| firefox.settings.services.mozilla.com/v1/ | 143.204.55.36 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash1b3053fa528e28810f8a2cc9284cc921 cca9eb471d941881a6b9a1793aecb6c281908f6a a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 08:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Cnqzs0S-brteb7dIvtFnrVsfaBxNhSm26hiDPvLdsryNrajK-7hSSw==
Age: 392
|
|
| trk.7a0ltxdy8u0p.xyz/click.php?c=317&key=759rbmbq7hrj6hf2ze5p08rt&clickid=%3C?php%20echo%20$_GET[%27clickid%27]?%3E&website=%3C?php%20echo%20$_GET[%27website%27]?%3E&brand=%3C?php%20echo%20$_GET[%27brand%27]?%3E&cate=%3C?php%20echo%20$_GET[%27cate%27]?%3E&isp=%3C?php%20echo%20$_GET[%27isp%27]?%3E&os=%3C?php%20echo%20$_GET[%27os%27]?%3E&browser=%3C?php%20echo%20$_GET[%27browser%27]?%3E&country=%3C?php%20echo%20$_GET[%27country%27]?%3E&lang=%3C?php%20echo%20$_GET[%27lang%27]?%3E | 172.67.216.215 | 302 Found | 0 B |
URL HTTP/1.1trk.7a0ltxdy8u0p.xyz/click.php?c=317&key=759rbmbq7hrj6hf2ze5p08rt&clickid=%3C?php%20echo%20$_GET[%27clickid%27]?%3E&website=%3C?php%20echo%20$_GET[%27website%27]?%3E&brand=%3C?php%20echo%20$_GET[%27brand%27]?%3E&cate=%3C?php%20echo%20$_GET[%27cate%27]?%3E&isp=%3C?php%20echo%20$_GET[%27isp%27]?%3E&os=%3C?php%20echo%20$_GET[%27os%27]?%3E&browser=%3C?php%20echo%20$_GET[%27browser%27]?%3E&country=%3C?php%20echo%20$_GET[%27country%27]?%3E&lang=%3C?php%20echo%20$_GET[%27lang%27]?%3E IP172.67.216.215:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click.php?c=317&key=759rbmbq7hrj6hf2ze5p08rt&clickid=%3C?php%20echo%20$_GET[%27clickid%27]?%3E&website=%3C?php%20echo%20$_GET[%27website%27]?%3E&brand=%3C?php%20echo%20$_GET[%27brand%27]?%3E&cate=%3C?php%20echo%20$_GET[%27cate%27]?%3E&isp=%3C?php%20echo%20$_GET[%27isp%27]?%3E&os=%3C?php%20echo%20$_GET[%27os%27]?%3E&browser=%3C?php%20echo%20$_GET[%27browser%27]?%3E&country=%3C?php%20echo%20$_GET[%27country%27]?%3E&lang=%3C?php%20echo%20$_GET[%27lang%27]?%3E HTTP/1.1
Host: trk.7a0ltxdy8u0p.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Tue, 04 Oct 2022 08:53:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: IMT1664873616780=90gEMK6OT6t8UdAY6Jy4ew%3D%3DIrMIOr0hO2GnCdD7oH8lxZkC%2F4ZtAIbw9gNgZ3cFfcI%3D; expires=Wed, 05-Oct-2022 14:53:36 GMT; path=/; domain=superfreetrck.xyz
Location: https://catmiaofans.com/redirect.php/?subid=1206808362&country=%3C%3Fphp+echo+%24_GET%5B%27country%27%5D%3F%3E
Strict-Transport-Security: max-age=31536000
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eOEuBpLxkVaOK6FiH2oqd6Z4XvpJhHI8APTcDx6irh9ZS5Xw8xqv%2B942BBAeEMl7aKzcZGjnrcX8IDIRvNyeZ9BdjFKPTgbYJmexBw8UKa1quEGaLdzw3jbNR47L3CdjMGn2f0NDlw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 754cb0287bfd0af6-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash9955bda9c9ef64bc5700a14af0bae25e 8de7b7469e905af0374bdfcc3006bbb844f13e94 1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11226
Expires: Tue, 04 Oct 2022 12:00:42 GMT
Date: Tue, 04 Oct 2022 08:53:36 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain | 143.204.55.110 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain IP143.204.55.110:0
File typePEM certificate\012- , ASCII text Hash6113f8408c59aebe188d6af273b90743 7398873bf00f99944eaa77ad3ebc0d43c23dba6b b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yiCXa4APM0k3vR5cxnFWlzniC2D1h8yGAZt15YFuDj55WQGvd5AjTg==
age: 12309
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 08:53:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash504552fc1b36514a7a9efa071728b745 82871d8db4bdde3e2fbd49b049f7b6e1743e661a 9d3be28fe331515feb68190f0bca28c848497ce6423e073b74e4517fee85d35e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "9D3BE28FE331515FEB68190F0BCA28C848497CE6423E073B74E4517FEE85D35E"
Last-Modified: Sat, 01 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10070
Expires: Tue, 04 Oct 2022 11:41:27 GMT
Date: Tue, 04 Oct 2022 08:53:37 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash504552fc1b36514a7a9efa071728b745 82871d8db4bdde3e2fbd49b049f7b6e1743e661a 9d3be28fe331515feb68190f0bca28c848497ce6423e073b74e4517fee85d35e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "9D3BE28FE331515FEB68190F0BCA28C848497CE6423E073B74E4517FEE85D35E"
Last-Modified: Sat, 01 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10070
Expires: Tue, 04 Oct 2022 11:41:27 GMT
Date: Tue, 04 Oct 2022 08:53:37 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.36 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 04 Oct 2022 08:29:33 GMT
Expires: Tue, 04 Oct 2022 09:26:52 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: X2TOUQPOvYDn4ZmS7nYsOjcWXDPf9RbVx16eqA31tvFFkSV6qkZzmA==
Age: 1444
|
|
| superfreetrck.xyz/ipx.php?subid=1206808362&amt=0.001 | 172.67.182.247 | 200 OK | 43 B |
URL HTTP/2superfreetrck.xyz/ipx.php?subid=1206808362&amt=0.001 IP172.67.182.247:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ipx.php?subid=1206808362&amt=0.001 HTTP/1.1
Host: superfreetrck.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:37 GMT
content-type: image/gif
content-length: 43
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
p3p: CP="This site does not have a p3p policy."
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iYK5AUOCg4LF8I9ulbYvdXe%2FQ0T4q0gKzPYoOA7dCOLIEH%2B9LcUI8ac%2BcId5QTHnJTTsB6GOnyE5FpTER9%2FNvJD8%2FvhHTjomVF3AkhtwIW9qOjxUTD11RY%2Ffu95KV%2BKU6owT%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754cb02cfecb1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash321fa9a78e31dcb66601ac5890bfba73 c325580db79bde6fd00d2d0c7e3f675e4c0046bb 83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5061
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:37 GMT
Last-Modified: Tue, 04 Oct 2022 07:29:16 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 44.237.51.86 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP44.237.51.86:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BRolsM0HPUTlNyB4ZUQ6hg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ycu14V08VDYxIxgsY51SaYSh6lg=
|
|
| z-na.amazon-adsystem.com/widgets/onejs?MarketPlace=US | 54.230.82.193 | 200 OK | 8.0 kB |
URL HTTP/2z-na.amazon-adsystem.com/widgets/onejs?MarketPlace=US IP54.230.82.193:0
File typeASCII text, with very long lines (24793), with no line terminators Hasha96b7d36fa1f24989c12ac36c0b3c585 b9ef92806dda12873e5261d9d789912518b41cc3 934d19abc49d6b52a724306e68473e8fab734d25c64a193e9959420e231aa735
GET /widgets/onejs?MarketPlace=US HTTP/1.1
Host: z-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
content-length: 7991
date: Tue, 04 Oct 2022 04:20:56 GMT
server: Server
content-encoding: gzip
charset: UTF-8
access-control-allow-origin: *
cache-control: public,max-age=86400,s-maxage=86400,no-transform
expires: Wed, 05 Oct 2022 04:20:56 GMT
pragma: Public
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u1fCptOJPMl3XyhM_QNnsh6x-99fq2gFESIjdDeBkWJ6NuhSBQpKtg==
age: 16361
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 12 kB |
IP142.250.74.3:0
Hash24f004c4537b21532fcb8daddb5b2a59 781fa719cc2e818e4ca81e84089c8d7a52106033 1045758ba216b1e6f574d9b75286f26fabd5089f6a4e43234c5fe1db4fbd5b89
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash5ba23234dfb31276cc3bf9a347508595 a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3 33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=G-NPCV3LF4M7 | 142.250.74.168 | 200 OK | 75 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-NPCV3LF4M7 IP142.250.74.168:0
File typeASCII text, with very long lines (18966) Hash5523cebfe8c43ca56f92e02a4bcc78e3 84e9c49f0a2c8696e06743cb14d65152aefe8677 6d760730a3745c3dd1ccfcfb37e84f978a17342414905516f7993a65c0bb614c
GET /gtag/js?id=G-NPCV3LF4M7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 08:53:38 GMT
expires: Tue, 04 Oct 2022 08:53:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74968
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash9e40b2c69615f45f2bc898334ab3e343 6a569648ed10564e126d3bbf3f91352e6b3f6d4f 4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 5.3 kB |
IP142.250.74.3:0
Hash409f684794bf3cfad8b35dac7630d09d b2f987ba3799bf1a6eb7253d19d857e0709d1f55 e24f02a7c5eb2e3c2cda84ad17c2240294fafca8a2412dd3700abeb41dd7a299
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash9821bf10b5a21590853ad4ca0afb9c10 9695a1bb47aed484e821da4ab8c31f99df952679 fd0b1b65c40e31de36f86109087443e6b5b0166dfc7f828fec723f00489c55a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD0B1B65C40E31DE36F86109087443E6B5B0166DFC7F828FEC723F00489C55A6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13353
Expires: Tue, 04 Oct 2022 12:36:12 GMT
Date: Tue, 04 Oct 2022 08:53:39 GMT
Connection: keep-alive
|
|
| pl17477486.highperformancegate.com/dd/1f/0d/dd1f0d5eb9f5f07d0b8e70df25b25181.js | 192.243.61.225 | 200 OK | 13 kB |
URL HTTP/1.1pl17477486.highperformancegate.com/dd/1f/0d/dd1f0d5eb9f5f07d0b8e70df25b25181.js IP192.243.61.225:0 ASN#39572 DataWeb Global Group B.V.
