urlquery - report: netcdn.co/app/431946152/cheats-to-type-in-roblox-game-hack

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
ocsp.pki.goog (8)	175	2017-06-14 07:23:31 UTC	2022-12-10 04:09:58 UTC	142.250.74.131
translate.google.com (1)	1156	2012-05-30 01:30:32 UTC	2022-12-10 04:10:12 UTC	216.58.211.14
downloadlocked.com (1)	127304	2021-10-06 18:17:41 UTC	2022-12-10 03:31:12 UTC	23.22.126.183
is1-ssl.mzstatic.com (1)	1597	2015-02-12 10:39:50 UTC	2022-12-10 11:00:10 UTC	23.38.200.24
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-12-10 04:09:05 UTC	54.203.75.56
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-12-10 04:09:56 UTC	34.120.237.76
r3.o.lencr.org (12)	344	2020-12-02 08:52:13 UTC	2022-12-10 04:09:10 UTC	23.36.76.226
gaminghelper.co (33)	0	2021-10-07 04:32:40 UTC	2022-12-10 13:50:44 UTC	91.223.82.61	Unknown ranking
fonts.googleapis.com (1)	8877	2012-05-23 12:41:44 UTC	2022-12-10 04:19:24 UTC	142.250.74.106
ajax.googleapis.com (2)	12905	2012-05-22 10:38:03 UTC	2022-12-10 08:29:34 UTC	142.250.74.74
track.enigmacdn.com (2)	0	2021-07-17 01:36:30 UTC	2022-12-09 18:21:20 UTC	91.223.82.61	Unknown ranking
www.gstatic.com (1)	0	2012-05-29 15:36:17 UTC	2022-12-10 08:29:05 UTC	142.250.74.35	Domain (gstatic.com) ranked at: 540
maxcdn.bootstrapcdn.com (1)	724	2014-06-18 00:37:31 UTC	2022-12-10 05:34:22 UTC	104.18.11.207
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-12-10 04:09:16 UTC	34.117.237.239
ocsp.digicert.com (3)	86	2012-05-21 07:02:23 UTC	2022-12-10 04:52:58 UTC	93.184.220.29
translate.googleapis.com (1)	1005	2012-05-31 07:21:21 UTC	2022-12-10 08:52:12 UTC	142.250.74.42
s10.histats.com (1)	15211	2012-05-21 17:14:14 UTC	2022-12-10 04:34:10 UTC	46.105.201.240
s4.histats.com (1)	12782	2012-05-21 17:14:14 UTC	2022-12-10 04:34:10 UTC	149.56.240.130
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-12-10 04:11:10 UTC	34.160.144.191
i0.wp.com (1)	3021	2013-09-17 06:14:42 UTC	2022-12-10 04:11:27 UTC	192.0.77.2
fonts.gstatic.com (1)	0	2014-04-02 10:51:04 UTC	2022-12-10 05:08:48 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
netcdn.co (1)	0	2021-06-14 02:08:46 UTC	2022-12-10 13:50:33 UTC	91.223.82.61	Unknown ranking
firefox.settings.services.mozilla.com (2)	867	2020-05-25 20:06:39 UTC	2022-12-10 04:09:10 UTC	35.241.9.150

Scan Date	Severity	Indicator	Comment
2022-12-10	2	gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack	Phishing
2022-12-10	2	gaminghelper.co/js/fancySelect.js	Phishing
2022-12-10	2	gaminghelper.co/js/jquery.countTo.js	Phishing
2022-12-10	2	gaminghelper.co/js/sweetalert2.min.js	Phishing
2022-12-10	2	gaminghelper.co/js/validator.min.js	Phishing
2022-12-10	2	gaminghelper.co/js/com.js	Phishing
2022-12-10	2	gaminghelper.co/js/form-scripts.js	Phishing
2022-12-10	2	gaminghelper.co/js/sticky.js	Phishing
2022-12-10	2	gaminghelper.co/js/jquery.magnific-popup.min.js	Phishing
2022-12-10	2	gaminghelper.co/js/main.js	Phishing
2022-12-10	2	gaminghelper.co/fonts/bebasneue_bold-webfont.html	Phishing
2022-12-10	2	gaminghelper.co/fonts/et-line.woff	Phishing
2022-12-10	2	gaminghelper.co/fonts/bebasneue_regular-webfont.html	Phishing

Scan Date	Severity	Indicator	Comment
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed
2022-12-10	2	gaminghelper.co	Sinkholed

Date	UQ / IDS / BL	URL	IP
2022-12-17 09:20:56 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/ninja-assassin- (...)	91.223.82.61
2022-12-17 06:18:11 +0000	0 - 0 - 49	gaminghelper.co/app/431946152/roblox-free-rob (...)	91.223.82.61
2022-12-16 09:03:55 +0000	0 - 0 - 48	gaminghelper.co/app/431946152/how-do-you-get- (...)	91.223.82.61
2022-12-16 08:11:44 +0000	0 - 0 - 48	netcdn.co/app/431946152/roblox-hack-tower-bat (...)	91.223.82.61
2022-12-16 07:12:35 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/roblox-maps-fre (...)	91.223.82.61

Date	UQ / IDS / BL	URL	IP
2023-03-24 17:28:27 +0000	0 - 2 - 0	modymain.us/realtek-high-definition-audio-dri (...)	185.7.33.56
2023-03-15 00:27:15 +0000	0 - 0 - 12	moviemediaz.com/sk/movie/47094/The%20Genesis% (...)	91.223.82.201
2023-03-08 14:10:43 +0000	0 - 7 - 7	hentaijl.com/hentai/55/yari-agari/episodio-1	185.7.33.56
2023-03-06 10:30:50 +0000	0 - 0 - 8	91.223.82.6/	91.223.82.6
2023-02-27 19:23:01 +0000	0 - 3 - 1	www.newbosspass.xyz/laptop/pt2.exe	91.223.82.124

Date	UQ / IDS / BL	URL	IP
2022-12-16 08:11:44 +0000	0 - 0 - 48	netcdn.co/app/431946152/roblox-hack-tower-bat (...)	91.223.82.61
2022-12-16 06:23:00 +0000	0 - 0 - 46	netcdn.co/app/431946152/roblox-ninja-warrior- (...)	91.223.82.61
2022-12-15 14:04:00 +0000	0 - 0 - 46	netcdn.co/app/431946152/buy-free-robux-card-g (...)	91.223.82.61
2022-12-15 09:06:44 +0000	0 - 0 - 48	netcdn.co/app/431946152/how-to-hack-in-roblox (...)	91.223.82.61
2022-12-15 08:47:05 +0000	0 - 0 - 48	netcdn.co/app/431946152/get-800-robux-for-fre (...)	91.223.82.61

Date	UQ / IDS / BL	URL	IP
2022-12-17 09:20:56 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/ninja-assassin- (...)	91.223.82.61
2022-12-17 06:18:11 +0000	0 - 0 - 49	gaminghelper.co/app/431946152/roblox-free-rob (...)	91.223.82.61
2022-12-16 08:11:44 +0000	0 - 0 - 48	netcdn.co/app/431946152/roblox-hack-tower-bat (...)	91.223.82.61
2022-12-16 06:23:00 +0000	0 - 0 - 46	netcdn.co/app/431946152/roblox-ninja-warrior- (...)	91.223.82.61
2022-12-16 06:21:12 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/roblox-login-ch (...)	91.223.82.61

HTTP Transactions (83)

