Report - www.iwara.tv/search?query=Train

Report Overview

Submitted URL
www.iwara.tv/search?query=Train
IP
104.26.13.96
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-31 22:00:49
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-31T21:42:43Z	369 B	21 kB	216.239.36.178
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-31T18:42:09Z	600 B	588 B	64.233.161.157
illustrious-halva-eb1986.netlify.app	unknown	2023-03-21T20:21:54Z	2023-03-28T15:17:30Z	475 B	1.2 kB	34.159.168.235
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	3.0 kB	8.0 kB	23.33.119.27
www.iwara.tv	603708	2017-02-02T07:32:16Z	2023-03-31T22:28:55Z	822 B	1.5 kB	172.67.71.154
a.iwara.tv	unknown			1.2 kB	2.2 kB	51.15.162.198
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.2 kB	60 kB	34.120.237.76
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-31T21:56:16Z	341 B	641 B	192.229.221.95
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-31T22:03:32Z	382 B	46 kB	142.250.74.168
api.iwara.tv	unknown	2023-03-21T20:21:52Z	2023-03-29T12:08:29Z	3.7 kB	36 kB	66.206.15.50
service.iwara.tv	unknown	2022-06-29T05:25:46Z	2023-03-28T08:27:56Z	446 B	1.4 kB	85.187.128.60
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	238 B	34.117.65.55
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-31T18:12:03Z	1.4 kB	2.8 kB	142.250.74.131
o80101.ingest.sentry.io	unknown	2023-03-21T20:21:52Z	2023-03-28T08:27:55Z	526 B	508 B	34.120.195.249

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-31 22:00:40	medium	Client IP	Internal IP	ET HUNTING Suspicious Netlify Hosted DNS Request - Possible Phishing Landing
2023-03-31 22:00:40	medium	Client IP	Internal IP	ET HUNTING Suspicious Netlify Hosted DNS Request - Possible Phishing Landing
2023-03-31 22:00:40	medium	Client IP	34.159.168.235	ET HUNTING Suspicious Netlify Hosted TLS SNI Request - Possible Phishing Landing

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	www.iwara.tv/chunk-4437.d3b15ac8b6f43b1ec70c.js	184 kB	2023-04-01	2023-04-01
Pretty URL www.iwara.tv/chunk-4437.d3b15ac8b6f43b1ec70c.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:10:38 Last Seen2023-04-01 11:10:38 Times Seen1 Hash ea285dbbefef93757a1fe201333eb93a d8980a8cdf62c87d8ae1942b11811b741ebc2609 5c4ec28881d30584986b8c52ee67a1669d2f4bed50238926ab2af6d08ffe2c26 Loading...

	www.iwara.tv/chunk-5353.a379b7f30ac209b2ec6a.js	7.8 kB	2023-04-01	2023-04-01
Pretty URL www.iwara.tv/chunk-5353.a379b7f30ac209b2ec6a.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:10:38 Last Seen2023-04-01 11:10:38 Times Seen1 Hash 102c193a5311ed6ae60617869e61aa90 539a03f379d853b5d2cc7a9d384bfd61dd660520 1dd51cff4bd1a1ce71b16c79f7ce7560862cb4ca71916d4af783d7a7eb3ecae1 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 216.239.36.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.iwara.tv/search?query=Train	1.4 kB	2023-04-01	2023-04-01
Pretty URL www.iwara.tv/search?query=Train IP 172.67.71.154 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:10:38 Last Seen2023-04-01 11:10:38 Times Seen1 Hash 1b0451017f3bd6c6df28badd5fb1efa8 e5d4ca6badb95d1f9f74e41ed7662a81607e5a8d 3928fbb4629a974516abc79e860c09488cdb481d65de7e934fb4a4a707713e14 Loading...

	http:blank	600 B	2023-04-01	2023-04-01
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:10:38 Last Seen2023-04-01 11:10:38 Times Seen1 Hash 5d2a2f1ee981ef193addeacfb8cc65c4 1663af98bd837c77089e595e6469136b0d7e12f4 94b028cfce88d0929e5d3f31e0704a2aa0a616fe9539d4145979a7366035b3fe Loading...

	www.iwara.tv/chunk-6496.cec6e7894b8d9f456244.js	171 kB	2023-03-26	2023-07-12
Pretty URL www.iwara.tv/chunk-6496.cec6e7894b8d9f456244.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:21:31 Last Seen2023-07-12 11:06:45 Times Seen17 Hash 176b00e9541f5876b8b5c642c3d88a32 67ea5ce2c15f3f8c4f417c68e5e55e4187152504 6f26239cf5512bf895b524b904c0316ce4f0bcbe19fd602e2707ec46acaa9f43 Loading...

