| freetrckr.com/bid | 173.214.240.15 | 302 Found | 0 B |
IP173.214.240.15:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bid HTTP/1.1
Host: freetrckr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Fri, 24 Mar 2023 11:41:46 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://feed.rexadvert.xyz/bid?id=3001&token=e807a67b57ff274565f78878190ec04e&sub_id=tb_planet
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbea3185dd820a31c1981317f37c3456d 1a548a5d27270fc11df9011837a7149571cedd78 469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4026
Expires: Fri, 24 Mar 2023 12:48:52 GMT
Date: Fri, 24 Mar 2023 11:41:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash210a2a42cfc4f4aced144f5de9babcc6 ece6ecfb2db8d036c3bfc7f02f8ea387e3f965db 59553a312d3fb34f1f0aea469f7e7cc810ff9993481ddbd73ea5d461cf97ed51
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59553A312D3FB34F1F0AEA469F7E7CC810FF9993481DDBD73EA5D461CF97ED51"
Last-Modified: Wed, 22 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3263
Expires: Fri, 24 Mar 2023 12:36:09 GMT
Date: Fri, 24 Mar 2023 11:41:46 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash4ad6984a756720fbfff47b37a75513a2 355e35258114452af8b9638985ed9d8ef3bf0aca 43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 24 Mar 2023 11:27:37 GMT
content-type: application/json
age: 849
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashdc2752d83fbed82852248898a132467a b27a6b4af2e07663a58cafb641513f7224c7a7c3 ea7838393d83805a7b8a2b01bd09e4423617c4da285b983a11e9ba36266810d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA7838393D83805A7B8A2B01BD09E4423617C4DA285B983A11E9BA36266810D5"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13037
Expires: Fri, 24 Mar 2023 15:19:03 GMT
Date: Fri, 24 Mar 2023 11:41:46 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashe7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: g0yOmAfT7ivRuf1SBW2bZT3+yb8y2haTcB66LOIzEm7vU/30uvP1n5q0oAKqk6eNTxbFfqn0CIM=
x-amz-request-id: K1N519S84TNX4XH4
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 24 Mar 2023 11:00:20 GMT
age: 2486
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Mar 2023 11:41:46 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash69e6a8f150790c1873b0db02955b4db1 df7b34218c5567868ad2d2ab95372204880bb963 4e69e0f47de05c69098463e1f6ae6a07603930736f5ed2f9aea6e46e2c550d40
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4E69E0F47DE05C69098463E1F6AE6A07603930736F5ED2F9AEA6E46E2C550D40"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5486
Expires: Fri, 24 Mar 2023 13:13:13 GMT
Date: Fri, 24 Mar 2023 11:41:47 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 24 Mar 2023 11:17:23 GMT
age: 1464
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash18b877ebbad1529e4bd91e12220d91c4 a3d64fb3d9cc1fe3a29b261c4ec9acfe134dfedc 7001d3ef847c7002ac15155f0dfcc0a369f19860e85c8e90530f1e7b2dd88f09
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7001D3EF847C7002AC15155F0DFCC0A369F19860E85C8E90530F1E7B2DD88F09"
Last-Modified: Wed, 22 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6439
Expires: Fri, 24 Mar 2023 13:29:06 GMT
Date: Fri, 24 Mar 2023 11:41:47 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 35.165.148.5 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.165.148.5:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yPD6Yb6f32f456yyCIC3sg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: P9rELeVkPZFFbjFdviBNWk0G/jo=
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash80f42902195e10dac68c2e2faa28cef5 33380dc7a814fa88e190d88be14b5a811c08d41c 7662b256e80388ecd84a0224b7d41a292d7f986e46c545c65f4d0c1553ba514d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7662B256E80388ECD84A0224B7D41A292D7F986E46C545C65F4D0C1553BA514D"
Last-Modified: Wed, 22 Mar 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12530
Expires: Fri, 24 Mar 2023 15:10:38 GMT
Date: Fri, 24 Mar 2023 11:41:48 GMT
Connection: keep-alive
|
|
| s-img.mgid.com/g/13780643/453x227/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzI6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA3LzEwMTkyNC84OGQwOWE2MDFjMGMzMWVjMzhhNDY1M2JlOGRmNDA0NC5qcGVn.webp?v=1679658107-dO0rIgjXigK-_gSLvo-L1OfedgY_3d0lr9VwBsXFNJk | 104.19.134.78 | 200 OK | 22 kB |
URL HTTP/2s-img.mgid.com/g/13780643/453x227/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzI6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA3LzEwMTkyNC84OGQwOWE2MDFjMGMzMWVjMzhhNDY1M2JlOGRmNDA0NC5qcGVn.webp?v=1679658107-dO0rIgjXigK-_gSLvo-L1OfedgY_3d0lr9VwBsXFNJk IP104.19.134.78:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 453x227, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hasha20201d6e822a00d7f58135241fc8107 9927241b8c3dd24f028168d016ddcbf6ed849bba ef99acc5a8c4fcb5c177ae34885a6c757f07e19860bfa4c46ee0fd2526fa3ac9
GET /g/13780643/453x227/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzI6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA3LzEwMTkyNC84OGQwOWE2MDFjMGMzMWVjMzhhNDY1M2JlOGRmNDA0NC5qcGVn.webp?v=1679658107-dO0rIgjXigK-_gSLvo-L1OfedgY_3d0lr9VwBsXFNJk HTTP/1.1
Host: s-img.mgid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bibleauto3.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:41:48 GMT
content-type: image/webp
content-length: 21786
x-mg-request-uuid: 31326be4-6bd1-482e-b827-7f70e320e0ad
access-control-allow-origin: *
last-modified: Thu, 11 Aug 2022 08:44:52 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 12920416
accept-ranges: bytes
