1x-xredbet478860.top/
178.253.47.23301 Moved Permanently 162 B IP 178.253.47.23:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: 1x-xredbet478860.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 29 Oct 2022 00:21:21 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://1x-xredbet478860.top/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1e997bec759570aa0db03e31bf013cc2
948fd8263ab0b40f75eaf9495f76a7f39f39d5f9
853f97990fe10ccb34066b1e73e93dac45794f42fb745b266b6a46b9e26d52e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "853F97990FE10CCB34066B1E73E93DAC45794F42FB745B266B6A46B9E26D52E9"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10284
Expires: Sat, 29 Oct 2022 03:12:45 GMT
Date: Sat, 29 Oct 2022 00:21:21 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 922281894182eba1fc67c2d8678e3238
e169209341b09bf4f14ebb3fc7c07b03f2121bf1
37516083f7655af68d7e426efca6f9f3709a80318ac7bb8cc492c183916141b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6486
Cache-Control: max-age=125872
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:21 GMT
Etag: "635ba15b-1d7"
Expires: Sun, 30 Oct 2022 11:19:13 GMT
Last-Modified: Fri, 28 Oct 2022 09:31:07 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 42d84e61e6aa4d3cce623adccfafc3e2
0dba69e98be53c153a6726ff934b2d55feb20d75
2f53662c68c9ea7be85837310861c8007fd039e5e4d8eb8f0d8948d5d1571a03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2F53662C68C9EA7BE85837310861C8007FD039E5E4D8EB8F0D8948D5D1571A03"
Last-Modified: Thu, 27 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6714
Expires: Sat, 29 Oct 2022 02:13:15 GMT
Date: Sat, 29 Oct 2022 00:21:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QU7C+1TOjpFIeUiCP63Bx1glNaQ6QZbzhdiN3O0rX2Kfd3Os6GdpBNHINjSsQDbxeraAysObdPg=
x-amz-request-id: SJFBQYYK04425KE1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 28 Oct 2022 23:43:48 GMT
age: 2253
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4b0e52f0db4bad65480efe6f0ecf37ba
0defac96a55b2048312c0acacd78f623ed3f66a7
c899a4325f9d95998bcc0d8ebbae0cdaa9faf2c57a06dfbe3e8011c73fe423ce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C899A4325F9D95998BCC0D8EBBAE0CDAA9FAF2C57A06DFBE3E8011C73FE423CE"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6921
Expires: Sat, 29 Oct 2022 02:16:43 GMT
Date: Sat, 29 Oct 2022 00:21:22 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:21 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d9f84254254cfb8ff92716c469bba04b
1d8a6fe7820809f2ea11268093e562e57b713511
64532e695d9eb64fbe02559ca8b4533c4381bc55cfa85824e7ce37917cdf97af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64532E695D9EB64FBE02559CA8B4533C4381BC55CFA85824E7CE37917CDF97AF"
Last-Modified: Wed, 26 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6308
Expires: Sat, 29 Oct 2022 02:06:30 GMT
Date: Sat, 29 Oct 2022 00:21:22 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6b7c0ce49b8ebb90707ec439581bc979
1affe02f362f59f8acaaa2cc16185fc2942a82cf
99057099a66b378f0825443f175ad6f84a9f69c0abb8f8db546eb348de4facb4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5031
Cache-Control: max-age=119357
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:22 GMT
Etag: "635b8d98-1d7"
Expires: Sun, 30 Oct 2022 09:30:39 GMT
Last-Modified: Fri, 28 Oct 2022 08:06:48 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.77.40101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.77.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7Pr6JqSpVFwQhWU3CXjyaA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LN2/Tw2YFKWUydGuNHzr1m3/ucQ=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a34a3d6697eb937f0b134e68e9fb2b99
dc432dc7c8692383d17e593a93e60857d9398082
e11fbf49eb07b649e29e7965e888397956e4476873c9e55812ef10f722bbc994
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5986
Expires: Sat, 29 Oct 2022 02:01:10 GMT
Date: Sat, 29 Oct 2022 00:21:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5986
Expires: Sat, 29 Oct 2022 02:01:10 GMT
Date: Sat, 29 Oct 2022 00:21:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5986
Expires: Sat, 29 Oct 2022 02:01:10 GMT
Date: Sat, 29 Oct 2022 00:21:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5986
Expires: Sat, 29 Oct 2022 02:01:10 GMT
Date: Sat, 29 Oct 2022 00:21:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08dc8195-80b5-41fa-a5cd-b0bb44072b0c.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08dc8195-80b5-41fa-a5cd-b0bb44072b0c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 146f86a561cb46170f482f06a95b63ee
19a0a4eb1e396b958de5406fba58e9d94c92d6c7
ffb65219c904fa391d4879dedfe319b7adb601bce809c63f25e1bf95f3ba3030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08dc8195-80b5-41fa-a5cd-b0bb44072b0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5655
x-amzn-requestid: a9d3a921-a6a1-4425-a2d8-b26fefbd8ec5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: af25SHnCoAMFuJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6356383b-41baf7e718f95502497ef36c;Sampled=0
x-amzn-remapped-date: Mon, 24 Oct 2022 07:01:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FUH6VNRi61sXkAnPHCYYTpb28QZcrMu_Jttb-0sLUlF62horpQsiyA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 08:58:38 GMT
age: 55366
etag: "19a0a4eb1e396b958de5406fba58e9d94c92d6c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb0edd4c-e6e8-4c25-ac9a-e3701004e856.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb0edd4c-e6e8-4c25-ac9a-e3701004e856.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a11bf07ea9377fadcb6cd7b343e56d4b
4f2f2d1fc8b0fc43c469672e884d57ae9e974368
a6804985570e25c066108b1fb8555ab6d67c533b370ff66fec7736f7fb52b9c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb0edd4c-e6e8-4c25-ac9a-e3701004e856.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7098
x-amzn-requestid: 175c4749-cc9f-40b8-af93-cd69f62d06a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avCGnE-NoAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c4a2a-64c4923c2850cc467b738450;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 21:31:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZcPPBppGPiPvF-2m_kkPWS4xxJcSMEzA9JXQ-hOtgbHnYLfIiVLidQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:50:01 GMT
age: 9083
etag: "4f2f2d1fc8b0fc43c469672e884d57ae9e974368"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79049f5d-175e-4d0f-94ea-6d5a1fcadca0.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79049f5d-175e-4d0f-94ea-6d5a1fcadca0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fb1110221ffc54766308cbf62f94cd9f
926f36919d5875592200b78d286edcb4c3ba884c
8344d57bc8358da2a5911c62a344a3dcf819ce44dac0da0624c73ab40ac1ef44
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79049f5d-175e-4d0f-94ea-6d5a1fcadca0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9460
x-amzn-requestid: c1eef336-bec0-47f0-bd30-17de593de8f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: asgW3E8uIAMFpgg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635b475e-60346ff475ec335e0499d17f;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 03:07:10 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: P3-UxGtr6HKLtsZUHXV_4CgAd3LQBceo_1NUwrfWhWoGoTEKS7KGAw==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:44:56 GMT
age: 22578
etag: "926f36919d5875592200b78d286edcb4c3ba884c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a34a3d6697eb937f0b134e68e9fb2b99
dc432dc7c8692383d17e593a93e60857d9398082
e11fbf49eb07b649e29e7965e888397956e4476873c9e55812ef10f722bbc994
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97b6c4b-9ae3-43f9-a0be-52e33d2041b0.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97b6c4b-9ae3-43f9-a0be-52e33d2041b0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ab38f9f7924c7ee9271368faf55a2ee
2508c0e5c7471244baa94fbc97769e5a19641a34
c314c69fc7e82538b2694da79c93a909620a1820e9ef8a25c3d8b675118e3e79
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97b6c4b-9ae3-43f9-a0be-52e33d2041b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: 2426674e-b28d-47c2-a32c-7275864a418c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apxNRF57IAMFtAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635a2f21-3a8349e635018e2d6400a13b;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 07:11:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZGZUUir8a2FA7VzAmP1cc6SJr8-nXbb8rjIEaYBWZWaSgITHWY2cig==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 07:18:19 GMT
age: 61385
etag: "2508c0e5c7471244baa94fbc97769e5a19641a34"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F493e6c0e-987f-4e8a-b2a1-5fe4f452da17.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F493e6c0e-987f-4e8a-b2a1-5fe4f452da17.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3044824aa388754b4834dc79496d135b
ee65caaa8a746599f6c29d74900472a98c121499
1e7f15e9d74e3559bbe51f66a861045d02a1cb227c978ba09c47e52972095930
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F493e6c0e-987f-4e8a-b2a1-5fe4f452da17.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6036
x-amzn-requestid: 3614efdd-d9db-4461-a335-30cfc17cf8b5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avCGmEyVoAMFnPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c4a2a-5f619a592c75e97c3dc2689a;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 21:31:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Q4BKx39YfIUToWYusxR0A0ndnPGlNBDgQrP6ZlO8f5_D7xzdgelZ2A==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:51:16 GMT
age: 9008
etag: "ee65caaa8a746599f6c29d74900472a98c121499"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47e250ef-f696-4eff-9f92-684d03f537d1.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47e250ef-f696-4eff-9f92-684d03f537d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7d063976205ab89fde8d7e8ca09ea2c3
fed062bcd6f96e0b1dfb3ff960e1d3577cc92d6a
be33e72b3dba7a9520c7ed87270118a106be9ffe8e020fa8aea5b63f11cbb834
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47e250ef-f696-4eff-9f92-684d03f537d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5887
x-amzn-requestid: 6886efc9-4517-4848-9625-599d60702d83
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avCIIEUxIAMFa1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c4a33-2d97e3d30b60ae1938e5f711;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 21:31:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y1lPMltaUmsnBKG9UYlZxw-zJyTjYq9gGPgCoOTptjADZdfzW_wngA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:45:02 GMT
age: 9382
etag: "fed062bcd6f96e0b1dfb3ff960e1d3577cc92d6a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 6cc231d59c9f4ef63b12c40ca56f6b18
c3f5436403973aa38f09edb31c56c3e92e1b72ce
aa0f36643efb5022bd0b43d975649b35547d4a33188cbfda338fcaf929aa0fe8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 00:21:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 14:31:56 GMT
Expires: Tue, 01 Nov 2022 14:31:55 GMT
Etag: "c3f5436403973aa38f09edb31c56c3e92e1b72ce"
Cache-Control: max-age=309630,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7617c0398c0d0b3d-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 6cc231d59c9f4ef63b12c40ca56f6b18
c3f5436403973aa38f09edb31c56c3e92e1b72ce
aa0f36643efb5022bd0b43d975649b35547d4a33188cbfda338fcaf929aa0fe8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 00:21:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 14:31:56 GMT
Expires: Tue, 01 Nov 2022 14:31:55 GMT
Etag: "c3f5436403973aa38f09edb31c56c3e92e1b72ce"
Cache-Control: max-age=309630,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7617c03989e4b527-OSL
v3.cdnsfree.com/_nuxt/desktop/default/1ff77830.modern.js
8.247.219.250200 OK 92 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/1ff77830.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (65479)
Hash 3157ae7df9f00dcff88719aa78fc5e0a
b695f4bdde1aa0e3d8f129014c27e671441320f9
6bfb781d3ebbeb37974dedd53b2998b509f91b58f0484352941a270a8a41a5d8
GET /_nuxt/desktop/default/1ff77830.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:24 GMT
content-type: application/javascript; charset=utf-8
content-length: 91837
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-166bd"
expires: Sat, 29 Oct 2022 12:22:25 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43141
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/55064564.modern.js
8.247.219.250200 OK 631 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/55064564.modern.js
IP 8.247.219.250:0
File type Unicode text, UTF-8 text, with very long lines (62776)
Size 631 kB (631074 bytes)
Hash 8a3d2b2b825d9a6f9a5de04247ac80c1
e3ad9e725590b4bca572d395fe5e30b347764229
54e408409ca560f9bf538b7be69414a5ce866e593be7f5f3e76fb11195b0e5eb
GET /_nuxt/desktop/default/55064564.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:24 GMT
content-type: application/javascript; charset=utf-8
content-length: 631074
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-9a122"
expires: Sat, 29 Oct 2022 12:22:25 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43141
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg
8.247.219.250200 OK 705 B URL HTTP/2 v3.cdnsfree.com/genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg
IP 8.247.219.250:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1224), with no line terminators
Hash bb246c88651f63256e658dccd79ba91f
560cf8f76dad56a5c10a0f66cc4a200df301265d
30e59f903e6fab358b7bfb110a8bf83aefaf5376f2c60293a20f58c9f9fc45e8
GET /genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:24 GMT
content-type: image/svg+xml
content-length: 705
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"7cca3986f7a5c4c164144ff11df71073"
expires: Sat, 29 Oct 2022 00:13:38 GMT
last-modified: Thu, 13 Jan 2022 14:28:56 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 586
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/af2fd40b.css
8.247.219.250200 OK 76 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/af2fd40b.css
IP 8.247.219.250:0
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash 153a0cda71c6501c12c0940eb436fa8d
691f4655fef7a250271cd2d7604203bce41f8fda
cae5a4a491a44e2f93e0e65ece8cd077ca925f663b7ff074a1ef663b23ced4c3
GET /_nuxt/desktop/default/css/af2fd40b.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:24 GMT
content-type: text/css
content-length: 76129
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-12961"
expires: Sat, 29 Oct 2022 11:11:47 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 47378
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/status.json
8.247.219.250200 OK 21 B URL HTTP/2 v3.cdnsfree.com/status.json
IP 8.247.219.250:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c4bb18933a5fd13d100077a00adf5161
957c1ddeabbf35fcdcaf731cf9611f4703864212
a7e828c3613677202207c42052a2135aefd9af7130f8ac20bb3307277a255db0
GET /status.json HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lite-1x768595.top
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:24 GMT
content-type: application/json
content-length: 21
server: nginx
access-control-allow-origin: *
age: 6170712
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 6cc231d59c9f4ef63b12c40ca56f6b18
c3f5436403973aa38f09edb31c56c3e92e1b72ce
aa0f36643efb5022bd0b43d975649b35547d4a33188cbfda338fcaf929aa0fe8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 00:21:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 14:31:56 GMT
Expires: Tue, 01 Nov 2022 14:31:55 GMT
Etag: "c3f5436403973aa38f09edb31c56c3e92e1b72ce"
Cache-Control: max-age=309630,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7617c0398ec10b49-OSL
v3.cdnsfree.com/_nuxt/desktop/default/css/39476c26.css
8.247.219.250200 OK 137 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/39476c26.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 137 kB (136757 bytes)
Hash 9cea23d51613bb218095a9a5b8a3e52d
afe0ba11730c6414e4e555ffd5747cfd92c5774c
e2eebe79a218d4df4dd068ee798fccadd34cc6720b48534ac0f292e6680e5b35
GET /_nuxt/desktop/default/css/39476c26.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:24 GMT
content-type: text/css
content-length: 136757
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-21635"