File typeASCII text, with very long lines (37154), with no line terminators Hash456da7f520b0463367e01574afc35614 e8f01ca1dd520f016c77f6240ef5c96219c61be6 1ce2d8c1055c9da91425efae43eabf8fa30ebf0ed67163618fdd75c9f92d769e
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /dd/1f/0d/dd1f0d5eb9f5f07d0b8e70df25b25181.js HTTP/1.1
Host: pl17477486.highperformancegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 131c99e85204ac1cc26df02d617ce23b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashff433c9569a3557d806b1480aeafece9 20bbd46383b85326837f45290ff87df708b3b310 e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18299
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 08:53:39 GMT
Connection: keep-alive
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap | 142.250.74.10 | 200 OK | 1.1 kB |
URL HTTP/2fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap IP142.250.74.10:0
Hash626ef009565c593f4210d2128fcfe21f a2859758cb3066e56ba8d9093f2d9299b49a33c5 e6e2ff2d2d02f8c9318c43950d8931bc720c8a793af748809904f6d3300cab4e
GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 08:53:38 GMT
date: Tue, 04 Oct 2022 08:53:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| pl16926892.highperformancegate.com/f2088a82fa85b4e1a64389593479f39f/invoke.js | 192.243.59.20 | 200 OK | 9.3 kB |
URL HTTP/1.1pl16926892.highperformancegate.com/f2088a82fa85b4e1a64389593479f39f/invoke.js IP192.243.59.20:0 ASN#39572 DataWeb Global Group B.V.
File typeUnicode text, UTF-8 text, with very long lines (25102), with no line terminators Hash74aa79cd7b9244346f2e509971df13e1 a31e0b6887a6697261152bedcdaff867194b2e79 a7027c1c8aa9a61ee3c0c16cfeaf48d0c54f2ec85bc0131fbd08b050074b314a
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /f2088a82fa85b4e1a64389593479f39f/invoke.js HTTP/1.1
Host: pl16926892.highperformancegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 04 Oct 2022 08:53:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ebb0eca3e5db63d96a268971ea78a9f0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 32 kB |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hasha782f3e5f41183560428e3080be0d391 a65e99cd448f1e391018f3c55cda35e7b724cbf5 dc433efd37d45c7a35ee91ef9fbd5212294f8f8d315e11a98d5eb27180af20d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18299
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 08:53:39 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7b7345414898d451d930431b46d4bd00 a36475a0ec7d7b92593cadd4aa99ca38550f1cd1 79b541c69c78df0e4a4c26438431fd6b52754b589d80e929a4203063712a540c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9855
x-amzn-requestid: 15f15a2e-0028-40ac-be8f-8e20c37fd27e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHuGX7oAMFgDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-5fe693f30c91e4c82c8accb1;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ngoNHOX6fFTGa1Y_-yFOFUYYYqiLJCQOq3NISbmc3gX21YO0TLxx0w==
via: 1.1 b637bd7696854d7acbf96132dcf53200.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 23:37:00 GMT
etag: "a36475a0ec7d7b92593cadd4aa99ca38550f1cd1"
content-type: image/jpeg
age: 33399
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp IP34.120.237.76:0
Hashe74e25e212a29356c98994a8ac4827f3 05e7e201e1bdcb23bda798ff3e68fb5616dd45d1 ed612af77ee0e1f0684af9b3801569e5dc5e315147144c3e91a9134886c72a80
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 39465
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg IP34.120.237.76:0
Hashb3e09c5ec97c6ecbfffe85a7352a9460 5a986a6ed1a0474dc11679e20fa6f863ae293150 f6e3edff9db586450f53b5ed2b2fc5313e3d81fbd63d9c247138080fd4f0132a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 15046
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg | 34.120.237.76 | 200 OK | 43 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg IP34.120.237.76:0
Hashcd97d2b5960205fc7d1a5de7b74fd12a 90d7f1f518d3fc35e8e09f4300c629f254c2595b 656b191d7f66a50499eac0c26a57163484378c65dbb058ef6778a171f405fe92
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 39413
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg | 34.120.237.76 | 200 OK | 6.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg IP34.120.237.76:0
Hash9568373840bb5ea0928b87221243171e 04026cabdeeb46d085b21bea56dfbbe5f62e05df 908d7a15061d0639468145d6cde3dbbc4393b35bc6417fa2fe5a903c1a184540
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 37460
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg | 34.120.237.76 | 200 OK | 6.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg IP34.120.237.76:0
Hashe25e79ca4889ddb642ff247f2548b190 f6e5d15596498a4d4aa78a2b096e8aa7a67a37b2 676d5ee4fe30312c6fb848601bcd372c29da824fc997af415b25129eba35befc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5083
x-amzn-requestid: ed99df03-5d15-4e09-9aea-bbf77a705323
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI0HT0IAMFxvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556b-422197147d76caac6e910664;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:35 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pddStyEpwVdYKSAUVcpupnWVPw6ALoYCouHQzixF_vTgXdpVF60ElA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 38560
etag: "f5ce815082043a4efce28fc790ae7d8b3a8531f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0ac04f7c449093fff4f846a7ae56cd4f 50aeb5664545a0dec4173920a274e906bcbcdf6f 18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0ac04f7c449093fff4f846a7ae56cd4f 50aeb5664545a0dec4173920a274e906bcbcdf6f 18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.158 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.158:0
Hash5051734aa47e871f30936254a98cebee 38ecb55e50d18f22f54e1ebc0bf5d70f6912cc97 45727a8f22a365165d5bfd7b562ee3fe43cb02f918228bcd6441deb4a33bd421
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 08:53:39 GMT
Last-Modified: Tue, 04 Oct 2022 07:13:21 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hvX7gmItBjOlDIBafpFDVtXWJ2jhqq5iy77gbYrcs5rMP2W55I-eVg==
Age: 6018
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 479971
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.195 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 479971
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| simplewebanalysis.com/stats | 3.66.118.16 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP3.66.118.16:0
File typeASCII text, with no line terminators Hashb9cf2b41686a1e06a4b34f32c9e63cb5 acb1cd4c254cd4faa25d5f1b93953ee2fae03fbb 2dddf6f5ef83a87f843112ab321148d29863e346bc0b2c8a24099cecf0c9b507
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:39 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://catmiaofans.com
access-control-allow-credentials: true
set-cookie: uid_id2=75b37b82-a8f8-420c-816c-099f386d4aff:2:1; expires=Fri, 01 Oct 2032 08:53:39 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| simplewebanalysis.com/stats | 3.66.118.16 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP3.66.118.16:0
File typeASCII text, with no line terminators Hash16cddd819026bc735815f18627ae7887 0f9eef8b1d60c65fe111b8484eca5791629c9639 28ecd1485076392a0d38947ac3b56b44bb3bc68291696051a8659976e26f8b7c
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:39 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://catmiaofans.com
access-control-allow-credentials: true
set-cookie: uid_id2=c9b172ec-762f-4723-a15b-1dd234258e75:3:1; expires=Fri, 01 Oct 2032 08:53:39 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash0ac04f7c449093fff4f846a7ae56cd4f 50aeb5664545a0dec4173920a274e906bcbcdf6f 18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-NPCV3LF4M7>m=2oe9s0&_p=1990424705&cid=708093711.1664873619&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664873618&sct=1&seg=0&dl=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&dt=Pick%20up%20your%20free%20pet%20food%20sample%20for%20one%20year!%20%E2%80%93%20Cat%20Miao%20Fans&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-NPCV3LF4M7>m=2oe9s0&_p=1990424705&cid=708093711.1664873619&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664873618&sct=1&seg=0&dl=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&dt=Pick%20up%20your%20free%20pet%20food%20sample%20for%20one%20year!%20%E2%80%93%20Cat%20Miao%20Fans&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NPCV3LF4M7>m=2oe9s0&_p=1990424705&cid=708093711.1664873619&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664873618&sct=1&seg=0&dl=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&dt=Pick%20up%20your%20free%20pet%20food%20sample%20for%20one%20year!%20%E2%80%93%20Cat%20Miao%20Fans&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://catmiaofans.com
date: Tue, 04 Oct 2022 08:53:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash6df6d5605d87c6913c1dc6bcb61bebeb 5eef831341346e97b9550589041c8cedf47eaa16 4847241cb1c5e93adf897e27da0793584a74824fefe723b3338e24554af14387
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4847241CB1C5E93ADF897E27DA0793584A74824FEFE723B3338E24554AF14387"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3545
Expires: Tue, 04 Oct 2022 09:52:45 GMT
Date: Tue, 04 Oct 2022 08:53:40 GMT
Connection: keep-alive
|
|
| familiarkindlyshuffle.com/ntv.json?key=f2088a82fa85b4e1a64389593479f39f&vstc=1 | 192.243.59.20 | 200 OK | 4.2 kB |
URL HTTP/1.1familiarkindlyshuffle.com/ntv.json?key=f2088a82fa85b4e1a64389593479f39f&vstc=1 IP192.243.59.20:0 ASN#39572 DataWeb Global Group B.V.
