| www.live4wap.click/page-watch/48/India-Tour-of-Bangladesh-2022-3rd-ODI-Bangladesh-vs-India.html |  104.21.29.118 | 301 Moved Permanently | 0 B |
URL HTTP/1.1www.live4wap.click/page-watch/48/India-Tour-of-Bangladesh-2022-3rd-ODI-Bangladesh-vs-India.html IP104.21.29.118:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /page-watch/48/India-Tour-of-Bangladesh-2022-3rd-ODI-Bangladesh-vs-India.html HTTP/1.1
Host: www.live4wap.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 10 Dec 2022 08:47:12 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 10 Dec 2022 09:47:12 GMT
Location: https://www.live4wap.click/page-watch/48/India-Tour-of-Bangladesh-2022-3rd-ODI-Bangladesh-vs-India.html
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dsrRAc1vkl5E6YUZnDoRhkjEv0axL0Fz9dS%2FPsSeLwaJ5FuBEshll3NMvva7zdIWr%2BuW5Bh01nfhlOVXIqYzTBjmlzka4maYzaIRTFmO4%2BkYGeOUw%2FIk6uPb2aWtD4ompIA9ZG8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7774b6e948c1b4fd-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash43ad67f241ee3692a9c9c1da080dae58 6a024f7d71eeee257edc91ba9273416f634aaae5 636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18155
Expires: Sat, 10 Dec 2022 13:49:48 GMT
Date: Sat, 10 Dec 2022 08:47:13 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash388f6fea5bafa378266622b72311a6ee 447f102dc12172ce1ba44c5e94e1d7bb49d43372 a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2323
Expires: Sat, 10 Dec 2022 09:25:56 GMT
Date: Sat, 10 Dec 2022 08:47:13 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 10 Dec 2022 08:33:20 GMT
content-type: application/json
age: 833
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash4ee537977be9c03702f8ffe0025bf1fe 21637881c4aa34c4add703f8bff4eff573159f45 4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9165
Expires: Sat, 10 Dec 2022 11:19:58 GMT
Date: Sat, 10 Dec 2022 08:47:13 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: EsYAA8Kpj0zX18PAHsDggPKRFd5oKs1QHjr0Nt3IRpEHjF4lN96VS8cSslpcSDT0mFfcDgQOP2k=
x-amz-request-id: RXN9T5YN539NAN6B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 10 Dec 2022 07:50:35 GMT
age: 3398
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/5T5HzHySqDk | 142.250.74.131 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/5T5HzHySqDk IP142.250.74.131:0
Hashdbe48210ac2ea164997257cb7a9d7ddb 015af496604b6c18360095161dd5dbb48f53097c 03d67e8f1661f5932a98bc0e8a7c21e0a30db97b92264e517b022e8840932f45
POST /s/gts1p5/5T5HzHySqDk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/5T5HzHySqDk | 142.250.74.131 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/5T5HzHySqDk IP142.250.74.131:0
Hashdbe48210ac2ea164997257cb7a9d7ddb 015af496604b6c18360095161dd5dbb48f53097c 03d67e8f1661f5932a98bc0e8a7c21e0a30db97b92264e517b022e8840932f45
POST /s/gts1p5/5T5HzHySqDk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css | 104.17.24.14 | 200 OK | 5.6 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css IP104.17.24.14:0
File typeASCII text, with very long lines (30837) Hash109d1ed85cd01f9cdab73a4cac5bf80d d6c6498ad46de2d8e2008a8ff68e364ae7f16b32 8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 903221
expires: Thu, 30 Nov 2023 08:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jteL0i%2Fo%2FF3v4nQ5iI8hdrdrZZR0FSky83Hn4wn%2FyC97acK4TxDqu0owilGwKGWeDk8luycyu96syl14EKUcvwhigOSBwm6LLzwR%2FimzBicBSX0a01uQJyP933gOI0%2Bc9LfVg5YJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7774b6eddc68b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js | 104.17.24.14 | 200 OK | 6.6 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (20831) Hash368c425fc94c424e1688caadefbed981 13d24c22c199ef6668d758434819f44307a65094 ed9c7a83e1c1300a93ecd08807a736ebe7b87ab8262a40bc7e3859d00a46a102
GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 746428
expires: Thu, 30 Nov 2023 08:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7H%2FpuaTEXv6XhEWmtT9QF9UK1Rgu4Cuqfsd3ZjmkCIL1HBO3X4M82UlsYCJSS07nrY2Z74FuQj3aVw6QJQzy7SOvNlzSJGCCQJPMMuQAok3r7tzFyTMq959wo4V5hfluCVcJUUU8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7774b6edec75b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashedac2b4e678c48b1fc3be3a06793bfcb 23f1f41a2194536d77a2497d7255b13747fd9af0 e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js | 104.17.24.14 | 200 OK | 27 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js IP104.17.24.14:0
File typeASCII text, with very long lines (65451) Hash77bd61b98f7b67af56639229724f8dd4 f04f07dd8ff53e58c32b738f81b71a014bca441d 8ce54c3b77bf31899b27b29188ff4936b580f2bd2b3222d43dda2851ba272e24
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: application/javascript; charset=utf-8
content-length: 27433
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-1538f"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 743290
expires: Thu, 30 Nov 2023 08:47:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=noF5ZUluk3ar76Wly5I3LnKNNJ5eJXaRlxelDkHz55doyQQzm7FUu5YLH3sYfmKyf8jt0%2FFTbHH54142PeI3Ec4qPuTQZ0Ugp7O8zBCCAOJMkYzWiyT%2BQYgA7hbs1PIGz2RsuCKs"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7774b6ee2cd0b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash134e6e2dd7e9b8c65ec088381b1dbc75 950ad0d65474f2af97192d61de7bde8d82862956 8ba6a3ab77a1c0799ea7c8fcb45fc45aa257761972b8685092bb1e8ec0ef8374
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1682
Cache-Control: max-age=168126
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Etag: "63942ebd-118"
Expires: Mon, 12 Dec 2022 07:29:19 GMT
Last-Modified: Sat, 10 Dec 2022 07:01:17 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash134e6e2dd7e9b8c65ec088381b1dbc75 950ad0d65474f2af97192d61de7bde8d82862956 8ba6a3ab77a1c0799ea7c8fcb45fc45aa257761972b8685092bb1e8ec0ef8374
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1726
Cache-Control: max-age=168170
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Etag: "63942ebd-118"
Expires: Mon, 12 Dec 2022 07:30:03 GMT
Last-Modified: Sat, 10 Dec 2022 07:01:17 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 280
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashedac2b4e678c48b1fc3be3a06793bfcb 23f1f41a2194536d77a2497d7255b13747fd9af0 e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashf7aef7109978f8c1c53298563756a403 d610bb812b080710945dd47f9cccd794af9fe2f7 6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdn.jsdelivr.net/npm/hls.js@latest | 151.101.129.229 | 200 OK | 98 kB |
URL HTTP/2cdn.jsdelivr.net/npm/hls.js@latest IP151.101.129.229:0
File typeASCII text, with very long lines (65536), with no line terminators Hash3aa101b9aeee7758cec1c667bc635da1 7dabd0d5bf59d7d5439cd7761fae36f0653256c2 6b19575c043767801c4b7e9e3ea503f83807ce2bf795d3884ae199cd724a1994
GET /npm/hls.js@latest HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.2.9
x-jsd-version-type: version
etag: W/"54277-nAJsJ6XnM8NRGpCH9SM01svCycU"
content-encoding: gzip
accept-ranges: bytes
date: Sat, 10 Dec 2022 08:47:13 GMT
age: 8149
x-served-by: cache-fra-eddf8230132-FRA, cache-bma1643-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 98544
X-Firefox-Spdy: h2
|
|
| ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js | 142.250.74.170 | 200 OK | 31 kB |
URL HTTP/2ajax.googleapis.com/ajax/libs/jquery/3.4.0/jquery.min.js IP142.250.74.170:0
File typeASCII text, with very long lines (65451) Hash2acb91a52609d98e033b92e973500257 4ebcc3ee25749444de6454ee2009fb26a602f6fb 9fdd3f844aa3d86042f0b2f8ef839240ace6d14334b464b77847a5c329272da2
GET /ajax/libs/jquery/3.4.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Dec 2022 15:01:53 GMT
expires: Wed, 06 Dec 2023 15:01:53 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 323120
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-EFRKRPXK2Z | 142.250.74.40 | 200 OK | 77 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-EFRKRPXK2Z IP142.250.74.40:0
File typeASCII text, with very long lines (22462) Hash81176b2ca0eaec178807da8d8716e344 6ea0bd2289a344e0ba3816337cee0eb7fbcfa50e 6155b75e44bc479e48f1d26d6c873ae5475f4dfdc2e6fcf571c41e26ba9dda33