expires: Sat, 29 Oct 2022 12:22:23 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43141
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 6cc231d59c9f4ef63b12c40ca56f6b18
c3f5436403973aa38f09edb31c56c3e92e1b72ce
aa0f36643efb5022bd0b43d975649b35547d4a33188cbfda338fcaf929aa0fe8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 00:21:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 14:31:56 GMT
Expires: Tue, 01 Nov 2022 14:31:55 GMT
Etag: "c3f5436403973aa38f09edb31c56c3e92e1b72ce"
Cache-Control: max-age=309630,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7617c0398e291c06-OSL
v3.cdnsfree.com/_nuxt/desktop/default/7b39ee4b.modern.js
8.247.219.250200 OK 6.3 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/7b39ee4b.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (16434), with no line terminators
Hash 2502763856549a1503c6213e0e65f3f4
0e6149b5380c77f664eae772be06a9b3831899a0
28e8aec5d37890f97ee267f29c593d6e874dc30ee167723a86c76d33087e311c
GET /_nuxt/desktop/default/7b39ee4b.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:24 GMT
content-type: application/javascript; charset=utf-8
content-length: 6346
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-18ca"
expires: Sat, 29 Oct 2022 11:11:54 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 47379
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 6cc231d59c9f4ef63b12c40ca56f6b18
c3f5436403973aa38f09edb31c56c3e92e1b72ce
aa0f36643efb5022bd0b43d975649b35547d4a33188cbfda338fcaf929aa0fe8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 29 Oct 2022 00:21:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 14:31:56 GMT
Expires: Tue, 01 Nov 2022 14:31:55 GMT
Etag: "c3f5436403973aa38f09edb31c56c3e92e1b72ce"
Cache-Control: max-age=309630,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7617c0399cc5b512-OSL
v3.cdnsfree.com/_nuxt/desktop/default/f6fe7e8c.modern.js
8.247.219.250200 OK 490 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/f6fe7e8c.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 490 kB (490351 bytes)
Hash 9be50321b991abc7f80c32cb3af1cff8
28bf0abe3c319b5d9719ca40f0e9ec384d02f103
28dc65ddce84380ef150380187369f0555fedce2062cb263939ffceb0299c943
GET /_nuxt/desktop/default/f6fe7e8c.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:24 GMT
content-type: application/javascript; charset=utf-8
content-length: 490351
cache-control: max-age=86400
content-encoding: gzip
etag: "635bfa62-77b6f"
expires: Sat, 29 Oct 2022 16:17:04 GMT
last-modified: Fri, 28 Oct 2022 15:50:58 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 29084
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89643d2109e09c2c32f8e67de2d35df0
7d57d55fe52e166f75f93efab1a784e840c25757
672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89643d2109e09c2c32f8e67de2d35df0
7d57d55fe52e166f75f93efab1a784e840c25757
672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89643d2109e09c2c32f8e67de2d35df0
7d57d55fe52e166f75f93efab1a784e840c25757
672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x768595.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:34:08 GMT
expires: Thu, 26 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 190036
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x768595.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 14:07:32 GMT
expires: Thu, 26 Oct 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 209632
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x768595.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:34:08 GMT
expires: Thu, 26 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 190036
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89643d2109e09c2c32f8e67de2d35df0
7d57d55fe52e166f75f93efab1a784e840c25757
672d341ec656ed18d6484ab814ab4f888b37624bfb49e9c2d95860168246b46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lite-1x768595.top/genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png
178.253.14.138200 OK 352 B URL HTTP/2 lite-1x768595.top/genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png
IP 178.253.14.138:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 7dff72d4146e35a8262e6845d13a8df0
a291af970d3955b35c314e85712ceea3aca25d54
a467e6a3d8e443bbbade9f04324268de101625412c1135b4cec0864a55101a78
Analyzer Verdict Alert quad9 Sinkholed
GET /genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:24 GMT
content-type: image/png
content-length: 352
last-modified: Wed, 10 Aug 2022 11:26:08 GMT
x-rgw-object-type: Normal
etag: "7dff72d4146e35a8262e6845d13a8df0"
x-amz-storage-class: STANDARD
access-control-allow-origin: *
cache-control: public,max-age=120,s-maxage=600
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1667002883854
178.253.14.138200 OK 145 B URL HTTP/2 lite-1x768595.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1667002883854
IP 178.253.14.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 81d90db48c09d6f764c4929c90eadfc1
6fe1a593e77cca8d9adff9fe5b5f40e19ccf7bd8
fa0a9c9d33937e1539ce6b9e44abf7ecd69f5032c6ba8b85308c6a388f8dc28c
Analyzer Verdict Alert quad9 Sinkholed
GET /genfiles/cms/maintenance_mode/settings.json?timestamp=1667002883854 HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:25 GMT
content-type: application/json
content-length: 145
last-modified: Thu, 21 Apr 2022 06:40:33 GMT
x-rgw-object-type: Normal
etag: "81d90db48c09d6f764c4929c90eadfc1"
cache-control: public,max-age=60,s-maxage=60
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/pwa
178.253.14.138200 OK 15 B IP 178.253.14.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0e4766fd1b2ba2e236fd9364587f99ab
eb98dec7af065d80a1a3ddb99cb3e3c0919aa852
4612305c0c6077857c88e831688c8bb34594e16c567ed45a3a330c14fa7c627b
Analyzer Verdict Alert quad9 Sinkholed
GET /pwa HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lite-1x768595.top/us
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:25 GMT
content-type: application/json; charset=utf-8
content-length: 15
etag: W/"f-65jex68GXYCho925nLPjwJGaqFI"
server-timing: dt_285;dur=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/733bdf44.modern.js
8.247.219.250200 OK 1.0 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/733bdf44.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (2404), with no line terminators
Hash bcba0fc805c0945e09337dc3f7bd802d
2b05c5403789942a2767a435367ac4a4e1a0312a
d7c57c95a5a7fafcc1ed1f1162094caa4b57a07620b42d63d6b716414c87dca3
GET /_nuxt/desktop/default/733bdf44.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 1031
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-407"
expires: Sat, 29 Oct 2022 12:22:37 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43130
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 30c5107c8f49f7471978d43d30847010
9f5c74e117f8cd972c5ca0983bc4023910601113
1c4451ea36f959819a5d50296603c2352c380ff89bf8812db857df6b8ac7bf69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8b2c5f15a7e5047fae690ab793f53d00
0d9ffed4b4c172a1846d88f2c6387fd4e63b46e3
4e3d641ee0c4108dceb1f7c43a8e6bdf4c03a05a7618f71ae6e671461a9ce201
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6056
Cache-Control: max-age=143772
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:25 GMT
Etag: "635be8f9-1d7"
Expires: Sun, 30 Oct 2022 16:17:37 GMT
Last-Modified: Fri, 28 Oct 2022 14:36:41 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
lite-1x768595.top/version.json?timestamp=1667002884059
178.253.14.138200 OK 11 B URL HTTP/2 lite-1x768595.top/version.json?timestamp=1667002884059
IP 178.253.14.138:0
Hash 72f65812391d7837bd3f37157aeae4bc
97b88834cc41b3d6957770de58768b32349a6f1d
9d264ab23dfa1eb7a98e4ab178077961f03602a21cf3439f480bc4ffac1a37c0
Analyzer Verdict Alert quad9 Sinkholed
GET /version.json?timestamp=1667002884059 HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:25 GMT
content-type: application/json; charset=UTF-8
content-length: 11
etag: W/"b-l7iINMxBs9aVd3DeWHaLMjSabx0"
server-timing: dt_285;dur=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-178408567-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-178408567-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash e18bf02ac9e79054f4e3f42ef1445ef4
de68ec158aa48385d0cb52af594e1a454106d4a2
c57e2a965dec47b991f441b469e2d641189ea91c32725f570a46d9ec1bb335f3
GET /gtag/js?id=UA-178408567-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 29 Oct 2022 00:21:25 GMT
expires: Sat, 29 Oct 2022 00:21:25 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44623
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 30c5107c8f49f7471978d43d30847010
9f5c74e117f8cd972c5ca0983bc4023910601113
1c4451ea36f959819a5d50296603c2352c380ff89bf8812db857df6b8ac7bf69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8b2c5f15a7e5047fae690ab793f53d00
0d9ffed4b4c172a1846d88f2c6387fd4e63b46e3
4e3d641ee0c4108dceb1f7c43a8e6bdf4c03a05a7618f71ae6e671461a9ce201
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6056
Cache-Control: max-age=143772
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:25 GMT
Etag: "635be8f9-1d7"
Expires: Sun, 30 Oct 2022 16:17:37 GMT
Last-Modified: Fri, 28 Oct 2022 14:36:41 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
v3.cdnsfree.com/_nuxt/desktop/default/dae6d262.modern.js
8.247.219.250200 OK 798 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/dae6d262.modern.js
IP 8.247.219.250:0
File type Unicode text, UTF-8 text, with very long lines (1636), with no line terminators
Hash c428c936ef09d2ae9fb0433a5643f44b
489b55815e060db2d21d1680266c4cc7772cdf2b
2b533320436df71390e2d88d3ac094c0c0907de6e8153157d880bfb21bf00a8e
GET /_nuxt/desktop/default/dae6d262.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:26 GMT
content-type: application/javascript; charset=utf-8
content-length: 798
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-31e"
expires: Sat, 29 Oct 2022 12:22:40 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43128
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo-champ/246a944858d7a07393dd4f6739f94bf9.png
178.253.14.138200 OK 19 kB URL HTTP/2 lite-1x768595.top/sfiles/logo-champ/246a944858d7a07393dd4f6739f94bf9.png
IP 178.253.14.138:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 9daf8b58d38593afa8f0d1956f5f8b3d
c9a27c3c80c611a3e51964ae104db70602f2c608
d7e4042b1e80a2c83c4d71eaba92918821b514511356eb608bd6e2af8e0d61ff
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo-champ/246a944858d7a07393dd4f6739f94bf9.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 18874
x-amz-id-2: fumawuJLKRiR17w0bTtgrzv8eAGTIgVzGG+7khC1oiHCdkF/W3joQEtq4QoAJO3B+7KusZLio4wEFewon9zQng==
x-amz-request-id: VBJA3MKP6ANX0WA0
last-modified: Thu, 26 Aug 2021 08:40:25 GMT
etag: "9daf8b58d38593afa8f0d1956f5f8b3d"
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
radar.cedexis.com/1593429750/radar.js
35.241.57.45200 OK 25 kB URL HTTP/2 radar.cedexis.com/1593429750/radar.js
IP 35.241.57.45:0
Hash f0ee3fe7a95ffd315813d93add36bee1
a17a6378212c667dafa4f3d4571b121bc4645b6b
1e198a4c72fbdbcf4cd5f5442bafc410145a214c90e0619649ab14ff2e2a3961
GET /1593429750/radar.js HTTP/1.1
Host: radar.cedexis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:25 GMT
content-type: application/javascript
last-modified: Mon, 29 Jun 2020 11:30:33 GMT
vary: Accept-Encoding
etag: W/"5ef9d0d9-af5c"
expires: Sat, 12 Nov 2022 00:21:25 GMT
cache-control: max-age=1209600, public
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/8518.png
178.253.14.138200 OK 6.9 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/8518.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e0502a079111a4b09f3105e8f0bf0442
672b2ea2ce2017c625b4f0a124344a01bdf45ed2
51e60907053fcae64ae693591cf331911d3b5c79abfafa371594deebbff23022
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8518.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 6863
x-amz-id-2: zTgF9VVmvWJLDEzORakbK8aF3BULWKch2vgyv6zoe3sOgAZWuHNvkBzmMIRx417wKrNSuTh0pRzBShrEEW+6Qg==
x-amz-request-id: VBJ3TS1GA7W11BBN
last-modified: Tue, 13 Aug 2019 15:12:05 GMT
etag: "e0502a079111a4b09f3105e8f0bf0442"
x-amz-version-id: lK6r6WTdtu056qL3R8KsQ2JTLRqEDCC_
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/8492.png
178.253.14.138200 OK 6.8 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/8492.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 323c2baa19dfeb23695da4c1ebb61fb5
a615d029f9dfeeb85006fdddeb6be43023137cf6
63e67a574aa9a13b46074b88d0d74e8a550c2ca5405899b6a6b7511f7b86a045
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8492.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 6820
x-amz-id-2: ci8zB8noQjWa2497cVDbFBIFJ3MPSpc07CY+wX6CVbzTrv1PFQkB4PwjX2w2o/p77tJKx6n8uHD1Lw13Yj67yg==
x-amz-request-id: VBJDNGZ9KB4CCFS7
last-modified: Tue, 13 Aug 2019 15:12:04 GMT
etag: "323c2baa19dfeb23695da4c1ebb61fb5"
x-amz-version-id: KdpCwolDXgGctSm.19NksNK8A.8R5mCC
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/8470.png
178.253.14.138200 OK 12 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/8470.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 391a04385cd12847da850b28ea4567bf
32c2678036e06ff7b2af80127b98272115788744
2cfeafcd52e20c6add5b8908ae46e69a0e034bd15b6aa786b6b4bcb1cb5499ad
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8470.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 11900
x-amz-id-2: wMKUNVfweh9jHc7S9UjIXrT8dfST4Y7rG8G9E1PrH3lRreuxtmN6NZ2jArqlPHvDSrMa5M2KPsbctP0KtR7lSQ==
x-amz-request-id: VBJ2D1ZY9WQXE6QJ
last-modified: Tue, 13 Aug 2019 15:12:03 GMT
etag: "391a04385cd12847da850b28ea4567bf"
x-amz-version-id: 9NlfNBnSpshnxBC_g2dNPP9_wOrRI3MO
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/_nuxt/svg-sprites/country-5ae080c0900f8ab990025425a54e475d.svg
178.253.14.138200 OK 62 kB URL HTTP/2 lite-1x768595.top/_nuxt/svg-sprites/country-5ae080c0900f8ab990025425a54e475d.svg
IP 178.253.14.138:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Hash fff5460df563fbb9bac7ff4d56286875
ca89f467fd1d35ada7647ec227784ab68e864002
2c997e6767d1c4684f34dfd49dd2d426732f04432b9d3d774de4a12e352abce5
Analyzer Verdict Alert quad9 Sinkholed
GET /_nuxt/svg-sprites/country-5ae080c0900f8ab990025425a54e475d.svg HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:26 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 28 Oct 2022 12:27:29 GMT
etag: W/"635bcab1-26132"
expires: Sat, 29 Oct 2022 14:21:45 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/web-api/api/converslon/load
178.253.14.138200 OK 9.8 kB URL HTTP/2 lite-1x768595.top/web-api/api/converslon/load
IP 178.253.14.138:0
Hash e8705c821907a13bb82f1d375420bc61
a39674f4328fa3aef2ea0b9b2d676ba0f49b8560
d501e753105d316fea1860f82845487681a2bd1055a80b539c92c3f8ce327c58
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/api/converslon/load HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:25 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=19, dt_285;dur=45
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/8468.png
178.253.14.138200 OK 3.1 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/8468.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1144e2df307a600a7fcc79b5f24ef886
bbe9fa8659c89f5fad25fb9af68cc86627295013
c7c32c05bb639c745622514dbf189f0a5998f9c7854a350d69d048fdbcdf9be4
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8468.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 3139
x-amz-id-2: hWyYfVptDSPyixwco7LFczDVg4vmcma+uVXyBE6F9OVFfLkEqWMFHQdHK0VzFSJh4iT1j9Nmm807D1JfDgH6OA==
x-amz-request-id: VBJCDJMFX1302KRB
last-modified: Tue, 13 Aug 2019 15:12:02 GMT
etag: "1144e2df307a600a7fcc79b5f24ef886"
x-amz-version-id: Tr4I4ftyOuOTGvRDm0LTgLiPc59r_UJF
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/8512.png
178.253.14.138200 OK 8.9 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/8512.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash bacadb85350a7ba8bd74304317989780
7286a9552cdb77420b87a3f2846ee89b01bee967
8ba5662decacb1b900fd02c91e9cfb25e6c68fbb75eea6dcc3c6a64142405636
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8512.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 8936
x-amz-id-2: bPzmY35hVcAAPhrDaV06PYkvRVz3TJXYxflx/hs3SjPgsOQQY1Hzs/XyVJdhNn1UNUAQ5PS/rw2h96gzWiqlLA==
