www.mankacharcollege.in/pdf/AQAR/2017-18.pdf
188.114.96.1301 Moved Permanently 0 B URL HTTP/1.1 www.mankacharcollege.in/pdf/AQAR/2017-18.pdf
IP 188.114.96.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /pdf/AQAR/2017-18.pdf HTTP/1.1
Host: www.mankacharcollege.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 27 Jan 2023 10:32:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 27 Jan 2023 11:32:26 GMT
Location: https://www.mankacharcollege.in/pdf/AQAR/2017-18.pdf
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Eu%2F234YYXPag%2BXG%2FgeAP6NTQWDGmWY5hTlIQMu5gS8oBSXjORVcIn%2BBDFIK6YG%2BJsUznxkzkHjVc8qrglejMX1wL8BEuB5PBLyAB7VWnLWxqlw8Ke%2BiDFAXbmxHjvvVddLdzSP03XENSBA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7900d30edf4fb4e8-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11943
Expires: Fri, 27 Jan 2023 13:51:29 GMT
Date: Fri, 27 Jan 2023 10:32:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 58ffdcb539c3b250fdf31ed761627fc1
5b55b1522ef84c39b5c42f9bbfbc62b806c1269f
eb783cfa8c8544b0574b345abc0bf3c150979d4efce1a013f17b6cd48076fc63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB783CFA8C8544B0574B345ABC0BF3C150979D4EFCE1A013F17B6CD48076FC63"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18376
Expires: Fri, 27 Jan 2023 15:38:42 GMT
Date: Fri, 27 Jan 2023 10:32:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7025
Expires: Fri, 27 Jan 2023 12:29:31 GMT
Date: Fri, 27 Jan 2023 10:32:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 09:35:20 GMT
content-type: application/json
age: 3426
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 4WmOrQveVOTscA28uPDNt295cyAotzEoX0UpPT8NcLusvJz8B9ZXO2PN/Z9qN8dmLz+Z00vB3bQ=
x-amz-request-id: YRNP2RJ2Y00AHB8E
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 09:49:22 GMT
age: 2584
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:26 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cb7a355a91340246501268bfc4ecbc0
b96b01b53d88f53609d0340278688962d9ae243f
2e6618ecc427c86c7a759a5b5d4a7f4c7a012865cb056504b203ab0ede03f151
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2E6618ECC427C86C7A759A5B5D4A7F4C7A012865CB056504B203AB0EDE03F151"
Last-Modified: Wed, 25 Jan 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11378
Expires: Fri, 27 Jan 2023 13:42:05 GMT
Date: Fri, 27 Jan 2023 10:32:27 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1cb7a355a91340246501268bfc4ecbc0
b96b01b53d88f53609d0340278688962d9ae243f
2e6618ecc427c86c7a759a5b5d4a7f4c7a012865cb056504b203ab0ede03f151
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2E6618ECC427C86C7A759A5B5D4A7F4C7A012865CB056504B203AB0EDE03F151"
Last-Modified: Wed, 25 Jan 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11378
Expires: Fri, 27 Jan 2023 13:42:05 GMT
Date: Fri, 27 Jan 2023 10:32:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 09:49:03 GMT
age: 2604
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12863
Expires: Fri, 27 Jan 2023 14:06:50 GMT
Date: Fri, 27 Jan 2023 10:32:27 GMT
Connection: keep-alive
mankacharcollege.in/
104.21.45.165200 OK 23 kB IP 104.21.45.165:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32876)
Hash 2de33045b241855821ae7f5ae9468870
63efcd151411defc74f94655f9718e1f996c5a3d
188c437290cb2b92709d1d51df1d26c4d59c889b556c7bf01a8d47fdd9545b93
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: mankacharcollege.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: text/html;charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=octLBq%2F7yVsWbeL5%2B7P%2BQ1KZMGMkXfoDrcF2ze04PrpDCJw9cmzkKu%2B6kqriUuuGgQVWXZ2bOdWSr1K0CjVX6KOohFZzzvtCq6X%2BncTeyhTv%2BoEByjSKiKg2BrkySv15rl9KpzYt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7900d312aa73b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 30 kB IP 104.18.32.68:0
File type PNG image data, 300 x 91, 8-bit/color RGBA, non-interlaced\012- data
Hash 0ac89a6cfaa7dd08d717619597377bd0
3e8a5583b294e69fc6b430a8fddb035e4b8297d2
cac3824b7ddf3826ba74b7c428595f18b3ed3d25447c43650d48f3ada121e8d0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 10:32:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 19:57:23 GMT
Expires: Thu, 02 Feb 2023 19:57:22 GMT
Etag: "2b54701e31729d336006652bf9a79a68ec13b6c8"
Cache-Control: max-age=551694,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7900d315acd00b51-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 323f59c087eaaa2aebd22b51c2cd916a
2b54701e31729d336006652bf9a79a68ec13b6c8
04d018b1ef9b88bc9feb49bfc4cd2d57b4ae1f8e8a047e8d18f1dce7d722dde1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 10:32:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 19:57:23 GMT
Expires: Thu, 02 Feb 2023 19:57:22 GMT
Etag: "2b54701e31729d336006652bf9a79a68ec13b6c8"
Cache-Control: max-age=551694,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7900d315adecb4fa-OSL
push.services.mozilla.com/
44.227.71.100101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.227.71.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: XcYNy3LaftQ/lyNbK1qTKw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CeOLUopq+iyKdCqzNooDb3tJ4ZE=
ancznewozw.com/solid.gif?z=1937112&abvar=0
62.122.171.6200 OK 43 B URL HTTP/2 ancznewozw.com/solid.gif?z=1937112&abvar=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
Analyzer Verdict Alert quad9 Sinkholed
POST /solid.gif?z=1937112&abvar=0 HTTP/1.1
Host: ancznewozw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mankacharcollege.in
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v-08addf548ba/v3/js/skins/min/xnxx.header.static.js
69.55.53.168200 OK 56 kB URL HTTP/2 static-ss.xnxx-cdn.com/v-08addf548ba/v3/js/skins/min/xnxx.header.static.js
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type C source, Unicode text, UTF-8 text, with very long lines (31989)
Hash 11c6856cbbfb115cb7a4ca2f29ddf712
8a6a79078f0bc0fe7e4d28fa142d59053bae3a12
839ecdc48648a9dfc400068b6e3abcbbb544697c8d53521a35613f939fb1c243
GET /v-08addf548ba/v3/js/skins/min/xnxx.header.static.js HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: application/javascript
content-length: 55524
last-modified: Thu, 26 Jan 2023 00:01:32 GMT
vary: Accept-Encoding
etag: "63d1c2dc-d8e4"
content-encoding: gzip
expires: Sat, 28 Jan 2023 10:32:27 GMT
cache-control: max-age=86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/img/lightbox/lightbox-blank.gif
69.55.53.168200 OK 43 B URL HTTP/2 static-ss.xnxx-cdn.com/img/lightbox/lightbox-blank.gif
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /img/lightbox/lightbox-blank.gif HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: image/gif
content-length: 43
last-modified: Wed, 18 Nov 2020 22:15:35 GMT
etag: "5fb59d07-2b"
expires: Sat, 28 Jan 2023 10:32:27 GMT
cache-control: max-age=86400
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v-e1a59334094/v3/css/xnxx/front.css
69.55.53.168200 OK 86 kB URL HTTP/2 static-ss.xnxx-cdn.com/v-e1a59334094/v3/css/xnxx/front.css
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type ASCII text, with very long lines (56358)
Hash 05e334c16e7c383182d94e835715c579
f238d232a50e21fe8536e7041daaddf14f816812
e7b20c3b6bcf1095df5973ac60d1208f975378fa25246f12e533c13f7ce71b5f
GET /v-e1a59334094/v3/css/xnxx/front.css HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: text/css
content-length: 85696
last-modified: Mon, 23 Jan 2023 17:57:42 GMT
vary: Accept-Encoding
etag: "63ceca96-14ec0"
content-encoding: gzip
expires: Sat, 28 Jan 2023 10:32:27 GMT
cache-control: max-age=86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v3/js/skins/min/require.static.js
69.55.53.168200 OK 6.6 kB URL HTTP/2 static-ss.xnxx-cdn.com/v3/js/skins/min/require.static.js
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type ASCII text, with very long lines (17493)
Hash f67c1acfe28c09722244a04505dd1caf
11534c49fae4c0cf1bf206a82263c3e8aa3ae063
38285b15471b5f114019dfa09e613000fc100a48ffcf70b56e5f531c5a546de5
GET /v3/js/skins/min/require.static.js HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: application/javascript
content-length: 6599
last-modified: Fri, 10 Jan 2020 11:29:56 GMT
vary: Accept-Encoding
etag: "5e186034-19c7"
content-encoding: gzip
expires: Sat, 28 Jan 2023 10:32:27 GMT
cache-control: max-age=86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 323f59c087eaaa2aebd22b51c2cd916a
2b54701e31729d336006652bf9a79a68ec13b6c8
04d018b1ef9b88bc9feb49bfc4cd2d57b4ae1f8e8a047e8d18f1dce7d722dde1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 10:32:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 19:57:23 GMT
Expires: Thu, 02 Feb 2023 19:57:22 GMT
Etag: "2b54701e31729d336006652bf9a79a68ec13b6c8"
Cache-Control: max-age=551694,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7900d3159b80b524-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 323f59c087eaaa2aebd22b51c2cd916a
2b54701e31729d336006652bf9a79a68ec13b6c8
04d018b1ef9b88bc9feb49bfc4cd2d57b4ae1f8e8a047e8d18f1dce7d722dde1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 10:32:27 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 26 Jan 2023 19:57:23 GMT
Expires: Thu, 02 Feb 2023 19:57:22 GMT
Etag: "2b54701e31729d336006652bf9a79a68ec13b6c8"
Cache-Control: max-age=551694,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7900d315a8351c06-OSL
static-ss.xnxx-cdn.com/v3/js/libs/jquery.min.js
69.55.53.168200 OK 34 kB URL HTTP/2 static-ss.xnxx-cdn.com/v3/js/libs/jquery.min.js
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type ASCII text, with very long lines (32077)
Hash 2c66f12c4d5f582f2e9ece7a8d1a5046
b9c70eb040e4fd2795c13bd884f5bda727be5fc3
d8b3519b602619e6f250046ffb6d94450c4428df6357137c71b98a9b4b30cb01
GET /v3/js/libs/jquery.min.js HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: application/javascript
content-length: 33595
last-modified: Tue, 05 Jul 2022 19:57:31 GMT
vary: Accept-Encoding
etag: "62c497ab-833b"
content-encoding: gzip
expires: Sat, 28 Jan 2023 10:32:27 GMT
cache-control: max-age=86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v-4e816821dca/v3/js/skins/min/xnxx.footer.static.js
69.55.53.168200 OK 9.3 kB URL HTTP/2 static-ss.xnxx-cdn.com/v-4e816821dca/v3/js/skins/min/xnxx.footer.static.js
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type ASCII text, with very long lines (31991)
Hash 4784fa224847e7cb077906006accc78b
c4ef7f871287bc359a345e493f2217dd443262c0
c5521b2ebfd12300eb1638049cb54a28e5ca31d814b3c2d3a0658ea14c84aa53
GET /v-4e816821dca/v3/js/skins/min/xnxx.footer.static.js HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: application/javascript
content-length: 9341
last-modified: Thu, 21 Apr 2022 10:34:20 GMT
vary: Accept-Encoding
etag: "6261332c-247d"
content-encoding: gzip
expires: Sat, 28 Jan 2023 10:32:27 GMT
cache-control: max-age=86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v-54a4440dcae/v3/js/i18n/front/hi.json
69.55.53.168200 OK 39 kB URL HTTP/2 static-ss.xnxx-cdn.com/v-54a4440dcae/v3/js/i18n/front/hi.json
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash b3e839e92206ea6fdac85f2e1fd4fd3c
ad7ce8a97615f04a6eca0ff6c3c5b3a68920ed58
8dc85548c816f1decf5d2c9d67cf1fcd65a1f235decdd0e3fc6806e1c5da30b2
GET /v-54a4440dcae/v3/js/i18n/front/hi.json HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mankacharcollege.in
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: application/json
content-length: 39215
last-modified: Fri, 27 Jan 2023 10:23:24 GMT
vary: Accept-Encoding
etag: "63d3a61c-992f"
content-encoding: gzip
expires: Sat, 28 Jan 2023 10:32:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