	www.iwara.tv/chunk-9249.0f9a1f09bdeb85c8811a.js	20 kB	2023-03-26	2023-07-12
Pretty URL www.iwara.tv/chunk-9249.0f9a1f09bdeb85c8811a.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:21:31 Last Seen2023-07-12 11:06:44 Times Seen17 Hash 2b83b991e76301d3e70806b1bc11f13b b99330a88359a3b50186dcbaaa6eae97e346d0e1 bc78ee7f9178427df7743e60fcc6c5289c00c6856ebe83f2e2124d9caa28e30a Loading...

	www.iwara.tv/chunk-4330.1a5d7985aa5e41dab54e.js	18 kB	2023-04-01	2023-04-01
Pretty URL www.iwara.tv/chunk-4330.1a5d7985aa5e41dab54e.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:10:38 Last Seen2023-04-01 11:10:38 Times Seen1 Hash d6b7a0341a44f7c8e3596e102a48247b c56ee2fdbf291123f82929804d92acb1257cc95d 0e0963727f8b73e7884961d470553025e2367869bdefda7d96195154c418c3ff Loading...

	illustrious-halva-eb1986.netlify.app/tags/ninja_728_header_async.html	114 B	2023-03-26	2023-04-01
Pretty URL illustrious-halva-eb1986.netlify.app/tags/ninja_728_header_async.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 13:21:31 Last Seen2023-04-01 11:10:38 Times Seen2 Hash cdbf939c8cab3a6b209e8c9af0e1dd2c 276f497293ffbe187e2c072d8299f1b490994958 d18efb1a06d5ad8e949d9fe1f9aaba1f2493150a5590a31110553371eddf0295 Loading...

	a.iwara.tv/a.js	2.7 kB	2023-04-01	2023-04-01
Pretty URL a.iwara.tv/a.js IP 51.15.162.198 ASN #12876 Online S.a.s. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:10:38 Last Seen2023-04-01 11:10:38 Times Seen1 Hash e839663c42f54c2117c597e309be184d 984e90ccad3d212fc2d1e32e8b996584236796c5 86bdde6d4cb5feee5ae865ca48bf3cfbfdf70f0eadd62a9a205904758f208100 Loading...

	www.iwara.tv/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1680292800	32 kB	2023-04-01	2023-04-01
Pretty URL www.iwara.tv/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1680292800 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:10:38 Last Seen2023-04-01 11:10:38 Times Seen1 Hash a07e88710853ed262445dc606f5bb209 7d1856757591704d892be9fa5c025f66a31e9719 ca078b6c6e8fda9f0c2f1bd4f55efa6d18a726ab9e92199a1f143bad3b8a0224 Loading...

	www.googletagmanager.com/gtag/js?id=UA-37410039-11	116 kB	2023-04-01	2023-04-01
Pretty URL www.googletagmanager.com/gtag/js?id=UA-37410039-11 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-01 11:10:38 Last Seen2023-04-01 11:10:38 Times Seen1 Hash 5cdfe67fda9a96773f3fcae84dc46edc ea66a789148628481ed2f9f1033871fd50f6e69a 1da3b28330a81dc943bbce469b6dbaac966a1efd0ba3701d4e4fe11a37f358b2 Loading...