GET /gtag/js?id=G-EFRKRPXK2Z HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 10 Dec 2022 08:47:13 GMT
expires: Sat, 10 Dec 2022 08:47:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76835
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashedac2b4e678c48b1fc3be3a06793bfcb 23f1f41a2194536d77a2497d7255b13747fd9af0 e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash134e6e2dd7e9b8c65ec088381b1dbc75 950ad0d65474f2af97192d61de7bde8d82862956 8ba6a3ab77a1c0799ea7c8fcb45fc45aa257761972b8685092bb1e8ec0ef8374
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1726
Cache-Control: max-age=168170
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Etag: "63942ebd-118"
Expires: Mon, 12 Dec 2022 07:30:03 GMT
Last-Modified: Sat, 10 Dec 2022 07:01:17 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 280
|
|
| www.googletagmanager.com/gtag/js?id=G-H5DKLJLN0W | 142.250.74.40 | 200 OK | 76 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-H5DKLJLN0W IP142.250.74.40:0
File typeASCII text, with very long lines (20080) Hashfac849d029d2f88b22a1f167b41d2251 0a124057abbcc783d8bae55a833d346d8f6d8d2e 015d3f6f34fdd947754b0ac87fed61f16e802dda8286f6c9c6306b9f4a633de1
GET /gtag/js?id=G-H5DKLJLN0W HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 10 Dec 2022 08:47:13 GMT
expires: Sat, 10 Dec 2022 08:47:13 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76260
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 | 104.18.20.226 | 200 OK | 1.5 kB |
URL HTTP/1.1ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 IP104.18.20.226:0
Hashfbb1c01f24bb8d1eb1ecfbc068d2e5b1 a04449ad0a5f912021b57a3e3546d6ff3bb0ea4b 7e83bf926dc334b80611701de8604b7663b08dceabde09a4d7cdce6c3f7bcc02
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Dec 2022 08:47:13 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "7B52FD7B1F7C7F05EB627DF5FEDE8A3EFA12EE97"
Expires: Sat, 10 Dec 2022 19:00:00 GMT
Last-Modified: Sat, 10 Dec 2022 07:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2364
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7774b6ef6a68b4ff-OSL
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashf7aef7109978f8c1c53298563756a403 d610bb812b080710945dd47f9cccd794af9fe2f7 6366bc97e3f9ac9a6e8a294da60f2d961d2106180fd8ffaae97bc82ea399edb9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash2ffac9b3e5f56339e0ac633817e68127 3c55a6bfceafb84b026883f48d5e8ddd2d5d2952 876cd5edcc35c3c84b46b36a7d9a6ef7b13785edf8cd6c88e5aff1bc0eba547d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Server: ECS (amb/6B71)
Content-Length: 280
|
|
| cdn.plyr.io/3.5.6/plyr.js | 104.27.195.88 | 200 OK | 33 kB |
URL HTTP/2cdn.plyr.io/3.5.6/plyr.js IP104.27.195.88:0
File typeASCII text, with very long lines (65536), with no line terminators Hashfa9d24328083ef055c318170ce8870e8 34296ef9b1ea1cdab40b4d6e013e3d21bd547d7e 97a16eb6d184706c3238c927df095bb2e055424b655755838759eb618f1275e1
GET /3.5.6/plyr.js HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=115214
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept
age: 16280924
etag: W/"9d73b693871be7e183805ba7a82e161d"
last-modified: Fri, 21 Jun 2019 02:29:30 GMT
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
x-amz-id-2: Mq99aUgYGe2LszP7bhz9r0ySXFFd8gr+AvaY04PBikN3u1Qz3GzXvUuAbky3hhDx1aH+8TBLQ0s=
x-amz-request-id: NS7JP0VKVAZ1MFMD
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-served-by: cache-iad-kjyo7100135-IAD, cache-bma1644-BMA
x-timer: S1654381109.276563,VS0,VE1
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZkFYJ4iHWr9guqg%2FkLxgspXWtCIUF%2Fwjdg9m%2FIkCLSGurLdNv0gsUjoNd%2BqZYz4Eg9jx%2FvVIHnFzKC36iorDomaD6HUeTOSaSofA8GfmlAaJbhvpVRAgeqAcAif2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6ee0a5eb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash2ffac9b3e5f56339e0ac633817e68127 3c55a6bfceafb84b026883f48d5e8ddd2d5d2952 876cd5edcc35c3c84b46b36a7d9a6ef7b13785edf8cd6c88e5aff1bc0eba547d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=163548
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Etag: "6394236d-118"
Expires: Mon, 12 Dec 2022 06:13:01 GMT
Last-Modified: Sat, 10 Dec 2022 06:13:01 GMT
Server: nginx
Content-Length: 280
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash96462f84e0a9253f65ec3c9eed8ce03b f77ca0cd5709456064376d2e9fd851fc80c9c45b b643f03a14415de7a02bfb100ca60dd6c618726e60132c7f3326b6daf2a19f07
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B643F03A14415DE7A02BFB100CA60DD6C618726E60132C7F3326B6DAF2A19F07"
Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8507
Expires: Sat, 10 Dec 2022 11:09:00 GMT
Date: Sat, 10 Dec 2022 08:47:13 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 280 B |
IP93.184.220.29:0
Hash2ffac9b3e5f56339e0ac633817e68127 3c55a6bfceafb84b026883f48d5e8ddd2d5d2952 876cd5edcc35c3c84b46b36a7d9a6ef7b13785edf8cd6c88e5aff1bc0eba547d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:13 GMT
Last-Modified: Sat, 10 Dec 2022 08:47:13 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 280
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 10 Dec 2022 08:07:55 GMT
age: 2359
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7f52f1b8da25476d876e1088c1bb0ad0 fb9d7b3bddc78224e7274b0d97d8db1681fea407 c3cb724b4b302590e07fe38dc7a9801d598d36ddaf62e604ae09a8005be1c89d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C3CB724B4B302590E07FE38DC7A9801D598D36DDAF62E604AE09A8005BE1C89D"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2672
Expires: Sat, 10 Dec 2022 09:31:46 GMT
Date: Sat, 10 Dec 2022 08:47:14 GMT
Connection: keep-alive
|
|
| i2.imgfastcdn.xyz/pix/2022/06/01/479bd78fe3efe27148700faa904f41e2.png | 104.21.11.210 | 200 OK | 96 kB |
URL HTTP/2i2.imgfastcdn.xyz/pix/2022/06/01/479bd78fe3efe27148700faa904f41e2.png IP104.21.11.210:0
File typePNG image data, 800 x 300, 8-bit/color RGBA, non-interlaced\012- data Hash5b032ff46d5d390e65723838c7fe1ab3 d61cebeeb276189d87abe2a68822ecaca8df0971 0e30805ca59ecd415dc1664c4f0729b126f48a3e2ac59d9e5906a744ffaa454b
GET /pix/2022/06/01/479bd78fe3efe27148700faa904f41e2.png HTTP/1.1
Host: i2.imgfastcdn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: image/png
content-length: 95527
last-modified: Wed, 01 Jun 2022 21:18:44 GMT
etag: "6297d7b4-17527"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 51666
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ItqI467u1ZnL1LZym86WJQI0LGf36BGAeQW%2BGhSogEMcTlh6FR4QCW0LiFXadJHzXTowkEM3r6sVITJI9QtjKNoGDIQhA54gFffgHmpr9zH%2Fk5p5Ni7X0W8Zl%2FLngBWHvqamQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7774b6f0a8860b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dl7.wapkizfile.info/download/47c157e662693886cc98c658fb9e7189/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/Goldmines%20Dhinchak.jpg | 104.21.234.68 | 200 OK | 28 kB |
URL HTTP/2dl7.wapkizfile.info/download/47c157e662693886cc98c658fb9e7189/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/Goldmines%20Dhinchak.jpg IP104.21.234.68:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 739x415, components 3\012- data Hash6142fd5d7b504e8e43ce2cd300d2f313 b1f70b6eda18a9cb309c0216284753f39e7094b1 35d76ea0eaf830f4ece5a990c1ee21fa90c3b71143780ae52897ffcff3226ace
GET /download/47c157e662693886cc98c658fb9e7189/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/Goldmines%20Dhinchak.jpg HTTP/1.1
Host: dl7.wapkizfile.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: image/gif
content-length: 27825
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 10520
last-modified: Sat, 10 Dec 2022 05:51:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P%2BQlkM7NutgaI%2BbTUK%2FizTdbqzZ7jq5zhMSBmtAIokbQz3CToTRrN1hyoU1Vs2f8lAOPtcRnwJRVieZoixrHjnorNwfku7lnkvS8JEBX9diyYbcaD0hNIDftG%2F5t878PvLfUTVAm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7774b6f0a85273ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash7f52f1b8da25476d876e1088c1bb0ad0 fb9d7b3bddc78224e7274b0d97d8db1681fea407 c3cb724b4b302590e07fe38dc7a9801d598d36ddaf62e604ae09a8005be1c89d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C3CB724B4B302590E07FE38DC7A9801D598D36DDAF62E604AE09A8005BE1C89D"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2672
