archivebate.com/watch/603937
172.67.140.140301 Moved Permanently 0 B URL HTTP/1.1 archivebate.com/watch/603937
IP 172.67.140.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch/603937 HTTP/1.1
Host: archivebate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 31 Mar 2023 19:24:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 31 Mar 2023 20:24:03 GMT
Location: https://archivebate.com/watch/603937
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IfEkYr5zh3j9XpVoYpW8F3d5%2B9yQNilYZqaf%2FoxOT%2Ba50R8eXDLxHs1kK4pdI%2BiOYkkIgXUltkFt0VC5WbZ6dzzKY9BcWLs6uCbwpDRBMd4H84N8knK9ZdAjwExNaNX7vl4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b0af8671eaafac0-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13253
Expires: Fri, 31 Mar 2023 23:04:56 GMT
Date: Fri, 31 Mar 2023 19:24:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8161
Expires: Fri, 31 Mar 2023 21:40:04 GMT
Date: Fri, 31 Mar 2023 19:24:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 374c9e295a804e605c402f48ae7e2446
967394b36ecdff2dd32842f878887f061024c6b3
7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6935
Expires: Fri, 31 Mar 2023 21:19:38 GMT
Date: Fri, 31 Mar 2023 19:24:03 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Length, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 19:16:12 GMT
content-type: application/json
age: 471
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kjvoxTXu4LOP8KQW7z8zB0DVvSo1hF/5C3+i+IkWyPyxMtpgxJucoSJ2y6CEIIb7a+HSwWuoJII=
x-amz-request-id: FBD8M07Y38TM5J3J
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 19:03:27 GMT
age: 1236
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:03 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Expires, Cache-Control, Content-Length, Retry-After, Last-Modified, Pragma, ETag, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 19:14:39 GMT
age: 564
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 782ca4845ea5e0ec981e33231b1e61cb
032116b75e124c57877524e9e4f523b6d7c65820
94d007862fc7a4cd67f582ff22f2339619177435559c1dd5075a08c7240f3520
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94D007862FC7A4CD67F582FF22F2339619177435559C1DD5075A08C7240F3520"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8947
Expires: Fri, 31 Mar 2023 21:53:10 GMT
Date: Fri, 31 Mar 2023 19:24:03 GMT
Connection: keep-alive
push.services.mozilla.com/
35.161.44.144101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.44.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zOvczlfROGhuRVoU61LB0A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: vPvFWwNgSlO6gV3MnqGBKVOV6Lg=
cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
104.17.25.14200 OK 2.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (4890)
Hash aca27ab03077eaec0530b45d4e57f9e2
8d1f2ef2258f2b9d3784ed3e6129fa7afbe30339
5692cd7d56e70b8de0be31e0584f03712e85fa2734ec21b54138aedd6a4871a6
GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 2090
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-139e"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 767520
expires: Wed, 20 Mar 2024 19:24:04 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j604eafCTfVkiXuovTWCDJMwvrdwfHj%2BVb3UJU1yZBaDBbbrctMQqLm265%2BqVh1uM9LkA4NrvU0vezYtDrS%2FinPrOyBceQM27MDDIj061VXtnNPbkODqDoFSGga7G%2FOgcJFEW5lA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7b0af8714ce10b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc0bc67cb73720019a64ebe2e6cc00a8
1caa960bc9bf478f88d9401ac9784d42641f513e
a8053d663c8bfb024620c710e40c226c0fc1c82620c511ffed5379ad4191acd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img.doodcdn.co/snaps/42g9xlgijyf777x7.jpg
172.67.70.190200 OK 22 kB URL HTTP/2 img.doodcdn.co/snaps/42g9xlgijyf777x7.jpg
IP 172.67.70.190:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x405, components 3\012- data
Hash 4649b8768c775a53a8f03bbb850fc534
a6a8393ad79982415c04c7838e442be647235c0b
573f7ab257fbeae7e04c3710bbf8b58a5a708e524e6451c9e3df038a40534b65
GET /snaps/42g9xlgijyf777x7.jpg HTTP/1.1
Host: img.doodcdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: image/jpeg
content-length: 22531
access-control-allow-origin: *
cache-control: max-age=1209600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=22899, status=webp_bigger
etag: "6427264d-5973"
expires: Fri, 14 Apr 2023 18:29:37 GMT
last-modified: Fri, 31 Mar 2023 18:28:29 GMT
cf-cache-status: HIT
age: 1426
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UdxV8SwlXzl97xa6MbTGU%2FgbbCxc9npCuPu9e%2F9SImW6q3Z4LnC8Ke9QsiAfZBDNZCYQSePcTcNXoJMuOOIj6CwRzuZQFO%2BNu3eKBMDvrE42R9HDqWPVwHNck19u4bMC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af871692c0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.doodcdn.co/snaps/6xh4u6h5ppge2ize.jpg
172.67.70.190200 OK 33 kB URL HTTP/2 img.doodcdn.co/snaps/6xh4u6h5ppge2ize.jpg
IP 172.67.70.190:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x405, components 3\012- data
Hash 5038cdd9680dfcc785cb2fc08fa81092
93421771588e647d5de5be13d2d81821caad12db
19f1a27ba34f331746fa0bc2853737d7ee9c37096aaeb88da49c25afd88cad03
GET /snaps/6xh4u6h5ppge2ize.jpg HTTP/1.1
Host: img.doodcdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: image/jpeg
content-length: 33392
access-control-allow-origin: *
cache-control: max-age=1209600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=34011, status=webp_bigger
etag: "64272a08-84db"
expires: Fri, 14 Apr 2023 18:44:46 GMT
last-modified: Fri, 31 Mar 2023 18:44:24 GMT
cf-cache-status: HIT
age: 1426
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=165EmV9P%2BKFthEvVUEoLpP6LH3bPh5vchbkIHmdykkEkjfMm72yE5RaIDk%2BZUPxDGQqfrVmG88pTUasOn%2BufqttHpVdb1yUViA7lIrZc%2B4pgUBGuKFtw2uZ9xptRpJ3t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af871692d0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.doodcdn.co/snaps/3l1k0sq8rdtgab1z.jpg
172.67.70.190200 OK 26 kB URL HTTP/2 img.doodcdn.co/snaps/3l1k0sq8rdtgab1z.jpg
IP 172.67.70.190:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x405, components 3\012- data
Hash 0100cc1e1f77bc192a409e702f9b1233
254eee0aad4dbbcdec6c5bec6a3b07147d14ed57
1c08cbba9da147fcb4c7cef1df5f6bc6d280f1c633c7c7387b65385d90eb0058
GET /snaps/3l1k0sq8rdtgab1z.jpg HTTP/1.1
Host: img.doodcdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: image/jpeg
content-length: 26097
access-control-allow-origin: *
cache-control: max-age=1209600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=26693, status=webp_bigger
etag: "642726e3-6845"
expires: Fri, 14 Apr 2023 18:38:37 GMT
last-modified: Fri, 31 Mar 2023 18:30:59 GMT
cf-cache-status: HIT
age: 1426
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TbnRxeSa8p7rHK05pKLMwpg1Ne8Zlv8ZUS1TAcVyabvtrfEgU7ekE4HiBHXl%2FD%2Bj91dNg3r%2B7jODkrI24vcyORIXN8x0Zm1%2FMQSJFJi8jhL2WsqOfgmWZ7ZqdX9liS%2Fw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af871692f0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.fluidplayer.com/v3/current/fluidplayer.min.js
205.185.216.42200 OK 48 kB URL HTTP/1.1 cdn.fluidplayer.com/v3/current/fluidplayer.min.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (65463)
Hash 325030344a1e1bab55c53b83684a8b72
a7f62e92e75247ed2b657063d469f3bfca741fab
9d8b77173c5032ea4128a6a495d5df1fa14920a70e7804624a1ba7894cd9c0c2
GET /v3/current/fluidplayer.min.js HTTP/1.1
Host: cdn.fluidplayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 19:24:04 GMT
Connection: Keep-Alive
ETag: "1678438490"
Cache-Control: max-age=70417
Content-Encoding: gzip
Content-Length: 48070
Content-Type: application/javascript
Last-Modified: Fri, 10 Mar 2023 08:54:50 GMT
Accept-Ranges: bytes
X-HW: 1680290644.dop026.sk1.t,1680290644.cds009.sk1.shn,1680290644.cds009.sk1.c
img.doodcdn.co/snaps/9o994dx1murlf5iy.jpg
172.67.70.190200 OK 26 kB URL HTTP/2 img.doodcdn.co/snaps/9o994dx1murlf5iy.jpg
IP 172.67.70.190:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x405, components 3\012- data
Hash 5bf57367b2b758792c7df1f402d51970
a91076a2b19236f5f1adfac9bd7144ea13e4d5b1
229cda14c44b558a5511e10b4b58b338773546b8e430e980af3f7ff93874fed5
GET /snaps/9o994dx1murlf5iy.jpg HTTP/1.1
Host: img.doodcdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: image/jpeg
content-length: 25924
access-control-allow-origin: *
cache-control: max-age=1209600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=26321, status=webp_bigger
etag: "64272a71-66d1"
expires: Fri, 14 Apr 2023 18:46:31 GMT
last-modified: Fri, 31 Mar 2023 18:46:09 GMT
cf-cache-status: HIT
age: 1426
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p3W8nTgZ13ZDHsiRCLY7V1iA6dIizupGU%2B962MvDc%2FziGP3lXDotQELuiveyXg3R538a8HJahnCGqooaycR7FzDYANDwvw%2FEWHOa6bhxI6H04Ig1yBll0sXNTB8UzAzy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af87169310b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.doodcdn.co/snaps/xi411h0xl3m81n1d.jpg
172.67.70.190200 OK 27 kB URL HTTP/2 img.doodcdn.co/snaps/xi411h0xl3m81n1d.jpg
IP 172.67.70.190:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 720x405, components 3\012- data
Hash 19df5d30635072a0206db4d5fa09d849
bded9fa948c14c7588b1d8f45fdf5d7bc59890fd
6775b662616b78fd4be46f418feba90573cf770e2e32a85b4e820f5fceb1600a
GET /snaps/xi411h0xl3m81n1d.jpg HTTP/1.1
Host: img.doodcdn.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: image/jpeg
content-length: 27436
access-control-allow-origin: *
cache-control: max-age=1209600
cf-bgj: imgq:100,h2pri
cf-polished: origSize=27899, status=webp_bigger
etag: "6427269c-6cfb"
expires: Fri, 14 Apr 2023 18:30:05 GMT
last-modified: Fri, 31 Mar 2023 18:29:48 GMT
cf-cache-status: HIT
age: 1426
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n3GJe5vQ6hNYdxU8RF%2B%2BySxeUpfKvE%2BzsWuLgWkXaCDTJNeVfQfIGL3SzRY2kA6GWos0K7aX4HKw6teMZGq62esc20Xp5pVC6WLwZJOa0e5UAGnHcdOQ49hojGaFz8hk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af87179360b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-YWDMKPE0RN
142.250.74.72200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-YWDMKPE0RN
IP 142.250.74.72:0
File type ASCII text, with very long lines (15610)
Hash 9d9dc00ae8a31d2bf7f3ecf2da5a9fe6
2a16abd8c67f86a086c1830b6a9c3c9b7f089041
1ac9bdf7b6649a37e9fef00cf8a19622ca5bd23a0372400a4d86f6535ed528ea
GET /gtag/js?id=G-YWDMKPE0RN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 31 Mar 2023 19:24:04 GMT
expires: Fri, 31 Mar 2023 19:24:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75707
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adshrink.it/adshytics.js?c=3636.414454437968
188.114.96.1200 OK 4.4 kB URL HTTP/2 adshrink.it/adshytics.js?c=3636.414454437968
IP 188.114.96.1:0
File type C++ source text\012- C source, ASCII text
Hash 8f281140bfa3215b208ae00616185288
cac2ec3d7e32fa4e20a5373f1e76991082ffc37d
42707bdaf2a3ec9fe96023981c8e62a9cecd34a534b3129544b741ced710d8f8
GET /adshytics.js?c=3636.414454437968 HTTP/1.1
Host: adshrink.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: application/javascript
content-length: 4396
last-modified: Mon, 05 Dec 2022 20:41:57 GMT
etag: "3f54-5ef1ab7f261fd-gzip"
vary: Accept-Encoding
content-encoding: gzip
x-varnish: 8686319894
via: 1.1 webcache1 (Varnish/7.3)
cache-control: max-age=3600
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M%2F09TmRhostcEY4i7xH6pNN8Z8%2F43cUS0DrVykzsb5ascIsfIkJvRpw8sCEyPIASyQAFbFLYAktZnfXkZ4pymOPpuiMIXj0aQdR0MwkyTAj4h1gtU%2Fa%2FIAyKWAukfw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b0af871d937b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fc0bc67cb73720019a64ebe2e6cc00a8
1caa960bc9bf478f88d9401ac9784d42641f513e
a8053d663c8bfb024620c710e40c226c0fc1c82620c511ffed5379ad4191acd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e2d5e4593c830bd9a297e9d820fce16b
a48bacab5839fbc2a379e0e1f8703da462f3c31d
c273a26e5fb94b4aa7c494bd09daf02419f99307f90de3891951535ae93e8028
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.buypass.com/
23.36.76.129200 OK 1.7 kB IP 23.36.76.129:0
ASN #20940 Akamai International B.V.
Hash 375269ec6ee1338ee5fc780913fe2868
5f93f438567ae6a10c748bd623fbd8c8055c30f5
7debf900e1923c9623596ad6c5b4945bb1c2456db1bfbe48bcab4559716302b3
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: c3efb3ae-28e8-4b05-b5b6-a424b82807e1
Content-Length: 1701
Date: Fri, 31 Mar 2023 19:24:04 GMT
Connection: keep-alive
ocsp.buypass.com/
23.36.76.129200 OK 1.7 kB IP 23.36.76.129:0
ASN #20940 Akamai International B.V.
Hash 91d17ff758ce6c5d29e95da6440a89de
67da51aa29dbed18a0594f7ab17068da7101e7a5
7ff7098ab3287ca170c6d34328855a251db751472e647ab4172dd670b7240589
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: ce1ac093-dbf1-4177-819f-789af85a5781
Content-Length: 1701
Date: Fri, 31 Mar 2023 19:24:04 GMT
Connection: keep-alive
ocsp.buypass.com/
23.36.76.129200 OK 1.7 kB IP 23.36.76.129:0
ASN #20940 Akamai International B.V.
Hash 1ec0a72f582f565a9faa006ef8ea3527
e62207af2120dca7f7ef25ab21f26074ebbb6276
e349b931f69197b3773d33af776c015dff1ea9ea0da27953101f78594a6957a8
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 1416ed65-af9d-47c9-b18d-c1aaaa294941
Content-Length: 1701
Date: Fri, 31 Mar 2023 19:24:04 GMT
Connection: keep-alive
ocsp.buypass.com/
23.36.76.129200 OK 29 kB IP 23.36.76.129:0
ASN #20940 Akamai International B.V.