Request	Response
GET /app/431946152/cheats-to-type-in-roblox-game-hack HTTP/1.1 Host: netcdn.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: netcdn.co/app/431946152/cheats-to-type-in-roblox-game-hack FQDN: netcdn.co IP: 91.223.82.61 HASH: ea5f973cd69e229a6e61c805cf0eea9373dcc29656c4b31e91ec3e2a077f536c 91.223.82.61 HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=iso-8859-1 Server: nginx Date: Sat, 10 Dec 2022 14:41:38 GMT Content-Length: 280 Connection: keep-alive Keep-Alive: timeout=60 Location: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 280 Md5: 4d7491ed048c72d8c164e0b60694e595 Sha1: 6cdc53cd54f6ca15a4ed12cae38d3ec14b8c088e Sha256: ea5f973cd69e229a6e61c805cf0eea9373dcc29656c4b31e91ec3e2a077f536c
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "315D77A9956F34B1615E38F5F1971DD05146980F8A36B35A8108D47EBBA7E8E5" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19827 Expires: Sat, 10 Dec 2022 20:12:06 GMT Date: Sat, 10 Dec 2022 14:41:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 430f1651125c14bfa4924aa1f1a392e9 Sha1: 304141c5fe7ac8b370a67912b2592f9622de9600 Sha256: 315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10560 Expires: Sat, 10 Dec 2022 17:37:39 GMT Date: Sat, 10 Dec 2022 14:41:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 43ad67f241ee3692a9c9c1da080dae58 Sha1: 6a024f7d71eeee257edc91ba9273416f634aaae5 Sha256: 636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sat, 10 Dec 2022 14:33:23 GMT age: 496 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: b44c4b5daa307a355e7bab1c83c1ca82 Sha1: dbd14cd873f1dd4502f277b3f51cb7bc8da0c080 Sha256: fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA" Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7281 Expires: Sat, 10 Dec 2022 16:43:00 GMT Date: Sat, 10 Dec 2022 14:41:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 4ee537977be9c03702f8ffe0025bf1fe Sha1: 21637881c4aa34c4add703f8bff4eff573159f45 Sha256: 4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: YorqlAFRuFmO5gKv3FZ0PWsrsqdhpihogaiWNDwz5CvmYvn+E7+NY4wixutzIaz9SW5FniZVoDY= x-amz-request-id: KNV47FV737TQYH1S content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 10 Dec 2022 13:50:42 GMT age: 3057 last-modified: Wed, 30 Nov 2022 10:06:34 GMT etag: "53341dea33f4f3d9b4966f80589f429a" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 53341dea33f4f3d9b4966f80589f429a Sha1: 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d Sha256: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 1837dc72fbc35c634a1194c68668a7a3127f640fec56b7eb746b3d9c26fa9c97 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "1837DC72FBC35C634A1194C68668A7A3127F640FEC56B7EB746B3D9C26FA9C97" Last-Modified: Sat, 10 Dec 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20835 Expires: Sat, 10 Dec 2022 20:28:54 GMT Date: Sat, 10 Dec 2022 14:41:39 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 483074d8959fb1bb143f028fc3096e2a Sha1: 52df1b72f1ae5a89b72ae46ab64da98c58f24afb Sha256: 1837dc72fbc35c634a1194c68668a7a3127f640fec56b7eb746b3d9c26fa9c97
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Sat, 10 Dec 2022 14:41:39 GMT content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /app/431946152/cheats-to-type-in-roblox-game-hack HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: gaminghelper.co/app/431946152/cheats-to-type-in-roblox- (...) FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/8.0.8RC1 Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14923) Size: 20003 Md5: 94d17b53e2271b5c8ee9d31c9c3a57d2 Sha1: 58af2bb33446f359b61abecf0e9260f58a1cfe6f Sha256: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /css/bootstrap.min.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/bootstrap.min.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3421e2383a7c02f24509d2f1294d3099b658d0773f97706b87b832b0b770c0b6 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:30:28 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c104-1d9bb" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (65371) Size: 19597 Md5: 3f142cfc2d7123b31a1e696e0591f27a Sha1: 834192dbadf2713cd2ff89f50d7ec2f1d4782e54 Sha256: 3421e2383a7c02f24509d2f1294d3099b658d0773f97706b87b832b0b770c0b6 Alerts: Blocklists: - quad9: Sinkholed
GET /js/fancySelect.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/fancySelect.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 5d19375a0386f8ea11115e3145c61105cfa1daca00d15ad54b49c84967f518d0 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b2-1a7a" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1661 Md5: a60791b5b353371813114e815d946494 Sha1: 69d1f371b0ed899641e640b2649c0914302812bd Sha256: 5d19375a0386f8ea11115e3145c61105cfa1daca00d15ad54b49c84967f518d0 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /css/animate.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/animate.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: b30b4d8565f9af6c8d2cb3839aa09dbccd60ca1a766465d542debade38f45741 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:30:28 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c104-10cbc" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 4026 Md5: 48bc9b81bca18c06ba937cbb880b4cb3 Sha1: 697313edfad185bcca5c7bde18da4a98f93e3adb Sha256: b30b4d8565f9af6c8d2cb3839aa09dbccd60ca1a766465d542debade38f45741 Alerts: Blocklists: - quad9: Sinkholed
GET /css/sweetalert2.min.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/sweetalert2.min.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 53976df2ad3ce0c0f2632bb620bbb02d930a5eb943298170e97189f029a0d70d 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:30:30 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c106-36a3" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (13987), with no line terminators Size: 2737 Md5: 1cfac88a4a8e1bc20b811757fb028b40 Sha1: 10427c064f703342d031411a3310e2a5ef2083bc Sha256: 53976df2ad3ce0c0f2632bb620bbb02d930a5eb943298170e97189f029a0d70d Alerts: Blocklists: - quad9: Sinkholed
GET /css/magnific-popup.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/magnific-popup.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 211b79363793093a7a2f1d342768844e938e88156b62293093185a6500ead1cf 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:30:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c105-1f0a" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1994 Md5: c0275239cb960b014d780d8105b44d72 Sha1: 8db83ac790988232549a3740ecf04fc199da1ce8 Sha256: 211b79363793093a7a2f1d342768844e938e88156b62293093185a6500ead1cf Alerts: Blocklists: - quad9: Sinkholed
GET /css/fancySelect.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/fancySelect.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3f41176d4616a36f4325865bb3c0ea652f3616dec60b31bd923df91f600506b2 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:30:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c105-109d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1023 Md5: 458a1a06f282aa4c457a8b613d6a38e6 Sha1: b524e1cb32722230e18bc85f414b9a10e43a7e2d Sha256: 3f41176d4616a36f4325865bb3c0ea652f3616dec60b31bd923df91f600506b2 Alerts: Blocklists: - quad9: Sinkholed