Expires: Sat, 10 Dec 2022 09:31:46 GMT
Date: Sat, 10 Dec 2022 08:47:14 GMT
Connection: keep-alive
|
|
| dl7.wapkizfile.info/download/28138e2c69dcb57a967dbe4e0e2d1c07/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/India%20Tour%20of%20Bangladesh%2020221st%20ODI%20-%20Bangladesh%20vs%20India.jpg | 104.21.234.68 | 200 OK | 11 kB |
URL HTTP/2dl7.wapkizfile.info/download/28138e2c69dcb57a967dbe4e0e2d1c07/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/India%20Tour%20of%20Bangladesh%2020221st%20ODI%20-%20Bangladesh%20vs%20India.jpg IP104.21.234.68:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash9c5a4f7328e4caa042203a6537bdd384 ef14f90c1ece954fcd6c13c488d006eed83a32d7 88474a1e75c10dd5a9b26c5ac4dc71143ea042b7a992f26970d3f9f7bcd31f91
GET /download/28138e2c69dcb57a967dbe4e0e2d1c07/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/India%20Tour%20of%20Bangladesh%2020221st%20ODI%20-%20Bangladesh%20vs%20India.jpg HTTP/1.1
Host: dl7.wapkizfile.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: image/gif
content-length: 10790
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 9700
last-modified: Sat, 10 Dec 2022 06:05:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uq3n8U4pYKTKr0dSzRvEMOTTrSpNDshoYxIMNA1bnJGPXCZ06Rki8hJiy44QqgOzzYmApBEfPpgUbJez%2BtmUTwpErM52Flexad24zZIuL9cSAdNpvbjpf4Y0euw2lEDb83GmUdG6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7774b6f0c86c73ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| dl7.wapkizfile.info/download/403cd87c3232c4dd1e82f28dd8a5a7c7/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/Sony%20Ten%203.jpg | 104.21.234.68 | 200 OK | 82 kB |
URL HTTP/2dl7.wapkizfile.info/download/403cd87c3232c4dd1e82f28dd8a5a7c7/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/Sony%20Ten%203.jpg IP104.21.234.68:0
File typePNG image data, 1017 x 768, 8-bit/color RGBA, non-interlaced\012- data Hash016d35d515afb2d13a30499af1d3e3c6 7bf259f76ae7c16f96dfdf949bef31e3ebb1b0c7 5291d7ae88499b45ed69257a1535463735e04e96ed94d5cec3ee456e93155284
GET /download/403cd87c3232c4dd1e82f28dd8a5a7c7/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/Sony%20Ten%203.jpg HTTP/1.1
Host: dl7.wapkizfile.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: image/gif
content-length: 82163
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 10520
last-modified: Sat, 10 Dec 2022 05:51:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BMM8%2BCKo63csehE%2BlovYnENBkyKf6QCtVlmfK6fehcMWeSJ4FUkDrFo0IlHx6uxr5THJ65X%2ByESbHIpG8cv8VmrFUKum1E9gBOIlDVDvEBj%2FC79kLe96e4ZxTf6rbtLivM9Me0p2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7774b6f0c86673ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashe4f546e102d986faf1029509d599b730 cc045a705fd6758b7b575fde5dfb79facc9c3546 ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| dl7.wapkizfile.info/download/6bb488d0ae87a3123224f2b8e051ca14/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/India%20Tour%20of%20Bangladesh%202022%203rd%20ODI%20-%20Bangladesh%20vs%20India.jpg | 104.21.234.68 | 200 OK | 131 kB |
URL HTTP/2dl7.wapkizfile.info/download/6bb488d0ae87a3123224f2b8e051ca14/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/India%20Tour%20of%20Bangladesh%202022%203rd%20ODI%20-%20Bangladesh%20vs%20India.jpg IP104.21.234.68:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1280x720, components 3\012- data Size131 kB (130938 bytes) Hash4aaa1fdd7f7f59177525aff037c32a34 e3d2356d35451cc1d767c42749228295d3a30941 0f04eefe43fd7c8cda9f0eefd92138128c0c8f9395e7d902f0d7f2cd16b75efd
GET /download/6bb488d0ae87a3123224f2b8e051ca14/ee1afb79b58b8ec65dfad7b5c50b2a2b/net4wap+wapkiz+com/India%20Tour%20of%20Bangladesh%202022%203rd%20ODI%20-%20Bangladesh%20vs%20India.jpg HTTP/1.1
Host: dl7.wapkizfile.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: image/gif
content-length: 130938
x-powered-by: PHP/5.6.40
access-control-allow-origin: *
cache-control: max-age=2678400
cf-cache-status: HIT
age: 9700
last-modified: Sat, 10 Dec 2022 06:05:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IbSQjL%2FlDO3JVyd%2Fdijj2fwpyn4V47WlKgkmPGmvgGRovy2OHXPYGvUT%2BMLItr%2F6HJQ0PGHfce1N7Z6uVfVzkJGwJx%2BFeUsOZmWta3EQzhBwHyAWr9VsEG1YGxNBNDAEZdd%2Bzo94"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7774b6f0b86073ff-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe6be4d2155028ffff5d01ab6e7edf6da 07172071b5cf43c4cd7d7930b4ad8518ec1e32e9 4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2085
Cache-Control: max-age=89666
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:14 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 09:41:40 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
|
|
| fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 | 142.250.74.35 | 200 OK | 128 kB |
URL HTTP/2fonts.gstatic.com/s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 128352, version 1.0\012- data Size128 kB (128352 bytes) Hash53436aca8627a49f4deaaa44dc9e3c05 0bc0c675480d94ec7e8609dda6227f88c5d08d2c 8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v139/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.live4wap.click
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 20:33:17 GMT
expires: Fri, 08 Dec 2023 20:33:17 GMT
cache-control: public, max-age=31536000
age: 130437
last-modified: Thu, 25 Aug 2022 00:26:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| sparkleporedip.com/2e/1f/f5/2e1ff5b0a864ab367d4e866165066b75.js | 192.243.59.13 | 200 OK | 21 kB |
URL HTTP/1.1sparkleporedip.com/2e/1f/f5/2e1ff5b0a864ab367d4e866165066b75.js IP192.243.59.13:0 ASN#39572 DataWeb Global Group B.V.
File typeHTML document, ASCII text, with very long lines (60159), with no line terminators Hash005f30c276c4c555dde8ea2642d3272b a04be96712b17d8fe3eba4c1a524ff47af88c6bc f62d57dbb9c1d160936673eee01efb27e6ecf61dd689597c022d2a07a3403bce
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /2e/1f/f5/2e1ff5b0a864ab367d4e866165066b75.js HTTP/1.1
Host: sparkleporedip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 10 Dec 2022 08:47:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c5b1d0885f402ed81736bb4d9b1abb45
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.pki.goog/s/gts1p5/F2U8UnLeTuA | 142.250.74.131 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/F2U8UnLeTuA IP142.250.74.131:0
Hash2c999b11f9c5f54ccfce8246c3ab1d51 c5007542d3b6ca071b6d601da558507adff067d6 74f14975a66d288c9ae4ccf0806656841d35ce7a79e77d5240d8c4ee59c51dff
POST /s/gts1p5/F2U8UnLeTuA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 54.148.213.75 | 101 Switching Protocols | 655 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.148.213.75:0
File typegzip compressed data, from Unix\012- data Hashbc3ba461c8a309acf61b6d9c41cb6236 88482306ecc9258d5e9cbb9ba5314dab223a5db4 31331f1b1519882d2f2fb60367708fd56a7a1ec0bddd0554c635547179c7dc8f
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pvXUaaLNnX0oJ8eOUtruqg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VhCeggpkSpJuARw6IXKB+dwF3h4=
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 16 kB |
URL HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js IP104.18.11.207:0
File typeASCII text, with very long lines (57791) Hash51696708595b879f353582d90f099220 2a2fe4b526767d2eaf04c3a9517340356c4cdcb7 a05ff4a0b45a1aeff04526f25563289be239d3cdc1102f080de12e9e6ef14a33
GET /bootstrap/4.3.1/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:08 GMT
cdn-cachedat: 2021-04-23 06:42:10
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 4ec3ea58d4da343f371e5c42d7ad704a
cdn-cache: HIT
cf-cache-status: HIT
age: 18771622
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7774b6ee6d07b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| sparkleporedip.com/2e/1f/f5/2e1ff5b0a864ab367d4e866165066b75.js | 192.243.59.13 | 200 OK | 21 kB |
URL HTTP/1.1sparkleporedip.com/2e/1f/f5/2e1ff5b0a864ab367d4e866165066b75.js IP192.243.59.13:0 ASN#39572 DataWeb Global Group B.V.