x-amz-request-id: VBJ38CBVGDTV663D
last-modified: Tue, 13 Aug 2019 15:12:05 GMT
etag: "bacadb85350a7ba8bd74304317989780"
x-amz-version-id: TXrIHkZJddtnM5aRHLqCP39T4BKrcLcS
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo-champ/9adffbc80a8d207de772719c1fd5c56d.png
178.253.14.138200 OK 11 kB URL HTTP/2 lite-1x768595.top/sfiles/logo-champ/9adffbc80a8d207de772719c1fd5c56d.png
IP 178.253.14.138:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 9adffbc80a8d207de772719c1fd5c56d
15040286d90d2f6aa7781b2e21ba860aa88752e9
a9e1ff151cd68dd773872cd25c8497850247cedee9bd91f3c172fe5415bd1f82
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo-champ/9adffbc80a8d207de772719c1fd5c56d.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 10864
x-amz-id-2: 8zpB33bGYbAiDHlnSjRJ1nmNGVHvYFVPTOj5+QjL1RHQbrxN2mtvYFOwXKXTRbDeQhYEeyEJQZ3FLkvqJg+/dQ==
x-amz-request-id: 6HRJR6C0DFZNRCQF
last-modified: Mon, 07 Oct 2019 07:09:56 GMT
etag: "9adffbc80a8d207de772719c1fd5c56d"
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/6866.png
178.253.14.138200 OK 12 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/6866.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b9138b96dc424fe13e1f9f802f1b42d1
762e9bf77880a322585950abd7997a126d7971b2
8c009eed8d85b92e0a03d40efea40bd8f2580fad48e7293d442745e1e0a89724
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6866.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 12418
x-amz-id-2: y5vq0s3qRWBZqzzNaRJ3xnk54AfpUnIxjwdiBLN350DwzNDuciIjFoNitu6KwztpBfrUZFCIU9D2TkvEiYhsRg==
x-amz-request-id: Q5V75YAZMF9YSPDV
last-modified: Tue, 13 Aug 2019 15:10:22 GMT
etag: "b9138b96dc424fe13e1f9f802f1b42d1"
x-amz-version-id: OlY7TCvrP8JQPzD8B6iXk58VMeu1t.9V
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/6850.png
178.253.14.138200 OK 15 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/6850.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d53de6b55255baa381574e190da823e7
f43a96efb64ee4611cad70cfbd65f6fc15a09047
0162552197989ead11601dc5205a421e05de19474a21705a2871331b99db4be1
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6850.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 14620
x-amz-id-2: pfcgANfXSrSNysexPaCIAy00P9D0paTwHaTWA8+3IqZUtPMvDUWzyL1p2Bje9qtvucZizw6DhL6wYom6icJWiQ==
x-amz-request-id: Q5VEJD2XM10KE1MM
last-modified: Tue, 13 Aug 2019 15:10:21 GMT
etag: "d53de6b55255baa381574e190da823e7"
x-amz-version-id: bHzB0rmPfYRMKCwlQF10UX5VCk7ldo6J
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/6882.png
178.253.14.138200 OK 16 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/6882.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f77013ae77b815d7657c112c51dde031
c17e33fcfe8b742b65de87e26df7c49664fa9aee
bd5e5c5654a0618800601e757c01a7926bb002fffdd4df6fe010939ae879b8ee
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6882.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 16103
x-amz-id-2: +CItHkElqkrfzB2uuEEEn+8DGCIobE7RzLYpYE0f4o7US5Jfs3V6d9YYBVinWqGbaOhpGEoSyLAEMpthbJLwXg==
x-amz-request-id: 23T8XJ04Q7Q13W2C
last-modified: Tue, 13 Aug 2019 15:10:23 GMT
etag: "f77013ae77b815d7657c112c51dde031"
x-amz-version-id: oCCygkjk1CF7U_vwKn5kSRcMVA2hNgSr
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/6894.png
178.253.14.138200 OK 9.7 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/6894.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f0230acd33dc3f2ad1c87b908616d660
fa005bd346de5bf504f2ae641db365276eee70cb
eb4a2d1d1c105e712dd29ad95b471413ff6d0b0477817d4b4ec774ce4aa6c734
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6894.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 9715
x-amz-id-2: h5zGe8EBVDxUpDZqEC3ezHm9KPOgTE3SMAxk5jQ2iPSmPlpIaqilBf0AYgXey9m9xfydWx+Jm4LN9TVa7tTJvQ==
x-amz-request-id: 23TAHDS7KNXCBA02
last-modified: Tue, 13 Aug 2019 15:10:24 GMT
etag: "f0230acd33dc3f2ad1c87b908616d660"
x-amz-version-id: gC7GaQznMNI4ptObUfBKxaOtjPscigfp
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/be3dbfb428546c98d390c33af33005fc.png
178.253.14.138200 OK 31 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/be3dbfb428546c98d390c33af33005fc.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 014e77b1f6e5868ecddf9279c891c89d
86abfd4b77a88b18dbeddee0b17474ba6dc2058d
2e350864254da817875741bab81c09a7a6666deaac6d3e3efc2097e2c640b044
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/be3dbfb428546c98d390c33af33005fc.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 30698
x-amz-id-2: lokZ2PGFNmcm+wKh7//KzkJaWZMlneT1uaI9bywdakxraOjXiL8bTJMcm2yBme9W24a/7StlQuy0FclWkLj4Xw==
x-amz-request-id: 46VJQTQPHXW6DK3Z
last-modified: Mon, 06 Jan 2020 22:11:58 GMT
etag: "014e77b1f6e5868ecddf9279c891c89d"
x-amz-version-id: HI9SUWzXSItHPJCiNtDVACljuVZgi1kH
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/105340d750f530feafb9a5342b870824.png
178.253.14.138200 OK 7.2 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/105340d750f530feafb9a5342b870824.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash da1f68710c41f62f4c9f5657fa1aef53
137c67a842adc28f977c1636905059c67ce15006
5385fc0dfcc927d046c7e8bd36de7b26238828f0e2ce886a4cc89c6477f69fcb
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/105340d750f530feafb9a5342b870824.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 7235
x-amz-id-2: SsIOv/8tHnjaUlvz26rLIA7xsgOKk8oqDyBo9jiP1GSLjA0MX+br8vJgWKSwIaErAys52cJfMKBsTv5lgwG49g==
x-amz-request-id: 46VGGN1SK23QW1ZG
last-modified: Mon, 06 Dec 2021 06:58:03 GMT
etag: "da1f68710c41f62f4c9f5657fa1aef53"
x-amz-version-id: ATrfFGiYSaUb7t2R2W4x34APVs95JnoI
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/6876.png
178.253.14.138200 OK 7.8 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/6876.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 328c31f23b877b9b3bf2c0ea96b35463
ce400774e00d9315d5badd80314e0cb53e999a63
0dce4839b907810dabf408d10671463dd91d4de92334dcad3eda4c13aec16f41
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6876.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 7792
x-amz-id-2: nKj0ykSScy/JjSyuGtmAKhrvnWUhwAZRNrUV7NCX6Sd1mur2B+lXWfiSnSPvFigUA6zAnGGVdnWIuP0CXrOsNg==
x-amz-request-id: 46VQC6K8Z2K62DBM
last-modified: Tue, 13 Aug 2019 15:10:23 GMT
etag: "328c31f23b877b9b3bf2c0ea96b35463"
x-amz-version-id: gU8vMVAJsdGU0y9iibwUos.pUgi.aZPz
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/95487b44065316a9e6bb8f53d57a9010.png
178.253.14.138200 OK 31 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/95487b44065316a9e6bb8f53d57a9010.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 95487b44065316a9e6bb8f53d57a9010
c6903c44c775ffe8e5fb79b68a1a6e79d6404219
b32639903e46c36f6b1a3fd13eee1ba4798fa7bb3ed3c203c160f2d966f01b98
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/95487b44065316a9e6bb8f53d57a9010.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 31016
x-amz-id-2: TKXWLyT/oN0sI37AoJmA1zBh2pMPpfew8MNlly7IvPCVvQN/0GbYUQHY9UN4ks4nJs3NijQZ9Moe8Csrr66QPg==
x-amz-request-id: 46VMA92DQ2D8F6G1
last-modified: Fri, 22 Nov 2019 06:36:37 GMT
etag: "95487b44065316a9e6bb8f53d57a9010"
x-amz-version-id: fHk4mA7uisD3mJ2OPx3Xx0VOpOm1A_eU
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/6854.png
178.253.14.138200 OK 14 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/6854.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c0182965a1f2e044a0adce40f40f3ed5
34010c62483d9b6b7e8662c2352b0d0daa5f9b43
89b9711a3ef4ef9c6116c01f7e2836261977109b90c5d02a65505b47e77412d6
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6854.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 14244
x-amz-id-2: ZSijd+9utDC0kzHkZx6YmsrWKEIASO4fldE+fiQ1szjLm5bb5HFTe6Y4w0CpSA0G2z9eXihRN8lQmuXo1bYNow==
x-amz-request-id: 22EGSQ31HD7WYCQP
last-modified: Tue, 13 Aug 2019 15:10:21 GMT
etag: "c0182965a1f2e044a0adce40f40f3ed5"
x-amz-version-id: AFPDoqCsu22Q0WwjNKHNUo19giIDcoA2
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/ab10bfc7e3519727a4d20e317ce882f1.png
178.253.14.138200 OK 15 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/ab10bfc7e3519727a4d20e317ce882f1.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1413a24186ceea8059a0f0240161cbb3
95a4744590dc7009ba128c27cba259da9c2a4321
3ec746a6f0b6f218093fdb99befbb0fa45f2fc9c1956ba7a0ea80c7d5d8bbfc7
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/ab10bfc7e3519727a4d20e317ce882f1.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 14605
x-amz-id-2: Wcz4SFuLG7T8IHV4EITniPdrZWUh8lPQLqvZO35KSTYK6TKkNh8nBnze3d0bfzARd0SxOYOrvx2nWHNXRb22Aw==
x-amz-request-id: 46VHZ7E2KCXVYDRW
last-modified: Wed, 29 Apr 2020 06:26:28 GMT
etag: "1413a24186ceea8059a0f0240161cbb3"
x-amz-version-id: 0Kl0pqyM80GjR6m4_9ZLmZ76LPxvWYXB
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/6872.png
178.253.14.138200 OK 13 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/6872.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 185e10fbaadadaea795229138e0bfdb9
eb4c2acf185bd86600a489975268639cee848003
2ab58b16556412abc2b7b748c2220a20f165caedc319d9c49ce6dcddd8138559
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6872.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 12995
x-amz-id-2: EOiE2of22nVewdG8D7hJPyxjun8ya2cm6mpeifgp3qkeIXZ2TBdwULpK6aV/+BGmtJBxKJwYz5sqST50SB4tcA==
x-amz-request-id: 46VK3SEMPPCH8KAH
last-modified: Tue, 13 Aug 2019 15:10:22 GMT
etag: "185e10fbaadadaea795229138e0bfdb9"
x-amz-version-id: paNuln8GoxNeZPpKVcLkppbpzh1GMhuv
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/6860.png
178.253.14.138200 OK 11 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/6860.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f93a68bd279df6028e56e01bba0dbce
e7ec384f5666e4d3b057dcdf1c84707223f56d1b
924a47670201b6becbe91f32e2d7a129944f349614490ed4e80b5801492ef5e4
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6860.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 11341
x-amz-id-2: 84Mxz8LY+FF/YajXahIU+3zd+Ly1NYefcHaoxD2bgv90+8MPbgxVkvZ6FmZKEYWf885JWQsXa5OVWQpLtVA2qg==
x-amz-request-id: 46VPZKTPXMKRW49F
last-modified: Tue, 13 Aug 2019 15:10:21 GMT
etag: "7f93a68bd279df6028e56e01bba0dbce"
x-amz-version-id: 4fEa0vBuVi8YrHrZWliobL1c_rPUT7FP
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/d6760659f9d1041cfd6f177b9bedec94.PNG
178.253.14.138200 OK 14 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/d6760659f9d1041cfd6f177b9bedec94.PNG
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d6760659f9d1041cfd6f177b9bedec94
151a18c927671d82aeb904de66321f79c1c57144
4f4c4aa9d47dfef0a912da26e6d247f84b617f390ccaed4ba1b7bae28594623b
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d6760659f9d1041cfd6f177b9bedec94.PNG HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 14241
x-amz-id-2: A9t5OLvAdyGzQHQ/du87eifHJwOB2hpdb8KmiSgvBF+6NELFfNgUQcHCZYuUz1MB1mpu+Mexc8S1reAtsTQmXg==
x-amz-request-id: NBMMD4H0V3ZA6KG7
last-modified: Fri, 29 Nov 2019 09:46:30 GMT
etag: "d6760659f9d1041cfd6f177b9bedec94"
x-amz-version-id: FSefNhP8FG2SHjnLqr9B5utw1tYJeCC9
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/003c269202db4b09b9a32f474416bf5d.png
178.253.14.138200 OK 40 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/003c269202db4b09b9a32f474416bf5d.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 16-bit/color RGBA, non-interlaced\012- data
Hash 86eb569c7a39f01762fa165ea988e935
353b02a10b849dfa5928ed8db40eda35f2c8029b
1faabe9a9bcad64ab14b9ed02b8eade0dcd721a8b9d80a61f6addfc5e207bb25
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/003c269202db4b09b9a32f474416bf5d.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 40332
x-amz-id-2: 9TyOPWdJiV3VhXGmC/GWw6wwMjWfuP2jN3nDI3CqC4m2LGm1kIKqPoteBGoqDIDiIRzMr5+NvWB+xUUJd5Is6Q==
x-amz-request-id: NBMWXNNP4PAGQFT5
last-modified: Fri, 13 Mar 2020 07:25:15 GMT
etag: "86eb569c7a39f01762fa165ea988e935"
x-amz-version-id: qc0be33O4voaZVeoM2Exk.ufQVUqfsF7
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/17baaf76137b0b97b6ed89734c3a99a7.PNG
178.253.14.138200 OK 15 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/17baaf76137b0b97b6ed89734c3a99a7.PNG
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 17baaf76137b0b97b6ed89734c3a99a7
66a1ea7ec1b4eed9fd8697ea6266e3a93bb825a2
43ca348afa785c081ec6e58d197b402edbc3cfc3dd010a1d669efedc60e35026
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/17baaf76137b0b97b6ed89734c3a99a7.PNG HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 15038
x-amz-id-2: 2ibflfpI8qCe2DsbrwL67hCYnp2dxaxks2TRbWISNMvXUGxvC+gChEfD+2Slcm0wmlV7IvcenLU0dV6zciXusw==
x-amz-request-id: NBMQDBHQHGGM087Q
last-modified: Thu, 12 Sep 2019 05:29:17 GMT
etag: "17baaf76137b0b97b6ed89734c3a99a7"
x-amz-version-id: 7xTYWTNgeS8JaQHCDFQkI7cfLR8S4tyk
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/1705962ffbc1e568500d02753d414082.png
178.253.14.138200 OK 19 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/1705962ffbc1e568500d02753d414082.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f7e84c6def18163ad04a9f6834a41d5
877baecf60e7d3f68d5d99bf51e1a3e653ff906d
d561175817f78e6e8474aa2ad952524a0fc9f407dcad249dfeb7c0321fcab439
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/1705962ffbc1e568500d02753d414082.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 18677
x-amz-id-2: ohN53HmfdjIX574kmJr/PnZRZZRj1+erY3YJJYQhyCm6RTorEXvW6APINmrlyXDWsWi/qb84482EXYX30QWUvg==
x-amz-request-id: NBMK8WJ5XTN5W5JZ
last-modified: Tue, 19 Jan 2021 15:30:52 GMT
etag: "8f7e84c6def18163ad04a9f6834a41d5"
x-amz-version-id: J6Bd3Wu1vaLy9PXceV.mqhv4wjLDZG7z
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/92849bc4fb55b0ac7e769482af213f21.png
178.253.14.138200 OK 10 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/92849bc4fb55b0ac7e769482af213f21.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash bf02d2e364abf0dbc53bbedbb064fac4
ea3ae7a07d6722577ed65418e2476951b33ec391
0e9a8d764458bb7fe8c6db78082e2bb82f6b7267ce1da97850c959c51797c90f
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/92849bc4fb55b0ac7e769482af213f21.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 10529
x-amz-id-2: 0MeN7UhaMe71Pj31m1gYbOK3/qPpO0FHzEQxuzonwVv8mJdMhqoN1hQSdccVwjTwGQCq82tT6HVs+Zy6U+harw==
x-amz-request-id: CEQF0SBY59C3ZEKA
last-modified: Sat, 13 Jun 2020 22:35:29 GMT
etag: "bf02d2e364abf0dbc53bbedbb064fac4"
x-amz-version-id: XTQZXm8JZ05AWc5VkXB24xXZpTturvIy
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/11e4cfbf9b1edee93322d20efb067157.PNG
178.253.14.138200 OK 14 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/11e4cfbf9b1edee93322d20efb067157.PNG
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 11e4cfbf9b1edee93322d20efb067157
15246a315e3098c273f5fc2715c5e5864f23c9e4
b44c0b88094fa32de9d2ceb02b99afc77efa9ad72fddfd1ec0dcf44101e84d40
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/11e4cfbf9b1edee93322d20efb067157.PNG HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 14140
x-amz-id-2: qLCx7l78UpsNp8eqjwakKXbkZk1Q2Q4sXmoxI8e4ecjAWnjo52XhtRYMHLADvLC0NaEqdeAzMcSFPQpgLk+rRw==
x-amz-request-id: CEQA5ZF483B42CV9
last-modified: Fri, 29 Nov 2019 07:50:03 GMT
etag: "11e4cfbf9b1edee93322d20efb067157"
x-amz-version-id: oT4gF1QyRgdyBbbne8D.Sy_bVtq0ZEyf
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/587d96e7698fb59c18788cafe269d095.PNG
178.253.14.138200 OK 19 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/587d96e7698fb59c18788cafe269d095.PNG
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 587d96e7698fb59c18788cafe269d095
2e9fafe05dd53da897b2e04a7563747f436367cc
3205da3729b5bbf1a03e95be87c1cd3f58e876bc57f95437f236240771a2060b
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/587d96e7698fb59c18788cafe269d095.PNG HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 19165
x-amz-id-2: krYAifhgDAvtIU6VwkwJY3UmwoW97i/HXqFqgD0X41wvjc7m0SRq8LJ1Jbpgv3v/DHlMc3FhZzVS5iBCYqrlQQ==
x-amz-request-id: CEQDB5YK9AG8B0CM
last-modified: Fri, 29 Nov 2019 09:50:29 GMT
etag: "587d96e7698fb59c18788cafe269d095"
x-amz-version-id: T9WUK603a5xf5AZVDgUCrzmukoaBsB6W
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/ba997af73ca53f6afff3b4719be2fac5.png