HTTP Transactions (44)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7af19a5145a4ee99bdf18831bad04bfd 7bdd2a4785b999ef54a2644211d2b2b7190fb8e1 3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0" Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10106 Expires: Sat, 01 Apr 2023 00:49:03 GMT Date: Fri, 31 Mar 2023 22:00:37 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash b93010cbf31ba3ec785b4088e5d0f529 c0f1ab8a2aae3c445a8f24959a4eea433a345caf 2cc1a5865dee7636b82a68deddd3aff8b697e846e37789a694cc3c7c47340590 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "2CC1A5865DEE7636B82A68DEDDD3AFF8B697E846E37789A694CC3C7C47340590" Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18615 Expires: Sat, 01 Apr 2023 03:10:52 GMT Date: Fri, 31 Mar 2023 22:00:37 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 4ad6984a756720fbfff47b37a75513a2 355e35258114452af8b9638985ed9d8ef3bf0aca 43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Fri, 31 Mar 2023 21:16:13 GMT content-type: application/json age: 2665 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 374c9e295a804e605c402f48ae7e2446 967394b36ecdff2dd32842f878887f061024c6b3 7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706" Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12787 Expires: Sat, 01 Apr 2023 01:33:45 GMT Date: Fri, 31 Mar 2023 22:00:38 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: hk3qcxxUZRKcIKvBci93nTmlfKvIxs5SiGp06v9NhXBEmqJWgsBfjU5EI0VOUh7j9bUCT9Fwj2s= x-amz-request-id: 3WSQ5E0WPTTFPXZ5 x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Fri, 31 Mar 2023 21:03:29 GMT age: 3429 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	www.iwara.tv/search?query=Train	172.67.71.154	301 Moved Permanently	169 B
URL HTTP/1.1 www.iwara.tv/search?query=Train IP 172.67.71.154:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 169 B (169 bytes) Hash e7a479148e6fc6102d7ad66ba4c6a20c e2a7aa7cc6e20ad1f66869f5c6350f86d4974b52 074e4a42f2e864fa48fd1c3117a18e7df77a75a8d8cf9be5e91bc00dd2ca1aef HTTP Headers `GET /search?query=Train HTTP/1.1 Host: www.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Fri, 31 Mar 2023 22:00:38 GMT Content-Type: text/html Transfer-Encoding: chunked Connection: keep-alive Location: https://www.iwara.tv/search?query=Train CF-Cache-Status: DYNAMIC Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DeBfZeO6kYDEtnVqyo%2BHwrVvredjud6udijsd3XDmYipXMNyC9G%2BO9FfDAgjohcoI1lJLIk4xrlINiMepcAyRwoBNQI6turOVJ%2FuvV8iVFSBpao8U%2BOYjMlUg19YoQ%3D%3D"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Server: cloudflare CF-RAY: 7b0bddc43fd8fab8-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 31 Mar 2023 22:00:38 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f89764b5529b0921337bd77a61e1e56a 9306a0bd5335fc1d8fa08780164b26560f1cb8d3 e0f499802da95da189595b16aceb1984eece3fbf88f7494d3290fbec4df5b4eb HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E0F499802DA95DA189595B16ACEB1984EECE3FBF88F7494D3290FBEC4DF5B4EB" Last-Modified: Fri, 31 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4877 Expires: Fri, 31 Mar 2023 23:21:55 GMT Date: Fri, 31 Mar 2023 22:00:38 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Alert, Expires, Pragma, Content-Length, ETag, Backoff, Cache-Control, Last-Modified content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Fri, 31 Mar 2023 21:14:39 GMT age: 2759 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	push.services.mozilla.com/	34.117.65.55	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 34.117.65.55:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: P+gHzJ2NHvhyTpg779bqKQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: b4iyaAgiGI7ptMKgJP/cXJ9r5jc= Date: Fri, 31 Mar 2023 22:00:38 GMT Via: 1.1 google Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash bac7f11cf9cee26b5f65fa4f6d20b59b 49df8e1d5e1d74d438e7c66dbc4ac0607e6e4fda 8deb02d07a2f7b7dcab8c6185bca7c2e751fbbd3c55485f818e1894d5beecd44 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "8DEB02D07A2F7B7DCAB8C6185BCA7C2E751FBBD3C55485F818E1894D5BEECD44" Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4804 Expires: Fri, 31 Mar 2023 23:20:43 GMT Date: Fri, 31 Mar 2023 22:00:39 GMT Connection: keep-alive`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 5b6731341a66be32757ea461f5bd605a f9a017cd1195d1eafb3839a899baf75f2e71958f 4bda8352f303d3fb71b8c4b2ecc9fbe75dcfc91dd2232260afb1e37ebbf139fb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 31 Mar 2023 22:00:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	o80101.ingest.sentry.io/api/5812693/envelope/?sentry_key=62a5341b2d8f47e9ad68947a919f6e22&sentry_version=7	34.120.195.249	200 OK	2 B
URL HTTP/2 o80101.ingest.sentry.io/api/5812693/envelope/?sentry_key=62a5341b2d8f47e9ad68947a919f6e22&sentry_version=7 IP 34.120.195.249:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 2 B (2 bytes) Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a HTTP Headers POST /api/5812693/envelope/?sentry_key=62a5341b2d8f47e9ad68947a919f6e22&sentry_version=7 HTTP/1.1 Host: o80101.ingest.sentry.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.iwara.tv/ Content-Type: text/plain;charset=UTF-8 Origin: https://www.iwara.tv Content-Length: 339 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK server: nginx date: Fri, 31 Mar 2023 22:00:39 GMT content-type: application/json content-length: 2 access-control-allow-origin: * vary: origin,access-control-request-method,access-control-request-headers access-control-expose-headers: x-sentry-error,x-sentry-rate-limits,retry-after x-envoy-upstream-service-time: 0 strict-transport-security: max-age=31536000; includeSubDomains; preload via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	www.googletagmanager.com/gtag/js?id=UA-37410039-11	142.250.74.168	200 OK	45 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-37410039-11 IP 142.250.74.168:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2206) Size 45 kB (45109 bytes) Hash d6f5e61ab5b1baac03417c82ed336dd1 00b24d6c8c914a5be297150fa8b1a4d7b637788f 6edfc0a46d2c8b7078bad62e363a4c21723c3fe353c93531398af0e6da1a67dc HTTP Headers `GET /gtag/js?id=UA-37410039-11 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.iwara.tv/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Fri, 31 Mar 2023 22:00:39 GMT expires: Fri, 31 Mar 2023 22:00:39 GMT cache-control: private, max-age=900 last-modified: Fri, 31 Mar 2023 21:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 45109 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash bac7f11cf9cee26b5f65fa4f6d20b59b 49df8e1d5e1d74d438e7c66dbc4ac0607e6e4fda 8deb02d07a2f7b7dcab8c6185bca7c2e751fbbd3c55485f818e1894d5beecd44 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "8DEB02D07A2F7B7DCAB8C6185BCA7C2E751FBBD3C55485F818E1894D5BEECD44" Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4804 Expires: Fri, 31 Mar 2023 23:20:43 GMT Date: Fri, 31 Mar 2023 22:00:39 GMT Connection: keep-alive`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 5b6731341a66be32757ea461f5bd605a f9a017cd1195d1eafb3839a899baf75f2e71958f 4bda8352f303d3fb71b8c4b2ecc9fbe75dcfc91dd2232260afb1e37ebbf139fb HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 31 Mar 2023 22:00:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	a.iwara.tv/api/c	51.15.162.198	204 No Content	0 B
URL HTTP/2 a.iwara.tv/api/c IP 51.15.162.198:0 ASN #12876 Online S.a.s. File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /api/c HTTP/1.1 Host: a.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://www.iwara.tv/ Origin: https://www.iwara.tv Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 204 No Content server: nginx date: Fri, 31 Mar 2023 22:00:39 GMT x-dns-prefetch-control: on x-frame-options: SAMEORIGIN content-security-policy: default-src 'self'; img-src *; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' api.umami.is; frame-ancestors 'self'; access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE vary: Access-Control-Request-Headers access-control-allow-headers: content-type access-control-max-age: 86400 access-control-allow-origin: https://www.iwara.tv X-Firefox-Spdy: h2