File typeHTML document, ASCII text, with very long lines (60144), with no line terminators Hash3d039eda126fb62d474e47541a1f22d8 c19a96659616406a21085b8cd5f0ae8867510ddb 9fb0afe695285488446cd5318a7b46ac77576715036a866fbed5ae03fba087cb
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /2e/1f/f5/2e1ff5b0a864ab367d4e866165066b75.js HTTP/1.1
Host: sparkleporedip.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 10 Dec 2022 08:47:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c755678c9dda67f2bd3920e9acc8922a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.pki.goog/s/gts1p5/V2MTb4TW2vk | 142.250.74.131 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/V2MTb4TW2vk IP142.250.74.131:0
Hashcbc2e4ed034d3ca009dd909723548c84 68a3a9f07844e865881388120dd2351f361a7ad4 9ac2424340718b841af6a272b23ca9cfbcc517fd4ba986dd2748a19f6077575a
POST /s/gts1p5/V2MTb4TW2vk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| simplewebanalysis.com/stats |  18.185.190.54 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP18.185.190.54:0
File typeASCII text, with no line terminators Hasha07c743058cfcd0bfdf5ad5c0ba8276e 81314a8f6a4ca82151d34ea4d86af5f8f625f9ec 1e96fd43f2e45fac2ee4281ed4c48cd2eeb59495f97f95e4713f025faab81baa
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.live4wap.click
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.live4wap.click
access-control-allow-credentials: true
set-cookie: uid_id2=70ae90bb-5980-480f-86a2-5182d094a417:1:1; expires=Tue, 07 Dec 2032 08:47:14 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| simplewebanalysis.com/stats | 18.185.190.54 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP18.185.190.54:0
File typeASCII text, with no line terminators Hasha07c743058cfcd0bfdf5ad5c0ba8276e 81314a8f6a4ca82151d34ea4d86af5f8f625f9ec 1e96fd43f2e45fac2ee4281ed4c48cd2eeb59495f97f95e4713f025faab81baa
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.live4wap.click
Connection: keep-alive
Referer: https://www.live4wap.click/
Cookie: uid_id2=70ae90bb-5980-480f-86a2-5182d094a417:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.live4wap.click
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7f34dfb164851710f73c2c40259a647b 8893fd5c599cdf231ae13f4ab8c165fe64143924 cc13fe7acbbc71c3a704eb64b57aec95e7d0a2513143e06b182499ebd218a13d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CC13FE7ACBBC71C3A704EB64B57AEC95E7D0A2513143E06B182499EBD218A13D"
Last-Modified: Thu, 08 Dec 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19121
Expires: Sat, 10 Dec 2022 14:05:55 GMT
Date: Sat, 10 Dec 2022 08:47:14 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/s/gts1p5/F2U8UnLeTuA | 142.250.74.131 | 200 OK | 472 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/F2U8UnLeTuA IP142.250.74.131:0
Hash2c999b11f9c5f54ccfce8246c3ab1d51 c5007542d3b6ca071b6d601da558507adff067d6 74f14975a66d288c9ae4ccf0806656841d35ce7a79e77d5240d8c4ee59c51dff
POST /s/gts1p5/F2U8UnLeTuA HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash1eb443c86d6ddaee9d53f8ffd549a930 55e527586f3e16955d368bcc7cfda071fea68ecf 6570f3bef40829eb9f35189f017c62808c04c46ca6b0a9ee58e53d99bd376ed8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6570F3BEF40829EB9F35189F017C62808C04C46CA6B0A9EE58E53D99BD376ED8"
Last-Modified: Fri, 09 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3193
Expires: Sat, 10 Dec 2022 09:40:27 GMT
Date: Sat, 10 Dec 2022 08:47:14 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/s/gts1p5/V2MTb4TW2vk | 142.250.74.131 | 200 OK | 527 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/V2MTb4TW2vk IP142.250.74.131:0
Hash05fc029b14541cb8318e0eb37d4cc400 2dbdb452bb748f663b514de2729a4835258c9f57 75599c28e88f47b67ff2c1b333632d7c0468856c292784d408f5efcd91841089
POST /s/gts1p5/V2MTb4TW2vk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash1eb443c86d6ddaee9d53f8ffd549a930 55e527586f3e16955d368bcc7cfda071fea68ecf 6570f3bef40829eb9f35189f017c62808c04c46ca6b0a9ee58e53d99bd376ed8
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6570F3BEF40829EB9F35189F017C62808C04C46CA6B0A9EE58E53D99BD376ED8"
Last-Modified: Fri, 09 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3193
Expires: Sat, 10 Dec 2022 09:40:27 GMT
Date: Sat, 10 Dec 2022 08:47:14 GMT
Connection: keep-alive
|
|
| villasquinttolerance.com/pixel/purst?dl=0&th=0&sc=0&rs=1480&rd=1480&fd=893&bv=22.10.v.9&tmpl=70 | 173.233.137.52 | 200 OK | 0 B |
URL HTTP/1.1villasquinttolerance.com/pixel/purst?dl=0&th=0&sc=0&rs=1480&rd=1480&fd=893&bv=22.10.v.9&tmpl=70 IP173.233.137.52:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /pixel/purst?dl=0&th=0&sc=0&rs=1480&rd=1480&fd=893&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: villasquinttolerance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 10 Dec 2022 08:47:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash55b1700b79ba0d41189dcae14d5fead0 1d973c1b104d40c3ea58cd289dcfb1246facaeed c082e811bba85dd2925a6edea8ef66f46f8fcfc04807622c2bd56cada0bf928c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C082E811BBA85DD2925A6EDEA8EF66F46F8FCFC04807622C2BD56CADA0BF928C"
Last-Modified: Wed, 07 Dec 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7631
Expires: Sat, 10 Dec 2022 10:54:25 GMT
Date: Sat, 10 Dec 2022 08:47:14 GMT
Connection: keep-alive
|
|
| drmhls.redcdn.online/live/master1.m3u8 | 178.63.52.201 | 200 OK | 507 B |
URL HTTP/2drmhls.redcdn.online/live/master1.m3u8 IP178.63.52.201:0 ASN#24940 Hetzner Online GmbH
Hash73ed70c9fa5a98ec237a8891b1794d33 d16ab7a1410887439ad2c49507f70c0e5a6de332 80f2c8b16ab931cf06b443b180df0d105485fcdaf013e11fd4d0ce1cd9ab3d7a
GET /live/master1.m3u8 HTTP/1.1
Host: drmhls.redcdn.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.live4wap.click/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: application/vnd.apple.mpegurl
content-length: 505
last-modified: Wed, 07 Dec 2022 06:48:27 GMT
etag: "6390373b-1f9"
access-control-allow-origin: *
strict-transport-security: max-age=31536000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.14 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.14:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 10 Dec 2022 07:34:02 GMT
expires: Sat, 10 Dec 2022 09:34:02 GMT
cache-control: public, max-age=7200
age: 4392
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9de50892ae7a52ed31c181807ca85837 31aa41ce799cd02ec96250f0afc6ef7b2f985d0e 1f4acf997266abd6cbcfda90bf4ca4f653d392f130b7e2c999d21dafbc6a0fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F4ACF997266ABD6CBCFDA90BF4CA4F653D392F130B7E2C999D21DAFBC6A0FE2"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6306
Expires: Sat, 10 Dec 2022 10:32:21 GMT
Date: Sat, 10 Dec 2022 08:47:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashac863850040d53e37217544da134a925 e4b9182e201538010acb1cea89183b20d025e383 9c16608f7483d672a35fb5e715e0094768cd047f23fb1faf62423419b0bf693f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C16608F7483D672A35FB5E715E0094768CD047F23FB1FAF62423419B0BF693F"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11641
Expires: Sat, 10 Dec 2022 12:01:16 GMT
Date: Sat, 10 Dec 2022 08:47:15 GMT
Connection: keep-alive