178.253.14.138200 OK 20 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/ba997af73ca53f6afff3b4719be2fac5.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2152b68faf9abd9e2c28c5a96c766106
dba4b80cd2bbd942626e43bd7cec863e6a7360a6
6b3f4d1cfacc5f2f688fc12809ede33f8a0cd43f58b31f0561d75266fbf1378d
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/ba997af73ca53f6afff3b4719be2fac5.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 20415
x-amz-id-2: O9LxqKui9bQ4TRoQ+ADP4CU6SfciBM7eY4MFly0f/u8vlnxxiBwRBYPCnSK/XzFbmt+zw6dC7RmENVWVtRED8g==
x-amz-request-id: CEQ2NJHDW0YGXHMW
last-modified: Sat, 13 Jun 2020 23:48:48 GMT
etag: "2152b68faf9abd9e2c28c5a96c766106"
x-amz-version-id: VTOlrGsFyidfNDaaJVY5s0OfssyStHRf
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/7149c7e43a93c05bfa169e3737d7d5c7.PNG
178.253.14.138200 OK 19 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/7149c7e43a93c05bfa169e3737d7d5c7.PNG
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7149c7e43a93c05bfa169e3737d7d5c7
4cba32160064b6251ff9e593b857d6ab6b6720e8
ad0d5e8259380f6076cbab4f72804b1d5367b5d2cce172e6164fea8a170e4e81
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/7149c7e43a93c05bfa169e3737d7d5c7.PNG HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 19388
x-amz-id-2: 0hSI37uRQLEhck5EJHLYFUo2epukPxSso2oKjW4cXuMXTs0eD+6Fri6xz8/mzcsWlrEbqCdvLxjVVdwP+nh+ew==
x-amz-request-id: CEQB9QVDJ67V6XXV
last-modified: Thu, 12 Sep 2019 06:33:59 GMT
etag: "7149c7e43a93c05bfa169e3737d7d5c7"
x-amz-version-id: KS39A3T6YvfAGkQmy0b2MHotP2pmg_mK
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/2c00163238eb3b254debbc851815b59a.PNG
178.253.14.138200 OK 13 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/2c00163238eb3b254debbc851815b59a.PNG
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c00163238eb3b254debbc851815b59a
9e1ec64639ebbe34e327fc82570216662b431b42
f2d0eaba648f80db61d03d6a924d57b27666d0dd41f23848c1f6d572711ef1e8
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2c00163238eb3b254debbc851815b59a.PNG HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg
content-length: 13024
x-amz-id-2: 7znrDIpgM/a7vx9FrDrQYYs34/UThLaW/7u2p4KdrlXvGYnQv2Qk1daYWog/+yL53/QOCEQCB3WPbPTjkLoKGg==
x-amz-request-id: CEQ6P8KTG8QDX5T3
last-modified: Thu, 12 Sep 2019 06:37:17 GMT
etag: "2c00163238eb3b254debbc851815b59a"
x-amz-version-id: yCJWVxAwYwoOHkf7bz5LzDrhPotVfLDx
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/3486.png
178.253.14.138200 OK 11 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/3486.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1ea61ba93801519b9876a564777ceb83
a1897078c30fe09cafb638e33909ad3a8987ca7a
b65b2dd62974d183c001344092e90d317b00a473e232b7475893a4f411ea22ba
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3486.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 10816
x-amz-id-2: S2pPcmsnIzTGuwEm4lhjN2HQG00We4zoE8t568D4Snk4ZihE65DsqaXUQCJCbxo0BbV+UE8ICBgZ6K9xFxjeyQ==
x-amz-request-id: GYYEK1VV10C3R3RM
last-modified: Tue, 13 Aug 2019 15:04:52 GMT
etag: "1ea61ba93801519b9876a564777ceb83"
x-amz-version-id: 0xM_.G5mCp0rfbr7LnAJMf0z0xTqADMc
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/b3548e0369dee59194597916e7974bf1.PNG
178.253.14.138200 OK 5.1 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/b3548e0369dee59194597916e7974bf1.PNG
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b3548e0369dee59194597916e7974bf1
c1fbd147a2e6dbf0b96d6104cbf50e3a64f3f709
abdda8ea7b94b7c8390fa907c299939d2a4c3e73422b3fbd97cb53abc79aa8c8
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/b3548e0369dee59194597916e7974bf1.PNG HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png, image/jpeg, image/tiff
content-length: 5132
x-amz-id-2: es23QdSpu9Xope1WV/I4nfZ98VrH9vAYt9t8XWGD1UdqG6aQ6LJ/DnCSxcAoqxGYA7KVFhIvNnE1H3bCd12y9g==
x-amz-request-id: GYY4NHSG835MY859
last-modified: Fri, 30 Aug 2019 18:34:42 GMT
etag: "b3548e0369dee59194597916e7974bf1"
x-amz-version-id: 8pJMZ4Blzu8iYwzksPBOGIbx.TpIVOYN
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/37429.png
178.253.14.138404 Not Found 146 B URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/37429.png
IP 178.253.14.138:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/37429.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/html; charset=utf-8
content-length: 146
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/34225.png
178.253.14.138200 OK 9.4 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/34225.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e11539adfceb2920e44261ecc951b73e
d09ae16ad5387c18e6b017de0a6638040a7982f9
270a66e702ea389239edfdc5de52ab11130d04e7a5cb0a2a20dc46c1d68f8bd3
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/34225.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 9411
x-amz-id-2: duN8b2mEARcnrsc1hcWISwrnKbmTxvavpaVblsDLxELaewexkB9dQFVLxAvozARwXo1zDCj2A1Hyv45zkP8Pvw==
x-amz-request-id: GYY1RTDAPEY1JY48
last-modified: Tue, 13 Aug 2019 15:04:45 GMT
etag: "e11539adfceb2920e44261ecc951b73e"
x-amz-version-id: gU6UqKLp.7AZKSEUIrVJVuju75p5NsUe
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/11551.png
178.253.14.138200 OK 7.3 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/11551.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 9053575eeeec35a60c4077056a0a0906
3914bc4ce844170725b6289afbfbcc3738cc93c3
95627c70d59370dd3a00923a1aa0298047f2fe45d10805527a1c04a349aa6b82
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/11551.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 7252
x-amz-id-2: mbTBf3V99RFqZbBkGQ8B4EHOF+5MXy7U4wFi70esg5k2kYO4q4LZ4AaMyeKoZgL8noP/psZvY9NHK+kzbCMRBg==
x-amz-request-id: GYY7Z2VGDPKVZ35M
last-modified: Tue, 13 Aug 2019 14:52:01 GMT
etag: "9053575eeeec35a60c4077056a0a0906"
x-amz-version-id: 6CnWJQW9HtxYC6DKzOlFIg4GhvY_9I6N
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/37431.png
178.253.14.138404 Not Found 146 B URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/37431.png
IP 178.253.14.138:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/37431.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/html; charset=utf-8
content-length: 146
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/3462.png
178.253.14.138200 OK 14 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/3462.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ecd5cf809196705ea3061ff3d6c9ae7
bef72171f7309c82d4ef862fe60144134314387c
3ad25ed6110dcb118e1f172086a31afd37fff9e6a7f09a40606dfe9a76e7a23d
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3462.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 14013
x-amz-id-2: jp0Vzbd31R/G4U+bATDsxI+ABzRSjHtxUa+vRv4AYHAjMPAPGQw5BOx9lWwVMgt04tbBXPCeJPRN4QpN9l+0EQ==
x-amz-request-id: GYYBAV0NCDA68J9B
last-modified: Tue, 13 Aug 2019 15:04:50 GMT
etag: "4ecd5cf809196705ea3061ff3d6c9ae7"
x-amz-version-id: YyZpBg8MBoJStIxW5ehbmiGwvCYEcCap
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/3458.png
178.253.14.138200 OK 11 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/3458.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f74928a2cf36cb00781ef1eb11bc632a
931a6842237a3469250febb195f9bde7a830a1f6
017b4a90865b5771daada24659699fe94ca539e3e86c1d8720ca26dc87b5aa50
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3458.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 11216
x-amz-id-2: s8ghwLl2+K3wG7LzK2HlTxiNJxS+1TWM8jo9rIJseMpEcdN3E7X7Y0hm0pQMUhYc1ZMAMWmXRr3hmilnkb0cow==
x-amz-request-id: GYYANH28JC348HJ7
last-modified: Tue, 13 Aug 2019 15:04:49 GMT
etag: "f74928a2cf36cb00781ef1eb11bc632a"
x-amz-version-id: uRJ6J0y.JJ5H4utS0.p28n.e2s6vlzYU
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/e5f210ac37638c73fa8ef665b5b9b0fb.png
178.253.14.138200 OK 8.6 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/e5f210ac37638c73fa8ef665b5b9b0fb.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e5f210ac37638c73fa8ef665b5b9b0fb
3d47e3a085dc05de63dac2244f3589442c84bb00
6b264babe7f1f7def0de8ba1dec24f942e980b68110452ac05085eff3713c04e
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/e5f210ac37638c73fa8ef665b5b9b0fb.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 8606
x-amz-id-2: opl2z5e3rE5JEfIku53tFq/KEUNtClT/cfYt0Y9D6OHeS+WOz4gXglrr9Y1hjGqVx9z+DxQZpBkUH9P/NCTX7A==
x-amz-request-id: GYYBRB71S5PPR0ZG
last-modified: Tue, 13 Aug 2019 15:13:46 GMT
etag: "e5f210ac37638c73fa8ef665b5b9b0fb"
x-amz-version-id: pwFRcNRMo60Qr08DkCQ1EDx_mGt0qkGK
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/3442.png
178.253.14.138200 OK 8.3 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/3442.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 6ca8174f7b3d5796f0a0d9952a934bbb
b37fb4e48ed1ae413a975a18827412ddf433d521
1849aba14038a9099c8c1a3406547d1d04bee5fba6c801e8f3d4d79052f8534b
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3442.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: image/png
content-length: 8272
x-amz-id-2: X8Dzs7sNMEwyyfUslUPaa2AUUebAvwcsyfSZgjn5nnn0hur5g7h+vcN8UvYBVpcYy4CkKjfS9ze9zXDpJBNsYQ==
x-amz-request-id: GYY4GMH1K7WCS5X7
last-modified: Tue, 13 Aug 2019 15:04:47 GMT
etag: "6ca8174f7b3d5796f0a0d9952a934bbb"
x-amz-version-id: 5sZqiKlJER7txMd4wSn.tea2w4FAffVR
expires: Sun, 30 Oct 2022 00:21:27 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/e7caa93a.css
8.247.219.250200 OK 1.1 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/e7caa93a.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (6523), with no line terminators
Hash 9a5b156116333a61086ced303ce87359
e9d796f407115ea759a0985c290789be81399b14
8d5ce707cea99dedfd18d5ba60edc19ebaf9b7e2e7597e568118296f20972ec5
GET /_nuxt/desktop/default/css/e7caa93a.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/css
content-length: 1113
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-459"
expires: Sat, 29 Oct 2022 12:22:39 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43128
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/a9dd6098.modern.js
8.247.219.250200 OK 8.4 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/a9dd6098.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (35129), with no line terminators
Hash 5211c2c84605011f32254c0f15ab26dd
6d9b4cc4c7bcd0ccf42c9cc96cb46c3d3e083d0c
016b87770afff016a6b7116ac55b5d1dc6db2a8f6af8bf993593c50990411ab2
GET /_nuxt/desktop/default/a9dd6098.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 8394
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-20ca"
expires: Sat, 29 Oct 2022 12:23:31 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43126
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/0a04ba86.css
8.247.219.250200 OK 1.2 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/0a04ba86.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (4658), with no line terminators
Hash 123b4e055cad5834ab970c6e933978d1
67c89ee0ff27c0c873bbc7fda368e2edd81afe9d
8125611ab1d0d0f1e0e857ef2bf9efff7d89d8b8816c58ae9776e8a9c810d303
GET /_nuxt/desktop/default/css/0a04ba86.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/css
content-length: 1194
cache-control: max-age=86400
content-encoding: gzip
etag: "635b952b-4aa"
expires: Sat, 29 Oct 2022 10:53:26 GMT
last-modified: Fri, 28 Oct 2022 08:39:07 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 48481
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/fdc93b13.modern.js
8.247.219.250200 OK 4.7 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/fdc93b13.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (16562), with no line terminators
Hash f578a099b1e227fe57802894a04b4d57
f255feeb1848622fb930f7f63a0c9a22b3431c04
b06f57f1b07e7e479c6c13ed225d4d3ffb1dd5a93f477b6de4e9b8dfba5775b3
GET /_nuxt/desktop/default/fdc93b13.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 4738
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-1282"
expires: Sat, 29 Oct 2022 12:23:18 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43089
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/b4c175f3.css
8.247.219.250200 OK 549 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/b4c175f3.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (2155), with no line terminators
Hash 73c87071553ef9134a78bc8f43c66a7b
82adab0271811636cfe85589ad4800f5aee93c1d
a291fb7d3cda1844c50a7ee6d6ddfa9edb6befcf12b7455cd8808ba7fcc32c5b
GET /_nuxt/desktop/default/css/b4c175f3.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/css
content-length: 549
cache-control: max-age=86400
content-encoding: gzip
etag: "635b952b-225"
expires: Sat, 29 Oct 2022 10:53:30 GMT
last-modified: Fri, 28 Oct 2022 08:39:07 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 48479
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/bbdedfd9.modern.js
8.247.219.250200 OK 2.2 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/bbdedfd9.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (5682), with no line terminators
Hash 8a21626a29bcde3f46e5ab50b0280404
02e63f9a2c0bb845b26efcb29842fcd6f2c78a0b
ea5e1039dad635d6ea91f0f048e63f241c072fd6dec68084f1c3432d10e0a100
GET /_nuxt/desktop/default/bbdedfd9.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 2237
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-8bd"
expires: Sat, 29 Oct 2022 12:22:52 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43124
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/40ef35e8.modern.js
8.247.219.250200 OK 7.2 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/40ef35e8.modern.js
IP 8.247.219.250:0
File type Unicode text, UTF-8 text, with very long lines (26721), with no line terminators
Hash fb86de63c723a2800ef590ad001c7d0d
c3d5a82bd04be3ea407078675379e5f4aaac34f2
5eab584f675bee4c1a03b0372e5115ca7d64cb50f6438b6da554b50dc2bf944c
GET /_nuxt/desktop/default/40ef35e8.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 7225
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-1c39"
expires: Sat, 29 Oct 2022 12:22:40 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43127
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/4080d1bf.css
8.247.219.250200 OK 454 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/4080d1bf.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (1429), with no line terminators
Hash 15ea950530d29fbe3233f5991f9c68f0
06a0ea41e09fb7842017c2fac4d85dba2f44900f
c42df3c6fc88664ec656831ba99a3189d1214ff0e97570e755bee888778d0ae5
GET /_nuxt/desktop/default/css/4080d1bf.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/css
content-length: 454
cache-control: max-age=86400
content-encoding: gzip
etag: "635b952b-1c6"
expires: Sat, 29 Oct 2022 09:00:14 GMT
last-modified: Fri, 28 Oct 2022 08:39:07 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 55274
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/7e564680.css
8.247.219.250200 OK 991 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/7e564680.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (3614), with no line terminators
Hash a4975b19ec8d21a0b8ecdc2a368f9887
5556bf42a3e449f3b67094f20f4a2aacc9eccec7
3f162c8807ac1dee1c9f116ea2eec7d62880ad3e813ec2d1ed71466d16d8cd47
GET /_nuxt/desktop/default/css/7e564680.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/css
content-length: 991
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-3df"
expires: Sat, 29 Oct 2022 12:22:39 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43128
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/d92f0b59.modern.js
8.247.219.250200 OK 17 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/d92f0b59.modern.js
IP 8.247.219.250:0
File type Unicode text, UTF-8 text, with very long lines (41008), with NEL line terminators
Hash 51fb69c6c9646ef575177085d0c5ddd2
e059cebca2957e0562471b397beb3c6fcee7e140
250f375cbd6c773513e98c70fbd88f8db896bf3d2745cf8362a1e5eeb053b1c9
GET /_nuxt/desktop/default/d92f0b59.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 16803
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-41a3"
expires: Sat, 29 Oct 2022 12:22:52 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43123
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/16b34c24.modern.js
8.247.219.250200 OK 3.6 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/16b34c24.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (14237), with no line terminators