GET /js/jquery.countTo.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/jquery.countTo.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 67880d8532d95db3e74b7da985ca2fe7c9d9660e3dd125202cebcda96a2007e2 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:33:23 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b3-eb1" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1125 Md5: 547f5246e091d19af521dee35588e468 Sha1: 4772f3c1e62865ccbbab04abd39e69510c8f5843 Sha256: 67880d8532d95db3e74b7da985ca2fe7c9d9660e3dd125202cebcda96a2007e2 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /css/style.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/style.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 08bb84420272831b8755bc5bd2858bf8a486006a9367b670d826ee516262a2c8 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:30:30 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c106-bd7b" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (1512) Size: 8520 Md5: 4d36bdeba8bb00f4ee280771fddfa689 Sha1: 8dfbed7251f5bb010d5fe8f64e0d60abc3e9fd54 Sha256: 08bb84420272831b8755bc5bd2858bf8a486006a9367b670d826ee516262a2c8 Alerts: Blocklists: - quad9: Sinkholed
GET /js/sweetalert2.min.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/sweetalert2.min.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: aeafa1e7bb6a973eac2b4f5462844b1c2d64d53eb2e09e75f265e646320f7080 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:33:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b9-4f51" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (20305), with no line terminators Size: 6538 Md5: b238ef007e57c4c8f9447cba68fdb3a2 Sha1: 2d4ca455aca3fcd8ee7ac2e2883cfa89c87bd532 Sha256: aeafa1e7bb6a973eac2b4f5462844b1c2d64d53eb2e09e75f265e646320f7080 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/validator.min.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/validator.min.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 56b8d7fb44f86809b49d416022455ac170fb0b79d1ab4b6e5192a046e660f667 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:33:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b9-17a7" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (5862) Size: 2094 Md5: 1ab13fa2eeca5d16de99a1cad839416c Sha1: 0d0a95bd88d04b02d89e1162dd3ebb20b5543dd8 Sha256: 56b8d7fb44f86809b49d416022455ac170fb0b79d1ab4b6e5192a046e660f667 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/com.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/com.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 28babf5e232e3dc0985bab21a28eea25b17bc078bafc92a6ba049eefb1e45720 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b2-461a" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: C source, Unicode text, UTF-8 text, with very long lines (2456) Size: 3265 Md5: ecf323c878106fa274f5e9f3b3a82437 Sha1: 86b15826e8a83c81da7ef264dd8e3ff59ef5c1bf Sha256: 28babf5e232e3dc0985bab21a28eea25b17bc078bafc92a6ba049eefb1e45720 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/form-scripts.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/form-scripts.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3dd0f5e5567c73519dc3eeb98ba6fef9d2b2982af24544ba3d7bbc684d6bae6c 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b2-5bd" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 609 Md5: 4fb85eb3b2f0dd8b8f5953c58236da3e Sha1: 1c9f6c7a15a3248147e056672ffbf4fdbaed6718 Sha256: 3dd0f5e5567c73519dc3eeb98ba6fef9d2b2982af24544ba3d7bbc684d6bae6c Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/sticky.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/sticky.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 0 Last-Modified: Fri, 03 Sep 2021 06:33:28 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c1b8-0" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/jquery.magnific-popup.min.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/jquery.magnific-popup.min.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: f2e1cd5f2953925591288bd1cc3f167bbd392497476119083458e33e9ab87079 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:33:26 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b6-5297" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (21014) Size: 7685 Md5: 12a9a563724e70a895de0fbd5f7b4ee5 Sha1: a14c616f532deb9ca2d5fa0de6124d47ea60ab57 Sha256: f2e1cd5f2953925591288bd1cc3f167bbd392497476119083458e33e9ab87079 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 8ba6a3ab77a1c0799ea7c8fcb45fc45aa257761972b8685092bb1e8ec0ef8374 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3149 Cache-Control: max-age=148324 Date: Sat, 10 Dec 2022 14:41:40 GMT Etag: "63942ebd-118" Expires: Mon, 12 Dec 2022 07:53:44 GMT Last-Modified: Sat, 10 Dec 2022 07:01:17 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 280 --- Additional Info --- Magic: data Size: 280 Md5: 134e6e2dd7e9b8c65ec088381b1dbc75 Sha1: 950ad0d65474f2af97192d61de7bde8d82862956 Sha256: 8ba6a3ab77a1c0799ea7c8fcb45fc45aa257761972b8685092bb1e8ec0ef8374
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 10 Dec 2022 14:41:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: edac2b4e678c48b1fc3be3a06793bfcb Sha1: 23f1f41a2194536d77a2497d7255b13747fd9af0 Sha256: e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 10 Dec 2022 14:41:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: edac2b4e678c48b1fc3be3a06793bfcb Sha1: 23f1f41a2194536d77a2497d7255b13747fd9af0 Sha256: e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sat, 10 Dec 2022 14:33:14 GMT age: 506 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 10 Dec 2022 14:41:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 5496e18a30e039b44989d9a0e932d4bc Sha1: c5bfb1b9ce711e38d69e78486017f07cc47fe04a Sha256: 26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
GET /js/main.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/main.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 745ecf708bc71ba73f7071b8a35c3f639ec7f3e05ceb826458a1b6a8fb4fe782 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Last-Modified: Fri, 03 Sep 2021 06:33:27 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b7-a08b" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (16162) Size: 15195 Md5: 562dc83f2f14b713905fe69a0994e11d Sha1: 43cd616f9ea8c8c1eb0edccd54a29e2490fcf90a Sha256: 745ecf708bc71ba73f7071b8a35c3f639ec7f3e05ceb826458a1b6a8fb4fe782 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 10 Dec 2022 14:41:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: edac2b4e678c48b1fc3be3a06793bfcb Sha1: 23f1f41a2194536d77a2497d7255b13747fd9af0 Sha256: e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
GET /ajax/libs/jquery/2.1.4/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js FQDN: ajax.googleapis.com IP: 142.250.74.74 HASH: 675fa88b39008a09994460a93b310a7d4593735009a9b24b6f176c347ad12421 142.250.74.74 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 29725 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 Dec 2022 08:31:51 GMT expires: Fri, 08 Dec 2023 08:31:51 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 194989 last-modified: Tue, 03 Mar 2020 19:15:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (32025) Size: 29725 Md5: 83b3b5729cdff3976db52c51831e96b8 Sha1: d23dc823e37f58e5366340be755730f3fa9a850d Sha256: 675fa88b39008a09994460a93b310a7d4593735009a9b24b6f176c347ad12421
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 8ba6a3ab77a1c0799ea7c8fcb45fc45aa257761972b8685092bb1e8ec0ef8374 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3149 Cache-Control: max-age=148324 Date: Sat, 10 Dec 2022 14:41:40 GMT Etag: "63942ebd-118" Expires: Mon, 12 Dec 2022 07:53:44 GMT Last-Modified: Sat, 10 Dec 2022 07:01:17 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 280 --- Additional Info --- Magic: data Size: 280 Md5: 134e6e2dd7e9b8c65ec088381b1dbc75 Sha1: 950ad0d65474f2af97192d61de7bde8d82862956 Sha256: 8ba6a3ab77a1c0799ea7c8fcb45fc45aa257761972b8685092bb1e8ec0ef8374