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-EFRKRPXK2Z>m=2oebu0&_p=1377127648&cid=1707211919.1670662033&ul=en-us&sr=1280x1024&_s=1&sid=1670662033&sct=1&seg=0&dl=https%3A%2F%2Fwww.live4wap.click%2Fpage-watch%2F48%2FIndia-Tour-of-Bangladesh-2022-3rd-ODI-Bangladesh-vs-India.html&dt=India%20Tour%20Of%20Bangladesh%202022%203rd%20ODI%20Bangladesh%20Vs%20India%20-%20Live4wap&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-EFRKRPXK2Z>m=2oebu0&_p=1377127648&cid=1707211919.1670662033&ul=en-us&sr=1280x1024&_s=1&sid=1670662033&sct=1&seg=0&dl=https%3A%2F%2Fwww.live4wap.click%2Fpage-watch%2F48%2FIndia-Tour-of-Bangladesh-2022-3rd-ODI-Bangladesh-vs-India.html&dt=India%20Tour%20Of%20Bangladesh%202022%203rd%20ODI%20Bangladesh%20Vs%20India%20-%20Live4wap&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-EFRKRPXK2Z>m=2oebu0&_p=1377127648&cid=1707211919.1670662033&ul=en-us&sr=1280x1024&_s=1&sid=1670662033&sct=1&seg=0&dl=https%3A%2F%2Fwww.live4wap.click%2Fpage-watch%2F48%2FIndia-Tour-of-Bangladesh-2022-3rd-ODI-Bangladesh-vs-India.html&dt=India%20Tour%20Of%20Bangladesh%202022%203rd%20ODI%20Bangladesh%20Vs%20India%20-%20Live4wap&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.live4wap.click
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.live4wap.click
date: Sat, 10 Dec 2022 08:47:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| counter.jdi5.com/online.js | 104.21.11.61 | 200 OK | 1.3 kB |
URL HTTP/2counter.jdi5.com/online.js IP104.21.11.61:0
File typeASCII text, with very long lines (772) Hashf1e841c142f4583aa6010b5e2d53837a 552d6d54f47b142bef6f0f8a260869ec95eccacf 6556c7264d0e7a718b1f8f48ecbf4443b82801fee26a93c635d6f6ae9a44a202
GET /online.js HTTP/1.1
Host: counter.jdi5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: application/javascript
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=4470
etag: W/"63405dff-1176"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Fri, 07 Oct 2022 17:12:31 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 1833241
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a7UeyEVovJxu4SZ7ImoqUwtD1Zu3hvw%2BJwXM4QLxDBKNKEuRSqDpuTFREVxjt8TkdSzRqK5cMc7W%2FGrmgjX3mVYmBsWpdWDHq8HVIdbL4jlbp7JXf0JvCOMsSiUrQWgTZXzG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6efabb5b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash8105b33e4e3af998e9d016e156205c22 dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9 4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| afarkas.github.io/lazysizes/lazysizes.min.js | 185.199.109.153 | 200 OK | 3.5 kB |
URL HTTP/2afarkas.github.io/lazysizes/lazysizes.min.js IP185.199.109.153:0
File typeASCII text, with very long lines (7862) Hashdd1e2487dbd1898f9c9997cf9985b94e c91c3238b0d8c8133ae75b4849e7aad4c88c713c 373cc83e63a839ddddc954cb8f9ec2bccc61f495ddf566afbf6d931327eceda4
GET /lazysizes/lazysizes.min.js HTTP/1.1
Host: afarkas.github.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://limetorrents.kiz.one/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: GitHub.com
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 17 May 2021 09:28:46 GMT
access-control-allow-origin: *
etag: W/"60a2374e-1ed1"
expires: Sat, 10 Dec 2022 01:39:18 GMT
cache-control: max-age=600
content-encoding: gzip
x-proxy-cache: HIT
x-github-request-id: 59FE:8D0F:17F3FFA:18C52DA:6393E306
accept-ranges: bytes
date: Sat, 10 Dec 2022 08:47:15 GMT
via: 1.1 varnish
age: 130
x-served-by: cache-bma1635-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670662035.192780,VS0,VE4
vary: Accept-Encoding
x-fastly-request-id: 5b50d6d3a4d7ed1a6e76d15441e5ff3f50ec881a
content-length: 3497
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-46789381-10&cid=1707211919.1670662033&jid=205748522&gjid=1149908183&_gid=588653928.1670662034&_u=IADAAEAAAAAAACAAI~&z=738048618 | 108.177.14.157 | 200 OK | 4 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-46789381-10&cid=1707211919.1670662033&jid=205748522&gjid=1149908183&_gid=588653928.1670662034&_u=IADAAEAAAAAAACAAI~&z=738048618 IP108.177.14.157:0
File typeASCII text, with no line terminators Hash48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-46789381-10&cid=1707211919.1670662033&jid=205748522&gjid=1149908183&_gid=588653928.1670662034&_u=IADAAEAAAAAAACAAI~&z=738048618 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.live4wap.click
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.live4wap.click
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 10 Dec 2022 08:47:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| banquetunarmedgrater.com/advertisers.js | 192.243.59.12 | 200 OK | 0 B |
URL HTTP/1.1banquetunarmedgrater.com/advertisers.js IP192.243.59.12:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 10 Dec 2022 08:47:15 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4d9b18f5b86c60cdd750ae6aeace3010
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| hygieneretorted.com/pixel/purst?dl=0&th=0&sc=0&rs=258&rd=258&fd=177&bv=22.10.v.9&tmpl=70 | 192.243.59.12 | 200 OK | 0 B |
URL HTTP/1.1hygieneretorted.com/pixel/purst?dl=0&th=0&sc=0&rs=258&rd=258&fd=177&bv=22.10.v.9&tmpl=70 IP192.243.59.12:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /pixel/purst?dl=0&th=0&sc=0&rs=258&rd=258&fd=177&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: hygieneretorted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 10 Dec 2022 08:47:15 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| fastcdn111.site/red2.php?rand=jH32393942b59fd33b7bbe44a72b78739b&id=27 | 104.21.74.89 | 302 Found | 1.8 kB |
URL HTTP/2fastcdn111.site/red2.php?rand=jH32393942b59fd33b7bbe44a72b78739b&id=27 IP104.21.74.89:0
Hashb47563014a54cddab3c1d7b931caca29 e393cca2f2d1e0ae5a49ff5b5826036dbe341eb9 d2088b75aa10e368c5ae2de3fecdbdc90a5a1a31e91174843125a70bf88319f2
GET /red2.php?rand=jH32393942b59fd33b7bbe44a72b78739b&id=27 HTTP/1.1
Host: fastcdn111.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: text/html; charset=UTF-8
location: https://limetorrents.kiz.one/submit.php
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=6bnqoir3o02ks4krobgt7civan; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6gOlSud8xZf0F6OOC08zm5nCQgJIpvt0x6ydTwQdi0CL7bb8y6W6on5yYvcxMNZMVTtQjbL5d0Mc6v6OU9HOeqdX%2BjNrWx6Qh88Q4y5Q0ikS%2F8CIs8fcjEuOqc8taMdoPZ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6f4eec1b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/LIAv5wictZo | 142.250.74.131 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/LIAv5wictZo IP142.250.74.131:0
Hashd50c4011376eb8ce81afbb33f2b84b1c 41a0c9036a40080f2e02ef9efde19ed3c14fcab2 e481249c90676100c69ae93d8065aa976a021db2fc22773548747d0d32153772
POST /s/gts1p5/LIAv5wictZo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash8105b33e4e3af998e9d016e156205c22 dfa2f5cecd72be8ec63d5f833b82cd993a5ce8b9 4a682a72e5d599d48706927cbc0852df5ac36dbb57747681cc2ee91c719c7ccf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash05a06afa924a18778e662401450f342d 2ea1cfe21121c4ecd144b9c40c6249fa7d291bd8 aa2626a0646a356dd40315279a648a32bfae302877e89b7cd43d7cec265457fb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2275
Cache-Control: max-age=135956
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:15 GMT
Etag: "6393aec4-116"
Expires: Sun, 11 Dec 2022 22:33:11 GMT
Last-Modified: Fri, 09 Dec 2022 21:55:16 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash6c33a1d5d0fc5fe73ec55ac938817ea4 bfc100af7973feb3a7c3501dda66589f08bc6bde 668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hasha49ab5ecc317aa7e4724050053737549 3ffff77715bf8c5dbcbb5e17abbbc2c683c36f60 844f25237f9906c3fb977d58259e132c41dacbbe546adc8b45e9992e6ee711c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| zatnoh.com/pw/waWQiOjEwNTEyMDUsInNpZCI6MTE3NTQ4OCwid2lkIjo0MDM3OTQsInNyYyI6Mn0=eyJ.js | 104.21.15.221 | 200 OK | 54 kB |
URL HTTP/2zatnoh.com/pw/waWQiOjEwNTEyMDUsInNpZCI6MTE3NTQ4OCwid2lkIjo0MDM3OTQsInNyYyI6Mn0=eyJ.js IP104.21.15.221:0
File typeHTML document, ASCII text Hasha6fe2e3e8ea279a5f6ba0ed97a3ffdc3 a851a634337524dd8484e63edf138cea710173da 9b314f071c69d8bc1db7951fd57564111f864d03e5c0ad644640b4ac4c6118c6
GET /pw/waWQiOjEwNTEyMDUsInNpZCI6MTE3NTQ4OCwid2lkIjo0MDM3OTQsInNyYyI6Mn0=eyJ.js HTTP/1.1
Host: zatnoh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://limetorrents.kiz.one/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:15 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://limetorrents.kiz.one
e-tag: 0e4cbe9a5750ded7dfa93957c6683158
cache-control: max-age=14400
cf-cache-status: HIT
age: 6984
last-modified: Sat, 10 Dec 2022 06:50:51 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BKsafN9MMdA915REkd8m9ASBu8AQKfKLOWRibHWE%2Ba%2FiIMyx0l7GN1xvx6scgQPTjoY6BSmqg8G%2B71x6uCeBH32nJPexxwYyHM99yw41IKz4fcrwE5KWPRaAhyfq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6f86aec1c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-46789381-10&cid=1707211919.1670662033&jid=205748522&_u=IADAAEAAAAAAACAAI~&z=343675503 | 142.250.74.132 | 200 OK | 42 B |
URL HTTP/2www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-46789381-10&cid=1707211919.1670662033&jid=205748522&_u=IADAAEAAAAAAACAAI~&z=343675503 IP142.250.74.132:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-46789381-10&cid=1707211919.1670662033&jid=205748522&_u=IADAAEAAAAAAACAAI~&z=343675503 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 10 Dec 2022 08:47:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/LIAv5wictZo | 142.250.74.131 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/LIAv5wictZo IP142.250.74.131:0
Hashd50c4011376eb8ce81afbb33f2b84b1c 41a0c9036a40080f2e02ef9efde19ed3c14fcab2 e481249c90676100c69ae93d8065aa976a021db2fc22773548747d0d32153772
POST /s/gts1p5/LIAv5wictZo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash6c33a1d5d0fc5fe73ec55ac938817ea4 bfc100af7973feb3a7c3501dda66589f08bc6bde 668f1beac80500f1748643c27de6e413b0676a2fa94b0fbb7ef94b1cbab16e50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash5496e18a30e039b44989d9a0e932d4bc c5bfb1b9ce711e38d69e78486017f07cc47fe04a 26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash05a06afa924a18778e662401450f342d 2ea1cfe21121c4ecd144b9c40c6249fa7d291bd8 aa2626a0646a356dd40315279a648a32bfae302877e89b7cd43d7cec265457fb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2275
Cache-Control: max-age=135956
Content-Type: application/ocsp-response
Date: Sat, 10 Dec 2022 08:47:15 GMT
Etag: "6393aec4-116"
Expires: Sun, 11 Dec 2022 22:33:11 GMT
Last-Modified: Fri, 09 Dec 2022 21:55:16 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd35fcd5d7e74c530535b18d57ed5f587 3b9bf9e02593b63108515f4df7cae57ce62145e7 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12207
Expires: Sat, 10 Dec 2022 12:10:42 GMT
Date: Sat, 10 Dec 2022 08:47:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd35fcd5d7e74c530535b18d57ed5f587 3b9bf9e02593b63108515f4df7cae57ce62145e7 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12207
Expires: Sat, 10 Dec 2022 12:10:42 GMT
Date: Sat, 10 Dec 2022 08:47:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd35fcd5d7e74c530535b18d57ed5f587 3b9bf9e02593b63108515f4df7cae57ce62145e7 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12207
Expires: Sat, 10 Dec 2022 12:10:42 GMT
Date: Sat, 10 Dec 2022 08:47:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd35fcd5d7e74c530535b18d57ed5f587 3b9bf9e02593b63108515f4df7cae57ce62145e7 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12207
Expires: Sat, 10 Dec 2022 12:10:42 GMT
Date: Sat, 10 Dec 2022 08:47:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd35fcd5d7e74c530535b18d57ed5f587 3b9bf9e02593b63108515f4df7cae57ce62145e7 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12207
Expires: Sat, 10 Dec 2022 12:10:42 GMT
Date: Sat, 10 Dec 2022 08:47:15 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg | 34.120.237.76 | 200 OK | 7.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash052b61a3bd1c839e1f5ce37834cad817 1fbbf8fb328a1406904d6346004e2c89c6ba2419 96dcb266eaec98f6305071598df3b49ca93234e0e8b1c8c9801a1a99d7f5c817
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7811
x-amzn-requestid: dc97f86e-a29c-4139-887a-e775a0327280
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4EH_oAMFYqw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-3a38086160ac180b3f8cf5d8;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TM_0Q_GmJDuXth6JpRvm_JAZXwT-xFZEjzuMeIzfzBu1J5jQ_Tng9A==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 21:53:25 GMT
age: 39230
etag: "1fbbf8fb328a1406904d6346004e2c89c6ba2419"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0df452512aae4c4c1f4a2cd263b16dfd 68bac75574641febc463bd0819392dae2da15811 e0a9301c5be849e116f1d98b819c2eb91f73e74d836f3e099f2cd266e8f0bb36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12743
x-amzn-requestid: 6ed8a5f4-45cd-45bd-9820-df450f612c34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eK4E_-IAMFf3Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa45-31d928fc430577b463a68bd0;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nD0bWCjTU6LNSsNYCNqT4rt7okG1dmPPWiw4FXSi_uNWpcZnxhZgKw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:03:37 GMT
age: 38618
etag: "68bac75574641febc463bd0819392dae2da15811"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3fb520-edaa-4af1-9369-2e90ba97fadd.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3fb520-edaa-4af1-9369-2e90ba97fadd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7abc253f87be063c8bccb9dcf8c1ccfa 088c938e8807779f1f9d3113d89a152d8c9389c3 a07c81bff4bda55ae45f3cbdbdd1f91d761582a7eb3c75d4d82a6c6ff56b7a37
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3fb520-edaa-4af1-9369-2e90ba97fadd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6818
x-amzn-requestid: f4de5113-c58a-4dc5-a3a5-fb3cf023b679
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw46AEQsoAMFu8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903b73-12594da83576d6b74640ea1a;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:06:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1o_I6ge1lJKIRxUPMJEFpRiikugr9Poh2e1THZACcMmFxwjoBr38CQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 07:07:31 GMT
age: 5984
etag: "088c938e8807779f1f9d3113d89a152d8c9389c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5de5d319f43d9c9c641419d96655541f cde4c7fa0145d3645af17e34c83c63c08f76a076 fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 400d1465-ecbf-4d95-8aa8-4dce5dca0716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctluwGo4oAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee991-6dba29ae7065d5347a1a420d;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:04:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Lazl-stakC-31gMuQ2WzH9uFkIb0g7HaaM3xkwSFdFJMWKTaKqrBEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Dec 2022 03:28:41 GMT
age: 19114
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha0cb823bf2991a7047962ee388f00dc0 4a0377cd21b6ab69f7e45392a547c9846e607464 86e8e629ffd2efe7c4c86a7e140412dae81a35376cb7f03ee511c6e1d023c788
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9948
x-amzn-requestid: 0b1400a6-7791-468f-a1d5-b46836e7b164
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMEGNZoAMF7ZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4d-124f9a6f03db01a67784657f;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qPlUjc4Gzc8cFyyQH_3vZoF_k5J61aXPOXozWTO_8txfn11m8Bo5IQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:00:16 GMT
