee3ec719fa4becf65=[3842223]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 07 Dec 2022 22:26:02 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
rndskittytor.com/impression/6ygiOGouGLVk9-Xa4g1O99q1hHMLeRa50EGUeKGxr_jAbVeYIIH9Mt-vHbD7Fi5wbiIxfI71V7KzzHTBAlf0FNpAiBeuCdQ34hwM_-v_ddrjCAOlHB2fxtNfoBxL7R8xq_4MI1pk7tjkB344oWKQnLcUA8fZon1no8mhlgMTU7TGfyoSjBJ_n3LFKeK6qhS0y2LaTBEFE6ZvjsHBLjI5QA==?_z=3094561&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=5&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false
139.45.197.238200 OK 43 B URL HTTP/2 rndskittytor.com/impression/6ygiOGouGLVk9-Xa4g1O99q1hHMLeRa50EGUeKGxr_jAbVeYIIH9Mt-vHbD7Fi5wbiIxfI71V7KzzHTBAlf0FNpAiBeuCdQ34hwM_-v_ddrjCAOlHB2fxtNfoBxL7R8xq_4MI1pk7tjkB344oWKQnLcUA8fZon1no8mhlgMTU7TGfyoSjBJ_n3LFKeK6qhS0y2LaTBEFE6ZvjsHBLjI5QA==?_z=3094561&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=5&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false
IP 139.45.197.238:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert quad9 Sinkholed
GET /impression/6ygiOGouGLVk9-Xa4g1O99q1hHMLeRa50EGUeKGxr_jAbVeYIIH9Mt-vHbD7Fi5wbiIxfI71V7KzzHTBAlf0FNpAiBeuCdQ34hwM_-v_ddrjCAOlHB2fxtNfoBxL7R8xq_4MI1pk7tjkB344oWKQnLcUA8fZon1no8mhlgMTU7TGfyoSjBJ_n3LFKeK6qhS0y2LaTBEFE6ZvjsHBLjI5QA==?_z=3094561&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=5&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Cookie: OAID=935b38d0076240bcba9c278dbd5a2dde
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:26:02 GMT
content-type: image/gif
content-length: 43
x-trace-id: 7c6f155510a17720c8621d29cdf18a1e
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=90fbf3a9-15c5-4931-8cd9-bfd960481901&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=823265dc0947b13ee3ec719fa4becf65&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=90fbf3a9-15c5-4931-8cd9-bfd960481901&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=823265dc0947b13ee3ec719fa4becf65&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=90fbf3a9-15c5-4931-8cd9-bfd960481901&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=823265dc0947b13ee3ec719fa4becf65&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:26:02 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8fa6ec83a6834f100440c5a90bb8cfe3
Strict-Transport-Security: max-age=0; includeSubdomains
rndskittytor.com/500/3094561?excludes=2483226&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=5&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false
139.45.197.238200 OK 0 B URL HTTP/2 rndskittytor.com/500/3094561?excludes=2483226&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=5&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false
IP 139.45.197.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/3094561?excludes=2483226&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=5&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://uqload.com/
Origin: https://uqload.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:26:02 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://uqload.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=90fbf3a9-15c5-4931-8cd9-bfd960481901&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=5fb3c870da0885f30dc0898f56175db3&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=90fbf3a9-15c5-4931-8cd9-bfd960481901&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=5fb3c870da0885f30dc0898f56175db3&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=90fbf3a9-15c5-4931-8cd9-bfd960481901&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=5fb3c870da0885f30dc0898f56175db3&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:26:02 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c7ed2ab74929d0f6e9b0e91e0df6ef4c
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=90fbf3a9-15c5-4931-8cd9-bfd960481901&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=90fbf3a9-15c5-4931-8cd9-bfd960481901&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=90fbf3a9-15c5-4931-8cd9-bfd960481901&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://streaming-french.net/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 07 Dec 2022 22:26:02 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1ae00a840579f9687cca2521e857819c
Strict-Transport-Security: max-age=0; includeSubdomains
rndskittytor.com/500/3094561?excludes=2483226&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=5&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false