Hash a73364ec12aa40caabec140533222636
3a12599481995284cfbaefa86d4122b9969e1f05
3c624dd5aaca349e7c71b5fdaf4f6a829fdb3706ac8043cc515a7c21bf2ccebb
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 1090fa68-2b7d-42f6-851a-f3dfb0834edc
Content-Length: 1701
Date: Fri, 31 Mar 2023 19:24:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3be7642cf400a7995eecc3714e187f32
eebab661c08fd9b086951ce10ac9f71c771bba05
dde645b0e99902bb7b325ad4fc49fa85335b67ab6cf955bc8e0e2603088158c1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DDE645B0E99902BB7B325AD4FC49FA85335B67AB6CF955BC8E0E2603088158C1"
Last-Modified: Thu, 30 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6541
Expires: Fri, 31 Mar 2023 21:13:05 GMT
Date: Fri, 31 Mar 2023 19:24:04 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ac54bb3628890e12111d64757053dac
882c767217269bad8ce48c525f3fc09b0b463524
c1ad6c172550ea4fe7b49ec5f913099a74b95f887cb31bfde78e4895b016bc01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/script.js/2.0.2/script.min.js
104.17.25.14200 OK 684 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/script.js/2.0.2/script.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (1233)
Hash 71e542f19c88c7035168c192f80ac5f9
fca7af2259b0c1d760f8081025936b28e4b8416e
8835322bb49ad057837ff076cf1baaae6e5ac71a6faf96b50555ddcc5de721d4
GET /ajax/libs/script.js/2.0.2/script.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: application/javascript; charset=utf-8
content-length: 684
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fcb-594"
last-modified: Mon, 04 May 2020 16:16:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1824947
expires: Wed, 20 Mar 2024 19:24:05 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OJrx23OCXO5c1YkasySDPH1QYs%2BR6TnfGdpyhlShITG%2FbkrrzElHlagQM2%2Fb84inBrNdKzeDFXpZTmWu%2FZ7LsE05Da2EhmTtSVhi6XghOVAke%2FsIlBZAsvo9xpjGkFCHZrD51buX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7b0af8733b650b31-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ff36ec2657d8ee3b0f78d0a8b2bc9c96
7ce770b27771a2417292364a24af2d65bb9085a5
7c6a6029f3d8b5c88c0d52cfa1d8a6d79fe57080cbd88951ce40456d1ae214e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:24:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ac54bb3628890e12111d64757053dac
882c767217269bad8ce48c525f3fc09b0b463524
c1ad6c172550ea4fe7b49ec5f913099a74b95f887cb31bfde78e4895b016bc01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
216.58.207.227200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Hash e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:32:11 GMT
expires: Wed, 27 Mar 2024 10:32:11 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 291114
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.realsrv.com/ad-provider.js
185.76.9.21200 OK 31 kB URL HTTP/2 a.realsrv.com/ad-provider.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
Hash 72737d2080569c25dddaa4185a828faa
abb034965a77a17f3db01c523fff944680e718ec
a4e0712ef5c69d74a654bf0b2c4e0fcf05ac9f3dc8a027be3dfa56a9e41dbb37
GET /ad-provider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"4a7886b0595c8711a5aae6eac4a"
expires: Fri, 31 Mar 2023 16:23:53 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRTuOS//fikAAA
x-77-nzt-ray: af5856302315de4c54332764c4635b2b
x-accel-expires: @1680290822
x-cache: HIT
x-age: 10622
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
mixdrop.co/e/7rleolw4uox6me
31.220.1.173200 OK 3.5 kB URL HTTP/1.1 mixdrop.co/e/7rleolw4uox6me
IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5155)
Hash fd6788284c756d5583c7e250f477161b
2c654c15af7bfc0933f3f848965f830ece63ba8b
2ba55cfd467ad36534242ddce292b9e67216fa0f63538e598c1cfff37cee76d2
GET /e/7rleolw4uox6me HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs; path=/; secure; SameSite=None
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
kxwhiogrswx.com/aas/r45d/vki/1956913/820949de.js
62.122.171.6200 OK 37 kB URL HTTP/2 kxwhiogrswx.com/aas/r45d/vki/1956913/820949de.js
IP 62.122.171.6:0
Hash a75d02603fbd7cc4fd32a2b5bdf19e69
9be02a3f4cd2f659336ed5205ea6b877c3db5983
36bc9f28216d37880a42d26ab624cc92299ce4919b837f53a3d2c5243f426e30
GET /aas/r45d/vki/1956913/820949de.js HTTP/1.1
Host: kxwhiogrswx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: application/javascript
last-modified: Wed, 29 Mar 2023 13:26:16 GMT
vary: Accept-Encoding
etag: W/"64243c78-124a3"
x-js-ab1: current
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 1db5b3fb5dd5ad148e432212db96af68
0a09c7f4e48770d3a5c792408576e171b240745a
6fccd0193dafcfe51c2ebd9d2441fcc74dc7ba108d0a54fe24d65675c70e7610
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 31 Mar 2023 14:30:27 GMT
Expires: Fri, 07 Apr 2023 14:30:26 GMT
Etag: "0a09c7f4e48770d3a5c792408576e171b240745a"
Cache-Control: max-age=586580,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0af87388ca0b02-OSL
kxwhiogrswx.com/solid.gif?z=1956913&abvar=0
62.122.171.6200 OK 43 B URL HTTP/2 kxwhiogrswx.com/solid.gif?z=1956913&abvar=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
POST /solid.gif?z=1956913&abvar=0 HTTP/1.1
Host: kxwhiogrswx.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.tag.loaded
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ac54bb3628890e12111d64757053dac
882c767217269bad8ce48c525f3fc09b0b463524
c1ad6c172550ea4fe7b49ec5f913099a74b95f887cb31bfde78e4895b016bc01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
syndication.realsrv.com/splash.php?idzone=4915994&cookieconsent=true
95.211.229.246200 OK 2.7 kB URL HTTP/1.1 syndication.realsrv.com/splash.php?idzone=4915994&cookieconsent=true
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (1542)
Hash a6832b6bdfbbc753734dcd2f6c0e3173
c88bc50817a561228f356b62e31740b175fada69
1752a5af35384fe0426e0a407d5e018ff6034607d8ba0118d184b76c51f4fc8b
GET /splash.php?idzone=4915994&cookieconsent=true HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: text/xml;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%2264273355131be9.92765160516970638%22%3B%7D; expires=Sun, 30 Mar 2025 19:24:05 GMT; path=; domain=.realsrv.com; Secure; SameSite=none
c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4915994%7C59493762%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Carchivebate.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; expires=Sat, 01 Apr 2023 19:24:05 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
Cache-Control: no-store
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: https://archivebate.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.realsrv.com/v1/api.php
95.211.229.246200 OK 1.3 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (1863), with no line terminators
Hash 1ae94ebabe6146c9fc169bb5b90b1e7c
d8cf5d066da9490c43b48c19ef72ceb2771d14a9
450a8929d7be0ad7c4654eefac98936c19c2578a9c5b15aed98277238da3a89b
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 286
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://archivebate.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226427335513c9b4.46965674295943057%22%3B%7D; expires=Sun, 30-Mar-2025 19:24:05 GMT; Max-Age=63072000; path=/; domain=realsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
archivebatethumbnails.b-cdn.net/2022/08/06/603937.jpg
169.150.247.40200 OK 29 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/08/06/603937.jpg
IP 169.150.247.40:0
File type JPEG image data, baseline, precision 8, 864x480, components 3\012- data
Hash ddbdf8a8b4a00bce7abe9c8548608632
99b73d157c83c47dd0cc454e281cc9f36774bb09
56cd1ee8150fd6101fefb606014615fb78bb1af88f5c5b36e53730141f42beb0
GET /2022/08/06/603937.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 29145
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Thu, 22 Dec 2022 17:27:27 GMT
ratelimit-remaining: 236
ratelimit-reset: 1
x-ratelimit-remaining-second: 236
x-ratelimit-limit-second: 250
ratelimit-limit: 250
x-rgw-object-type: Normal
x-amz-request-id: tx00000248852ead1d6a00d-0064203f93-bf1b05-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/26/2023 12:50:27
cdn-edgestorageid: 1079
cdn-status: 200
cdn-requestid: 1011caa67a36fda57acfe733668fc29a
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
archivebatethumbnails.b-cdn.net/2022/09/27/8779289.jpg
169.150.247.40200 OK 63 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/09/27/8779289.jpg
IP 169.150.247.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x592, components 3\012- data
Hash 5ddf0d1024bb6336795884d6bcdc13c0
60972f2e829965dbf9451cc6130833a87cff1999
a06c537c60a0753209cf02ec4814b29eb5d89b9b739d3c2415ced64cf38d679f
GET /2022/09/27/8779289.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 62988
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Sat, 11 Mar 2023 18:41:58 GMT
ratelimit-remaining: 242
ratelimit-reset: 1
x-ratelimit-remaining-second: 242
x-ratelimit-limit-second: 250
ratelimit-limit: 250
x-rgw-object-type: Normal
x-amz-request-id: tx00000697d652829046a02-0064272d6c-bef1f0-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/31/2023 18:58:53
cdn-edgestorageid: 864
cdn-status: 200
cdn-requestid: e5ac389e0afdd3ba803bb87852c7a159
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
archivebatethumbnails.b-cdn.net/2022/09/27/8779293.jpg
169.150.247.40200 OK 111 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/09/27/8779293.jpg
IP 169.150.247.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x592, components 3\012- data
Size 111 kB (111101 bytes)
Hash c14277c67c9029c50dfca6f042d13774
f5ffdbff5fbdd672bbf35abc08482f7b1ca4649b
ebe7dabc6dcf25b51f87f9f28dd9cf8efbf6955bab19afe3011bffaf5129e8a3
GET /2022/09/27/8779293.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 111101
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Sat, 11 Mar 2023 18:41:57 GMT
ratelimit-limit: 250
ratelimit-remaining: 243
ratelimit-reset: 1
x-ratelimit-remaining-second: 243
x-ratelimit-limit-second: 250
x-rgw-object-type: Normal
x-amz-request-id: tx00000f3214a7250bbe81f-0064272d6c-bf1b05-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/31/2023 18:58:53
cdn-edgestorageid: 1081
cdn-status: 200
cdn-requestid: fb87fa5ef08a746717ef4b167f443492
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
archivebatethumbnails.b-cdn.net/2022/09/27/8779317.jpg
169.150.247.40200 OK 80 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/09/27/8779317.jpg
IP 169.150.247.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x592, components 3\012- data
Hash 148f23679e95c8eba12d0317c1f5059d
191477bcde0a15bd763a4c3b0eb357553afc085a
c75cd4030504012cf4a5dec050b30a2f5e39b3069d1b8590e8c053c2ce20e4b1
GET /2022/09/27/8779317.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 80147
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Sat, 11 Mar 2023 18:41:46 GMT
ratelimit-limit: 250
ratelimit-remaining: 245
ratelimit-reset: 1
x-ratelimit-remaining-second: 245
x-ratelimit-limit-second: 250
x-rgw-object-type: Normal
x-amz-request-id: tx000009bf2abbd420a08c8-0064272d6c-bf30c4-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/31/2023 18:58:53
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: 22ae27ca127c2cf3b6157c9e4e20faed
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
archivebatethumbnails.b-cdn.net/2022/09/27/8779297.jpg
169.150.247.40200 OK 90 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/09/27/8779297.jpg
IP 169.150.247.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x592, components 3\012- data
Hash c56cffee6b885eff11de6f4624bb32ac
2156c7df1db61ba7c573e763af29d5831629e7cc
2377b5081c5293a53626cb3308434f2a1bafd89b703fe217363654134edf0654
GET /2022/09/27/8779297.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 90221
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Sat, 11 Mar 2023 18:41:56 GMT
ratelimit-remaining: 245
ratelimit-reset: 1
x-ratelimit-remaining-second: 245
x-ratelimit-limit-second: 250
ratelimit-limit: 250
x-rgw-object-type: Normal
x-amz-request-id: tx0000008128cd4536d7b35-0064272d6c-bd6359-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/31/2023 18:58:53
cdn-edgestorageid: 1076
cdn-status: 200
cdn-requestid: 6bf3d0a3f38f7ce4c14304f7e8352c3b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
archivebatethumbnails.b-cdn.net/2022/09/27/8779310.jpg
169.150.247.40200 OK 94 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/09/27/8779310.jpg
IP 169.150.247.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x592, components 3\012- data
Hash 3da07a40b66d80ba5ae67d91c78d507f
221540bef083e9d8ca22e71d4a66af47ddd4364f
023ac8c10646c8bc8bf58d952de028dc5bf1ab5e2a2600317ce65445b29cfe2f
GET /2022/09/27/8779310.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 94063
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Sat, 11 Mar 2023 18:41:49 GMT
ratelimit-limit: 250
ratelimit-remaining: 245
ratelimit-reset: 1
x-ratelimit-remaining-second: 245
x-ratelimit-limit-second: 250
x-rgw-object-type: Normal
x-amz-request-id: tx000003a8cc61e76139fab-0064272d6c-c3ec67-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/31/2023 18:58:53
cdn-edgestorageid: 1076
cdn-status: 200
cdn-requestid: 45fb224376bb814db6997bcf4d6e12ba
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
archivebatethumbnails.b-cdn.net/2022/09/27/8779312.jpg
169.150.247.40200 OK 157 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/09/27/8779312.jpg
IP 169.150.247.40:0
Size 157 kB (157239 bytes)
Hash 9561ad5df43e0cb188a9306aa978d8b5
aa2568e942af4989282589faad7dc81cbea3b213
a268de7d228b8be64c7cf5f06868559afe02d51cf0173287704d090bc90b2fac
GET /2022/09/27/8779312.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 107806
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Sat, 11 Mar 2023 18:41:49 GMT
ratelimit-remaining: 244
ratelimit-reset: 1
x-ratelimit-remaining-second: 244
x-ratelimit-limit-second: 250
ratelimit-limit: 250
x-rgw-object-type: Normal
x-amz-request-id: tx000000b8ef5497ed7d140-0064272d6c-c1d8dd-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/31/2023 18:58:53
cdn-edgestorageid: 874
cdn-status: 200
cdn-requestid: 59a701f721f014c33a73cd02e1800d16
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
archivebatethumbnails.b-cdn.net/2022/09/27/8779316.jpg
169.150.247.40200 OK 104 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/09/27/8779316.jpg
IP 169.150.247.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x592, components 3\012- data
Size 104 kB (103993 bytes)
Hash 45a855d87aaa57e8469b2c7ac9a46ac5
f9b3f6ab36260dc0e8cdddfc71611c8174bf6429