GET /ajax/libs/jqueryui/1.8.13/jquery-ui.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ajax.googleapis.com/ajax/libs/jqueryui/1.8.13/jquery-ui (...) FQDN: ajax.googleapis.com IP: 142.250.74.74 HASH: 4ae100977cea8b9965e5d231f3ae655783b4f163c56ee703953aff937525ed37 142.250.74.74 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 51711 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 06 Dec 2022 15:53:32 GMT expires: Wed, 06 Dec 2023 15:53:32 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 341288 last-modified: Tue, 03 Mar 2020 19:15:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (563) Size: 51711 Md5: d3908721b39ebbeffaf1c917bbda06e8 Sha1: 0f9b6c6bdad9cfc057f3e85f52cc417370959fb9 Sha256: 4ae100977cea8b9965e5d231f3ae655783b4f163c56ee703953aff937525ed37
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 005f55737b8e0c9ff6c6e4b47ea5ab59fb8532e605d1543b8b76f234dda3433b 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "005F55737B8E0C9FF6C6E4B47EA5AB59FB8532E605D1543B8B76F234DDA3433B" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14416 Expires: Sat, 10 Dec 2022 18:41:56 GMT Date: Sat, 10 Dec 2022 14:41:40 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 525d3e8f19840bd1f3e0528b3dafcc87 Sha1: aba05a2762327806ca8892b43059fa7aa13005c4 Sha256: 005f55737b8e0c9ff6c6e4b47ea5ab59fb8532e605d1543b8b76f234dda3433b
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1 Host: translate.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: translate.google.com/translate_a/element.js?cb=googleTr (...) FQDN: translate.google.com IP: 216.58.211.14 HASH: dca9a80ecb94b1e2bb04a04263acfa948a602b428064cb9af481d5cf1dcb7988 216.58.211.14 HTTP/2 200 OK content-type: text/javascript; charset=utf-8 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Sat, 10 Dec 2022 14:41:40 GMT cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: CONSENT=PENDING+583; expires=Mon, 09-Dec-2024 14:41:40 GMT; path=/; domain=.google.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 26822 Md5: 6fb8da26ce04f3f17654dcda76222c5f Sha1: b5b517e0045a67e78f96245b8ff743867519db75 Sha256: dca9a80ecb94b1e2bb04a04263acfa948a602b428064cb9af481d5cf1dcb7988
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 10 Dec 2022 14:41:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: edac2b4e678c48b1fc3be3a06793bfcb Sha1: 23f1f41a2194536d77a2497d7255b13747fd9af0 Sha256: e6b36b71f3633bd9d2b80043967f9579820f0ef1d5f66e5c401806de13cbe2a1
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 10 Dec 2022 14:41:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 5496e18a30e039b44989d9a0e932d4bc Sha1: c5bfb1b9ce711e38d69e78486017f07cc47fe04a Sha256: 26a3ad286e479cdabfcbb5a9d3fada211c73650628a35c80944b0e7e8aad27e0
GET /cl/js/114v1 HTTP/1.1 Host: downloadlocked.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: downloadlocked.com/cl/js/114v1 FQDN: downloadlocked.com IP: 23.22.126.183 HASH: b7be5183b884a42c918ce7eafcb4f4bd7b06979cd36262c623e594923943661a 23.22.126.183 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 server: nginx date: Sat, 10 Dec 2022 14:41:40 GMT cache-control: no-cache, private access-control-allow-origin: * strict-transport-security: max-age=31536000; includeSubDomains x-robots-tag: none set-cookie: XSRF-TOKEN=eyJpdiI6Ii9nTVZJdm5mOU9aNm13aDNUcXNMeHc9PSIsInZhbHVlIjoiR1liaFRvUm9YdHZjUlBVcmZyOThGdExMTU01VXdNemluWS81NjZXelBzUDU5ekE5eDRDbmV2RDV4Q3N1N0hBUTJ1SEMvZmM0Nmw5MzhFN3pDZ096aXZielZQYVI5QytPV01nWWlmS3pmSmdGWVJOSjZPRWo4bm9MTnBtbmQxeUoiLCJtYWMiOiIxZWRlMDA2MzA2NDI1ZTQwYzExMzdjM2FiMzc4MWU5YTI0NDI5YWQ3NmQ2MjIzMmViNzdkOGE5Nzc3ODQ3OWFmIiwidGFnIjoiIn0%3D; expires=Sun, 11 Dec 2022 10:41:40 GMT; Max-Age=72000; path=/; secure; samesite=none ogads_session=eyJpdiI6IlV2cHhBQ21FSm1mQTl2NHJ6bGlLVXc9PSIsInZhbHVlIjoiSmUrd3VGSVpaN3ZCL1hKQ0FVTHc3Um12bXpORSs3UjFsZWRKTU9LRndNUXNmeG90K3dWdnFlc0E5L2VXV0VFaXowYmtBSFZPbFhLUCtBd0NSbTE4VXhFS2w0ZEN5RDQ5OW9ONjdKQi85bXAva1ArdWpsRUV3RTAzN2VHdDN4b2wiLCJtYWMiOiI1YjJhMTUxMTYxNjU5M2ExZjQ5YjU2MTQ2ZjZiOTNkMTM2OGQ3NTYyNjNhMjAxMmFhMDllNDAxMzFjZDlkMGRhIiwidGFnIjoiIn0%3D; expires=Sun, 11 Dec 2022 10:41:40 GMT; Max-Age=72000; path=/; secure; httponly; samesite=none x-xss-protection: 1; mode=block, 1; mode=block x-content-type-options: DENY, nosniff X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 3270 Md5: dade46291d4629b361749c1b736d2a95 Sha1: 1008fb803ad957e8d85953f3c5246e5ac0d71a8f Sha256: b7be5183b884a42c918ce7eafcb4f4bd7b06979cd36262c623e594923943661a
GET /img/robux.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/robux.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 44e5a0923e6a0c2157435f215db9d3c2edf95408dfb3d87fa553830f582e24fd 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 14564 Last-Modified: Fri, 03 Sep 2021 06:31:43 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c14f-38e4" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data Size: 14564 Md5: 9c5420a8f8c55be36294fce245595dba Sha1: 4b9a024b51a475b1b7514a7650ff684ec9323572 Sha256: 44e5a0923e6a0c2157435f215db9d3c2edf95408dfb3d87fa553830f582e24fd Alerts: Blocklists: - quad9: Sinkholed
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 923454b28e4fa10085df809768a75c2d9f58f104afa016c06ccca7a26479073b 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3548 Cache-Control: max-age=156258 Date: Sat, 10 Dec 2022 14:41:40 GMT Etag: "63944c2a-1d7" Expires: Mon, 12 Dec 2022 10:05:58 GMT Last-Modified: Sat, 10 Dec 2022 09:06:50 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 44d4574b46375a2d215ae74bc5eae610 Sha1: 5257ed3edeb56231a9bee921671bb2e0c566000e Sha256: 923454b28e4fa10085df809768a75c2d9f58f104afa016c06ccca7a26479073b
GET /image/thumb/Purple122/v4/9b/ac/11/9bac11ba-0ca7-a097-9c52-b47dcaf27748/AppIcon-1x_U007emarketing-0-7-0-0-85-220.png/150x150bb.jpg HTTP/1.1 Host: is1-ssl.mzstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: is1-ssl.mzstatic.com/image/thumb/Purple122/v4/9b/ac/11/ (...) FQDN: is1-ssl.mzstatic.com IP: 23.38.200.24 HASH: 2ad1acfa41c0453140b8739505564112b5c255f6b1eca9a6338310db44061f26 23.38.200.24 HTTP/2 200 OK content-type: image/jpeg server: daiquiri/3.0.0 content-length: 12213 x-apple-jingle-correlation-key: OOCNGUETKYYAYBWWGPU42467XM x-apple-request-uuid: 7384d350-9356-300c-06d6-33e9cd73dfbb b3: 7384d3509356300c06d633e9cd73dfbb-aa58e7e80c2524bd x-b3-traceid: 7384d3509356300c06d633e9cd73dfbb x-b3-spanid: aa58e7e80c2524bd apple-seq: 0.0 apple-tk: false apple-originating-system: UnknownOriginatingSystem last-modified: Thu, 08 Dec 2022 22:54:33 GMT etag: "MSwxLjI4LTIySCxWZXJzaW9uIDEyLjEgKEJ1aWxkIDIxQzUyKSwxNjcwNTQwMDczMTIxLGlzQnVpbGRWZXJzaW9uTm90U2V0LDUwMjg0LG5vRWZmZWN0" access-control-allow-origin: * access-control-expose-headers: Content-Length,Content-Type,ETag,Cache-Control,Expires,Last-Modified timing-allow-origin: * strict-transport-security: max-age=31536000; includeSubDomains x-daiquiri-instance: daiquiri:13624002:mr85p00it-hyhk03094901:7987:22RELEASE175:daiquiri-amp-processing-shared-int-001-mr cdnuuid: db1ce18a-00fc-451a-9389-ab5a87cb7b33-3886458766 cache-control: no-transform, max-age=15296419 date: Sat, 10 Dec 2022 14:41:40 GMT x-cache: TCP_MEM_HIT from a23-36-79-6.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-) X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 150x150, components 3\012- data Size: 12213 Md5: eaa6067e2c9d149e326fbcfbc7d2367b Sha1: e2bb57b2028e5a3f04e59db618d87b0fb4818230 Sha256: 2ad1acfa41c0453140b8739505564112b5c255f6b1eca9a6338310db44061f26
GET /img/main-bg.jpg HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/main-bg.jpg FQDN: gaminghelper.co IP: 91.223.82.61 HASH: efbff382982bb66a918e5412741a23a309c6f4ca4e9820e65e67f659767765d6 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 9365 Last-Modified: Fri, 03 Sep 2021 06:31:31 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c143-2495" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data Size: 9365 Md5: d93b1723b2a2723d48696c5a6cae3b7e Sha1: 6f69bdc7079dd114f6fc816c5098f80b58c7b794 Sha256: efbff382982bb66a918e5412741a23a309c6f4ca4e9820e65e67f659767765d6 Alerts: Blocklists: - quad9: Sinkholed