	api.iwara.tv/user	66.206.15.50	204 No Content	0 B
URL HTTP/2 api.iwara.tv/user IP 66.206.15.50:0 ASN #29802 HVC-AS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /user HTTP/1.1 Host: api.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://www.iwara.tv/ Origin: https://www.iwara.tv Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` `HTTP/2 204 No Content server: nginx date: Fri, 31 Mar 2023 22:00:39 GMT x-powered-by: Express vary: Origin, Access-Control-Request-Headers access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE access-control-allow-headers: content-type access-control-max-age: 86400 x-host: 127.0.0.1:3000 access-control-allow-origin: https://www.iwara.tv X-Firefox-Spdy: h2`

	api.iwara.tv/forum/threads?limit=5	66.206.15.50	204 No Content	0 B
URL HTTP/2 api.iwara.tv/forum/threads?limit=5 IP 66.206.15.50:0 ASN #29802 HVC-AS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /forum/threads?limit=5 HTTP/1.1 Host: api.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://www.iwara.tv/ Origin: https://www.iwara.tv Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` `HTTP/2 204 No Content server: nginx date: Fri, 31 Mar 2023 22:00:39 GMT x-powered-by: Express vary: Origin, Access-Control-Request-Headers access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE access-control-allow-headers: content-type access-control-max-age: 86400 x-host: 127.0.0.1:3000 access-control-allow-origin: https://www.iwara.tv X-Firefox-Spdy: h2`

	api.iwara.tv/user	66.206.15.50	401 Unauthorized	5.1 kB
URL HTTP/2 api.iwara.tv/user IP 66.206.15.50:0 ASN #29802 HVC-AS File type gzip compressed data, from Unix\012- data Size 5.1 kB (5117 bytes) Hash 49933db8052f9456749e73aa3ae4bc0f 086457f5c3808cadb73531d8ff3fe3f59905606d 89b7b0bcf7478f90cd304a6399bafa95b1d74a1cab57f9aa0dacc7030ece2acc HTTP Headers `GET /user HTTP/1.1 Host: api.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.iwara.tv/ Content-Type: application/json Origin: https://www.iwara.tv Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 401 Unauthorized server: nginx date: Fri, 31 Mar 2023 22:00:39 GMT content-type: application/json; charset=utf-8 content-length: 107 x-powered-by: Express vary: Origin etag: W/"6b-iBtjT5/RKqtUmmqV+eV23YTlHmU" access-control-allow-origin: https://www.iwara.tv X-Firefox-Spdy: h2`