File typeJSON data\012- , ASCII text, with very long lines (4176), with no line terminators Hash1aa09a3f17af5f41973cbd12de534bdd cac4a551b5e9d66236acdadc120b0429c5c6e2ed 07774c168def9e7800a151baee33fe73403d96a58ae1f32d4ecda4460ee7f158
GET /ntv.json?key=f2088a82fa85b4e1a64389593479f39f&vstc=1 HTTP/1.1
Host: familiarkindlyshuffle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 04 Oct 2022 08:53:40 GMT
Content-Type: application/json
Content-Length: 4176
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://catmiaofans.com
Access-Control-Allow-Origin: https://catmiaofans.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16826393; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
uncs=1; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
pdhtkv49=true; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
uncs49=1; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
nlecf2088a82fa85b4e1a64389593479f39f=[3254345]; expires=Tue, 04 Oct 2022 08:53:45 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f3e4d8742c8d197667bb299771a42c1b
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 883 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7057fe1e096d3d7c773a5198c36b14e5 eef54d81f14270751bf09841e80a4919968b3b8a 11d2615e759f7dbec43aeaf21ccabcab892ba53d98fa0fda9cacb92cfacfe271
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "70EFC800ED2F1ACEE19CCC88DBAFA7724C0F00D9B7CDA191D69CF69C1A38A98F"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17275
Expires: Tue, 04 Oct 2022 13:41:35 GMT
Date: Tue, 04 Oct 2022 08:53:40 GMT
Connection: keep-alive
|
|
| interesteddeterminedeurope.com/sbar.json?key=dd1f0d5eb9f5f07d0b8e70df25b25181 | 192.243.61.227 | 200 OK | 4.0 kB |
URL HTTP/1.1interesteddeterminedeurope.com/sbar.json?key=dd1f0d5eb9f5f07d0b8e70df25b25181 IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
File typeJSON data\012- , ASCII text, with very long lines (5555), with no line terminators Hashaef70ac2701313daa250c41f79c25e13 6cbf179015817c479c13354dbfd978ea2acbf56a 719993b764ab9a6ef74f8895b1ca03dad5f75f5fe21c62c64b61532dbc683e9b
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /sbar.json?key=dd1f0d5eb9f5f07d0b8e70df25b25181 HTTP/1.1
Host: interesteddeterminedeurope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:40 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://catmiaofans.com
Access-Control-Allow-Origin: https://catmiaofans.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17376987; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
uncs=1; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
slecdd1f0d5eb9f5f07d0b8e70df25b25181=[3396716]; expires=Tue, 04 Oct 2022 08:53:45 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1993a4da5295c368b8860043b708e080
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| aax-us-east.amazon-adsystem.com/x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit0%22%2C%22search_bar%22%3A%22true%22%2C%22tracking_id%22%3A%22catmiaofans-20%22%2C%22search_bar_position%22%3A%22top%22%2C%22ad_mode%22%3A%22search%22%2C%22ad_type%22%3A%22smart%22%2C%22default_browse_node%22%3A%222619533011%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22default_search_phrase%22%3A%22cat%20food%22%2C%22default_category%22%3A%22PetSupplies%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22catmiaofans-20%22%2C%22slotNum%22%3A0%2C%22ead%22%3A4%7D&u=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&jscb=amzn_assoc_jsonp_callback_adunit0_0 | 52.46.155.118 | 200 OK | 143 kB |
URL HTTP/1.1aax-us-east.amazon-adsystem.com/x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit0%22%2C%22search_bar%22%3A%22true%22%2C%22tracking_id%22%3A%22catmiaofans-20%22%2C%22search_bar_position%22%3A%22top%22%2C%22ad_mode%22%3A%22search%22%2C%22ad_type%22%3A%22smart%22%2C%22default_browse_node%22%3A%222619533011%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22default_search_phrase%22%3A%22cat%20food%22%2C%22default_category%22%3A%22PetSupplies%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22catmiaofans-20%22%2C%22slotNum%22%3A0%2C%22ead%22%3A4%7D&u=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&jscb=amzn_assoc_jsonp_callback_adunit0_0 IP52.46.155.118:0
File typeHTML document, ASCII text, with very long lines (65536), with no line terminators Size143 kB (143362 bytes) Hashcd115e8b7559cb95a993f38b36c0bddc 6841f1daee96b871e7737e5eb8120946c06c31fb 958dd87e9f37c54469a01bf123db2937138d7f69674d994ce0a6386f98198599
GET /x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit0%22%2C%22search_bar%22%3A%22true%22%2C%22tracking_id%22%3A%22catmiaofans-20%22%2C%22search_bar_position%22%3A%22top%22%2C%22ad_mode%22%3A%22search%22%2C%22ad_type%22%3A%22smart%22%2C%22default_browse_node%22%3A%222619533011%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22default_search_phrase%22%3A%22cat%20food%22%2C%22default_category%22%3A%22PetSupplies%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22catmiaofans-20%22%2C%22slotNum%22%3A0%2C%22ead%22%3A4%7D&u=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&jscb=amzn_assoc_jsonp_callback_adunit0_0 HTTP/1.1
Host: aax-us-east.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Tue, 04 Oct 2022 08:53:40 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 143362
Connection: keep-alive
x-amz-rid: 2X8H83V051V4DDRE08MC
Set-Cookie: ad-id=A6gdAD57qEtem-ExvhRLV-o; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 08:53:40 GMT; Path=/; Secure; HttpOnly; SameSite=None
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
|
|
| wms-na.amazon-adsystem.com/panda/20070822/US/img/amzn-nsa-sprite-2x.png | 54.230.80.193 | 200 OK | 4.3 kB |
URL HTTP/2wms-na.amazon-adsystem.com/panda/20070822/US/img/amzn-nsa-sprite-2x.png IP54.230.80.193:0
File typePNG image data, 530 x 150, 8-bit colormap, non-interlaced\012- data Hash77716f7d4f54355bbb67e19ab8f24309 34380b3971e6c940da2fadb00a7dbc7f2ca7cbe6 3d363721e733cd455560f59c74cffdb28148623c7c716a23403bd6b85696b4fa
GET /panda/20070822/US/img/amzn-nsa-sprite-2x.png HTTP/1.1
Host: wms-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 4335
date: Fri, 23 Sep 2022 02:11:40 GMT
server: Server
last-modified: Sat, 10 Sep 2022 11:50:20 GMT
etag: "10ef-5e851446374d3"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 30 Sep 2022 02:11:40 GMT
charset: UTF-8
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WRYDT9vHKOBRA4UTVAGi4JO9HPJMKR0BO550llG5kUBG0YbfSI9kdw==
age: 974521
X-Firefox-Spdy: h2
|
|
| m.media-amazon.com/images/I/51njJA2dRxL._AC_SL115_.jpg | 151.101.85.16 | 200 OK | 3.6 kB |
URL HTTP/2m.media-amazon.com/images/I/51njJA2dRxL._AC_SL115_.jpg IP151.101.85.16:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 89x115, components 3\012- data Hash951fd1d72dcf8b22519808e978c9f7d4 68b446ecaaf6fc324665f9882d6339eb811e9998 0818dc1d5abc6bcccebad67863389778c7a6ec20717efdde7cfcd5abb794ee47
GET /images/I/51njJA2dRxL._AC_SL115_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
x-amz-ir-id: 0259e0a7-a7e5-4fe1-8d5a-d48da1dde848
expires: Sun, 10 Aug 2042 03:39:53 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Wed, 15 Apr 2020 14:44:43 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
date: Tue, 04 Oct 2022 08:53:41 GMT
age: 4222041
x-served-by: cache-iad-kjyo7100031-IAD, cache-bma1643-BMA
x-cache: HIT from fastly, HIT from fastly
server-timing: provider;desc="fy"
content-length: 3577
X-Firefox-Spdy: h2
|
|
| m.media-amazon.com/images/I/41SOMEFxOFL._AC_SL115_.jpg | 151.101.85.16 | 200 OK | 101 kB |
URL HTTP/2m.media-amazon.com/images/I/41SOMEFxOFL._AC_SL115_.jpg IP151.101.85.16:0
File typeISO Media, MP4 v2 [ISO 14496-14]\012- data Size101 kB (101119 bytes) Hash0fd3396305f2dad4d60c08e102ea371f 0008727ffd45f26f6b329248ad370c4bc3c425b5 a52febd5cbcd8547de19478d42e0952307718a9e8150fb3b9ad7a3afc2b5344c