GET /enigmanetwork.net/dmca.png HTTP/1.1 Host: i0.wp.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: i0.wp.com/enigmanetwork.net/dmca.png FQDN: i0.wp.com IP: 192.0.77.2 HASH: 0cbddd5e01b49d35d16b15fc54a481a17a0f2803c2da6807800428139dd50f7f 192.0.77.2 HTTP/2 200 OK content-type: image/webp server: nginx date: Sat, 10 Dec 2022 14:41:40 GMT content-length: 668 last-modified: Thu, 04 Aug 2022 17:20:08 GMT expires: Sun, 04 Aug 2024 05:20:08 GMT cache-control: public, max-age=63115200 link: <http://enigmanetwork.net/dmca.png>; rel="canonical" x-content-type-options: nosniff etag: "a264775a6858f15f" vary: Accept x-nc: HIT arn 5 access-control-allow-origin: * access-control-allow-methods: GET, HEAD timing-allow-origin: * X-Firefox-Spdy: h2 --- Additional Info --- Magic: RIFF (little-endian) data, Web/P image\012- data Size: 668 Md5: fa302d465f15a34e8264bc761a6902aa Sha1: 2c73911e3cfcf82860d1d59a0ccd2625ae98fffb Sha256: 0cbddd5e01b49d35d16b15fc54a481a17a0f2803c2da6807800428139dd50f7f
GET /img/pr-l.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/pr-l.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 37e1b903b1a3b99f70dd9b463948bbaed162d7f3cc957dbc5084f0c523b9ec0d 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 7453 Last-Modified: Fri, 03 Sep 2021 06:31:41 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c14d-1d1d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 960 x 1080, 8-bit colormap, non-interlaced\012- data Size: 7453 Md5: 91d0b1f8f5b7685478ff0d1f461fa658 Sha1: 7e457376b687add741a5d6cea2713dc4ef37efbc Sha256: 37e1b903b1a3b99f70dd9b463948bbaed162d7f3cc957dbc5084f0c523b9ec0d Alerts: Blocklists: - quad9: Sinkholed
GET /img/pr-r.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/pr-r.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: e88b54e0aa65055cb25657c0ed283b4d768a79770980c27f424886a48fa046ef 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 11003 Last-Modified: Fri, 03 Sep 2021 06:31:41 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c14d-2afb" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 960 x 1080, 8-bit colormap, non-interlaced\012- data Size: 11003 Md5: 284e10ee335890399e8f772c430570a9 Sha1: 188bf895905cee7d579aad2b6b5cdf795741f9cd Sha256: e88b54e0aa65055cb25657c0ed283b4d768a79770980c27f424886a48fa046ef Alerts: Blocklists: - quad9: Sinkholed
GET /img/panel-overlay.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/panel-overlay.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: b7a5d35c1c7be1953002244f054a14f38ed11912ad52d25a8e963774f7f52e0e 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 3116 Last-Modified: Fri, 03 Sep 2021 06:31:34 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c146-c2c" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 960 x 661, 4-bit colormap, non-interlaced\012- data Size: 3116 Md5: 2b026d93f79b384005e4252c80701791 Sha1: 87804a0d83d2e745b31526c8b60d026abecbe73a Sha256: b7a5d35c1c7be1953002244f054a14f38ed11912ad52d25a8e963774f7f52e0e Alerts: Blocklists: - quad9: Sinkholed
GET /img/smallbtnbg.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/smallbtnbg.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: dcf687cc9a059bc7a036faf3a86c50103d04e1fdca867deb7553ec9136719f0d 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 1405 Last-Modified: Fri, 03 Sep 2021 06:31:48 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c154-57d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 100 x 150, 8-bit colormap, non-interlaced\012- data Size: 1405 Md5: 92b84c143879abe85792a3408ae4845d Sha1: 1f8e983f7514d582e81cfee98ad8bb40ced26972 Sha256: dcf687cc9a059bc7a036faf3a86c50103d04e1fdca867deb7553ec9136719f0d Alerts: Blocklists: - quad9: Sinkholed
GET /img/smallbtnbg-r.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/smallbtnbg-r.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 0f61dff49d41fddbcc21de3dd4f1a62006f366083361d725bfd92ccf87212067 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 1393 Last-Modified: Fri, 03 Sep 2021 06:31:48 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c154-571" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 100 x 150, 8-bit colormap, non-interlaced\012- data Size: 1393 Md5: bdfffd47e30bf7d045d45f0125a33164 Sha1: 5834aea23f79a1ddccea3825bd51249307435c5f Sha256: 0f61dff49d41fddbcc21de3dd4f1a62006f366083361d725bfd92ccf87212067 Alerts: Blocklists: - quad9: Sinkholed
GET /img/button-dot.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/button-dot.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: a651e77df132fc0c4dbccb7c56f84923c28dcb159f4b7a112bde8bbc548632bc 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 672 Last-Modified: Fri, 03 Sep 2021 06:31:14 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c132-2a0" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 15 x 15, 8-bit colormap, non-interlaced\012- data Size: 672 Md5: 478aefab2e280b16b0372e607414d3c2 Sha1: 710f5aaa706ec23cbf45006d7c1d25be76b4fa64 Sha256: a651e77df132fc0c4dbccb7c56f84923c28dcb159f4b7a112bde8bbc548632bc Alerts: Blocklists: - quad9: Sinkholed
GET /fonts/bebasneue_bold-webfont.html HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/fonts/bebasneue_bold-webfont.html FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 13c03e5c6b49e447770ba4d0aee22d4aedbeed87e94f54fdcaf990934c109830 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 15216 Last-Modified: Fri, 03 Sep 2021 06:30:48 GMT Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: "6131c118-3b70" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15216, version 1.197\012- data Size: 15216 Md5: 772fc6a0795e2498a1715526dd95ac22 Sha1: d410a8da10385a0ef11a74e69644493b99315fc3 Sha256: 13c03e5c6b49e447770ba4d0aee22d4aedbeed87e94f54fdcaf990934c109830 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 10 Dec 2022 14:41:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e4f546e102d986faf1029509d599b730 Sha1: cc045a705fd6758b7b575fde5dfb79facc9c3546 Sha256: ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
GET /img/btn-img.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/btn-img.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: e7e359cb00b793c60c192fb1dbffa401806d99267e9b55d8bc9ce3c8260568ae 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 1335 Last-Modified: Fri, 03 Sep 2021 06:31:13 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c131-537" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 150 x 100, 8-bit colormap, non-interlaced\012- data Size: 1335 Md5: 817cb08a965fe5bf8debba11091e94c0 Sha1: 214d58c18bcbcfebd1606554929e9bc5f65755c6 Sha256: e7e359cb00b793c60c192fb1dbffa401806d99267e9b55d8bc9ce3c8260568ae Alerts: Blocklists: - quad9: Sinkholed