139.45.197.238200 OK 904 B URL HTTP/2 rndskittytor.com/500/3094561?excludes=2483226&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=5&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false
IP 139.45.197.238:0
File type JSON data\012- , ASCII text, with very long lines (904), with no line terminators
Hash bf20933b8e6e0bd2c930599135f2f1cd
85c9fcabb3d0effd6682f57174d39d27b2be10b4
0ad4c16d4928dd73b2d10c1722153987324b91580455e16d50f573e426a92206
Analyzer Verdict Alert quad9 Sinkholed
GET /500/3094561?excludes=2483226&oaid=935b38d0076240bcba9c278dbd5a2dde&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=0&wiw=0&wih=0&wfc=5&pl=https%3A%2F%2Fuqload.com%2Fembed-pp7z8c8do197.html&drf=http%3A%2F%2Fstreaming-french.net%2F&np=0&pt=0&nb=1&ng=1&ix=1&nw=1&tb=false HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://uqload.com
Connection: keep-alive
Referer: https://uqload.com/
Cookie: OAID=935b38d0076240bcba9c278dbd5a2dde
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:26:02 GMT
content-type: application/javascript
content-length: 904
x-trace-id: 7d959af3bb44f9edbf84b06d768924bd
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://uqload.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=935b38d0076240bcba9c278dbd5a2dde; expires=Thu, 07 Dec 2023 22:26:02 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
littlecdn.com/contents/s/e1/47/b6/7daf9676aa856c05e13c1ea514/0841766669427.png
172.67.10.98200 OK 28 kB URL HTTP/2 littlecdn.com/contents/s/e1/47/b6/7daf9676aa856c05e13c1ea514/0841766669427.png
IP 172.67.10.98:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash e147b67daf9676aa856c05e13c1ea514
e57dd7341e42256dce0cb0c1bf78a7c60571596c
83403ed8bb6ea15c22c5584b9aaf4297327dbb7b522f50d2ee1318fbc0afdfd2
GET /contents/s/e1/47/b6/7daf9676aa856c05e13c1ea514/0841766669427.png HTTP/1.1
Host: littlecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:26:02 GMT
content-type: image/png
content-length: 27888
last-modified: Fri, 10 Apr 2020 15:54:42 GMT
etag: "5e9096c2-6cf0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
cache-control: max-age=3600
cf-cache-status: HIT
age: 4876
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae3fb979b4e8-OSL
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/50/77/d2/5077d2a4de96d9464e3c0d2ecf8bb3de/1601543282.html
45.133.44.4200 OK 0 B URL HTTP/2 cdn.barscreative1.com/sb/au/50/77/d2/5077d2a4de96d9464e3c0d2ecf8bb3de/1601543282.html
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
GET /sb/au/50/77/d2/5077d2a4de96d9464e3c0d2ecf8bb3de/1601543282.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streaming-french.net
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:26:00 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Sat, 07 May 2022 03:21:28 GMT
etag: W/"6275e5b8-4b9"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Wed, 07 Dec 2022 23:26:00 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/rHGtlgH7Kjr531KFF6FSvTbmDaN.jpg
138.199.37.231404 Not Found 0 B URL HTTP/2 image.tmdb.org/t/p/w300/rHGtlgH7Kjr531KFF6FSvTbmDaN.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
GET /t/p/w300/rHGtlgH7Kjr531KFF6FSvTbmDaN.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 14:35:19
cdn-edgestorageid: 865
cdn-status: 404
cdn-requestid: 0cb9f09ef24b0a84100b87fed291ca83
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
uqload.com/css/main.css
104.26.0.58200 OK 0 B IP 104.26.0.58:0
GET /css/main.css HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/css
last-modified: Thu, 09 Nov 2017 03:00:00 GMT
etag: W/"3e5c-55d83fff68c00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2494
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zAfvnM3jNC8j2q4iHkgUl26HNL8%2Bd3YKjHWS1zSPbD6QXVBklZ6akZIH%2Bs7MkyMh9wlFRlqYGpFroliTGEBJWZQ5oepKO%2BYt4A62ITv5vQ%2FB9Kt%2FBP7FfOfBbAQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae25dcbbb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/rGEuPQvY8covIOJCFRJl4icPAzB.jpg
138.199.37.231404 Not Found 0 B URL HTTP/2 image.tmdb.org/t/p/w300/rGEuPQvY8covIOJCFRJl4icPAzB.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
GET /t/p/w300/rGEuPQvY8covIOJCFRJl4icPAzB.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 14:35:19
cdn-edgestorageid: 865
cdn-status: 404
cdn-requestid: 8dc5edcaf0a44330fd3c8d289a8d9af0
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
widgets.amung.us/classic.js
104.22.75.171200 OK 0 B URL HTTP/2 widgets.amung.us/classic.js
IP 104.22.75.171:0