set-cookie: __cf_bm=wrMnFTVAMa82fqhsKCie3v5mahLxZCsOzIqoSHjLAls-1679658108-0-AVaDvcOBP70Yd6WPW/rcnlWY7YQQ1J89bAsuxXGCT+ZbccKzGJLEIFdl4SlPsr4l/UQXLHAeQoYFsOobIMcP0pE=; path=/; expires=Fri, 24-Mar-23 12:11:48 GMT; domain=.mgid.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 7acea5aa9cae0b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashee90ddfbbe80c960f79e4dc02fc0262b 94bce2b76308d2135544dfccf31bd0d9f88af4d9 ed01967238a15bca10092d62913e416eb931674b86469648973caa1d13912274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.googleapis.com/css?family=Roboto:400,700,400i&subset=cyrillic | 172.217.21.170 | 200 OK | 1.1 kB |
URL HTTP/2fonts.googleapis.com/css?family=Roboto:400,700,400i&subset=cyrillic IP172.217.21.170:0
Hash7f3f1f9f75a0670eb8f729be7d80cf59 dd2c0f110e0507988cb35787958be853e2d96df3 3debcea222a58d5410376a7f8bae782d98bd4e397826c0e3babd147ee1ccc285
GET /css?family=Roboto:400,700,400i&subset=cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bibleauto3.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Mar 2023 11:41:48 GMT
date: Fri, 24 Mar 2023 11:41:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash86afe28452fa1cefc542bf81d2c20229 55088b6372ad288338c419f9ae902768838f7109 a80f510865aab43e4cabcfaafab2a9b5d0abce1e991d31090a51b35bc66280df
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80F510865AAB43E4CABCFAAFAB2A9B5D0ABCE1E991D31090A51B35BC66280DF"
Last-Modified: Thu, 23 Mar 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6591
Expires: Fri, 24 Mar 2023 13:31:39 GMT
Date: Fri, 24 Mar 2023 11:41:48 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashdd5380daefecc523858637dcbdda1cf3 0ec5910f57d8ab84179a5d0687e6b16d2cacfb1a e58977b0dceb06edf2a7c752aa433c71b3bca571e814a7a83bbddc75d4428c0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashdd5380daefecc523858637dcbdda1cf3 0ec5910f57d8ab84179a5d0687e6b16d2cacfb1a e58977b0dceb06edf2a7c752aa433c71b3bca571e814a7a83bbddc75d4428c0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bibleauto3.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 4506
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bibleauto3.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 4507
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashdd5380daefecc523858637dcbdda1cf3 0ec5910f57d8ab84179a5d0687e6b16d2cacfb1a e58977b0dceb06edf2a7c752aa433c71b3bca571e814a7a83bbddc75d4428c0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb62c9b9530dd66bb7f03ba2ce3d835da bf8560766de78dd925e395f59610ab2f1335e565 62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9177
Expires: Fri, 24 Mar 2023 14:14:46 GMT
Date: Fri, 24 Mar 2023 11:41:49 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb62c9b9530dd66bb7f03ba2ce3d835da bf8560766de78dd925e395f59610ab2f1335e565 62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9177
Expires: Fri, 24 Mar 2023 14:14:46 GMT
Date: Fri, 24 Mar 2023 11:41:49 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb62c9b9530dd66bb7f03ba2ce3d835da bf8560766de78dd925e395f59610ab2f1335e565 62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9177
Expires: Fri, 24 Mar 2023 14:14:46 GMT
Date: Fri, 24 Mar 2023 11:41:49 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb62c9b9530dd66bb7f03ba2ce3d835da bf8560766de78dd925e395f59610ab2f1335e565 62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9177
Expires: Fri, 24 Mar 2023 14:14:46 GMT
Date: Fri, 24 Mar 2023 11:41:49 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashb62c9b9530dd66bb7f03ba2ce3d835da bf8560766de78dd925e395f59610ab2f1335e565 62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9177
Expires: Fri, 24 Mar 2023 14:14:46 GMT
Date: Fri, 24 Mar 2023 11:41:49 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48579581-7121-436c-a612-bb4c179f2542.jpeg | 34.120.237.76 | 200 OK | 4.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48579581-7121-436c-a612-bb4c179f2542.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf46d765cbcbbcd9707a21eec12d80002 d9bab36f53de76263a67bc34364e33bed28d35cd 772e85ac55db0fc3ca75329e0197c7caeff466e90b5cf85df7ccb44a85a253f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48579581-7121-436c-a612-bb4c179f2542.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4438
x-amzn-requestid: ce3cbb97-2a19-4499-8ab7-18cf5f99b5ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CK85SG3_oAMFQcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641aa83b-2750db5d028ac4ac54a865f8;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 07:03:23 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: s3be2clZAQ4R0f442UhQKzqwRKV4cO9mRaWArwIGHl42yU7N2JG36Q==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 3236f234d59c0fda99b416088c283260.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 13:45:06 GMT
age: 79003
etag: "d9bab36f53de76263a67bc34364e33bed28d35cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg | 34.120.237.76 | 200 OK | 4.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash85351059b67b0a42eda7e69a31b3b4b4 b798268806dc2f79f033e5872676019faf0e0cc1 86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: vOBDFA2LzOIp_0dMXApotrithfiToWtpM2xMRyx1pWAE86olKT6EpQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 02:36:43 GMT
age: 32706
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F588b7484-3598-4d13-aaa7-b86cf3e62e45.jpeg | 34.120.237.76 | 200 OK | 7.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F588b7484-3598-4d13-aaa7-b86cf3e62e45.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash58c58176f0c5825828c8ca12e6471fe1 fe0f05aaa351cfcf5d00c6e96fcefefcdeb51480 c3a5d4595188ee57312b636e4c605b368088eeb8be2c86ae5f77e379f51b79f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F588b7484-3598-4d13-aaa7-b86cf3e62e45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7696