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://gaminghelper.co Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWb (...) FQDN: fonts.gstatic.com IP: 142.250.74.163 HASH: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db 142.250.74.163 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44856 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 08 Dec 2022 05:42:51 GMT expires: Fri, 08 Dec 2023 05:42:51 GMT cache-control: public, max-age=31536000 age: 205129 last-modified: Mon, 15 Aug 2022 18:20:18 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Size: 44856 Md5: 565ce506190ad3af920b40baf1794cec Sha1: ad3cba5d06100e09449a864d3b5e58403b478b3d Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /fonts/et-line.woff HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/fonts/et-line.woff FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 19d2f43d546ada73dd083f7778aa4a5cac1a8e7a3af56efccae580fce07a5e1c 91.223.82.61 HTTP/1.1 200 OK Content-Type: font/woff Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 55220 Last-Modified: Fri, 03 Sep 2021 06:30:56 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c120-d7b4" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Web Open Font Format, CFF, length 55220, version 1.0\012- data Size: 55220 Md5: b01ff252761958325faab1535c90c87f Sha1: d33413e7bc42acc8837cc9030ca45d29c1ccf0c6 Sha256: 19d2f43d546ada73dd083f7778aa4a5cac1a8e7a3af56efccae580fce07a5e1c Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /translate_static/css/translateelement.css HTTP/1.1 Host: translate.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: translate.googleapis.com/translate_static/css/translate (...) FQDN: translate.googleapis.com IP: 142.250.74.42 HASH: 696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0 142.250.74.42 HTTP/2 200 OK content-type: text/css accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="rosetta" report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]} content-length: 3619 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 10 Dec 2022 14:10:30 GMT expires: Sat, 10 Dec 2022 15:10:30 GMT cache-control: public, max-age=3600 age: 1870 last-modified: Wed, 17 Aug 2022 23:38:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (18670) Size: 3619 Md5: 897ba9a21d9625286674da769dacc2e2 Sha1: 84b4923ab7dee562395160824d53496314499b77 Sha256: 696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /fonts/bebasneue_regular-webfont.html HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/fonts/bebasneue_regular-webfont.html FQDN: gaminghelper.co IP: 91.223.82.61 HASH: bee0bcc11701aea746fd8b734379ba5e003a034460bfd71d88dc364b4d939be6 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 15948 Last-Modified: Fri, 03 Sep 2021 06:30:51 GMT Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: "6131c11b-3e4c" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15948, version 1.197\012- data Size: 15948 Md5: af83f1b88fb4654673e9c841bd22a8c7 Sha1: 61e5a340ea87431211d732024f2703dca5b80cbc Sha256: bee0bcc11701aea746fd8b734379ba5e003a034460bfd71d88dc364b4d939be6 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sat, 10 Dec 2022 14:41:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: e4f546e102d986faf1029509d599b730 Sha1: cc045a705fd6758b7b575fde5dfb79facc9c3546 Sha256: ef492301b2b30e5076f7dffa07973e65e9a200ba9ef4d3568a527d3f973f3349
GET /close.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Cookie: username1Cookie=Lia Piazza; username2Cookie=Batista; username3Cookie=Ermes; comment1Cookie=wow! works! FREAKING AAMZING!! 400000 Cash; comment2Cookie=thanks! I was looking for this in a long time! ..; comment3Cookie=thanks a lot . c: This site is awesome :3 works like a charm.. thanks admin.. Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/close.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: a967335d601fb662b5723f1181b3d07f25811d2ca26131598c48482b9935217b 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 4878 Last-Modified: Fri, 03 Sep 2021 06:30:21 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c0fd-130e" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data Size: 4878 Md5: fb5d414fccc35f19fde0f30a8c98139b Sha1: 4b4a030923039e56efdad2c2d97f0a74d2c74657 Sha256: a967335d601fb662b5723f1181b3d07f25811d2ca26131598c48482b9935217b Alerts: Blocklists: - quad9: Sinkholed
GET /img/cf/Indonesia.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Cookie: username1Cookie=Lia Piazza; username2Cookie=Batista; username3Cookie=Ermes; comment1Cookie=wow! works! FREAKING AAMZING!! 400000 Cash; comment2Cookie=thanks! I was looking for this in a long time! ..; comment3Cookie=thanks a lot . c: This site is awesome :3 works like a charm.. thanks admin.. Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Indonesia.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 47d80373c50c7ebb8f938597b0e6a69dde14575270bf3667d5681a11fdea75f0 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:39 GMT Content-Length: 1181 Last-Modified: Fri, 03 Sep 2021 06:32:29 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c17d-49d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 1181 Md5: c1bd29515ef87d52d8cedc77783563e2 Sha1: afe216e4eea16e660127ed4ada74f1237b2b0a54 Sha256: 47d80373c50c7ebb8f938597b0e6a69dde14575270bf3667d5681a11fdea75f0 Alerts: Blocklists: - quad9: Sinkholed
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 96b6e945d16e40268dac987dcdd30c6f8c3fb5c368a5172c4aae2798dc75716b 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "96B6E945D16E40268DAC987DCDD30C6F8C3FB5C368A5172C4AAE2798DC75716B" Last-Modified: Sat, 10 Dec 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20827 Expires: Sat, 10 Dec 2022 20:28:47 GMT Date: Sat, 10 Dec 2022 14:41:40 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 7749c0bf35d294edac7f11a31cafcc87 Sha1: d11025891bdafd7b298d6f7945da798efeb0d66a Sha256: 96b6e945d16e40268dac987dcdd30c6f8c3fb5c368a5172c4aae2798dc75716b
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: luK3/mWEM27LDBgphZU6PA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 54.203.75.56 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 54.203.75.56 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: lrLUtgM8/RL32f/XN3g5CSfRneo= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/431946152/img/favicon-16x16.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Cookie: username1Cookie=Lia Piazza; username2Cookie=Batista; username3Cookie=Ermes; comment1Cookie=wow! works! FREAKING AAMZING!! 400000 Cash; comment2Cookie=thanks! I was looking for this in a long time! ..; comment3Cookie=thanks a lot . c: This site is awesome :3 works like a charm.. thanks admin.. Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/app/431946152/img/favicon-16x16.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: nginx Date: Sat, 10 Dec 2022 14:41:40 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/8.0.8RC1 Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14923) Size: 20003 Md5: 94d17b53e2271b5c8ee9d31c9c3a57d2 Sha1: 58af2bb33446f359b61abecf0e9260f58a1cfe6f Sha256: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d Alerts: Blocklists: - quad9: Sinkholed
GET /matomo.js HTTP/1.1 Host: track.enigmacdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: track.enigmacdn.com/matomo.js FQDN: track.enigmacdn.com IP: 91.223.82.61 HASH: f7a1fe5cff057b3d4c769d456085425932f39e43050ba4ff77fd9e0a66b57881 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Sat, 10 Dec 2022 14:41:40 GMT Last-Modified: Wed, 26 May 2021 02:21:35 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"60adb0af-f330" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (1404) Size: 20210 Md5: 8cd72e4f9c8225acdd40bf7dc2406e19 Sha1: 0cd39b8143536dfb54d1224e502ccc6567081204 Sha256: f7a1fe5cff057b3d4c769d456085425932f39e43050ba4ff77fd9e0a66b57881
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a35e53b0a234bc0073c60157245bcac2e5f4f0bc0f08c57428b6a7e488e46f97 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A35E53B0A234BC0073C60157245BCAC2E5F4F0BC0F08C57428B6A7E488E46F97" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15704 Expires: Sat, 10 Dec 2022 19:03:24 GMT Date: Sat, 10 Dec 2022 14:41:40 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a2da865741e6e2a09b5698eae1cdb3ff Sha1: 40911ac1e9efb14d6f007fc3f286740ed58974a3 Sha256: a35e53b0a234bc0073c60157245bcac2e5f4f0bc0f08c57428b6a7e488e46f97