	a.iwara.tv/api/c	51.15.162.198	200 OK	613 B
URL HTTP/2 a.iwara.tv/api/c IP 51.15.162.198:0 ASN #12876 Online S.a.s. File type data Size 613 B (613 bytes) Hash 164d8e74cdbabae12f4460234f55bd5b fc89ec204143c9f9ddcd5728b8382a318fc0907d c187b144dbb09abd4f13c51e735d463665bf03830bd15ce6977e6005f243c62d HTTP Headers `POST /api/c HTTP/1.1 Host: a.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.iwara.tv/ Content-Type: application/json Origin: https://www.iwara.tv Content-Length: 188 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 31 Mar 2023 22:00:39 GMT content-type: text/plain x-dns-prefetch-control: on x-frame-options: SAMEORIGIN content-security-policy: default-src 'self'; img-src *; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' api.umami.is; frame-ancestors 'self'; etag: W/"o5r19ena38ds" vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: https://www.iwara.tv content-encoding: gzip X-Firefox-Spdy: h2`

	www.google-analytics.com/analytics.js	216.239.36.178	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 216.239.36.178:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.iwara.tv/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Fri, 31 Mar 2023 20:05:12 GMT expires: Fri, 31 Mar 2023 22:05:12 GMT cache-control: public, max-age=7200 age: 6928 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript vary: Accept-Encoding alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8ff1d01e68831d80a4f75d7db3970972 1a9e1f3fa7389cccb0e91cff2616767e1616113e fd74cb98e8809df139d3f187b78b0513a394231cb2660663ee250bc11b8e3e24 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "FD74CB98E8809DF139D3F187B78B0513A394231CB2660663EE250BC11B8E3E24" Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20391 Expires: Sat, 01 Apr 2023 03:40:31 GMT Date: Fri, 31 Mar 2023 22:00:40 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8ff1d01e68831d80a4f75d7db3970972 1a9e1f3fa7389cccb0e91cff2616767e1616113e fd74cb98e8809df139d3f187b78b0513a394231cb2660663ee250bc11b8e3e24 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "FD74CB98E8809DF139D3F187B78B0513A394231CB2660663EE250BC11B8E3E24" Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20391 Expires: Sat, 01 Apr 2023 03:40:31 GMT Date: Fri, 31 Mar 2023 22:00:40 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8ff1d01e68831d80a4f75d7db3970972 1a9e1f3fa7389cccb0e91cff2616767e1616113e fd74cb98e8809df139d3f187b78b0513a394231cb2660663ee250bc11b8e3e24 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "FD74CB98E8809DF139D3F187B78B0513A394231CB2660663EE250BC11B8E3E24" Last-Modified: Fri, 31 Mar 2023 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20391 Expires: Sat, 01 Apr 2023 03:40:31 GMT Date: Fri, 31 Mar 2023 22:00:40 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10490 bytes) Hash 0530376e431b6563796e4abb0db0bc4e 6921f4bd83a806e1ea8247854ad4c045fa7ee298 d6371c81d5494d5e50fd5cc1cfe1ce28213dfa70ea5a94df82c9f4b3e6430a53 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba3e3682-3d0e-4ac1-8330-9ea9ebe92041.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10490 x-amzn-requestid: 0525e5c4-485e-47eb-ab95-1136e4d5c29a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CnUnTEztoAMFzMQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64260161-54b47454475ff6ee4d880534;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:41 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: jl5cQc_Zqq5xNDMcs5jRHb3HBIjuucl-JHF126hInXrOfv_CG-UqSg== via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google date: Fri, 31 Mar 2023 21:54:35 GMT age: 365 etag: "6921f4bd83a806e1ea8247854ad4c045fa7ee298" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg	34.120.237.76	200 OK	6.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.4 kB (6380 bytes) Hash 8a2b8f737604b7983cf686c82599dc73 aa63be93c4cd641f09ce0d5144ef60aab21caed1 78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6380 x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CnUn6E19IAMF9SQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: 3paQf8BhyRcZoZNox8660Zyzz0WaiQxJuHmDbj4wpo-rgbDdkxrYgQ== via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google date: Fri, 31 Mar 2023 21:47:24 GMT age: 796 etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10271 bytes) Hash 424b55535e5fd622b2fc96aac1246324 cf7cf08aa8969a86bf03695af2129686fd62fe86 c4bb26a7b2c431282b53b4df9999b9cc8e61369a79c606688a76499b31a65127 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10271 x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CkBoXGh5oAMFfzw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: WNL7Cf83AgDngpHfjV3CApgud_mzV7cdJ2QMzd6TdidQ8uDtauDW1A== via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 599f04a365a179d553682d476509c388.cloudfront.net (CloudFront), 1.1 google date: Fri, 31 Mar 2023 21:44:52 GMT age: 948 etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11061 bytes) Hash 39bdd16276747b1445a79e674a2a3347 d0676f63738484298a78b7abf7e4934c3d256065 67aa526299060c2a39c4baa10fd03f121497dccd5e765676639ed73ac529c34b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6350b4c-fa14-49e1-a21b-44b6f311dbdc.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11061 x-amzn-requestid: 428128ec-c441-4ff7-9c84-880a01672b00 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CnVFnFf0IAMFTvQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64260223-185c48300f161931310fa35f;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Thu, 30 Mar 2023 21:41:55 GMT x-amz-cf-pop: SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: gc77o7y-moH1HuMEZFe9-00DVAda9baa-5VEPlMA4SIZDJNzQ8jUlA== via: 1.1 a87682502db4b394cc6ba84510da9f98.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google date: Fri, 31 Mar 2023 21:49:10 GMT age: 690 etag: "d0676f63738484298a78b7abf7e4934c3d256065" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg	34.120.237.76	200 OK	9.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.9 kB (9859 bytes) Hash da174e6ccc9451c5071ba10eeb97f6f6 c38827a9ac1218768839877263e1f2984fbdc454 76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9859 x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: COQPtHizoAMF7-Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0 x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: nZfXy-IsoHliuLodEocEZlH-IvmIV9G-noSmSEU1wmuMPfBx3rLJ9w== via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google date: Fri, 31 Mar 2023 00:11:32 GMT age: 78548 etag: "c38827a9ac1218768839877263e1f2984fbdc454" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg	34.120.237.76	200 OK	5.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.8 kB (5806 bytes) Hash 8600e41520408df4865627256a0a0736 dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef 9163d80d7b6087b804e6682a50d4f66339d339894cf1c5808f2e5c2e0b3de930 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2cbd721e-872e-4eec-8eb5-363663d0ab36.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5806 x-amzn-requestid: cee5b166-592b-405e-b5f1-e36eb249ec59 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CnUllFFooAMFQ2g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64260156-01840fa47177285667bca060;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT x-amz-cf-pop: SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: dPs43FNnkyvbHYpvItSVgw6z2ebM5aOMjb_flfGjsBmrCF-OjhFQxQ== via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 google date: Fri, 31 Mar 2023 21:46:35 GMT age: 845 etag: "dffeaf1a8f73ae9f6247b9dc7f05301fefc00aef" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	api.iwara.tv/config	66.206.15.50	204 No Content	0 B
URL HTTP/2 api.iwara.tv/config IP 66.206.15.50:0 ASN #29802 HVC-AS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /config HTTP/1.1 Host: api.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://www.iwara.tv/ Origin: https://www.iwara.tv Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 204 No Content server: nginx date: Fri, 31 Mar 2023 22:00:40 GMT x-powered-by: Express vary: Origin, Access-Control-Request-Headers access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE access-control-allow-headers: content-type access-control-max-age: 86400 x-host: 127.0.0.1:3000 access-control-allow-origin: https://www.iwara.tv X-Firefox-Spdy: h2`