x-amzn-requestid: c4e2712e-c6f7-499a-980d-98120ede7b9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPt1Hv3oAMF5wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc658-6b5fc3f005b6d210710a267a;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:36:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: o9mJZed_h1-gITgHyFrt2GJ_N1jCIadpgm4dhEIKT4axJZwhKT8c0w==
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 21:43:19 GMT
age: 50310
etag: "fe0f05aaa351cfcf5d00c6e96fcefefcdeb51480"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49e3bd59-44bb-4c85-81cb-08614cf98777.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49e3bd59-44bb-4c85-81cb-08614cf98777.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash89cd024b8021bb2873b0b8972c77cb47 9aea167a3ebf62d91e705433f13b9fb0194daad4 454e0b9e6e12f7a8a1a87913fb7f539358bbfdb1371e30abd472c897082c2a38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49e3bd59-44bb-4c85-81cb-08614cf98777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8490
x-amzn-requestid: 7444a745-87e0-4424-92fd-630bf7cacc0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQP4QFRxoAMF3Yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc69a-112bec36430d78e3733e6e12;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:37:31 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: PCrktePti3HtIntww9Fq70JsHe6rENG1L_AQX6avgkSNDxnaYOtOSQ==
via: 1.1 626ad4a6bf529166d2aad94a2957694c.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 22:00:43 GMT
etag: "9aea167a3ebf62d91e705433f13b9fb0194daad4"
content-type: image/jpeg
age: 49266
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd357d16d-d40f-4b91-81cc-69aeb80f25fe.jpeg | 34.120.237.76 | 200 OK | 6.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd357d16d-d40f-4b91-81cc-69aeb80f25fe.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash68798f0963b37143bcbec5c6e08f2efe 00bb4ca04f3e52c8d9eacec7449a9cf49f6c312a 7c54bbd23a76d8b4c15e352b92e33c7164916899a5af71ba34a7af884b8a0944
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd357d16d-d40f-4b91-81cc-69aeb80f25fe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6403
x-amzn-requestid: aab6628c-f612-4b57-9ae1-0017714e19c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPHyEIkIAMF4JA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc564-2110e0d35561ab794e44e966;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:32:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: V4F_j_MuQgkRSKgCVI8OaJH2ZUbo6FcSk6Qv-BB4uAfm84jsQ2qklg==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 21:43:19 GMT
age: 50310
etag: "00bb4ca04f3e52c8d9eacec7449a9cf49f6c312a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11f3110-26b3-4e61-a4be-71f97e3d6614.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11f3110-26b3-4e61-a4be-71f97e3d6614.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash04db6085e8ec938c1385fb33b32ae036 0f173b8971723ec380a9610b3dda8f64890f6f37 873d5942c34057339f7a9c53a9d4cdc3a0b82f01223f851898da0ebbe0a628bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd11f3110-26b3-4e61-a4be-71f97e3d6614.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7482
x-amzn-requestid: 843e4bba-1550-44c4-be10-dd333148f83d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CQPHxFuuIAMFvmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641cc564-03f5d2675850409e70748490;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 21:32:20 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: i3f56KYdhzWqiBtE9-vSMBC17mWa0qZfxQb3AmHcNvApYKse8O3DdQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Mar 2023 21:56:06 GMT
age: 49543
etag: "0f173b8971723ec380a9610b3dda8f64890f6f37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashffb41a8db9fd0483b19efb4cac9afd18 b420da21396463fc62ee21de727475ba60e63b94 8178a8f071740cb385b6b7a49ed3a0da4436fe290614c0bdc0cf4e8ebb7ae855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8178A8F071740CB385B6B7A49ED3A0DA4436FE290614C0BDC0CF4E8EBB7AE855"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12349
Expires: Fri, 24 Mar 2023 15:07:38 GMT
Date: Fri, 24 Mar 2023 11:41:49 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashffb41a8db9fd0483b19efb4cac9afd18 b420da21396463fc62ee21de727475ba60e63b94 8178a8f071740cb385b6b7a49ed3a0da4436fe290614c0bdc0cf4e8ebb7ae855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8178A8F071740CB385B6B7A49ED3A0DA4436FE290614C0BDC0CF4E8EBB7AE855"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8093
Expires: Fri, 24 Mar 2023 13:56:42 GMT
Date: Fri, 24 Mar 2023 11:41:49 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashffb41a8db9fd0483b19efb4cac9afd18 b420da21396463fc62ee21de727475ba60e63b94 8178a8f071740cb385b6b7a49ed3a0da4436fe290614c0bdc0cf4e8ebb7ae855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8178A8F071740CB385B6B7A49ED3A0DA4436FE290614C0BDC0CF4E8EBB7AE855"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12379
Expires: Fri, 24 Mar 2023 15:08:08 GMT
Date: Fri, 24 Mar 2023 11:41:49 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashffb41a8db9fd0483b19efb4cac9afd18 b420da21396463fc62ee21de727475ba60e63b94 8178a8f071740cb385b6b7a49ed3a0da4436fe290614c0bdc0cf4e8ebb7ae855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8178A8F071740CB385B6B7A49ED3A0DA4436FE290614C0BDC0CF4E8EBB7AE855"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8068
Expires: Fri, 24 Mar 2023 13:56:17 GMT
Date: Fri, 24 Mar 2023 11:41:49 GMT
Connection: keep-alive
|
|
| s-img.adskeeper.com/g/8193519/453x227/0x0x631x316/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDEvMTAxOTI0Lzk2ZDhiNjBmNGJlYWExYWE4YWJmNjU5M2EwNWUzMWIyLmpwZWc.webp?v=1679658107-oc3roSi23c6QhrgcDiZtKB2ZatXlTdVRTYj4YVODbhQ | 104.18.9.46 | 200 OK | 17 kB |