GET /js15_as.js HTTP/1.1 Host: s10.histats.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s10.histats.com/js15_as.js FQDN: s10.histats.com IP: 46.105.201.240 HASH: 998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1 46.105.201.240 HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 date: Sat, 10 Dec 2022 14:33:22 GMT etag: "-375139978" last-modified: Thu, 16 Apr 2020 10:44:16 GMT x-request-id: 681214772 content-encoding: br x-cdn-pop: sbg x-cdn-pop-ip: 137.74.120.0/27 x-cacheable: Matched cache accept-ranges: bytes content-length: 4364 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (11440), with no line terminators Size: 4364 Md5: ed192092c129db6123a3397855f42619 Sha1: 067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e Sha256: 998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.gstatic.com/images/branding/product/1x/translate_24 (...) FQDN: www.gstatic.com IP: 142.250.74.35 HASH: 5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99 142.250.74.35 HTTP/2 200 OK content-type: image/png accept-ranges: bytes vary: Origin cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 846 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 10 Dec 2022 13:16:20 GMT expires: Sun, 10 Dec 2023 13:16:20 GMT cache-control: public, max-age=31536000 last-modified: Thu, 14 Oct 2021 09:08:00 GMT age: 5120 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data Size: 846 Md5: e9cd262114358f26b7608b56905185dc Sha1: 6dbde0a96deaab2b529723ce26c62043cf9180ab Sha256: 5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /stats/0.php?4515739&@f16&@g1&@h1&@i1&@j1670683299624&@k0&@l1&@mRobux%20Generator%20Online&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:35307158&@b3:1670683300&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fgaminghelper.co%2Fapp%2F431946152%2Fcheats-to-type-in-roblox-game-hack&@w HTTP/1.1 Host: s4.histats.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s4.histats.com/stats/0.php?4515739&@f16&@g1&@h1&@i1&@j1 (...) FQDN: s4.histats.com IP: 149.56.240.130 HASH: 8e81955dee6b45e4c5f2bb1f59a4560ad3e0f98338437f0fa312e96826821fa2 149.56.240.130 HTTP/1.1 200 OK Content-Type: text/html;charset=UTF-8 Date: Sat, 10 Dec 2022 14:41:41 GMT Content-Length: 51 Connection: close --- Additional Info --- Magic: ASCII text, with no line terminators Size: 51 Md5: 32fb7dc27559f15505a0bc1c7af753ed Sha1: 450b195bee1cfbfb29dcbf5848c8aa8f86355bc7 Sha256: 8e81955dee6b45e4c5f2bb1f59a4560ad3e0f98338437f0fa312e96826821fa2
POST /matomo.php?action_name=Robux%20Generator%20Online&idsite=1&rec=1&r=944388&h=14&m=41&s=39&url=https%3A%2F%2Fgaminghelper.co%2Fapp%2F431946152%2Fcheats-to-type-in-roblox-game-hack&_id=e6dfd0e6e20a55ad&_idn=1&_refts=0&send_image=0&cookie=1&res=1280x1024&pv_id=fAl2gg&pf_net=186&pf_srv=50&pf_tfr=31&pf_dm1=657 HTTP/1.1 Host: track.enigmacdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=utf-8 Content-Length: 0 Origin: https://gaminghelper.co Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: track.enigmacdn.com/matomo.php?action_name=Robux%20Gene (...) FQDN: track.enigmacdn.com IP: 91.223.82.61 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 91.223.82.61 HTTP/1.1 204 No Response Content-Type: text/html; charset=UTF-8 Server: nginx Date: Sat, 10 Dec 2022 14:41:41 GMT Content-Length: 0 Connection: keep-alive Keep-Alive: timeout=60 X-Powered-By: PHP/8.0.8RC1 Access-Control-Allow-Origin: https://gaminghelper.co Access-Control-Allow-Credentials: true --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7979 Expires: Sat, 10 Dec 2022 16:54:40 GMT Date: Sat, 10 Dec 2022 14:41:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d35fcd5d7e74c530535b18d57ed5f587 Sha1: 3b9bf9e02593b63108515f4df7cae57ce62145e7 Sha256: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7979 Expires: Sat, 10 Dec 2022 16:54:40 GMT Date: Sat, 10 Dec 2022 14:41:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d35fcd5d7e74c530535b18d57ed5f587 Sha1: 3b9bf9e02593b63108515f4df7cae57ce62145e7 Sha256: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7979 Expires: Sat, 10 Dec 2022 16:54:40 GMT Date: Sat, 10 Dec 2022 14:41:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d35fcd5d7e74c530535b18d57ed5f587 Sha1: 3b9bf9e02593b63108515f4df7cae57ce62145e7 Sha256: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7979 Expires: Sat, 10 Dec 2022 16:54:40 GMT Date: Sat, 10 Dec 2022 14:41:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d35fcd5d7e74c530535b18d57ed5f587 Sha1: 3b9bf9e02593b63108515f4df7cae57ce62145e7 Sha256: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7979 Expires: Sat, 10 Dec 2022 16:54:40 GMT Date: Sat, 10 Dec 2022 14:41:41 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d35fcd5d7e74c530535b18d57ed5f587 Sha1: 3b9bf9e02593b63108515f4df7cae57ce62145e7 Sha256: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8732123d-ded0-4486-9019-0d87264f6c0e.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: e0a9301c5be849e116f1d98b819c2eb91f73e74d836f3e099f2cd266e8f0bb36 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 12743 x-amzn-requestid: 6ed8a5f4-45cd-45bd-9820-df450f612c34 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: c5eK4E_-IAMFf3Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6393aa45-31d928fc430577b463a68bd0;Sampled=0 x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: nD0bWCjTU6LNSsNYCNqT4rt7okG1dmPPWiw4FXSi_uNWpcZnxhZgKw== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google date: Fri, 09 Dec 2022 22:03:37 GMT age: 59884 etag: "68bac75574641febc463bd0819392dae2da15811" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12743 Md5: 0df452512aae4c4c1f4a2cd263b16dfd Sha1: 68bac75574641febc463bd0819392dae2da15811 Sha256: e0a9301c5be849e116f1d98b819c2eb91f73e74d836f3e099f2cd266e8f0bb36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3481e34b-ab9e-46b1-acd8-f9e532860477.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 786db0da1198986aeba9aa420a7c89b5b27a09bc48c3806769342159f116705d 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 12047 x-amzn-requestid: a8082dc0-21cd-4fd8-8c3b-50a0b03b6200 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cy3_rGiaIAMFnLg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-639106ca-2a0096650760715e6201b97a;Sampled=0 x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 81ITdqoxk0_9sH9c9Nu9t50Ke2BDkI9RJqxFPziuYZwcpwnmpwfWYQ== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google date: Fri, 09 Dec 2022 22:26:51 GMT age: 58490 etag: "4bccc3032f7427d881a49250e576c05dd7d5614f" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12047 Md5: d3acf5a494a6bb8b26858974ede70a33 Sha1: 4bccc3032f7427d881a49250e576c05dd7d5614f Sha256: 786db0da1198986aeba9aa420a7c89b5b27a09bc48c3806769342159f116705d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c3a6c54-dd12-46c8-8acb-7c425ab40af5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 96dcb266eaec98f6305071598df3b49ca93234e0e8b1c8c9801a1a99d7f5c817 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7811 x-amzn-requestid: dc97f86e-a29c-4139-887a-e775a0327280 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: c5eK4EH_oAMFYqw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6393aa45-3a38086160ac180b3f8cf5d8;Sampled=0 x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:05 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: TM_0Q_GmJDuXth6JpRvm_JAZXwT-xFZEjzuMeIzfzBu1J5jQ_Tng9A== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Fri, 09 Dec 2022 21:53:25 GMT age: 60496 etag: "1fbbf8fb328a1406904d6346004e2c89c6ba2419" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7811 Md5: 052b61a3bd1c839e1f5ce37834cad817 Sha1: 1fbbf8fb328a1406904d6346004e2c89c6ba2419 Sha256: 96dcb266eaec98f6305071598df3b49ca93234e0e8b1c8c9801a1a99d7f5c817