GET /classic.js HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: application/x-javascript
last-modified: Thu, 01 Dec 2022 21:21:07 GMT
etag: W/"63891ac3-32c5"
expires: Thu, 08 Dec 2022 22:07:11 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 1128
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae2c0cc295eb-ARN
X-Firefox-Spdy: h2
uqload.com/player_clappr/clappr-chromecast-plugin.min.js?v=2
104.26.0.58200 OK 0 B URL HTTP/2 uqload.com/player_clappr/clappr-chromecast-plugin.min.js?v=2
IP 104.26.0.58:0
GET /player_clappr/clappr-chromecast-plugin.min.js?v=2 HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: application/javascript
last-modified: Sat, 09 Feb 2019 15:27:00 GMT
etag: W/"6368-58177b4ebd900"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2494
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BN80O1OwEjrhrByxdkZQQXJvNkdVa25FkAXO4Qff%2BN3wOMuYc%2BuIDfoQEZVwPt8lbzi8tDUnr%2BfhHQFoIPlZZ%2FnghYu2a2Hx4GJSOYbryJjrB2v2lfQFBWkIakc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae25fcf2b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/css/animate.css
172.64.109.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/css/animate.css
IP 172.64.109.13:0
GET /sb/notifications/software/us/windows/flash-all/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streaming-french.net
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:26:01 GMT
content-type: text/css
last-modified: Wed, 17 Feb 2021 11:46:51 GMT
etag: W/"602d022b-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dxOpZnd4KsLHrz03i9AthZVdZVm%2FImMO9G%2BXHy6RTaJGkl5ThMsWwcScVHkCvGp3hxk8bcfg1d%2BDURv48CHgfTU2fjkzY3mWXzphy6P%2FfrEtH8ZaavZXUyjQ8Te%2BcgaOH3mtjEXBzIdN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae33bf8a240d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=uqload.com&_ss=3lkrbtzk00&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5njq&_cb=_dtspv.c
141.101.120.11200 OK 0 B URL HTTP/2 t.dtscout.com/pv/?_a=v&_h=uqload.com&_ss=3lkrbtzk00&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5njq&_cb=_dtspv.c
IP 141.101.120.11:0
GET /pv/?_a=v&_h=uqload.com&_ss=3lkrbtzk00&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=5njq&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Cookie: m=1; oa=1; df=1670451960
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:26:00 GMT
content-type: application/javascript
x-t: 0.155
x-c: 0
expires: Wed, 07 Dec 2022 22:25:59 GMT
cache-control: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gWQIS9NJ%2FrKC%2FcIUez%2B3tzhQoHuiz0g%2B0e%2BH6p9pDzO0W%2FDUBroDQYbgn5fSR5syuEHrmToM7m5RYLOQUg1hNS%2BGY0wmplNI5uEXxrDbwOsGPcIhZIA4GghsRQBUUWY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7760ae2f3f5e09b0-ARN
content-encoding: br
X-Firefox-Spdy: h2
cdn.tynt.com/tc.js
172.64.151.83200 OK 0 B IP 172.64.151.83:0
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:26:00 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:29 GMT
vary: Accept-Encoding
etag: W/"62d96959-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 111596
expires: Sat, 10 Dec 2022 22:26:00 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 7760ae33fa731c0a-OSL
X-Firefox-Spdy: h2
uqload.com/css/bootstrap.min.css
104.26.0.58200 OK 0 B URL HTTP/2 uqload.com/css/bootstrap.min.css
IP 104.26.0.58:0
GET /css/bootstrap.min.css HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/embed-pp7z8c8do197.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/css
last-modified: Thu, 02 Nov 2017 20:48:00 GMT
etag: W/"1d9ac-55d061a8a2000"
cache-control: max-age=14400
cf-cache-status: HIT
age: 2485
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fnU8lJGlJKiSa5ehPwKAhzWQXJCZ7WBjaakvHxFecq%2BaqM3hBdvPTqg%2FimHnWtVltqYR7GHJBozX5hsmH16vowbwy4b1bqNLcTeYQ%2BKTKzhBjH3qZPyBVQpuSas%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae25dcb6b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
lassampy.com/5/4485812/?oo=1&aab=1
139.45.197.237200 OK 0 B URL HTTP/2 lassampy.com/5/4485812/?oo=1&aab=1
IP 139.45.197.237:0
Analyzer Verdict Alert quad9 Sinkholed
GET /5/4485812/?oo=1&aab=1 HTTP/1.1
Host: lassampy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://uqload.com
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: application/json
x-trace-id: bfe392edbf7472d700c424d6f0403a0a
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://uqload.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=d48f259e9f5843eba1de2fd815f5a8fc; expires=Thu, 07 Dec 2023 22:25:59 GMT; path=/; secure; SameSite=None