GET /images/I/41SOMEFxOFL._AC_SL115_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
x-amz-ir-id: 3728b5e7-3837-4cba-b338-aead64d594d8
expires: Mon, 22 Sep 2042 16:55:48 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Wed, 17 Aug 2022 16:49:45 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
date: Tue, 04 Oct 2022 08:53:41 GMT
age: 575873
x-served-by: cache-iad-kiad7000118-IAD, cache-bma1643-BMA
x-cache: HIT from fastly, MISS from fastly
server-timing: provider;desc="fy"
content-length: 4266
X-Firefox-Spdy: h2
|
|
| m.media-amazon.com/images/I/5185zSP0yhL._AC_SL115_.jpg | 151.101.85.16 | 200 OK | 42 kB |
URL HTTP/2m.media-amazon.com/images/I/5185zSP0yhL._AC_SL115_.jpg IP151.101.85.16:0
File typeISO Media, MP4 v2 [ISO 14496-14]\012- data Hash4786b7089219f982f44b1830d7b5afe0 882e30e9f8c5fc08f13609a02f72f5f872eee8b2 f266eb1aa78ef8263d50ee5d2f5e2c9d8256e700c94b7058633f3c09e93dbaa5
GET /images/I/5185zSP0yhL._AC_SL115_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
x-amz-ir-id: f558345a-bef0-47e4-b023-0c770d64535a
expires: Sun, 14 Sep 2042 10:56:23 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Wed, 01 Apr 2020 15:54:26 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
date: Tue, 04 Oct 2022 08:53:41 GMT
age: 1266547
x-served-by: cache-iad-kiad7000165-IAD, cache-bma1643-BMA
x-cache: HIT from fastly, MISS from fastly
server-timing: provider;desc="fy"
content-length: 4553
X-Firefox-Spdy: h2
|
|
| m.media-amazon.com/images/I/41cxeXro8bL._AC_SL115_.jpg | 151.101.85.16 | 200 OK | 3.0 kB |
URL HTTP/2m.media-amazon.com/images/I/41cxeXro8bL._AC_SL115_.jpg IP151.101.85.16:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 58x115, components 3\012- data Hashb6e1bda2d97a42f4fdaee03254c7b2b8 13ddfb018d8998bc5cf24dba78893e89c03c0084 2229e951dff2797200ebb4e053f6f96ab11670c12f86bb4adf91b70ac5d24093
GET /images/I/41cxeXro8bL._AC_SL115_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
x-amz-ir-id: a51b0336-0164-4880-81b5-a2faa4be31d2
expires: Tue, 02 Sep 2042 10:54:38 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Tue, 07 Dec 2021 21:47:02 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
date: Tue, 04 Oct 2022 08:53:41 GMT
age: 2293692
x-served-by: cache-iad-kcgs7200032-IAD, cache-bma1643-BMA
x-cache: HIT from fastly, MISS from fastly
server-timing: provider;desc="fy"
content-length: 3021
X-Firefox-Spdy: h2
|
|
| aax-us-east.amazon-adsystem.com/x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/?assoc_payload=%7B%22regionId%22%3A%221%22%2C%22ref%22%3A%22sm_n_se_dkp_NO_%22%2C%22adMode%22%3A%22search%22%2C%22linkCode%22%3A%22w42%22%2C%22trackingId%22%3A%22catmiaofans-20%22%2C%22linkId%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22country%22%3A%22NO%22%2C%22deviceType%22%3A%22BROWSER%22%2C%22searchBarPresent%22%3Atrue%2C%22defaultCategory%22%3A%22PetSupplies%22%2C%22defaultSearchPhrase%22%3A%22cat%20food%22%2C%22givenWidth%22%3A%22auto%22%2C%22givenHeight%22%3A%22auto%22%2C%22givenRows%22%3A2%2C%22visibleItemCount%22%3A4%2C%22axfExperiment%22%3A%22%5B%5D%22%2C%22slotNum%22%3A%220%22%2C%22items%22%3A%5B%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01LZSZ8JF%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B000R4H2MI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B006FTJ0NI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01BKYFR7K%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%5D%2C%22logType%22%3A%22smart_impressions%22%2C%22design%22%3A%22grid%22%2C%22ead%22%3A4%2C%22livePoolPCScore%22%3A-1%2C%22livePoolModelVersion%22%3A%22LivePoolV1%22%2C%22contXPCScore%22%3A-1%2C%22contXModelVersion%22%3A%22ContXV1%22%2C%22totalDocHeight%22%3A1592%2C%22totalDocWidth%22%3A1268%2C%22actualWidth%22%3A286.5%2C%22actualHeight%22%3A559%2C%22atfInFirstLoad%22%3Afalse%2C%22posX%22%3A34%2C%22posY%22%3A1301.9666748046875%2C%22refUrl%22%3A%22https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F%22%7D | 52.46.155.118 | 200 OK | 43 B |
URL HTTP/1.1aax-us-east.amazon-adsystem.com/x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/?assoc_payload=%7B%22regionId%22%3A%221%22%2C%22ref%22%3A%22sm_n_se_dkp_NO_%22%2C%22adMode%22%3A%22search%22%2C%22linkCode%22%3A%22w42%22%2C%22trackingId%22%3A%22catmiaofans-20%22%2C%22linkId%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22country%22%3A%22NO%22%2C%22deviceType%22%3A%22BROWSER%22%2C%22searchBarPresent%22%3Atrue%2C%22defaultCategory%22%3A%22PetSupplies%22%2C%22defaultSearchPhrase%22%3A%22cat%20food%22%2C%22givenWidth%22%3A%22auto%22%2C%22givenHeight%22%3A%22auto%22%2C%22givenRows%22%3A2%2C%22visibleItemCount%22%3A4%2C%22axfExperiment%22%3A%22%5B%5D%22%2C%22slotNum%22%3A%220%22%2C%22items%22%3A%5B%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01LZSZ8JF%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B000R4H2MI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B006FTJ0NI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01BKYFR7K%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%5D%2C%22logType%22%3A%22smart_impressions%22%2C%22design%22%3A%22grid%22%2C%22ead%22%3A4%2C%22livePoolPCScore%22%3A-1%2C%22livePoolModelVersion%22%3A%22LivePoolV1%22%2C%22contXPCScore%22%3A-1%2C%22contXModelVersion%22%3A%22ContXV1%22%2C%22totalDocHeight%22%3A1592%2C%22totalDocWidth%22%3A1268%2C%22actualWidth%22%3A286.5%2C%22actualHeight%22%3A559%2C%22atfInFirstLoad%22%3Afalse%2C%22posX%22%3A34%2C%22posY%22%3A1301.9666748046875%2C%22refUrl%22%3A%22https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F%22%7D IP52.46.155.118:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/?assoc_payload=%7B%22regionId%22%3A%221%22%2C%22ref%22%3A%22sm_n_se_dkp_NO_%22%2C%22adMode%22%3A%22search%22%2C%22linkCode%22%3A%22w42%22%2C%22trackingId%22%3A%22catmiaofans-20%22%2C%22linkId%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22country%22%3A%22NO%22%2C%22deviceType%22%3A%22BROWSER%22%2C%22searchBarPresent%22%3Atrue%2C%22defaultCategory%22%3A%22PetSupplies%22%2C%22defaultSearchPhrase%22%3A%22cat%20food%22%2C%22givenWidth%22%3A%22auto%22%2C%22givenHeight%22%3A%22auto%22%2C%22givenRows%22%3A2%2C%22visibleItemCount%22%3A4%2C%22axfExperiment%22%3A%22%5B%5D%22%2C%22slotNum%22%3A%220%22%2C%22items%22%3A%5B%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01LZSZ8JF%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B000R4H2MI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B006FTJ0NI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01BKYFR7K%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%5D%2C%22logType%22%3A%22smart_impressions%22%2C%22design%22%3A%22grid%22%2C%22ead%22%3A4%2C%22livePoolPCScore%22%3A-1%2C%22livePoolModelVersion%22%3A%22LivePoolV1%22%2C%22contXPCScore%22%3A-1%2C%22contXModelVersion%22%3A%22ContXV1%22%2C%22totalDocHeight%22%3A1592%2C%22totalDocWidth%22%3A1268%2C%22actualWidth%22%3A286.5%2C%22actualHeight%22%3A559%2C%22atfInFirstLoad%22%3Afalse%2C%22posX%22%3A34%2C%22posY%22%3A1301.9666748046875%2C%22refUrl%22%3A%22https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F%22%7D HTTP/1.1
Host: aax-us-east.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Tue, 04 Oct 2022 08:53:41 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: T1YBCJ36T4Z171Z3NYW4
Cache-Control: no-cache
Pragma: no-cache
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
|
|
| m.media-amazon.com/images/I/5185zSP0yhL._AC_SL126_.jpg | 151.101.85.16 | 200 OK | 5.6 kB |
URL HTTP/2m.media-amazon.com/images/I/5185zSP0yhL._AC_SL126_.jpg IP151.101.85.16:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 126x86, components 3\012- data Hash1c8ebae9c23e17a6622f72f908e736bd 1eee1a49998a98388dca4f034162981e2f5c1859 66b7f67ccb2a8217a5bbd8264e1ec4431813a85e1e4a10721bdbb9ce7bfd0c23
GET /images/I/5185zSP0yhL._AC_SL126_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
x-amz-ir-id: 23ea0881-dda7-4288-8047-6bf072aa478b
expires: Sun, 28 Sep 2042 21:26:28 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Wed, 01 Apr 2020 15:54:26 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
date: Tue, 04 Oct 2022 08:53:41 GMT
age: 41233
x-served-by: cache-iad-kjyo7100167-IAD, cache-bma1643-BMA
x-cache: HIT from fastly, MISS from fastly
server-timing: provider;desc="fy"
content-length: 5642
X-Firefox-Spdy: h2
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.158 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.158:0
Hashccf50193e7e4b59c660bb192fc24bbbf bfa0475fee329535669b71a0b03de64ad666eff0 a04dd02a0758122b6044dd19128f75542c79e7c32f5628922ca1cb8f64ccd28a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 08:53:41 GMT
Last-Modified: Tue, 04 Oct 2022 08:27:44 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: usrBz14Ab8QlK8CfGok50TEF-6mpJ-riOIqQhSD10RZYAULlMl5cOg==
Age: 1557
|
|
| aax-us-east.amazon-adsystem.com/x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/%7B%22adViewability%22:[%7B%22above_the_fold%22:false,%22topPos%22:1.3887113951011714,%22leftPos%22:0.028125%7D]%7D&cb=1182418 | 52.46.155.118 | 200 OK | 43 B |
URL HTTP/1.1aax-us-east.amazon-adsystem.com/x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/%7B%22adViewability%22:[%7B%22above_the_fold%22:false,%22topPos%22:1.3887113951011714,%22leftPos%22:0.028125%7D]%7D&cb=1182418 IP52.46.155.118:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash07fff40b5dd495aca2ac4e1c3fbc60aa e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4 a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/%7B%22adViewability%22:[%7B%22above_the_fold%22:false,%22topPos%22:1.3887113951011714,%22leftPos%22:0.028125%7D]%7D&cb=1182418 HTTP/1.1
Host: aax-us-east.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Server
Date: Tue, 04 Oct 2022 08:53:41 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: KTTRCXXKZWBVZD5WCXT1
Cache-Control: no-cache
Pragma: no-cache
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload
|
|
| fls-na.amazon-adsystem.com/1/action-impressions/1/OE/associates-adsystems/action/cm_:onejs_load_evt@v=1821,onejs_exec_time@v=25,aax_load_time@v=1854,aax_load_time_smart@v=1854,wdgt_load_time@v=3805,wdgt_load_time_NO@v=3805,wdgt_load_time_smart@v=3805,wdgt_load_time_invoke@v=1984,wdgt_load_time_invoke_smart@v=1983,wdgt_load_time_invoke_smart_NO@v=1983?marketplace=US&service=AmazonWidgets&method=Widgets_Render_Time&marketplaceId=ATVPDKIKX0DER&requestId=38417e7d-e677-4b1c-a952-7ca157eae78d&session=6b2eec60-101e-4ebe-8609-d8c6fe22204d | 52.94.225.95 | 204 No Content | 0 B |
URL HTTP/1.1fls-na.amazon-adsystem.com/1/action-impressions/1/OE/associates-adsystems/action/cm_:onejs_load_evt@v=1821,onejs_exec_time@v=25,aax_load_time@v=1854,aax_load_time_smart@v=1854,wdgt_load_time@v=3805,wdgt_load_time_NO@v=3805,wdgt_load_time_smart@v=3805,wdgt_load_time_invoke@v=1984,wdgt_load_time_invoke_smart@v=1983,wdgt_load_time_invoke_smart_NO@v=1983?marketplace=US&service=AmazonWidgets&method=Widgets_Render_Time&marketplaceId=ATVPDKIKX0DER&requestId=38417e7d-e677-4b1c-a952-7ca157eae78d&session=6b2eec60-101e-4ebe-8609-d8c6fe22204d IP52.94.225.95:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/action-impressions/1/OE/associates-adsystems/action/cm_:onejs_load_evt@v=1821,onejs_exec_time@v=25,aax_load_time@v=1854,aax_load_time_smart@v=1854,wdgt_load_time@v=3805,wdgt_load_time_NO@v=3805,wdgt_load_time_smart@v=3805,wdgt_load_time_invoke@v=1984,wdgt_load_time_invoke_smart@v=1983,wdgt_load_time_invoke_smart_NO@v=1983?marketplace=US&service=AmazonWidgets&method=Widgets_Render_Time&marketplaceId=ATVPDKIKX0DER&requestId=38417e7d-e677-4b1c-a952-7ca157eae78d&session=6b2eec60-101e-4ebe-8609-d8c6fe22204d HTTP/1.1
Host: fls-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-amzn-RequestId: d6bfb362-d2a7-4119-a93f-cefbea1b18b5
Content-Type: text/plain
Date: Tue, 04 Oct 2022 08:53:40 GMT
|
|
| simplewebanalysis.com/stats | 3.66.118.16 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP3.66.118.16:0
File typeASCII text, with no line terminators Hash16cddd819026bc735815f18627ae7887 0f9eef8b1d60c65fe111b8484eca5791629c9639 28ecd1485076392a0d38947ac3b56b44bb3bc68291696051a8659976e26f8b7c
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: uid_id2=c9b172ec-762f-4723-a15b-1dd234258e75:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:41 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://catmiaofans.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 300 B |
IP93.184.220.29:0
File typegzip compressed data, from Unix\012- data Hash23d98681a4d38b43a77ef8b5259e46b8 57f1b2935aff6cb913e86b58499c63233693c047 e0512d07ce536392a7dc44032526d698802e0c044985e2af055fcece60a77916
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5878
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:41 GMT
Last-Modified: Tue, 04 Oct 2022 07:15:43 GMT
Server: ECS (amb/6BA3)
X-Cache: HIT
Content-Length: 280
|
|
| familiarkindlyshuffle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSNAcALlEk4%2BFgk5u2tnbZNDRQipIkJTWhCcQLMzu86Q2Z1lZmfXMZeIItQbRuICp81z0vCjKvAHUFVOJYQiVYpvORCJvwHUM7JrYfik1ffevnd43%2FfNFwf2griw9Hz9bdUXUtLllbpbu%2FKB563WtkRqe7VeO%2FgoaK7WdPFaJ6i7r9SuRWxXLfuu57qe69U2hI5i1VueiBDZvY5X77j1pl%2F3Vpro6f9zYx0Y6oAXF%2BQlCD5eeOQsQrAR0uTn9cjs5ip79c3ESporjYIfv5fupqpMkcxhrB3E6fHMDWXONh5ApUfTuFDFv8ZQjInz2wOE6fEsJMLicJozlIhShPwFlMUIkRxB0BGYug3BzwjAOK5vI03uXle6pHtPVTpRx2ThyV8Q5Zgs%2FLGINLm%2FJkWvdktJmwuVGvTiCqI3guiOkNkT5P1LEOUJWP4ZBH9Mlp9sIU0Ot41UELyazi7ECCIeQUYDUOPATj7hwMYObOYg4ec15nley%2BWMuu0OYw3eisKAux5txR713KANyybxBsizAZgcgOl9ZHofu2IAbR%2FC7FQw3IHJx8R5Zx8Fr1BGBKUhKClBKQjKnKAsqiMujW%2Bqu1waG3qz7s96oxqqvHtAj1TejVJykF2QFyd7ccjDJexG57XYd9tt2vZj2l4Jm5FHg2aj3VnpNJqtTtzoxDCigjCXpqP2xZi8fOVLZGJMnnl2ESE9gZEnYMIBtR5oOWz5LujOsNl20U9%2FYjRPBFUxTU2dqQRcVcjyBeR7zoG8IEvTE3nfbSJip1c%2F7%2F957f7ip2C6QqYrfCweEXTlneFNVZLDm6o05JftLBeJ6NPJ%2BW7lNI8u%2F%2FBWtFcqzTfXzeD719lEmMB770Ym36IpF2nXkB%2FXBOeR3lCaReTXTfN%2BFN6wZmfN6tRmWzfe2NhMMh0ZI1Q6AhVnHx6BiTF57pPH03e51C8g9AjaVkjsKZkVhDoBy%2FZhsnl6oy5Dy7knzByUthpqP5z%2FlIJARnNOwwrmPzyc4wNzB13tg%2Ba3kSYVCl2hkBWoHMDY54d5pk%2Bv%2Fv7NpL5FKJ1hKLVzGEotv3q6WiPOa61Gw6VBZ8VrtWjUCpt%2BOw48TqnfDPwgoA3kZsxW%2F%2F76HwAAAP%2F%2FAQAA%2F%2F%2F1waoYYgQAAA%3D%3D | 192.243.59.20 | 200 OK | 7 B |
URL HTTP/1.1familiarkindlyshuffle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSNAcALlEk4%2BFgk5u2tnbZNDRQipIkJTWhCcQLMzu86Q2Z1lZmfXMZeIItQbRuICp81z0vCjKvAHUFVOJYQiVYpvORCJvwHUM7JrYfik1ffevnd43%2FfNFwf2griw9Hz9bdUXUtLllbpbu%2FKB563WtkRqe7VeO%2FgoaK7WdPFaJ6i7r9SuRWxXLfuu57qe69U2hI5i1VueiBDZvY5X77j1pl%2F3Vpro6f9zYx0Y6oAXF%2BQlCD5eeOQsQrAR0uTn9cjs5ip79c3ESporjYIfv5fupqpMkcxhrB3E6fHMDWXONh5ApUfTuFDFv8ZQjInz2wOE6fEsJMLicJozlIhShPwFlMUIkRxB0BGYug3BzwjAOK5vI03uXle6pHtPVTpRx2ThyV8Q5Zgs%2FLGINLm%2FJkWvdktJmwuVGvTiCqI3guiOkNkT5P1LEOUJWP4ZBH9Mlp9sIU0Ot41UELyazi7ECCIeQUYDUOPATj7hwMYObOYg4ec15nley%2BWMuu0OYw3eisKAux5txR713KANyybxBsizAZgcgOl9ZHofu2IAbR%2FC7FQw3IHJx8R5Zx8Fr1BGBKUhKClBKQjKnKAsqiMujW%2Bqu1waG3qz7s96oxqqvHtAj1TejVJykF2QFyd7ccjDJexG57XYd9tt2vZj2l4Jm5FHg2aj3VnpNJqtTtzoxDCigjCXpqP2xZi8fOVLZGJMnnl2ESE9gZEnYMIBtR5oOWz5LujOsNl20U9%2FYjRPBFUxTU2dqQRcVcjyBeR7zoG8IEvTE3nfbSJip1c%2F7%2F957f7ip2C6QqYrfCweEXTlneFNVZLDm6o05JftLBeJ6NPJ%2BW7lNI8u%2F%2FBWtFcqzTfXzeD719lEmMB770Ym36IpF2nXkB%2FXBOeR3lCaReTXTfN%2BFN6wZmfN6tRmWzfe2NhMMh0ZI1Q6AhVnHx6BiTF57pPH03e51C8g9AjaVkjsKZkVhDoBy%2FZhsnl6oy5Dy7knzByUthpqP5z%2FlIJARnNOwwrmPzyc4wNzB13tg%2Ba3kSYVCl2hkBWoHMDY54d5pk%2Bv%2Fv7NpL5FKJ1hKLVzGEotv3q6WiPOa61Gw6VBZ8VrtWjUCpt%2BOw48TqnfDPwgoA3kZsxW%2F%2F76HwAAAP%2F%2FAQAA%2F%2F%2F1waoYYgQAAA%3D%3D IP192.243.59.20:0 ASN#39572 DataWeb Global Group B.V.