URL HTTP/2s-img.adskeeper.com/g/8193519/453x227/0x0x631x316/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDEvMTAxOTI0Lzk2ZDhiNjBmNGJlYWExYWE4YWJmNjU5M2EwNWUzMWIyLmpwZWc.webp?v=1679658107-oc3roSi23c6QhrgcDiZtKB2ZatXlTdVRTYj4YVODbhQ IP104.18.9.46:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 453x227, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash2d9075622b96d564df1e755fb230b408 5c607c9881c792fe5c8d0f99fb15a4509c0e22ae 380091b4348a8094e17526f6512028534018617fd9b1c45f3ba8357ea6123314
GET /g/8193519/453x227/0x0x631x316/aHR0cDovL2ltZ2hvc3RzLmNvbS90LzIwMjEtMDEvMTAxOTI0Lzk2ZDhiNjBmNGJlYWExYWE4YWJmNjU5M2EwNWUzMWIyLmpwZWc.webp?v=1679658107-oc3roSi23c6QhrgcDiZtKB2ZatXlTdVRTYj4YVODbhQ HTTP/1.1
Host: s-img.adskeeper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bibleauto3.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:41:49 GMT
content-type: image/webp
content-length: 16822
x-mg-request-uuid: 7434add9-a9c2-4a0f-949f-b4de4ceca161
access-control-allow-origin: *
last-modified: Tue, 12 Jul 2022 08:39:37 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 50265
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7acea5ae7e10b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| s-img.adskeeper.com/g/14137483/453x227/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzI6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA4LzEwMTkyNC9jMThlYTYyZTVkOTVmMGNjMjJlZGVkYmI2ZDRjNzU0YS5qcGVn.webp?v=1679658107-Dl-tA6V7E1dw0sWHHHqfyiLPM-Ve3jOu0rZSb8u3Sn4 | 104.18.9.46 | 200 OK | 14 kB |
URL HTTP/2s-img.adskeeper.com/g/14137483/453x227/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzI6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA4LzEwMTkyNC9jMThlYTYyZTVkOTVmMGNjMjJlZGVkYmI2ZDRjNzU0YS5qcGVn.webp?v=1679658107-Dl-tA6V7E1dw0sWHHHqfyiLPM-Ve3jOu0rZSb8u3Sn4 IP104.18.9.46:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 453x227, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash33fcad26dc797270980385f17940b1ef 5faab0fbcb56fcf5177df19021ed5b43f88cf997 b847f55c4bf9c597f0365c7a43b201187c038e24af0f9c59bcf37bc3ddb835c1
GET /g/14137483/453x227/-/aHR0cDovL2NsLmltZ2hvc3RzLmNvbS9pbWdoL2ltYWdlL2ZldGNoL2FyXzI6MSxjX2ZpbGwsZV9zaGFycGVuOjEwMCxmX2pwZyxnX2ZhY2VzOmF1dG8scV9hdXRvOmdvb2Qsd18xMDIwL2h0dHA6Ly9pbWdob3N0cy5jb20vdC8yMDIyLTA4LzEwMTkyNC9jMThlYTYyZTVkOTVmMGNjMjJlZGVkYmI2ZDRjNzU0YS5qcGVn.webp?v=1679658107-Dl-tA6V7E1dw0sWHHHqfyiLPM-Ve3jOu0rZSb8u3Sn4 HTTP/1.1
Host: s-img.adskeeper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bibleauto3.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:41:49 GMT
content-type: image/webp
content-length: 14200
x-mg-request-uuid: 49567171-e5cb-497c-829f-d77db1b10b71
access-control-allow-origin: *
last-modified: Thu, 22 Sep 2022 10:06:58 GMT
cache-control: immutable, max-age=31536000
cf-cache-status: HIT
age: 30469
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7acea5ae7e15b4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| bibleauto3.xyz/event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_3286_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNEYWM2YzhlYzVmMTNiYzAxYjE0YzYwOTk3ZDE0NWJlYjklMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=972313521&i=1 | 173.214.240.15 | 302 Found | 0 B |
URL HTTP/2bibleauto3.xyz/event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_3286_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNEYWM2YzhlYzVmMTNiYzAxYjE0YzYwOTk3ZDE0NWJlYjklMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=972313521&i=1 IP173.214.240.15:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_3286_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNEYWM2YzhlYzVmMTNiYzAxYjE0YzYwOTk3ZDE0NWJlYjklMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=972313521&i=1 HTTP/1.1
Host: bibleauto3.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bibleauto3.xyz/sw_5f86e4c1-414d-97fc-efe7-6e4c7814f31d_102_0_3001.js
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 24 Mar 2023 11:41:48 GMT
location: https://xml.planetpush.net/icon?sid=ac6c8ec5f13bc01b14c60997d145beb9&rnd=167552615
X-Firefox-Spdy: h2
|
|
| smrejj.com/dsp/ph/icm?aid=4339381674634595630&mid=0&sid=1159&t=1679658107&subid=965782b72bf14751b84c57d8626bf855 | 192.243.58.97 | 302 Found | 0 B |
URL HTTP/2smrejj.com/dsp/ph/icm?aid=4339381674634595630&mid=0&sid=1159&t=1679658107&subid=965782b72bf14751b84c57d8626bf855 IP192.243.58.97:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dsp/ph/icm?aid=4339381674634595630&mid=0&sid=1159&t=1679658107&subid=965782b72bf14751b84c57d8626bf855 HTTP/1.1
Host: smrejj.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bibleauto3.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.18.0
date: Fri, 24 Mar 2023 11:41:49 GMT
content-length: 0
location: https://i.wmgtr.com/cic/ANlKCHHc5Q-WFAQipir_cJ04zjWdeNJM.png
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashffb41a8db9fd0483b19efb4cac9afd18 b420da21396463fc62ee21de727475ba60e63b94 8178a8f071740cb385b6b7a49ed3a0da4436fe290614c0bdc0cf4e8ebb7ae855
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8178A8F071740CB385B6B7A49ED3A0DA4436FE290614C0BDC0CF4E8EBB7AE855"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8066
Expires: Fri, 24 Mar 2023 13:56:17 GMT
Date: Fri, 24 Mar 2023 11:41:51 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash608321b2d7d9f849b46e7fb22419d291 6d6d7ea8959a3ac466cbb69b5e08547ad1bc6207 da8bf75801fbc541fccc8c44d03b9ceba2f92bddeafe0c54f260072eabb28d81
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.wmgtr.com/cic/ANlKCHHc5Q-WFAQipir_cJ04zjWdeNJM.png | 45.133.44.32 | 200 OK | 12 kB |
URL HTTP/2i.wmgtr.com/cic/ANlKCHHc5Q-WFAQipir_cJ04zjWdeNJM.png IP45.133.44.32:0 ASN#39572 DataWeb Global Group B.V.