oaidts=1670451959; expires=Thu, 07 Dec 2023 22:25:59 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/rGEuPQvY8covIOJCFRJl4icPAzB.jpg
138.199.37.231404 Not Found 0 B URL HTTP/2 image.tmdb.org/t/p/w300/rGEuPQvY8covIOJCFRJl4icPAzB.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
GET /t/p/w300/rGEuPQvY8covIOJCFRJl4icPAzB.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 14:35:19
cdn-edgestorageid: 865
cdn-status: 404
cdn-requestid: 804332f00bccd206f2d8f8977eec739b
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/css/style.css
172.64.109.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/windows/flash-all/ssp/1/css/style.css
IP 172.64.109.13:0
GET /sb/notifications/software/us/windows/flash-all/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://streaming-french.net
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:26:01 GMT
content-type: text/css
last-modified: Thu, 23 Sep 2021 11:41:22 GMT
etag: W/"614c67e2-160c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I6yJ1T7oesfPe56d4GUrzvEGgIVwjv21Zz9WHex7QD9JlCi64zPJUy8QlnBKSR10Ig63%2F9XOAy9ZkFSg%2FLlrj9GrQMxb%2BQQCXqe3%2B7sb7PshWdduElOZ6ArldTdfkQVu9LEN4Id5%2BZFe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7760ae33cf95240d-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
uqload.com/embed-pp7z8c8do197.html
104.26.0.58200 OK 0 B URL HTTP/2 uqload.com/embed-pp7z8c8do197.html
IP 104.26.0.58:0
GET /embed-pp7z8c8do197.html HTTP/1.1
Host: uqload.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html; charset=UTF-8
expires: Tue, 06 Dec 2022 22:25:58 GMT
x-frame-options: 1
set-cookie: lang=1; domain=.uqload.com; path=/; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BV0H9LgBS%2FmaWoiNoaCFS%2FC2GYcgokHAxFAIxb8YV6Qa0YIkdWUKtoOkBs8qgx%2BfVOxfXBtEEJ%2FRWk0TzKUqTztAiuOlnfUna%2BRfDlpvbYtaOGi63gDKS2rGcmM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7760ae241ac0b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/hDEJwkJ6PFVgahobPOgs9GicwqB.jpg
138.199.37.231404 Not Found 0 B URL HTTP/2 image.tmdb.org/t/p/w300/hDEJwkJ6PFVgahobPOgs9GicwqB.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
GET /t/p/w300/hDEJwkJ6PFVgahobPOgs9GicwqB.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 12:19:40
cdn-edgestorageid: 722
cdn-status: 404
cdn-requestid: 081b0c91281af1493cc47c07bd47a4f8
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/rHGtlgH7Kjr531KFF6FSvTbmDaN.jpg
138.199.37.231404 Not Found 0 B URL HTTP/2 image.tmdb.org/t/p/w300/rHGtlgH7Kjr531KFF6FSvTbmDaN.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
GET /t/p/w300/rHGtlgH7Kjr531KFF6FSvTbmDaN.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:58 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 14:35:19
cdn-edgestorageid: 865
cdn-status: 404
cdn-requestid: cb718fdf8c53c72dc8a92d867a20d8fc
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
image.tmdb.org/t/p/w300/wl8TiPD1ts87uknd2dvKRZqi6ha.jpg
138.199.37.231404 Not Found 0 B URL HTTP/2 image.tmdb.org/t/p/w300/wl8TiPD1ts87uknd2dvKRZqi6ha.jpg
IP 138.199.37.231:0
ASN #60068 Datacamp Limited
GET /t/p/w300/wl8TiPD1ts87uknd2dvKRZqi6ha.jpg HTTP/1.1
Host: image.tmdb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://streaming-french.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
date: Wed, 07 Dec 2022 22:25:57 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-DE1-863
cdn-pullzone: 775336
cdn-uid: 29af4e0e-bcbd-4fcb-8635-74ddc38a1ebf
cdn-requestcountrycode: NO
alt-svc: h3=":443"
cache-control: max-age=43200
etag: W/"653e955073f6ff68f1e0cfa5a613ef75"
last-modified: Thu, 08 Apr 2021 15:54:44 GMT
perma-cache: MISS
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 404
cdn-cachedat: 12/07/2022 14:35:19
cdn-edgestorageid: 860
cdn-status: 404
cdn-requestid: 215f0f9db8e176c4c8b22c36dc1e5b8e
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
rndskittytor.com/400/3094561
139.45.197.238200 OK 0 B URL HTTP/2 rndskittytor.com/400/3094561
IP 139.45.197.238:0
Analyzer Verdict Alert quad9 Sinkholed
GET /400/3094561 HTTP/1.1
Host: rndskittytor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://uqload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 07 Dec 2022 22:25:59 GMT
content-type: application/javascript
x-trace-id: 9f0fb4a999284f529833874f231a632f
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=7e0383fee40645b9b9a61e3faae8476c; expires=Thu, 07 Dec 2023 22:25:59 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2