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSNAcALlEk4%2BFgk5u2tnbZNDRQipIkJTWhCcQLMzu86Q2Z1lZmfXMZeIItQbRuICp81z0vCjKvAHUFVOJYQiVYpvORCJvwHUM7JrYfik1ffevnd43%2FfNFwf2griw9Hz9bdUXUtLllbpbu%2FKB563WtkRqe7VeO%2FgoaK7WdPFaJ6i7r9SuRWxXLfuu57qe69U2hI5i1VueiBDZvY5X77j1pl%2F3Vpro6f9zYx0Y6oAXF%2BQlCD5eeOQsQrAR0uTn9cjs5ip79c3ESporjYIfv5fupqpMkcxhrB3E6fHMDWXONh5ApUfTuFDFv8ZQjInz2wOE6fEsJMLicJozlIhShPwFlMUIkRxB0BGYug3BzwjAOK5vI03uXle6pHtPVTpRx2ThyV8Q5Zgs%2FLGINLm%2FJkWvdktJmwuVGvTiCqI3guiOkNkT5P1LEOUJWP4ZBH9Mlp9sIU0Ot41UELyazi7ECCIeQUYDUOPATj7hwMYObOYg4ec15nley%2BWMuu0OYw3eisKAux5txR713KANyybxBsizAZgcgOl9ZHofu2IAbR%2FC7FQw3IHJx8R5Zx8Fr1BGBKUhKClBKQjKnKAsqiMujW%2Bqu1waG3qz7s96oxqqvHtAj1TejVJykF2QFyd7ccjDJexG57XYd9tt2vZj2l4Jm5FHg2aj3VnpNJqtTtzoxDCigjCXpqP2xZi8fOVLZGJMnnl2ESE9gZEnYMIBtR5oOWz5LujOsNl20U9%2FYjRPBFUxTU2dqQRcVcjyBeR7zoG8IEvTE3nfbSJip1c%2F7%2F957f7ip2C6QqYrfCweEXTlneFNVZLDm6o05JftLBeJ6NPJ%2BW7lNI8u%2F%2FBWtFcqzTfXzeD719lEmMB770Ym36IpF2nXkB%2FXBOeR3lCaReTXTfN%2BFN6wZmfN6tRmWzfe2NhMMh0ZI1Q6AhVnHx6BiTF57pPH03e51C8g9AjaVkjsKZkVhDoBy%2FZhsnl6oy5Dy7knzByUthpqP5z%2FlIJARnNOwwrmPzyc4wNzB13tg%2Ba3kSYVCl2hkBWoHMDY54d5pk%2Bv%2Fv7NpL5FKJ1hKLVzGEotv3q6WiPOa61Gw6VBZ8VrtWjUCpt%2BOw48TqnfDPwgoA3kZsxW%2F%2F76HwAAAP%2F%2FAQAA%2F%2F%2F1waoYYgQAAA%3D%3D HTTP/1.1
Host: familiarkindlyshuffle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: u_pl=16826393; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecf2088a82fa85b4e1a64389593479f39f=[3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 04 Oct 2022 08:53:41 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c75bc7f2087ae9d8c9fae7a20d6909c5
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash5a81efbd7f92e8ab877070b2f9cd6247 389efbc67268d7460da1c041ecd8bd3de503bced 08f20e6c48dc1f16fb405a6e21df212677b34c1dcaf75335d163a3d1e18c40bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08F20E6C48DC1F16FB405A6E21DF212677B34C1DCAF75335D163A3D1E18C40BC"
Last-Modified: Sun, 02 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19949
Expires: Tue, 04 Oct 2022 14:26:11 GMT
Date: Tue, 04 Oct 2022 08:53:42 GMT
Connection: keep-alive
|
|
| interesteddeterminedeurope.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitThZ%2F4EnJxYAyJ4kgs909v91DcF1XFjfZmCh60%2Bqq6tlyq7uaqq7p2T0tBiQ3R%2FAP6H2zmyUaNIJXg8wGclgQ0npZ1P0fRMnJg8xkcfSD5nuv3zu87%2Fvqsz13Snw4erJyRe9Ipehiq%2B7XLn0YBEu1dZm6YW3YbX%2FUbi7VzOD1Xrvuv1p7W7AtvRj6ge8HflBblUbEerg4FSGzu72g3vPrzbAetJoYmv9z6zxY6oEPTskLkLxaeOBdgGQTpMm9FWG3cp299lbiFM21wYAfvp9upbpIkcxhbDzE6eGZG9o%2BWr0PnR7M4kIP%2FjVGsiLew%2FuI0sOzkIgG%2B7OckYJIEfHnUAwmEGoCSSdg%2BiYkf0QAxnF1A2ly%2B6o2Bd1%2BotKpWpGFx39CFhVZ%2BP0C0uSbZSWHtRtauVzq1GIYl5DDCWR%2FgswdId85B1kcgeWfQvKfyOLjdaTJ%2FoZVGpKXs9mlnEDGEygxArUe3PSTHlzswWUeEn5SY0EQdHzOqN%2FtMdbgHRG1uR%2FQThzQwG934dg03gh5NgJTIzCzi8zsYkuOYNyPsJslLPdg84p47%2B5iwEsUgqCwBAUlKCRBkRMUg%2FKAKxva8jZX1kXBWQ%2FPeqMc67y%2FRw903hcp2ctOyfPTvXjPvvIrtsRJjfMg9nlLRL24Ffsd7kdd0fF5HLaisBV0A1hZQtpzs1F3ZEUuXvocmazIU09fQESPYNURmPRA3UugxbgT%2BqCb42bXx076LaN5IqmOaWrrTCfgukSWLyDf9vbUKXlxdqLGLwqCHV%2F%2BOLpS%2FXHnbzBTIjMlPpEPCPrq1vi6Lsj%2BdV1Y8t1GlstE7tDp%2BW7kNBfnv3pHbBfa8LUVO7rzBpsKU3j3PWHzdZpymfYt%2BXpZci7MqjZMkB%2FW7Aciuubs5rIzqcvWr725upZkRlgrdToBlRUhD4%2FBZEWe%2Bf5k9jIv%2FnYP0kxgXInEHZOzgtRHYNkubDbPb%2FV5GDX3RJmHwpVjE0bzn0oSKDHnNCph%2F8OjOd6zt9A3L4PmN5EmJQamxECVoGoE686P88wcX%2F65MStEyhtHynj7kTLqiyfLtfKk1mk0fNrutYJOh4pO1Ay7cTvglIbNdthu0wZyW7Glv778BwAA%2F%2F8BAAD%2F%2F%2BJTwApkBAAA | 192.243.61.227 | 200 OK | 7 B |
URL HTTP/1.1interesteddeterminedeurope.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitThZ%2F4EnJxYAyJ4kgs909v91DcF1XFjfZmCh60%2Bqq6tlyq7uaqq7p2T0tBiQ3R%2FAP6H2zmyUaNIJXg8wGclgQ0npZ1P0fRMnJg8xkcfSD5nuv3zu87%2Fvqsz13Snw4erJyRe9Ipehiq%2B7XLn0YBEu1dZm6YW3YbX%2FUbi7VzOD1Xrvuv1p7W7AtvRj6ge8HflBblUbEerg4FSGzu72g3vPrzbAetJoYmv9z6zxY6oEPTskLkLxaeOBdgGQTpMm9FWG3cp299lbiFM21wYAfvp9upbpIkcxhbDzE6eGZG9o%2BWr0PnR7M4kIP%2FjVGsiLew%2FuI0sOzkIgG%2B7OckYJIEfHnUAwmEGoCSSdg%2BiYkf0QAxnF1A2ly%2B6o2Bd1%2BotKpWpGFx39CFhVZ%2BP0C0uSbZSWHtRtauVzq1GIYl5DDCWR%2FgswdId85B1kcgeWfQvKfyOLjdaTJ%2FoZVGpKXs9mlnEDGEygxArUe3PSTHlzswWUeEn5SY0EQdHzOqN%2FtMdbgHRG1uR%2FQThzQwG934dg03gh5NgJTIzCzi8zsYkuOYNyPsJslLPdg84p47%2B5iwEsUgqCwBAUlKCRBkRMUg%2FKAKxva8jZX1kXBWQ%2FPeqMc67y%2FRw903hcp2ctOyfPTvXjPvvIrtsRJjfMg9nlLRL24Ffsd7kdd0fF5HLaisBV0A1hZQtpzs1F3ZEUuXvocmazIU09fQESPYNURmPRA3UugxbgT%2BqCb42bXx076LaN5IqmOaWrrTCfgukSWLyDf9vbUKXlxdqLGLwqCHV%2F%2BOLpS%2FXHnbzBTIjMlPpEPCPrq1vi6Lsj%2BdV1Y8t1GlstE7tDp%2BW7kNBfnv3pHbBfa8LUVO7rzBpsKU3j3PWHzdZpymfYt%2BXpZci7MqjZMkB%2FW7Aciuubs5rIzqcvWr725upZkRlgrdToBlRUhD4%2FBZEWe%2Bf5k9jIv%2FnYP0kxgXInEHZOzgtRHYNkubDbPb%2FV5GDX3RJmHwpVjE0bzn0oSKDHnNCph%2F8OjOd6zt9A3L4PmN5EmJQamxECVoGoE686P88wcX%2F65MStEyhtHynj7kTLqiyfLtfKk1mk0fNrutYJOh4pO1Ay7cTvglIbNdthu0wZyW7Glv778BwAA%2F%2F8BAAD%2F%2F%2BJTwApkBAAA IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitThZ%2F4EnJxYAyJ4kgs909v91DcF1XFjfZmCh60%2Bqq6tlyq7uaqq7p2T0tBiQ3R%2FAP6H2zmyUaNIJXg8wGclgQ0npZ1P0fRMnJg8xkcfSD5nuv3zu87%2Fvqsz13Snw4erJyRe9Ipehiq%2B7XLn0YBEu1dZm6YW3YbX%2FUbi7VzOD1Xrvuv1p7W7AtvRj6ge8HflBblUbEerg4FSGzu72g3vPrzbAetJoYmv9z6zxY6oEPTskLkLxaeOBdgGQTpMm9FWG3cp299lbiFM21wYAfvp9upbpIkcxhbDzE6eGZG9o%2BWr0PnR7M4kIP%2FjVGsiLew%2FuI0sOzkIgG%2B7OckYJIEfHnUAwmEGoCSSdg%2BiYkf0QAxnF1A2ly%2B6o2Bd1%2BotKpWpGFx39CFhVZ%2BP0C0uSbZSWHtRtauVzq1GIYl5DDCWR%2FgswdId85B1kcgeWfQvKfyOLjdaTJ%2FoZVGpKXs9mlnEDGEygxArUe3PSTHlzswWUeEn5SY0EQdHzOqN%2FtMdbgHRG1uR%2FQThzQwG934dg03gh5NgJTIzCzi8zsYkuOYNyPsJslLPdg84p47%2B5iwEsUgqCwBAUlKCRBkRMUg%2FKAKxva8jZX1kXBWQ%2FPeqMc67y%2FRw903hcp2ctOyfPTvXjPvvIrtsRJjfMg9nlLRL24Ffsd7kdd0fF5HLaisBV0A1hZQtpzs1F3ZEUuXvocmazIU09fQESPYNURmPRA3UugxbgT%2BqCb42bXx076LaN5IqmOaWrrTCfgukSWLyDf9vbUKXlxdqLGLwqCHV%2F%2BOLpS%2FXHnbzBTIjMlPpEPCPrq1vi6Lsj%2BdV1Y8t1GlstE7tDp%2BW7kNBfnv3pHbBfa8LUVO7rzBpsKU3j3PWHzdZpymfYt%2BXpZci7MqjZMkB%2FW7Aciuubs5rIzqcvWr725upZkRlgrdToBlRUhD4%2FBZEWe%2Bf5k9jIv%2FnYP0kxgXInEHZOzgtRHYNkubDbPb%2FV5GDX3RJmHwpVjE0bzn0oSKDHnNCph%2F8OjOd6zt9A3L4PmN5EmJQamxECVoGoE686P88wcX%2F65MStEyhtHynj7kTLqiyfLtfKk1mk0fNrutYJOh4pO1Ay7cTvglIbNdthu0wZyW7Glv778BwAA%2F%2F8BAAD%2F%2F%2BJTwApkBAAA HTTP/1.1
Host: interesteddeterminedeurope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: u_pl=17376987; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdd1f0d5eb9f5f07d0b8e70df25b25181=[3396716]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:42 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3c298ffe6545eb40307e84d0f8c1f6ea
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.cloudimagesb.com/si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg | 45.133.44.9 | 200 OK | 21 kB |
URL HTTP/2cdn.cloudimagesb.com/si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg IP45.133.44.9:0 ASN#39572 DataWeb Global Group B.V.