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 192x192, components 3\012- data Hash78d37a37b180e3b03e8a420b01108de3 38d6079eaecd99887c9b1d3f1780049063496724 3c9d3eda2edacfe007171241ad6e828f23ab1286f932f6659d41f8bdcad3d8ce
GET /cic/ANlKCHHc5Q-WFAQipir_cJ04zjWdeNJM.png HTTP/1.1
Host: i.wmgtr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bibleauto3.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:41:49 GMT
content-type: image/jpeg
server: nginx/1.19.0
x-xss-protection: 1; mode=block
x-content-type-option: nosniff
cache-control: max-age=82800
expires: Sat, 25 Mar 2023 10:41:49 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| clck.adskeeper.com/ghits/8193519/i/57483181/2/src/3578/pp/1/1?h=QT2T710xCabHfRIveixCYdiQWXY9EKE4ZAuI36-TJwnRHboRNtpIuloUIJhl1hYxn1fy9S_KNAGUJByXDbxGww**&rid=dbfab439-ca38-11ed-af18-00620b51d1f0&tt=Direct&att=3&pubsrcid=1264621&afrd=8&prid=1&ct=1&st=60&h2=VZbBZg6icyMcxAqi5yjbDJxHjsRuoQBD5Mkr2OKoWXo* | 104.18.8.46 | 200 OK | 6.4 kB |
URL HTTP/2clck.adskeeper.com/ghits/8193519/i/57483181/2/src/3578/pp/1/1?h=QT2T710xCabHfRIveixCYdiQWXY9EKE4ZAuI36-TJwnRHboRNtpIuloUIJhl1hYxn1fy9S_KNAGUJByXDbxGww**&rid=dbfab439-ca38-11ed-af18-00620b51d1f0&tt=Direct&att=3&pubsrcid=1264621&afrd=8&prid=1&ct=1&st=60&h2=VZbBZg6icyMcxAqi5yjbDJxHjsRuoQBD5Mkr2OKoWXo* IP104.18.8.46:0
Hash14505e6d057cf19535bc134ef9b5d5a2 b92fd2eb642cd19a85a55bd58c272cb3dce6c5e5 beab4d333015612abaf82a8be5781b6294d8b4add1bb995534345b91f2a9dd24
GET /ghits/8193519/i/57483181/2/src/3578/pp/1/1?h=QT2T710xCabHfRIveixCYdiQWXY9EKE4ZAuI36-TJwnRHboRNtpIuloUIJhl1hYxn1fy9S_KNAGUJByXDbxGww**&rid=dbfab439-ca38-11ed-af18-00620b51d1f0&tt=Direct&att=3&pubsrcid=1264621&afrd=8&prid=1&ct=1&st=60&h2=VZbBZg6icyMcxAqi5yjbDJxHjsRuoQBD5Mkr2OKoWXo* HTTP/1.1
Host: clck.adskeeper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:41:52 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
accept-ch: sec-ch-ua-full-version,sec-ch-ua-full-version-list,sec-ch-ua-platform-version,sec-ch-ua-arch,sec-ch-ua-wow64,sec-ch-ua-bitness,sec-ch-ua-model
cache-control: no-cache
expires: Thu, 01 Jan 1970 00:00:01 GMT
x-robots-tag: noindex
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7acea5c04927b4ed-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashac8d4dabc0044d3f9300e6f09b86bc68 331a761e7d051c94831a30254ca3ce25b2e7dd2d 05ef2753d9e9b8cd1f09c88eb1cc42ee88ffd4db561c9a05e069373c24112d60
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| script.hotjar.com/modules.28d3841e186b9c9ba90d.js | 54.230.111.44 | 200 OK | 69 kB |
URL HTTP/2script.hotjar.com/modules.28d3841e186b9c9ba90d.js IP54.230.111.44:0
File typeUnicode text, UTF-8 text, with very long lines (50842) Hash4cbbf978eddc3d3ddd90422a5010c778 f8831a39cf776b3fb5cd11597acd8e9cfc71ca29 6d2f8f0f136af1974a39a267d75543f8d9c7d92c81192ff5386f12c230501a0f
GET /modules.28d3841e186b9c9ba90d.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clck.adskeeper.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 69063
date: Fri, 24 Mar 2023 11:14:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "4cbbf978eddc3d3ddd90422a5010c778"
last-modified: Fri, 24 Mar 2023 11:13:33 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: emBZvI7WCBtZP16WAR_isAZEMGzQwnBz0dVHB5h8wH3idjwmUGNlAA==
age: 1666
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hasha5974456d5b0e7b60127595d497e7105 301f44b5137d00ec286c36869a5ae233b6da8881 67e273220b1367d1001f870bdefca145c98dbf6cbe4d0c5e8dcb8f184018d5a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hasha5974456d5b0e7b60127595d497e7105 301f44b5137d00ec286c36869a5ae233b6da8881 67e273220b1367d1001f870bdefca145c98dbf6cbe4d0c5e8dcb8f184018d5a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 2.0 kB |
IP216.58.211.3:0
File typegzip compressed data, from Unix\012- data Hash6d98a6e1ec0af3e349ab70bd1d2c62ae ea1bd4b24fb07ee1c16bc90cf4ea3c5d2fdb2f68 881aeb3d5e06c0116412a532ea4442726c3bb480900a78b22f1a1c5ce7b28cf3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashdd5380daefecc523858637dcbdda1cf3 0ec5910f57d8ab84179a5d0687e6b16d2cacfb1a e58977b0dceb06edf2a7c752aa433c71b3bca571e814a7a83bbddc75d4428c0f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bibleauto3.xyz/event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_0_3001?payload=JTdCJTIyaCUyMiUzQSUyMnhtbC5wbGFuZXRwdXNoLm5ldCUyMiUyQyUyMnUlMjIlM0ElNUIlMjI4ODYtYWM2YzhlYzVmMTNiYzAxYjE0YzYwOTk3ZDE0NWJlYjktMzI4Ni0wLjAwMDM1NCUyMiUyQyUyMjg4Ni1mYTQ2NGM3ZmQ4YzM5NzRmYjViODIzNzIzOGEyNjNkMC0xOTc1LTAuMDAwNDM1JTIyJTJDJTIyODg2LWM5ZjcxN2NjYTI2NmU2MGU5OTliMjI3YmFhZmJkYjFhLTEyMjYtMC4wMDEwNjMlMjIlMkMlMjI4ODYtNjczYmExYzM2ODc1MjU1MTg0ZWE0NzM4ODIzMDUxMzYtMTk2Ni0wLjAwMDQzNSUyMiU1RCU3RA%3D%3D&t=1679658108373&rnd=337069468&js=1&io=0&if=0 | 173.214.240.15 | 200 OK | 78 kB |