Hash d92f90a9ca04ab2d704610f5c1f9dafb
7e3f2ee8a3290fbe45d5efa43497436077c2b476
786d63d7db8e687b16e7d80c9d1f72aaf0c0ae1f7c925ddd5af6527fa556cd0c
GET /_nuxt/desktop/default/16b34c24.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 3596
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-e0c"
expires: Sat, 29 Oct 2022 12:24:00 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43125
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/6746ab6a.css
8.247.219.250200 OK 857 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/6746ab6a.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (3243), with no line terminators
Hash 710df17db142423123c9714555c78720
e8812772435e889c29e6ee3c5a1fb9728536d619
e8d5341728c14a10271c5da26c3164b0f22d4b3e0f8d330a7c78b66316ac008e
GET /_nuxt/desktop/default/css/6746ab6a.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/css
content-length: 857
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-359"
expires: Sat, 29 Oct 2022 12:22:52 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43128
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/b83dea14.css
8.247.219.250200 OK 887 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/b83dea14.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (3443), with no line terminators
Hash 3c68eb6d789a9d4e5efdae4b2710fff2
904fcb3418075a11d4c04c553967cd7bbed916bc
4e286c7f3986a4d054c9d49893ba37045e4b180ed318bf9ab74848d51e8d4c5b
GET /_nuxt/desktop/default/css/b83dea14.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/css
content-length: 887
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-377"
expires: Sat, 29 Oct 2022 12:23:52 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43119
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/73290c16.css
8.247.219.250200 OK 508 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/73290c16.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (1570), with no line terminators
Hash 880f1fcc07d715f125674540af1b9377
b7447e306ef1e53707cf4f0505df13e9418aa43b
0cf21de71e6caef36afb4ce9d26124202c7a11828bd36c70f862f5bb2ae3fc91
GET /_nuxt/desktop/default/css/73290c16.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/css
content-length: 508
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-1fc"
expires: Sat, 29 Oct 2022 12:23:32 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43126
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/_nuxt/svg-sprites/sports-0d806c0c85a236c624a6b0d8dcf23594.svg
178.253.14.138200 OK 142 kB URL HTTP/2 lite-1x768595.top/_nuxt/svg-sprites/sports-0d806c0c85a236c624a6b0d8dcf23594.svg
IP 178.253.14.138:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Size 142 kB (142133 bytes)
Hash 3b18ddc07907cc21a6ab19fa2f0374b6
6fcec64cbfcff1db0a47d3679aad9aa6d222c41f
1583121486bc51e76c7001974f5ce2871206f637547adef395233e4c37b051a5
Analyzer Verdict Alert quad9 Sinkholed
GET /_nuxt/svg-sprites/sports-0d806c0c85a236c624a6b0d8dcf23594.svg HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:26 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 28 Oct 2022 12:27:29 GMT
etag: W/"635bcab1-52ce3"
expires: Sat, 29 Oct 2022 14:21:44 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/56e5fb6e.modern.js
8.247.219.250200 OK 1.8 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/56e5fb6e.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (4744), with no line terminators
Hash e5a9571768d92e6d1a1a017d22e0aa91
e945dfc553bbf62a17f26febebe2558cc9f9e050
3ea6aeee2fcf07e4204538cf79db0affbd6b7367bbc6d9474f451c9185158891
GET /_nuxt/desktop/default/56e5fb6e.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 1785
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-6f9"
expires: Sat, 29 Oct 2022 12:22:44 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43124
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/2ee14e61.modern.js
8.247.219.250200 OK 1.4 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/2ee14e61.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (5827), with no line terminators
Hash df9f0c6bcbc8952bfd3e2ca477a65a53
8415d663ceb0fd2cad793a1b763427fc515f30ec
bc7a5b4400a9d7644c5e48de8bc0b5c9072e08dbd882c62ea270de5ecb74441e
GET /_nuxt/desktop/default/2ee14e61.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 1432
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-598"
expires: Sat, 29 Oct 2022 12:22:43 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43125
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/2a65a315.css
8.247.219.250200 OK 3.3 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/2a65a315.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (17281), with no line terminators
Hash 844639827d42d4c3961731d80a407d2c
cac1b868faef69091f64e29722cc8b21c85b3779
b089f8912a2630f76a8a72ad600386bbb7852f300435203c1acf1ed6318c3d1d
GET /_nuxt/desktop/default/css/2a65a315.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/css
content-length: 3315
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-cf3"
expires: Sat, 29 Oct 2022 12:22:52 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43126
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/2bc17608.css
8.247.219.250200 OK 2.1 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/2bc17608.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (14437), with no line terminators
Hash 393d165aa91b6c251ea82fe260b41b03
7c61aa9f0530361f59a637be118b6359bf2535c9
f919bd277643110fba142964760bb3d0a9020aa85ad4a024b14db3c2bb39a0a9
GET /_nuxt/desktop/default/css/2bc17608.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: text/css
content-length: 2119
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-847"
expires: Sat, 29 Oct 2022 12:22:48 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43120
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/0cad9c99.modern.js
8.247.219.250200 OK 12 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/0cad9c99.modern.js
IP 8.247.219.250:0
File type Unicode text, UTF-8 text, with very long lines (59874), with no line terminators
Hash e6db6811961aa65067a090f5247ca719
2e349307f3f538c6115b31869f61a7376ac51d09
581604461a8c3d5671fdf01f6327a66c13318e35a6de97dd5b94ed160ac9e53c
GET /_nuxt/desktop/default/0cad9c99.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 11904
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-2e80"
expires: Sat, 29 Oct 2022 12:22:43 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43126
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/dc1756bf.modern.js
8.247.219.250200 OK 320 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/dc1756bf.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (370), with no line terminators
Hash 99a9e359ff5fd8dba05e353a3c23aba0
2ad98f9640f5713d26b5fba2cf09928009753401
d23e2babb8639d181b7dd19e846acf0f38ad6bb56294e2ba312382062802882c
GET /_nuxt/desktop/default/dc1756bf.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 320
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-140"
expires: Sat, 29 Oct 2022 12:22:46 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43122
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.195200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x768595.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Oct 2022 06:19:49 GMT
expires: Fri, 27 Oct 2023 06:19:49 GMT
cache-control: public, max-age=31536000
age: 151298
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/89ac4e42.modern.js
8.247.219.250200 OK 1.1 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/89ac4e42.modern.js
IP 8.247.219.250:0
File type Unicode text, UTF-8 text, with very long lines (2451), with no line terminators
Hash 7ebfe957dc977285734bdd4c49e7a06d
06f63f6b191b6a07d6cd8a3049a45e7b9f49a101
41c6ffcfcaabbc7343da6e81bfe10f5c361b17eaea00be780ffdc619b17740dd
GET /_nuxt/desktop/default/89ac4e42.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 1063
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-427"
expires: Sat, 29 Oct 2022 12:23:31 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43119
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=us
178.253.14.138200 OK 752 B URL HTTP/2 lite-1x768595.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=us
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1563), with no line terminators
Hash b0d9e0f6ed8b05446d4754ce01c36cfa
2e52f8857e831f6b32872453ac0427df7f89bce3
debb71ff4aa88d87100fdba7a8dd8d0276a9f1bfecd907f779f2547735652a29
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/GetExpressDayExtendedZip?lng=us HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/json; charset=utf-8
content-length: 752
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LiveFeed/GetLiveExpressExtendedZip?lng=us
178.253.14.138200 OK 638 B URL HTTP/2 lite-1x768595.top/service-api/LiveFeed/GetLiveExpressExtendedZip?lng=us
IP 178.253.14.138:0
File type JSON data\012- , ASCII text, with very long lines (1332), with no line terminators
Hash 956646f3b88cafc6e7076a201b4f07a3
72ccf03ae1fc2b3daca71a69c767f734f11334a1
788dded8e29211763de12a529a16511ef9e5ad640c0fbb3b1eecb6ae06e750fa
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/GetLiveExpressExtendedZip?lng=us HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/json; charset=utf-8
content-length: 638
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LiveFeed/GetTopGamesStatZip?lng=us
178.253.14.138200 OK 1.5 kB URL HTTP/2 lite-1x768595.top/service-api/LiveFeed/GetTopGamesStatZip?lng=us
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (4765), with no line terminators
Hash 79cf244601d55b8f435869fe348a2f6d
55dfce15e0db752c2cfb18c3afa3a8db357d59e5
e05689eaf92c576835d4399a2b7a88fd37613695f8ae04ed941d7c56c0434345
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/GetTopGamesStatZip?lng=us HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/json; charset=utf-8
content-length: 1523
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/domain-api/api/v1/domains/lite-1x768595.top
178.253.14.138200 OK 84 B URL HTTP/2 lite-1x768595.top/domain-api/api/v1/domains/lite-1x768595.top
IP 178.253.14.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 9f7ce1856bb45ee9898aebdab9863fc1
6169715dfbfe5a98165ab596ee7a2e066505c598
a1e85717a80f7d928aa7da17ebc13cffdba8a67eecb9a63cb4038fcb581282e7
Analyzer Verdict Alert quad9 Sinkholed
GET /domain-api/api/v1/domains/lite-1x768595.top HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/vnd.api+json
content-length: 84
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=us&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
178.253.14.138200 OK 7.4 kB URL HTTP/2 lite-1x768595.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=us&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (42357), with no line terminators
Hash 57e428b7df40ae755843694d9d434981
afbf1ff1434c73c71aaf8f56ceaf65dfd5c2a71d
ea7d814460fb9460955c8900efe31d672c5ed3dce5d324d31f3ab2b7ee349332
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/Get1x2_VZip?count=20&lng=us&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/json; charset=utf-8
content-length: 7441
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/web-api/user/secure
178.253.14.138200 OK 58 B URL HTTP/2 lite-1x768595.top/web-api/user/secure
IP 178.253.14.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 905256c1afbda0a98515e369c5553f84
48aa04e6486905ae76e87f4b4201c950c3e0df90
25c045c69afaf8a9f02e178382a031d7e666ad9ad035021d7cb2887d519c951e
Analyzer Verdict Alert quad9 Sinkholed
POST /web-api/user/secure HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Origin: https://lite-1x768595.top
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/json; charset=utf-8
content-length: 58
server-timing: dt_285;dur=54
set-cookie: is_rtl=1; expires=Sun, 29-Oct-2023 00:21:27 GMT; Max-Age=31536000; path=/; HttpOnly
tzo=3; expires=Sun, 29-Oct-2023 00:21:27 GMT; Max-Age=31536000; path=/
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
fast_coupon=true; expires=Sat, 05-Nov-2022 00:21:27 GMT; Max-Age=604800; path=/
v3fr=1; expires=Tue, 01-Nov-2022 00:21:27 GMT; Max-Age=259200; path=/; HttpOnly; SameSite=lax
_glhf=1667020663; expires=Sat, 29-Oct-2022 01:21:27 GMT; Max-Age=3600; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/a900795a.modern.js
8.247.219.250200 OK 5.4 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/a900795a.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (13502), with no line terminators
Hash 53f6ed7f6b69df80ef5b6a1346f861b4
d02da4f3758b3892d32e684c6abf174370498b39
8d1d6fb964a88ce332ccd2279187e11a4f729fa6630fffcbd32e7e1b9ae66980
GET /_nuxt/desktop/default/a900795a.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 5381
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-1505"
expires: Sat, 29 Oct 2022 12:23:31 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43114
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/ad7f9297.modern.js
8.247.219.250200 OK 26 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/ad7f9297.modern.js
IP 8.247.219.250:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 0443e58d85c017b5d7259cdabea76f0e
153c762f42cb75c66a761b7b4f3033f31b8d97af
ef281e52555d33450749a32aa6e42b756874b5da93e9f337d514b375d502375d
GET /_nuxt/desktop/default/ad7f9297.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/javascript; charset=utf-8
content-length: 26106
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-65fa"
expires: Sat, 29 Oct 2022 12:24:01 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43113
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/checker/redirect/stat/run/
178.253.14.138200 OK 49 B URL HTTP/2 lite-1x768595.top/checker/redirect/stat/run/
IP 178.253.14.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b7a9075de81cdb1a9fa74fa71b5126dd
9d651f649e1c5eab95d3b0ca7cc9b02dec41df61
86877f86c7d18d59e54d73c43e6709a91a7f0a6a86980cada7f4b7e69c13cf20
Analyzer Verdict Alert quad9 Sinkholed
GET /checker/redirect/stat/run/ HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: application/json; charset=utf-8
content-length: 49
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LineFeed/Get1x2_VZip?count=20&lng=us&tz=3&mode=4&country=137&virtualSports=true
178.253.14.138200 OK 8.9 kB URL HTTP/2 lite-1x768595.top/service-api/LineFeed/Get1x2_VZip?count=20&lng=us&tz=3&mode=4&country=137&virtualSports=true
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (49903), with no line terminators
Hash 40caabfaf17f68f0514bf56e083973f9
d10a3601652e276b3a5fe8fe74d2bd48673b8878
50d8e1f54a95b3890c514826ff20d41afdf052e529c74f8879acc9114df33135
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/Get1x2_VZip?count=20&lng=us&tz=3&mode=4&country=137&virtualSports=true HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: application/json; charset=utf-8
content-length: 8889
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_map_short_us.js
8.247.219.250200 OK 546 B URL HTTP/2 v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_map_short_us.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (1159), with no line terminators
Hash 58cd90bcb75fcb4fd99dc4a858141d3f
88c4e5eb71b5e9413b0d0e1f4c74a1dc1336ab5d
961e434f24e0c4940e9527bb363fdafe2a77f426328f11fb1f00f4956579bff8
GET /genfiles/cms/betstemplates/bets_model_map_short_us.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 546
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"0f590a62d1ea5c9ade3e852623d08757"
expires: Sat, 29 Oct 2022 00:16:11 GMT
last-modified: Wed, 26 Oct 2022 10:57:14 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 466
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_short_us_0.js
8.247.219.250200 OK 3.5 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_short_us_0.js
IP 8.247.219.250:0
File type Unicode text, UTF-8 text, with very long lines (12621), with no line terminators
Hash b93df44ca674f8970f82694c15b94375
ae94f693073e556b8cdb7f3adf893a185ea9de04
c01728d670168a01d3e09bbf324ec7f446edbb19acfd41bfac6f657b4e74d150
GET /genfiles/cms/betstemplates/bets_model_short_us_0.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 3462
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"b707d91b97881a24d3622b36b6d6f1e2"
expires: Sat, 29 Oct 2022 00:20:17 GMT
last-modified: Wed, 26 Oct 2022 10:57:13 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 191
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/web-api/external-api/config/getVideoAccessConfig
178.253.14.138200 OK 7.3 kB URL HTTP/2 lite-1x768595.top/web-api/external-api/config/getVideoAccessConfig
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (44036), with no line terminators
Hash d9d321a68b3f86cfc9d282b80e343fed
c9be4a55b9bbdb847e43b525d414542c65e0a09d
50e63d816eb7a356c078458757d41decc5a70784c0e87fc8e6ecf225ff0523ed
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/external-api/config/getVideoAccessConfig HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=56, dt_285;dur=58
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_short_us_1.js
8.247.219.250200 OK 2.6 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_short_us_1.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (10098), with no line terminators
Hash 3bb6894364bf6a459afbfaf2b6d730e1
964e11a7d2b912c657cd07f87684f6f3f5875aa0
a77c2cc7420e215a7c6f64b2efc5e9efca70b95de4c8fce4c621d3a39a937cc3
GET /genfiles/cms/betstemplates/bets_model_short_us_1.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 2583
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"f9f18ba9c9be3c1a92f049dfd8271bda"
expires: Sat, 29 Oct 2022 00:15:12 GMT
last-modified: Wed, 26 Oct 2022 10:57:13 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 569
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 28 Oct 2022 22:41:09 GMT
expires: Sat, 29 Oct 2022 00:41:09 GMT
cache-control: public, max-age=7200
age: 6019
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/b4a29362c7da985ca4ef1c4e8f615a3c.png
178.253.14.138200 OK 15 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/b4a29362c7da985ca4ef1c4e8f615a3c.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c6faac1535b7d3b5d8691eab12bcb666
82ac533a4ea1fc08ad6a6b1da26def3ae83220f4
437e0fc492d4ccb9c32a3c920696f04d97ae520646134547200499742db56fa6
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/b4a29362c7da985ca4ef1c4e8f615a3c.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: image/png
content-length: 15132
x-amz-id-2: a7ALjQ8nd3wm0zs/sPbqByPoC/cdVywuophcrx2faAhHyn6fvWjniwl+lHQ3QMFcJ33oOW36GTDrjBO/mTivSA==
x-amz-request-id: 5MC9Q678BQTJ8RN5
last-modified: Wed, 22 Jun 2022 11:21:02 GMT
etag: "c6faac1535b7d3b5d8691eab12bcb666"
x-amz-version-id: ecoK41idqt7ON7JR_ry_r0NxQpgckQNV
expires: Sun, 30 Oct 2022 00:21:28 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/3d32ae69f04f32ae5e06a64544637a65.png
178.253.14.138200 OK 39 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/3d32ae69f04f32ae5e06a64544637a65.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 28ac87b74af9ba91176ba8028f3cd8e5
3c2559e198b87ab2a5955d983bf2b7d2820624bc
bbf6c85e6bb029bd1e8b9ce941e77688688e2c166936a5d9819b9b6543e229ab
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3d32ae69f04f32ae5e06a64544637a65.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: image/png
content-length: 38733
x-amz-id-2: JOlQgPXXHuFJq7/aAF3SdFyXDV/I0jZnIZxfg545ryyIVTCVEgNw7leAZOURqKjfMvVJUI1uhEax1obGa/mhBQ==
x-amz-request-id: 5MCA9T4HC2SKKZ55
last-modified: Wed, 22 Jun 2022 11:18:31 GMT
etag: "28ac87b74af9ba91176ba8028f3cd8e5"
x-amz-version-id: S86tCstmgtWGV7ziT1730y99ugr_KWzF
expires: Sun, 30 Oct 2022 00:21:28 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/eb6f3859611aa1e94a66cc69a90f1703.png
178.253.14.138200 OK 4.7 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/eb6f3859611aa1e94a66cc69a90f1703.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash bf480754c716e69885b966bfa630d720
97ec8200368ba518350be3373b79a2755be42866
c6e71b7c02b9331739f7c1faa7c7cf42bdf748fb0df7b9e83870ad52226154e3
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/eb6f3859611aa1e94a66cc69a90f1703.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: image/png
content-length: 4740
x-amz-id-2: ix0cJIJ3d56AfiNRFxqdtMC8wSu71ncr95BBb2lPBSnmeWZsQIxGQIPIb2MuLSRffeqXoCBws4AZ3pliVc5RUQ==
x-amz-request-id: 69EY2KDD3Q9ACT1D
last-modified: Wed, 22 Jun 2022 11:23:21 GMT
etag: "bf480754c716e69885b966bfa630d720"
x-amz-version-id: 2vgqb5d44VLCsAbOOiI.XJm0PsBqS2XU
expires: Sun, 30 Oct 2022 00:21:28 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/98cbeeffad941bd618b6bf0c52148947.png
178.253.14.138200 OK 7.1 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/98cbeeffad941bd618b6bf0c52148947.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 9fd2724f22ddc11f36501a31237d4e88
b482be467c600fd3aff92468d48d528d5cf97a40
91b15190d9e2ec688498a1d27b507480cb55e91899d2371df0c015c5fbec5705
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/98cbeeffad941bd618b6bf0c52148947.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: image/png
content-length: 7067
x-amz-id-2: pnsIB3Ssib/PgD9ves4h7SKE5uTRs1UzeR6nxVosGUBEPn15nlnerZdQp0avW1lODCPeJeHGHQZ7p9mt3ARp2w==
x-amz-request-id: 69EHEQTZ7F01KDG7
last-modified: Wed, 22 Jun 2022 11:19:16 GMT
etag: "9fd2724f22ddc11f36501a31237d4e88"
x-amz-version-id: vHox68liRMLjfW5NxNx8Y4sElOLVmcKH
expires: Sun, 30 Oct 2022 00:21:28 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/819757.png
178.253.14.138200 OK 15 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/819757.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d72c606a7b7d0e6443e21185b527e919
5c2acdefa787ed87b78280bcab60466495d96728
616c5557ef2cd38a5ddf84700853c5baa3e07a7bc808ec129b209d7356d48bf8
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/819757.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: image/png
content-length: 15161
x-amz-id-2: Eq5nTy8AcFafYh3gir4FmZZ6RcOVIKLt+pp07LW0aEhRsJmd1iYGFNxOEfMET+xN3PwRCN9I0MH0q69n41B3uA==
x-amz-request-id: VS9T0NGGDJHQ3MHB
last-modified: Tue, 13 Aug 2019 15:11:49 GMT
etag: "d72c606a7b7d0e6443e21185b527e919"
x-amz-version-id: hUL1r8xe3iWVocsXuI0M5nlCHCNmbRAM
expires: Sun, 30 Oct 2022 00:21:28 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/1049341.png
178.253.14.138200 OK 11 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/1049341.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f2bf6c6bc888be8d46a14d2c3dd22303
22f9b41aac2a44ab440358c00eee1f206d6168ad
3ee4fc24a8cab0948f8bfc1ce06eb60f619c248de46fa88d77585f81aff397ce
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/1049341.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:28 GMT
content-type: image/png
content-length: 11260
x-amz-id-2: OX+byB48QsCKVU02e1063/fUXXE1EwuSbAGeETbjHTwSRY6s+1Vw6aYcRm8LY7wJkcGV7LT4rlm/9/oRa27YrQ==
x-amz-request-id: VS9TR8ZRGHRTSD5H
last-modified: Tue, 13 Aug 2019 14:51:08 GMT
etag: "f2bf6c6bc888be8d46a14d2c3dd22303"
x-amz-version-id: oPm8S5I6NFRKrhlk1pc_yT1KWqIRNvba
expires: Sun, 30 Oct 2022 00:21:28 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/ab15ef4c40d2a89777362e59c72a742e.png
178.253.14.138200 OK 15 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/ab15ef4c40d2a89777362e59c72a742e.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGB, non-interlaced\012- data
Hash 9a1e575a9c930010747555072d97a39d
40c89012d198528a4c737d41514cf01f945ef53c
9b39cf27f0d07501d5a5bdb7aa3082270f8ac63eb7727dfa48369a28bf9a0091
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/ab15ef4c40d2a89777362e59c72a742e.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 14739
x-amz-id-2: nwnEE6UPKLfe++yX6L6/mv/gBZNX1PWy5T/8CreEkrFqzv71VNNcmj6KWhf9gId1OBd8HJuV6evJsI6o9qmNSQ==
x-amz-request-id: BTV1HTNNFC70YKKT
last-modified: Mon, 27 Jun 2022 11:02:36 GMT
etag: "9a1e575a9c930010747555072d97a39d"
x-amz-version-id: n0BnnAfYwmvJhuInSLjjR5yDDYrY4mtQ
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/b470411311c3d423a00c601084af697b.png
178.253.14.138200 OK 16 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/b470411311c3d423a00c601084af697b.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash dc50039642d337ed0024e4acd12a7626
611aa29096841c2a03a1ae95193e9d322bc62a79
53a22f6b65202263a0122c87c5b58c2e1ad3ebbaad0ebaf01882b822995d568e
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/b470411311c3d423a00c601084af697b.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 15972
x-amz-id-2: mM7FBIw7WpnmihhaYKwBMHyvoQusG/KRKGmRsKxQQAaVnenL0TyDPTj6NBADmYP49lDk6J1wJPpC2PqXFdVzKA==
x-amz-request-id: J9GWE7GXFEH6DJQB
last-modified: Mon, 03 Aug 2020 05:54:26 GMT
etag: "dc50039642d337ed0024e4acd12a7626"
x-amz-version-id: Qa2okM585Gzy_9i60.W2kBuu2u_nJCeZ
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/2630.png
178.253.14.138200 OK 3.3 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/2630.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 3e7c42319853a294afd9d5932ff34bc7
625b8fbefec088f53181ee0d6e5440391a7a870f
5cf52e7ee4ba4dc4aeb5ac94ec75b23cd4d63de22f51ffcca4c53656242aef41
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2630.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 3261
x-amz-id-2: mONgsFWCnKR0tVMIWws76ZybOXdED6hblpzp4LqMUZqfsTAC1EOnOBuMshMSEPSTn1VBA2Gi5far6YqJ6Qbl+w==
x-amz-request-id: 7GYJKPQ01CA79XYP
last-modified: Tue, 13 Aug 2019 15:01:50 GMT
etag: "3e7c42319853a294afd9d5932ff34bc7"
x-amz-version-id: mCkHwjrn69EopxJLsLxUXxe9RBgPCcBQ
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/2646.png
178.253.14.138200 OK 10 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/2646.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 07bcaa994dcd87eb659a04c3eec2faca
0d9f626d0bde55ceca96f8474f230cae341733cb
ec03c08e6b18e3610385c891a0b9cdeb9fb277cbba553d467c2d6c4eb7080006
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2646.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 10323
x-amz-id-2: qeXhO9CmBz3/VgzQoXaiB9JyIMGnvjTEClrhn7KKZtDQ6AofpkGDnvRQyDm6at6AL2VUkrI0glLiikVEd58GNA==
x-amz-request-id: 7GYW29A21PSFENK5
last-modified: Tue, 13 Aug 2019 15:01:56 GMT
etag: "07bcaa994dcd87eb659a04c3eec2faca"
x-amz-version-id: Iu1pEdV_KoaD_zS9_cxDbrnUmaFg25jF
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/6858.png
178.253.14.138200 OK 10 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/6858.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b7969f585ea3c7f471f48158ec56725
692e0acb205887191e7c8a9c94c54f26e91d7249
02c430e4a3e42bca06dbbc0fd391d1e06035273e365110f8e13b18380c8f179c
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6858.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 10272
x-amz-id-2: 0f46luHRBuR9USS7AwAqv0Pt4i3RXokat9fhQV+HdUxgdjrelE6HUE0UyyYAzT3zTCoETg/TCmmNbzIRC3HJrA==
x-amz-request-id: 46VJM7CEKB9JS0NS
last-modified: Tue, 13 Aug 2019 15:10:21 GMT
etag: "4b7969f585ea3c7f471f48158ec56725"
x-amz-version-id: V9ah9MdvzntPOclngruudHB.HI5HFMQO
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/6856.png
178.253.14.138200 OK 11 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/6856.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 377c503c846f39d6e05c51bf4cdfb9cd
f1b4af24e28ad851ba9bde04a7105debf10516e6
2c041dbd479b43017a1b8473fc72f03c86538b99ad75719d45c0eda1a56b867a
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6856.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 10680
x-amz-id-2: vKhrgYVlAlKawv2VZzaG6v23orYVbsXbvb6rfH1sEELH1HVsPgqJbge9ZohDytht+bnVjURNLl8cs6yP3kb0PA==
x-amz-request-id: 46VQXSTY2J056E1F
last-modified: Tue, 13 Aug 2019 15:10:21 GMT
etag: "377c503c846f39d6e05c51bf4cdfb9cd"
x-amz-version-id: VzObT7YL3X6vbM6vPyU94x0K6AH5zMGr
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/5280.png
178.253.14.138200 OK 19 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/5280.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8735b25175e7e02cb1116dfc59523f67
a1c18bf8e0ffd544ea1cc8390ef7d88a14b7283b
897fcb6227004705e920f958e28120f12168d2af14ef135779860dbed8c44dbb
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/5280.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 19345
x-amz-id-2: rqTxKGa3KhnUXlAgqsdTf4EPSf6tyFWSkjy7D7D8uNvcPqLk2j0Io8DzaOicjmOqqgr3dOavhKLufRYdvz84mQ==
x-amz-request-id: 52NFZGQHFPNQXHFQ
last-modified: Tue, 13 Aug 2019 15:08:11 GMT
etag: "8735b25175e7e02cb1116dfc59523f67"
x-amz-version-id: sJGj_gOPMCx5QbBOjg8nfhlquFps9RiN
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/5318.png
178.253.14.138200 OK 12 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/5318.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 623686ab92226ddac732de2b8208434e
5f61913983ad5d862aa9e836dfbed8da0743d921
475101b241e94333c001dafd353bf8d35a469f14a0cb483459407013491ae34d
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/5318.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 11866
x-amz-id-2: sHKNc0sOCVixQrTSUyGiRQdkh2rrgPorBN6qJx7+k7p/dHJl68RrC6kiFRLUO8cj6coj9nhRSITO5Q4jWBaS1Q==
x-amz-request-id: 52N8C69X1T9C9YEE
last-modified: Tue, 13 Aug 2019 15:08:14 GMT
etag: "623686ab92226ddac732de2b8208434e"
x-amz-version-id: .YMfGjYeCKlbcg70IUbwyOmQF1vLO8aL
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/27451.png
178.253.14.138200 OK 19 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/27451.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b78ac7ebe81c11ee863da00133a923f3
255ae98e90796471d57bf554724fed45d1a2e25a
ed040ed22eb8b7c3b937e64fa9e2cb05a9ca017d67e038b33b7109faa4f505e1
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/27451.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 18776
x-amz-id-2: BD0HUcp05puqk7EYlavY5rYonoN0L5Mh1m8IWr4k8eYThxkIOoq1eZ2RjINqx/anQN7IlpL94EhVr4pqaOmvog==
x-amz-request-id: 52N4MMCCEABHX22N
last-modified: Tue, 13 Aug 2019 15:02:40 GMT
etag: "b78ac7ebe81c11ee863da00133a923f3"
x-amz-version-id: JrVXvZqpFu.BsOUw5.WlykVkje9cl8MG
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/27551.png
178.253.14.138200 OK 5.5 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/27551.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7595ae7f35e5edceab60334bdff9acf0
55427a117518fa84670eb12b12a305b188aa4ac0
4380ca1485a1fdeb3186a4ca8dcf991ae69608e469d070fc1695a203b8cbbdb8
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/27551.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 5523
x-amz-id-2: LIEYqaNFE15ZjrDQ/Y9kHrdzVtsIlnFjUiTTJy0X3u4AbptGvNgHCK54F3iPBkvq7lzQYvovsndud1QkxajN4w==
x-amz-request-id: 52N5J8A1V25PQWG6
last-modified: Tue, 13 Aug 2019 15:02:44 GMT
etag: "7595ae7f35e5edceab60334bdff9acf0"
x-amz-version-id: pbeoVRU.sxrSpmTELwnwFxJ_SNTQwVZ7
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/d19bee6db62296d7914ca8eb36fea692.png
178.253.14.138200 OK 3.6 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/d19bee6db62296d7914ca8eb36fea692.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f902ffd3ef8b246fd40a8a651f4920b
c88b5cae8dc9436904e19c00e830e5bb94479ace
67c2ebea4aa62de57751eb3daa43f7bc1cb2dde0029d92a263525bcc033232c4
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d19bee6db62296d7914ca8eb36fea692.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 3626
x-amz-id-2: 0vHCYm3E49KXETcYth+Nvz4ACgHXtLIjp5Khe4xuhyQeoNWrOsLsVyapSsU7uuoWJP3khtUXt1N2k4Dfbk0lYA==
x-amz-request-id: 52NBJH163GY2YMXP
last-modified: Thu, 12 Nov 2020 11:24:05 GMT
etag: "4f902ffd3ef8b246fd40a8a651f4920b"
x-amz-version-id: Snuh6EkHJ516MEgyVzqnqvGYjv9ffvRz
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/web-api/api/internal/v1/sessions/user
178.253.14.138200 OK 10 kB URL HTTP/2 lite-1x768595.top/web-api/api/internal/v1/sessions/user
IP 178.253.14.138:0
Hash fc0eb139e7582719d91d5139b03a4847
a0b7485077d30b5a091d033233a8709e37d905de
7e7ec09262d36ed57859327cb1fbfd9265e39f92fc6b9986eccf864ebc393e25
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/api/internal/v1/sessions/user HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=30, dt_285;dur=32
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/web-api/external-api/getFirstDepositBonus
178.253.14.138200 OK 270 B URL HTTP/2 lite-1x768595.top/web-api/external-api/getFirstDepositBonus
IP 178.253.14.138:0
Hash 0833dd405ab7cc7cc7aadbd7b21d96b3
b6765e3647718212390b13f45be79a44ce619153
ca6597bf5935d99c4693aa8e52e01e4ec092b370af481ee44f7562055aa12ec1
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/external-api/getFirstDepositBonus HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=30, dt_285;dur=32
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/37431.png
178.253.14.138404 Not Found 146 B URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/37431.png
IP 178.253.14.138:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/37431.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: text/html; charset=utf-8
content-length: 146
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/731729.png
178.253.14.138200 OK 20 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/731729.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4577a01653fe54aa027a4a4bb9d52417
bad103ad3f9c66fb973fd592f3306208f3ad75d9
6eacd7a5c8721e4077210428e87524c3d6f972ddfa443fb5cf9e05a503d37a08
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/731729.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 20007
x-amz-id-2: xEmaZMzv3XkiCsCaDo1x9mt7hj59k9W/0YCVvHYDNoM3IVwQJ+sqqqiVZdnKktvfLrYlq7tlI33JnzFRO7ywOg==
x-amz-request-id: 52N51BAFJV7P01KR
last-modified: Tue, 13 Aug 2019 15:10:56 GMT
etag: "4577a01653fe54aa027a4a4bb9d52417"
x-amz-version-id: 4IQskuHFxU9FKWBRJLmWSe9F4YrRynls
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/4592.png
178.253.14.138200 OK 12 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/4592.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e90184c333db19cb132a5a767bc219c5
9c69961f3116f9af9e7ba2c12854955fae1ed794
82743ca5fa6021d397309ab37b330083c772922e6e94d4ca70f4613ec13404d0
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/4592.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 11644
x-amz-id-2: 8pHOZYHOLg85gCd5bbLORa7nc/gl3OkZnsf4uj8LfGDHyT7Xc7Mvk12O8pnBKMahXo58du2GVac/b+DeFt7RUQ==
x-amz-request-id: 52NFNGH49GX6EWHX
last-modified: Tue, 13 Aug 2019 15:06:47 GMT
etag: "e90184c333db19cb132a5a767bc219c5"
x-amz-version-id: M2nRPhKzURb6.7mEB8yPLC3VRCUJZCV_
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/16919.png
178.253.14.138200 OK 9.0 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/16919.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 9bcd9a096159b4157fc0476faceecf06
f9d3e12a5ab7d0c6fdcbf0cdc51831ae09d72047
695205b3bf728ce237f99906377d8b3dd642d9c4253f700dcef8678212229cc4
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/16919.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 8995
x-amz-id-2: JC1DqrwX8hfoD5jSBj2XAZiInG8LgrCyURn2/aEf/yeDDtMFJQE0VxjOturYfvvE7K58tW/B80T8D+qdkPUEtg==
x-amz-request-id: 52N96C2DP1GB33H9
last-modified: Tue, 13 Aug 2019 14:55:26 GMT
etag: "9bcd9a096159b4157fc0476faceecf06"
x-amz-version-id: NhpDup6bQVIDOAye8X.lFrSJbyhapkXF
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/11549.png
178.253.14.138200 OK 13 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/11549.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 440ea5103971ac139ab05246d2f0f814
7a3d210ee0a2877a8979725af904b9d58d48259a
42c84b60a33165ac2343ebb6929ed77fa8f7721dcb18bb2c7a31780cfb64f1f3
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/11549.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 12660
x-amz-id-2: 75+3dssczz6E+U/O8WOD+9Qil0ap0ZXXF3wVkzqddj3aNIH6KgLE0MSxhUDiNKCcxuELgkmCgBOrcjT7edGWUw==
x-amz-request-id: 52N4XQZ2AW8C84CM
last-modified: Tue, 13 Aug 2019 14:52:01 GMT
etag: "440ea5103971ac139ab05246d2f0f814"
x-amz-version-id: sy_I2W_Be5pVN1JoBTps5J0rEV58.7j4
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/a5ddb7046950d01c67101771e36c7ab3.png
178.253.14.138200 OK 15 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/a5ddb7046950d01c67101771e36c7ab3.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a5ddb7046950d01c67101771e36c7ab3
64edb41f30f08396a2d801cf67a977417f8aedec
0a4c7f1a33c49bbfa4b8963de650b7c243e15c4e3a6b6f8e22b66d34152e2f21
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/a5ddb7046950d01c67101771e36c7ab3.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png, image/jpeg
content-length: 14745
x-amz-id-2: lz/ZtFjklqL7zvnsycC15wgmfKnLCmNrxGiU/ctKPyi3iVyEeAAeHhTkfIQhJytXa9OsaRlSo4iTW1x8C8uJnw==
x-amz-request-id: 52N8DZBNP5E2QTH9
last-modified: Sun, 08 Sep 2019 10:35:26 GMT
etag: "a5ddb7046950d01c67101771e36c7ab3"
x-amz-version-id: E44QAAZT6cHL6Di6JK_AehkZ29BrN1cS
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/5024.png
178.253.14.138200 OK 14 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/5024.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a9761ce5c0c6d04f20e594baafaf8353
f5f5f2701cd062c9fe40773289eb6082a39d9fbe
4c7d240a48bfae05565373ef43cfcfbfb768c4a30f766c3f00b11e3374d4319f
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/5024.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:29 GMT
content-type: image/png
content-length: 13465
x-amz-id-2: jwqejrP3pI6d10NY4ocPNVu/9cDkm0Rxah5svxRyremLLO7uyKJWmHMeoTPK+MHSkGhiBpcDAD2RlzIiFdt6Sg==
x-amz-request-id: 52N0DPWH90C9021E
last-modified: Tue, 13 Aug 2019 15:07:43 GMT
etag: "a9761ce5c0c6d04f20e594baafaf8353"
x-amz-version-id: w_.Fnmk21nFj4Am.yG_HpUvnvAEjVsdd
expires: Sun, 30 Oct 2022 00:21:29 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f15b054fb6a18b7f650f9c23defcc601
3a7c179413daa16e7086eda69cd993efbacb8ca0
d6da24a538fee2735a1dd64bd501c484d7fd39aa025d4cfa4b4f06e267685c48
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4852
Cache-Control: max-age=125631
Content-Type: application/ocsp-response
Date: Sat, 29 Oct 2022 00:21:30 GMT
Etag: "635ba6d5-117"
Expires: Sun, 30 Oct 2022 11:15:21 GMT
Last-Modified: Fri, 28 Oct 2022 09:54:29 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 279
lite-1x768595.top/sfiles/logo_teams/ab2d8adc9d8a6c3cbd2a83f0e3fd8986.png
178.253.14.138200 OK 9.3 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/ab2d8adc9d8a6c3cbd2a83f0e3fd8986.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d807e942245e343a176f6085bf630796
974a476fe22e4169f2ebfbf4c105d49dbceecbd3
8e8431f7fd991b3f89b6448c3898dc817243f4fc15c85c121c160e29acbac0fa
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/ab2d8adc9d8a6c3cbd2a83f0e3fd8986.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:30 GMT
content-type: image/png
content-length: 9288
x-amz-id-2: IeRzb0FAGe+93fuzNTNWg1+Xap5Y0a9iYdL5Gpwykdvj4rHcMZWhW3nGUNbwazVtnT8c101Q2IxP24Hy1frsUA==
x-amz-request-id: PR5J4VM0FD51M2QS
last-modified: Fri, 20 Nov 2020 07:15:56 GMT
etag: "d807e942245e343a176f6085bf630796"
x-amz-version-id: 2.hCUmWtv1QWIC4F8ROSxnFG8BFh7NJK
expires: Sun, 30 Oct 2022 00:21:30 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/bfbc012e5e02c687134e3b35c72db789.png
178.253.14.138200 OK 11 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/bfbc012e5e02c687134e3b35c72db789.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f78008b4dba5fbdd76c5864e391922fd
9ed88f6c1463c27568daaf89f00093817204c32c
2968c64bf110ab7798374620aeca0c69c5879ae06b27bed6487481be603d2a06
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/bfbc012e5e02c687134e3b35c72db789.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:30 GMT
content-type: image/png
content-length: 10929
x-amz-id-2: 8IPDLfcD7UhYyip6NHIMv32d6pYOnf7SXvwamQRLVWfv+nUbFId1Dn4jdKDoPkjFC1nDSaKwUQT12PW3lGVFNA==
x-amz-request-id: PR5Z59NN9B4N1NFK
last-modified: Thu, 15 Sep 2022 00:24:15 GMT
etag: "f78008b4dba5fbdd76c5864e391922fd"
x-amz-version-id: 0omQT9dZD9f3Dgm3IM.3tCKb6EPOTnPy
expires: Sun, 30 Oct 2022 00:21:30 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/8302.png
178.253.14.138200 OK 10 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/8302.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c412e4a3472b3b4ff141cbb5a4d4e00d
6f30fa997f13a7c530731dceb713fa694691a571
b11f77e3bce7a0f11d9912713e5e47acaa40d7b736990418c0627bbd5913e49f
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8302.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:30 GMT
content-type: image/png
content-length: 10239
x-amz-id-2: X/KDp0xhpZvuDkkUtV/rwW7S2DokAB3v/zvbHjh5xPLQVs0moBxhsjW4FL3Zku5vetUez7UbI8lQD/QXgm6q7A==
x-amz-request-id: PR5HHQDK3YZ1CM2V
last-modified: Tue, 13 Aug 2019 15:11:55 GMT
etag: "c412e4a3472b3b4ff141cbb5a4d4e00d"
x-amz-version-id: bhWp9Kpdqccpz1uciGyzRinTYJCrgIYg
expires: Sun, 30 Oct 2022 00:21:30 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/sfiles/logo_teams/4fb2910ef6d4f8ad984f2aa4bc28b610.png
178.253.14.138200 OK 4.5 kB URL HTTP/2 lite-1x768595.top/sfiles/logo_teams/4fb2910ef6d4f8ad984f2aa4bc28b610.png
IP 178.253.14.138:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f988271bc96127f9b3d88e497a36f659
e8b95eeb19f378cdb46404cb1f1487d049f7cda0
4b92c8a1d55693ebe407159d479ac304a937148297688f5e1fb1a0fcf0a30f11
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/4fb2910ef6d4f8ad984f2aa4bc28b610.png HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:30 GMT
content-type: image/png
content-length: 4453
x-amz-id-2: fcz34PzeXdwQ5Ykk/0uEoKV3es1xF66PZ8lQo+0XJQRECudqrdUqAU0m/Img/QmJ3cC4AhuY/192Ev5xy2hiJQ==
x-amz-request-id: PR5G4ZCSM8810KY4
last-modified: Fri, 20 Nov 2020 07:12:06 GMT
etag: "f988271bc96127f9b3d88e497a36f659"
x-amz-version-id: sXXI9fYJFn9.uV43OD2m4Tlu3BCVNrey
expires: Sun, 30 Oct 2022 00:21:30 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
suphelper.com/widget/injector.js
104.16.42.72200 OK 45 kB URL HTTP/2 suphelper.com/widget/injector.js
IP 104.16.42.72:0
File type Unicode text, UTF-8 text, with very long lines (38365)
Hash 80b9d24b788947e213aa386923e960e3
67ad00093e8f47fff919f3a4ca7323e389df5d00
3a05c14f4d769c962e7ac29617aa24dcd61a9c8e9903bd8d45ee28c9dd41699c
GET /widget/injector.js HTTP/1.1
Host: suphelper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:30 GMT
content-type: application/javascript; charset=UTF-8
x-dns-prefetch-control: off
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'strict-dynamic' 'nonce-4fa3454e-107f-48cf-ae24-cdd68f6bc4a1' https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com; img-src 'self' https: data:; font-src 'self' https://fonts.gstatic.com data:; connect-src 'self' ws://localhost:8085 https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://mc.yandex.ru https://api.github.com http://192.168.208.23:11999 https://suphelper.com wss://suphelper.com *.suphelper.com https://suphelper.ru wss://suphelper.ru *.suphelper.ru https://cons.insystem.su wss://cons.insystem.su *.cons.insystem.su wss://chat.insystem.su https://chat.insystem.su *.chat.insystem.su; frame-src 'self' https://www.google.com https://www.google.com/recaptcha/; report-uri /widget/api/report-csp/
cache-control: public, max-age=300
last-modified: Fri, 23 Sep 2022 07:08:12 GMT
etag: W/"28d83-183692cdf60"
vary: Accept-Encoding
cf-cache-status: HIT
age: 82
server: cloudflare
cf-ray: 7617c060c8e998fa-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/07aa231c.css
8.247.219.250200 OK 418 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/07aa231c.css
IP 8.247.219.250:0
File type ASCII text, with very long lines (907), with no line terminators
Hash 6bf6058d8dce9aa41d3c1f1b1b54902f
2ac30eaa29c326ae3efcac387e707d326fd600a6
37cadaae2f858f4322b85bd2832ae8a20185710550ce1ed0928394cdf9e2faa1
GET /_nuxt/desktop/default/css/07aa231c.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:30 GMT
content-type: text/css
content-length: 418
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-1a2"
expires: Sat, 29 Oct 2022 12:23:36 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43126
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/d0196340.modern.js
8.247.219.250200 OK 633 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/d0196340.modern.js
IP 8.247.219.250:0
File type ASCII text, with very long lines (1329), with no line terminators
Hash 7349321c85d684d838116e7de548512b
2ffc70b64c3df9e7913005bf1a20ac396a2fd536
48ff44300f65e413ab2dafc1aac686955210c7b80a2d24f680f30b36f8bde7c8
GET /_nuxt/desktop/default/d0196340.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:30 GMT
content-type: application/javascript; charset=utf-8
content-length: 633
cache-control: max-age=86400
content-encoding: gzip
etag: "635baf0c-279"
expires: Sat, 29 Oct 2022 12:23:36 GMT
last-modified: Fri, 28 Oct 2022 10:29:32 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43105
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LiveFeed/GetSportsShortZip?lng=us&gr=285&country=137&virtualSports=true&groupChamps=true
178.253.14.138200 OK 2.7 kB URL HTTP/2 lite-1x768595.top/service-api/LiveFeed/GetSportsShortZip?lng=us&gr=285&country=137&virtualSports=true&groupChamps=true
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (10307), with no line terminators
Hash 75e51ff2737e6dcaa4ea1295643d52b2
bbf2d45ec840f7577e8ff52635d831f09f7da8a8
fd9c8010706880d70501db18d602b7d0553ca586a14c4f59378ac154bda7799d
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/GetSportsShortZip?lng=us&gr=285&country=137&virtualSports=true&groupChamps=true HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:30 GMT
content-type: application/json; charset=utf-8
content-length: 2654
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49fb8fa0-61f2-4078-986f-12a6dab52ed2.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49fb8fa0-61f2-4078-986f-12a6dab52ed2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8326b70116b95839cb92a20987ff62bf
e39efc9edc67abdbc8b67e56ea3aa3f169600055
9bb70165db081deb009c8da7f4fcafff66bf4f3ce68c88dd11b21ab1665f8a30
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49fb8fa0-61f2-4078-986f-12a6dab52ed2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8381
x-amzn-requestid: affd1381-e8d6-406e-bdfd-43095e110aa9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: avCJEHAUoAMFQPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635c4a39-738547cc62556b0f6cc604cf;Sampled=0
x-amzn-remapped-date: Fri, 28 Oct 2022 21:31:37 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FpVYEpuzxdqeInQrm5_-ZU4tLonMfDWY3D3DxRd0JD3uh4emzrgklA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 21:44:56 GMT
age: 9394
etag: "e39efc9edc67abdbc8b67e56ea3aa3f169600055"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LineFeed/GetSportsShortZip?lng=us&tz=3&country=137&virtualSports=true&groupChamps=true
178.253.14.138200 OK 1.9 kB URL HTTP/2 lite-1x768595.top/service-api/LineFeed/GetSportsShortZip?lng=us&tz=3&country=137&virtualSports=true&groupChamps=true
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6043), with no line terminators
Hash f288aee19338d70492e5dc3139dd2943
4460664c0d99c3bd249c3fe4cb7eb76005d79814
ab0f73b2b9742e1dff6b90000e56a901f00d1d673b1fb89725f61ba268c0030c
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/GetSportsShortZip?lng=us&tz=3&country=137&virtualSports=true&groupChamps=true HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:31 GMT
content-type: application/json; charset=utf-8
content-length: 1898
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9145127-23fb-40ec-af25-e7ec5b697df8.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9145127-23fb-40ec-af25-e7ec5b697df8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 32c2813ce699bc420eb13f02b9f1e86a
934a57f7596fc4a844485539d9ce2165f212e6e4
5e3c8ed8a00dff724fc7f3c5ef99252ef1b1aa45f87578177aa43d5fcd593233
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9145127-23fb-40ec-af25-e7ec5b697df8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8084
x-amzn-requestid: 9ed3b0b2-8755-44b5-87ae-abd65bfa6d84
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apNExEF7oAMFcIw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359f551-7919426b5945afad4e3f9473;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5ZWzI4Ge1pNCUS_iIujcRIHgEg9rpxbFfV2rbXWW2DlPk_vLRDUg2A==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Fri, 28 Oct 2022 04:00:22 GMT
age: 73269
etag: "934a57f7596fc4a844485539d9ce2165f212e6e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lite-1x768595.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1667002890981
178.253.14.138200 OK 145 B URL HTTP/2 lite-1x768595.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1667002890981
IP 178.253.14.138:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 81d90db48c09d6f764c4929c90eadfc1
6fe1a593e77cca8d9adff9fe5b5f40e19ccf7bd8
fa0a9c9d33937e1539ce6b9e44abf7ecd69f5032c6ba8b85308c6a388f8dc28c
Analyzer Verdict Alert quad9 Sinkholed
GET /genfiles/cms/maintenance_mode/settings.json?timestamp=1667002890981 HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=0; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209; _ga=GA1.1.1086122044.1667002891; _gid=GA1.2.2111138973.1667002891; _ga_7JGWL9SV66=GS1.1.1667002890.1.0.1667002890.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: application/json
content-length: 145
last-modified: Thu, 21 Apr 2022 06:40:33 GMT
x-rgw-object-type: Normal
etag: "81d90db48c09d6f764c4929c90eadfc1"
cache-control: public,max-age=60,s-maxage=60
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/web-api/api/internal/v1/proof_of_age
178.253.14.138204 No Content 0 B URL HTTP/2 lite-1x768595.top/web-api/api/internal/v1/proof_of_age
IP 178.253.14.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/api/internal/v1/proof_of_age HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/vnd.api+json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209; _ga=GA1.1.1086122044.1667002891; _gid=GA1.2.2111138973.1667002891; _ga_7JGWL9SV66=GS1.1.1667002890.1.0.1667002890.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 29 Oct 2022 00:21:32 GMT
cache-control: no-cache, private
server-timing: p;dur=32, dt_285;dur=36
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=us
178.253.14.138200 OK 752 B URL HTTP/2 lite-1x768595.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=us
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1563), with no line terminators
Hash b0d9e0f6ed8b05446d4754ce01c36cfa
2e52f8857e831f6b32872453ac0427df7f89bce3
debb71ff4aa88d87100fdba7a8dd8d0276a9f1bfecd907f779f2547735652a29
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/GetExpressDayExtendedZip?lng=us HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=0; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209; _ga=GA1.1.1086122044.1667002891; _gid=GA1.2.2111138973.1667002891; _ga_7JGWL9SV66=GS1.1.1667002890.1.0.1667002890.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: application/json; charset=utf-8
content-length: 752
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LiveFeed/GetLiveExpressExtendedZip?lng=us
178.253.14.138200 OK 638 B URL HTTP/2 lite-1x768595.top/service-api/LiveFeed/GetLiveExpressExtendedZip?lng=us
IP 178.253.14.138:0
File type JSON data\012- , ASCII text, with very long lines (1332), with no line terminators
Hash 956646f3b88cafc6e7076a201b4f07a3
72ccf03ae1fc2b3daca71a69c767f734f11334a1
788dded8e29211763de12a529a16511ef9e5ad640c0fbb3b1eecb6ae06e750fa
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/GetLiveExpressExtendedZip?lng=us HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=0; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209; _ga=GA1.1.1086122044.1667002891; _gid=GA1.2.2111138973.1667002891; _ga_7JGWL9SV66=GS1.1.1667002890.1.0.1667002890.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: application/json; charset=utf-8
content-length: 638
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=us&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
178.253.14.138200 OK 7.4 kB URL HTTP/2 lite-1x768595.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=us&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (42357), with no line terminators
Hash 57e428b7df40ae755843694d9d434981
afbf1ff1434c73c71aaf8f56ceaf65dfd5c2a71d
ea7d814460fb9460955c8900efe31d672c5ed3dce5d324d31f3ab2b7ee349332
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/Get1x2_VZip?count=20&lng=us&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=0; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209; _ga=GA1.1.1086122044.1667002891; _gid=GA1.2.2111138973.1667002891; _ga_7JGWL9SV66=GS1.1.1667002890.1.0.1667002890.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: application/json; charset=utf-8
content-length: 7441
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1/desktop/banner/cb98ac6b3a4fbbdd94bccc45a7235753.jpg
8.247.219.250200 OK 80 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1/desktop/banner/cb98ac6b3a4fbbdd94bccc45a7235753.jpg
IP 8.247.219.250:0
File type JPEG image data, baseline, precision 8, 1380x248, components 3\012- data
Hash 06760e89ab2da9edc145724b29f4b8ca
f12b94e741026ad6b8f83aab6297b8ba30840b6f
368485af7264733ead0c9909562f0652cf81741e4dc07141a2d1bc00f7d337ce
GET /genfiles/cms/1/desktop/banner/cb98ac6b3a4fbbdd94bccc45a7235753.jpg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: image/jpg
content-length: 80389
cache-control: public, max-age=120, s-maxage=600
etag: "06760e89ab2da9edc145724b29f4b8ca"
expires: Sat, 29 Oct 2022 00:19:02 GMT
last-modified: Fri, 28 Oct 2022 06:30:44 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 275
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LiveFeed/GetTopGamesStatZip?lng=us
178.253.14.138200 OK 1.5 kB URL HTTP/2 lite-1x768595.top/service-api/LiveFeed/GetTopGamesStatZip?lng=us
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (4835), with no line terminators
Hash 635f1cd47e37078466918b60f2653045
50a64ed709d38fb0879df061bb7de1b940e9f61e
710cd5f738c98c1b9c27d73318490f17babc25b49e8cb11b99c23a8132187d2c
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/GetTopGamesStatZip?lng=us HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=0; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209; _ga=GA1.1.1086122044.1667002891; _gid=GA1.2.2111138973.1667002891; _ga_7JGWL9SV66=GS1.1.1667002890.1.0.1667002890.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: application/json; charset=utf-8
content-length: 1534
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1/desktop/banner/db4e18e99aa6e3a7b565146697a92643.jpg
8.247.219.250200 OK 87 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1/desktop/banner/db4e18e99aa6e3a7b565146697a92643.jpg
IP 8.247.219.250:0
File type JPEG image data, baseline, precision 8, 1380x248, components 3\012- data
Hash 958a144b9e1cd97fffac85706e6f8dcc
69e1af1e6a75c3bf72054c6e28553bbc00fdd85a
0462910f09410d2c7053eccc7eb2f8bf259e5171f3ff9e877f98ba57ff9547ba
GET /genfiles/cms/1/desktop/banner/db4e18e99aa6e3a7b565146697a92643.jpg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: image/jpg
content-length: 86990
cache-control: public, max-age=120, s-maxage=600
etag: "958a144b9e1cd97fffac85706e6f8dcc"
expires: Sat, 29 Oct 2022 00:13:36 GMT
last-modified: Mon, 12 Sep 2022 12:33:24 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 596
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1/desktop/banner/bdfd1109fdf8b4b43edc5b6d45af46d2.jpg
8.247.219.250200 OK 141 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1/desktop/banner/bdfd1109fdf8b4b43edc5b6d45af46d2.jpg
IP 8.247.219.250:0
File type JPEG image data, progressive, precision 8, 1380x248, components 3\012- data
Size 141 kB (140730 bytes)
Hash dba8f886dc400b4e182cc98eeaf149a6
b6d02c1291cdf276c32c95d2f55fa87ce39e6db9
d8d37f344ad701d9d8a4b424efc7f00a2ec2b94b3f9284a929179b39c7d9c970
GET /genfiles/cms/1/desktop/banner/bdfd1109fdf8b4b43edc5b6d45af46d2.jpg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: image/jpg
content-length: 140730
cache-control: public, max-age=120, s-maxage=600
etag: "dba8f886dc400b4e182cc98eeaf149a6"
expires: Sat, 29 Oct 2022 00:21:39 GMT
last-modified: Fri, 28 Oct 2022 10:45:34 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 152
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1/desktop/banner/2b0549fdaffbe63aa1982e209e0acb7e.jpg
8.247.219.250200 OK 46 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1/desktop/banner/2b0549fdaffbe63aa1982e209e0acb7e.jpg
IP 8.247.219.250:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1380x248, components 3\012- data
Hash 0c774d051a9a15f3392f411d2bee4f1b
1d0ce594bde1ce653836b67cfa75fe7962d702bb
be101cff57c0dda8bf6b102e25749037c7e5f5a9046a758c1e4189ffed15cf56
GET /genfiles/cms/1/desktop/banner/2b0549fdaffbe63aa1982e209e0acb7e.jpg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: image/jpg
content-length: 45802
cache-control: public, max-age=120, s-maxage=600
etag: "0c774d051a9a15f3392f411d2bee4f1b"
expires: Sat, 29 Oct 2022 00:23:10 GMT
last-modified: Tue, 04 Oct 2022 09:20:11 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 22
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1/desktop/banner/db4e18e99aa6e3a7b565146697a92643.jpg
8.247.219.250304 Not Modified 0 B URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1/desktop/banner/db4e18e99aa6e3a7b565146697a92643.jpg
IP 8.247.219.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /genfiles/cms/1/desktop/banner/db4e18e99aa6e3a7b565146697a92643.jpg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 12 Sep 2022 12:33:24 GMT
If-None-Match: "958a144b9e1cd97fffac85706e6f8dcc"
TE: trailers
HTTP/2 304 Not Modified
date: Sat, 29 Oct 2022 00:21:32 GMT
cache-control: public, max-age=120, s-maxage=600
etag: "958a144b9e1cd97fffac85706e6f8dcc"
expires: Sat, 29 Oct 2022 00:13:36 GMT
last-modified: Mon, 12 Sep 2022 12:33:24 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 596
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1/desktop/banner/bdfd1109fdf8b4b43edc5b6d45af46d2.jpg
8.247.219.250304 Not Modified 0 B URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1/desktop/banner/bdfd1109fdf8b4b43edc5b6d45af46d2.jpg
IP 8.247.219.250:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /genfiles/cms/1/desktop/banner/bdfd1109fdf8b4b43edc5b6d45af46d2.jpg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Fri, 28 Oct 2022 10:45:34 GMT
If-None-Match: "dba8f886dc400b4e182cc98eeaf149a6"
TE: trailers
HTTP/2 304 Not Modified
date: Sat, 29 Oct 2022 00:21:32 GMT
cache-control: public, max-age=120, s-maxage=600
etag: "dba8f886dc400b4e182cc98eeaf149a6"
expires: Sat, 29 Oct 2022 00:21:39 GMT
last-modified: Fri, 28 Oct 2022 10:45:34 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 152
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1/desktop/banner/86110286d689c51f72d7d657c76921fc.jpg
8.247.219.250200 OK 162 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1/desktop/banner/86110286d689c51f72d7d657c76921fc.jpg
IP 8.247.219.250:0
File type JPEG image data, baseline, precision 8, 1380x248, components 3\012- data
Size 162 kB (161496 bytes)
Hash 306ba421b48eda10212bd24d34834829
024be7a68d31923b8aea43434b873e662235dea0
4a5b1d1d5cdba75d08d2ec5e0815b6ea04cdee35666be897a39aa0f9979ba021
GET /genfiles/cms/1/desktop/banner/86110286d689c51f72d7d657c76921fc.jpg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: image/jpg
content-length: 161496
cache-control: public, max-age=120, s-maxage=600
etag: "306ba421b48eda10212bd24d34834829"
expires: Sat, 29 Oct 2022 00:23:32 GMT
last-modified: Mon, 24 Oct 2022 10:43:50 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 8
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x768595.top/web-api/external-api/getFirstDepositBonus
178.253.14.138200 OK 255 B URL HTTP/2 lite-1x768595.top/web-api/external-api/getFirstDepositBonus
IP 178.253.14.138:0
Hash 1550e1a18f651a291224745295aa00d5
ae848cb6a4fd52a9da0931dd1031aace00eab487
a528441e0cf7b7ab06aafe181dc4094f1622d2093d8f78a4e6e80b362aac55b4
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/external-api/getFirstDepositBonus HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:27 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=35, dt_285;dur=40
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/service-api/LineFeed/GetSportsShortZip?lng=us&country=137&virtualSports=true&groupChamps=true
178.253.14.138200 OK 1.9 kB URL HTTP/2 lite-1x768595.top/service-api/LineFeed/GetSportsShortZip?lng=us&country=137&virtualSports=true&groupChamps=true
IP 178.253.14.138:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6043), with no line terminators
Hash f288aee19338d70492e5dc3139dd2943
4460664c0d99c3bd249c3fe4cb7eb76005d79814
ab0f73b2b9742e1dff6b90000e56a901f00d1d673b1fb89725f61ba268c0030c
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/GetSportsShortZip?lng=us&country=137&virtualSports=true&groupChamps=true HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=0; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209; _ga=GA1.1.1086122044.1667002891; _gid=GA1.2.2111138973.1667002891; _ga_7JGWL9SV66=GS1.1.1667002890.1.0.1667002890.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:32 GMT
content-type: application/json; charset=utf-8
content-length: 1898
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/us
178.253.14.138200 OK 0 B IP 178.253.14.138:0
Analyzer Verdict Alert quad9 Sinkholed
GET /us HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:23 GMT
content-type: text/html; charset=utf-8
accept-ranges: none
content-encoding: gzip
server-timing: total;dur=1123;desc="Nuxt Server Time", dt_285;dur=1132
set-cookie: SESSION=fa0125d2dec3ba2647a1362c526bfade; Path=/; HttpOnly; Secure; SameSite=Lax
lng=us; Path=/
vary: User-Agent, Accept-Encoding
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/_nuxt/svg-sprites/common-698f8a6f34d490918d634efec2d8f268.svg
178.253.14.138200 OK 0 B URL HTTP/2 lite-1x768595.top/_nuxt/svg-sprites/common-698f8a6f34d490918d634efec2d8f268.svg
IP 178.253.14.138:0
Analyzer Verdict Alert quad9 Sinkholed
GET /_nuxt/svg-sprites/common-698f8a6f34d490918d634efec2d8f268.svg HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:25 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 28 Oct 2022 15:50:58 GMT
etag: W/"635bfa62-196ca"
expires: Sat, 29 Oct 2022 22:21:51 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/web-api/external-api/v1/banners?project_id=285&country_code=PH&language=us&platform=2§ion=6&date=2022-10-29T00:21:29.053Z&is_auth=false&limit=100
178.253.14.138200 OK 0 B URL HTTP/2 lite-1x768595.top/web-api/external-api/v1/banners?project_id=285&country_code=PH&language=us&platform=2§ion=6&date=2022-10-29T00:21:29.053Z&is_auth=false&limit=100
IP 178.253.14.138:0
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/external-api/v1/banners?project_id=285&country_code=PH&language=us&platform=2§ion=6&date=2022-10-29T00:21:29.053Z&is_auth=false&limit=100 HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x768595.top/us
Cookie: platform_type=desktop; auid=sv0OimNccgK/T3eDA1lCAg==; SESSION=fa0125d2dec3ba2647a1362c526bfade; lng=us; window_width=1280; is_rtl=1; tzo=3; fast_coupon=true; v3fr=1; _glhf=1667020663; che_g=e9832354-9186-9376-5da2-de13f5cfb769; ggru=209
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 29 Oct 2022 00:21:30 GMT
content-type: application/vnd.api+json
cache-control: no-cache, private
server-timing: p;dur=55, dt_285;dur=60
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
1x-xredbet478860.top/
178.253.47.23307 Temporary Redirect 0 B IP 178.253.47.23:0
GET / HTTP/1.1
Host: 1x-xredbet478860.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 307 Temporary Redirect
server: nginx
date: Sat, 29 Oct 2022 00:21:22 GMT
content-type: text/html; charset=utf-8
location: https://lite-1x768595.top/
x-frame-options: SAMEORIGIN
set-cookie: SESSION=bd2d5102e1ea8d8636ed72a90aef9a02; path=/; secure; HttpOnly; SameSite=Lax
_glhf=1667020658; expires=Sat, 29-Oct-2022 01:21:22 GMT; Max-Age=3600; path=/
v3fr=1; expires=Tue, 01-Nov-2022 00:21:22 GMT; Max-Age=259200; path=/; httponly; samesite=lax
auid=sv0vF2NccgKXpSerA1/DAg==; expires=Sun, 29-Oct-23 00:21:22 GMT; path=/
x-reason: 1080,1078,1074,1026
cache-control: no-cache, private
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x768595.top/
178.253.14.138302 Found 0 B IP 178.253.14.138:0
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: lite-1x768595.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Sat, 29 Oct 2022 00:21:22 GMT
location: /us
reason-v3: empty_lang
server-timing: total;dur=0;desc="Nuxt Server Time", dt_285;dur=85
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
set-cookie: platform_type=desktop; Path=/; Expires=Tue, 01 Nov 2022 00:21:22 GMT
auid=sv0OimNccgK/T3eDA1lCAg==; expires=Sun, 29-Oct-23 00:21:22 GMT; path=/
X-Firefox-Spdy: h2