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data Hashe76141a73e3867caa30e71f21f24f019 7664dbf096108e45ad2d376514565d1a859bd169 98acf73ddbba7ea1c25ae6edf6ab6817ef442cf1c2343909083b2601ea8b62ca
GET /si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: image/jpeg
content-length: 21046
server: nginx/1.17.6
last-modified: Sun, 27 Feb 2022 16:15:46 GMT
etag: "621ba3b2-5236"
expires: Thu, 06 Oct 2022 08:53:42 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash4bd610954d1cad0675c2010a63e9c018 bd7e8708e02d74c5d7534a48221c9314530917f6 3b51bf349c5fc0841b5ee253093aa1dfabb8271f84bbb0eee07836dec331c1cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B51BF349C5FC0841B5EE253093AA1DFABB8271F84BBB0EEE07836DEC331C1CD"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18657
Expires: Tue, 04 Oct 2022 14:04:39 GMT
Date: Tue, 04 Oct 2022 08:53:42 GMT
Connection: keep-alive
|
|
| unseenreport.com/pxf.gif?uuid=c9b172ec-762f-4723-a15b-1dd234258e75&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dd1f0d5eb9f5f07d0b8e70df25b25181&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8 | 192.243.61.227 | 200 OK | 10 kB |
URL HTTP/1.1unseenreport.com/pxf.gif?uuid=c9b172ec-762f-4723-a15b-1dd234258e75&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dd1f0d5eb9f5f07d0b8e70df25b25181&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8 IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
Hash49b95c332c9488eda3ac1695795616c6 55c537c5a911b2c040782d9b0410f9a6910ee484 1aa3f21e83060c98756837177086741705252419b6a08fad249da8425262fa09
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pxf.gif?uuid=c9b172ec-762f-4723-a15b-1dd234258e75&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dd1f0d5eb9f5f07d0b8e70df25b25181&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:42 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 517477a2bb287408281b287587fe855d
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash66909c9078632d44ebf4a15cd12a5595 c11a63fa7f302a0bafc7f20821d0e9ca9328f9d2 b525db57340ac0c9ac960f9e711431b1992008b5b1506d72e8260ad3743b8f3b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B525DB57340AC0C9AC960F9E711431B1992008B5B1506D72E8260AD3743B8F3B"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11773
Expires: Tue, 04 Oct 2022 12:09:55 GMT
Date: Tue, 04 Oct 2022 08:53:42 GMT
Connection: keep-alive
|
|
| creepingbrings.com/sfp.js | 172.64.199.30 | 200 OK | 29 kB |
URL HTTP/2creepingbrings.com/sfp.js IP172.64.199.30:0
File typeASCII text, with very long lines (6025), with no line terminators Hash5c34ca2f7689a254dcad220c2809f3f9 6d8c363c5c8cb129badebd6f1a74edc79aa24a42 1d85cf98937b861c6785734e2ff3232701e85a5cf681b3f15029579a54f5d75a
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:39 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: f218d9df8a02225e626b3cba27d03ee5
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 04 Oct 2022 08:53:39 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1TqCeISTDIk4RAmAwa172GEQTYABl%2B2Z7KY7uBqRxDxbD3L2nYT7tVtJ3BKgbXdKrOeRy%2FAJuoJ8fYG6Emei8HG0DVHly%2BNgZpT5CCNwbel7ayKy%2BeRhQu%2B98sjSZqpk2CZXsW0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb0393b2f71c2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash66909c9078632d44ebf4a15cd12a5595 c11a63fa7f302a0bafc7f20821d0e9ca9328f9d2 b525db57340ac0c9ac960f9e711431b1992008b5b1506d72e8260ad3743b8f3b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B525DB57340AC0C9AC960F9E711431B1992008B5B1506D72E8260AD3743B8F3B"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11773
Expires: Tue, 04 Oct 2022 12:09:55 GMT
Date: Tue, 04 Oct 2022 08:53:42 GMT
Connection: keep-alive
|
|
| interesteddeterminedeurope.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Findex.html&l=1559&fd=660 | 192.243.61.227 | 200 OK | 0 B |
URL HTTP/1.1interesteddeterminedeurope.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Findex.html&l=1559&fd=660 IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Findex.html&l=1559&fd=660 HTTP/1.1
Host: interesteddeterminedeurope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: u_pl=17376987; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdd1f0d5eb9f5f07d0b8e70df25b25181=[3396716]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:42 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/img/1.jpg | 172.64.200.2 | 200 OK | 22 kB |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/img/1.jpg IP172.64.200.2:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x292, components 3\012- data Hashe1f754e6014f2a7636aa19acdf37eaa7 72ded7fb65560b2702630d5208386654f294e8e9 8b9e400d61eb3c28929db8209c3136b14e2112d6eb8b4f504b74f6cca67b50fe
GET /sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/img/1.jpg HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: image/jpeg
content-length: 21845
last-modified: Wed, 03 Aug 2022 08:33:45 GMT
etag: "62ea32e9-5555"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 5352553
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9UDAuFwwV7y99FxboeN9%2BM4ZXoPm3%2B4N9id6KyetW0ON%2BjHCY15QTBscIUUD6%2FtjXP5REJnJ6Ou78npArXft6PDO2kMSf5ulYQJ79S1du8HO3g4jl7p%2Fxj0j50hj3OD1cwk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb04e098375bf-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash66909c9078632d44ebf4a15cd12a5595 c11a63fa7f302a0bafc7f20821d0e9ca9328f9d2 b525db57340ac0c9ac960f9e711431b1992008b5b1506d72e8260ad3743b8f3b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B525DB57340AC0C9AC960F9E711431B1992008B5B1506D72E8260AD3743B8F3B"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11773
Expires: Tue, 04 Oct 2022 12:09:55 GMT
Date: Tue, 04 Oct 2022 08:53:42 GMT
Connection: keep-alive
|
|
| interesteddeterminedeurope.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Fcss%2Fstyle.css&l=3637&fd=224 | 192.243.61.227 | 200 OK | 660 B |
URL HTTP/1.1interesteddeterminedeurope.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Fcss%2Fstyle.css&l=3637&fd=224 IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
File typegzip compressed data, max compression\012- data Hash5860c780c8e9daa4f852038f02b5bdc2 c75c8b4db36bffe075ce493f06d011f855d5541a f11b9f8e851e15c0c6abd53a9994c6dcef78ceeebd0f0b8bbde610fec8332c85
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Fcss%2Fstyle.css&l=3637&fd=224 HTTP/1.1
Host: interesteddeterminedeurope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: u_pl=17376987; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdd1f0d5eb9f5f07d0b8e70df25b25181=[3396716]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:42 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/style.css | 172.64.200.2 | 200 OK | 1.0 kB |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/style.css IP172.64.200.2:0
Hash20710b5df582884b3779bc24c1977cdd 58e7736a6a076efdf1e4d7a9fea88bfe4ace2fa7 49592242422c4a7f3bd1d57f6818aaa9c7ae5e236f13fc01939ab9abc3cd74b5
GET /sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 15:54:46 GMT