574e39efb3d1472e8838735b7424549e2793c2d9ff7104056bf5a99661d4e689
GET /2022/09/27/8779316.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 103993
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Sat, 11 Mar 2023 18:41:47 GMT
ratelimit-limit: 250
ratelimit-remaining: 243
ratelimit-reset: 1
x-ratelimit-remaining-second: 243
x-ratelimit-limit-second: 250
x-rgw-object-type: Normal
x-amz-request-id: tx0000039eefa2d091a16ba-0064272d6c-bf300b-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/31/2023 18:58:53
cdn-edgestorageid: 756
cdn-status: 200
cdn-requestid: d2cd44bbe81c12adbd0d99f4bb6b7642
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
archivebatethumbnails.b-cdn.net/2022/09/27/8779303.jpg
169.150.247.40200 OK 127 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/09/27/8779303.jpg
IP 169.150.247.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x592, components 3\012- data
Size 127 kB (126698 bytes)
Hash 80359a3280d28a681c0ae12e4f0a9f53
aca06ca0c549e8c69854188ee067afe3777eaa7b
0a1088a92a541d785836c888302d30852d452f201d33d0fb47a5100217e9b183
GET /2022/09/27/8779303.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 126698
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Sat, 11 Mar 2023 18:41:53 GMT
ratelimit-remaining: 244
ratelimit-reset: 1
x-ratelimit-remaining-second: 244
x-ratelimit-limit-second: 250
ratelimit-limit: 250
x-rgw-object-type: Normal
x-amz-request-id: tx000008a08a9ba555d96e4-0064272d6c-bd6359-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/31/2023 18:58:53
cdn-edgestorageid: 1053
cdn-status: 200
cdn-requestid: 2c424fcf0a39ec9937572253159a22ab
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
archivebatethumbnails.b-cdn.net/2022/09/27/8779299.jpg
169.150.247.40200 OK 118 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/09/27/8779299.jpg
IP 169.150.247.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x592, components 3\012- data
Size 118 kB (117784 bytes)
Hash 9f3a8a8b2d53b4dd5c0c5adc7fbca5d6
3aafbebba3c1d22154e3feb91f8995e53e97ac31
8de98c5a4e4ad9a305fe466f89c11dfb0a16948a6040e1293172a995474c64c6
GET /2022/09/27/8779299.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 117784
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Sat, 11 Mar 2023 18:41:55 GMT
ratelimit-remaining: 241
ratelimit-reset: 1
x-ratelimit-remaining-second: 241
x-ratelimit-limit-second: 250
ratelimit-limit: 250
x-rgw-object-type: Normal
x-amz-request-id: tx0000047462a3581e2e3ab-006426cafe-bf30c4-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/31/2023 11:58:55
cdn-edgestorageid: 723
cdn-status: 200
cdn-requestid: 516ad5cc2c463940797666bf702a4990
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
archivebatethumbnails.b-cdn.net/2022/09/27/8779308.jpg
169.150.247.40200 OK 117 kB URL HTTP/2 archivebatethumbnails.b-cdn.net/2022/09/27/8779308.jpg
IP 169.150.247.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x592, components 3\012- data
Size 117 kB (117147 bytes)
Hash 178db38d343f2415997fc114d2d18fb1
bce3782b4941b674d45fba2f9718894b6c2764a9
efb90b54ba89c6bf68ecce19e6d12cd9a2892bfdbfe1762e0569dc9f06134adf
GET /2022/09/27/8779308.jpg HTTP/1.1
Host: archivebatethumbnails.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: binary/octet-stream
content-length: 117147
server: BunnyCDN-DE1-1075
cdn-pullzone: 1266031
cdn-uid: 1d82c344-eebe-4b53-8bd0-0cb3b6395e6e
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
last-modified: Sat, 11 Mar 2023 18:41:51 GMT
ratelimit-limit: 250
ratelimit-remaining: 242
ratelimit-reset: 1
x-ratelimit-remaining-second: 242
x-ratelimit-limit-second: 250
x-rgw-object-type: Normal
x-amz-request-id: tx0000098af381f4c60bfc3-0064272d6c-bd6219-default
x-proxy-cache: MISS
strict-transport-security: max-age=16000000; includeSubDomains; preload;
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 03/31/2023 18:58:53
cdn-edgestorageid: 860
cdn-status: 200
cdn-requestid: dc349460d93c67a794b37cbcde7ae9b5
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
mixdrop.co/player/video-js.min.css?v=7.7.4.1
31.220.1.173200 OK 10 kB URL HTTP/1.1 mixdrop.co/player/video-js.min.css?v=7.7.4.1
IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
File type Unicode text, UTF-8 text, with very long lines (40000)
Hash 574f981c4b9a911cea03987a38d4437d
873b54b1f92d5f94386df6cdf826c03c44312745
bbee2293c60e2ab0fa9a77713d48c61dd9866cb3e32f0e616deda90675e81ccd
GET /player/video-js.min.css?v=7.7.4.1 HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/e/7rleolw4uox6me
Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 05 Mar 2020 11:17:51 GMT
ETag: W/"5e60dfdf-9c45"
Expires: Sun, 30 Apr 2023 19:24:05 GMT
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
mixdrop.co/player/airplay/videojs.airplay.css
31.220.1.173200 OK 610 B URL HTTP/1.1 mixdrop.co/player/airplay/videojs.airplay.css
IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with very long lines (347)
Hash 450f47fea0a71c0d8478a563d14edf8e
8a742221ce43035c11cdecb6bbe7c9d1a77c7531
0052afffb2b0902df27da5ba7aa3bb65863994da1b822e7fcb39bc05cc5fd4aa
GET /player/airplay/videojs.airplay.css HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/e/7rleolw4uox6me
Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: text/css
Content-Length: 610
Connection: keep-alive
Last-Modified: Wed, 19 Dec 2018 16:23:06 GMT
ETag: "5c1a706a-262"
Expires: Sun, 30 Apr 2023 19:24:05 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
mixdrop.co/js/jRange/jquery.range-min.js
31.220.1.173200 OK 2.6 kB URL HTTP/1.1 mixdrop.co/js/jRange/jquery.range-min.js
IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with very long lines (8236), with no line terminators
Hash a7eb50ce620382ef5558927a3f66a093
1605846b9c2ffed2c7515d632bf25ebe2ec271e9
a4bebd0f555b70ddaf916b2945df3d46d8de4dce0f3781977f1cbc9af2e7cb80
GET /js/jRange/jquery.range-min.js HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/e/7rleolw4uox6me
Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 28 Dec 2018 10:11:23 GMT
ETag: W/"5c25f6cb-202c"
Expires: Sun, 30 Apr 2023 19:24:05 GMT
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
mkkvprwskq.com/get/1956918?zoneid=1956918&jp=_clv82y1vnsrzq0jf7o6ndu&nojs=0&ix=0&abvar=0&febuild=1.0.87&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=5458144085187715
62.122.171.6200 OK 34 kB URL HTTP/2 mkkvprwskq.com/get/1956918?zoneid=1956918&jp=_clv82y1vnsrzq0jf7o6ndu&nojs=0&ix=0&abvar=0&febuild=1.0.87&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=5458144085187715
IP 62.122.171.6:0
File type ASCII text, with very long lines (56889)
Hash b1c00ab1c795bdfd6484ea2c4e575812
e9b55957de53015d83b87aa3380bd462aadf1be6
f9724004c353e996de6121412507d7ef935cdeb016bdc088f7865ac88b37de17
GET /get/1956918?zoneid=1956918&jp=_clv82y1vnsrzq0jf7o6ndu&nojs=0&ix=0&abvar=0&febuild=1.0.87&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=5458144085187715 HTTP/1.1
Host: mkkvprwskq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=230331142471134fa9f0b44debbc2a34e76a; Path=/; Expires=Sat, 30 Mar 2024 19:24:05 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
mixdrop.co/player/videoplayer.min.css?v=0.24
31.220.1.173200 OK 2.3 kB URL HTTP/1.1 mixdrop.co/player/videoplayer.min.css?v=0.24
IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with very long lines (10493)
Hash e2c923488d9b3fbd7f27ac22821c209c
cfbf77053d1c47de2e6808acd9ab474681f58866
c7d427ef1ccb9dd9de3c026561fed35fee545d8589eb73597c465ae631601e26
GET /player/videoplayer.min.css?v=0.24 HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/e/7rleolw4uox6me
Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 26 May 2020 09:02:47 GMT
ETag: W/"5eccdb37-28fe"
Expires: Sun, 30 Apr 2023 19:24:05 GMT
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
mixdrop.co/player/player-0.1.0.min.js
31.220.1.173200 OK 4.0 kB URL HTTP/1.1 mixdrop.co/player/player-0.1.0.min.js
IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with very long lines (13852)
Hash 3be65e4ec85642afb82c83adbd474225
7343d637085c2a4d06e865ed17622131011dd20f
ecac02b60d70b3861c586fcd17d32f89a1e2c320e8c11ef623d9d7a6bc9fa1af
GET /player/player-0.1.0.min.js HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/e/7rleolw4uox6me
Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Apr 2021 15:32:43 GMT
ETag: W/"606f221b-361d"
Expires: Sun, 30 Apr 2023 19:24:05 GMT
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 741a2f47aab81a2c7ed0fadaa1fa74e3
be34e0df4a5f272589a017ce77ece974d890f27c
4ea1737c8246072ea1072314ae684c1f7e518a81a5200c46374e47378bfb6b63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mixdrop.co/player/airplay/videojs.airplay.js
31.220.1.173200 OK 1.7 kB URL HTTP/1.1 mixdrop.co/player/airplay/videojs.airplay.js
IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with very long lines (658)
Hash ab33d0c330e0ab4539725e997c70f92f
95313bf8a2a078d4a363182655fc32fc43de890f
a1cca06414fba6b1a567d540be1618f22ed83924fa563ad6116dbfd8957b43c8
GET /player/airplay/videojs.airplay.js HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/e/7rleolw4uox6me
Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 19 Dec 2018 16:23:06 GMT
ETag: W/"5c1a706a-12a3"
Expires: Sun, 30 Apr 2023 19:24:05 GMT
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
mixdrop.co/js/jRange/jquery.range.css
31.220.1.173200 OK 879 B URL HTTP/1.1 mixdrop.co/js/jRange/jquery.range.css
IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
Hash b1ddfa74b2066f65847d4b3d9baa6789
ec8c30d2f87eb7556b63ff4b633b2bd4360b177e
292223dd13c7e54f8b35e4324153e574d9e2f0259f583359eccaf7d031a16014
GET /js/jRange/jquery.range.css HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/e/7rleolw4uox6me
Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 28 Dec 2018 10:11:23 GMT
ETag: W/"5c25f6cb-160c"
Expires: Sun, 30 Apr 2023 19:24:05 GMT
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
mixdrop.co/player/videoplayer.min.js?v=1.1.5
31.220.1.173200 OK 3.2 kB URL HTTP/1.1 mixdrop.co/player/videoplayer.min.js?v=1.1.5
IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
File type HTML document, ASCII text, with very long lines (591)
Hash fbda9183a9e339fa962b6524b9ceb20d
8614f181913bdf95cb918a619cf25c8fcadf8a53
3bdbea0f60fa2ac74dd263896ad23534c3d08e220d745518663050e803347e4d
GET /player/videoplayer.min.js?v=1.1.5 HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/e/7rleolw4uox6me
Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 08 Apr 2021 15:35:57 GMT
ETag: W/"606f22dd-2072"
Expires: Sun, 30 Apr 2023 19:24:05 GMT
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
mixdrop.co/xads.js
31.220.1.173200 OK 50 B IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
Hash 170cb502f8f209ca64ca4c271c7041e2
bdce5bceee905dacef001063aa1d9c5f3c8f693c
789581e03b9915bd79ea82a241817dcbbdeb1c240e540e9470fabf1998b41a6b
GET /xads.js HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/e/7rleolw4uox6me
Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: application/javascript
Content-Length: 50
Connection: keep-alive
Last-Modified: Mon, 16 Nov 2020 14:17:06 GMT
ETag: "5fb289e2-32"
Expires: Sun, 30 Apr 2023 19:24:05 GMT
Cache-Control: max-age=2592000, public
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6871
Expires: Fri, 31 Mar 2023 21:18:36 GMT
Date: Fri, 31 Mar 2023 19:24:05 GMT
Connection: keep-alive
vpixrlkggv.com/get/1956917?zoneid=1956917&jp=_cla614cipr5uyptojcwfmc&nojs=0&ix=0&abvar=16&febuild=24795eae7b79ff5a98371e378fb32ecae49915eb&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=1798969387934789
62.122.171.6200 OK 3.2 kB URL HTTP/2 vpixrlkggv.com/get/1956917?zoneid=1956917&jp=_cla614cipr5uyptojcwfmc&nojs=0&ix=0&abvar=16&febuild=24795eae7b79ff5a98371e378fb32ecae49915eb&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=1798969387934789
IP 62.122.171.6:0
File type ASCII text, with very long lines (10796), with no line terminators
Hash 338765468621ee41387c443a842979b8
ce6f49e3daf2a8d70006a2d087f98fce2996cc7a
92b7a975bade4f0ca4b8303b77a6d58a8bdb7784b409993e3c5fcb9fbcf16b27
GET /get/1956917?zoneid=1956917&jp=_cla614cipr5uyptojcwfmc&nojs=0&ix=0&abvar=16&febuild=24795eae7b79ff5a98371e378fb32ecae49915eb&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24&freq=0&cid=1798969387934789 HTTP/1.1
Host: vpixrlkggv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
x-route-id: config
set-cookie: UID=2303311424d6473c5d485040d4a15cb2ec42; Path=/; Expires=Sat, 30 Mar 2024 19:24:05 GMT; HttpOnly; Secure; SameSite=None
content-encoding: gzip
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6871
Expires: Fri, 31 Mar 2023 21:18:36 GMT
Date: Fri, 31 Mar 2023 19:24:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 14539c5e0ca6ce826e62bdadad738bbd
92ce1bbc7f338d3e48e35d637513ab0aba610a98
58e8d186f5d0531c2597d267b0a92bb46909e8fa162b2b5f7fa6e50b2e0af357
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "58E8D186F5D0531C2597D267B0A92BB46909E8FA162B2B5F7FA6E50B2E0AF357"
Last-Modified: Fri, 31 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6871
Expires: Fri, 31 Mar 2023 21:18:36 GMT
Date: Fri, 31 Mar 2023 19:24:05 GMT
Connection: keep-alive
mixdrop.co/player/video.min.js?v=7.8.4
31.220.1.173200 OK 139 kB URL HTTP/1.1 mixdrop.co/player/video.min.js?v=7.8.4
IP 31.220.1.173:0
ASN #206264 Amarutu Technology Ltd
File type Unicode text, UTF-8 text, with very long lines (45362)
Size 139 kB (139260 bytes)
Hash 2457b1e43534fb57ac5e05ee32327d54
0eb32df4b36e6bb4954b37bb4ed5a5c6bdfc1a9a
445022e1bcd74ef48cd8b13fd774e962cf108dd1e97b79bfeb1f3fa596177c35
GET /player/video.min.js?v=7.8.4 HTTP/1.1
Host: mixdrop.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/e/7rleolw4uox6me
Cookie: PHPSESSID=eqq8oantt181jhe1o99u3iv9fs
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 08 Jul 2020 20:27:16 GMT
ETag: W/"5f062c24-7990f"
Expires: Sun, 30 Apr 2023 19:24:05 GMT
Content-Encoding: gzip
Cache-Control: max-age=2592000, public
rxeosevsso.com/lv/esnk/1959498/code.js
62.122.171.6200 OK 45 kB URL HTTP/2 rxeosevsso.com/lv/esnk/1959498/code.js
IP 62.122.171.6:0
Hash 80494e225f71e068c66511e1c144c27e
b042d1c1b505f280bfc2d0c47aea8f1c936a4fc6
04c84fd935ac6dc7c72862abd10d2a9cf9fdfb2c57b787386397102f53344d8c
Analyzer Verdict Alert fortinet Malware
GET /lv/esnk/1959498/code.js HTTP/1.1
Host: rxeosevsso.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: application/javascript
last-modified: Wed, 29 Mar 2023 13:26:16 GMT
vary: Accept-Encoding