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8caef8f-937f-4132-9440-daa516389582.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 86e8e629ffd2efe7c4c86a7e140412dae81a35376cb7f03ee511c6e1d023c788 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9948 x-amzn-requestid: 0b1400a6-7791-468f-a1d5-b46836e7b164 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: c5eMEGNZoAMF7ZA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6393aa4d-124f9a6f03db01a67784657f;Sampled=0 x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:13 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: qPlUjc4Gzc8cFyyQH_3vZoF_k5J61aXPOXozWTO_8txfn11m8Bo5IQ== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google date: Fri, 09 Dec 2022 22:00:16 GMT age: 60085 etag: "4a0377cd21b6ab69f7e45392a547c9846e607464" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9948 Md5: a0cb823bf2991a7047962ee388f00dc0 Sha1: 4a0377cd21b6ab69f7e45392a547c9846e607464 Sha256: 86e8e629ffd2efe7c4c86a7e140412dae81a35376cb7f03ee511c6e1d023c788
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bca8626-2138-4da2-9696-d98a876419a8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 51c74c6aace8a85c5a872f92316c3652b3c8adc68e10a3219d569f68145ad5bf 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7917 x-amzn-requestid: b112af71-c2ff-42e6-89c2-9ddaece537d7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: c5eVdHRIIAMFZyw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6393aa89-676f788c65c57b3b518d6852;Sampled=0 x-amzn-remapped-date: Fri, 09 Dec 2022 21:37:13 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: DJ9VWzpcmMsv7uBft6y2lwHYE-BsVFdrnYOM8UmIXMohQ8slJnD3Mw== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Fri, 09 Dec 2022 21:55:31 GMT etag: "f059d013532bc93a57c2aad6ac183da2e58175aa" age: 60370 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7917 Md5: e8d1390049f58277d508d3ccc6afb942 Sha1: f059d013532bc93a57c2aad6ac183da2e58175aa Sha256: 51c74c6aace8a85c5a872f92316c3652b3c8adc68e10a3219d569f68145ad5bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: f0d3738ec8406958470c8fd152a02a123d7654c30f974c1df5c4977a380c2d62 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10205 x-amzn-requestid: c5704c7a-60c4-402b-8018-5885a8dae971 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cwVM_F9BIAMF3ow= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63900252-3e9573d900714e3250f43e17;Sampled=0 x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: mLTL7L808-OguYGrl3FUvwmFmPQjBPRj7PVfgEheFHWg4g4skoBvOg== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Sat, 10 Dec 2022 00:46:20 GMT age: 50121 etag: "1e492807c665e6e6b24ec6ce19035fdfc6f23b92" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10205 Md5: 45e0c1638ad919bde19731f7987ab064 Sha1: 1e492807c665e6e6b24ec6ce19035fdfc6f23b92 Sha256: f0d3738ec8406958470c8fd152a02a123d7654c30f974c1df5c4977a380c2d62
GET /img/cf/Luxembourg.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Cookie: username1Cookie=Lia Piazza; username2Cookie=Batista; username3Cookie=Ermes; comment1Cookie=wow! works! FREAKING AAMZING!! 400000 Cash; comment2Cookie=thanks! I was looking for this in a long time! ..; comment3Cookie=thanks a lot . c: This site is awesome :3 works like a charm.. thanks admin..; _pk_id.1.166e=e6dfd0e6e20a55ad.1670683300.; _pk_ses.1.166e=1; HstCfa4515739=1670683299624; HstCla4515739=1670683299624; HstCmu4515739=1670683299624; HstPn4515739=1; HstPt4515739=1; HstCnv4515739=1; HstCns4515739=1; timePosted11Cookie=47434; timePosted22Cookie=36542; timePosted33Cookie=35736 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Luxembourg.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 85b013b3042273350d8888c17d86f89e525e34b466171a2eccd3d1c7eef122d5 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:46 GMT Content-Length: 1189 Last-Modified: Fri, 03 Sep 2021 06:32:38 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c186-4a5" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 1189 Md5: e8c859efba1a8077f8150da6c51e47f1 Sha1: 9eefba7b18c1d517872bcddf9aa50143e5f0d267 Sha256: 85b013b3042273350d8888c17d86f89e525e34b466171a2eccd3d1c7eef122d5 Alerts: Blocklists: - quad9: Sinkholed
GET /img/cf/Australia.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/cheats-to-type-in-roblox-game-hack Cookie: username1Cookie=Lia Piazza; username2Cookie=Batista; username3Cookie=Ermes; comment1Cookie=wow! works! FREAKING AAMZING!! 400000 Cash; comment2Cookie=thanks! I was looking for this in a long time! ..; comment3Cookie=thanks a lot . c: This site is awesome :3 works like a charm.. thanks admin..; _pk_id.1.166e=e6dfd0e6e20a55ad.1670683300.; _pk_ses.1.166e=1; HstCfa4515739=1670683299624; HstCla4515739=1670683299624; HstCmu4515739=1670683299624; HstPn4515739=1; HstPt4515739=1; HstCnv4515739=1; HstCns4515739=1; timePosted11Cookie=48434; timePosted22Cookie=37542; timePosted33Cookie=36736 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Australia.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: fd95fecd771de335148c8bfa9ae7623d432bf6ec237c61cc42b03203c7752736 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Sat, 10 Dec 2022 14:41:47 GMT Content-Length: 2236 Last-Modified: Fri, 03 Sep 2021 06:32:01 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c161-8bc" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 2236 Md5: 6e02b268dd832cf821f5a979231df494 Sha1: 303ccd6186acd8a641d1ab745e12028f75d1cd8e Sha256: fd95fecd771de335148c8bfa9ae7623d432bf6ec237c61cc42b03203c7752736 Alerts: Blocklists: - quad9: Sinkholed
GET /css?family=Open+Sans:300,400,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Open+Sans:300,400,700 FQDN: fonts.googleapis.com IP: 142.250.74.106 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sat, 10 Dec 2022 14:41:40 GMT date: Sat, 10 Dec 2022 14:41:40 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1 Host: maxcdn.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awe (...) FQDN: maxcdn.bootstrapcdn.com IP: 104.18.11.207 104.18.11.207 HTTP/2 200 OK content-type: text/css; charset=utf-8 date: Sat, 10 Dec 2022 14:41:40 GMT vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE cdn-edgestorageid: 565, 617, 617 last-modified: Mon, 25 Jan 2021 22:04:54 GMT cdn-cachedat: 2021-06-08 19:04:20 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cache-control: public, max-age=31919000 timing-allow-origin: * cross-origin-resource-policy: cross-origin access-control-allow-origin: * x-content-type-options: nosniff cdn-requestid: e9a84d03a1f7c6aa17012c712a6e5dd5 cdn-status: 200 cdn-cache: HIT cf-cache-status: HIT age: 16127548 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7776be21ee77b517-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---

URL	netcdn.co/app/431946152/cheats-to-type-in-roblox-game-hack
IP	91.223.82.61 (Netherlands)
ASN	#199968 Iws Networks LLC
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-12-10 14:41:50 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	46
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (23)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 91.223.82.61

Last 5 reports on ASN: Iws Networks LLC

Last 5 reports on domain: netcdn.co

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (83)

Overview

Domain Summary (23)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 91.223.82.61

Last 5 reports on ASN: Iws Networks LLC

Last 5 reports on domain: netcdn.co

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (83)

Network Intrusion Detection Systems