age: 38819
etag: "4a0377cd21b6ab69f7e45392a547c9846e607464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3481e34b-ab9e-46b1-acd8-f9e532860477.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3481e34b-ab9e-46b1-acd8-f9e532860477.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd3acf5a494a6bb8b26858974ede70a33 4bccc3032f7427d881a49250e576c05dd7d5614f 786db0da1198986aeba9aa420a7c89b5b27a09bc48c3806769342159f116705d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3481e34b-ab9e-46b1-acd8-f9e532860477.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12047
x-amzn-requestid: a8082dc0-21cd-4fd8-8c3b-50a0b03b6200
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_rGiaIAMFnLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-2a0096650760715e6201b97a;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 81ITdqoxk0_9sH9c9Nu9t50Ke2BDkI9RJqxFPziuYZwcpwnmpwfWYQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 22:26:51 GMT
age: 37224
etag: "4bccc3032f7427d881a49250e576c05dd7d5614f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 346 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3b694a9d6c067b9c44a57ed1c0935237 93c99a9f6d265736a8b8d2cb6e1087c247b1d24e e36b3afb9b267d5cef702b74b541c18e57922e70d586474360874dfabbd7f961
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "E36B3AFB9B267D5CEF702B74B541C18E57922E70D586474360874DFABBD7F961"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1981
Expires: Sat, 10 Dec 2022 09:20:16 GMT
Date: Sat, 10 Dec 2022 08:47:15 GMT
Connection: keep-alive
|
|
| i2.extraimage.xyz/pix/2021/09/19/12882a7ac751483c5e411ba1d110962b.jpg |  188.114.96.1 | 200 OK | 20 kB |
URL HTTP/2i2.extraimage.xyz/pix/2021/09/19/12882a7ac751483c5e411ba1d110962b.jpg IP188.114.96.1:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 678x453, components 3\012- data Hashba31ce133cab479a8c8e39c7eb93dbe5 40fbf22ab28cca9ae328e13940807bfcedf7e467 d3acfd31e215b492a8da66621588f490cda9e3a3f25ad1cac8c196ac619645f0
GET /pix/2021/09/19/12882a7ac751483c5e411ba1d110962b.jpg HTTP/1.1
Host: i2.extraimage.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.live4wap.click/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:15 GMT
content-type: image/jpeg
content-length: 20280
last-modified: Sun, 19 Sep 2021 07:52:11 GMT
etag: "4f38-5cc54712e299c"
cache-control: max-age=5184000
expires: Tue, 07 Feb 2023 05:51:18 GMT
access-control-allow-origin: *
x-xss-protection: 1; mode=block
cf-cache-status: HIT
age: 96957
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZNiHfu43rhVq02s7YvJ9RqKOliQfUHDjr%2BLrntqsWr3unLNAWLZA4QV7O3x0NIjv%2FrL0%2F4fjtDKqn4ZD%2BNNl5GnF%2FRN9Fc%2FGUAJ9l%2FLTIA6jS2rkFYVPvWV6A0M9cMcp9od6ug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7774b6fbbd55b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| prhzxq.com/wnload?a=1&e=aeyJwaWQiOjEwNTEyMDUsInNpZCI6MTE3NTQ4OCwid2lkIjo0MDM3OTQsImQiOiJsaW1ldG9ycmVudHMua2l6Lm9uZSIsImxpIjoyfQ==&tz=0&if=1&u=aHR0cHM6Ly9saW1ldG9ycmVudHMua2l6Lm9uZS9MYXctYW5kLU9yZGVyLVNWVS1TMjRFMDktNzIwcC1IRFRWLXgyNjQtU1lOQ09QWVtUR3hdLXRvcnJlbnQtMTc3NTczNTEuaHRtbA==&inc=0 | 185.162.85.4 | 200 OK | 0 B |
URL HTTP/2prhzxq.com/wnload?a=1&e=aeyJwaWQiOjEwNTEyMDUsInNpZCI6MTE3NTQ4OCwid2lkIjo0MDM3OTQsImQiOiJsaW1ldG9ycmVudHMua2l6Lm9uZSIsImxpIjoyfQ==&tz=0&if=1&u=aHR0cHM6Ly9saW1ldG9ycmVudHMua2l6Lm9uZS9MYXctYW5kLU9yZGVyLVNWVS1TMjRFMDktNzIwcC1IRFRWLXgyNjQtU1lOQ09QWVtUR3hdLXRvcnJlbnQtMTc3NTczNTEuaHRtbA==&inc=0 IP185.162.85.4:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wnload?a=1&e=aeyJwaWQiOjEwNTEyMDUsInNpZCI6MTE3NTQ4OCwid2lkIjo0MDM3OTQsImQiOiJsaW1ldG9ycmVudHMua2l6Lm9uZSIsImxpIjoyfQ==&tz=0&if=1&u=aHR0cHM6Ly9saW1ldG9ycmVudHMua2l6Lm9uZS9MYXctYW5kLU9yZGVyLVNWVS1TMjRFMDktNzIwcC1IRFRWLXgyNjQtU1lOQ09QWVtUR3hdLXRvcnJlbnQtMTc3NTczNTEuaHRtbA==&inc=0 HTTP/1.1
Host: prhzxq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://limetorrents.kiz.one/
Origin: https://limetorrents.kiz.one
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 10 Dec 2022 08:47:15 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
access-control-allow-origin: *
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| prhzxq.com/wnload?a=1&e=aeyJwaWQiOjEwNTEyMDUsInNpZCI6MTE3NTQ4OCwid2lkIjo0MDM3OTQsImQiOiJsaW1ldG9ycmVudHMua2l6Lm9uZSIsImxpIjoyfQ==&tz=0&if=1&u=aHR0cHM6Ly9saW1ldG9ycmVudHMua2l6Lm9uZS9Db3VydC1DYW0tUzA1RTM3LTQ4MHAteDI2NC1tU0RbVEd4XS10b3JyZW50LTE3NzU3MzY3Lmh0bWw=&inc=0 | 185.162.85.4 | 200 OK | 0 B |
URL HTTP/2prhzxq.com/wnload?a=1&e=aeyJwaWQiOjEwNTEyMDUsInNpZCI6MTE3NTQ4OCwid2lkIjo0MDM3OTQsImQiOiJsaW1ldG9ycmVudHMua2l6Lm9uZSIsImxpIjoyfQ==&tz=0&if=1&u=aHR0cHM6Ly9saW1ldG9ycmVudHMua2l6Lm9uZS9Db3VydC1DYW0tUzA1RTM3LTQ4MHAteDI2NC1tU0RbVEd4XS10b3JyZW50LTE3NzU3MzY3Lmh0bWw=&inc=0 IP185.162.85.4:0 ASN#39572 DataWeb Global Group B.V.
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wnload?a=1&e=aeyJwaWQiOjEwNTEyMDUsInNpZCI6MTE3NTQ4OCwid2lkIjo0MDM3OTQsImQiOiJsaW1ldG9ycmVudHMua2l6Lm9uZSIsImxpIjoyfQ==&tz=0&if=1&u=aHR0cHM6Ly9saW1ldG9ycmVudHMua2l6Lm9uZS9Db3VydC1DYW0tUzA1RTM3LTQ4MHAteDI2NC1tU0RbVEd4XS10b3JyZW50LTE3NzU3MzY3Lmh0bWw=&inc=0 HTTP/1.1
Host: prhzxq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://limetorrents.kiz.one/
Origin: https://limetorrents.kiz.one
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Sat, 10 Dec 2022 08:47:15 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
access-control-allow-origin: *
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 346 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashd139d2079158fffa98293d4c353f237f 3642735d2a0b56ad7d1e613227473afc85906109 06e15ab9ce680206451a241b36b333128a5fe3cfe4dd6e316e56cff2d00442bd
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "06E15AB9CE680206451A241B36B333128A5FE3CFE4DD6E316E56CFF2D00442BD"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19312
Expires: Sat, 10 Dec 2022 14:09:07 GMT
Date: Sat, 10 Dec 2022 08:47:15 GMT
Connection: keep-alive
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css | 104.18.11.207 | 200 OK | 0 B |
URL HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css IP104.18.11.207:0
GET /bootstrap/4.3.1/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:08 GMT
cdn-cachedat: 08/11/2021 05:41:31
cdn-edgestorageid: 756
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.0
cdn-requestid: 313ad02a214f6bc0a71a4ade9593c82e
cdn-cache: HIT
cf-cache-status: HIT
age: 13705487
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7774b6ee5cfcb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fastcdn.jdi5.com/css/net4wap.wapkiz.com/style.css | 172.67.165.78 | 200 OK | 0 B |
URL HTTP/2fastcdn.jdi5.com/css/net4wap.wapkiz.com/style.css IP172.67.165.78:0
GET /css/net4wap.wapkiz.com/style.css HTTP/1.1
Host: fastcdn.jdi5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: text/css;charset=UTF-8
cf-bgj: minify
cf-polished: origSize=11090
vary: Accept-Encoding
x-powered-by: PHP/7.4.0RC6
cache-control: max-age=14400
cf-cache-status: HIT
age: 1756
last-modified: Sat, 10 Dec 2022 08:17:57 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hZaV0BHy0rp25z6CBgvtegSOdru70dqy4tD4vt64UGJV%2FzrOpgKYv%2BBWJfVL%2FnWR8THrfNF2%2FR3x9oW%2FHE6GBl5gENXH3MLMLHTQY1E6nKYhSvc4lBgxjY8SUoxkTWMaRzo7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6efec7e0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fastcdn111.site/red2.php?rand=jH32393942b59fd33b7bbe44a72b78739b&id=27 | 104.21.74.89 | 302 Found | 0 B |