URL HTTP/2bibleauto3.xyz/event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_0_3001?payload=JTdCJTIyaCUyMiUzQSUyMnhtbC5wbGFuZXRwdXNoLm5ldCUyMiUyQyUyMnUlMjIlM0ElNUIlMjI4ODYtYWM2YzhlYzVmMTNiYzAxYjE0YzYwOTk3ZDE0NWJlYjktMzI4Ni0wLjAwMDM1NCUyMiUyQyUyMjg4Ni1mYTQ2NGM3ZmQ4YzM5NzRmYjViODIzNzIzOGEyNjNkMC0xOTc1LTAuMDAwNDM1JTIyJTJDJTIyODg2LWM5ZjcxN2NjYTI2NmU2MGU5OTliMjI3YmFhZmJkYjFhLTEyMjYtMC4wMDEwNjMlMjIlMkMlMjI4ODYtNjczYmExYzM2ODc1MjU1MTg0ZWE0NzM4ODIzMDUxMzYtMTk2Ni0wLjAwMDQzNSUyMiU1RCU3RA%3D%3D&t=1679658108373&rnd=337069468&js=1&io=0&if=0 IP173.214.240.15:0
Hash03ef383f7afac4495440cb8878b5ed16 d67e5a654b346a8d1a24e27f8fb640c71a6a6fa6 59fa179a1caa4e2b10aa62b7c94db20dee1d48f246de09a45c29d55a4ffb943d
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_0_3001?payload=JTdCJTIyaCUyMiUzQSUyMnhtbC5wbGFuZXRwdXNoLm5ldCUyMiUyQyUyMnUlMjIlM0ElNUIlMjI4ODYtYWM2YzhlYzVmMTNiYzAxYjE0YzYwOTk3ZDE0NWJlYjktMzI4Ni0wLjAwMDM1NCUyMiUyQyUyMjg4Ni1mYTQ2NGM3ZmQ4YzM5NzRmYjViODIzNzIzOGEyNjNkMC0xOTc1LTAuMDAwNDM1JTIyJTJDJTIyODg2LWM5ZjcxN2NjYTI2NmU2MGU5OTliMjI3YmFhZmJkYjFhLTEyMjYtMC4wMDEwNjMlMjIlMkMlMjI4ODYtNjczYmExYzM2ODc1MjU1MTg0ZWE0NzM4ODIzMDUxMzYtMTk2Ni0wLjAwMDQzNSUyMiU1RCU3RA%3D%3D&t=1679658108373&rnd=337069468&js=1&io=0&if=0 HTTP/1.1
Host: bibleauto3.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 24 Mar 2023 11:41:51 GMT
content-type: application/javascript
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clck.adskeeper.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 4512
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://clck.adskeeper.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 4511
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hasha563513e8fb14fb6796ff13a072cd3db 3e1d51e451b3c450c1213d3fce208e84522b1511 78ecd87f634efd2b5b6644a9d97285807cb26452571be0cef89f6d84dd3b32c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ssl.google-analytics.com/ga.js | 142.250.74.72 | 200 OK | 17 kB |
URL HTTP/2ssl.google-analytics.com/ga.js IP142.250.74.72:0
File typeASCII text, with very long lines (1305) Hash01d5892e6e243b52998310c2925b9f3a 58180151b6a6ee4af73583a214b68efb9e8844d4 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clck.adskeeper.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Fri, 24 Mar 2023 10:41:41 GMT
expires: Fri, 24 Mar 2023 12:41:41 GMT
cache-control: public, max-age=7200
age: 3612
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hasha563513e8fb14fb6796ff13a072cd3db 3e1d51e451b3c450c1213d3fce208e84522b1511 78ecd87f634efd2b5b6644a9d97285807cb26452571be0cef89f6d84dd3b32c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 11:41:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bibleauto3.xyz/event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_1975_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNEZmE0NjRjN2ZkOGMzOTc0ZmI1YjgyMzcyMzhhMjYzZDAlMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=170117798&i=1 | 173.214.240.15 | 302 Found | 0 B |
URL HTTP/2bibleauto3.xyz/event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_1975_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNEZmE0NjRjN2ZkOGMzOTc0ZmI1YjgyMzcyMzhhMjYzZDAlMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=170117798&i=1 IP173.214.240.15:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_1975_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNEZmE0NjRjN2ZkOGMzOTc0ZmI1YjgyMzcyMzhhMjYzZDAlMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=170117798&i=1 HTTP/1.1
Host: bibleauto3.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bibleauto3.xyz/sw_5f86e4c1-414d-97fc-efe7-6e4c7814f31d_102_0_3001.js
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 24 Mar 2023 11:41:48 GMT
location: https://xml.planetpush.net/icon?sid=fa464c7fd8c3974fb5b8237238a263d0&rnd=167552615
X-Firefox-Spdy: h2
|
|
| bibleauto3.xyz/event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_1966_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNENjczYmExYzM2ODc1MjU1MTg0ZWE0NzM4ODIzMDUxMzYlMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=982242582&i=1 | 173.214.240.15 | 302 Found | 0 B |