etag: W/"61f80646-e35"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P4h13isozaXz5BLzun0nr9rn6w5afrsJZR%2FHewZT16yS6cUGpt9A8WWUh4vIARVadjw%2FDfoJ4bVBhQhtGzrcTqQr1EI0l%2FOLf8%2BKz7BjqxE4hoS%2BJ8Vhy2XnZCH2ZUNY0ho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb04de94675bf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| interesteddeterminedeurope.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2tcVRi9rw3%2BwJXSjQVlVlJBJu%2FNj8zELIoxRoJpU1tFd3p%2Fvck19737uPfdeZOsggXpzhH8A17OJA3VohXcWmRS6CIg9OkmqPkfROnKhcw0OPrB4zvnnbM43%2Ffdz%2Fb8KQnh6cnKFbOjtKbz7XpYu%2FRhFC3V1lXqB7VBd%2BGjhdZSzfZfX1yoh6%2FW3pZ8y8w3wigMozCqrSorYzOYn4hQ2d3FqL4Y1luNetRuYWD%2Fz50P4GgA0T8lL0CJau5BcAGKj5Em91ak28pN9tpbidc0NxZ9cfh%2BupWaIkUyg7ENEKeHZ24Y92j1Pkx6MI0L0%2F%2FXyFRFgof3wdLDs5Bg%2Ff1pTqYhUzDxHIr%2BGFKPoegY3NyEEo8IwAWubiBNbl81tqDbT1Q6USsy9%2FhPqKIic79fQJp8s6zVoHbDaJ8rkzoM4hJqMIbqjZH5I%2BQ756CKI%2FD8UyjxE5l%2FvI402d9w2kCJcjq7UmOoeAwth6AugJ98KoCPA%2FgsQCJOajyKok4oOA27i5w3RUeyBRFGtBNHNAoXuvB8Em%2BIPBuC6yG43UVmd7GlhrD%2BR7jNEk4EcHlFgnd30RclCklQOIKCEhSKoMgJin55ILRruPK20M6z6Kw3znqzHJm8t0cPTN6TKdnLTsnzk70Ez77yK7bkSU2IKA5FW7LFuB2HHRGyruyEIm60WaMddSM4VUK5c9NRd1RFLl76HJmqyFNPXwCjR3D6CFwFoP4l0GLUaYSgm6NWN8RO%2Bi2neaKoiWnq6twkEKZEls8h3w729Cl5cXqi5i8akh9f%2Fphdqf648ze4LZHZEp%2BoBwQ9fWt03RRk%2F7opHPluI8tVonbo5Hw3cprL81%2B9I7cLY8XaihveeYNPhAm8%2B550%2BTpNhUp7jny9rISQdtVYLskPa%2B4Dya55t7nsbeqz9Wtvrq4lmZXOKZOOQVVFyMNjcFWRZ74%2Fmb7Mi7%2Fdg7JjWF8i8cfkrKDMEXi2C5fN8jtzHlbPPCwLUPhyZBts9lMrAi1nnLIS7j%2BczfCeu4WefRk0v4k0KdG3Jfq6BNVDOH9%2BlGf2%2BPLPzWmB6WDEtA32mbb6iyfLdeqk1gxFh8lYdphstVux5IK12yzkMWdN0e1y5K7iS399%2BQ8AAAD%2F%2FwEAAP%2F%2FYocV4mQEAAA%3D | 192.243.61.227 | 200 OK | 7 B |
URL HTTP/1.1interesteddeterminedeurope.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2tcVRi9rw3%2BwJXSjQVlVlJBJu%2FNj8zELIoxRoJpU1tFd3p%2Fvck19737uPfdeZOsggXpzhH8A17OJA3VohXcWmRS6CIg9OkmqPkfROnKhcw0OPrB4zvnnbM43%2Ffdz%2Fb8KQnh6cnKFbOjtKbz7XpYu%2FRhFC3V1lXqB7VBd%2BGjhdZSzfZfX1yoh6%2FW3pZ8y8w3wigMozCqrSorYzOYn4hQ2d3FqL4Y1luNetRuYWD%2Fz50P4GgA0T8lL0CJau5BcAGKj5Em91ak28pN9tpbidc0NxZ9cfh%2BupWaIkUyg7ENEKeHZ24Y92j1Pkx6MI0L0%2F%2FXyFRFgof3wdLDs5Bg%2Ff1pTqYhUzDxHIr%2BGFKPoegY3NyEEo8IwAWubiBNbl81tqDbT1Q6USsy9%2FhPqKIic79fQJp8s6zVoHbDaJ8rkzoM4hJqMIbqjZH5I%2BQ756CKI%2FD8UyjxE5l%2FvI402d9w2kCJcjq7UmOoeAwth6AugJ98KoCPA%2FgsQCJOajyKok4oOA27i5w3RUeyBRFGtBNHNAoXuvB8Em%2BIPBuC6yG43UVmd7GlhrD%2BR7jNEk4EcHlFgnd30RclCklQOIKCEhSKoMgJin55ILRruPK20M6z6Kw3znqzHJm8t0cPTN6TKdnLTsnzk70Ez77yK7bkSU2IKA5FW7LFuB2HHRGyruyEIm60WaMddSM4VUK5c9NRd1RFLl76HJmqyFNPXwCjR3D6CFwFoP4l0GLUaYSgm6NWN8RO%2Bi2neaKoiWnq6twkEKZEls8h3w729Cl5cXqi5i8akh9f%2Fphdqf648ze4LZHZEp%2BoBwQ9fWt03RRk%2F7opHPluI8tVonbo5Hw3cprL81%2B9I7cLY8XaihveeYNPhAm8%2B550%2BTpNhUp7jny9rISQdtVYLskPa%2B4Dya55t7nsbeqz9Wtvrq4lmZXOKZOOQVVFyMNjcFWRZ74%2Fmb7Mi7%2Fdg7JjWF8i8cfkrKDMEXi2C5fN8jtzHlbPPCwLUPhyZBts9lMrAi1nnLIS7j%2BczfCeu4WefRk0v4k0KdG3Jfq6BNVDOH9%2BlGf2%2BPLPzWmB6WDEtA32mbb6iyfLdeqk1gxFh8lYdphstVux5IK12yzkMWdN0e1y5K7iS399%2BQ8AAAD%2F%2FwEAAP%2F%2FYocV4mQEAAA%3D IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2tcVRi9rw3%2BwJXSjQVlVlJBJu%2FNj8zELIoxRoJpU1tFd3p%2Fvck19737uPfdeZOsggXpzhH8A17OJA3VohXcWmRS6CIg9OkmqPkfROnKhcw0OPrB4zvnnbM43%2Ffdz%2Fb8KQnh6cnKFbOjtKbz7XpYu%2FRhFC3V1lXqB7VBd%2BGjhdZSzfZfX1yoh6%2FW3pZ8y8w3wigMozCqrSorYzOYn4hQ2d3FqL4Y1luNetRuYWD%2Fz50P4GgA0T8lL0CJau5BcAGKj5Em91ak28pN9tpbidc0NxZ9cfh%2BupWaIkUyg7ENEKeHZ24Y92j1Pkx6MI0L0%2F%2FXyFRFgof3wdLDs5Bg%2Ff1pTqYhUzDxHIr%2BGFKPoegY3NyEEo8IwAWubiBNbl81tqDbT1Q6USsy9%2FhPqKIic79fQJp8s6zVoHbDaJ8rkzoM4hJqMIbqjZH5I%2BQ756CKI%2FD8UyjxE5l%2FvI402d9w2kCJcjq7UmOoeAwth6AugJ98KoCPA%2FgsQCJOajyKok4oOA27i5w3RUeyBRFGtBNHNAoXuvB8Em%2BIPBuC6yG43UVmd7GlhrD%2BR7jNEk4EcHlFgnd30RclCklQOIKCEhSKoMgJin55ILRruPK20M6z6Kw3znqzHJm8t0cPTN6TKdnLTsnzk70Ez77yK7bkSU2IKA5FW7LFuB2HHRGyruyEIm60WaMddSM4VUK5c9NRd1RFLl76HJmqyFNPXwCjR3D6CFwFoP4l0GLUaYSgm6NWN8RO%2Bi2neaKoiWnq6twkEKZEls8h3w729Cl5cXqi5i8akh9f%2Fphdqf648ze4LZHZEp%2BoBwQ9fWt03RRk%2F7opHPluI8tVonbo5Hw3cprL81%2B9I7cLY8XaihveeYNPhAm8%2B550%2BTpNhUp7jny9rISQdtVYLskPa%2B4Dya55t7nsbeqz9Wtvrq4lmZXOKZOOQVVFyMNjcFWRZ74%2Fmb7Mi7%2Fdg7JjWF8i8cfkrKDMEXi2C5fN8jtzHlbPPCwLUPhyZBts9lMrAi1nnLIS7j%2BczfCeu4WefRk0v4k0KdG3Jfq6BNVDOH9%2BlGf2%2BPLPzWmB6WDEtA32mbb6iyfLdeqk1gxFh8lYdphstVux5IK12yzkMWdN0e1y5K7iS399%2BQ8AAAD%2F%2FwEAAP%2F%2FYocV4mQEAAA%3D HTTP/1.1
Host: interesteddeterminedeurope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: u_pl=17376987; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdd1f0d5eb9f5f07d0b8e70df25b25181=[3396716]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:43 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f1904d62be85e51da9b9ba239d1adffd
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/animate.css | 172.64.200.2 | 200 OK | 4.8 kB |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/animate.css IP172.64.200.2:0
Hash21eb7a65c17a2c22ba104a7ecbf1dc0f ea8c53be54889c7489aed04e30e3eb83af64dec9 090bd9ceb9a58da038e5ed4a39dfbb63ece49ed4f4f0656ce35f7faa41a3b237
GET /sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/animate.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 13:04:04 GMT
etag: W/"611bb3c4-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e1sk1TeSGjCQ8xL17KU%2Fp%2BqK5wLCC2i3Z%2FeffbG5N1b0eXbk5dU%2BkRsJMe4kIh01I6AIdBX42BSZBGP2PKuTflTtrqY1E9LXwfxbfByxPwnbW8ypmJm1g0gYf1%2FmY7w%2FhCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb04de94a75bf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/js/script.js | 172.64.200.2 | 200 OK | 189 B |
URL HTTP/2cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/js/script.js IP172.64.200.2:0
Hashe92fccb89580145c885f0359badbd628 bed02f01f78b1f585462796e01527a268ac7f24c f9fdf22943d31068189a6e1329d6bc9bf9ebc39b5ce4ccbd1d3a2f99f82a0597
GET /sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 13:04:06 GMT
etag: W/"611bb3c6-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IcloaVJITqgQLYnG0Ime1QURDq9ShLb%2B48uL%2F8Reu%2FoOLdiBsYSKX024ftsL6IATbSkkleEgYbBDzLWy1HUQBi%2FKV9Z8I5VzWhy6ZW%2BagnTj%2FTRREDdNxiN9V2jgc2RIAoU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb04dd92e75bf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.adsfcdn.com/js/aG9MM1NBZk54MXM9.js | 104.21.44.117 | 200 OK | 0 B |
URL HTTP/2cdn.adsfcdn.com/js/aG9MM1NBZk54MXM9.js IP104.21.44.117:0
GET /js/aG9MM1NBZk54MXM9.js HTTP/1.1
Host: cdn.adsfcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:39 GMT
content-type: application/javascript
last-modified: Sat, 10 Sep 2022 00:00:19 GMT
vary: Accept-Encoding
etag: W/"631bd393-d7b"
expires: Tue, 04 Oct 2022 20:53:39 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sWqG5dtKAoB8WjlCxm%2FN554rW4SKXJuUo1EvbIjiroDIBaCLJsRILpkmlJL5sRwHttWpSX%2BlQqtKhi9gV4oZjZbSYKfGE0Z0X8rOuyZxGgxLjeSB82jDLFJALwL0vkDdFGQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754cb03a0c301bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/index.html | 104.26.7.19 | 200 OK | 0 B |
URL HTTP/2cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/index.html IP104.26.7.19:0
GET /sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: text/html
last-modified: Tue, 01 Feb 2022 10:33:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tdTRRoJqu%2FGHIXghDRkSm8SMcM9DFtvDwR4%2BllHo2eYGkRv%2Fm47nJ3%2B9BUM82iCUZyA%2FcCFSN%2Fg2oJbNvWlDRodsnAa81OkZqdNiyf0O1tqSQ3MGkns7BVuoMYlGAcKkSDudkBA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb0498bcbb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| catmiaofans.com/redirect.php/?subid=1206808362&country=%3C%3Fphp+echo+%24_GET%5B%27country%27%5D%3F%3E | 104.21.86.182 | 200 OK | 0 B |
URL HTTP/2catmiaofans.com/redirect.php/?subid=1206808362&country=%3C%3Fphp+echo+%24_GET%5B%27country%27%5D%3F%3E IP104.21.86.182:0
GET /redirect.php/?subid=1206808362&country=%3C%3Fphp+echo+%24_GET%5B%27country%27%5D%3F%3E HTTP/1.1
Host: catmiaofans.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:37 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K5W8l7v31na5P7%2BWtchOgo61FHVZ89Fwr9LW%2Ba%2BmWzigUcyL16T%2FIl8KIr3jeAEn58jtsWksm2AJX9LGbJTB0%2FDo8NcV54rMBaMxCOCB1ZWyWxKMym%2Fl65Eh5XKjXY0O49Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754cb02b3d11b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 | 172.64.156.26 | 200 OK | 0 B |
URL HTTP/2static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 IP172.64.156.26:0
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:37 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb02cdedb0b41-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|