URL HTTP/2fastcdn111.site/red2.php?rand=jH32393942b59fd33b7bbe44a72b78739b&id=27 IP104.21.74.89:0
GET /red2.php?rand=jH32393942b59fd33b7bbe44a72b78739b&id=27 HTTP/1.1
Host: fastcdn111.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: text/html; charset=UTF-8
location: https://limetorrents.kiz.one/submit.php
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=jh8veo6utjj3r8a0qufphee8vr; path=/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=10ek5v8tpDudd3Pc2jQCKLshRHLRpASNJ5wthE7jQ7qswvuYYTOLwZ7OxvYYNELlb4bixUJHCJpZ1kyHcozbjG8XGP9wZxnd7oNjfmU3%2FyPOfqIarralXmS9lmiz5d9ibkA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6f42d8db50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.plyr.io/3.5.6/plyr.css | 104.27.195.88 | 200 OK | 0 B |
URL HTTP/2cdn.plyr.io/3.5.6/plyr.css IP104.27.195.88:0
GET /3.5.6/plyr.css HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: text/css; charset=utf-8
cache-control: max-age=31536000
cf-bgj: minify
cf-polished: origSize=24885
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept
age: 16367692
etag: W/"453448ce115fb0fbace542e40db696e6"
last-modified: Fri, 21 Jun 2019 02:30:42 GMT
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
x-amz-id-2: FxkcsLGE8KJtfVXryq6xq9YtqUZWDgdVURLMw1jokVvPY2YomVqlJdlCMwThpt1vb+YJ+9QUIu4=
x-amz-request-id: KDS1YAV8BB21AKG6
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-served-by: cache-iad-kiad7000055-IAD, cache-bma1632-BMA
x-timer: S1654294342.683434,VS0,VE0
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TpTKp9xVb50K684GJBUxh7bu%2Fq5fbjU0oOpxUhnYgdbWXCg6btdtv7Rp5NbQpayLInDSKrMfn87CSztiErnHqRlYMHyk2F3cCBKJZZVDjEIGM0i5%2Bfn%2FsAT3tyAC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6edea48b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Mulish:wght@400;700&display=swap | 142.250.74.74 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Mulish:wght@400;700&display=swap IP142.250.74.74:0
GET /css2?family=Mulish:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 10 Dec 2022 08:47:13 GMT
date: Sat, 10 Dec 2022 08:47:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| limetorrents.kiz.one/ | 104.21.23.166 | 200 OK | 0 B |
IP104.21.23.166:0
POST / HTTP/1.1
Host: limetorrents.kiz.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 24
Origin: https://limetorrents.kiz.one
Connection: keep-alive
Referer: https://limetorrents.kiz.one/submit.php
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:15 GMT
content-type: text/html; charset=UTF-8
set-cookie: sam=sam; expires=Mon, 09-Jan-2023 08:47:14 GMT; Max-Age=2592000; path=/; domain=limetorrents.kiz.one
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p9ojnMKfCmvTjKr0IP3yrvpkNvqeFbrzY%2FrJIlrOw4mVNXpJK%2Bt%2FPRmnga5n7%2BLE6NSXmQZO8G8KplmG2fcUEtyVlGr64wv41x8tIic03S0TTZ%2BALkAioFVG0ZwUDePbckBDBezajw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6f5ee871bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.live4wap.click/page-watch/48/India-Tour-of-Bangladesh-2022-3rd-ODI-Bangladesh-vs-India.html | 172.67.148.248 | 200 OK | 0 B |
URL HTTP/2www.live4wap.click/page-watch/48/India-Tour-of-Bangladesh-2022-3rd-ODI-Bangladesh-vs-India.html IP172.67.148.248:0
GET /page-watch/48/India-Tour-of-Bangladesh-2022-3rd-ODI-Bangladesh-vs-India.html HTTP/1.1
Host: www.live4wap.click
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: text/html; charset=UTF-8
set-cookie: live4wap_click=ck4mubn8gtot1bj2f5uubckvdn; path=/; domain=live4wap.click
expires: Sat, 10 Dec 2022 08:56:53 GMT
cache-control: public
pragma: no-cache
last-modified: Sat, 10 Dec 2022 08:46:53 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hrT%2Fd7PdZxIvF04MubrdWphmlEMWvc8xOucel47ZirDojyFqu6wrfx%2BtVqnnvZOva%2BUnNgnUOa%2BnkPrR5pERl99oiVsdkIIT3EbmEu9KhtPy1rCWGb%2BnACykE%2BSZMMZ6sUrrELw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6eb892eb521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.plyr.io/3.6.8/plyr.js | 104.27.195.88 | 200 OK | 0 B |
URL HTTP/2cdn.plyr.io/3.6.8/plyr.js IP104.27.195.88:0
GET /3.6.8/plyr.js HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=31536000, immutable
cf-bgj: minify
cf-polished: origSize=108540
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept
age: 16105675
etag: W/"88ec1af9f00edcc45977d0b1a6d0f54d"
last-modified: Wed, 12 May 2021 13:38:58 GMT
vary: Accept-Encoding
via: 1.1 varnish, 1.1 varnish
x-amz-id-2: SuGuii3IMDZxYQtf0N4k/aGqJWMxoNK9No/RaDD48Dlgtu5ThWLm9x7isBTMKUnbSKWxz5G1Q20=
x-amz-request-id: FB0RBJGY4JZNHKST
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-served-by: cache-iad-kjyo7100070-IAD, cache-bma1657-BMA
x-timer: S1654556358.322508,VS0,VE1
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sQfte%2BYKopw1bpRnG4EzTVQKvFRPm3exR0UwSlpzstperrARsxyVzSbwoqYxSi2URpvAJ3%2BgGG%2FOVvJUxdqg9F1wOz9qgqMqKkMz8tLFApoHpYJYcZmRhw9p5D3F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6ee3a84b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/icon?family=Material+Icons | 142.250.74.74 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/icon?family=Material+Icons IP142.250.74.74:0
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 10 Dec 2022 08:47:13 GMT
date: Sat, 10 Dec 2022 08:47:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| i2.extraimage.info/pix/2021/09/19/12882a7ac751483c5e411ba1d110962b.jpg | 104.21.235.32 | 301 Moved Permanently | 0 B |
URL HTTP/2i2.extraimage.info/pix/2021/09/19/12882a7ac751483c5e411ba1d110962b.jpg IP104.21.235.32:0
GET /pix/2021/09/19/12882a7ac751483c5e411ba1d110962b.jpg HTTP/1.1
Host: i2.extraimage.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sat, 10 Dec 2022 08:47:15 GMT
location: https://i2.extraimage.xyz/pix/2021/09/19/12882a7ac751483c5e411ba1d110962b.jpg
cache-control: max-age=3600
expires: Sat, 10 Dec 2022 09:47:15 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xJH%2B%2FnJ2t%2FCh4rFszaqkH6YvqvNrlnm%2BpqiN25mOnmrZLLISDZ2cvtLy%2F8jElerjQOariOymH4HpXUobMFDget36EqdkX6wrtIUQcgcw6%2FHhWxtovun5cpeB7jb92x3qdkyQ3dE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7774b6f9285d24e1-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fastcdn.jdi5.com/js/wapmash5.wapkiz.com/2.js | 172.67.165.78 | 200 OK | 0 B |
URL HTTP/2fastcdn.jdi5.com/js/wapmash5.wapkiz.com/2.js IP172.67.165.78:0
GET /js/wapmash5.wapkiz.com/2.js HTTP/1.1
Host: fastcdn.jdi5.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.live4wap.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=558
vary: Accept-Encoding
x-powered-by: PHP/7.4.0RC6
cache-control: max-age=14400
cf-cache-status: HIT
age: 1756
last-modified: Sat, 10 Dec 2022 08:17:57 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2EHoRCS63HaTqtY6dbTKLHfkvIIN%2B7DwLR6s6l9tBlt6wwV1FZVWaJvfEAgquvZqhOkWgpvdLc6TNbQE%2F%2FUJKegAw40oWe8b%2FJimL5FexfBFhQxHj1oAm6Zvo%2BmyuCiPmvT1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6efec810b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| limetorrents.kiz.one/submit.php | 104.21.23.166 | 200 OK | 0 B |
URL HTTP/2limetorrents.kiz.one/submit.php IP104.21.23.166:0
GET /submit.php HTTP/1.1
Host: limetorrents.kiz.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.live4wap.click/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:47:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JD4EcIpVKutTUFP5h2LAbmnReVCNWBXZBdPF4VJYxL%2FS60caUIk%2FipU34S5Dg3hMY0WatwYrAQvIdr6K%2BwWI3zURIup5YmnUF5%2BmPTXtQMQTLHw9opHhWo1hh14wZLm4S%2BWBk9l0GQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7774b6f5ce681bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
104.21.29.118