URL HTTP/2bibleauto3.xyz/event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_1966_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNENjczYmExYzM2ODc1MjU1MTg0ZWE0NzM4ODIzMDUxMzYlMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=982242582&i=1 IP173.214.240.15:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_1966_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNENjczYmExYzM2ODc1MjU1MTg0ZWE0NzM4ODIzMDUxMzYlMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=982242582&i=1 HTTP/1.1
Host: bibleauto3.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bibleauto3.xyz/sw_5f86e4c1-414d-97fc-efe7-6e4c7814f31d_102_0_3001.js
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 24 Mar 2023 11:41:48 GMT
location: https://xml.planetpush.net/icon?sid=673ba1c36875255184ea473882305136&rnd=167552615
X-Firefox-Spdy: h2
|
|
| bibleauto3.xyz/favicon.ico | 173.214.240.15 | 404 Not Found | 0 B |
URL HTTP/2bibleauto3.xyz/favicon.ico IP173.214.240.15:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /favicon.ico HTTP/1.1
Host: bibleauto3.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bibleauto3.xyz/sw_5f86e4c1-414d-97fc-efe7-6e4c7814f31d_102_0_3001.js
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Fri, 24 Mar 2023 11:41:49 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| c.adskeeper.co.uk/metric?data=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 | 104.18.11.20 | 200 OK | 0 B |
URL HTTP/2c.adskeeper.co.uk/metric?data=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 IP104.18.11.20:0
GET /metric?data=eyJwYWdlIjp7InVybCI6Imh0dHBzOi8vY2xjay5hZHNrZWVwZXIuY29tL2doaXRzLzgxOTM1MTkvaS81NzQ4MzE4MS8yL3NyYy8zNTc4L3RyL3BwLzEvMS8/aD1RVDJUNzEweENhYkhmUkl2ZWl4Q1lkaVFXWFk5RUtFNFpBdUkzNi1USnduUkhib1JOdHBJdWxvVUlKaGwxaFl4bjFmeTlTX0tOQUdVSkJ5WERieEd3dyUyQSUyQSZwaD1RVDJUNzEweENhYkhmUkl2ZWl4Q1lkaVFXWFk5RUtFNFpBdUkzNi1USnduUkhib1JOdHBJdWxvVUlKaGwxaFl4bjFmeTlTX0tOQUdVSkJ5WERieEd3dyUyQSUyQSZyaWQ9ZGJmYWI0MzktY2EzOC0xMWVkLWFmMTgtMDA2MjBiNTFkMWYwJnB1YnNyY2lkPTEyNjQ2MjEmdHQ9RGlyZWN0JmF0dD0zJnRydD00Jms9MTE0OTcyN2ZjZmZZY1RiUDY1ZlljVGJQN1BmZk1Id3dmIWZNR2ZmSWhmZk16WXVPRGd6TXpNeE1qazRPREk0TVRJMSpESXdmZmFZV0t4QWZmZ2ZmYUhSMGNITTZMeTlqYkdOckxtRmtjMnRsWlhCbGNpNWpiMjB2WjJocGRITXZPREU1TXpVeE8lMjQ5cEx6VTNORGd6TVRneEx6SXZjM0pqTHpNMU56Z3ZjSEF2TSUyNDh4UDJnOVVWUXlWRGN4TUhoRFlXSklabEpKZG1WcGVFTlpaR2xSVjFoWk9VVkxSVFJhUVhWSk16WXRWRXAzYmxKSVltOSUyNFRuUnclMjRYVnNiMVZKJTI0bWhzTVdoWmVHNHhabms1VTE5TFRrRkhWVXBDZVZoRVluaEhkM2NxS2laeWFXUTlaR0ptWVdJME16a3RZMkV6T0MweE1XVmtMV0ZtTVRndE1EQTJNakJpTlRGa01XWXdKblIwUFVScGNtVmpkQ1poZEhROU15WndkV0p6Y21OcFpEMHhNalkwTmpJeEptRm1jbVE5T0Nad2NtbGtQVEVtWTNROU0lMjRaemRBJTNEJTNEZmZmKmZNSHd3KkRjM05YdzFORFUlM0RmZmYhZmNmTWpCOE16WjhOemMwKkRVME5RJTNEJTNEZlVBZlFBZiFmIWZUVzk2YVd4c1klMjQ4MUxqQWdLRmRwYm1SdmQzTWdUbFFnTVRBdU1Ec2dWMmx1TmpRN0lIZzJORHNnY25ZNk1UQTFMakFwSUVkbFkydHZMekl3TVRBd01UQXhJRVpwY21WbWIzZ3ZNVEExTGpBJTNEZmZmVEdsdWRYZ2dlRGcyWHpZMGZNQSUzRCUzRGZMVEY4TFRFJTNEZk1USTRNSHd4TURBeWZkVzVyYm05M2JueDFibXR1YjNkdSpEQSUzRGYhZiFmZ2Zfd09wJTI0ZipmKihQOUYxTH4mZ3JzPS0yJmtwZ3Q9MTcwIn0sInRhZ3MiOlsidHJhbnNpdC10ZW1wbGF0ZTovaG9tZS93d3cvdHJhbnNpdC9hcHAvY29uZmlnLy4uL3ZpZXdzL3BhcnRpYWxzL2dvb2RzL21ldHJpY3MucGh0bWwiLCJ0cmFuc2l0LWRldmljZTpkZXNrdG9wIiwidHJhbnNpdC10eXBlOmdvb2RzIl0sInBlcmZvcm1hbmNlIjp7ImNvbm5lY3RUaW1lIjowLjA2NCwiZG9tQ29tcGxldGUiOjAuNjc2LCJwYWdlTG9hZFRpbWUiOjAuNjc2LCJyZXF1ZXN0U3RhcnRUaW1lIjowLjAwOCwicmVzcG9uc2VFbmRUaW1lIjowLjA3Mn19 HTTP/1.1
Host: c.adskeeper.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clck.adskeeper.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:41:53 GMT
content-type: image/gif
x-mg-request-uuid: 3ca252a4-1890-4ff0-a463-64864e831cf9
access-control-allow-origin: *
access-control-allow-method: HEAD, OPTIONS, POST
access-control-allow-headers: Content-Type, Cache-Control, X-Requested-With, User-Agent, Referer
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7acea5ca288d0b49-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| feed.rexadvert.xyz/bid?id=3001&token=e807a67b57ff274565f78878190ec04e&sub_id=tb_planet | 173.214.240.15 | 302 Found | 0 B |
URL HTTP/2feed.rexadvert.xyz/bid?id=3001&token=e807a67b57ff274565f78878190ec04e&sub_id=tb_planet IP173.214.240.15:0
GET /bid?id=3001&token=e807a67b57ff274565f78878190ec04e&sub_id=tb_planet HTTP/1.1
Host: feed.rexadvert.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Fri, 24 Mar 2023 11:41:47 GMT
location: https://bibleauto3.xyz/sw_5f86e4c1-414d-97fc-efe7-6e4c7814f31d_102_0_3001.js
X-Firefox-Spdy: h2
|
|