	api.iwara.tv/search?type=video&query=Train	66.206.15.50	204 No Content	0 B
URL HTTP/2 api.iwara.tv/search?type=video&query=Train IP 66.206.15.50:0 ASN #29802 HVC-AS File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /search?type=video&query=Train HTTP/1.1 Host: api.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://www.iwara.tv/ Origin: https://www.iwara.tv Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 204 No Content server: nginx date: Fri, 31 Mar 2023 22:00:40 GMT x-powered-by: Express vary: Origin, Access-Control-Request-Headers access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE access-control-allow-headers: content-type access-control-max-age: 86400 x-host: 127.0.0.1:3000 access-control-allow-origin: https://www.iwara.tv X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 4eec701fec69b73ab6ff1af2c178806f 5de0d4c444297364831a311b4c13954aa31976b0 fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 31 Mar 2023 22:00:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-37410039-11&cid=1110023458.1680300039&jid=882634965&gjid=1792948205&_gid=631159221.1680300039&_u=4GBAAUAAAAAAACAAI~&z=1214956136	64.233.161.157	200 OK	1 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-37410039-11&cid=1110023458.1680300039&jid=882634965&gjid=1792948205&_gid=631159221.1680300039&_u=4GBAAUAAAAAAACAAI~&z=1214956136 IP 64.233.161.157:0 ASN #15169 GOOGLE File type very short file (no magic) Size 1 B (1 bytes) Hash c4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-37410039-11&cid=1110023458.1680300039&jid=882634965&gjid=1792948205&_gid=631159221.1680300039&_u=4GBAAUAAAAAAACAAI~&z=1214956136 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://www.iwara.tv Connection: keep-alive Referer: https://www.iwara.tv/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://www.iwara.tv strict-transport-security: max-age=10886400; includeSubDomains; preload date: Fri, 31 Mar 2023 22:00:40 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 1 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 4eec701fec69b73ab6ff1af2c178806f 5de0d4c444297364831a311b4c13954aa31976b0 fda1ec0d2c39aafdb994d336b4d8b5d819fcd064a64b43649598609dac04f512 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 31 Mar 2023 22:00:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	192.229.221.95	200 OK	313 B
URL HTTP/1.1 ocsp.digicert.com/ IP 192.229.221.95:0 ASN #15133 EDGECAST File type data Size 313 B (313 bytes) Hash d4f8e3a8177051f07ce6d99826f3c0fc b4551c0d918913ad64741de50a13bfb3c06c9868 8dd69eb534a1d9c4d357ffb83e2db2b4d027b25d6a85260b9f71c5d102c3d371 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5742 Cache-Control: max-age=128534 Content-Type: application/ocsp-response Date: Fri, 31 Mar 2023 22:00:41 GMT Etag: "642694b1-139" Expires: Sun, 02 Apr 2023 09:42:55 GMT Last-Modified: Fri, 31 Mar 2023 08:07:13 GMT Server: ECAcc (ska/F6AF) X-Cache: HIT Content-Length: 313`