etag: W/"64243c78-1b0d1"
x-js-ab1: current
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: L6tgzFrj9t69Rnfd9bziAPiROAX0tvcj9Kcg8sXkto8qRFeKqiwkpg==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:17:06 GMT
age: 76019
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 424b55535e5fd622b2fc96aac1246324
cf7cf08aa8969a86bf03695af2129686fd62fe86
c4bb26a7b2c431282b53b4df9999b9cc8e61369a79c606688a76499b31a65127
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10271
x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkBoXGh5oAMFfzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 1cXec9_e-KpzyTwiHaNAaf0y5i12tw7BkZTXnduS5ek7yAAZ0LXTWw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:48:08 GMT
age: 77757
etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 39bdd16276747b1445a79e674a2a3347
d0676f63738484298a78b7abf7e4934c3d256065
67aa526299060c2a39c4baa10fd03f121497dccd5e765676639ed73ac529c34b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11061
x-amzn-requestid: 428128ec-c441-4ff7-9c84-880a01672b00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVFnFf0IAMFTvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260223-185c48300f161931310fa35f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:55 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: gc77o7y-moH1HuMEZFe9-00DVAda9baa-5VEPlMA4SIZDJNzQ8jUlA==
via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:50 GMT
etag: "d0676f63738484298a78b7abf7e4934c3d256065"
content-type: image/jpeg
age: 77775
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.bncloudfl.com/bn/9ae/cd5/f95/9aecd5f95a1f2956d60b75e3b36f6824ab946438.gif
104.22.14.198200 OK 436 kB URL HTTP/2 cdn.bncloudfl.com/bn/9ae/cd5/f95/9aecd5f95a1f2956d60b75e3b36f6824ab946438.gif
IP 104.22.14.198:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 436 kB (435772 bytes)
Hash 3996bb31d3e71c611ac8198459bc09b4
b8eb0ea3f7214e0a02acc0dcb8ddb01480ec6048
73c0a7898a5817a461161660480a92da8062146c95f36524de7cf56363714c27
GET /bn/9ae/cd5/f95/9aecd5f95a1f2956d60b75e3b36f6824ab946438.gif HTTP/1.1
Host: cdn.bncloudfl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: image/webp
content-length: 435772
access-control-allow-headers: Content-Type,X-Requested-With,X-Auth-Token,X-Openstack-Request-Id,X-Container-Meta-type,X-Container-Meta-Temp-URL-Key,Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,PATCH,DELETE,OPTIONS
access-control-expose-headers: X-Container-Meta-Temp-Url-Key,X-Container-Bytes-Used,Last-Modified,X-Timestamp
cache-control: max-age=432000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=gif, origSize=474536
content-disposition: inline; filename="9aecd5f95a1f2956d60b75e3b36f6824ab946438.webp"
etag: 4bfa55934da9d63ca41bfe1c194d8a1f
expires: Fri, 31 Mar 2023 21:32:34 GMT
last-modified: Tue, 21 Feb 2023 18:18:40 GMT
vary: Accept
x-openstack-request-id: txa3a4a6fcecde453bbcc57-006418ecf4
x-proxy-cache: HIT
x-timestamp: 1677003519.21849
x-trans-id: txa3a4a6fcecde453bbcc57-006418ecf4
cf-cache-status: HIT
age: 165091
accept-ranges: bytes
access-control-allow-origin: *
server: cloudflare
cf-ray: 7b0af877586fb4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
limurol.com/ssp/req/1956913/?pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=Y5WjsOJRN4NOt27hdOA4Pwh9OPxTDK0D9AIOFPaQ2ZvnLVNqwIAvi-aIACRxjzmrkrxBpAoEk1rNGHAJC0eK4h2XjUOSZrJPtTCOitJA86YvZz9HmUjQYVklkmHlBob7yQxUaOa9IxxH7WfyQzd7GC4u_P7UJWLFgHPyv29Bl1_NkeZVS-cLwK-l7gyjfafhvgvG550AIQyOPWhwP15RDGNRD7Tnoy1hHFxdDwlOCLLlmxaIhSxkjdIphYDxkiA0H4B2fTEU-NWYYPM-S86YyM2ipk7GHLr-QrVCoU-z-4fPFyWTC177gMIG8zuYyqXmC0Uf2XAemieSbal9lv5vkRwTX1CM4u1w4AED5oOWUYdP1pZEGKRUqMcpZE5GsaexGo2savpyLuxWza-mvJCZLU0bmUPU0MbIvlc_ZQB35QGR72CnDCsNC54CwbrY_p1xHhIG4qt0IX-PSyAhMjU6RLDdkD8s_imIAt9tXa29d5bqgYO1hOVFx_mNS_jnVswJMjqRwaJQcj-3d4dY6miaSYIjh8-oB51F955OfFs6eEG9pMRtzluAOClBVhVGDAh2LC4S4bOf6Rzgxsn_fPoSKoaGe8kXEbStw3Ud1_ez4Y61WpPcR2N1O0YzaGxXDoYW2oO1-Er5rLQvdEP6plPNJ93orKkyxasXfgeW7mkuIFBdB4KDEBNkCxt_HLvRR3E9Ny4zl_f6q_2TWwH7Z-gzznfyrCs=&cb=_cltz0b8u4i0217zm124nsg&nojs=0&ix=0&abvar=0&febuild=1.0.87&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1956913/?pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=Y5WjsOJRN4NOt27hdOA4Pwh9OPxTDK0D9AIOFPaQ2ZvnLVNqwIAvi-aIACRxjzmrkrxBpAoEk1rNGHAJC0eK4h2XjUOSZrJPtTCOitJA86YvZz9HmUjQYVklkmHlBob7yQxUaOa9IxxH7WfyQzd7GC4u_P7UJWLFgHPyv29Bl1_NkeZVS-cLwK-l7gyjfafhvgvG550AIQyOPWhwP15RDGNRD7Tnoy1hHFxdDwlOCLLlmxaIhSxkjdIphYDxkiA0H4B2fTEU-NWYYPM-S86YyM2ipk7GHLr-QrVCoU-z-4fPFyWTC177gMIG8zuYyqXmC0Uf2XAemieSbal9lv5vkRwTX1CM4u1w4AED5oOWUYdP1pZEGKRUqMcpZE5GsaexGo2savpyLuxWza-mvJCZLU0bmUPU0MbIvlc_ZQB35QGR72CnDCsNC54CwbrY_p1xHhIG4qt0IX-PSyAhMjU6RLDdkD8s_imIAt9tXa29d5bqgYO1hOVFx_mNS_jnVswJMjqRwaJQcj-3d4dY6miaSYIjh8-oB51F955OfFs6eEG9pMRtzluAOClBVhVGDAh2LC4S4bOf6Rzgxsn_fPoSKoaGe8kXEbStw3Ud1_ez4Y61WpPcR2N1O0YzaGxXDoYW2oO1-Er5rLQvdEP6plPNJ93orKkyxasXfgeW7mkuIFBdB4KDEBNkCxt_HLvRR3E9Ny4zl_f6q_2TWwH7Z-gzznfyrCs=&cb=_cltz0b8u4i0217zm124nsg&nojs=0&ix=0&abvar=0&febuild=1.0.87&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1956913/?pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=Y5WjsOJRN4NOt27hdOA4Pwh9OPxTDK0D9AIOFPaQ2ZvnLVNqwIAvi-aIACRxjzmrkrxBpAoEk1rNGHAJC0eK4h2XjUOSZrJPtTCOitJA86YvZz9HmUjQYVklkmHlBob7yQxUaOa9IxxH7WfyQzd7GC4u_P7UJWLFgHPyv29Bl1_NkeZVS-cLwK-l7gyjfafhvgvG550AIQyOPWhwP15RDGNRD7Tnoy1hHFxdDwlOCLLlmxaIhSxkjdIphYDxkiA0H4B2fTEU-NWYYPM-S86YyM2ipk7GHLr-QrVCoU-z-4fPFyWTC177gMIG8zuYyqXmC0Uf2XAemieSbal9lv5vkRwTX1CM4u1w4AED5oOWUYdP1pZEGKRUqMcpZE5GsaexGo2savpyLuxWza-mvJCZLU0bmUPU0MbIvlc_ZQB35QGR72CnDCsNC54CwbrY_p1xHhIG4qt0IX-PSyAhMjU6RLDdkD8s_imIAt9tXa29d5bqgYO1hOVFx_mNS_jnVswJMjqRwaJQcj-3d4dY6miaSYIjh8-oB51F955OfFs6eEG9pMRtzluAOClBVhVGDAh2LC4S4bOf6Rzgxsn_fPoSKoaGe8kXEbStw3Ud1_ez4Y61WpPcR2N1O0YzaGxXDoYW2oO1-Er5rLQvdEP6plPNJ93orKkyxasXfgeW7mkuIFBdB4KDEBNkCxt_HLvRR3E9Ny4zl_f6q_2TWwH7Z-gzznfyrCs=&cb=_cltz0b8u4i0217zm124nsg&nojs=0&ix=0&abvar=0&febuild=1.0.87&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
set-cookie: UID=2303311424ce9b82e9a85d4145b33a8a12fb; Path=/; Expires=Sat, 30 Mar 2024 19:24:05 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0530376e431b6563796e4abb0db0bc4e
6921f4bd83a806e1ea8247854ad4c045fa7ee298
d6371c81d5494d5e50fd5cc1cfe1ce28213dfa70ea5a94df82c9f4b3e6430a53
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10490
x-amzn-requestid: 0525e5c4-485e-47eb-ab95-1136e4d5c29a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUnTEztoAMFzMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260161-54b47454475ff6ee4d880534;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:41 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jl5cQc_Zqq5xNDMcs5jRHb3HBIjuucl-JHF126hInXrOfv_CG-UqSg==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:18:02 GMT
age: 75963
etag: "6921f4bd83a806e1ea8247854ad4c045fa7ee298"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
syndication.realsrv.com/v1/api.php
95.211.229.246200 OK 4.7 kB URL HTTP/1.1 syndication.realsrv.com/v1/api.php
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (17305), with no line terminators
Hash 51340255753b47574db12370b14b5075
5f01ce4eb83087ff0cba8dd7618bee98ce5a74ae
48e7184f8c2366345baebb01cd476282d8ad3458cfc2d77a8c8ab99604fe7aca
POST /v1/api.php HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 364
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://archivebate.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226427335513f2c0.94941363209382174%22%3B%7D; expires=Sun, 30-Mar-2025 19:24:05 GMT; Max-Age=63072000; path=/; domain=realsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41f0baa1423dbd529f6c47bd51fe708f
f09b44f30b63f5e29dd247f592147ffc6b308e72
313b769259453565919ab14410faea927a23ad75636abc57851dfe67d43ea156
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4de055bc-1569-4c9a-9ff5-b5ce7d869905.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4370
x-amzn-requestid: 5791c184-d5eb-4666-bc94-f838cd0183af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllHrcIAMFSWA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-15fb3d2f67359d6837df5d0d;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: SutOql3FzsHZoFN5TXMJZ1NZzBplZK1w0zNIzAN1rUQ2cKeSrCiA6w==
via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:50 GMT
age: 77775
etag: "f09b44f30b63f5e29dd247f592147ffc6b308e72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8600e41520408df4865627256a0a0736
dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef
9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5806
x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUllFFooAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: WnrfQr57EWYnXt1xJt9tr5XCuM3gPYULlDdEVpv2Q2kz7MDIPxSPKA==
via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:50 GMT
age: 77775
etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA2VQS07FMAy8Chdo5V9i+61ZgwTiAE2aChaA9EDoIfnwuEW8DRk5sZPxZBIC4gl4YrzBciI5QQnH2WEWmrFI3N0/hGAs5/788jXa8jnm/v4aWrFUCKNKhcLVJBexWpUtCliIF3OCUARQ89yA4IAEFRbZsxlAyED+plCIp8fbIzAhFOh0ychi9xGpJ5nDZdcpIGPwsKWOBmxtOLD7JozcSVvfif98Z5sypAhmCx0eTJNJh7UdjMKUV094LSRyQBzHy8f3W4+40n9RDoGUlXwmRrTFM2vrxpsSCOT39NXW7jpYV2g/sUUC73cBAAA=
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA2VQS07FMAy8Chdo5V9i+61ZgwTiAE2aChaA9EDoIfnwuEW8DRk5sZPxZBIC4gl4YrzBciI5QQnH2WEWmrFI3N0/hGAs5/788jXa8jnm/v4aWrFUCKNKhcLVJBexWpUtCliIF3OCUARQ89yA4IAEFRbZsxlAyED+plCIp8fbIzAhFOh0ychi9xGpJ5nDZdcpIGPwsKWOBmxtOLD7JozcSVvfif98Z5sypAhmCx0eTJNJh7UdjMKUV094LSRyQBzHy8f3W4+40n9RDoGUlXwmRrTFM2vrxpsSCOT39NXW7jpYV2g/sUUC73cBAAA=
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA2VQS07FMAy8Chdo5V9i+61ZgwTiAE2aChaA9EDoIfnwuEW8DRk5sZPxZBIC4gl4YrzBciI5QQnH2WEWmrFI3N0/hGAs5/788jXa8jnm/v4aWrFUCKNKhcLVJBexWpUtCliIF3OCUARQ89yA4IAEFRbZsxlAyED+plCIp8fbIzAhFOh0ychi9xGpJ5nDZdcpIGPwsKWOBmxtOLD7JozcSVvfif98Z5sypAhmCx0eTJNJh7UdjMKUV094LSRyQBzHy8f3W4+40n9RDoGUlXwmRrTFM2vrxpsSCOT39NXW7jpYV2g/sUUC73cBAAA= HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://archivebate.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226427335513c9b4.46965674295943057%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4915994%7C59493762%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Carchivebate.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://archivebate.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D; expires=Sun, 30 Mar 2025 19:24:05 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a013b8698c4ff7b527a98379d21f8d51
4cffc2d5925e6daea086b70fecc3e12fd2a75b8d
28f02fdf4c2167dbfc6bd7530f24586626b50b5440f4d1747d31be0d800946f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 19:24:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
limurol.com/ssp/req/1956913/?pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=Y5WjsOJRN4NOt27hdOA4Pwh9OPxTDK0D9AIOFPaQ2ZvnLVNqwIAvi-aIACRxjzmrkrxBpAoEk1rNGHAJC0eK4h2XjUOSZrJPtTCOitJA86YvZz9HmUjQYVklkmHlBob7yQxUaOa9IxxH7WfyQzd7GC4u_P7UJWLFgHPyv29Bl1_NkeZVS-cLwK-l7gyjfafhvgvG550AIQyOPWhwP15RDGNRD7Tnoy1hHFxdDwlOCLLlmxaIhSxkjdIphYDxkiA0H4B2fTEU-NWYYPM-S86YyM2ipk7GHLr-QrVCoU-z-4fPFyWTC177gMIG8zuYyqXmC0Uf2XAemieSbal9lv5vkRwTX1CM4u1w4AED5oOWUYdP1pZEGKRUqMcpZE5GsaexGo2savpyLuxWza-mvJCZLU0bmUPU0MbIvlc_ZQB35QGR72CnDCsNC54CwbrY_p1xHhIG4qt0IX-PSyAhMjU6RLDdkD8s_imIAt9tXa29d5bqgYO1hOVFx_mNS_jnVswJMjqRwaJQcj-3d4dY6miaSYIjh8-oB51F955OfFs6eEG9pMRtzluAOClBVhVGDAh2LC4S4bOf6Rzgxsn_fPoSKoaGe8kXEbStw3Ud1_ez4Y61WpPcR2N1O0YzaGxXDoYW2oO1-Er5rLQvdEP6plPNJ93orKkyxasXfgeW7mkuIFBdB4KDEBNkCxt_HLvRR3E9Ny4zl_f6q_2TWwH7Z-gzznfyrCs=&cb=_cltz0b8u4i0217zm124nsg&nojs=0&ix=0&abvar=0&febuild=1.0.87&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
62.122.171.6200 OK 7 B URL HTTP/2 limurol.com/ssp/req/1956913/?pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=Y5WjsOJRN4NOt27hdOA4Pwh9OPxTDK0D9AIOFPaQ2ZvnLVNqwIAvi-aIACRxjzmrkrxBpAoEk1rNGHAJC0eK4h2XjUOSZrJPtTCOitJA86YvZz9HmUjQYVklkmHlBob7yQxUaOa9IxxH7WfyQzd7GC4u_P7UJWLFgHPyv29Bl1_NkeZVS-cLwK-l7gyjfafhvgvG550AIQyOPWhwP15RDGNRD7Tnoy1hHFxdDwlOCLLlmxaIhSxkjdIphYDxkiA0H4B2fTEU-NWYYPM-S86YyM2ipk7GHLr-QrVCoU-z-4fPFyWTC177gMIG8zuYyqXmC0Uf2XAemieSbal9lv5vkRwTX1CM4u1w4AED5oOWUYdP1pZEGKRUqMcpZE5GsaexGo2savpyLuxWza-mvJCZLU0bmUPU0MbIvlc_ZQB35QGR72CnDCsNC54CwbrY_p1xHhIG4qt0IX-PSyAhMjU6RLDdkD8s_imIAt9tXa29d5bqgYO1hOVFx_mNS_jnVswJMjqRwaJQcj-3d4dY6miaSYIjh8-oB51F955OfFs6eEG9pMRtzluAOClBVhVGDAh2LC4S4bOf6Rzgxsn_fPoSKoaGe8kXEbStw3Ud1_ez4Y61WpPcR2N1O0YzaGxXDoYW2oO1-Er5rLQvdEP6plPNJ93orKkyxasXfgeW7mkuIFBdB4KDEBNkCxt_HLvRR3E9Ny4zl_f6q_2TWwH7Z-gzznfyrCs=&cb=_cltz0b8u4i0217zm124nsg&nojs=0&ix=0&abvar=0&febuild=1.0.87&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24
IP 62.122.171.6:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
GET /ssp/req/1956913/?pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=Y5WjsOJRN4NOt27hdOA4Pwh9OPxTDK0D9AIOFPaQ2ZvnLVNqwIAvi-aIACRxjzmrkrxBpAoEk1rNGHAJC0eK4h2XjUOSZrJPtTCOitJA86YvZz9HmUjQYVklkmHlBob7yQxUaOa9IxxH7WfyQzd7GC4u_P7UJWLFgHPyv29Bl1_NkeZVS-cLwK-l7gyjfafhvgvG550AIQyOPWhwP15RDGNRD7Tnoy1hHFxdDwlOCLLlmxaIhSxkjdIphYDxkiA0H4B2fTEU-NWYYPM-S86YyM2ipk7GHLr-QrVCoU-z-4fPFyWTC177gMIG8zuYyqXmC0Uf2XAemieSbal9lv5vkRwTX1CM4u1w4AED5oOWUYdP1pZEGKRUqMcpZE5GsaexGo2savpyLuxWza-mvJCZLU0bmUPU0MbIvlc_ZQB35QGR72CnDCsNC54CwbrY_p1xHhIG4qt0IX-PSyAhMjU6RLDdkD8s_imIAt9tXa29d5bqgYO1hOVFx_mNS_jnVswJMjqRwaJQcj-3d4dY6miaSYIjh8-oB51F955OfFs6eEG9pMRtzluAOClBVhVGDAh2LC4S4bOf6Rzgxsn_fPoSKoaGe8kXEbStw3Ud1_ez4Y61WpPcR2N1O0YzaGxXDoYW2oO1-Er5rLQvdEP6plPNJ93orKkyxasXfgeW7mkuIFBdB4KDEBNkCxt_HLvRR3E9Ny4zl_f6q_2TWwH7Z-gzznfyrCs=&cb=_cltz0b8u4i0217zm124nsg&nojs=0&ix=0&abvar=0&febuild=1.0.87&t=0&x=1280&y=939&wcks=1&wgl=0&cnvs=1&os=0&md=0&bb=0&lang=en-US&pf=Linux%20x86_64&cd=24 HTTP/1.1
Host: limurol.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Cookie: UID=2303311424e4dcc6bc5c944df6a2cec719ba
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: text/javascript
content-length: 7
x-route-id: ssp.bet
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.3.1.min.js
69.16.175.10200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65451)
Hash d549b312f7a7d228b4ec229a6547dfdc
0766794582ad530ec0f8c2595f741086afffa312
f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-encoding: gzip
content-length: 30288
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1538f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1680290645.dop232.sk1.t,1680290645.cds014.sk1.hn,1680290645.cds240.sk1.c
X-Firefox-Spdy: h2
mkkvprwskq.com/chicken.gif?z=1956918&pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=VD8SbCadQiUwbm_tgQrwEsitQLy8D9bzT0kMWQQRpEhsoptTtr_PuoDVOSL5olP0_o1MVs814WU6h9J0tuNn9NUWMez8mdRLreHsQzFo7rMw6IgMMoHfYfiZkY8GDQ3gG_vIo5V7s4qPCl5bBmB-o7upLpX0MiNli_-Hydr1Tt85SCoc-g7P_LJcroyXYq3PF7zWmhsTTCl7gWxQWmaYk8ULDK6FM3w9Tu_bghgbY_5biEBaPsP3lipdTYKsLLISmjPNhpZFoH8-cBe89TN4wiyokfNjhCJwYpNWK2ob7euVuHmDw3tpoi4adNP7IpvH7caXikD5PDUtoinY2iSRnMX0IT029hvS2wnvqrLUvg-hzSxOAr6sLrcf1WoHg4_8rPmsLOeDwoqS7nTraypLcOB9hu5xfetERELMrXFQzxfFjjtDfNj77d7MQH82sKrCtiYygWPiFC4I6HzfQJxvbaq5jTl12rIYyEL9ADeYZAzdzBqGvRDHArWGJvTl4yUFSBKCSBXMTmMTWdmpAppP02MyuWY0Yti_sDbyphG-lnY1hHQpxjSBWdMOOn8URerMDoFcxXJy6UDnv1AQKCljDHd-8x66yLiAwWgg_7051fFCflxrfFvHqv_4qEa6Rq7Zyh-FpxmBWMV9AxWsUkypUdQgjhDugPLUDzcUsz7i14yNnqDMNVHbZRcCfE-cEFiS6OoWpkPmuZ-T6VFbScyi1uGGZ2gnJ6Y-UUwBCGEkrysF_9W5Xow686A8eQxNKE9sAgQ-IeuUQ9igB-vgxlw_LmUhRxdaLAV59wk9mqzyNpcs1helGKjq9hzIKpT6Ypfoi5kPc3k6--eDHyPFtEezqSfnFV0mrDODIdGO7YXyxXGjNLFQNlpHdZF70yz_T6R5vrTVAqZoDdVIK2IEn4pf8YBQGOR4fiY0GNlxhbR6GQJDBuMd7e9sO9eEBdVKivA23Up0_CyyGY8i5zPZyiZSk4FY6vEh3ac=&abvar=0&febuild=1.0.87&os=0
62.122.171.6200 OK 43 B URL HTTP/2 mkkvprwskq.com/chicken.gif?z=1956918&pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=VD8SbCadQiUwbm_tgQrwEsitQLy8D9bzT0kMWQQRpEhsoptTtr_PuoDVOSL5olP0_o1MVs814WU6h9J0tuNn9NUWMez8mdRLreHsQzFo7rMw6IgMMoHfYfiZkY8GDQ3gG_vIo5V7s4qPCl5bBmB-o7upLpX0MiNli_-Hydr1Tt85SCoc-g7P_LJcroyXYq3PF7zWmhsTTCl7gWxQWmaYk8ULDK6FM3w9Tu_bghgbY_5biEBaPsP3lipdTYKsLLISmjPNhpZFoH8-cBe89TN4wiyokfNjhCJwYpNWK2ob7euVuHmDw3tpoi4adNP7IpvH7caXikD5PDUtoinY2iSRnMX0IT029hvS2wnvqrLUvg-hzSxOAr6sLrcf1WoHg4_8rPmsLOeDwoqS7nTraypLcOB9hu5xfetERELMrXFQzxfFjjtDfNj77d7MQH82sKrCtiYygWPiFC4I6HzfQJxvbaq5jTl12rIYyEL9ADeYZAzdzBqGvRDHArWGJvTl4yUFSBKCSBXMTmMTWdmpAppP02MyuWY0Yti_sDbyphG-lnY1hHQpxjSBWdMOOn8URerMDoFcxXJy6UDnv1AQKCljDHd-8x66yLiAwWgg_7051fFCflxrfFvHqv_4qEa6Rq7Zyh-FpxmBWMV9AxWsUkypUdQgjhDugPLUDzcUsz7i14yNnqDMNVHbZRcCfE-cEFiS6OoWpkPmuZ-T6VFbScyi1uGGZ2gnJ6Y-UUwBCGEkrysF_9W5Xow686A8eQxNKE9sAgQ-IeuUQ9igB-vgxlw_LmUhRxdaLAV59wk9mqzyNpcs1helGKjq9hzIKpT6Ypfoi5kPc3k6--eDHyPFtEezqSfnFV0mrDODIdGO7YXyxXGjNLFQNlpHdZF70yz_T6R5vrTVAqZoDdVIK2IEn4pf8YBQGOR4fiY0GNlxhbR6GQJDBuMd7e9sO9eEBdVKivA23Up0_CyyGY8i5zPZyiZSk4FY6vEh3ac=&abvar=0&febuild=1.0.87&os=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
GET /chicken.gif?z=1956918&pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=VD8SbCadQiUwbm_tgQrwEsitQLy8D9bzT0kMWQQRpEhsoptTtr_PuoDVOSL5olP0_o1MVs814WU6h9J0tuNn9NUWMez8mdRLreHsQzFo7rMw6IgMMoHfYfiZkY8GDQ3gG_vIo5V7s4qPCl5bBmB-o7upLpX0MiNli_-Hydr1Tt85SCoc-g7P_LJcroyXYq3PF7zWmhsTTCl7gWxQWmaYk8ULDK6FM3w9Tu_bghgbY_5biEBaPsP3lipdTYKsLLISmjPNhpZFoH8-cBe89TN4wiyokfNjhCJwYpNWK2ob7euVuHmDw3tpoi4adNP7IpvH7caXikD5PDUtoinY2iSRnMX0IT029hvS2wnvqrLUvg-hzSxOAr6sLrcf1WoHg4_8rPmsLOeDwoqS7nTraypLcOB9hu5xfetERELMrXFQzxfFjjtDfNj77d7MQH82sKrCtiYygWPiFC4I6HzfQJxvbaq5jTl12rIYyEL9ADeYZAzdzBqGvRDHArWGJvTl4yUFSBKCSBXMTmMTWdmpAppP02MyuWY0Yti_sDbyphG-lnY1hHQpxjSBWdMOOn8URerMDoFcxXJy6UDnv1AQKCljDHd-8x66yLiAwWgg_7051fFCflxrfFvHqv_4qEa6Rq7Zyh-FpxmBWMV9AxWsUkypUdQgjhDugPLUDzcUsz7i14yNnqDMNVHbZRcCfE-cEFiS6OoWpkPmuZ-T6VFbScyi1uGGZ2gnJ6Y-UUwBCGEkrysF_9W5Xow686A8eQxNKE9sAgQ-IeuUQ9igB-vgxlw_LmUhRxdaLAV59wk9mqzyNpcs1helGKjq9hzIKpT6Ypfoi5kPc3k6--eDHyPFtEezqSfnFV0mrDODIdGO7YXyxXGjNLFQNlpHdZF70yz_T6R5vrTVAqZoDdVIK2IEn4pf8YBQGOR4fiY0GNlxhbR6GQJDBuMd7e9sO9eEBdVKivA23Up0_CyyGY8i5zPZyiZSk4FY6vEh3ac=&abvar=0&febuild=1.0.87&os=0 HTTP/1.1
Host: mkkvprwskq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: UID=230331142471134fa9f0b44debbc2a34e76a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.impression
set-cookie: OACICAP=ACVrFQAAAAAAAAAB; Path=/; Expires=Sun, 30 Apr 2023 19:24:05 GMT; Secure; SameSite=None
OACIBLOCK=ACVrFQAAAABkJy2w; Path=/; Expires=Sun, 30 Apr 2023 19:24:05 GMT; Secure; SameSite=None
ppucnt=0; Path=/; Expires=Sat, 01 Apr 2023 19:24:05 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/761560/43c8e80ee28681f8314478f89aa6cd04bf303ce1.webp
185.76.9.17200 OK 5.3 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/761560/43c8e80ee28681f8314478f89aa6cd04bf303ce1.webp
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3c8af93f349b8fd617226f08523c899b
43c8e80ee28681f8314478f89aa6cd04bf303ce1
d82ad9918104b9e2c7d36ae1db45902558321fd503d5c25b451a91e9ce4710dc
GET /library/761560/43c8e80ee28681f8314478f89aa6cd04bf303ce1.webp HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: image/webp
content-length: 5272
last-modified: Thu, 03 Mar 2022 13:17:23 GMT
etag: "6220bfe3-1498"
expires: Tue, 24 Oct 2023 15:04:00 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-robots-tag: noindex, follow
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCQ0ACej/lcufAA
x-77-nzt-ray: c0a4cc280095c57a5533276428b02d30
x-accel-expires: @1701354304
x-cache: HIT
x-age: 10472341
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
vpixrlkggv.com/chicken.gif?z=1956917&pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=vYsug9cmJkOWhzeXpHJk9iiOPAZZ5T7yZbFcW-usNx_gIvRQG7rWED2BdotCHGr7xJ2Cr5ux_jQMGjDj4_z0xJ1Ttc5EvOniArG9wOI38WPwZE7H7avjC34jTaXeYUIAdaFuUBVy1FhaFoRwbq5JEeISpZTOjkmYwmJxxBkRbjtRP1h-GUghA-wUA2Ra4W4-ZG-2-KPm2DWLaEJMJcQPnq4CUkI-Vy2ls1G9KRRaCkOC-2EDSeHtvhi_xEWhqnrpJJc_bfQt_8y2Md6k554xAbAbS6jWB_E2gD36hOM4xcjh1EBwoX13LdsL37Pqau5EfXwvFOrUEz4ETU-sYJhewnnqsZ67m7BbF1LL5dbzBV0ZI-3W9tK7tK3HTb6yovGMeuspdsP5rpyqqdoJl2WJQO8tJcQpLkH1KKs88zeh2hZFkBJxQCqt78hVdAWm6y3IfgmPYyHWbmWTaE-S7aYnnsdmgL3ogp3eXPfFM2fqYAT266DoiNmGVR84I4i0yoiPPHD6oq0aTQtcVdn59TuKvRWONYVK2Em-aNihVubtF9SXfha7BsZB0facKHbwmvd6MVR--_pNUNP0Fv5dI3wogakLgXILOkrI8BJM2d3GHjXmPWsowIOX_Nr2SqqjsTvjjNj6TpNja9dpECDBLKyEmH6YbaUidmrBwWfYmFj91d_xTiumq7rkaBhuFITafPbcIw_W2Lau791zoP20W1713RtdRwJCVG-ONJdMROMML75mxViFKYqCaZvlvT9ckZQ9-0UhY99Yt49hP9PYNMPBS_eiRdD5UVpYmpMvboJMz-tYGhZSeXdel8Qs0suolLmBYhXmBoQyU6aFOwL8F669z6w4UvZ975kjhJ51T2zZCtdP9ooQC__GePAvwmds1KPqYoaTkvw6fMfj8yUAziJS4ilA2jn7TKWeouvukA4p0gFsjh3pxbA_4yEkcKWFsyyGEShlclJi21mw0POc_TAveNvNaqIZ8qs=&abvar=16&febuild=24795eae7b79ff5a98371e378fb32ecae49915eb&os=0
62.122.171.6200 OK 43 B URL HTTP/2 vpixrlkggv.com/chicken.gif?z=1956917&pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=vYsug9cmJkOWhzeXpHJk9iiOPAZZ5T7yZbFcW-usNx_gIvRQG7rWED2BdotCHGr7xJ2Cr5ux_jQMGjDj4_z0xJ1Ttc5EvOniArG9wOI38WPwZE7H7avjC34jTaXeYUIAdaFuUBVy1FhaFoRwbq5JEeISpZTOjkmYwmJxxBkRbjtRP1h-GUghA-wUA2Ra4W4-ZG-2-KPm2DWLaEJMJcQPnq4CUkI-Vy2ls1G9KRRaCkOC-2EDSeHtvhi_xEWhqnrpJJc_bfQt_8y2Md6k554xAbAbS6jWB_E2gD36hOM4xcjh1EBwoX13LdsL37Pqau5EfXwvFOrUEz4ETU-sYJhewnnqsZ67m7BbF1LL5dbzBV0ZI-3W9tK7tK3HTb6yovGMeuspdsP5rpyqqdoJl2WJQO8tJcQpLkH1KKs88zeh2hZFkBJxQCqt78hVdAWm6y3IfgmPYyHWbmWTaE-S7aYnnsdmgL3ogp3eXPfFM2fqYAT266DoiNmGVR84I4i0yoiPPHD6oq0aTQtcVdn59TuKvRWONYVK2Em-aNihVubtF9SXfha7BsZB0facKHbwmvd6MVR--_pNUNP0Fv5dI3wogakLgXILOkrI8BJM2d3GHjXmPWsowIOX_Nr2SqqjsTvjjNj6TpNja9dpECDBLKyEmH6YbaUidmrBwWfYmFj91d_xTiumq7rkaBhuFITafPbcIw_W2Lau791zoP20W1713RtdRwJCVG-ONJdMROMML75mxViFKYqCaZvlvT9ckZQ9-0UhY99Yt49hP9PYNMPBS_eiRdD5UVpYmpMvboJMz-tYGhZSeXdel8Qs0suolLmBYhXmBoQyU6aFOwL8F669z6w4UvZ975kjhJ51T2zZCtdP9ooQC__GePAvwmds1KPqYoaTkvw6fMfj8yUAziJS4ilA2jn7TKWeouvukA4p0gFsjh3pxbA_4yEkcKWFsyyGEShlclJi21mw0POc_TAveNvNaqIZ8qs=&abvar=16&febuild=24795eae7b79ff5a98371e378fb32ecae49915eb&os=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
GET /chicken.gif?z=1956917&pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=vYsug9cmJkOWhzeXpHJk9iiOPAZZ5T7yZbFcW-usNx_gIvRQG7rWED2BdotCHGr7xJ2Cr5ux_jQMGjDj4_z0xJ1Ttc5EvOniArG9wOI38WPwZE7H7avjC34jTaXeYUIAdaFuUBVy1FhaFoRwbq5JEeISpZTOjkmYwmJxxBkRbjtRP1h-GUghA-wUA2Ra4W4-ZG-2-KPm2DWLaEJMJcQPnq4CUkI-Vy2ls1G9KRRaCkOC-2EDSeHtvhi_xEWhqnrpJJc_bfQt_8y2Md6k554xAbAbS6jWB_E2gD36hOM4xcjh1EBwoX13LdsL37Pqau5EfXwvFOrUEz4ETU-sYJhewnnqsZ67m7BbF1LL5dbzBV0ZI-3W9tK7tK3HTb6yovGMeuspdsP5rpyqqdoJl2WJQO8tJcQpLkH1KKs88zeh2hZFkBJxQCqt78hVdAWm6y3IfgmPYyHWbmWTaE-S7aYnnsdmgL3ogp3eXPfFM2fqYAT266DoiNmGVR84I4i0yoiPPHD6oq0aTQtcVdn59TuKvRWONYVK2Em-aNihVubtF9SXfha7BsZB0facKHbwmvd6MVR--_pNUNP0Fv5dI3wogakLgXILOkrI8BJM2d3GHjXmPWsowIOX_Nr2SqqjsTvjjNj6TpNja9dpECDBLKyEmH6YbaUidmrBwWfYmFj91d_xTiumq7rkaBhuFITafPbcIw_W2Lau791zoP20W1713RtdRwJCVG-ONJdMROMML75mxViFKYqCaZvlvT9ckZQ9-0UhY99Yt49hP9PYNMPBS_eiRdD5UVpYmpMvboJMz-tYGhZSeXdel8Qs0suolLmBYhXmBoQyU6aFOwL8F669z6w4UvZ975kjhJ51T2zZCtdP9ooQC__GePAvwmds1KPqYoaTkvw6fMfj8yUAziJS4ilA2jn7TKWeouvukA4p0gFsjh3pxbA_4yEkcKWFsyyGEShlclJi21mw0POc_TAveNvNaqIZ8qs=&abvar=16&febuild=24795eae7b79ff5a98371e378fb32ecae49915eb&os=0 HTTP/1.1
Host: vpixrlkggv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: UID=2303311424d6473c5d485040d4a15cb2ec42
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.impression
set-cookie: OACICAP=ACVrFQAAAAAAAAAB; Path=/; Expires=Sun, 30 Apr 2023 19:24:05 GMT; Secure; SameSite=None
OACIBLOCK=ACVrFQAAAABkJy2w; Path=/; Expires=Sun, 30 Apr 2023 19:24:05 GMT; Secure; SameSite=None
ppucnt=0; Path=/; Expires=Sat, 01 Apr 2023 19:24:05 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
rxeosevsso.com/chicken.gif?z=1959498&pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=ApwuscDuS3RYLOqFVcH2xOGT0g8m1fSzPJtrfiALkNY9bCqSGD_tvDuTKutQS1kD9peHcThzYog7Ff9ipcoTX8dVazD_umiXlhYbaegybu7SJcPtwR6xlFgvntRvNuXZfzUj_Yq1l9sWk1zI2gtWuRv_kbcSqaWoTRWladOvOixbTc2ApsrKtJXDIdCI_qfSaQaxZG5l8UowxM7YgtixLAVYIQuExIT228Zc42wmyGhaeNXVgoP81jPUgMw97B4yCQaGI88e1JTyveTMk2FhmhT3ltjumkr-va-ug8d6CZf9fLhQpjbG2eadnec17R9lN27VBf1ExlgqZd2Rl5JqWNt0_2sSGQx6LHj7hZMVeZ7dL8cwckTtY4FtX_-M1EuKBVM2LO3xTF1GwaRXC90DYV5oDe6ST6BzmLZoQk-2s67hkUbVMfXk0XQswZiJFIJVMGyvZzB5gG8BPfH27IYLn_APuwVpi38WauB16-fx7ZjsHcgESf7gFeAIIrKkzURMaDCRSZ6UHkP-5LLyNYS73OVZToG6n7A7GH4zmQGoAqcOogkJTJe21qA46Iq6-s-6mteYlLS3b-r9eMPqpWCmnbRQ-rTASKKQm7Cor0487f_umNVCZiJkZDRXQm-TsYSLiTWzNMJs5phaL1EycQ8AuKk9p8HJqZtXDUhh7mBC2rrAqX5jBBHr7rTF6NzcGGLAP_p0ZmAQU20S0eWctFlQC79xaBEUXL6I2uh1RIruiQ0P0iGA9mHu36QHQ9SVBfrUILplXj5qDtSgKYyXCijYn-B8cVo_EGTJEKfge9ruLOL_ZOlJTSBmBs1DWPneBSAifClAbkCJbNwK6BhodjgbcMUBsWjrfB_h3_MESjY2Yehow1kUZepkmon6HEZati684U1WS3-GvNQUfa80j19Yn5kzfC-IQsNfnh5fABwn2q_G4jPszDEEARMi74ucPqV8B4MrDbg_P8kcydtp4ySazZgZR7EpiZA=&abvar=0&febuild=1.0.87&os=0
62.122.171.6200 OK 43 B URL HTTP/2 rxeosevsso.com/chicken.gif?z=1959498&pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=ApwuscDuS3RYLOqFVcH2xOGT0g8m1fSzPJtrfiALkNY9bCqSGD_tvDuTKutQS1kD9peHcThzYog7Ff9ipcoTX8dVazD_umiXlhYbaegybu7SJcPtwR6xlFgvntRvNuXZfzUj_Yq1l9sWk1zI2gtWuRv_kbcSqaWoTRWladOvOixbTc2ApsrKtJXDIdCI_qfSaQaxZG5l8UowxM7YgtixLAVYIQuExIT228Zc42wmyGhaeNXVgoP81jPUgMw97B4yCQaGI88e1JTyveTMk2FhmhT3ltjumkr-va-ug8d6CZf9fLhQpjbG2eadnec17R9lN27VBf1ExlgqZd2Rl5JqWNt0_2sSGQx6LHj7hZMVeZ7dL8cwckTtY4FtX_-M1EuKBVM2LO3xTF1GwaRXC90DYV5oDe6ST6BzmLZoQk-2s67hkUbVMfXk0XQswZiJFIJVMGyvZzB5gG8BPfH27IYLn_APuwVpi38WauB16-fx7ZjsHcgESf7gFeAIIrKkzURMaDCRSZ6UHkP-5LLyNYS73OVZToG6n7A7GH4zmQGoAqcOogkJTJe21qA46Iq6-s-6mteYlLS3b-r9eMPqpWCmnbRQ-rTASKKQm7Cor0487f_umNVCZiJkZDRXQm-TsYSLiTWzNMJs5phaL1EycQ8AuKk9p8HJqZtXDUhh7mBC2rrAqX5jBBHr7rTF6NzcGGLAP_p0ZmAQU20S0eWctFlQC79xaBEUXL6I2uh1RIruiQ0P0iGA9mHu36QHQ9SVBfrUILplXj5qDtSgKYyXCijYn-B8cVo_EGTJEKfge9ruLOL_ZOlJTSBmBs1DWPneBSAifClAbkCJbNwK6BhodjgbcMUBsWjrfB_h3_MESjY2Yehow1kUZepkmon6HEZati684U1WS3-GvNQUfa80j19Yn5kzfC-IQsNfnh5fABwn2q_G4jPszDEEARMi74ucPqV8B4MrDbg_P8kcydtp4ySazZgZR7EpiZA=&abvar=0&febuild=1.0.87&os=0
IP 62.122.171.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28e463819a210071de3b45ebe7633613
6dccd571828ec0912629119cf7eabfea9f33ddbc
44251f61629e2bfeead421241a917f43ad047af351659f01cd8fd937f0417f84
GET /chicken.gif?z=1959498&pb=bec47ebd94def4947c0bf037603dc0d51680297845&psp=ApwuscDuS3RYLOqFVcH2xOGT0g8m1fSzPJtrfiALkNY9bCqSGD_tvDuTKutQS1kD9peHcThzYog7Ff9ipcoTX8dVazD_umiXlhYbaegybu7SJcPtwR6xlFgvntRvNuXZfzUj_Yq1l9sWk1zI2gtWuRv_kbcSqaWoTRWladOvOixbTc2ApsrKtJXDIdCI_qfSaQaxZG5l8UowxM7YgtixLAVYIQuExIT228Zc42wmyGhaeNXVgoP81jPUgMw97B4yCQaGI88e1JTyveTMk2FhmhT3ltjumkr-va-ug8d6CZf9fLhQpjbG2eadnec17R9lN27VBf1ExlgqZd2Rl5JqWNt0_2sSGQx6LHj7hZMVeZ7dL8cwckTtY4FtX_-M1EuKBVM2LO3xTF1GwaRXC90DYV5oDe6ST6BzmLZoQk-2s67hkUbVMfXk0XQswZiJFIJVMGyvZzB5gG8BPfH27IYLn_APuwVpi38WauB16-fx7ZjsHcgESf7gFeAIIrKkzURMaDCRSZ6UHkP-5LLyNYS73OVZToG6n7A7GH4zmQGoAqcOogkJTJe21qA46Iq6-s-6mteYlLS3b-r9eMPqpWCmnbRQ-rTASKKQm7Cor0487f_umNVCZiJkZDRXQm-TsYSLiTWzNMJs5phaL1EycQ8AuKk9p8HJqZtXDUhh7mBC2rrAqX5jBBHr7rTF6NzcGGLAP_p0ZmAQU20S0eWctFlQC79xaBEUXL6I2uh1RIruiQ0P0iGA9mHu36QHQ9SVBfrUILplXj5qDtSgKYyXCijYn-B8cVo_EGTJEKfge9ruLOL_ZOlJTSBmBs1DWPneBSAifClAbkCJbNwK6BhodjgbcMUBsWjrfB_h3_MESjY2Yehow1kUZepkmon6HEZati684U1WS3-GvNQUfa80j19Yn5kzfC-IQsNfnh5fABwn2q_G4jPszDEEARMi74ucPqV8B4MrDbg_P8kcydtp4ySazZgZR7EpiZA=&abvar=0&febuild=1.0.87&os=0 HTTP/1.1
Host: rxeosevsso.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: UID=2303311424f79d7d48fe694b3ebbeba9f31f
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: image/gif
content-length: 43
x-route-id: stats.impression
set-cookie: OACICAP=ACVrFQAAAAAAAAAB; Path=/; Expires=Sun, 30 Apr 2023 19:24:05 GMT; Secure; SameSite=None
OACIBLOCK=ACVrFQAAAABkJy2w; Path=/; Expires=Sun, 30 Apr 2023 19:24:05 GMT; Secure; SameSite=None
ppucnt=0; Path=/; Expires=Sat, 01 Apr 2023 19:24:05 GMT; Secure; SameSite=None
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
X-Firefox-Spdy: h2
go.xlivrdr.com/smartpop/165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af?userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&memberId=ooc4ASOpumquupdVdTdRZXO6VzqpbXUzOodTK6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOc6V2ZNeu0b6Zm3j1D.5zpXSuldK6V0rpXSulcH2A-&sourceId=4915994&p1=4581534&ax=0&skipOffset=00:00:05
104.18.51.106302 Found 0 B URL HTTP/2 go.xlivrdr.com/smartpop/165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af?userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&memberId=ooc4ASOpumquupdVdTdRZXO6VzqpbXUzOodTK6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOc6V2ZNeu0b6Zm3j1D.5zpXSuldK6V0rpXSulcH2A-&sourceId=4915994&p1=4581534&ax=0&skipOffset=00:00:05
IP 104.18.51.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /smartpop/165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af?userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&memberId=ooc4ASOpumquupdVdTdRZXO6VzqpbXUzOodTK6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOc6V2ZNeu0b6Zm3j1D.5zpXSuldK6V0rpXSulcH2A-&sourceId=4915994&p1=4581534&ax=0&skipOffset=00:00:05 HTTP/1.1
Host: go.xlivrdr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 31 Mar 2023 19:24:05 GMT
content-length: 0
location: https://go.xlivrdr.com/api/models/vast?ax=0&campaignId=165aea9bcdd7aabac45f72d02f58fd24b8416bc57cfc540b1b4409ac823564af&campaignType=smartpop&creativeId=4ecbf483db62b985de7f6ba77c0c167dcdbbd27e797a4c82eb223a1393acd989&iterationId=414796&masterSmartpopId=2683&memberId=ooc4ASOpumquupdVdTdRZXO6VzqpbXUzOodTK6V0rpXT1UU0uomponpndRNTRPTS6V0zpXSuldK6Z0rpXTOc6V2ZNeu0b6Zm3j1D.5zpXSuldK6V0rpXSulcH2A-&p1=4581534&ruleId=157&skipOffset=00%3A00%3A05&smartpopId=3564&sourceId=4915994&tag=girls&usePreroll=true&userId=1f2ad638bb163e0f21b19d6cbbcd5805b56eb7b1ef21117b6157eaf2a11915c9&variationId=30386
access-control-allow-origin: https://archivebate.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, Content-Length, Accept-Encoding, x-requested-with
cf-cache-status: DYNAMIC
set-cookie: _var=7868025.30386; Path=/; HttpOnly; SameSite=Strict
__cflb=02DiuDfsBaY2bRYJiCfFf7n7wicv7ejLsqM4XphTvg5rt; SameSite=None; Secure; path=/; expires=Sat, 01-Apr-23 18:24:05 GMT; HttpOnly
server: cloudflare
cf-ray: 7b0af87848300b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/images/close-icon.svg
185.76.9.17200 OK 209 B URL HTTP/2 s3t3d2y8.afcdn.net/images/close-icon.svg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 4d5957efa38d8088c0c0e0de316c0117
80b166fdf64d63a13abe54540e9d7ccad266c847
1f6c61d31d11fc70df7c76526b441f2afed083f2bd4cc895f958717babe97414
GET /images/close-icon.svg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Wed, 29 Jun 2022 13:13:10 GMT
etag: W/"62bc4fe6-109"
expires: Fri, 30 Jun 2023 18:46:40 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCQ0UoYr/T5ZoAQ
x-77-nzt-ray: c0a4cc280095c57a5533276472683630
x-accel-expires: @1688195206
x-cache: HIT
x-age: 23631439
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA2VPS0oFMRC8iheYoX9Jp9/atYLiAeaThy5UeIoo1OHtjPA2pkhSSSrV1UKiE+mkfMPlJHaiguA5aDaZuRju7h9gjOWyPb989XX57PP2/orq1SPQUkKGcK5UYU2Mcy9cUEjczeAczUUajKCghBTN+2QzkRA3Lx7ajNLOCU+Pt8fkhBByHQkGteT0PRwKWe/a21L7StrWHqQRZ1PWTXzdhvBf4vwmVQlMVEf9WUN8FDlCDSibigkmvh4MOQjH8/Lx87YBV/lfEyiHg4AtO2Rg51Zpt8iI0Rc7d12i7K1u0jqd3X8BtB9hP3IBAAA=
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA2VPS0oFMRC8iheYoX9Jp9/atYLiAeaThy5UeIoo1OHtjPA2pkhSSSrV1UKiE+mkfMPlJHaiguA5aDaZuRju7h9gjOWyPb989XX57PP2/orq1SPQUkKGcK5UYU2Mcy9cUEjczeAczUUajKCghBTN+2QzkRA3Lx7ajNLOCU+Pt8fkhBByHQkGteT0PRwKWe/a21L7StrWHqQRZ1PWTXzdhvBf4vwmVQlMVEf9WUN8FDlCDSibigkmvh4MOQjH8/Lx87YBV/lfEyiHg4AtO2Rg51Zpt8iI0Rc7d12i7K1u0jqd3X8BtB9hP3IBAAA=
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA2VPS0oFMRC8iheYoX9Jp9/atYLiAeaThy5UeIoo1OHtjPA2pkhSSSrV1UKiE+mkfMPlJHaiguA5aDaZuRju7h9gjOWyPb989XX57PP2/orq1SPQUkKGcK5UYU2Mcy9cUEjczeAczUUajKCghBTN+2QzkRA3Lx7ajNLOCU+Pt8fkhBByHQkGteT0PRwKWe/a21L7StrWHqQRZ1PWTXzdhvBf4vwmVQlMVEf9WUN8FDlCDSibigkmvh4MOQjH8/Lx87YBV/lfEyiHg4AtO2Rg51Zpt8iI0Rc7d12i7K1u0jqd3X8BtB9hP3IBAAA= HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://archivebate.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226427335513f2c0.94941363209382174%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4915994%7C59493762%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Carchivebate.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://archivebate.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22515.0199%7C508.019701%22%7D; expires=Sun, 30 Mar 2025 19:24:05 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA2VPS0pEMRC8iheYR3/T6Vm7VlA8wEtI0IUKjohCH97OE2ZjiiSVpFJdTUB8Aj4x3qCeSc6g4bg5bEIbqsTd/UMIxv7Rn1++Rts/x9bfX6NYMfeoKQEJNyxQQioJ5q6ooUBmImHo1YglBIIDEqSc98k2AHR3cjIBtdRCPD3eHhMTBJHrCrCoJIfvZaAgY/CoexkNuLbhwO5TGLmTtb6E/wLnNyoMgQAly+MGDrSKHJkWGIVJKE54PUjkgDie98vPW4+4yv96CD0c0kmyQYyQTtxatVlZp7Zhs0+33koZOmW3X3txEsJxAQAA
95.211.229.246200 OK 20 B URL HTTP/1.1 syndication.realsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA2VPS0pEMRC8iheYR3/T6Vm7VlA8wEtI0IUKjohCH97OE2ZjiiSVpFJdTUB8Aj4x3qCeSc6g4bg5bEIbqsTd/UMIxv7Rn1++Rts/x9bfX6NYMfeoKQEJNyxQQioJ5q6ooUBmImHo1YglBIIDEqSc98k2AHR3cjIBtdRCPD3eHhMTBJHrCrCoJIfvZaAgY/CoexkNuLbhwO5TGLmTtb6E/wLnNyoMgQAly+MGDrSKHJkWGIVJKE54PUjkgDie98vPW4+4yv96CD0c0kmyQYyQTtxatVlZp7Zhs0+33koZOmW3X3txEsJxAQAA
IP 95.211.229.246:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA2VPS0pEMRC8iheYR3/T6Vm7VlA8wEtI0IUKjohCH97OE2ZjiiSVpFJdTUB8Aj4x3qCeSc6g4bg5bEIbqsTd/UMIxv7Rn1++Rts/x9bfX6NYMfeoKQEJNyxQQioJ5q6ooUBmImHo1YglBIIDEqSc98k2AHR3cjIBtdRCPD3eHhMTBJHrCrCoJIfvZaAgY/CoexkNuLbhwO5TGLmTtb6E/wLnNyoMgQAly+MGDrSKHJkWGIVJKE54PUjkgDie98vPW4+4yv96CD0c0kmyQYyQTtxatVlZp7Zhs0+33koZOmW3X3txEsJxAQAA HTTP/1.1
Host: syndication.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://archivebate.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%226427335513f2c0.94941363209382174%22%3B%7D; c-tag=%7B%22tag-video%22%3A%22v3%7C%7CNOR%7C4915994%7C59493762%7C0%7C%7C508%7C41%7C3%7C40%7C0%7C0%7C0%7C25344%7C3143242%7C3143244%7C0%7C1%7C0%7C0%7C0%7C0%7C1%7C0%7C0%7C1%7C%7C%7C0%7Carchivebate.com%7C%7C%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7C0%7Cok%22%7D; __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22508.0199%22%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://archivebate.com
Access-Control-Allow-Credentials: true
Set-Cookie: __upt=%7B%22v%22%3A1%2C%22id%22%3A%220%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22515.0199%7C508.019701%22%7D; expires=Sun, 30 Mar 2025 19:24:05 GMT; path=/; domain=.realsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/676799/75638d08fe4d6cab37dad1240402f81d2d783f4f.jpg
185.76.9.17200 OK 25 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/676799/75638d08fe4d6cab37dad1240402f81d2d783f4f.jpg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 6b0a70ecf7a9716d3c1bdde24ec19f27
75638d08fe4d6cab37dad1240402f81d2d783f4f
2ca0798ab1e31a1cbd34a97343371bdc5f2fe6fd8bcee1e8fdf408c9fc08d3ca
GET /library/676799/75638d08fe4d6cab37dad1240402f81d2d783f4f.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: image/jpeg
content-length: 25437
last-modified: Tue, 13 Apr 2021 14:34:08 GMT
etag: "6075abe0-635d"
expires: Fri, 30 Jun 2023 11:20:55 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCQ3C2cz/d5RoAQ
x-77-nzt-ray: c0a4cc280095c57a55332764324ad239
x-accel-expires: @1688195678
x-cache: HIT
x-age: 23630967
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/676799/e6b37a342b7f9f52955204fb467a456d07cdbd4a.jpg
185.76.9.17200 OK 26 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/676799/e6b37a342b7f9f52955204fb467a456d07cdbd4a.jpg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 314bcd4331908cbfa418f46b4cad7cdc
e6b37a342b7f9f52955204fb467a456d07cdbd4a
af1239a1443d757bbd7ffa6bee10752a848ba47b381038563ed0e9c0dbe33d48
GET /library/676799/e6b37a342b7f9f52955204fb467a456d07cdbd4a.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: image/jpeg
content-length: 26414
last-modified: Tue, 23 Mar 2021 10:37:35 GMT
etag: "6059c4ef-672e"
expires: Fri, 30 Jun 2023 11:23:20 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCQ3Ijhz/NpZoAQ
x-77-nzt-ray: c0a4cc280095c57a55332764990b023a
x-accel-expires: @1688195231
x-cache: HIT
x-age: 23631414
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/676799/1397422b38b5acc9288b0d559924b9b65996ddac.jpg
185.76.9.17200 OK 33 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/676799/1397422b38b5acc9288b0d559924b9b65996ddac.jpg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 352dbc1ce50b100951be151c8e7c0cd0
1397422b38b5acc9288b0d559924b9b65996ddac
c1b3246352d2bd0f0891746d763210002517eba89a7c39d0d082d0e0fde11a60
GET /library/676799/1397422b38b5acc9288b0d559924b9b65996ddac.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:05 GMT
content-type: image/jpeg
content-length: 32904
last-modified: Tue, 15 Mar 2022 12:26:31 GMT
etag: "623085f7-8088"
expires: Fri, 30 Jun 2023 11:16:42 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-robots-tag: noindex, follow
x-77-nzt: AblMCQ2vZXD/bJVoAQ
x-77-nzt-ray: c0a4cc280095c57a553327642046193a
x-accel-expires: @1688195433
x-cache: HIT
x-age: 23631212
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a54118756337c96ae6f33d7999336693
1fe431a19abad433072a418908e4f50db56d6fb4
92dd975e59e3037e3a16d73eaf4d39e0717982f734a08bc3b5a8fcb0f42551bb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92DD975E59E3037E3A16D73EAF4D39E0717982F734A08BC3B5A8FCB0F42551BB"
Last-Modified: Wed, 29 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10859
Expires: Fri, 31 Mar 2023 22:25:04 GMT
Date: Fri, 31 Mar 2023 19:24:05 GMT
Connection: keep-alive
code.jquery.com/jquery-3.3.1.min.js
69.16.175.10200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.min.js
IP 69.16.175.10:0
Hash 62dfc38bbcee5cfe27b825b658ef2da9
77b9515602f89fdcbaf4be4fafc2c2886f9cf722
e8b69ae3a4b146c479e66eb019746f4b33c465aa389b81cf18ee9275374a0bbd
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adshrink.it
Connection: keep-alive
Referer: https://adshrink.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:06 GMT
content-encoding: gzip
content-length: 30288
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1538f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1680290646.dop017.sk1.t,1680290646.cds214.sk1.hn,1680290646.cds240.sk1.c
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-YWDMKPE0RN>m=45je33t0&_p=2033254419&cid=708883845.1680290645&ul=en-us&sr=1280x1024&_s=1&sid=1680290644&sct=1&seg=0&dl=https%3A%2F%2Farchivebate.com%2Fwatch%2F603937&dt=kasandraxhot2%20Stripchat%20webcam%20recordings%2C%20Archivebate&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-YWDMKPE0RN>m=45je33t0&_p=2033254419&cid=708883845.1680290645&ul=en-us&sr=1280x1024&_s=1&sid=1680290644&sct=1&seg=0&dl=https%3A%2F%2Farchivebate.com%2Fwatch%2F603937&dt=kasandraxhot2%20Stripchat%20webcam%20recordings%2C%20Archivebate&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-YWDMKPE0RN>m=45je33t0&_p=2033254419&cid=708883845.1680290645&ul=en-us&sr=1280x1024&_s=1&sid=1680290644&sct=1&seg=0&dl=https%3A%2F%2Farchivebate.com%2Fwatch%2F603937&dt=kasandraxhot2%20Stripchat%20webcam%20recordings%2C%20Archivebate&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://archivebate.com
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://archivebate.com
date: Fri, 31 Mar 2023 19:24:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
germinateensue.com/9c/ee/14/9cee14c1ae8553dc33c6356617e89bf7.js
192.243.59.20200 OK 11 kB URL HTTP/1.1 germinateensue.com/9c/ee/14/9cee14c1ae8553dc33c6356617e89bf7.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (32130), with no line terminators
Hash 0272af0b13380669440ff33c1029d815
9c89afebed7f3627d1801db91ec76cf716b9020c
9590e28bfd99e11f03dde47d5d061a6d77593a633c4e70f16be001be24890f02
Analyzer Verdict Alert quad9 Sinkholed
GET /9c/ee/14/9cee14c1ae8553dc33c6356617e89bf7.js HTTP/1.1
Host: germinateensue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Fri, 31 Mar 2023 19:24:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ce01500838a1c2483e1f8c86b0188564
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 0b0515b8a29bbc80123309a035721b0f
14815e2b232f158be9f72d4341e1f3b9877d8712
192c360e235c9dacade3d4977eb4972068b0c8e858833bc43c95bbe8a9bebf9b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 19:24:06 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 30 Mar 2023 21:49:12 GMT
Expires: Thu, 06 Apr 2023 21:49:11 GMT
Etag: "14815e2b232f158be9f72d4341e1f3b9877d8712"
Cache-Control: max-age=526504,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0af87bdd2a0b02-OSL
mkkvprwskq.com/lv/esnk/1956918/code.js
62.122.171.6200 OK 46 kB URL HTTP/2 mkkvprwskq.com/lv/esnk/1956918/code.js
IP 62.122.171.6:0
Hash d106554ac33b82308792060c00b7eaa0
4ac1a5ae0d18d2908036c95ff280c53b7620d426
4368c97e2b63fba61adc5c56b7b2140b66f1921d6a642f8dc30f05fdf1ac79df
Analyzer Verdict Alert fortinet Malware
GET /lv/esnk/1956918/code.js HTTP/1.1
Host: mkkvprwskq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: application/javascript
last-modified: Wed, 29 Mar 2023 13:26:16 GMT
vary: Accept-Encoding
etag: W/"64243c78-1b0d1"
x-js-ab1: current
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 57bcac2035f0e90a6f6f4c42fc9097ff
cde71b1fd46d3bde7e67bd48cfe4ea2b5381e5a9
2298efe77ce031f0f09912464e4802c2c4fed6b6f6e8a9f347a5ca6268cfc3c1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2298EFE77CE031F0F09912464E4802C2C4FED6B6F6E8A9F347A5CA6268CFC3C1"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10351
Expires: Fri, 31 Mar 2023 22:16:37 GMT
Date: Fri, 31 Mar 2023 19:24:06 GMT
Connection: keep-alive
westats.dev/api/event
188.114.97.1202 Accepted 2 B IP 188.114.97.1:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /api/event HTTP/1.1
Host: westats.dev
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 114
Origin: https://mixdrop.co
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 202 Accepted
date: Fri, 31 Mar 2023 19:24:06 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: F1GXcL6nNmXCBFMADmYh
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DfdDKuqGgAP4PAx2SD8jFyaRLI9KRO%2BDw1GLSDYzCrVmGXyFydO6bKVwaKeRxqH91%2FyVTcas6eNvXmetcNsI3naJB8L5lu5y2DW1BLOhogZ85sD1ifmmoksY%2BSm0zg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b0af87b2f37b50f-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f46f38c4852c3275112c9321bd642fbe
c76f8472b0a59e4bbfc1b8a07d00de60adcf8adb
262d99afeddc8188f5b2e4f2dd0c46e1d0b6bcc73d98f2a404ac887617ac288f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "262D99AFEDDC8188F5B2E4F2DD0C46E1D0B6BCC73D98F2A404AC887617AC288F"
Last-Modified: Thu, 30 Mar 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8366
Expires: Fri, 31 Mar 2023 21:43:32 GMT
Date: Fri, 31 Mar 2023 19:24:06 GMT
Connection: keep-alive
simplewebanalysis.com/stats
18.194.180.164200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.194.180.164:0
File type ASCII text, with no line terminators
Hash f8a43602d9c830b24e57f52f9b8563bb
035147b6fb9ec2c3be69dc1e5b42b63d0821e0dd
507d632b3ef4defeab9038c13fc1a2924d8d2cd8443676d601104215dc8ebae1
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.co
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://mixdrop.co
access-control-allow-credentials: true
set-cookie: uid_id2=2419c224-a083-48bd-9163-f9468f887fcc:1:1; expires=Mon, 28 Mar 2033 19:24:06 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
a-delivery42.mxdcontent.net/thumbs/72948fcea1d831106fdeaee0624b3a97_4x4.jpg
168.80.32.58200 OK 97 kB URL HTTP/1.1 a-delivery42.mxdcontent.net/thumbs/72948fcea1d831106fdeaee0624b3a97_4x4.jpg
IP 168.80.32.58:0
ASN #202769 Cooperative Investments LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1040x584, components 3\012- data
Hash 1139393de1b169825c4ee007c1d03c1b
999a83485fbce9794cdca982d6fe100d23859b83
5974a91f1dba824a8d8b7b7623ff33a0c396309debd1cbd0ba32f4d3d26ab518
GET /thumbs/72948fcea1d831106fdeaee0624b3a97_4x4.jpg HTTP/1.1
Host: a-delivery42.mxdcontent.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 31 Mar 2023 19:24:06 GMT
Content-Type: image/jpeg
Content-Length: 97078
Last-Modified: Tue, 16 Aug 2022 10:33:56 GMT
Connection: keep-alive
ETag: "62fb7294-17b36"
Accept-Ranges: bytes
missilesurvive.com/07/9a/ab/079aab5740d00d7a7173d624cca9b467.js
173.233.137.44200 OK 29 kB URL HTTP/1.1 missilesurvive.com/07/9a/ab/079aab5740d00d7a7173d624cca9b467.js
IP 173.233.137.44:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash a2dc0d682a38a5518405fd8b70f07cf5
8e22c6564dc03a964c126ca15e16ae25aa3385b7
0ece3c1bed15b3871fa6c2aa8c5c7522295df02c79725707cd4c8c7372030a2a
Analyzer Verdict Alert quad9 Sinkholed
GET /07/9a/ab/079aab5740d00d7a7173d624cca9b467.js HTTP/1.1
Host: missilesurvive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 31 Mar 2023 19:24:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: cbd23f88f448839484d9229c1ac7ad12
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b7488bc8ef09e225122912ecbb51f9ef
21c9fa115939a8896f80683674fcb33bd77e0795
9b218b64aff22058915c0b9c98943b5b48485d831b5daf90a53e32d8840258d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B218B64AFF22058915C0B9C98943B5B48485D831B5DAF90A53E32D8840258D8"
Last-Modified: Wed, 29 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4196
Expires: Fri, 31 Mar 2023 20:34:03 GMT
Date: Fri, 31 Mar 2023 19:24:07 GMT
Connection: keep-alive
www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js
216.58.211.3200 OK 166 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js
IP 216.58.211.3:0
File type HTML document, ASCII text, with very long lines (597)
Size 166 kB (166058 bytes)
Hash 4043af37a3392a9db521ff9ab62d9608
83828688e7a2259ed2f77345851a16122383b422
ee076822f35390ee382cda71759a2eec8f4db2bc18e4e3acd586173c29dab321
GET /recaptcha/releases/vpEprwpCoBMgy-fvZET0Mz6L/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.co
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166058
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 31 Mar 2023 08:38:04 GMT
expires: Sat, 30 Mar 2024 08:38:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 04:02:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 38763
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
missilesurvive.com/sbar.json?key=9cee14c1ae8553dc33c6356617e89bf7&uuid=2419c224-a083-48bd-9163-f9468f887fcc%3A1%3A1
173.233.137.44200 OK 4.3 kB URL HTTP/1.1 missilesurvive.com/sbar.json?key=9cee14c1ae8553dc33c6356617e89bf7&uuid=2419c224-a083-48bd-9163-f9468f887fcc%3A1%3A1
IP 173.233.137.44:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6477), with no line terminators
Hash ee45305a0c7dada7a239d6558fe81733
f03a75383e9f1665a518b58dc1b91632c307e7b4
03d27067d8d03cecc006bf7f924d4841725630949909294f82059b848c991f40
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=9cee14c1ae8553dc33c6356617e89bf7&uuid=2419c224-a083-48bd-9163-f9468f887fcc%3A1%3A1 HTTP/1.1
Host: missilesurvive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.co
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 31 Mar 2023 19:24:07 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://mixdrop.co
Access-Control-Allow-Origin: https://mixdrop.co
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=18536519; expires=Sat, 01 Apr 2023 19:24:07 GMT; secure; SameSite=None
uid_id2=2419c224-a083-48bd-9163-f9468f887fcc:1:1; expires=Fri, 07 Apr 2023 19:24:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 01 Apr 2023 19:24:07 GMT; secure; SameSite=None
uncs=1; expires=Sat, 01 Apr 2023 19:24:07 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 01 Apr 2023 19:24:07 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 01 Apr 2023 19:24:07 GMT; secure; SameSite=None
slec9cee14c1ae8553dc33c6356617e89bf7=[3914066]; expires=Fri, 31 Mar 2023 19:24:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c2aa3f225ddcafe96092cdabbe5272c5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
whereuponcomicsraft.com/pixel/purst?dl=0&th=0&sc=0&rs=2065&rd=2065&fd=669&bv=22.10.v.10&tmpl=136
173.233.137.36200 OK 0 B URL HTTP/1.1 whereuponcomicsraft.com/pixel/purst?dl=0&th=0&sc=0&rs=2065&rd=2065&fd=669&bv=22.10.v.10&tmpl=136
IP 173.233.137.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=2065&rd=2065&fd=669&bv=22.10.v.10&tmpl=136 HTTP/1.1
Host: whereuponcomicsraft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 31 Mar 2023 19:24:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash db1eb92647e17dd20d08274cf6a6d39d
3f8c9210fc3f23874926949f3ef7351f3345376a
e29c963fd228bfd769ad9b57c85698c4ac39113d950e01f074857b4f538a8622
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E29C963FD228BFD769AD9B57C85698C4AC39113D950E01F074857B4F538A8622"
Last-Modified: Fri, 31 Mar 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9613
Expires: Fri, 31 Mar 2023 22:04:20 GMT
Date: Fri, 31 Mar 2023 19:24:07 GMT
Connection: keep-alive
missilesurvive.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRReuzp9cfi8quagoTRBUcGe7p3tmZ8xhMcaEkJjETWTxWF1VvVtudVdT1T09mVMwKAEvk5sn6f1mN4sxBHMzB0FmPKgLouNBF3Ql4EU8KIg5eJKeDC4%2BqHrv1fcO7%2Fu%2Benez2CceCrp38TU9kErRxVbDc59flSnXpXXPX3Z9r%2BEdd1dl2g6Pu%2F36Mr2XfK%2FV8F5wTwu2oRebnu95vue7p6QRse4vzlDI7HbXb3S9Rths%2BK0QffPf3hYOLHXAe%2FvkcUg%2BPbL%2B5V1INkaafHxS2I1cZy%2B%2BmhSK5tqgx3feSDdSXaZIDsrYOIjTnfk0tJ0S8v4h6HRnzgC6t1UzQCSnxPneR5TuzNdE1Nt%2BuGmkIFJE%2FBGUvTGEGkPSMZi%2BBsm%2FJQDjOH8BaXLzvDYlvfIQpTU6JYcf%2FAlZTsnhn44iTe6cULLvXtKqyKVOLfpxBdkfQ66NkRUT5INDkOUELH8bkn9NFh%2BcQ5psXbBKQ%2FK9Z5uh32XNZrhAvU6wEHYivtD128FC3A3bnbjTWYoZm0kk5RgyHkOJIah1UNRHOihiB0XmIOF7Lm11Y89biqM4CDohYywIGGt12rzFg7ATeyhYzWGIPBuCqSGYuYrMXMWGvDEl5Oe%2FYIrPYNcrWO7A5gQ9XqEUBKUlKClBKQnKnKDsVdtc2aatbnJli8if5%2BY8B9VI52ubdFvnayIlm9k%2BeaxWz3nyh9PYEHtulwnhh8ynotNqBbzetB202m1%2FSXS6UbwEKytIe2jGdSCn5NjkLLLa0vfuIaITWDUBk4%2BCFk%2BDlqOlpge6Pgo7HgbprUT2udFZIxqA6wpZfhj5FWdT7ZMnZh4ev7cCwXaXv3mz%2BmP791%2FBTIXMVHhLfk6wpq6PVnRJtlZ0acndC1kuEzmgtb%2BXcpqLI7fOiiulNvzMSTv88GVWA3V5%2B7Kw%2BTmacpmuWfLRCcm5MKe0YYJ8esauiuhiYddPFCYtsnMXXzl1JsmMsFbqdAwqp4T8%2BDeYnJL%2F%2F%2FLB7O%2B6x56CNGOYokJS7JJ5QOoJWHYVNttd%2Fur%2B6TtHB%2FdhNYFRBzNR5qAsqpFpRgePShIocdDTqIIVu8tfvP7bO898soJI%2FCvIpr2ONeOA5teQJhV6pkJPVaBqCFv8b5RnZnf5u2AWiJQzipRxtiJl1I2H4lq554pW7MXCa4oorh2lHu%2FGYTeiXV8sRS3qI7dT%2Flyw%2Bg8AAAD%2F%2FwEAAP%2F%2FcO0mo5MEAAA%3D
173.233.137.44200 OK 7 B URL HTTP/1.1 missilesurvive.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRReuzp9cfi8quagoTRBUcGe7p3tmZ8xhMcaEkJjETWTxWF1VvVtudVdT1T09mVMwKAEvk5sn6f1mN4sxBHMzB0FmPKgLouNBF3Ql4EU8KIg5eJKeDC4%2BqHrv1fcO7%2Fu%2Benez2CceCrp38TU9kErRxVbDc59flSnXpXXPX3Z9r%2BEdd1dl2g6Pu%2F36Mr2XfK%2FV8F5wTwu2oRebnu95vue7p6QRse4vzlDI7HbXb3S9Rths%2BK0QffPf3hYOLHXAe%2FvkcUg%2BPbL%2B5V1INkaafHxS2I1cZy%2B%2BmhSK5tqgx3feSDdSXaZIDsrYOIjTnfk0tJ0S8v4h6HRnzgC6t1UzQCSnxPneR5TuzNdE1Nt%2BuGmkIFJE%2FBGUvTGEGkPSMZi%2BBsm%2FJQDjOH8BaXLzvDYlvfIQpTU6JYcf%2FAlZTsnhn44iTe6cULLvXtKqyKVOLfpxBdkfQ66NkRUT5INDkOUELH8bkn9NFh%2BcQ5psXbBKQ%2FK9Z5uh32XNZrhAvU6wEHYivtD128FC3A3bnbjTWYoZm0kk5RgyHkOJIah1UNRHOihiB0XmIOF7Lm11Y89biqM4CDohYywIGGt12rzFg7ATeyhYzWGIPBuCqSGYuYrMXMWGvDEl5Oe%2FYIrPYNcrWO7A5gQ9XqEUBKUlKClBKQnKnKDsVdtc2aatbnJli8if5%2BY8B9VI52ubdFvnayIlm9k%2BeaxWz3nyh9PYEHtulwnhh8ynotNqBbzetB202m1%2FSXS6UbwEKytIe2jGdSCn5NjkLLLa0vfuIaITWDUBk4%2BCFk%2BDlqOlpge6Pgo7HgbprUT2udFZIxqA6wpZfhj5FWdT7ZMnZh4ev7cCwXaXv3mz%2BmP791%2FBTIXMVHhLfk6wpq6PVnRJtlZ0acndC1kuEzmgtb%2BXcpqLI7fOiiulNvzMSTv88GVWA3V5%2B7Kw%2BTmacpmuWfLRCcm5MKe0YYJ8esauiuhiYddPFCYtsnMXXzl1JsmMsFbqdAwqp4T8%2BDeYnJL%2F%2F%2FLB7O%2B6x56CNGOYokJS7JJ5QOoJWHYVNttd%2Fur%2B6TtHB%2FdhNYFRBzNR5qAsqpFpRgePShIocdDTqIIVu8tfvP7bO898soJI%2FCvIpr2ONeOA5teQJhV6pkJPVaBqCFv8b5RnZnf5u2AWiJQzipRxtiJl1I2H4lq554pW7MXCa4oorh2lHu%2FGYTeiXV8sRS3qI7dT%2Flyw%2Bg8AAAD%2F%2FwEAAP%2F%2FcO0mo5MEAAA%3D
IP 173.233.137.44:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRReuzp9cfi8quagoTRBUcGe7p3tmZ8xhMcaEkJjETWTxWF1VvVtudVdT1T09mVMwKAEvk5sn6f1mN4sxBHMzB0FmPKgLouNBF3Ql4EU8KIg5eJKeDC4%2BqHrv1fcO7%2Fu%2Benez2CceCrp38TU9kErRxVbDc59flSnXpXXPX3Z9r%2BEdd1dl2g6Pu%2F36Mr2XfK%2FV8F5wTwu2oRebnu95vue7p6QRse4vzlDI7HbXb3S9Rths%2BK0QffPf3hYOLHXAe%2FvkcUg%2BPbL%2B5V1INkaafHxS2I1cZy%2B%2BmhSK5tqgx3feSDdSXaZIDsrYOIjTnfk0tJ0S8v4h6HRnzgC6t1UzQCSnxPneR5TuzNdE1Nt%2BuGmkIFJE%2FBGUvTGEGkPSMZi%2BBsm%2FJQDjOH8BaXLzvDYlvfIQpTU6JYcf%2FAlZTsnhn44iTe6cULLvXtKqyKVOLfpxBdkfQ66NkRUT5INDkOUELH8bkn9NFh%2BcQ5psXbBKQ%2FK9Z5uh32XNZrhAvU6wEHYivtD128FC3A3bnbjTWYoZm0kk5RgyHkOJIah1UNRHOihiB0XmIOF7Lm11Y89biqM4CDohYywIGGt12rzFg7ATeyhYzWGIPBuCqSGYuYrMXMWGvDEl5Oe%2FYIrPYNcrWO7A5gQ9XqEUBKUlKClBKQnKnKDsVdtc2aatbnJli8if5%2BY8B9VI52ubdFvnayIlm9k%2BeaxWz3nyh9PYEHtulwnhh8ynotNqBbzetB202m1%2FSXS6UbwEKytIe2jGdSCn5NjkLLLa0vfuIaITWDUBk4%2BCFk%2BDlqOlpge6Pgo7HgbprUT2udFZIxqA6wpZfhj5FWdT7ZMnZh4ev7cCwXaXv3mz%2BmP791%2FBTIXMVHhLfk6wpq6PVnRJtlZ0acndC1kuEzmgtb%2BXcpqLI7fOiiulNvzMSTv88GVWA3V5%2B7Kw%2BTmacpmuWfLRCcm5MKe0YYJ8esauiuhiYddPFCYtsnMXXzl1JsmMsFbqdAwqp4T8%2BDeYnJL%2F%2F%2FLB7O%2B6x56CNGOYokJS7JJ5QOoJWHYVNttd%2Fur%2B6TtHB%2FdhNYFRBzNR5qAsqpFpRgePShIocdDTqIIVu8tfvP7bO898soJI%2FCvIpr2ONeOA5teQJhV6pkJPVaBqCFv8b5RnZnf5u2AWiJQzipRxtiJl1I2H4lq554pW7MXCa4oorh2lHu%2FGYTeiXV8sRS3qI7dT%2Flyw%2Bg8AAAD%2F%2FwEAAP%2F%2FcO0mo5MEAAA%3D HTTP/1.1
Host: missilesurvive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/
Cookie: u_pl=18536519; uid_id2=2419c224-a083-48bd-9163-f9468f887fcc:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9cee14c1ae8553dc33c6356617e89bf7=[3914066]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 31 Mar 2023 19:24:07 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 85a090c4cc39d93886d850cb16c924de
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4cf7868e5b65e9acd9c2b988da5eea93
c8979219d5cde75ee3c3c809afcdbe4b63011941
82f42e96cdc35b31a02579665bf6d669ccc95f66921574f4b3ecd7b963a44954
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82F42E96CDC35B31A02579665BF6D669CCC95F66921574F4B3ECD7B963A44954"
Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8135
Expires: Fri, 31 Mar 2023 21:39:42 GMT
Date: Fri, 31 Mar 2023 19:24:07 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/img/close.png
172.64.167.9200 OK 591 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/img/close.png
IP 172.64.167.9:0
File type PNG image data, 12 x 12, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fd5bcb6103d86e317bd1eb019bcbe71
6b5a52ea669dcb74946f2bed4bdd7ec985026113
0ddd3be104ac7945fb062096df62034a6a24ecc76ba92493c35c62c3c25982ae
GET /sb/ssp/vpn/classic-push/big1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:07 GMT
content-type: image/png
content-length: 591
last-modified: Mon, 21 Feb 2022 10:06:44 GMT
etag: "62136434-24f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 11770341
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lr%2BeHqrArIUMq5hILV228QASXsi1r%2Fu5qV%2BAOL3zvLj0bzcpyFtgOXGYF4oeRwlZRGTbbSzbs4jIEZ4SrzVNWKeMuZuVKAUEG2SsOOYHUPAmsHqFj%2B5YsggFf9s%2F51Z466hrjwzDgPQW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af8852a51488b-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/f1/c4/a4/f1c4a4e86cffebd71f4fce708d3b1c3b/1643364201.jpg
45.133.44.10200 OK 12 kB URL HTTP/2 cdn.cloudimagesb.com/si/f1/c4/a4/f1c4a4e86cffebd71f4fce708d3b1c3b/1643364201.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 70324faf0fad7e1c10a562cee402307a
8f38bdc9f19870b0089b8432a87f527f239a9508
74ce6c3f148486d827b062bf87c29fbdd3920bb19781e33fda09d1f57e236bd2
GET /si/f1/c4/a4/f1c4a4e86cffebd71f4fce708d3b1c3b/1643364201.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:07 GMT
content-type: image/jpeg
content-length: 12211
server: nginx/1.17.6
last-modified: Fri, 28 Jan 2022 10:03:54 GMT
etag: "61f3bf8a-2fb3"
expires: Sun, 02 Apr 2023 19:24:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/10/ff/b3/10ffb302c4e098d899c1c76c85eba958/1643364158.jpg
45.133.44.10200 OK 28 kB URL HTTP/2 cdn.cloudimagesb.com/si/10/ff/b3/10ffb302c4e098d899c1c76c85eba958/1643364158.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x180, components 3\012- data
Hash 2f83d9fc21bef6375067bda91db6bcf6
de12ffc16ba9517a71a2ab86c89d7e6b8e7dd613
7bb66e520e074318d72362bf4fe6dd75f39cee0ce676ca0763d656fb326f554d
GET /si/10/ff/b3/10ffb302c4e098d899c1c76c85eba958/1643364158.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:07 GMT
content-type: image/jpeg
content-length: 27529
server: nginx/1.17.6
last-modified: Fri, 28 Jan 2022 10:02:56 GMT
etag: "61f3bf50-6b89"
expires: Sun, 02 Apr 2023 19:24:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mixdrop.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:10 GMT
expires: Wed, 27 Mar 2024 10:31:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 291178
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mixdrop.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Mar 2023 10:31:23 GMT
expires: Wed, 27 Mar 2024 10:31:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 291165
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
missilesurvive.com/pixel/sbs?c=1
173.233.137.44200 OK 0 B URL HTTP/1.1 missilesurvive.com/pixel/sbs?c=1
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: missilesurvive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/
Cookie: u_pl=18536519; uid_id2=2419c224-a083-48bd-9163-f9468f887fcc:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9cee14c1ae8553dc33c6356617e89bf7=[3914066]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 31 Mar 2023 19:24:08 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/style.css
172.64.167.9200 OK 3.9 kB URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/style.css
IP 172.64.167.9:0
Hash 4737615f307fa7fa4ad387f270378181
1b75d2b0c59e549d40bc00b61f8fae50dd88fd85
921a65a73b79ed57c3c9b564342121182c38b929e75d82f3b04655a2a2056c7d
GET /sb/ssp/vpn/classic-push/big1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.co
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:07 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 10:59:09 GMT
etag: W/"6213707d-1048"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1891906
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OvkLDmiDlZv5mzVFGU9qr%2Bd3Vsb5wC%2FyUpw5eguOS2EjGgg9f4k%2BpVE4oEnskBzNx7Scl28E8EFAS5Z9Z06gIIGnCJ%2BdTzcJxRP5d9A%2BGWjeeJt4nbxRpa1LLY0T%2Fo4%2BvOs16iwHQ9Uf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af884dc6e4167-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
missilesurvive.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRReuzp9cfi8quagoTRBUcGe7p3tmesxhMcaEkJjETWTxWF1VvVtudVdT1T09mVMwKAEvm5sn6f1mN4sxBHMzB0FmPKgLouNBF3Ql4EU8KIg5eJKZDC4%2BqHrv1fcO7%2Fu%2Benez3CceSrp38TU9kErRxVbDc59fkRnXlXXPX3Z9r%2BEdd1dk1g6Pu%2F3pZXov%2BV6r4b3gnhZsXS82Pd%2FzfM93T0kjEt1fnKGQ%2Be2u3%2Bh6jbDZ8Fsh%2Bua%2FvS0dWOqA9%2FbJ45B8cmTty7uQbIQs%2FfiksOuFzl98NS0VLbRBj%2B%2B8ka1nusqQHpSJcZBkO%2FNpaDsh5P1D0NnOnAF0b2vKALGcEOd7H3G2M18TcW%2F74aaxgsgQ80dQ9UYQagRJR2D6GiT%2FlgCM4%2FwFZOnN89pU9MpDlE7RCTn84E%2FIakIO%2F3QUWXrnhJJ995JWZSF1ZtFPasj%2BCHJ1hLwcoxgcgqzGYMXbkPxrsvjgHLJ064JVGpLvPdsM%2FS5rNsMF6kXBQhjFfKHrt4OFpBu2oySKOgljM4mkHEEmIyixAWodlNMjHZSJgzJ3kPI9l7a6ied1kjgJgihkjAUBY62ozVs8CKPEQ8mmHDZQ5BtgagPMXEVurmJd3pgQ8vNfMOVnsGs1LHdgC4Ier1EJgsoSVJSgkgRVQVD16m2ubNPWN7myZezPc3Oeg3qoi9VNuq2LVZGRzXyfPDZVz3nyh9NYF3tulwnhh8ynImq1Aj7dtB202m2%2FI6JunHRgZQ1pD824DuSEHBufRT619L17iOkYVo3B5KOg5dOg1bDT9EDXhmHkYZDdSmWfG5034gG4rpEXh1FccTbVPnli5uHxe8sQbHfpmzfrP7Z%2F%2FxXM1MhNjbfk5wSr6vpwWVdka1lXlty9kBcylQM69fdSQQtx5NZZcaXShp85aTc%2BfJlNgWl5%2B7KwxTmacZmtWvLRCcm5MKe0YYJ8esauiPhiaddOlCYr83MXXzl1Js2NsFbqbAQqJ4T8%2BDeYnJD%2F%2F%2FLB7O%2B6x56CNCOYskZa7pJ5QOoxWH4VNt9d%2Bur%2B6TtHB%2FdhNYFRBzNx7qAq66FpxgePShIocdDTuIYVu0tfvP7bO898soxY%2FCvIpr2OVeOAFteQpTV6pkZP1aBqA7b837DIze7Sd8EsECtnGCvjbMXKqBsPxbVyz235oYjiqMM4jwXjfqcZRIHnNTkPO13hd1HYCX8uWPkHAAD%2F%2FwEAAP%2F%2FZOWoRZMEAAA%3D
173.233.137.44200 OK 7 B URL HTTP/1.1 missilesurvive.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRReuzp9cfi8quagoTRBUcGe7p3tmesxhMcaEkJjETWTxWF1VvVtudVdT1T09mVMwKAEvm5sn6f1mN4sxBHMzB0FmPKgLouNBF3Ql4EU8KIg5eJKZDC4%2BqHrv1fcO7%2Fu%2Benez3CceSrp38TU9kErRxVbDc59fkRnXlXXPX3Z9r%2BEdd1dk1g6Pu%2F3pZXov%2BV6r4b3gnhZsXS82Pd%2FzfM93T0kjEt1fnKGQ%2Be2u3%2Bh6jbDZ8Fsh%2Bua%2FvS0dWOqA9%2FbJ45B8cmTty7uQbIQs%2FfiksOuFzl98NS0VLbRBj%2B%2B8ka1nusqQHpSJcZBkO%2FNpaDsh5P1D0NnOnAF0b2vKALGcEOd7H3G2M18TcW%2F74aaxgsgQ80dQ9UYQagRJR2D6GiT%2FlgCM4%2FwFZOnN89pU9MpDlE7RCTn84E%2FIakIO%2F3QUWXrnhJJ995JWZSF1ZtFPasj%2BCHJ1hLwcoxgcgqzGYMXbkPxrsvjgHLJ064JVGpLvPdsM%2FS5rNsMF6kXBQhjFfKHrt4OFpBu2oySKOgljM4mkHEEmIyixAWodlNMjHZSJgzJ3kPI9l7a6ied1kjgJgihkjAUBY62ozVs8CKPEQ8mmHDZQ5BtgagPMXEVurmJd3pgQ8vNfMOVnsGs1LHdgC4Ier1EJgsoSVJSgkgRVQVD16m2ubNPWN7myZezPc3Oeg3qoi9VNuq2LVZGRzXyfPDZVz3nyh9NYF3tulwnhh8ynImq1Aj7dtB202m2%2FI6JunHRgZQ1pD824DuSEHBufRT619L17iOkYVo3B5KOg5dOg1bDT9EDXhmHkYZDdSmWfG5034gG4rpEXh1FccTbVPnli5uHxe8sQbHfpmzfrP7Z%2F%2FxXM1MhNjbfk5wSr6vpwWVdka1lXlty9kBcylQM69fdSQQtx5NZZcaXShp85aTc%2BfJlNgWl5%2B7KwxTmacZmtWvLRCcm5MKe0YYJ8esauiPhiaddOlCYr83MXXzl1Js2NsFbqbAQqJ4T8%2BDeYnJD%2F%2F%2FLB7O%2B6x56CNCOYskZa7pJ5QOoxWH4VNt9d%2Bur%2B6TtHB%2FdhNYFRBzNx7qAq66FpxgePShIocdDTuIYVu0tfvP7bO898soxY%2FCvIpr2OVeOAFteQpTV6pkZP1aBqA7b837DIze7Sd8EsECtnGCvjbMXKqBsPxbVyz235oYjiqMM4jwXjfqcZRIHnNTkPO13hd1HYCX8uWPkHAAD%2F%2FwEAAP%2F%2FZOWoRZMEAAA%3D
IP 173.233.137.44:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSQYgcRReuzp9cfi8quagoTRBUcGe7p3tmesxhMcaEkJjETWTxWF1VvVtudVdT1T09mVMwKAEvm5sn6f1mN4sxBHMzB0FmPKgLouNBF3Ql4EU8KIg5eJKZDC4%2BqHrv1fcO7%2Fu%2Benez3CceSrp38TU9kErRxVbDc59fkRnXlXXPX3Z9r%2BEdd1dk1g6Pu%2F3pZXov%2BV6r4b3gnhZsXS82Pd%2FzfM93T0kjEt1fnKGQ%2Be2u3%2Bh6jbDZ8Fsh%2Bua%2FvS0dWOqA9%2FbJ45B8cmTty7uQbIQs%2FfiksOuFzl98NS0VLbRBj%2B%2B8ka1nusqQHpSJcZBkO%2FNpaDsh5P1D0NnOnAF0b2vKALGcEOd7H3G2M18TcW%2F74aaxgsgQ80dQ9UYQagRJR2D6GiT%2FlgCM4%2FwFZOnN89pU9MpDlE7RCTn84E%2FIakIO%2F3QUWXrnhJJ995JWZSF1ZtFPasj%2BCHJ1hLwcoxgcgqzGYMXbkPxrsvjgHLJ064JVGpLvPdsM%2FS5rNsMF6kXBQhjFfKHrt4OFpBu2oySKOgljM4mkHEEmIyixAWodlNMjHZSJgzJ3kPI9l7a6ied1kjgJgihkjAUBY62ozVs8CKPEQ8mmHDZQ5BtgagPMXEVurmJd3pgQ8vNfMOVnsGs1LHdgC4Ier1EJgsoSVJSgkgRVQVD16m2ubNPWN7myZezPc3Oeg3qoi9VNuq2LVZGRzXyfPDZVz3nyh9NYF3tulwnhh8ynImq1Aj7dtB202m2%2FI6JunHRgZQ1pD824DuSEHBufRT619L17iOkYVo3B5KOg5dOg1bDT9EDXhmHkYZDdSmWfG5034gG4rpEXh1FccTbVPnli5uHxe8sQbHfpmzfrP7Z%2F%2FxXM1MhNjbfk5wSr6vpwWVdka1lXlty9kBcylQM69fdSQQtx5NZZcaXShp85aTc%2BfJlNgWl5%2B7KwxTmacZmtWvLRCcm5MKe0YYJ8esauiPhiaddOlCYr83MXXzl1Js2NsFbqbAQqJ4T8%2BDeYnJD%2F%2F%2FLB7O%2B6x56CNCOYskZa7pJ5QOoxWH4VNt9d%2Bur%2B6TtHB%2FdhNYFRBzNx7qAq66FpxgePShIocdDTuIYVu0tfvP7bO898soxY%2FCvIpr2OVeOAFteQpTV6pkZP1aBqA7b837DIze7Sd8EsECtnGCvjbMXKqBsPxbVyz235oYjiqMM4jwXjfqcZRIHnNTkPO13hd1HYCX8uWPkHAAD%2F%2FwEAAP%2F%2FZOWoRZMEAAA%3D HTTP/1.1
Host: missilesurvive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/
Cookie: u_pl=18536519; uid_id2=2419c224-a083-48bd-9163-f9468f887fcc:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9cee14c1ae8553dc33c6356617e89bf7=[3914066]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 31 Mar 2023 19:24:08 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4c75de2e4d51e4fcb65af1d5fb1f5555
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=2419c224-a083-48bd-9163-f9468f887fcc&eb=72d67910a8ee07737c08ec4a7ef2f980&te=b0143518e841b2470af84d86e1b09d3b&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=1&pk=079aab5740d00d7a7173d624cca9b467&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
15.197.172.60200 OK 2.8 kB URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=2419c224-a083-48bd-9163-f9468f887fcc&eb=72d67910a8ee07737c08ec4a7ef2f980&te=b0143518e841b2470af84d86e1b09d3b&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=1&pk=079aab5740d00d7a7173d624cca9b467&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19
IP 15.197.172.60:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2830), with no line terminators
Hash 6a5871c7beff97731b0a878ffeea175d
ae9385f04a25e56d7876a69f9b6dc2d9661c13bd
fb2ccf59da0ab415f5bdd6a0d8aac68fdbd7fda00bb98dfef9f6665da7843f30
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=2419c224-a083-48bd-9163-f9468f887fcc&eb=72d67910a8ee07737c08ec4a7ef2f980&te=b0143518e841b2470af84d86e1b09d3b&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=1&pk=079aab5740d00d7a7173d624cca9b467&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: openresty
Date: Fri, 31 Mar 2023 19:24:08 GMT
Content-Type: text/html
Content-Length: 2830
Last-Modified: Wed, 15 Mar 2023 22:55:19 GMT
Connection: keep-alive
ETag: "64124cd7-b0e"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_BiBwn9h8PIeUzqlFox1Cj4KAhACx1b3teuZJpkckhvJQtfSgdtnVvwu/OBT8pilLIOEX1zQqr0xPP4O/5LCh4Q
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=10.116.88.88;Path=/;Max-Age=86400;
country=;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=enom.ACTIVE.5D3C3A1B-1A26-48DD-A7EC-02F11DDF874F;Path=/;Max-Age=86400;
Accept-Ranges: bytes
a.realsrv.com/video-slider.js
185.76.9.21200 OK 0 B URL HTTP/2 a.realsrv.com/video-slider.js
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
GET /video-slider.js HTTP/1.1
Host: a.realsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"d47440cec8a01b26fa25d1d4c51"
expires: Fri, 31 Mar 2023 16:23:55 GMT
cache-control: max-age=10800
access-control-allow-origin: *
x-cache-op: HIT
server: CDN77-Turbo
x-77-nzt: AblMCRQzWwD/fSkAAA
x-77-nzt-ray: af5856302315de4c543327644ff36e2a
x-accel-expires: @1680290823
x-cache: HIT
x-age: 10621
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Inter:wght@400;500&family=Poppins:wght@400;500;600;700&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Inter:wght@400;500&family=Poppins:wght@400;500;600;700&display=swap
IP 142.250.74.106:0
GET /css2?family=Inter:wght@400;500&family=Poppins:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 31 Mar 2023 19:24:04 GMT
date: Fri, 31 Mar 2023 19:24:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114
104.16.56.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114
IP 104.16.56.101:0
GET /beacon.min.js/vb26e4fa9e5134444860be286fd8771851679335129114 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://adshrink.it
Connection: keep-alive
Referer: https://adshrink.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:06 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2023.3.0
last-modified: Mon, 20 Mar 2023 17:58:49 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af879a95cfac0-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/animate.css
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/css/animate.css
IP 172.64.167.9:0
GET /sb/ssp/vpn/classic-push/big1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.co
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:07 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 10:06:42 GMT
etag: W/"62136432-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3918822
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r8H%2BTbJXWfq3S40rYq%2BBkZCd6S1vF0dTwH3Ub0XYr6D5ZfyPjwAz7DiCHsOVgMzKEsl9IuGUZImIHszxEBaaVP4XxinXgfJ5LcN5Eee8%2FDjh1EmS0wcXmuUE6gqhlpIXB71CAfEc4INy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af884bc4a4167-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html
45.133.44.4200 OK 0 B URL HTTP/2 cdn.barscreative1.com/sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
GET /sb/au/48/48/eb/4848ebd6f7295875a5d388ec2488aba3/1648542421.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.co
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:07 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Tue, 29 Mar 2022 08:27:10 GMT
etag: W/"6242c2de-602"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Fri, 31 Mar 2023 20:24:07 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.stripcash.com/video/e962e9a7e88c9194542a18f1a8db6b3d.mp4?cb=1680290536
8.247.219.250206 Partial Content 0 B URL HTTP/2 cdn.stripcash.com/video/e962e9a7e88c9194542a18f1a8db6b3d.mp4?cb=1680290536
IP 8.247.219.250:0
GET /video/e962e9a7e88c9194542a18f1a8db6b3d.mp4?cb=1680290536 HTTP/1.1
Host: cdn.stripcash.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
date: Fri, 31 Mar 2023 19:24:06 GMT
content-type: binary/octet-stream
content-length: 4347423
content-security-policy: block-all-mixed-content
etag: "5f127f30ff705a7c4375aff599cef431"
last-modified: Fri, 31 Mar 2023 19:22:16 GMT
strict-transport-security: max-age=31536000; includeSubDomains
vary: Origin, Accept-Encoding
x-amz-request-id: 1751975798C70DCE
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: max-age=28800
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=whnyYhgDvNtgORTjDIgCJN8LMLOa8%2BWKTsyVyk9BoH0TAEV0k76jZV1MnAvaWmFQT2qnCIh9%2FYS%2BQoAXnkN3j4sR4u1FJuivb0DzycShemHWADOlibKEXOfcctiGzwZcBzCTUA0O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b0af5fdda3d0b5a-AMS
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
content-range: bytes 0-4347422/4347423
age: 108
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/jquery.min.js
IP 172.64.167.9:0
GET /sb/ssp/vpn/classic-push/big1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:07 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 10:06:46 GMT
etag: W/"62136436-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3756727
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ujKu1xO2%2Bb1J6%2BBXx3MPyg7NlWP7LS0mGteOSdMVshIg3PwXXaOpGTv7TQrKDpPf1MxX4IraCpVa5FxYGgMyDQry387F9IO32QGAODT5UWhzzftm0qc%2Bly4YWSiIsYgfPJJdzGPI5z1H"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af8851a41488b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
vpixrlkggv.com/lv/esnk/1956917/code.js
62.122.171.6200 OK 0 B URL HTTP/2 vpixrlkggv.com/lv/esnk/1956917/code.js
IP 62.122.171.6:0
GET /lv/esnk/1956917/code.js HTTP/1.1
Host: vpixrlkggv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://archivebate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: application/javascript
last-modified: Wed, 29 Mar 2023 15:52:16 GMT
vary: Accept-Encoding
etag: W/"64245eb0-1ab11"
x-js-ab1: var16
timing-allow-origin: *
accept-ch: sec-ch-ua,ua,sec-ch-ua-platform,ua-platform,sec-ch-ua-mobile,ua-mobile,sec-ch-ua-full-version,ua-full-version,sec-ch-ua-platform-version,ua-platform-version,sec-ch-ua-arch,ua-arch,sec-ch-ua-bitness,ua-bitness,sec-ch-ua-model,ua-model,sec-ch-lang,lang,sec-ch-save-data,save-data,sec-ch-width,width,sec-ch-viewport-width,viewport-width,sec-ch-viewport-height,viewport-height,sec-ch-dpr,dpr,sec-ch-device-memory,device-memory,sec-ch-rtt,rtt,sec-ch-downlink,downlink,sec-ch-ect,ect,sec-ch-prefers-color-scheme,sec-ch-prefers-reduced-motion,sec-ch-prefers-reduced-transparency,sec-ch-prefers-contrast,sec-ch-forced-colors,sec-ch-prefers-reduced-data
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/script.js
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/ssp/vpn/classic-push/big1/js/script.js
IP 172.64.167.9:0
GET /sb/ssp/vpn/classic-push/big1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mixdrop.co
Connection: keep-alive
Referer: https://mixdrop.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:07 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 10:06:46 GMT
etag: W/"62136436-3be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3209828
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xb3sOdzweZHXLpbFiBbTbhKwBumfJfFX2cSjwS6GSIF8oOfs0d8BVxgzBcZAvq0bGKvCqXH1QFxLgk1dYfpRWgn3DuhqJMvxX7KO3csAEtTubZOYTNnIHsxMLfYXALtZF3StIZzPgO5L"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b0af885de8f4167-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
archivebate.com/watch/603937
104.21.94.222200 OK 0 B URL HTTP/2 archivebate.com/watch/603937
IP 104.21.94.222:0
GET /watch/603937 HTTP/1.1
Host: archivebate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 31 Mar 2023 19:24:04 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
vary: Accept-Encoding
cf-cache-status: DYNAMIC
set-cookie: XSRF-TOKEN=eyJpdiI6IkNVYmJzUXlzRTJTR0N2bkNLeGxTaUE9PSIsInZhbHVlIjoidWlXYTBEbUxTNHRzdmtPMXRKMU0vY0cwenpXUzNjNHdDZXBHV1QrQXVTOVBxRFFzRzIya0ZmOWdsNUZjZklhQUhnRU0wTEkrNjBpcUwyVWd3NmVZMlpMcHBZNVdTN1dZRWlhNGJ5TUNCTi9LOGFuUDByOGJpc2pFdjYzL0RsVjYiLCJtYWMiOiJkOTZmNTRjYzlhZjdhMzY4OWFmNmI1OTE3MzJhNTJmYjI2YmZlYzBhZDM4NWU4NzA1OTkyOWUzY2NkYWIyMjRjIiwidGFnIjoiIn0%3D; expires=Fri, 31 Mar 2023 21:24:04 GMT; Max-Age=7200; path=/; samesite=lax
archivebate_session=eyJpdiI6IjJmME5CTzRLSkxONjI1cFhuZEEzVEE9PSIsInZhbHVlIjoiRnlaT1lhRStSeXF3aDNRZVRZaVpla09yY0lKUm5DQ2VYSU9NNEFwZXJWT0E0TXlqRTEyUHExQ05wZjBwdEwwSWh5dENydDRVZkhmUDF2VlRPdW95TFRFVlByM0lhQUJOK05Vd0ZvVzBxZ3VrOWlLbzQybXlwN3B3N2dKS2ZyeEQiLCJtYWMiOiJkMzliM2Q5NTE3N2FmODM3M2ZlZDgzNWRiNDFhNDg2NGNlMzcwM2UzZjNhMjkyN2M4YWJmZTNhYzZmODgyMDI2IiwidGFnIjoiIn0%3D; expires=Fri, 31 Mar 2023 21:24:04 GMT; Max-Age=7200; path=/; httponly; samesite=lax
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ptKeSkjuNveWQFbx7mDj215SahDyVoJIvuCQ7CfC7psUvlGE66V32MN4sVLKqympkPbKWXuAtW0R6LPNUQpNQpzALlm5dpdxXLVU5FKlCPCX4SOyPmtKps%2BHNt%2BtcTSL1zE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b0af8688843b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2