| bibleauto3.xyz/sw_5f86e4c1-414d-97fc-efe7-6e4c7814f31d_102_0_3001.js | 173.214.240.15 | 200 OK | 0 B |
URL HTTP/2bibleauto3.xyz/sw_5f86e4c1-414d-97fc-efe7-6e4c7814f31d_102_0_3001.js IP173.214.240.15:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /sw_5f86e4c1-414d-97fc-efe7-6e4c7814f31d_102_0_3001.js HTTP/1.1
Host: bibleauto3.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Fri, 24 Mar 2023 11:41:48 GMT
content-type: text/html
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:700,400 | 172.217.21.170 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Roboto:700,400 IP172.217.21.170:0
GET /css?family=Roboto:700,400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.adskeeper.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Mar 2023 11:41:53 GMT
date: Fri, 24 Mar 2023 11:41:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.hotjar.com/c/hotjar-2590724.js?sv=6 | 54.230.111.39 | 200 OK | 0 B |
URL HTTP/2static.hotjar.com/c/hotjar-2590724.js?sv=6 IP54.230.111.39:0
GET /c/hotjar-2590724.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://clck.adskeeper.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Fri, 24 Mar 2023 11:41:52 GMT
cache-control: max-age=60
etag: W/dcfe15fd4ef2960f0f468066d031b669
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bvbucHBtywO6d56tKlOGWoVZuVr5wPP_kbA1E2ZypX49YoOYl2wnYg==
age: 25
X-Firefox-Spdy: h2
|
|
| bibleauto3.xyz/event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_1226_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNEYzlmNzE3Y2NhMjY2ZTYwZTk5OWIyMjdiYWFmYmRiMWElMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=174545884&i=1 | 173.214.240.15 | 302 Found | 0 B |
URL HTTP/2bibleauto3.xyz/event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_1226_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNEYzlmNzE3Y2NhMjY2ZTYwZTk5OWIyMjdiYWFmYmRiMWElMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=174545884&i=1 IP173.214.240.15:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /event_03d92581-c833-5f09-42f5-1ba7e4ffd66b_102_1226_3001?payload=aHR0cHMlM0ElMkYlMkZ4bWwucGxhbmV0cHVzaC5uZXQlMkZpY29uJTNGc2lkJTNEYzlmNzE3Y2NhMjY2ZTYwZTk5OWIyMjdiYWFmYmRiMWElMjZybmQlM0QxNjc1NTI2MTU%3D&t=1679658108373&rnd=174545884&i=1 HTTP/1.1
Host: bibleauto3.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bibleauto3.xyz/sw_5f86e4c1-414d-97fc-efe7-6e4c7814f31d_102_0_3001.js
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
server: nginx
date: Fri, 24 Mar 2023 11:41:48 GMT
location: https://xml.planetpush.net/icon?sid=c9f717cca266e60e999b227baafbdb1a&rnd=167552615
X-Firefox-Spdy: h2
|
|
| i.wmgtr.com/cim/4mZ9SaRDvaOLuxDjVuhYi1uZWDWO9vN-.png | 45.133.44.32 | 200 OK | 0 B |
URL HTTP/2i.wmgtr.com/cim/4mZ9SaRDvaOLuxDjVuhYi1uZWDWO9vN-.png IP45.133.44.32:0 ASN#39572 DataWeb Global Group B.V.
GET /cim/4mZ9SaRDvaOLuxDjVuhYi1uZWDWO9vN-.png HTTP/1.1
Host: i.wmgtr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bibleauto3.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 11:41:48 GMT
content-type: image/png
server: nginx/1.19.0
x-xss-protection: 1; mode=block
x-content-type-option: nosniff
content-encoding: gzip
cache-control: max-age=82800
expires: Sat, 25 Mar 2023 10:41:48 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| xml.planetpush.net/icon?sid=673ba1c36875255184ea473882305136&rnd=167552615 | 199.182.164.180 | 302 Found | 0 B |
URL HTTP/2xml.planetpush.net/icon?sid=673ba1c36875255184ea473882305136&rnd=167552615 IP199.182.164.180:0
GET /icon?sid=673ba1c36875255184ea473882305136&rnd=167552615 HTTP/1.1
Host: xml.planetpush.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://bibleauto3.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Fri, 24 Mar 2023 11:41:49 GMT
location: https://c.adskeeper.com/c?pv=2&v=0|0|0|QT2T710xCabHfRIveixCYcRssn-vgbQpUMLCCW4uzNoGEIatzV-5IcYc2PAQbeAdjcEkbhMnYBX6y6sTt4fl2Q**&cid=1149658&f=1&h2=VZbBZg6icyMcxAqi5yjbDJxHjsRuoQBD5Mkr2OKoWXo*&rid=dbfabb35-ca38-11ed-af18-00620b51d1f0&psid=1264621&iub=aHR0cHM6Ly9zLWltZy5hZHNrZWVwZXIuY29tL2cvMTQxMzc0ODMvMzI4eDMyOC8tL2FIUjBjRG92TDJOc0xtbHRaMmh2YzNSekxtTnZiUzlwYldkb0wybHRZV2RsTDJabGRHTm9MMkZ5WHpFNk1TeGpYMlpwYkd3c1pWOXphR0Z5Y0dWdU9qRXdNQ3htWDJwd1p5eG5YMlpoWTJWek9tRjFkRzhzY1Y5aGRYUnZPbWR2YjJRc2QxODVOakF2YUhSMGNEb3ZMMmx0WjJodmMzUnpMbU52YlM5MEx6SXdNakl0TURndk1UQXhPVEkwTDJNeE9HVmhOakpsTldRNU5XWXdZMk15TW1Wa1pXUmlZalprTkdNM05UUmhMbXB3WldjLndlYnA_dj0xNjc5NjU4MTA3LWFUV1hNS25RazR1Z0REeEZZaWdkNnN0YVVjdEdqRGROSUprUVNTVDZiOGc=
X-Firefox-Spdy: h2
|
|