	api.iwara.tv/search?type=video&query=Train	66.206.15.50	200 OK	28 kB
URL HTTP/2 api.iwara.tv/search?type=video&query=Train IP 66.206.15.50:0 ASN #29802 HVC-AS File type data Size 28 kB (28277 bytes) Hash 4b6c39b0fb1202aacdd49d44e51e9060 afee1656c666b82923375db872adb12993c78b42 aae6c3d6f3f53ae06850d79cdc073716912e0c9cbee01d3c82f1376066e9e6e5 HTTP Headers `GET /search?type=video&query=Train HTTP/1.1 Host: api.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.iwara.tv/ Content-Type: application/json Origin: https://www.iwara.tv Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 31 Mar 2023 22:00:40 GMT content-type: application/json; charset=utf-8 x-powered-by: Express vary: Accept-Encoding, Origin etag: W/"13138-T2PwQPrRdcVWgIrlJ6lPPigkGxY" x-host: 127.0.0.1:3000 access-control-allow-origin: https://www.iwara.tv content-encoding: gzip X-Firefox-Spdy: h2`

	illustrious-halva-eb1986.netlify.app/tags/%20css/reset.css	34.159.168.235	200 OK	716 B
URL HTTP/2 illustrious-halva-eb1986.netlify.app/tags/%20css/reset.css IP 34.159.168.235:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type Algol 68 source text\012- Pascal source, ASCII text Size 716 B (716 bytes) Hash 14de3bde894ca6987edb90f2ae75d80c 13da615fe2ebec7934b61d01fd6a372ab5aac797 7683c57eaccf29dd8763731cd2954d6e320442e200b34c4a7a0db948e6d35859 HTTP Headers `GET /tags/%20css/reset.css HTTP/1.1 Host: illustrious-halva-eb1986.netlify.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://illustrious-halva-eb1986.netlify.app/tags/ninja_728_header_async.html Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` `HTTP/2 200 OK accept-ranges: bytes age: 72582 cache-control: public, max-age=0, must-revalidate content-encoding: br content-type: text/css; charset=UTF-8 date: Fri, 31 Mar 2023 01:50:59 GMT etag: "5a8fe222e8373fbd47a4386f3fdf2f7d-ssl-df" server: Netlify strict-transport-security: max-age=31536000; includeSubDomains; preload vary: Accept-Encoding x-nf-request-id: 01GWWTZS775CNY00T15X58TV5J content-length: 716 X-Firefox-Spdy: h2`