limurol.com/ssp/req/1937112/?pb=f10696bbe9a292ee2ff1d35abd5e47121674822747&psp=ZnMfBLg4YgXZEAv2tJlO3wx96C94Kx7x1pX-_5-zNPKjKG7GtaxdrbbvSwkcghworjNgYRnCYR0FlTBWdD4UnVDrHtJ0GCQIu1reIPQu2KPnR-Y2bzvEdhH6mWoBJ31ypW3lnrkg5MmiGOhWiQ6xfOxkgcHB7luS_5Cuv_N47raulhkw6dlo0JUa_cD2zEwDbIv8mDyaCgS6btKEMkSEvp1ss69Y8Gv_4uB4zzmcM2ZdGuqjuzDhfltzRryxeGnIzX-G9ebutQt5D47UoDOaziG1-VVX2Cxke3gJrCm_nBVOBkYpfu-Bf9xU8ZlKj2FQQIDe3B4KXssbGkejFVDN-GrsSEtRlIlPf_H3vygABs4SlG65PAqeFOO7ifu436cx9vUoeAFWVrZm7eF7uqCNkw2FgfKqmWnt8RcvQgVhjqh-sPxuF-O5-Exa_xCZ969FVWVjYzPkl5fy0DipcyOB2FQP3Rd_swksAvyn8ERT0u_3Zgq_A0FWaP8dabIHfCg9uQ34ddYN7zpt7JnhifRON1tbS354xNEA6OYb4oFGZ5kSaV5Sef8BgKGVVRvZEkCE9xq8IRBSiIq2z50MwMByX3s1EN40A_EHrL72iyxxEEI7zSH3Of05l09LclWEH2oK8oYMGIWSUSgw-tZnK4i6GrZHHKLPc4WJ_W4DVizepLcw3_oJINxRIvAfb72B7iXdoWcAGbg2IocQ3pyGacDMSDk=&cb=_cl5g7l0oaw0vb9pbbpht7v&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1937112/?pb=f10696bbe9a292ee2ff1d35abd5e47121674822747&psp=ZnMfBLg4YgXZEAv2tJlO3wx96C94Kx7x1pX-_5-zNPKjKG7GtaxdrbbvSwkcghworjNgYRnCYR0FlTBWdD4UnVDrHtJ0GCQIu1reIPQu2KPnR-Y2bzvEdhH6mWoBJ31ypW3lnrkg5MmiGOhWiQ6xfOxkgcHB7luS_5Cuv_N47raulhkw6dlo0JUa_cD2zEwDbIv8mDyaCgS6btKEMkSEvp1ss69Y8Gv_4uB4zzmcM2ZdGuqjuzDhfltzRryxeGnIzX-G9ebutQt5D47UoDOaziG1-VVX2Cxke3gJrCm_nBVOBkYpfu-Bf9xU8ZlKj2FQQIDe3B4KXssbGkejFVDN-GrsSEtRlIlPf_H3vygABs4SlG65PAqeFOO7ifu436cx9vUoeAFWVrZm7eF7uqCNkw2FgfKqmWnt8RcvQgVhjqh-sPxuF-O5-Exa_xCZ969FVWVjYzPkl5fy0DipcyOB2FQP3Rd_swksAvyn8ERT0u_3Zgq_A0FWaP8dabIHfCg9uQ34ddYN7zpt7JnhifRON1tbS354xNEA6OYb4oFGZ5kSaV5Sef8BgKGVVRvZEkCE9xq8IRBSiIq2z50MwMByX3s1EN40A_EHrL72iyxxEEI7zSH3Of05l09LclWEH2oK8oYMGIWSUSgw-tZnK4i6GrZHHKLPc4WJ_W4DVizepLcw3_oJINxRIvAfb72B7iXdoWcAGbg2IocQ3pyGacDMSDk=&cb=_cl5g7l0oaw0vb9pbbpht7v&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1937112/?pb=f10696bbe9a292ee2ff1d35abd5e47121674822747&psp=ZnMfBLg4YgXZEAv2tJlO3wx96C94Kx7x1pX-_5-zNPKjKG7GtaxdrbbvSwkcghworjNgYRnCYR0FlTBWdD4UnVDrHtJ0GCQIu1reIPQu2KPnR-Y2bzvEdhH6mWoBJ31ypW3lnrkg5MmiGOhWiQ6xfOxkgcHB7luS_5Cuv_N47raulhkw6dlo0JUa_cD2zEwDbIv8mDyaCgS6btKEMkSEvp1ss69Y8Gv_4uB4zzmcM2ZdGuqjuzDhfltzRryxeGnIzX-G9ebutQt5D47UoDOaziG1-VVX2Cxke3gJrCm_nBVOBkYpfu-Bf9xU8ZlKj2FQQIDe3B4KXssbGkejFVDN-GrsSEtRlIlPf_H3vygABs4SlG65PAqeFOO7ifu436cx9vUoeAFWVrZm7eF7uqCNkw2FgfKqmWnt8RcvQgVhjqh-sPxuF-O5-Exa_xCZ969FVWVjYzPkl5fy0DipcyOB2FQP3Rd_swksAvyn8ERT0u_3Zgq_A0FWaP8dabIHfCg9uQ34ddYN7zpt7JnhifRON1tbS354xNEA6OYb4oFGZ5kSaV5Sef8BgKGVVRvZEkCE9xq8IRBSiIq2z50MwMByX3s1EN40A_EHrL72iyxxEEI7zSH3Of05l09LclWEH2oK8oYMGIWSUSgw-tZnK4i6GrZHHKLPc4WJ_W4DVizepLcw3_oJINxRIvAfb72B7iXdoWcAGbg2IocQ3pyGacDMSDk=&cb=_cl5g7l0oaw0vb9pbbpht7v&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=2301270532542ae0b0524b4d74874dc0fa79; Path=/; Expires=Sat, 27 Jan 2024 10:32:28 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v-00000000005/v3/img/skins/xnxx/icons-sprite.svg
69.55.53.168200 OK 3.7 kB URL HTTP/2 static-ss.xnxx-cdn.com/v-00000000005/v3/img/skins/xnxx/icons-sprite.svg
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 62d887561f8582596538ca4f07b4ab9d
45feb93db0c3d8277724d66e627202ba24765c25
42254014b1fa02b2bb9bee4c1f928ea1e54ef3bc1738ca889d7db4820291a4fb
GET /v-00000000005/v3/img/skins/xnxx/icons-sprite.svg HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static-ss.xnxx-cdn.com/v-e1a59334094/v3/css/xnxx/front.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/svg+xml
content-length: 3711
last-modified: Wed, 18 Nov 2020 22:15:37 GMT
vary: Accept-Encoding
etag: "5fb59d09-e7f"
content-encoding: gzip
expires: Sat, 28 Jan 2023 10:32:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/41/05/e6/4105e678ccb7531b44dd04cd6cf3f588/4105e678ccb7531b44dd04cd6cf3f588.13.jpg
104.18.54.205200 OK 10 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/41/05/e6/4105e678ccb7531b44dd04cd6cf3f588/4105e678ccb7531b44dd04cd6cf3f588.13.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash 551e748b3b7f1894f5d2501ea88060d1
b6eac40430bcf9c5f66d0d398f394234f0148bb4
9a485dbe0a1c24c69e7c3e13eabfe096a032c15d17819286a05d0b3e2f328ec2
GET /videos/thumbs169xnxxll/41/05/e6/4105e678ccb7531b44dd04cd6cf3f588/4105e678ccb7531b44dd04cd6cf3f588.13.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 10279
cf-ray: 7900d3189a17b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 201489
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Sat, 24 Jul 2021 11:33:50 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v-02301161122/v3/fonts/skins/common/iconfont/iconfont.woff2?c5edkr
69.55.53.168200 OK 24 kB URL HTTP/2 static-ss.xnxx-cdn.com/v-02301161122/v3/fonts/skins/common/iconfont/iconfont.woff2?c5edkr
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type Web Open Font Format (Version 2), TrueType, length 23512, version 1.0\012- data
Hash e6b5c496988a1f3e1a68451ee4f97e22
168359633d167516868c1a25e1b572b6ad3a912d
7fcbaeb585accde4dd0256966181ae588746889946e39d6f153f5899290da380
GET /v-02301161122/v3/fonts/skins/common/iconfont/iconfont.woff2?c5edkr HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mankacharcollege.in
Connection: keep-alive
Referer: https://static-ss.xnxx-cdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: font/woff2
content-length: 23512
last-modified: Mon, 16 Jan 2023 10:34:39 GMT
etag: "63c5283f-5bd8"
expires: Sat, 28 Jan 2023 10:32:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/10/7b/fb/107bfb32802d47fd3d5a59b6c7cecc2c/107bfb32802d47fd3d5a59b6c7cecc2c.15.jpg
104.18.54.205200 OK 26 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/10/7b/fb/107bfb32802d47fd3d5a59b6c7cecc2c/107bfb32802d47fd3d5a59b6c7cecc2c.15.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 352x198, components 3\012- data
Hash 83b51a0641223cd57e8c2d746a53ac7e
e47e4ea690f66f93ca1f73d1e638644d14119423
7e069c59d0af7bbe9dcf25cab21dfa9c9c51829388dfeb950502b02c422a925f
GET /videos/thumbs169xnxxll/10/7b/fb/107bfb32802d47fd3d5a59b6c7cecc2c/107bfb32802d47fd3d5a59b6c7cecc2c.15.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 25500
cf-ray: 7900d3189a18b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 4552609
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Wed, 17 Feb 2021 21:48:55 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origSize=25607, status=webp_bigger
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/68/24/77/682477b5704c379cd6f245b3bcbd6e69-3/682477b5704c379cd6f245b3bcbd6e69.1.jpg
104.18.54.205200 OK 16 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/68/24/77/682477b5704c379cd6f245b3bcbd6e69-3/682477b5704c379cd6f245b3bcbd6e69.1.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash b2597d30950d30901586c00240953833
3ad7d9f2f8f6c6da2259abc0a510213891004eb9
d55863016c0d69334d8c6490c965e1c0b89d70633f1de76b1a3ba5c58d1f271b
GET /videos/thumbs169xnxxll/68/24/77/682477b5704c379cd6f245b3bcbd6e69-3/682477b5704c379cd6f245b3bcbd6e69.1.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 16212
cf-ray: 7900d3189a16b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 232948
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Thu, 01 Sep 2022 04:16:12 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/af/d0/3e/afd03e0c5b3a15b6f14c47090cfbb566-1/afd03e0c5b3a15b6f14c47090cfbb566.24.jpg
104.18.54.205200 OK 12 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/af/d0/3e/afd03e0c5b3a15b6f14c47090cfbb566-1/afd03e0c5b3a15b6f14c47090cfbb566.24.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 352x198, components 3\012- data
Hash 8dcd10668bf6874147621acf2c22c13c
03414553a53b806c980f1ddfa6a93f97dbdf39ff
0c4d892d1bf9877db9230791d1c0ca921b7711778cfb9aa1e3275d883331e900
GET /videos/thumbs169xnxxll/af/d0/3e/afd03e0c5b3a15b6f14c47090cfbb566-1/afd03e0c5b3a15b6f14c47090cfbb566.24.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 12485
cf-ray: 7900d3189a12b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 29461
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Tue, 06 Apr 2021 19:29:19 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origSize=12597, status=webp_bigger
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/08/37/f1/0837f122ccaaca0ebeb0451c15a8b193/0837f122ccaaca0ebeb0451c15a8b193.26.jpg
104.18.54.205200 OK 14 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/08/37/f1/0837f122ccaaca0ebeb0451c15a8b193/0837f122ccaaca0ebeb0451c15a8b193.26.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash df280a98e62e66b66b2faaffb711cfa5
5c4c4b7104e6af4a8516fcf7a139b0fcb11fef6a
f2a7907e3f1714155d255f6e542ff0c1de1991b734eec7a29ed138c6ee6e56fd
GET /videos/thumbs169xnxxll/08/37/f1/0837f122ccaaca0ebeb0451c15a8b193/0837f122ccaaca0ebeb0451c15a8b193.26.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 13834
cf-ray: 7900d3189a10b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 708941
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Sat, 12 Feb 2022 13:51:50 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/5c/f7/e1/5cf7e1b76208d7beb8e11efc4a347b7d-1/5cf7e1b76208d7beb8e11efc4a347b7d.4.jpg
104.18.54.205200 OK 14 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/5c/f7/e1/5cf7e1b76208d7beb8e11efc4a347b7d-1/5cf7e1b76208d7beb8e11efc4a347b7d.4.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash d2c71f4c80efd420a19447ae56fb854b
f1addd09c125117a54d6a526af358a259bc2d1da
d137dd5b1ea4321a221fd9c1c7e17b50e8f4f90fbf303671ef5c34fe5f0ca2fb
GET /videos/thumbs169xnxxll/5c/f7/e1/5cf7e1b76208d7beb8e11efc4a347b7d-1/5cf7e1b76208d7beb8e11efc4a347b7d.4.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 14516
cf-ray: 7900d318aa20b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 693806
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Sat, 01 Apr 2017 20:03:32 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/4e/09/10/4e0910a3c921bf50426ca4a0711b6a23/4e0910a3c921bf50426ca4a0711b6a23.14.jpg
104.18.54.205200 OK 16 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/4e/09/10/4e0910a3c921bf50426ca4a0711b6a23/4e0910a3c921bf50426ca4a0711b6a23.14.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash dfb0f4b67aa1339092caf1885520baae
b2281415b7839b6d58b36bf4f9fba42b0fe72c93
87ae7481bffec1e2a40cf6e0eda1dafb7d59aa9f36cc6b3ff2c8786d76b3e9b3
GET /videos/thumbs169xnxxll/4e/09/10/4e0910a3c921bf50426ca4a0711b6a23/4e0910a3c921bf50426ca4a0711b6a23.14.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 15994
cf-ray: 7900d318aa24b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 709973
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Thu, 11 Mar 2021 21:29:19 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/29/8c/76/298c76f8e73e303a1f01f28151bc92b7/298c76f8e73e303a1f01f28151bc92b7.17.jpg
104.18.54.205200 OK 15 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/29/8c/76/298c76f8e73e303a1f01f28151bc92b7/298c76f8e73e303a1f01f28151bc92b7.17.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 352x198, components 3\012- data
Hash 3d4f9ca360f8c902e7e8ff526c8568e5
f748e2cf8643a195a9b15a8a42eb87a28fef261a
d44c31d81e4442ee6af964967eb24b5f11a2d1f8fafeec8fc2fdc32705424711
GET /videos/thumbs169xnxxll/29/8c/76/298c76f8e73e303a1f01f28151bc92b7/298c76f8e73e303a1f01f28151bc92b7.17.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 15396
cf-ray: 7900d3189a19b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 4745499
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Mon, 23 Nov 2020 12:24:57 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origSize=16218, status=webp_bigger
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/18/fa/8c/18fa8c17e35cf7c3fb09eef40aa33f27/18fa8c17e35cf7c3fb09eef40aa33f27.16.jpg
104.18.54.205200 OK 15 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/18/fa/8c/18fa8c17e35cf7c3fb09eef40aa33f27/18fa8c17e35cf7c3fb09eef40aa33f27.16.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 352x198, components 3\012- data
Hash 033eb3b9540d0660c9ccdee8578d902d
397fb4a3fab62f2b57f434e7725f7d5ecf7b1c62
e6f18770d73b05aaba9f4641d53c285bd5e2aa34befb9a95fef2880a1ccd35f6
GET /videos/thumbs169xnxxll/18/fa/8c/18fa8c17e35cf7c3fb09eef40aa33f27/18fa8c17e35cf7c3fb09eef40aa33f27.16.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 14722
cf-ray: 7900d318aa22b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 4602963
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Sat, 01 Apr 2017 11:59:31 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origSize=15513, status=webp_bigger
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/92/9a/7e/929a7ee94f680bd18347ce0e8b83fd22-1/929a7ee94f680bd18347ce0e8b83fd22.27.jpg
104.18.54.205200 OK 18 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/92/9a/7e/929a7ee94f680bd18347ce0e8b83fd22-1/929a7ee94f680bd18347ce0e8b83fd22.27.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash e695878b4287d8fe2850c5816215a454
e618386ec347cbf71b63ea48157ef17c43819c25
d27cc0c7f7a5a2ec6a6b204146da73d79fbad483336242a4dde416804fe0620f
GET /videos/thumbs169xnxxll/92/9a/7e/929a7ee94f680bd18347ce0e8b83fd22-1/929a7ee94f680bd18347ce0e8b83fd22.27.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 18442
cf-ray: 7900d318ba36b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 194511
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Mon, 29 Jan 2018 06:41:44 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-77-cache: HIT
x-77-nzt: AsO1rwWV0EH/tOwUALlMCg0Q65r/+/oAAA
x-77-nzt-ray: yAnJwqfsIKo
x-77-pop: frankfurtDE
x-age-lb: 1371316
x-cache-lb: HIT
server: cloudflare
X-Firefox-Spdy: h2
omclyzyapf.com/i/npage/1937319/code.js
62.122.171.6200 OK 73 kB URL HTTP/2 omclyzyapf.com/i/npage/1937319/code.js
IP 62.122.171.6:0
Hash 6359926e144808a8f6533a99a93ea548
4c235990bf4edb3f533b41bb637f544c833a5274
d2925900863efdbc29865174c9bfa2130fdc724c30e9f4f0df6487650f33e4e9
Analyzer Verdict Alert quad9 Sinkholed
GET /i/npage/1937319/code.js HTTP/1.1
Host: omclyzyapf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 13:21:09 GMT
vary: Accept-Encoding
etag: W/"63d27e45-34b3e"
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/2f/86/34/2f8634d240840cd6fe7baf405de501d1/2f8634d240840cd6fe7baf405de501d1.26.jpg
104.18.54.205200 OK 27 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/2f/86/34/2f8634d240840cd6fe7baf405de501d1/2f8634d240840cd6fe7baf405de501d1.26.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 352x198, components 3\012- data
Hash c5af34fef19bdf5b032062a01e6c571e
c721efb74738bad58cef21cc4197499f78de173c
0f12038024b3e567578a1e7837c7d36007f83d42e6901de5b5e01e43ec2584c9
GET /videos/thumbs169xnxxll/2f/86/34/2f8634d240840cd6fe7baf405de501d1/2f8634d240840cd6fe7baf405de501d1.26.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 27333
cf-ray: 7900d318da54b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 818805
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Fri, 12 Mar 2021 19:49:38 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origSize=27441, status=webp_bigger
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/d2/b6/b2/d2b6b2a937e3e195be74759728959f6b/d2b6b2a937e3e195be74759728959f6b.21.jpg
104.18.54.205200 OK 8.8 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/d2/b6/b2/d2b6b2a937e3e195be74759728959f6b/d2b6b2a937e3e195be74759728959f6b.21.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 352x198, components 3\012- data
Hash 61396832900b9939cc084706bb23fd05
997014ce50814997d5c3289efda4c7ac799fcf04
29d6d51d6bf23b39fa5f387e09adc2dffb705b43a73c34d80b9ec647850f89cb
GET /videos/thumbs169xnxxll/d2/b6/b2/d2b6b2a937e3e195be74759728959f6b/d2b6b2a937e3e195be74759728959f6b.21.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 8785
cf-ray: 7900d318da57b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 593363
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Sat, 19 Dec 2020 09:03:11 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: imgq:100,h2pri
cf-polished: origSize=8897, status=webp_bigger
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/52/89/80/528980caa03e4586bbc19aa5e3f5a8ba-1/528980caa03e4586bbc19aa5e3f5a8ba.2.jpg
104.18.54.205200 OK 17 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/52/89/80/528980caa03e4586bbc19aa5e3f5a8ba-1/528980caa03e4586bbc19aa5e3f5a8ba.2.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash 2dda886b8356a77174228ef9064888fb
0ad66097bf95815ecfbad2f50f12ae007a40db05
e99df4ee804eff231ced785e5ca3ed9aa76961649080bc72384d748d6bf4a2bc
GET /videos/thumbs169xnxxll/52/89/80/528980caa03e4586bbc19aa5e3f5a8ba-1/528980caa03e4586bbc19aa5e3f5a8ba.2.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 17120
cf-ray: 7900d3189a1bb506-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Sat, 01 Apr 2017 16:36:57 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/ab/af/ad/abafadb6379d38a12a15546a3879bf6b/abafadb6379d38a12a15546a3879bf6b.27.jpg
104.18.54.205200 OK 21 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/ab/af/ad/abafadb6379d38a12a15546a3879bf6b/abafadb6379d38a12a15546a3879bf6b.27.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash 903326e8eecc05f1a46a49c80a0e1da2
a9d219972533f42139f4c2244beb0cd60a01c9ee
07363e4c07b6fc5abedf38d5040cca1dbf7ca5e75d3924498d7d14916c16fb6d
GET /videos/thumbs169xnxxll/ab/af/ad/abafadb6379d38a12a15546a3879bf6b/abafadb6379d38a12a15546a3879bf6b.27.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 20825
cf-ray: 7900d3189a0eb506-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Fri, 21 Jun 2019 22:59:26 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-77-cache: HIT
x-77-nzt: AsO1rwJFP2D/owNhALlMCg3m/FTvHQU/AA
x-77-nzt-ray: 8y3bA9aogoc
x-77-pop: frankfurtDE
x-age-lb: 3924445, 6357923
x-cache-lb: HIT, HIT
x-edge-ip: 185.76.10.13
x-edge-pop: amsterdamNL
x-lb-ip: 185.152.65.49
x-lb-pop: pragueCZ
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/8f/13/e8/8f13e89cc9f5a78485bc33841e1edd3b-2/8f13e89cc9f5a78485bc33841e1edd3b.12.jpg
104.18.54.205200 OK 19 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/8f/13/e8/8f13e89cc9f5a78485bc33841e1edd3b-2/8f13e89cc9f5a78485bc33841e1edd3b.12.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash d2be10af5977dd30f79e642b75ce00bc
3b05ed46e842e69bab98795f1acf5d560b1beb72
52c006f8d0dca772c891978f2a1945fb41bcbfd3c14c769e18d8c301aeb61bfe
GET /videos/thumbs169xnxxll/8f/13/e8/8f13e89cc9f5a78485bc33841e1edd3b-2/8f13e89cc9f5a78485bc33841e1edd3b.12.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 19144
cf-ray: 7900d318aa2fb506-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Sat, 03 Sep 2022 01:59:16 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9bf475e8db9d8c7ee725f81994cdf3dc
f332af30bbf39fee7b84aefe6749b4ff03f6fd8e
dd4e24326aef7ac2bb2f166a834f0bc7b878240d19be3a050852dee54c51d0b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DD4E24326AEF7AC2BB2F166A834F0BC7B878240D19BE3A050852DEE54C51D0B5"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12057
Expires: Fri, 27 Jan 2023 13:53:25 GMT
Date: Fri, 27 Jan 2023 10:32:28 GMT
Connection: keep-alive
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/b6/08/99/b6089995d39c892c76a0fc5130537263/b6089995d39c892c76a0fc5130537263.2.jpg
104.18.54.205200 OK 16 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/b6/08/99/b6089995d39c892c76a0fc5130537263/b6089995d39c892c76a0fc5130537263.2.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash 275735945840a44921adff3395f3273b
0afb8677adc1f634f3d8a35d9a6bf1cfb778e40f
c98e5d5c77998ae010734a7da03dba96cc2dbc12866c2db05a8ec35a2427bb0a
GET /videos/thumbs169xnxxll/b6/08/99/b6089995d39c892c76a0fc5130537263/b6089995d39c892c76a0fc5130537263.2.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 16368
cf-ray: 7900d3189a13b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Sat, 01 Apr 2017 10:30:42 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/c6/13/b6/c613b6cff1f05670a342538edd585900/c613b6cff1f05670a342538edd585900.17.jpg
104.18.54.205200 OK 15 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/c6/13/b6/c613b6cff1f05670a342538edd585900/c613b6cff1f05670a342538edd585900.17.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash b3f08014e9a0c5ef9959598e8d310a7b
0835b402706ce365240b31016f51357ecc7d9235
c1fbec2e85146c47906b4547586aa5770585ef9f154ce235b263caac4c45b516
GET /videos/thumbs169xnxxll/c6/13/b6/c613b6cff1f05670a342538edd585900/c613b6cff1f05670a342538edd585900.17.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 15061
cf-ray: 7900d318ca42b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Mon, 03 Apr 2017 00:31:41 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/bb/25/43/bb2543e790ce847116804343f4732af3-1/bb2543e790ce847116804343f4732af3.5.jpg
195.181.166.14200 OK 20 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/bb/25/43/bb2543e790ce847116804343f4732af3-1/bb2543e790ce847116804343f4732af3.5.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash 67be826ee6525d2b9f43d8a14ccb298c
c895238f39ef2448fe91a8d386df18c4973977e9
bcd5ad5fa9a3b968179f5d1fa37c5c09372b6e280d162b96a9d1464a651fc002
GET /videos/thumbs169xnxxll/bb/25/43/bb2543e790ce847116804343f4732af3-1/bb2543e790ce847116804343f4732af3.5.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 19543
last-modified: Tue, 05 Mar 2019 07:25:45 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1678919697
x-77-nzt: A8O1pg3BUZ3/JCUoAJySISdQ7RH/B283AI/0OtjJO0z/vggAAA
x-77-nzt-ray: ffffffff08216c573ca8d36323761615
x-77-cache: HIT
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 3632903, 2630948
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/b3/06/16/b30616ec8a8d1c4a284a9be67c0dd46c-2/b30616ec8a8d1c4a284a9be67c0dd46c.9.jpg
104.18.54.205200 OK 14 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/b3/06/16/b30616ec8a8d1c4a284a9be67c0dd46c-2/b30616ec8a8d1c4a284a9be67c0dd46c.9.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash fa2029f0649fd67bdbdb58361552083e
bd90713942d8e8f8a4c7f4c6527a3eb6a8c13f33
90c3bd54f79d961ac12adca4969142661b34cde89febd5ac23731c0379363be8
GET /videos/thumbs169xnxxll/b3/06/16/b30616ec8a8d1c4a284a9be67c0dd46c-2/b30616ec8a8d1c4a284a9be67c0dd46c.9.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 13602
cf-ray: 7900d3189a0fb506-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Tue, 13 Sep 2022 06:55:23 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/8f/d3/23/8fd32334df120a60b46cf56a7392a5d4/8fd32334df120a60b46cf56a7392a5d4.9.jpg
195.181.166.14200 OK 12 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/8f/d3/23/8fd32334df120a60b46cf56a7392a5d4/8fd32334df120a60b46cf56a7392a5d4.9.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash 5afd50c5eadb9b47a977c117dd0cf488
1168887f9210349f79af0e892236920f9afc0073
9255aa31e862071bd48c47026deb6abd24fa1940b9ef4fd42ab367679bbd44ce
GET /videos/thumbs169xnxxll/8f/d3/23/8fd32334df120a60b46cf56a7392a5d4/8fd32334df120a60b46cf56a7392a5d4.9.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 11946
last-modified: Wed, 14 Mar 2018 01:14:41 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1677102685
x-77-nzt: A8O1pg2boTb/f+QBAJySIS5D8uz/YGl5AI/0OsjGbzn//xcAAA
x-77-nzt-ray: ffffffff08216c573ca8d363fe7e1f15
x-77-cache: HIT
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 7956832, 124031
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/7d/30/47/7d3047b5d70e33c9c492d0010a5be9b3-2/7d3047b5d70e33c9c492d0010a5be9b3.14.jpg
104.18.54.205200 OK 20 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169xnxxll/7d/30/47/7d3047b5d70e33c9c492d0010a5be9b3-2/7d3047b5d70e33c9c492d0010a5be9b3.14.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash ccc343fe0a376e878d627a371d3c6558
fb26baa775d6327273216d9153b4737776dd1d15
24e3dbe7997d64df5b1160323b5acf31b8c36a6b4d9f7544743c1c83bb7f648a
GET /videos/thumbs169xnxxll/7d/30/47/7d3047b5d70e33c9c492d0010a5be9b3-2/7d3047b5d70e33c9c492d0010a5be9b3.14.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 20170
cf-ray: 7900d318fa7cb506-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Sun, 02 Apr 2017 07:18:44 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/f0/2b/2c/f02b2c6bf094345b12ddb76996d0fdf6-3/f02b2c6bf094345b12ddb76996d0fdf6.18.jpg
195.181.166.14200 OK 11 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/f0/2b/2c/f02b2c6bf094345b12ddb76996d0fdf6-3/f02b2c6bf094345b12ddb76996d0fdf6.18.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash 1ab58d71f79354e27799a47e56193c48
1b8e10a7f2a0f7316e2d0467d3ed7c3ac966c0cf
9d9cf6ce8f47d3d889ed16020e8313c151f38557d6a16c255f5e391bd64eeab3
GET /videos/thumbs169xnxxll/f0/2b/2c/f02b2c6bf094345b12ddb76996d0fdf6-3/f02b2c6bf094345b12ddb76996d0fdf6.18.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 11130
x-frame-options: sameorigin
last-modified: Thu, 01 Sep 2022 01:55:17 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1682734622
x-77-nzt: A8O1pg2OPQb/vxwBAIrHJcFhXmD/X0EkAI/0OtjFC6H/pQEAAA
x-77-nzt-ray: ffffffff08216c573ca8d3638eaa2a15
x-77-cache: HIT
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 2376031, 72895
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/4a/a5/61/4aa561ed3190fde6ae63ada3087dfdcf/4aa561ed3190fde6ae63ada3087dfdcf.12.jpg
195.181.166.14200 OK 21 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/4a/a5/61/4aa561ed3190fde6ae63ada3087dfdcf/4aa561ed3190fde6ae63ada3087dfdcf.12.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash 6dc90867f9acf46fd7cc524dc2c9d8c6
0982c04b01e23b5e00b906928cd461a1cb2490ac
8778dd57fbea8e6b01c2a0d9085c128fd61b3eb8a2a617d126639894b3dd26d8
GET /videos/thumbs169xnxxll/4a/a5/61/4aa561ed3190fde6ae63ada3087dfdcf/4aa561ed3190fde6ae63ada3087dfdcf.12.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 21312
x-frame-options: sameorigin
last-modified: Mon, 06 May 2019 08:17:57 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1682380065
x-77-nzt: A8O1pg0dSFv/Ot0oANRmOJllXXX/4ekBAI/0Ot3c4Sz/+YgDAA
x-77-nzt-ray: ffffffff08216c573ca8d363f238e715
x-77-cache: HIT
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 125409, 2678074
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/3f/04/91/3f0491ef7188759fef840be2e905dd0a/3f0491ef7188759fef840be2e905dd0a.27.jpg
195.181.166.14200 OK 7.3 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/3f/04/91/3f0491ef7188759fef840be2e905dd0a/3f0491ef7188759fef840be2e905dd0a.27.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash 9d58c76eb850c959cf61f72ed5edcff3
976d2835957740331cadc0389250a5227a7920f3
8cf11611f11c88d2a4cbe6cbeaab324c94af50d4c950ba042ac39e0e75d8d7f6
GET /videos/thumbs169xnxxll/3f/04/91/3f0491ef7188759fef840be2e905dd0a/3f0491ef7188759fef840be2e905dd0a.27.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 7299
last-modified: Sat, 24 Jul 2021 11:50:55 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1677226305
x-77-nzt: A8O1pg1e92v/zJwoANRmOBV+HkL/L85QAI/0Ot0LH4v/N+sDAA
x-77-nzt-ray: ffffffff08216c573ca8d3637cf1f015
x-77-cache: HIT
server: CDN77-Turbo
x-cache-lb: HIT, HIT
x-age-lb: 5295663, 2661580
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
rxeosevsso.com/lv/esnk/1958139/code.js
62.122.171.6200 OK 49 kB URL HTTP/2 rxeosevsso.com/lv/esnk/1958139/code.js
IP 62.122.171.6:0
Hash be64ecf3e19b3a4aef2a69098f3a6584
76e14748b7d982602f6c30950c018616ec2078fb
5a1064e210574851da079ec5496d0db0ebc85c19c1b9b6d1c29544f1617a06de
Analyzer Verdict Alert quad9 Sinkholed
GET /lv/esnk/1958139/code.js HTTP/1.1
Host: rxeosevsso.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 13:21:09 GMT
vary: Accept-Encoding
etag: W/"63d27e45-1a2c5"
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/9e/f9/56/9ef956fe5f8d2da54b75f1318783832b-2/9ef956fe5f8d2da54b75f1318783832b.12.jpg
195.181.166.14200 OK 12 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/9e/f9/56/9ef956fe5f8d2da54b75f1318783832b-2/9ef956fe5f8d2da54b75f1318783832b.12.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash 1b488c4e3bde1661249309ec71f93575
6653dfa34a01b6021ef871c9a3e1bcb150b6de1a
3a4e8844cb4f5db73f2b939f2c8c5b6ca8719d48f5e05c7c835f35aeca70af1d
GET /videos/thumbs169xnxxll/9e/f9/56/9ef956fe5f8d2da54b75f1318783832b-2/9ef956fe5f8d2da54b75f1318783832b.12.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 11553
x-frame-options: sameorigin
last-modified: Sat, 03 Sep 2022 01:16:10 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1682926415
x-77-nzt: A8O1pg1vQCShnJIhI/btOv/tcCIAj/Q63c2dXf+ReAAA
x-77-nzt-ray: ffffffff08216c573ca8d363d3f51315
x-77-cache: HIT
x-age-lb: 2257133
server: CDN77-Turbo
x-cache-lb: HIT, MISS
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/1d/81/8d/1d818d3ea1d0d3a439ffc5dab9a52104-2/1d818d3ea1d0d3a439ffc5dab9a52104.13.jpg
195.181.166.14200 OK 11 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/1d/81/8d/1d818d3ea1d0d3a439ffc5dab9a52104-2/1d818d3ea1d0d3a439ffc5dab9a52104.13.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash 32fef805a0e4c55c8c3ace28345358e9
8a54ab227bb5d1d1ac149dbd82309850068858a7
00db86da96d8b6e366450fa8b4730f3c08a005012a8b20cd6d601c207eac5ce6
GET /videos/thumbs169xnxxll/1d/81/8d/1d818d3ea1d0d3a439ffc5dab9a52104-2/1d818d3ea1d0d3a439ffc5dab9a52104.13.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 11418
x-frame-options: sameorigin
last-modified: Thu, 01 Sep 2022 10:50:28 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1684873834
x-77-nzt: A8O1pg2qyxDBnJIhIzuNR//SuQQAj/Q63c+7eKE
x-77-nzt-ray: ffffffff08216c573ca8d36328a03115
x-77-cache: HIT
x-age-lb: 309714
server: CDN77-Turbo
x-cache-lb: HIT, MISS
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/24/89/20/2489204cc4db41014c9f05a92c5027be/2489204cc4db41014c9f05a92c5027be.29.jpg
195.181.166.14200 OK 8.5 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/24/89/20/2489204cc4db41014c9f05a92c5027be/2489204cc4db41014c9f05a92c5027be.29.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash 3db3f0f670daaa595437026d761283ec
f001ec81c02d5e58f1cacb6a6c3246cd8ea760db
10b3581fc384fdeb539047cacb7e8e920d55bbd00ebcfec26df5dd6c5a504ced
GET /videos/thumbs169xnxxll/24/89/20/2489204cc4db41014c9f05a92c5027be/2489204cc4db41014c9f05a92c5027be.29.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 8466
x-frame-options: sameorigin
last-modified: Fri, 09 Sep 2022 05:39:14 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1676051858
x-77-nzt: A8O1pg0LeRqhisclNCB6X++YaYgAj/Q63ZHC6P8S7QIA
x-77-nzt-ray: ffffffff08216c573ca8d36390e42815
x-77-cache: HIT
x-age-lb: 8939928
server: CDN77-Turbo
x-cache-lb: HIT, MISS
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/b1/50/8c/b1508cd67ef0732f246b0338cfa13b97-1/b1508cd67ef0732f246b0338cfa13b97.21.jpg
195.181.166.14200 OK 10 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/b1/50/8c/b1508cd67ef0732f246b0338cfa13b97-1/b1508cd67ef0732f246b0338cfa13b97.21.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash d674629bf98e47a76f1fac7cbc6a4dcd
72bed4a825aed65af36e5cbf07a2c1c5c7b3f2bd
01cde0a91112d85a372b91188ba0bff16ed4426507828ea49c8e0bb8cb4743c9
GET /videos/thumbs169xnxxll/b1/50/8c/b1508cd67ef0732f246b0338cfa13b97-1/b1508cd67ef0732f246b0338cfa13b97.21.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 10043
x-frame-options: sameorigin
last-modified: Fri, 23 Dec 2022 05:17:18 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1682144225
x-77-nzt: A8O1pg39cl6h1GY4CcLqSf9cXS4Aj/Q6yBdwtf//AgAA
x-77-nzt-ray: ffffffff08216c573ca8d363a87dfa15
x-77-cache: HIT
x-age-lb: 3038556
server: CDN77-Turbo
x-cache-lb: HIT, MISS
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/b2/23/60/b2236068e3402075f6b489fbdef078f6-1/b2236068e3402075f6b489fbdef078f6.18.jpg
195.181.166.14200 OK 12 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169xnxxll/b2/23/60/b2236068e3402075f6b489fbdef078f6-1/b2236068e3402075f6b489fbdef078f6.18.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash 2e71f7ceed78559aa115a3208acabc1d
cc96bd0e4206dbfa855e1aad8df20e459783d7c1
aaddee0bc11f09d8c876adeb50d00a91f891249cf96c6613ecd6916c365e9090
GET /videos/thumbs169xnxxll/b2/23/60/b2236068e3402075f6b489fbdef078f6-1/b2236068e3402075f6b489fbdef078f6.18.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 11790
last-modified: Sun, 02 Apr 2017 02:05:44 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1677552012
x-77-nzt: A8O1pg0YS6uhisclxABf9v+wcnQAj/Q63dH2dv/DGQAA
x-77-nzt-ray: ffffffff08216c573ca8d3631d3af815
x-77-cache: HIT
x-age-lb: 7631536
server: CDN77-Turbo
x-cache-lb: HIT, MISS
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
img-l3.xnxx-cdn.com/videos/thumbs169xnxxll/ea/36/36/ea3636b61b0690c35aba9eb4be3d8318/ea3636b61b0690c35aba9eb4be3d8318.4.jpg
8.252.23.243200 OK 17 kB URL HTTP/1.1 img-l3.xnxx-cdn.com/videos/thumbs169xnxxll/ea/36/36/ea3636b61b0690c35aba9eb4be3d8318/ea3636b61b0690c35aba9eb4be3d8318.4.jpg
IP 8.252.23.243:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash f636405495a59c7e934d48c473707dfc
9249026dbf3bae5c28f43c71a9045d9af1008159
91336c3a120dd3956210d01208dff95033d848f71b5440327a1f2f1443647fbf
GET /videos/thumbs169xnxxll/ea/36/36/ea3636b61b0690c35aba9eb4be3d8318/ea3636b61b0690c35aba9eb4be3d8318.4.jpg HTTP/1.1
Host: img-l3.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 22 Dec 2022 11:23:39 GMT
Content-Type: image/jpeg
Content-Length: 17209
Connection: keep-alive
Cache-Control: public, max-age=10368000
Expires: Thu, 27 Apr 2023 09:57:56 GMT
Last-Modified: Tue, 13 Nov 2018 22:58:48 GMT
Server: nginx
Access-Control-Allow-Origin: *
Age: 3107329
Accept-Ranges: bytes
img-l3.xnxx-cdn.com/videos/thumbs169xnxxll/e2/cf/96/e2cf964fce0351e92801ef34c925010a-1/e2cf964fce0351e92801ef34c925010a.1.jpg
8.252.23.243200 OK 14 kB URL HTTP/1.1 img-l3.xnxx-cdn.com/videos/thumbs169xnxxll/e2/cf/96/e2cf964fce0351e92801ef34c925010a-1/e2cf964fce0351e92801ef34c925010a.1.jpg
IP 8.252.23.243:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash fb54504e9464723e2c81b3952e65be53
bc47dbf88788510dd49b195bf5a8e7fc61dc4e53
727df42cf6166e4e18cd912ccab6891519447efdc4de3793c0350b1044fd24e3
GET /videos/thumbs169xnxxll/e2/cf/96/e2cf964fce0351e92801ef34c925010a-1/e2cf964fce0351e92801ef34c925010a.1.jpg HTTP/1.1
Host: img-l3.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 19:55:12 GMT
Content-Type: image/jpeg
Content-Length: 14463
Connection: keep-alive
Cache-Control: public, max-age=10368000
Expires: Wed, 22 Mar 2023 20:13:32 GMT
Last-Modified: Sun, 16 May 2021 03:43:35 GMT
Server: nginx
Access-Control-Allow-Origin: *
Age: 5668636
Accept-Ranges: bytes
img-l3.xnxx-cdn.com/videos/thumbs169xnxxll/ee/e2/a2/eee2a26911d033e2c9037790f517195c/eee2a26911d033e2c9037790f517195c.10.jpg
8.252.23.243200 OK 17 kB URL HTTP/1.1 img-l3.xnxx-cdn.com/videos/thumbs169xnxxll/ee/e2/a2/eee2a26911d033e2c9037790f517195c/eee2a26911d033e2c9037790f517195c.10.jpg
IP 8.252.23.243:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash 56920c38cbb60c1171b4f73e16ab07b5
5a434274a15dddde64b4d8d73212f6068b93488c
6d906620e401668d21a154933fdd2657c23ea5dea5d28c78243ffa676c4723a7
GET /videos/thumbs169xnxxll/ee/e2/a2/eee2a26911d033e2c9037790f517195c/eee2a26911d033e2c9037790f517195c.10.jpg HTTP/1.1
Host: img-l3.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 22 Oct 2022 07:04:03 GMT
Content-Type: image/jpeg
Content-Length: 17045
Connection: keep-alive
Cache-Control: public, max-age=10368000
Expires: Sun, 19 Feb 2023 07:04:03 GMT
Last-Modified: Fri, 31 Mar 2017 22:41:03 GMT
Server: nginx
access-control-allow-origin: *
Age: 8393305
Accept-Ranges: bytes
godating.pw/468?&frm636e563158aa7=script636e563158aa8&_cid=a3e1853a-5ad0-a15c-aae3-ed4f853512fd
178.132.0.51200 OK 1.0 kB URL HTTP/1.1 godating.pw/468?&frm636e563158aa7=script636e563158aa8&_cid=a3e1853a-5ad0-a15c-aae3-ed4f853512fd
IP 178.132.0.51:0
ASN #49981 WorldStream B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (593)
Hash 72008adbf0c74e5b5242b6dbff6e1f8b
fc2254ac66ed53d461fd30d5acb00f7b17e5f7ca
b6d07015497c1b93e9990ac9176fa7f75dc2f771f82ad11eadb2fbcd7c7125ea
GET /468?&frm636e563158aa7=script636e563158aa8&_cid=a3e1853a-5ad0-a15c-aae3-ed4f853512fd HTTP/1.1
Host: godating.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 10:32:28 GMT
Content-Type: application/javascript
Content-Length: 1017
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa41t72nm;Expires=Monday, 27-Feb-2023 10:32:28 GMT;Max-Age=2678400;Path=/
d920e=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjIzMjFcIjoxNjc0ODE1NTQ4fSxcImNhbXBhaWduc1wiOntcIjI3OFwiOjE2NzQ4MTU1NDh9LFwidGltZVwiOjE2NzQ4MTU1NDh9In0.SIluvNFAd3WYAM3lDE5rdNn8N3_bzTUI3LNaXh8pb-o;Expires=Sunday, 23-Feb-2076 21:04:56 GMT;Max-Age=1674901948;Path=/
_token=uuid_s8hnpa41t72nm_s8hnpa41t72nm63d3a83c61f342.92966925;Expires=Monday, 27-Feb-2023 10:32:28 GMT;Max-Age=2678400;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
img-l3.xnxx-cdn.com/videos/thumbs169xnxxll/31/c8/1a/31c81ad8887180b806bf7d83f12ab918-2/31c81ad8887180b806bf7d83f12ab918.7.jpg
8.252.23.243200 OK 8.9 kB URL HTTP/1.1 img-l3.xnxx-cdn.com/videos/thumbs169xnxxll/31/c8/1a/31c81ad8887180b806bf7d83f12ab918-2/31c81ad8887180b806bf7d83f12ab918.7.jpg
IP 8.252.23.243:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 352x198, components 3\012- data
Hash eded9649102becbd82886d20947dce48
61101f4ac85e2788a0ff32140e178e5e9c6aa9ec
3d70d22aed9cd180ee21d396d53bbbf52ec60772cb078a460aeb770b906815c9
GET /videos/thumbs169xnxxll/31/c8/1a/31c81ad8887180b806bf7d83f12ab918-2/31c81ad8887180b806bf7d83f12ab918.7.jpg HTTP/1.1
Host: img-l3.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 22 Jan 2023 09:25:42 GMT
Content-Type: image/jpeg
Content-Length: 8856
Connection: keep-alive
Cache-Control: public, max-age=10368000
Expires: Mon, 22 May 2023 09:25:42 GMT
Last-Modified: Sun, 20 Nov 2022 00:20:37 GMT
Server: nginx
access-control-allow-origin: *
X-Frame-Options: sameorigin
Age: 436006
Accept-Ranges: bytes
img-l3.xnxx-cdn.com/videos/thumbs169xnxxll/18/0f/09/180f09cf7668885eab6587788ac67d30-1/180f09cf7668885eab6587788ac67d30.30.jpg
8.252.23.243200 OK 18 kB URL HTTP/1.1 img-l3.xnxx-cdn.com/videos/thumbs169xnxxll/18/0f/09/180f09cf7668885eab6587788ac67d30-1/180f09cf7668885eab6587788ac67d30.30.jpg
IP 8.252.23.243:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 352x198, components 3\012- data
Hash 2d938a3cc301e4d059e08ce3f0330ec9
6c9fbc8a11988932594e9ccead38072fdb92b535
a51d340e94aa26e5d3b11987ca6b830e067236c44b87405d43b724dfe514460b
GET /videos/thumbs169xnxxll/18/0f/09/180f09cf7668885eab6587788ac67d30-1/180f09cf7668885eab6587788ac67d30.30.jpg HTTP/1.1
Host: img-l3.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 06:42:16 GMT
Content-Type: image/jpeg
Content-Length: 18110
Connection: keep-alive
Cache-Control: public, max-age=10368000
Expires: Sun, 21 May 2023 06:42:16 GMT
Last-Modified: Tue, 04 Apr 2017 19:16:43 GMT
Server: nginx
Access-Control-Allow-Origin: *
Age: 532212
Accept-Ranges: bytes
cdn.pncloudfl.com/pn/597/84e/2a6/59784e2a61ac3aa5638fa67202b8a4f6230736b3.jpg
104.22.58.221200 OK 42 kB URL HTTP/2 cdn.pncloudfl.com/pn/597/84e/2a6/59784e2a61ac3aa5638fa67202b8a4f6230736b3.jpg
IP 104.22.58.221:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 3692aeb3d8e97400160c19f93d8dfe7a
93cc0089e10d0c809842d7f40f37f725cdc3f532
3c13879cd6ddf95b6b37994ca197c3a5cc97ee37669eabb5f54d10c344feddbc
GET /pn/597/84e/2a6/59784e2a61ac3aa5638fa67202b8a4f6230736b3.jpg HTTP/1.1
Host: cdn.pncloudfl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/webp
content-length: 41926
access-control-allow-credentials: true
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
cache-control: max-age=172800
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=75213
content-disposition: inline; filename="59784e2a61ac3aa5638fa67202b8a4f6230736b3.webp"
etag: de579877c115109ec9ca833aab057d1a
expires: Sat, 28 Jan 2023 22:24:34 GMT
last-modified: Sun, 19 Jun 2022 15:39:25 GMT
vary: Accept
x-openstack-request-id: tx107f7e6e2a7f43d895cc2-0062af4764
x-proxy-cache: HIT
x-timestamp: 1655653164.18243
x-trans-id: tx107f7e6e2a7f43d895cc2-0062af4764
cf-cache-status: HIT
age: 43674
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 7900d319cf64b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.pncloudfl.com/pn/dc0/fd3/e05/dc0fd3e0512d80fc75e5f055b172030cf3df86c2.png
104.22.58.221200 OK 43 kB URL HTTP/2 cdn.pncloudfl.com/pn/dc0/fd3/e05/dc0fd3e0512d80fc75e5f055b172030cf3df86c2.png
IP 104.22.58.221:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash cb208d3925e510fe83c48be3eaf33bff
bd82e249990637dadf8f1ea7d7aabd9363df5a04
6fb7577fd58dacdf5835e214c14d3eca60a2d26263a412060a9c521e604254ba
GET /pn/dc0/fd3/e05/dc0fd3e0512d80fc75e5f055b172030cf3df86c2.png HTTP/1.1
Host: cdn.pncloudfl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/webp
content-length: 42896
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=69316
content-disposition: inline; filename="dc0fd3e0512d80fc75e5f055b172030cf3df86c2.webp"
etag: fdd81e36457e2046a15e41f59c1cdcae
expires: Sat, 28 Jan 2023 21:53:54 GMT
last-modified: Mon, 23 Dec 2019 11:18:43 GMT
vary: Accept
x-openstack-request-id: txdea080780571400b956b5-0061b07b9c
x-proxy-cache: HIT
x-timestamp: 1577099922.38264
x-trans-id: txdea080780571400b956b5-0061b07b9c
cf-cache-status: HIT
age: 45514
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 7900d319cf68b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.pncloudfl.com/pn/71a/dd2/7d5/71add27d5bb61aab24af91ebe2af7f4205a35feb.jpg
104.22.58.221200 OK 49 kB URL HTTP/2 cdn.pncloudfl.com/pn/71a/dd2/7d5/71add27d5bb61aab24af91ebe2af7f4205a35feb.jpg
IP 104.22.58.221:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash eedf689c4a33b79c440062e703d60ff6
a8300edf1b950a50086eb44165a6f6ae278e5057
b8b368d98eb9d04ce213fa62fa781f3bad8d48e5a57f98359cb880ab9600579f
GET /pn/71a/dd2/7d5/71add27d5bb61aab24af91ebe2af7f4205a35feb.jpg HTTP/1.1
Host: cdn.pncloudfl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/webp
content-length: 48676
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=172800
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=83221
content-disposition: inline; filename="71add27d5bb61aab24af91ebe2af7f4205a35feb.webp"
etag: 1df69ad2c9b78c9186aaa33fa40c237f
expires: Sat, 28 Jan 2023 22:18:36 GMT
last-modified: Thu, 06 Oct 2022 02:00:51 GMT
vary: Accept
x-openstack-request-id: txe73bad396e604f28ab17d-00633e3eef
x-proxy-cache: HIT
x-timestamp: 1665021650.87526
x-trans-id: txe73bad396e604f28ab17d-00633e3eef
cf-cache-status: HIT
age: 44032
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 7900d319df73b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
rxeosevsso.com/get/1958139?zoneid=1958139&jp=_clyx4kj5qvw3765ugpkrxs&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=undefined&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=109760711775346
62.122.171.6200 OK 2.7 kB URL HTTP/2 rxeosevsso.com/get/1958139?zoneid=1958139&jp=_clyx4kj5qvw3765ugpkrxs&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=undefined&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=109760711775346
IP 62.122.171.6:0
Hash 0706af0acb6e96a439f85b3d1d2e4ce4
0873b64f85bc6a6ddc82b21ac30c44ebf40cb79d
1473153050df38090e3c6727a0ed6fff9d9c454bb9f682091d019664f0c2e736
Analyzer Verdict Alert quad9 Sinkholed
GET /get/1958139?zoneid=1958139&jp=_clyx4kj5qvw3765ugpkrxs&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=undefined&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=109760711775346 HTTP/1.1
Host: rxeosevsso.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=2301270532edf27430475346e1bbb8596f68; Path=/; Expires=Sat, 27 Jan 2024 10:32:28 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
counter.yadro.ru/hit?t44.3;r;s1280*1024*24;uhttps%3A//mankacharcollege.in/;hWatch%20live%20porn%20video%20%u0916%u094B%u091C%u0947%u0902%20%27shoe%20fetish%27%20Watch%20online%20porn%20movie%20free;0.9943997204699311
88.212.202.52200 OK 140 B URL HTTP/1.1 counter.yadro.ru/hit?t44.3;r;s1280*1024*24;uhttps%3A//mankacharcollege.in/;hWatch%20live%20porn%20video%20%u0916%u094B%u091C%u0947%u0902%20%27shoe%20fetish%27%20Watch%20online%20porn%20movie%20free;0.9943997204699311
IP 88.212.202.52:0
ASN #39134 United Network LLC
File type GIF image data, version 89a, 31 x 31\012- data
Hash 3fe9df4ec0fdeaa1e114609768a9274a
aa244a415ddf20ea2b3dc882a56bb2e0da7bbdc7
fef8f68fcb81d77a04bb91d8acf35c8fa1bdb9cf1694657fdd0f2d240e018333
GET /hit?t44.3;r;s1280*1024*24;uhttps%3A//mankacharcollege.in/;hWatch%20live%20porn%20video%20%u0916%u094B%u091C%u0947%u0902%20%27shoe%20fetish%27%20Watch%20online%20porn%20movie%20free;0.9943997204699311 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 27 Jan 2023 10:32:28 GMT
Content-Type: image/gif
Content-Length: 140
Connection: keep-alive
Expires: Wed, 26 Jan 2022 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
cdn.bncloudfl.com/bn/5c2/b76/784/5c2b7678499376462ff3a44cc1f720b87a547d2e.jpg
172.67.39.215200 OK 34 kB URL HTTP/2 cdn.bncloudfl.com/bn/5c2/b76/784/5c2b7678499376462ff3a44cc1f720b87a547d2e.jpg
IP 172.67.39.215:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], progressive, precision 8, 300x250, components 3\012- data
Hash db808eec8f5d3011dc392e38c5eef5a7
c54e45fbd1141991e48c1127f02122cceb3571e3
0351487c4afc0bb681ff2b02f9248d5a1ca324a331b2c40732ec94beb84df730
GET /bn/5c2/b76/784/5c2b7678499376462ff3a44cc1f720b87a547d2e.jpg HTTP/1.1
Host: cdn.bncloudfl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 33533
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=432000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=34581, status=webp_bigger
etag: a69e0d3f13e51446b7b6d8a8a5eaf527
expires: Fri, 27 Jan 2023 14:28:21 GMT
last-modified: Fri, 30 Dec 2022 09:28:09 GMT
x-openstack-request-id: txc860eea77c5b42dbad38d-0063aeaf6f
x-proxy-cache: HIT
x-timestamp: 1672392488.59025
x-trans-id: txc860eea77c5b42dbad38d-0063aeaf6f
cf-cache-status: HIT
age: 158647
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-origin: *
server: cloudflare
cf-ray: 7900d31aad52b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v-8c1bd926c4a/v3/js/skins/min/xnxx.js
69.55.53.168200 OK 263 kB URL HTTP/2 static-ss.xnxx-cdn.com/v-8c1bd926c4a/v3/js/skins/min/xnxx.js
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (31984)
Size 263 kB (262710 bytes)
Hash d9930c080f645cad200dab0c83a12680
11635f1689b1bfe0e0364ef255f787aa5447a153
386b9cb136d952a657695fafb645037f4472b32ec834e29873a046e378d66709
GET /v-8c1bd926c4a/v3/js/skins/min/xnxx.js HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: application/javascript
content-length: 262710
last-modified: Thu, 26 Jan 2023 15:19:35 GMT
vary: Accept-Encoding
etag: "63d29a07-40236"
content-encoding: gzip
expires: Sat, 28 Jan 2023 10:32:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
rxeosevsso.com/chicken.gif?z=1958139&pb=7108400a92f91014ffe5d6f34ca0eb191674822748&psp=GcBGGM_yl4D90Mq9aZ_sAnvxF1uUIce3bwsf6mMNamk8QvG9AOJY0-BijwV-cilJmkDePeGDoq71slbLz-oMttDwxts4HQrqhSMabPY8P3uMmnLoDSX_A4QodBZaRJI2eamseCxyr2WcHDcKO4XHyF3dDAbgoP9w5x8KacJQLixYMKROyzxSpCIsKA1xUKR6tvjsWg9W4xIgy7ToAL62Ssx3PTRrap4g74ilQrDunYq00syRDMDfDd0MS7FbZJ1fT4PRrWS1LV7MVEaHD6cMrKzLCCOFQqHPaLaD4EXH38gY3AvkRjOszBfyCCvUTcTetLqpZzAxj3adCUYb2m69mC5oTQhZBgRF6TLXivShF4-6rtR9GqfbCdjvZdcBk2gO7Wootw2xzaVjrSthi6rIUfXYvamsYAkZh0Wq6iz3JnSHyjWEwwILhMJewqoIPu7HLCi3LBtpDERJ-eY08i6bpjRyA5SXt3prlvNIg2ULZwQi5k-Rj9mMx5h5_8k5H39wapxD0yPyVZORq_XEn7f_9qtvpruKRFxXIg_jCh1Va9oDHNoZ1_ubHTM0vXuQK4CY38D4komqXiaTzOzivL76ob99YREFMH6mDF1K7dpXSR-vh0dg8FvvF4-5QEMFIxgZWM0xz-jEp9UqMXoErt0qz-UcB-cGEyiCMl-TShCsWLd22CoNPJTnQgzV0cLl2D-iprH1hyZMWMXRnOO_GAO7m02wYGSXAG59SdgDyRUGqREO6AyeyIBa9ikePM0sNDuC0CKZm_ccDC73qqtwiyTOxUzUc2F91ZM9zVcnMofzNQxm9xrkI61rr5smatxZRedQXi_FTyYHUkotp0H5i3yZn_UA_Sxg8Epb52pIQlot7Ghmqf7lyg9r8Ln3E0wZCF9NlmBrg6mSpvULKcCWjGPuRkjiVzUCO4CxFKbTZlq4Z8DjZs42TFewJskSILZ10grIG1ADEQ2YK9ZB_IG1YaOsiXSnSr0=&abvar=0&os=0
62.122.171.6200 OK 43 B URL HTTP/2 rxeosevsso.com/chicken.gif?z=1958139&pb=7108400a92f91014ffe5d6f34ca0eb191674822748&psp=GcBGGM_yl4D90Mq9aZ_sAnvxF1uUIce3bwsf6mMNamk8QvG9AOJY0-BijwV-cilJmkDePeGDoq71slbLz-oMttDwxts4HQrqhSMabPY8P3uMmnLoDSX_A4QodBZaRJI2eamseCxyr2WcHDcKO4XHyF3dDAbgoP9w5x8KacJQLixYMKROyzxSpCIsKA1xUKR6tvjsWg9W4xIgy7ToAL62Ssx3PTRrap4g74ilQrDunYq00syRDMDfDd0MS7FbZJ1fT4PRrWS1LV7MVEaHD6cMrKzLCCOFQqHPaLaD4EXH38gY3AvkRjOszBfyCCvUTcTetLqpZzAxj3adCUYb2m69mC5oTQhZBgRF6TLXivShF4-6rtR9GqfbCdjvZdcBk2gO7Wootw2xzaVjrSthi6rIUfXYvamsYAkZh0Wq6iz3JnSHyjWEwwILhMJewqoIPu7HLCi3LBtpDERJ-eY08i6bpjRyA5SXt3prlvNIg2ULZwQi5k-Rj9mMx5h5_8k5H39wapxD0yPyVZORq_XEn7f_9qtvpruKRFxXIg_jCh1Va9oDHNoZ1_ubHTM0vXuQK4CY38D4komqXiaTzOzivL76ob99YREFMH6mDF1K7dpXSR-vh0dg8FvvF4-5QEMFIxgZWM0xz-jEp9UqMXoErt0qz-UcB-cGEyiCMl-TShCsWLd22CoNPJTnQgzV0cLl2D-iprH1hyZMWMXRnOO_GAO7m02wYGSXAG59SdgDyRUGqREO6AyeyIBa9ikePM0sNDuC0CKZm_ccDC73qqtwiyTOxUzUc2F91ZM9zVcnMofzNQxm9xrkI61rr5smatxZRedQXi_FTyYHUkotp0H5i3yZn_UA_Sxg8Epb52pIQlot7Ghmqf7lyg9r8Ln3E0wZCF9NlmBrg6mSpvULKcCWjGPuRkjiVzUCO4CxFKbTZlq4Z8DjZs42TFewJskSILZ10grIG1ADEQ2YK9ZB_IG1YaOsiXSnSr0=&abvar=0&os=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
Analyzer Verdict Alert quad9 Sinkholed
GET /chicken.gif?z=1958139&pb=7108400a92f91014ffe5d6f34ca0eb191674822748&psp=GcBGGM_yl4D90Mq9aZ_sAnvxF1uUIce3bwsf6mMNamk8QvG9AOJY0-BijwV-cilJmkDePeGDoq71slbLz-oMttDwxts4HQrqhSMabPY8P3uMmnLoDSX_A4QodBZaRJI2eamseCxyr2WcHDcKO4XHyF3dDAbgoP9w5x8KacJQLixYMKROyzxSpCIsKA1xUKR6tvjsWg9W4xIgy7ToAL62Ssx3PTRrap4g74ilQrDunYq00syRDMDfDd0MS7FbZJ1fT4PRrWS1LV7MVEaHD6cMrKzLCCOFQqHPaLaD4EXH38gY3AvkRjOszBfyCCvUTcTetLqpZzAxj3adCUYb2m69mC5oTQhZBgRF6TLXivShF4-6rtR9GqfbCdjvZdcBk2gO7Wootw2xzaVjrSthi6rIUfXYvamsYAkZh0Wq6iz3JnSHyjWEwwILhMJewqoIPu7HLCi3LBtpDERJ-eY08i6bpjRyA5SXt3prlvNIg2ULZwQi5k-Rj9mMx5h5_8k5H39wapxD0yPyVZORq_XEn7f_9qtvpruKRFxXIg_jCh1Va9oDHNoZ1_ubHTM0vXuQK4CY38D4komqXiaTzOzivL76ob99YREFMH6mDF1K7dpXSR-vh0dg8FvvF4-5QEMFIxgZWM0xz-jEp9UqMXoErt0qz-UcB-cGEyiCMl-TShCsWLd22CoNPJTnQgzV0cLl2D-iprH1hyZMWMXRnOO_GAO7m02wYGSXAG59SdgDyRUGqREO6AyeyIBa9ikePM0sNDuC0CKZm_ccDC73qqtwiyTOxUzUc2F91ZM9zVcnMofzNQxm9xrkI61rr5smatxZRedQXi_FTyYHUkotp0H5i3yZn_UA_Sxg8Epb52pIQlot7Ghmqf7lyg9r8Ln3E0wZCF9NlmBrg6mSpvULKcCWjGPuRkjiVzUCO4CxFKbTZlq4Z8DjZs42TFewJskSILZ10grIG1ADEQ2YK9ZB_IG1YaOsiXSnSr0=&abvar=0&os=0 HTTP/1.1
Host: rxeosevsso.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: UID=2301270532edf27430475346e1bbb8596f68
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.impression
set-cookie: OACICAP=ACPukQAAAAAAAAAB; Path=/; Expires=Sun, 26 Feb 2023 10:32:28 GMT; Secure; SameSite=None
OACIBLOCK=ACPukQAAAABj06Cg; Path=/; Expires=Sun, 26 Feb 2023 10:32:28 GMT; Secure; SameSite=None
ppucnt=0; Path=/; Expires=Sat, 28 Jan 2023 10:32:28 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
nyscofficial.com/banner/adv6.gif
172.67.198.65200 OK 38 kB URL HTTP/2 nyscofficial.com/banner/adv6.gif
IP 172.67.198.65:0
File type GIF image data, version 89a, 928 x 244\012- data
Hash 149a878fe21ac51f01b5f75040d64c7e
25adfa53a59ab7420255cf5c5fae6e0637f9b16b
ba7e5187339907300485fa1e2e07a88495b66c9788271dda95444607fc97c981
GET /banner/adv6.gif HTTP/1.1
Host: nyscofficial.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/gif
content-length: 38036
last-modified: Fri, 20 May 2022 18:12:29 GMT
etag: "6287da0d-9494"
expires: Wed, 15 Feb 2023 13:32:49 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 939579
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=te8bedT22vROH8udLF6BbihohrlyOw9feLPXnFho5UpXh8IJx45g8H1vbfD79CJ4voNUDmZj230Z1jO8KnlY72qA1xsVIM1fWFoR4Os0YInPy7Xn9SGv%2BGv%2BmSd35LwTrr%2FE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7900d31b8c61b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
syndication.realsrv.com/v1/api.php
95.211.229.248200 OK 1.9 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (3516), with no line terminators
Hash 9a6d441d1797677ef19a150968bccdcd
6aebb349085ee9e07672aa4488fa176c3e17b2d7
b887b1b8ad5c9726f5626c0a1c4d1dea80bb1b25e80fa83b06f6cec2d56031b0
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 329
Origin: https://mankacharcollege.in
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 10:32:28 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://mankacharcollege.in
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%2263d3a83c9e5468.93341907817032507%22%3B%7D; expires=Sun, 26-Jan-2025 10:32:28 GMT; Max-Age=63072000; path=/; domain=realsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
limurol.com/ssp/req/1937112/?pb=f10696bbe9a292ee2ff1d35abd5e47121674822747&psp=ZnMfBLg4YgXZEAv2tJlO3wx96C94Kx7x1pX-_5-zNPKjKG7GtaxdrbbvSwkcghworjNgYRnCYR0FlTBWdD4UnVDrHtJ0GCQIu1reIPQu2KPnR-Y2bzvEdhH6mWoBJ31ypW3lnrkg5MmiGOhWiQ6xfOxkgcHB7luS_5Cuv_N47raulhkw6dlo0JUa_cD2zEwDbIv8mDyaCgS6btKEMkSEvp1ss69Y8Gv_4uB4zzmcM2ZdGuqjuzDhfltzRryxeGnIzX-G9ebutQt5D47UoDOaziG1-VVX2Cxke3gJrCm_nBVOBkYpfu-Bf9xU8ZlKj2FQQIDe3B4KXssbGkejFVDN-GrsSEtRlIlPf_H3vygABs4SlG65PAqeFOO7ifu436cx9vUoeAFWVrZm7eF7uqCNkw2FgfKqmWnt8RcvQgVhjqh-sPxuF-O5-Exa_xCZ969FVWVjYzPkl5fy0DipcyOB2FQP3Rd_swksAvyn8ERT0u_3Zgq_A0FWaP8dabIHfCg9uQ34ddYN7zpt7JnhifRON1tbS354xNEA6OYb4oFGZ5kSaV5Sef8BgKGVVRvZEkCE9xq8IRBSiIq2z50MwMByX3s1EN40A_EHrL72iyxxEEI7zSH3Of05l09LclWEH2oK8oYMGIWSUSgw-tZnK4i6GrZHHKLPc4WJ_W4DVizepLcw3_oJINxRIvAfb72B7iXdoWcAGbg2IocQ3pyGacDMSDk=&cb=_cl5g7l0oaw0vb9pbbpht7v&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1937112/?pb=f10696bbe9a292ee2ff1d35abd5e47121674822747&psp=ZnMfBLg4YgXZEAv2tJlO3wx96C94Kx7x1pX-_5-zNPKjKG7GtaxdrbbvSwkcghworjNgYRnCYR0FlTBWdD4UnVDrHtJ0GCQIu1reIPQu2KPnR-Y2bzvEdhH6mWoBJ31ypW3lnrkg5MmiGOhWiQ6xfOxkgcHB7luS_5Cuv_N47raulhkw6dlo0JUa_cD2zEwDbIv8mDyaCgS6btKEMkSEvp1ss69Y8Gv_4uB4zzmcM2ZdGuqjuzDhfltzRryxeGnIzX-G9ebutQt5D47UoDOaziG1-VVX2Cxke3gJrCm_nBVOBkYpfu-Bf9xU8ZlKj2FQQIDe3B4KXssbGkejFVDN-GrsSEtRlIlPf_H3vygABs4SlG65PAqeFOO7ifu436cx9vUoeAFWVrZm7eF7uqCNkw2FgfKqmWnt8RcvQgVhjqh-sPxuF-O5-Exa_xCZ969FVWVjYzPkl5fy0DipcyOB2FQP3Rd_swksAvyn8ERT0u_3Zgq_A0FWaP8dabIHfCg9uQ34ddYN7zpt7JnhifRON1tbS354xNEA6OYb4oFGZ5kSaV5Sef8BgKGVVRvZEkCE9xq8IRBSiIq2z50MwMByX3s1EN40A_EHrL72iyxxEEI7zSH3Of05l09LclWEH2oK8oYMGIWSUSgw-tZnK4i6GrZHHKLPc4WJ_W4DVizepLcw3_oJINxRIvAfb72B7iXdoWcAGbg2IocQ3pyGacDMSDk=&cb=_cl5g7l0oaw0vb9pbbpht7v&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1937112/?pb=f10696bbe9a292ee2ff1d35abd5e47121674822747&psp=ZnMfBLg4YgXZEAv2tJlO3wx96C94Kx7x1pX-_5-zNPKjKG7GtaxdrbbvSwkcghworjNgYRnCYR0FlTBWdD4UnVDrHtJ0GCQIu1reIPQu2KPnR-Y2bzvEdhH6mWoBJ31ypW3lnrkg5MmiGOhWiQ6xfOxkgcHB7luS_5Cuv_N47raulhkw6dlo0JUa_cD2zEwDbIv8mDyaCgS6btKEMkSEvp1ss69Y8Gv_4uB4zzmcM2ZdGuqjuzDhfltzRryxeGnIzX-G9ebutQt5D47UoDOaziG1-VVX2Cxke3gJrCm_nBVOBkYpfu-Bf9xU8ZlKj2FQQIDe3B4KXssbGkejFVDN-GrsSEtRlIlPf_H3vygABs4SlG65PAqeFOO7ifu436cx9vUoeAFWVrZm7eF7uqCNkw2FgfKqmWnt8RcvQgVhjqh-sPxuF-O5-Exa_xCZ969FVWVjYzPkl5fy0DipcyOB2FQP3Rd_swksAvyn8ERT0u_3Zgq_A0FWaP8dabIHfCg9uQ34ddYN7zpt7JnhifRON1tbS354xNEA6OYb4oFGZ5kSaV5Sef8BgKGVVRvZEkCE9xq8IRBSiIq2z50MwMByX3s1EN40A_EHrL72iyxxEEI7zSH3Of05l09LclWEH2oK8oYMGIWSUSgw-tZnK4i6GrZHHKLPc4WJ_W4DVizepLcw3_oJINxRIvAfb72B7iXdoWcAGbg2IocQ3pyGacDMSDk=&cb=_cl5g7l0oaw0vb9pbbpht7v&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Cookie: UID=2301270532542ae0b0524b4d74874dc0fa79
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v3/img/skins/xnxx/xnxx-inline-loader.gif
69.55.53.168200 OK 1.1 kB URL HTTP/2 static-ss.xnxx-cdn.com/v3/img/skins/xnxx/xnxx-inline-loader.gif
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type GIF image data, version 89a, 16 x 16\012- data
Hash 4cc6d365ecb9afc0520dc7fb35b667b9
c30436dc1bf5733b80559cb279c15305d7d5631c
c15a3238f45b56f858d490bb4cca2bd3bd3e9cefb068a5e279c7c0255da53fba
GET /v3/img/skins/xnxx/xnxx-inline-loader.gif HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/gif
content-length: 1079
last-modified: Wed, 18 Nov 2020 22:15:37 GMT
etag: "5fb59d09-437"
expires: Sat, 28 Jan 2023 10:32:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v-8c1bd926c4a/v3/js/jquery.js
69.55.53.168200 OK 80 B URL HTTP/2 static-ss.xnxx-cdn.com/v-8c1bd926c4a/v3/js/jquery.js
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
Hash 4d4f969446c3457b3def5bed63c092a5
abedc9864771cadc2d651d3c37a7b124262b17e0
11b8f978aba7b5373b5f3ecfb470063011cd2911ea49f6da0232a0b86bc191f1
GET /v-8c1bd926c4a/v3/js/jquery.js HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: application/javascript
content-length: 80
last-modified: Wed, 18 Nov 2020 22:15:37 GMT
vary: Accept-Encoding
etag: "5fb59d09-50"
content-encoding: gzip
expires: Sat, 28 Jan 2023 10:32:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
X-Firefox-Spdy: h2
static-ss.xnxx-cdn.com/v3/img/skins/common/blank.mp4
69.55.53.168206 Partial Content 3.8 kB URL HTTP/2 static-ss.xnxx-cdn.com/v3/img/skins/common/blank.mp4
IP 69.55.53.168:0
ASN #46652 SERVERSTACK-ASN
File type ISO Media, Apple iTunes Video (.M4V) Video\012- data
Hash 0158bde3b1ed466af29359bc3dbf5e34
9500f79d1d637b728079aac3ede17549cda710e0
a27edba0e34b2648a90a800ae94fdef3e39016d1b9bd6e54a31ede1f1cddfed0
GET /v3/img/skins/common/blank.mp4 HTTP/1.1
Host: static-ss.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: video/mp4
content-length: 3753
last-modified: Wed, 18 Nov 2020 22:15:36 GMT
etag: "5fb59d08-ea9"
expires: Sat, 28 Jan 2023 10:32:28 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-range: bytes 0-3752/3753
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA02P3UoEMQyFX8UXmJK/tslee72C4gN0OrO6uDsDLsgKeXjbgmI/2hzCaQ4hIJ4AJ8oPEA9MB1I3DAZBKGAUPz49u6Dfv87Lut9C3a+egCN54qRsriAa2SUjm4ojZkeLapQ8alJMqi7g7NCgyCJDIYC/vjyOiw0Cb28P67J34N59bEBrRTtpXKAmng3KKalllphMtBv9WraPUt/LZ90vl/VtDedthDQCZBzzfxuNCUdpB3yocvveqvs/Syf+fUL3Fm0rtsXTDHFpCwrIwqmQIS801x+ERp3VSAEAAA==
95.211.229.248200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA02P3UoEMQyFX8UXmJK/tslee72C4gN0OrO6uDsDLsgKeXjbgmI/2hzCaQ4hIJ4AJ8oPEA9MB1I3DAZBKGAUPz49u6Dfv87Lut9C3a+egCN54qRsriAa2SUjm4ojZkeLapQ8alJMqi7g7NCgyCJDIYC/vjyOiw0Cb28P67J34N59bEBrRTtpXKAmng3KKalllphMtBv9WraPUt/LZ90vl/VtDedthDQCZBzzfxuNCUdpB3yocvveqvs/Syf+fUL3Fm0rtsXTDHFpCwrIwqmQIS801x+ERp3VSAEAAA==
IP 95.211.229.248:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA02P3UoEMQyFX8UXmJK/tslee72C4gN0OrO6uDsDLsgKeXjbgmI/2hzCaQ4hIJ4AJ8oPEA9MB1I3DAZBKGAUPz49u6Dfv87Lut9C3a+egCN54qRsriAa2SUjm4ojZkeLapQ8alJMqi7g7NCgyCJDIYC/vjyOiw0Cb28P67J34N59bEBrRTtpXKAmng3KKalllphMtBv9WraPUt/LZ90vl/VtDedthDQCZBzzfxuNCUdpB3yocvveqvs/Syf+fUL3Fm0rtsXTDHFpCwrIwqmQIS801x+ERp3VSAEAAA== HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mankacharcollege.in
Connection: keep-alive
Referer: https://mankacharcollege.in/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%2263d3a83c9e5468.93341907817032507%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 10:32:28 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://mankacharcollege.in
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22117.0199%22%7D; expires=Sun, 26 Jan 2025 10:32:28 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
img-cf.xnxx-cdn.com/videos/thumbs169l/f7/49/24/f74924ef603573168a5f3f71571fa2b5-1/f74924ef603573168a5f3f71571fa2b5.15.jpg
104.18.54.205200 OK 9.7 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169l/f7/49/24/f74924ef603573168a5f3f71571fa2b5-1/f74924ef603573168a5f3f71571fa2b5.15.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 272x153, components 3\012- data
Hash f9a360e031aa01f890e7a823c9702312
954f9c1a051a2d10abf7c10d57fb7ccf07f4a250
7ebe0171b197d7dc63fb907d3ea29af70b6ab6047ba9f6e4a18d53b9d87c6bbb
GET /videos/thumbs169l/f7/49/24/f74924ef603573168a5f3f71571fa2b5-1/f74924ef603573168a5f3f71571fa2b5.15.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 9708
cf-ray: 7900d31c9f1bb506-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 251147
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Thu, 05 Jan 2023 13:49:01 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169l/05/64/fe/0564fe7b46511055eadf47b0211d3b46-1/0564fe7b46511055eadf47b0211d3b46.11.jpg
195.181.166.14200 OK 13 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169l/05/64/fe/0564fe7b46511055eadf47b0211d3b46-1/0564fe7b46511055eadf47b0211d3b46.11.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 272x153, components 3\012- data
Hash e49d62ca4840ca301c2733360e574f1d
44a3eb124394df5ed068c80174494a8684fc5624
8d5a9f0ffa947c6925cced931bdb5b4358b993ab813792c8a566e3d258cc1943
GET /videos/thumbs169l/05/64/fe/0564fe7b46511055eadf47b0211d3b46-1/0564fe7b46511055eadf47b0211d3b46.11.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 13145
x-frame-options: sameorigin
last-modified: Thu, 05 Jan 2023 14:42:18 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1683302729
x-77-nzt: A8O1pg2DW0jB1GY4ATl8zP/zshwAj/Q63UEmcqE
x-77-nzt-ray: ffffffff08216c573ca8d36302b9c335
x-77-cache: HIT
x-age-lb: 1880819
server: CDN77-Turbo
x-cache-lb: HIT, MISS
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169l/1e/96/0e/1e960ed91bb1119bd0315af0b0cfaf13-1/1e960ed91bb1119bd0315af0b0cfaf13.14.jpg
195.181.166.14200 OK 10 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169l/1e/96/0e/1e960ed91bb1119bd0315af0b0cfaf13-1/1e960ed91bb1119bd0315af0b0cfaf13.14.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 272x153, components 3\012- data
Hash c6199342581187126bde5f9e127c498b
cb6fd0d491db1c7eeb4bbfc1954c668d63348588
01ff20c8002e0991688ba8aa468c300285f62454d33cfe55c10712044088dd21
GET /videos/thumbs169l/1e/96/0e/1e960ed91bb1119bd0315af0b0cfaf13-1/1e960ed91bb1119bd0315af0b0cfaf13.14.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 10378
x-frame-options: sameorigin
last-modified: Thu, 05 Jan 2023 15:08:23 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1683301698
x-77-nzt: A8O1pg3gOurBnJIhIyyEEf/6thwAj/Q6yJmq5KE
x-77-nzt-ray: ffffffff08216c573ca8d363b0346f35
x-77-cache: HIT
x-age-lb: 1881850
server: CDN77-Turbo
x-cache-lb: HIT, MISS
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169l/c9/29/6a/c9296a8d8dca1c112228311dad3e62d9-1/c9296a8d8dca1c112228311dad3e62d9.14.jpg
104.18.54.205200 OK 12 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169l/c9/29/6a/c9296a8d8dca1c112228311dad3e62d9-1/c9296a8d8dca1c112228311dad3e62d9.14.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 272x153, components 3\012- data
Hash 9274bccc6d24178572d2dca7bc1d9420
eada50306da719555ea66096d89e3f77f4b2ca3b
06d244e749645109d2332a9f83c8053ff8343a1703559a68cad330695fdf47f1
GET /videos/thumbs169l/c9/29/6a/c9296a8d8dca1c112228311dad3e62d9-1/c9296a8d8dca1c112228311dad3e62d9.14.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 11660
cf-ray: 7900d31c9f0bb506-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Thu, 05 Jan 2023 13:22:42 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
img-cf.xnxx-cdn.com/videos/thumbs169l/42/50/5b/42505bd8c18f4c7b3e04c70964e467dd-1/42505bd8c18f4c7b3e04c70964e467dd.3.jpg
104.18.54.205200 OK 10 kB URL HTTP/2 img-cf.xnxx-cdn.com/videos/thumbs169l/42/50/5b/42505bd8c18f4c7b3e04c70964e467dd-1/42505bd8c18f4c7b3e04c70964e467dd.3.jpg
IP 104.18.54.205:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 272x153, components 3\012- data
Hash 451088b9be0944a912f6b174c45c4778
addc3fc2cc093bb32fabf85a30d452883ff39f99
599956c7773dacb53dc55cbe6d764b2fe5e63a9a503d168ea6af03745a2e2f4a
GET /videos/thumbs169l/42/50/5b/42505bd8c18f4c7b3e04c70964e467dd-1/42505bd8c18f4c7b3e04c70964e467dd.3.jpg HTTP/1.1
Host: img-cf.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 10534
cf-ray: 7900d31c9f19b506-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=10368000
expires: Sat, 27 May 2023 10:32:28 GMT
last-modified: Thu, 05 Jan 2023 14:08:59 GMT
vary: Accept-Encoding
cf-cache-status: HIT
cf-bgj: h2pri
x-frame-options: sameorigin
server: cloudflare
X-Firefox-Spdy: h2
cdn77-pic.xnxx-cdn.com/videos/thumbs169l/65/c6/68/65c66870e1383378c5a4267986ff3481-1/65c66870e1383378c5a4267986ff3481.2.jpg
195.181.166.14200 OK 9.3 kB URL HTTP/2 cdn77-pic.xnxx-cdn.com/videos/thumbs169l/65/c6/68/65c66870e1383378c5a4267986ff3481-1/65c66870e1383378c5a4267986ff3481.2.jpg
IP 195.181.166.14:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", progressive, precision 8, 272x153, components 3\012- data
Hash ada052d00d395b8c36ff59a14c71879d
1faded6ba2bc7917348bd9479766f2771e26927c
013bbcfcc8a77a2284876c11cc99ccafe22981e06e78b68f06844003a527ef79
GET /videos/thumbs169l/65/c6/68/65c66870e1383378c5a4267986ff3481-1/65c66870e1383378c5a4267986ff3481.2.jpg HTTP/1.1
Host: cdn77-pic.xnxx-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: image/jpeg
content-length: 9313
x-frame-options: sameorigin
last-modified: Tue, 17 Jan 2023 17:52:51 GMT
cache-control: max-age=10368000, public
access-control-allow-origin: *
x-accel-expires: @1684352140
x-77-nzt: A8O1pg1PKpKh1GY4maKEce+wrwwAj/Q63ToUs6E
x-77-nzt-ray: ffffffff08216c573ca8d3630d8cce35
x-77-cache: HIT
x-age-lb: 831408
server: CDN77-Turbo
x-cache-lb: HIT, MISS
x-77-pop: stockholmSE
accept-ranges: bytes
X-Firefox-Spdy: h2
limurol.com/ssp/req/1937112/?pb=f10696bbe9a292ee2ff1d35abd5e47121674822747&psp=ZnMfBLg4YgXZEAv2tJlO3wx96C94Kx7x1pX-_5-zNPKjKG7GtaxdrbbvSwkcghworjNgYRnCYR0FlTBWdD4UnVDrHtJ0GCQIu1reIPQu2KPnR-Y2bzvEdhH6mWoBJ31ypW3lnrkg5MmiGOhWiQ6xfOxkgcHB7luS_5Cuv_N47raulhkw6dlo0JUa_cD2zEwDbIv8mDyaCgS6btKEMkSEvp1ss69Y8Gv_4uB4zzmcM2ZdGuqjuzDhfltzRryxeGnIzX-G9ebutQt5D47UoDOaziG1-VVX2Cxke3gJrCm_nBVOBkYpfu-Bf9xU8ZlKj2FQQIDe3B4KXssbGkejFVDN-GrsSEtRlIlPf_H3vygABs4SlG65PAqeFOO7ifu436cx9vUoeAFWVrZm7eF7uqCNkw2FgfKqmWnt8RcvQgVhjqh-sPxuF-O5-Exa_xCZ969FVWVjYzPkl5fy0DipcyOB2FQP3Rd_swksAvyn8ERT0u_3Zgq_A0FWaP8dabIHfCg9uQ34ddYN7zpt7JnhifRON1tbS354xNEA6OYb4oFGZ5kSaV5Sef8BgKGVVRvZEkCE9xq8IRBSiIq2z50MwMByX3s1EN40A_EHrL72iyxxEEI7zSH3Of05l09LclWEH2oK8oYMGIWSUSgw-tZnK4i6GrZHHKLPc4WJ_W4DVizepLcw3_oJINxRIvAfb72B7iXdoWcAGbg2IocQ3pyGacDMSDk=&cb=_cl5g7l0oaw0vb9pbbpht7v&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1937112/?pb=f10696bbe9a292ee2ff1d35abd5e47121674822747&psp=ZnMfBLg4YgXZEAv2tJlO3wx96C94Kx7x1pX-_5-zNPKjKG7GtaxdrbbvSwkcghworjNgYRnCYR0FlTBWdD4UnVDrHtJ0GCQIu1reIPQu2KPnR-Y2bzvEdhH6mWoBJ31ypW3lnrkg5MmiGOhWiQ6xfOxkgcHB7luS_5Cuv_N47raulhkw6dlo0JUa_cD2zEwDbIv8mDyaCgS6btKEMkSEvp1ss69Y8Gv_4uB4zzmcM2ZdGuqjuzDhfltzRryxeGnIzX-G9ebutQt5D47UoDOaziG1-VVX2Cxke3gJrCm_nBVOBkYpfu-Bf9xU8ZlKj2FQQIDe3B4KXssbGkejFVDN-GrsSEtRlIlPf_H3vygABs4SlG65PAqeFOO7ifu436cx9vUoeAFWVrZm7eF7uqCNkw2FgfKqmWnt8RcvQgVhjqh-sPxuF-O5-Exa_xCZ969FVWVjYzPkl5fy0DipcyOB2FQP3Rd_swksAvyn8ERT0u_3Zgq_A0FWaP8dabIHfCg9uQ34ddYN7zpt7JnhifRON1tbS354xNEA6OYb4oFGZ5kSaV5Sef8BgKGVVRvZEkCE9xq8IRBSiIq2z50MwMByX3s1EN40A_EHrL72iyxxEEI7zSH3Of05l09LclWEH2oK8oYMGIWSUSgw-tZnK4i6GrZHHKLPc4WJ_W4DVizepLcw3_oJINxRIvAfb72B7iXdoWcAGbg2IocQ3pyGacDMSDk=&cb=_cl5g7l0oaw0vb9pbbpht7v&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
Analyzer Verdict Alert quad9 Sinkholed
GET /ssp/req/1937112/?pb=f10696bbe9a292ee2ff1d35abd5e47121674822747&psp=ZnMfBLg4YgXZEAv2tJlO3wx96C94Kx7x1pX-_5-zNPKjKG7GtaxdrbbvSwkcghworjNgYRnCYR0FlTBWdD4UnVDrHtJ0GCQIu1reIPQu2KPnR-Y2bzvEdhH6mWoBJ31ypW3lnrkg5MmiGOhWiQ6xfOxkgcHB7luS_5Cuv_N47raulhkw6dlo0JUa_cD2zEwDbIv8mDyaCgS6btKEMkSEvp1ss69Y8Gv_4uB4zzmcM2ZdGuqjuzDhfltzRryxeGnIzX-G9ebutQt5D47UoDOaziG1-VVX2Cxke3gJrCm_nBVOBkYpfu-Bf9xU8ZlKj2FQQIDe3B4KXssbGkejFVDN-GrsSEtRlIlPf_H3vygABs4SlG65PAqeFOO7ifu436cx9vUoeAFWVrZm7eF7uqCNkw2FgfKqmWnt8RcvQgVhjqh-sPxuF-O5-Exa_xCZ969FVWVjYzPkl5fy0DipcyOB2FQP3Rd_swksAvyn8ERT0u_3Zgq_A0FWaP8dabIHfCg9uQ34ddYN7zpt7JnhifRON1tbS354xNEA6OYb4oFGZ5kSaV5Sef8BgKGVVRvZEkCE9xq8IRBSiIq2z50MwMByX3s1EN40A_EHrL72iyxxEEI7zSH3Of05l09LclWEH2oK8oYMGIWSUSgw-tZnK4i6GrZHHKLPc4WJ_W4DVizepLcw3_oJINxRIvAfb72B7iXdoWcAGbg2IocQ3pyGacDMSDk=&cb=_cl5g7l0oaw0vb9pbbpht7v&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Cookie: UID=2301270532542ae0b0524b4d74874dc0fa79
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2613
Expires: Fri, 27 Jan 2023 11:16:02 GMT
Date: Fri, 27 Jan 2023 10:32:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2613
Expires: Fri, 27 Jan 2023 11:16:02 GMT
Date: Fri, 27 Jan 2023 10:32:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2613
Expires: Fri, 27 Jan 2023 11:16:02 GMT
Date: Fri, 27 Jan 2023 10:32:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2613
Expires: Fri, 27 Jan 2023 11:16:02 GMT
Date: Fri, 27 Jan 2023 10:32:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2613
Expires: Fri, 27 Jan 2023 11:16:02 GMT
Date: Fri, 27 Jan 2023 10:32:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a85badd84c0542610b94f22c4f265511
5b490095b5e02d9fef4b762888353998b645dfc9
23d6d9848caf36f0556438c371f112b40dcbf9b08b8b27bd37d4d73960c701c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9482
x-amzn-requestid: 825c5e6b-8fda-445e-9ed3-f5d634943c00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIZd0HqkIAMFn7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ccd5f1-2b31fe3001a1b04a406ff7ff;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 06:21:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 13clEFrwHH0RFfYGMW5jPHcaa3ezdkHAes8FPn6yA5-pxqRaddDPqQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 05:42:19 GMT
age: 17410
etag: "5b490095b5e02d9fef4b762888353998b645dfc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 18:35:59 GMT
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
age: 57390
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79e7a1af-509a-45ff-b555-be64fdc37799.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79e7a1af-509a-45ff-b555-be64fdc37799.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 48b1ab8b3b5ef11d8f03e1fe8e1b629e
5541c3151d1bd9c36bcdb9012a00a8eb8b7201ee
ad5b13fc77b03f74c5708ec7b5122673dc00190df81d32bf3a69bfdf7b0c78e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79e7a1af-509a-45ff-b555-be64fdc37799.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6458
x-amzn-requestid: ad9df8b8-80ff-46d7-bdc4-208aa9d2e215
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXwqFR0oAMFm3A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a004-0e1d43687a9e913828fd9056;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WOV70Arqc-bFyl9RGUHR3i2HbWphWFFxGHIbgameBz02sf3IZ11oEg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 09:46:27 GMT
age: 2762
etag: "5541c3151d1bd9c36bcdb9012a00a8eb8b7201ee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KY05WKpINERD5g9o2QLYdsNMSuuy_YKn2Tl7Qkn7YaAOaPTDfLteeA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 21:49:48 GMT
age: 45761
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 64854
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc02c23-d6b7-4540-bebd-59cf20f191e3.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc02c23-d6b7-4540-bebd-59cf20f191e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5b31e73071ee6af880d3939c698c0514
1ac5ee7d1398eb29a9484a1154b0c96556bb6bf4
bc5520882250fc495f2da3c114f83b8f690dc6d8dc67ac759a183c88581fb967
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc02c23-d6b7-4540-bebd-59cf20f191e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5378
x-amzn-requestid: 907321d1-ba63-4c67-9e20-605a090da987
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxDHH_IAMFXxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a006-4cc2e9550d0b6b504bd09899;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EsKE5lHMRa9uiqkdhhiJyaDfr0rH9waQeKtbdoYpsHUR4Ywo0TxweQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 18:24:12 GMT
age: 58097
etag: "1ac5ee7d1398eb29a9484a1154b0c96556bb6bf4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
omclyzyapf.com/chicken.gif?z=1937319&pb=7108400a92f91014ffe5d6f34ca0eb191674822748&psp=3sXrETtnupwLp3LxsLmyFM4alzbcjWWt9HHaCx-IuxR7AHFlgijqdjfG5yslmjBp1Mo73156irgN7fIZzxJQeBSO7LA1iakrd-uxQ81M_cnakc3ybGh3pJAhW97iJcVg5NIjDUEtS1er6njjlC0qgDgcDIaNotVlER5SLJDUwn9jXvuUtMAI5jDZ1eoZy0Mm4MKzrjcUh6k1pqAFI-03dZczevu9qmDeozg-NY6MDHVzh9tkpP5lDlGarU1glQKG8PEK5G6IImQy2bV8LL0UgQhLjoKPdYPOwAhZdkIZpc6Hx825XhA401SN0wWH3jo-lRX8UDw4FKHqy7RblhA1_tlpYKr90SyskRsU1N8fiVbc38IlaBp7QnhkzPieGc8tY8JUgBFXLyODiu0UGOIfkgdkBbXwiMmDxMI6_DRTEV9I3IK5DIdZPQo2dW0_VTzssT3f1aKWz5GTbFKMcU6COxhM-Ut3lhyxtJ6Z2V2XzCmBTtWH5IrO1MxVsolE0ITJoWlMcxwXlCkedJXfRV6n6TT7pAiUq6id9C0BuUFWw9pqS-55tLgYZsvjzotLUQyKQSYUF80G3Q9H6FtV8WhBTheWtzpT-L6ycs72HsxspIWlLqrkdwWtD6nfn9fJC4FwNjg2_EOmkDkLy4oJlTM96XYpPVo0roKms1SkkVJjksJDRBTypzVyyi1JQQown8nMATdK4Oj5bE0UufkcV8JtTcCwXVCJzcxOOzKYgdDwWsRLVPtXhUnPQzwMIlCgRRr4OzivEuJNcwb5TrBk4UCDGAev--JHtSypUyJil4sAnkNujuyHirmg8_1J9TcQR56DCxSzFIdSq7JfnLnQfdvI7ZEQeH_VFwpSOZXCYWxCMRutyqQV36bFPYAfe57_vHbmTXD4gL98ErxiU5af8J-spfXItmmLI-fDDQNSg7uhjI0rIuMxJvS3HtMPry0g3dZBF4wBCQNCqZPwaVpXhby1peN4_ooTZ9g3T_XHWQvz_mS02yuOxTcI3SviNU51N6jFmFwK60EgJQAfrOOGc8Q5B-NIC2ixXrRqGZN3EpLJtuQh1enDIv7R3XXFodlyJAtSvm25TeC3WAnqzOsvkZkerd_iWgdTT5hd8yIIWEdT4hB-WmagoSj5AM4km8o4Q3O9FucVKoomuFL8tPU3WMpnAUniUK-XYsjwgHp66I7qbIOPk_A_FQYZVGXjz4dDiq-V9L0XSzcywjc0yJrlDJMIqEi41VpP2vwEuDpO6w-3grDr0jpu1OdbgTOYsGroSzokO08coW908AWgAwBEFPy_2AnFOZ9fnoS8eywSqVDVYkqOepQifFUAWTdsqvECWd-zDBaz-Gmp8TLEpU2ytzJxGaDd2FYqtI2Hg0yF6nCy1AqLdcVX02yyM9spX0gtnwvHtB3Qisrl1kodmcUZQXElz6pei_BFHCY3313LK8VyrWRDUpU10GDZNCxh9h-w1XxCzMvsVYwkHZgNdITidHPA5uvIuqVqQdGbjAt1rmKhaD-EyxvADj59fC3b7-QYBTGFXCb2MmnH4iLrzvt76hgNKMhnoybUEWY0C0uNS4pbkhZjmDfKvY6sQtlz4C_Uv1rnvi7OxNtFE5_NcVd2zIK1N4LHMWAPLkEHVQuT_3xnqBxR9VFhhTd3UPSogHMr3LqBDhjF7D9K1k5kYCiw0KMP--qf16-KxMBMjo33VVxtfhDSzm8D_pF5MWpz0ugXbxUqYkEvsGuGvHmlkHg783x6WxGbeaPfNzBmJppayMvVh_417NlDt-FCp2WIUbuWO9TbuBiaxV8ZJsrHVkRjHsr7t6KeJmYyHsb5NKCiOYp7AXRWUNQhWEvop9CPwdtb_ZqVH-cPvgX9xVy_HqqOwuIz_LFN_eTHQuUHpqtSh3ILnonUegmZZwp4JMYgVUSR9NcXLY4X9OAVEul2PqYbgGUJ2jriiZRiS_6QPLcXzprnOtKZPg0xbjaU8E9aKDuymHPXfyhMxl7txpbZJcCQhTfeeCw2X_BThrQ0LoGqGzKWiOrj3hN3cv3fVFaLZXKghdOg2PiDJjqAXUmufswUYw_av1RmHm2L4cM8wWqCiA==&abvar=0&os=0
62.122.171.6200 OK 43 B URL HTTP/2 omclyzyapf.com/chicken.gif?z=1937319&pb=7108400a92f91014ffe5d6f34ca0eb191674822748&psp=3sXrETtnupwLp3LxsLmyFM4alzbcjWWt9HHaCx-IuxR7AHFlgijqdjfG5yslmjBp1Mo73156irgN7fIZzxJQeBSO7LA1iakrd-uxQ81M_cnakc3ybGh3pJAhW97iJcVg5NIjDUEtS1er6njjlC0qgDgcDIaNotVlER5SLJDUwn9jXvuUtMAI5jDZ1eoZy0Mm4MKzrjcUh6k1pqAFI-03dZczevu9qmDeozg-NY6MDHVzh9tkpP5lDlGarU1glQKG8PEK5G6IImQy2bV8LL0UgQhLjoKPdYPOwAhZdkIZpc6Hx825XhA401SN0wWH3jo-lRX8UDw4FKHqy7RblhA1_tlpYKr90SyskRsU1N8fiVbc38IlaBp7QnhkzPieGc8tY8JUgBFXLyODiu0UGOIfkgdkBbXwiMmDxMI6_DRTEV9I3IK5DIdZPQo2dW0_VTzssT3f1aKWz5GTbFKMcU6COxhM-Ut3lhyxtJ6Z2V2XzCmBTtWH5IrO1MxVsolE0ITJoWlMcxwXlCkedJXfRV6n6TT7pAiUq6id9C0BuUFWw9pqS-55tLgYZsvjzotLUQyKQSYUF80G3Q9H6FtV8WhBTheWtzpT-L6ycs72HsxspIWlLqrkdwWtD6nfn9fJC4FwNjg2_EOmkDkLy4oJlTM96XYpPVo0roKms1SkkVJjksJDRBTypzVyyi1JQQown8nMATdK4Oj5bE0UufkcV8JtTcCwXVCJzcxOOzKYgdDwWsRLVPtXhUnPQzwMIlCgRRr4OzivEuJNcwb5TrBk4UCDGAev--JHtSypUyJil4sAnkNujuyHirmg8_1J9TcQR56DCxSzFIdSq7JfnLnQfdvI7ZEQeH_VFwpSOZXCYWxCMRutyqQV36bFPYAfe57_vHbmTXD4gL98ErxiU5af8J-spfXItmmLI-fDDQNSg7uhjI0rIuMxJvS3HtMPry0g3dZBF4wBCQNCqZPwaVpXhby1peN4_ooTZ9g3T_XHWQvz_mS02yuOxTcI3SviNU51N6jFmFwK60EgJQAfrOOGc8Q5B-NIC2ixXrRqGZN3EpLJtuQh1enDIv7R3XXFodlyJAtSvm25TeC3WAnqzOsvkZkerd_iWgdTT5hd8yIIWEdT4hB-WmagoSj5AM4km8o4Q3O9FucVKoomuFL8tPU3WMpnAUniUK-XYsjwgHp66I7qbIOPk_A_FQYZVGXjz4dDiq-V9L0XSzcywjc0yJrlDJMIqEi41VpP2vwEuDpO6w-3grDr0jpu1OdbgTOYsGroSzokO08coW908AWgAwBEFPy_2AnFOZ9fnoS8eywSqVDVYkqOepQifFUAWTdsqvECWd-zDBaz-Gmp8TLEpU2ytzJxGaDd2FYqtI2Hg0yF6nCy1AqLdcVX02yyM9spX0gtnwvHtB3Qisrl1kodmcUZQXElz6pei_BFHCY3313LK8VyrWRDUpU10GDZNCxh9h-w1XxCzMvsVYwkHZgNdITidHPA5uvIuqVqQdGbjAt1rmKhaD-EyxvADj59fC3b7-QYBTGFXCb2MmnH4iLrzvt76hgNKMhnoybUEWY0C0uNS4pbkhZjmDfKvY6sQtlz4C_Uv1rnvi7OxNtFE5_NcVd2zIK1N4LHMWAPLkEHVQuT_3xnqBxR9VFhhTd3UPSogHMr3LqBDhjF7D9K1k5kYCiw0KMP--qf16-KxMBMjo33VVxtfhDSzm8D_pF5MWpz0ugXbxUqYkEvsGuGvHmlkHg783x6WxGbeaPfNzBmJppayMvVh_417NlDt-FCp2WIUbuWO9TbuBiaxV8ZJsrHVkRjHsr7t6KeJmYyHsb5NKCiOYp7AXRWUNQhWEvop9CPwdtb_ZqVH-cPvgX9xVy_HqqOwuIz_LFN_eTHQuUHpqtSh3ILnonUegmZZwp4JMYgVUSR9NcXLY4X9OAVEul2PqYbgGUJ2jriiZRiS_6QPLcXzprnOtKZPg0xbjaU8E9aKDuymHPXfyhMxl7txpbZJcCQhTfeeCw2X_BThrQ0LoGqGzKWiOrj3hN3cv3fVFaLZXKghdOg2PiDJjqAXUmufswUYw_av1RmHm2L4cM8wWqCiA==&abvar=0&os=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
Analyzer Verdict Alert quad9 Sinkholed
GET /chicken.gif?z=1937319&pb=7108400a92f91014ffe5d6f34ca0eb191674822748&psp=3sXrETtnupwLp3LxsLmyFM4alzbcjWWt9HHaCx-IuxR7AHFlgijqdjfG5yslmjBp1Mo73156irgN7fIZzxJQeBSO7LA1iakrd-uxQ81M_cnakc3ybGh3pJAhW97iJcVg5NIjDUEtS1er6njjlC0qgDgcDIaNotVlER5SLJDUwn9jXvuUtMAI5jDZ1eoZy0Mm4MKzrjcUh6k1pqAFI-03dZczevu9qmDeozg-NY6MDHVzh9tkpP5lDlGarU1glQKG8PEK5G6IImQy2bV8LL0UgQhLjoKPdYPOwAhZdkIZpc6Hx825XhA401SN0wWH3jo-lRX8UDw4FKHqy7RblhA1_tlpYKr90SyskRsU1N8fiVbc38IlaBp7QnhkzPieGc8tY8JUgBFXLyODiu0UGOIfkgdkBbXwiMmDxMI6_DRTEV9I3IK5DIdZPQo2dW0_VTzssT3f1aKWz5GTbFKMcU6COxhM-Ut3lhyxtJ6Z2V2XzCmBTtWH5IrO1MxVsolE0ITJoWlMcxwXlCkedJXfRV6n6TT7pAiUq6id9C0BuUFWw9pqS-55tLgYZsvjzotLUQyKQSYUF80G3Q9H6FtV8WhBTheWtzpT-L6ycs72HsxspIWlLqrkdwWtD6nfn9fJC4FwNjg2_EOmkDkLy4oJlTM96XYpPVo0roKms1SkkVJjksJDRBTypzVyyi1JQQown8nMATdK4Oj5bE0UufkcV8JtTcCwXVCJzcxOOzKYgdDwWsRLVPtXhUnPQzwMIlCgRRr4OzivEuJNcwb5TrBk4UCDGAev--JHtSypUyJil4sAnkNujuyHirmg8_1J9TcQR56DCxSzFIdSq7JfnLnQfdvI7ZEQeH_VFwpSOZXCYWxCMRutyqQV36bFPYAfe57_vHbmTXD4gL98ErxiU5af8J-spfXItmmLI-fDDQNSg7uhjI0rIuMxJvS3HtMPry0g3dZBF4wBCQNCqZPwaVpXhby1peN4_ooTZ9g3T_XHWQvz_mS02yuOxTcI3SviNU51N6jFmFwK60EgJQAfrOOGc8Q5B-NIC2ixXrRqGZN3EpLJtuQh1enDIv7R3XXFodlyJAtSvm25TeC3WAnqzOsvkZkerd_iWgdTT5hd8yIIWEdT4hB-WmagoSj5AM4km8o4Q3O9FucVKoomuFL8tPU3WMpnAUniUK-XYsjwgHp66I7qbIOPk_A_FQYZVGXjz4dDiq-V9L0XSzcywjc0yJrlDJMIqEi41VpP2vwEuDpO6w-3grDr0jpu1OdbgTOYsGroSzokO08coW908AWgAwBEFPy_2AnFOZ9fnoS8eywSqVDVYkqOepQifFUAWTdsqvECWd-zDBaz-Gmp8TLEpU2ytzJxGaDd2FYqtI2Hg0yF6nCy1AqLdcVX02yyM9spX0gtnwvHtB3Qisrl1kodmcUZQXElz6pei_BFHCY3313LK8VyrWRDUpU10GDZNCxh9h-w1XxCzMvsVYwkHZgNdITidHPA5uvIuqVqQdGbjAt1rmKhaD-EyxvADj59fC3b7-QYBTGFXCb2MmnH4iLrzvt76hgNKMhnoybUEWY0C0uNS4pbkhZjmDfKvY6sQtlz4C_Uv1rnvi7OxNtFE5_NcVd2zIK1N4LHMWAPLkEHVQuT_3xnqBxR9VFhhTd3UPSogHMr3LqBDhjF7D9K1k5kYCiw0KMP--qf16-KxMBMjo33VVxtfhDSzm8D_pF5MWpz0ugXbxUqYkEvsGuGvHmlkHg783x6WxGbeaPfNzBmJppayMvVh_417NlDt-FCp2WIUbuWO9TbuBiaxV8ZJsrHVkRjHsr7t6KeJmYyHsb5NKCiOYp7AXRWUNQhWEvop9CPwdtb_ZqVH-cPvgX9xVy_HqqOwuIz_LFN_eTHQuUHpqtSh3ILnonUegmZZwp4JMYgVUSR9NcXLY4X9OAVEul2PqYbgGUJ2jriiZRiS_6QPLcXzprnOtKZPg0xbjaU8E9aKDuymHPXfyhMxl7txpbZJcCQhTfeeCw2X_BThrQ0LoGqGzKWiOrj3hN3cv3fVFaLZXKghdOg2PiDJjqAXUmufswUYw_av1RmHm2L4cM8wWqCiA==&abvar=0&os=0 HTTP/1.1
Host: omclyzyapf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: UID=23012705324bf55acd093b437392516a0280
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:30 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.impression
set-cookie: OACICAP=ACHfJgAAAAAAAAAB; Path=/; Expires=Sun, 26 Feb 2023 10:32:30 GMT; Secure; SameSite=None
OACIBLOCK=ACHfJgAAAABj01pQ; Path=/; Expires=Sun, 26 Feb 2023 10:32:30 GMT; Secure; SameSite=None
ppucnt=0; Path=/; Expires=Sat, 28 Jan 2023 10:32:30 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
omclyzyapf.com/chicken.gif?z=1937319&pb=7108400a92f91014ffe5d6f34ca0eb191674822748&psp=rkT9UL8pI9L4r25_TKzgLEWGSMnhGCphVQRRuYzwRxmxjm-XSLpZes-W-qHzssxLpuItIYZHLEg09-zgtd1ZD8mY0rscK07LdTCCNyvK5krzeXdrHIDLl674I2DkxRzpRgJ6IZ0nnJYow1qVYk9OWHQ2Sssd7cgHaRVOP_kaM1axJBG9HIGzrt4eco-svBBNc3D7YFZP5DWbcuvgkZxy2afU8FZmvM_e4k5HVi8TBj9o8UpHAIjnbJ_NV-1RRlxfckZ0SkxByiu1-ZWGkHCKBy2i2PikHgmFwsPO8MQslvgRScOj2znh99GJS2ow7iQU6SkXFfY8OME016Vu3LX-fvuRrjMEh7DXr8-t1T4rRbmkVMKTHtScMiGLZ5yyXAhNQB0pU5JVtEL4H_TwrzthOBkyztE_fTjE3JdW4YjYTxXxjp8QKhOw7-X92Oi2hS5HBDhOAaKs2IGyUXZDHJB7sIwj6a8Q-Sxik3fsgAiDjBnn6OmumXTdclnFLS5645vVTcx0nGOrZ9xHiwafJxyo3-HgwkucDilRC7Ao90TRO54MP2KsquKHMeRhJWqtn-9t9FTrjowMHZga1ty-O0hQ870Y1hrhxFY__XPYdFMUim26xrO7hy1awBE7u-2x7gX0cvPFVavKXTdUHmWhMzkYOaiM6zFjKLrjpqq0m-2wson9jhckROXS6NDhijFL9DaP4DJOzpbx2_MJYq5D6xiKhtxZpNq3_W8DDSEVAFxawx3m8iOMvkN5VLfuy0sV0BXMAqufhmxd2BX4AhSFFEC8gyUgbp33h1PAhqBB5ZYATXZzohjBPEnhU9KyhhAVbDrIT2EK4SVtbMi8d2GmzrGIQoJOnbSZreD-q6lC_JSb7-b4-1xBHV2QiBQs4RdzpGt1hQwH_vvpw_N7HfqGvQ0Z1D_kzrMFJGo0PpfW5bam-0QNPEmImWR6xSa71cgWciqmhOJbWKevxGct-fuYPv_xR4LpBNLqdADchXoOc6aULNMukBUZFGYhDI5_C_cZYCzLBPtNL1CEnK1zQAtPGIDw7TG2hn8F9uAhMX_KzkR8TNEIM-F8O-sK3M24dEoDqjnmAyxj4RoeHnAZYIHjZgmboCuPiR7YxIDU8xHjXCusaaMNGg3grcWoHZFbsxUw_AlugU_mzCFjepoMEeTX3A93Csib0Qxfne39DnuARihQAl6K6dWWZxoNwiJ840TroNUltAQr-kMILBTEQUiGQcBYl-G3Qt0n3uQiJYO5uNg-EBqCwix4nBedsEUnP8LTzs0hMf-CKGlQUFj2XZRHFYwsOXl5zr_fMHo89b9NgvoMsvOZGwTMIboQ_iFIITOKRMC-BjYCWHVsAamp8sMWVCp_JOwfHJWoLioY7VIQfX36VuDHPtl9TOn35S1EqtF6YAGmtm0WrVP_5atmcgbzFFNaPxQdk1vOJvcSfRyW_nU8KoJkXSioRLZgMmIhif2U-x0WCqKXHPIE4QylhjLJdchUeT07F5p8Tj6b3xnWMrz-ZBxpE6IZCfC7DzwxmpfSMCcTftLanmjajJhMQwfh_gKCfDigVXJ02SOYm8AOAqB5M7OW0oRj09JnM06xGOm1FibP4_Hdycp95pvYEw6QC8ro-A1N0Vc03tHYrhvGulCGLGlTKeTNRokx6NivCapMw2hoVby-JrW2uc-r8uFWnRZGN2HL4F3Mkwy3eZSDuimxNaYkWSjGeZ3bz4Dt0rjKaHhkCqEtZ9LtkmAHMv8NE3206FKjzAgXuIFVC7SY-Pyl0dNifsnHIBoWZUDyZTnI_mlPtbcCpQJFdGh5gv_u2uhIc9CYiesFqQXiMy4P99tu5K0NgW1UaxAhVRwerJst8YYzGlmBnQFeiGllWXcwQWF5TSO7wpzGHfoXdw==&abvar=0&os=0
62.122.171.6200 OK 43 B URL HTTP/2 omclyzyapf.com/chicken.gif?z=1937319&pb=7108400a92f91014ffe5d6f34ca0eb191674822748&psp=rkT9UL8pI9L4r25_TKzgLEWGSMnhGCphVQRRuYzwRxmxjm-XSLpZes-W-qHzssxLpuItIYZHLEg09-zgtd1ZD8mY0rscK07LdTCCNyvK5krzeXdrHIDLl674I2DkxRzpRgJ6IZ0nnJYow1qVYk9OWHQ2Sssd7cgHaRVOP_kaM1axJBG9HIGzrt4eco-svBBNc3D7YFZP5DWbcuvgkZxy2afU8FZmvM_e4k5HVi8TBj9o8UpHAIjnbJ_NV-1RRlxfckZ0SkxByiu1-ZWGkHCKBy2i2PikHgmFwsPO8MQslvgRScOj2znh99GJS2ow7iQU6SkXFfY8OME016Vu3LX-fvuRrjMEh7DXr8-t1T4rRbmkVMKTHtScMiGLZ5yyXAhNQB0pU5JVtEL4H_TwrzthOBkyztE_fTjE3JdW4YjYTxXxjp8QKhOw7-X92Oi2hS5HBDhOAaKs2IGyUXZDHJB7sIwj6a8Q-Sxik3fsgAiDjBnn6OmumXTdclnFLS5645vVTcx0nGOrZ9xHiwafJxyo3-HgwkucDilRC7Ao90TRO54MP2KsquKHMeRhJWqtn-9t9FTrjowMHZga1ty-O0hQ870Y1hrhxFY__XPYdFMUim26xrO7hy1awBE7u-2x7gX0cvPFVavKXTdUHmWhMzkYOaiM6zFjKLrjpqq0m-2wson9jhckROXS6NDhijFL9DaP4DJOzpbx2_MJYq5D6xiKhtxZpNq3_W8DDSEVAFxawx3m8iOMvkN5VLfuy0sV0BXMAqufhmxd2BX4AhSFFEC8gyUgbp33h1PAhqBB5ZYATXZzohjBPEnhU9KyhhAVbDrIT2EK4SVtbMi8d2GmzrGIQoJOnbSZreD-q6lC_JSb7-b4-1xBHV2QiBQs4RdzpGt1hQwH_vvpw_N7HfqGvQ0Z1D_kzrMFJGo0PpfW5bam-0QNPEmImWR6xSa71cgWciqmhOJbWKevxGct-fuYPv_xR4LpBNLqdADchXoOc6aULNMukBUZFGYhDI5_C_cZYCzLBPtNL1CEnK1zQAtPGIDw7TG2hn8F9uAhMX_KzkR8TNEIM-F8O-sK3M24dEoDqjnmAyxj4RoeHnAZYIHjZgmboCuPiR7YxIDU8xHjXCusaaMNGg3grcWoHZFbsxUw_AlugU_mzCFjepoMEeTX3A93Csib0Qxfne39DnuARihQAl6K6dWWZxoNwiJ840TroNUltAQr-kMILBTEQUiGQcBYl-G3Qt0n3uQiJYO5uNg-EBqCwix4nBedsEUnP8LTzs0hMf-CKGlQUFj2XZRHFYwsOXl5zr_fMHo89b9NgvoMsvOZGwTMIboQ_iFIITOKRMC-BjYCWHVsAamp8sMWVCp_JOwfHJWoLioY7VIQfX36VuDHPtl9TOn35S1EqtF6YAGmtm0WrVP_5atmcgbzFFNaPxQdk1vOJvcSfRyW_nU8KoJkXSioRLZgMmIhif2U-x0WCqKXHPIE4QylhjLJdchUeT07F5p8Tj6b3xnWMrz-ZBxpE6IZCfC7DzwxmpfSMCcTftLanmjajJhMQwfh_gKCfDigVXJ02SOYm8AOAqB5M7OW0oRj09JnM06xGOm1FibP4_Hdycp95pvYEw6QC8ro-A1N0Vc03tHYrhvGulCGLGlTKeTNRokx6NivCapMw2hoVby-JrW2uc-r8uFWnRZGN2HL4F3Mkwy3eZSDuimxNaYkWSjGeZ3bz4Dt0rjKaHhkCqEtZ9LtkmAHMv8NE3206FKjzAgXuIFVC7SY-Pyl0dNifsnHIBoWZUDyZTnI_mlPtbcCpQJFdGh5gv_u2uhIc9CYiesFqQXiMy4P99tu5K0NgW1UaxAhVRwerJst8YYzGlmBnQFeiGllWXcwQWF5TSO7wpzGHfoXdw==&abvar=0&os=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
Analyzer Verdict Alert quad9 Sinkholed
GET /chicken.gif?z=1937319&pb=7108400a92f91014ffe5d6f34ca0eb191674822748&psp=rkT9UL8pI9L4r25_TKzgLEWGSMnhGCphVQRRuYzwRxmxjm-XSLpZes-W-qHzssxLpuItIYZHLEg09-zgtd1ZD8mY0rscK07LdTCCNyvK5krzeXdrHIDLl674I2DkxRzpRgJ6IZ0nnJYow1qVYk9OWHQ2Sssd7cgHaRVOP_kaM1axJBG9HIGzrt4eco-svBBNc3D7YFZP5DWbcuvgkZxy2afU8FZmvM_e4k5HVi8TBj9o8UpHAIjnbJ_NV-1RRlxfckZ0SkxByiu1-ZWGkHCKBy2i2PikHgmFwsPO8MQslvgRScOj2znh99GJS2ow7iQU6SkXFfY8OME016Vu3LX-fvuRrjMEh7DXr8-t1T4rRbmkVMKTHtScMiGLZ5yyXAhNQB0pU5JVtEL4H_TwrzthOBkyztE_fTjE3JdW4YjYTxXxjp8QKhOw7-X92Oi2hS5HBDhOAaKs2IGyUXZDHJB7sIwj6a8Q-Sxik3fsgAiDjBnn6OmumXTdclnFLS5645vVTcx0nGOrZ9xHiwafJxyo3-HgwkucDilRC7Ao90TRO54MP2KsquKHMeRhJWqtn-9t9FTrjowMHZga1ty-O0hQ870Y1hrhxFY__XPYdFMUim26xrO7hy1awBE7u-2x7gX0cvPFVavKXTdUHmWhMzkYOaiM6zFjKLrjpqq0m-2wson9jhckROXS6NDhijFL9DaP4DJOzpbx2_MJYq5D6xiKhtxZpNq3_W8DDSEVAFxawx3m8iOMvkN5VLfuy0sV0BXMAqufhmxd2BX4AhSFFEC8gyUgbp33h1PAhqBB5ZYATXZzohjBPEnhU9KyhhAVbDrIT2EK4SVtbMi8d2GmzrGIQoJOnbSZreD-q6lC_JSb7-b4-1xBHV2QiBQs4RdzpGt1hQwH_vvpw_N7HfqGvQ0Z1D_kzrMFJGo0PpfW5bam-0QNPEmImWR6xSa71cgWciqmhOJbWKevxGct-fuYPv_xR4LpBNLqdADchXoOc6aULNMukBUZFGYhDI5_C_cZYCzLBPtNL1CEnK1zQAtPGIDw7TG2hn8F9uAhMX_KzkR8TNEIM-F8O-sK3M24dEoDqjnmAyxj4RoeHnAZYIHjZgmboCuPiR7YxIDU8xHjXCusaaMNGg3grcWoHZFbsxUw_AlugU_mzCFjepoMEeTX3A93Csib0Qxfne39DnuARihQAl6K6dWWZxoNwiJ840TroNUltAQr-kMILBTEQUiGQcBYl-G3Qt0n3uQiJYO5uNg-EBqCwix4nBedsEUnP8LTzs0hMf-CKGlQUFj2XZRHFYwsOXl5zr_fMHo89b9NgvoMsvOZGwTMIboQ_iFIITOKRMC-BjYCWHVsAamp8sMWVCp_JOwfHJWoLioY7VIQfX36VuDHPtl9TOn35S1EqtF6YAGmtm0WrVP_5atmcgbzFFNaPxQdk1vOJvcSfRyW_nU8KoJkXSioRLZgMmIhif2U-x0WCqKXHPIE4QylhjLJdchUeT07F5p8Tj6b3xnWMrz-ZBxpE6IZCfC7DzwxmpfSMCcTftLanmjajJhMQwfh_gKCfDigVXJ02SOYm8AOAqB5M7OW0oRj09JnM06xGOm1FibP4_Hdycp95pvYEw6QC8ro-A1N0Vc03tHYrhvGulCGLGlTKeTNRokx6NivCapMw2hoVby-JrW2uc-r8uFWnRZGN2HL4F3Mkwy3eZSDuimxNaYkWSjGeZ3bz4Dt0rjKaHhkCqEtZ9LtkmAHMv8NE3206FKjzAgXuIFVC7SY-Pyl0dNifsnHIBoWZUDyZTnI_mlPtbcCpQJFdGh5gv_u2uhIc9CYiesFqQXiMy4P99tu5K0NgW1UaxAhVRwerJst8YYzGlmBnQFeiGllWXcwQWF5TSO7wpzGHfoXdw==&abvar=0&os=0 HTTP/1.1
Host: omclyzyapf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: UID=23012705324bf55acd093b437392516a0280; OACICAP=ACHfJgAAAAAAAAAB; OACIBLOCK=ACHfJgAAAABj01pQ; ppucnt=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:31 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.impression
set-cookie: ppucnt=0; Path=/; Expires=Sat, 28 Jan 2023 10:32:31 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ocsp.usertrust.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ce09524c5572c6a4e56c5e30e1056dca
e10f95bfa55c7d58971503b4c9bf4593674acabd
694d604995cddd985791dad236ac0e66176d606aa4192a7b37ea51f2e5642a4a
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 27 Jan 2023 10:32:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 24 Jan 2023 14:55:07 GMT
Expires: Tue, 31 Jan 2023 14:55:06 GMT
Etag: "e10f95bfa55c7d58971503b4c9bf4593674acabd"
Cache-Control: max-age=601160,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 357
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7900d32d1df7b52d-OSL
cdn18685953.ahacdn.me/skins/webcam4.png
45.133.44.20200 OK 1.3 kB URL HTTP/2 cdn18685953.ahacdn.me/skins/webcam4.png
IP 45.133.44.20:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 144 x 142, 8-bit/color RGBA, non-interlaced\012- data
Hash 00be7708797fa23e997643eebdd0e1dc
c32283451ff774f1d945a344b46afaf7e8cca400
011c0ba6c990319ddd1c670433ae0bfeaa379fbcac850acd3f32eb501905d435
GET /skins/webcam4.png HTTP/1.1
Host: cdn18685953.ahacdn.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:31 GMT
content-type: image/png
content-length: 1303
server: nginx/1.22.0
etag: 00be7708797fa23e997643eebdd0e1dc
last-modified: Thu, 03 Dec 2020 11:42:07 GMT
x-timestamp: 1606995726.49549
x-trans-id: tx22a8a6c6c2e14809af211-0063a457cd
x-openstack-request-id: tx22a8a6c6c2e14809af211-0063a457cd
access-control-allow-origin: *
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
expires: Sun, 29 Jan 2023 10:32:31 GMT
cache-control: max-age=172800
vary: Accept-Encoding
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ancznewozw.com/get/1937112?zoneid=1937112&jp=_clvvbpmxa6ys9v9v6bds4p&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&sp=0&cid=5176310292537983
62.122.171.6200 OK 0 B URL HTTP/2 ancznewozw.com/get/1937112?zoneid=1937112&jp=_clvvbpmxa6ys9v9v6bds4p&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&sp=0&cid=5176310292537983
IP 62.122.171.6:0
Analyzer Verdict Alert quad9 Sinkholed
GET /get/1937112?zoneid=1937112&jp=_clvvbpmxa6ys9v9v6bds4p&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&sp=0&cid=5176310292537983 HTTP/1.1
Host: ancznewozw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=23012705328bd3878b518e4445bc160a3ac5; Path=/; Expires=Sat, 27 Jan 2024 10:32:27 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ancznewozw.com/aas/r45d/vki/1937112/7c16d247.js
62.122.171.6200 OK 0 B URL HTTP/2 ancznewozw.com/aas/r45d/vki/1937112/7c16d247.js
IP 62.122.171.6:0
Analyzer Verdict Alert quad9 Sinkholed
GET /aas/r45d/vki/1937112/7c16d247.js HTTP/1.1
Host: ancznewozw.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: application/javascript
last-modified: Thu, 26 Jan 2023 13:21:09 GMT
vary: Accept-Encoding
etag: W/"63d27e45-10d38"
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
a.realsrv.com/ad-provider.js
185.76.9.22200 OK 0 B URL HTTP/2 a.realsrv.com/ad-provider.js
IP 185.76.9.22:0
ASN #60068 Datacamp Limited
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: application/javascript
etag: W/"c86623937323852b5fe82a29fcb"
expires: Tue, 24 Jan 2023 13:18:38 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1674825604
server: CDN77-Turbo
x-77-nzt: AblMCRQJtcP/6AIAAA
x-77-nzt-ray: af5856308b0b71093ca8d363364d5e1a
x-cache: HIT
x-age: 744
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.mankacharcollege.in/pdf/AQAR/2017-18.pdf
188.114.97.1302 Found 0 B URL HTTP/2 www.mankacharcollege.in/pdf/AQAR/2017-18.pdf
IP 188.114.97.1:0
Analyzer Verdict Alert fortinet Phishing
GET /pdf/AQAR/2017-18.pdf HTTP/1.1
Host: www.mankacharcollege.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: text/html; charset=UTF-8
location: https://mankacharcollege.in/pdf/AQAR/2017-18.pdf
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yWAQNdgSRym5cZ9qRSJXiD6bTAtIIrC890T5pqkXAIXXtiqaddceY4z%2FKKZIofRUt6r7fRzwMMH76p8Rxgw0o4hWJ7Z1Uu6Vk6jVYV%2F0DlzFmfrJduri9dM71IMz7yMKCBln7j5fH3jQZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7900d3110c2fb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mankacharcollege.in/pdf/AQAR/2017-18.pdf
104.21.45.165302 Found 0 B URL HTTP/2 mankacharcollege.in/pdf/AQAR/2017-18.pdf
IP 104.21.45.165:0
Analyzer Verdict Alert fortinet Phishing
GET /pdf/AQAR/2017-18.pdf HTTP/1.1
Host: mankacharcollege.in
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Fri, 27 Jan 2023 10:32:27 GMT
content-type: application/x-empty
location: https://mankacharcollege.in
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F%2FSsdWoibBf2bA9c6vGlGmiewsRZ5Mgn0HhPaoH9cHf5me0AwIV9ZCU0oMGwOp8LPUK%2BHtUAXIvJahlIY5s0Ul4du%2BbISp0Jljii4%2Bw%2FBsjbK7ApqC6VNnUpEiVyB9sHJJv9Kq8A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7900d311b95cb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
omclyzyapf.com/get/1937319?zoneid=1937319&jp=_clcfd0w16eonof45b6w97x&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=undefined&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=954185641886414
62.122.171.6200 OK 0 B URL HTTP/2 omclyzyapf.com/get/1937319?zoneid=1937319&jp=_clcfd0w16eonof45b6w97x&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=undefined&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=954185641886414
IP 62.122.171.6:0
Analyzer Verdict Alert quad9 Sinkholed
GET /get/1937319?zoneid=1937319&jp=_clcfd0w16eonof45b6w97x&nojs=0&ix=0&abvar=0&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=undefined&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=954185641886414 HTTP/1.1
Host: omclyzyapf.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mankacharcollege.in/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 10:32:28 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=23012705324bf55acd093b437392516a0280; Path=/; Expires=Sat, 27 Jan 2024 10:32:28 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2