	service.iwara.tv/z/z.php?zones=33&loc=https%3A%2F%2Fwww.iwara.tv%2Fsearch%3Fquery%3DTrain	85.187.128.60	200 OK	643 B
URL HTTP/2 service.iwara.tv/z/z.php?zones=33&loc=https%3A%2F%2Fwww.iwara.tv%2Fsearch%3Fquery%3DTrain IP 85.187.128.60:0 ASN #55293 A2HOSTING File type JSON data\012- data Size 643 B (643 bytes) Hash d07d8bd1b66c06f300dbc93f62047819 b89c29f4f56da1c3384c83a2d64082695797005b 49274509dd2d09d606c1cc6b912615f0062de06fff80a54ddd55a3ddfb923f44 HTTP Headers `GET /z/z.php?zones=33&loc=https%3A%2F%2Fwww.iwara.tv%2Fsearch%3Fquery%3DTrain HTTP/1.1 Host: service.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.iwara.tv/ Origin: https://www.iwara.tv Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 200 OK x-powered-by: PHP/7.4.33 pragma: no-cache cache-control: no-cache, no-store, must-revalidate expires: 0 p3p: CP="CUR ADM OUR NOR STA NID" set-cookie: OAID=01000111010001000101000001010010; expires=Sat, 30-Mar-2024 22:00:40 GMT; Max-Age=31536000; path=/; secure; SameSite=none access-control-allow-origin: https://www.iwara.tv access-control-allow-credentials: true content-type: application/json date: Fri, 31 Mar 2023 22:00:40 GMT server: LiteSpeed strict-transport-security: max-age=63072000; includeSubDomains x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46" X-Firefox-Spdy: h2

	www.iwara.tv/search?query=Train	172.67.71.154	200 OK	0 B
URL HTTP/2 www.iwara.tv/search?query=Train IP 172.67.71.154:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /search?query=Train HTTP/1.1 Host: www.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Fri, 31 Mar 2023 22:00:38 GMT content-type: text/html last-modified: Fri, 31 Mar 2023 10:15:52 GMT vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OUNf8%2BK9aGRTiqlxR8pLzfV6n92meBUjPlbck3RyhSjQzEt5cj5sds6KNUmuillCuK64J9jatkD6rOp6as3iAODaPpwWgYEEh8cfCQWPFTqvzZyKsNDZgSd2oMy3yg%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7b0bddc69add0afa-OSL content-encoding: gzip alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	a.iwara.tv/a.js	51.15.162.198	200 OK	0 B
URL HTTP/2 a.iwara.tv/a.js IP 51.15.162.198:0 ASN #12876 Online S.a.s. File type Size 0 B (0 bytes) Hash HTTP Headers `GET /a.js HTTP/1.1 Host: a.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.iwara.tv/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK server: nginx date: Fri, 31 Mar 2023 22:00:39 GMT content-type: application/javascript; charset=UTF-8 x-dns-prefetch-control: on x-frame-options: SAMEORIGIN content-security-policy: default-src 'self'; img-src *; script-src 'self' 'unsafe-eval'; style-src 'self' 'unsafe-inline'; connect-src 'self' api.umami.is; frame-ancestors 'self'; accept-ranges: bytes cache-control: public, max-age=0 last-modified: Fri, 31 Mar 2023 10:22:06 GMT etag: W/"a68-1873730548b" vary: Accept-Encoding content-encoding: gzip X-Firefox-Spdy: h2

	api.iwara.tv/config	66.206.15.50	200 OK	0 B
URL HTTP/2 api.iwara.tv/config IP 66.206.15.50:0 ASN #29802 HVC-AS File type Size 0 B (0 bytes) Hash HTTP Headers `GET /config HTTP/1.1 Host: api.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.iwara.tv/ Content-Type: application/json Origin: https://www.iwara.tv Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 31 Mar 2023 22:00:40 GMT content-type: application/json; charset=utf-8 x-powered-by: Express vary: Accept-Encoding, Origin x-cache: hit etag: W/"654-wal5WWBca/di2d1UI0tARNSFImU" x-host: 127.0.0.1:3000 access-control-allow-origin: https://www.iwara.tv content-encoding: gzip X-Firefox-Spdy: h2`

	api.iwara.tv/forum/threads?limit=5	66.206.15.50	200 OK	0 B
URL HTTP/2 api.iwara.tv/forum/threads?limit=5 IP 66.206.15.50:0 ASN #29802 HVC-AS File type Size 0 B (0 bytes) Hash HTTP Headers `GET /forum/threads?limit=5 HTTP/1.1 Host: api.iwara.tv User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.iwara.tv/ Content-Type: application/json Origin: https://www.iwara.tv Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers` `HTTP/2 200 OK server: nginx date: Fri, 31 Mar 2023 22:00:39 GMT content-type: application/json; charset=utf-8 x-powered-by: Express vary: Accept-Encoding, Origin etag: W/"1e79-6I1/s5snp1/kiNLODYVjmk81oKk" x-host: 127.0.0.1:3000 access-control-allow-origin: https://www.iwara.tv content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML