Report - www.selcuksportshd105.xyz/

Report Overview

Submitted URL
www.selcuksportshd105.xyz/
IP
104.21.5.28
ASN
#13335 CLOUDFLARENET
Submitted
2022-09-08 13:32:24
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	31 kB	69.16.175.42
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	987 B	1.8 kB	93.184.220.29
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	427 B	746 B	142.250.74.10
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	47 kB	34.120.237.76
whos.amung.us	12687	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	309 B	104.22.75.171
www.selcuksportshd130.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	443 B	928 B	172.67.133.224
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	7.1 kB	23.36.76.226
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.215.56.181
www.selcuksportshd129.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	397 B	1.2 kB	104.21.67.183
iframer.strmrdrfrocf.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	9.9 kB	104.21.39.251
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	512 B	694 B	142.250.74.3
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	75 kB	142.250.74.72
www.trtspor.com.tr	293306	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	746 B	103 kB	85.111.24.216
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.0 kB	10 kB	142.250.74.3
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	56 kB	142.250.74.163
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	488 B	1.2 kB	142.251.1.154
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	486 B	847 B	142.250.74.164
static.cbox.ws	161241	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	385 B	805 B	172.67.128.112
app.selcuksportsuygulama12.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	502 B	830 B	172.67.167.102
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.35
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
www.selcuksportshd105.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	788 B	1.5 kB	172.67.132.207
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.49
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	2.6 kB	104.16.124.175
js.rfp.fout.jp	34450	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	361 B	16 kB	23.32.107.182
www5.cbox.ws	286738	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	495 B	718 B	172.67.128.112
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	4.4 kB	23.36.76.226
cbox.im	193848	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	31 kB	104.21.45.225

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-09-08	medium	selcuksportshd105.xyz	Sinkholed
2022-09-08	medium	strmrdrfrocf.xyz	Sinkholed
2022-09-08	medium	strmrdrfrocf.xyz	Sinkholed
2022-09-08	medium	selcuksportshd105.xyz	Sinkholed
2022-09-08	medium	strmrdrfrocf.xyz	Sinkholed
2022-09-08	medium	strmrdrfrocf.xyz	Sinkholed
2022-09-08	medium	strmrdrfrocf.xyz	Sinkholed
2022-09-08	medium	strmrdrfrocf.xyz	Sinkholed

Files detected

URL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8def29c-7ade-4990-abac-c54befd5dd27.jpeg
IP
34.120.237.76
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
6.8 kB (6825 bytes)
Hash
b945edbea5a30a449e2748fa2f7045f0
56e6ad521061fd8b1dae153b631a79de6166c851
4e87f501f2fb87ee038e18cb7f9f35092512af945d02774f13c9d4e333b85ae9

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (25)

	URL	Size	First Seen	Last Seen
	www.selcuksportshd130.xyz/score_table.php	668 B	2023-03-07	2023-11-11
Pretty URL www.selcuksportshd130.xyz/score_table.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-11-11 21:37:31 Times Seen33 Hash 86ed25cb1d4d4ff8bb15140abdbb9243 37832a89643256ed66fca0bdaa489b9b9d4e72eb a014a425707ff2bb2e4e50c81bf8db1022ffa1cddb182420826744f9e771af0b Loading...

	iframer.strmrdrfrocf.xyz/jquery.220afd743d9e9643852e31a135a9f3ae.js	88 kB	2023-03-07	2024-04-23
Pretty URL iframer.strmrdrfrocf.xyz/jquery.220afd743d9e9643852e31a135a9f3ae.js IP 104.21.39.251 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-23 20:42:24 Times Seen95331 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	iframer.strmrdrfrocf.xyz/levelselector.ee341b104a9c406b73001afe57d16f18.js	28 kB	2023-03-07	2023-03-10
Pretty URL iframer.strmrdrfrocf.xyz/levelselector.ee341b104a9c406b73001afe57d16f18.js IP 104.21.39.251 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-03-10 22:48:33 Times Seen1 Hash ee341b104a9c406b73001afe57d16f18 e3158ab8724ee86369f58e8c10ea72a6a45d2180 19eadee526ee2f17dc7fcf8c426945cf9258462c489de75d0537637146430c40 Loading...

	static.cbox.ws/jsc/jsc_10_1629383500.js	78 kB	2023-03-07	2023-03-07
Pretty URL static.cbox.ws/jsc/jsc_10_1629383500.js IP 172.67.128.112 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:27:24 Last Seen2023-03-07 14:40:19 Times Seen1 Hash 8401ea78ef4cd71fae513505c5f440dc c3128eb75029f98bc3175f65bf0082f938a10202 a036f72be2af61fa73108715a5b67b29e3a501685488dc67d83154bfd08403b6 Loading...

	www.selcuksportshd130.xyz/score_table.php	44 B	2023-03-07	2023-11-11
Pretty URL www.selcuksportshd130.xyz/score_table.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-11-11 21:37:31 Times Seen33 Hash 9b7ce9620d11927a4b704f33cc9499c1 b6908443a4a80d46ce096435c6bfb46c35fb1f7a 69fd2b75a0f349d3363bd1dddb0a0663cbed080a536756cbcdfb415e9e44c5b0 Loading...

	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL ssl.google-analytics.com/ga.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	www.selcuksportshd130.xyz/js/index.js?v=4	4.2 kB	2023-03-07	2024-04-07
Pretty URL www.selcuksportshd130.xyz/js/index.js?v=4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-04-07 18:56:45 Times Seen53 Hash 289f10ed17876ef7232ebecdddfa6ab3 02cfd800378cd3bf109ab5593ed53c758fc3aa19 8cd7b6a72d014e026397b3abddb35957d642c28eec241191c9dcb2c82414a2d7 Loading...

	iframer.strmrdrfrocf.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd129.xyz%2Fimg%2Fmadrid-wp2.jpg	1.1 kB	2023-03-07	2023-03-07
Pretty URL iframer.strmrdrfrocf.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd129.xyz%2Fimg%2Fmadrid-wp2.jpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:39 Last Seen2023-03-07 13:54:39 Times Seen1 Hash c73cb7401777f7786ad2a5c52ad8af07 271378cc46d34e26400d07939c71153d675b4f8a 86aeebaf698c1b83f2c0c6d378e2d2737d54a865593c80e2af409d0c24e1f685 Loading...

	iframer.strmrdrfrocf.xyz/clappr.10a0c239c01882665a0bd2e1d8ea3493.js	525 kB	2023-03-07	2023-03-10
Pretty URL iframer.strmrdrfrocf.xyz/clappr.10a0c239c01882665a0bd2e1d8ea3493.js IP 104.21.39.251 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:13 Last Seen2023-03-10 22:48:33 Times Seen1 Hash 10a0c239c01882665a0bd2e1d8ea3493 4a33359e3d9cdb1c72953cb135876bfe283ee8e0 15aee3d7a1994abe56af8cba69725fca340f6b0067bfe245fcb5735feb65233c Loading...

	iframer.strmrdrfrocf.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd129.xyz%2Fimg%2Fmadrid-wp2.jpg	713 B	2023-03-07	2023-03-10
Pretty URL iframer.strmrdrfrocf.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd129.xyz%2Fimg%2Fmadrid-wp2.jpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-03-10 10:25:31 Times Seen1 Hash 364d2309128583ee71371599b8310207 eb9b82104b8e074355217736bddf4b0bb8539198 3f545095a21006e01315df726656361b8af86423e4d1dff06c76eecbe77b415c Loading...

	www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl	3.0 kB	2023-03-07	2023-03-07
Pretty URL www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl IP 172.67.128.112 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:39 Last Seen2023-03-07 13:54:39 Times Seen1 Hash 8c1aae8f8c9ab404ebdfbec09a796252 71bd2739e89b8cbec5907b8a3851b28cc970e74e fdc73a0a52e22513794a9b1179b30d200cb1ddac5e07cc1280f1b35777a5ec83 Loading...

	www.selcuksportshd130.xyz/score_table.php	118 B	2023-03-07	2023-11-11
Pretty URL www.selcuksportshd130.xyz/score_table.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-11-11 21:37:31 Times Seen29 Hash c1a007396cbb4c009724961fb1cb3056 f1d81b84b3f2457fc07db734a9f60af70ef760f9 d5d1fb94e9801601b863470dd032bf887e49490ea56fd4c1c618488cc48d3eb0 Loading...

	code.jquery.com/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-04-23
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-23 20:51:22 Times Seen260738 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	www.selcuksportshd130.xyz/	139 B	2023-03-07	2023-11-11
Pretty URL www.selcuksportshd130.xyz/ IP 172.67.133.224 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-11-11 16:54:52 Times Seen30 Hash 9192ef00ea2906eb09a299ca8bd018c8 8508aef23cc21430ec4e99654f12a1af8198ace1 d814e6b0bd9e3d7e6b605040637d409b7f660090922eee154a778abc1d67cddb Loading...

	www.selcuksportshd130.xyz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-04-23
Pretty URL www.selcuksportshd130.xyz/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-23 20:07:08 Times Seen54718 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	iframer.strmrdrfrocf.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd129.xyz%2Fimg%2Fmadrid-wp2.jpg	351 B	2023-03-07	2024-04-07
Pretty URL iframer.strmrdrfrocf.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd129.xyz%2Fimg%2Fmadrid-wp2.jpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-04-07 18:56:44 Times Seen34 Hash 3278ffab81184f4040fce884245bb4a6 4cecfbee2dadddf41f31f6f23b7a7f7e0fadf548 d8052f37f7eac83641c7b45c211ed7484e615867cf9981882ac882647ba89e73 Loading...

	iframer.strmrdrfrocf.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd129.xyz%2Fimg%2Fmadrid-wp2.jpg	522 B	2023-03-07	2023-04-05
Pretty URL iframer.strmrdrfrocf.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd129.xyz%2Fimg%2Fmadrid-wp2.jpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-04-05 02:00:58 Times Seen4 Hash dacc5f96cbf29799d16f783bcf6d1e90 5345e0d5ce261f9708260689e107ee22eb84e0c4 cc32bcf7343686a50e65db8265d597b4ff2d54df416aa8a172820edaebc0fd5f Loading...

	js.rfp.fout.jp/rfp-infeed.js	55 kB	2023-03-07	2023-04-26
Pretty URL js.rfp.fout.jp/rfp-infeed.js IP 23.32.107.182 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:13 Last Seen2023-04-26 20:59:24 Times Seen14 Hash c79747350e311d848933ced8269602a0 a0bd60105cca6d0be757a969b81de64d9dc2c7f0 c9ef9b71a636842dd1bca19028eaefc68e38d9c6cf566dabdbc6252012d9dfb0 Loading...

	iframer.strmrdrfrocf.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd129.xyz%2Fimg%2Fmadrid-wp2.jpg	280 B	2023-03-07	2023-03-07
Pretty URL iframer.strmrdrfrocf.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd129.xyz%2Fimg%2Fmadrid-wp2.jpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:39 Last Seen2023-03-07 13:54:39 Times Seen1 Hash 60cadd80bf367fd2feea467ede52e291 e35dc21f1c1e9f495b7d53486ba7058667da7dd4 be6779b33c792f15757e532de4fc9cbb679a16bb0bf316cc7b25d8011c47b3ab Loading...

	unpkg.com/swiper/swiper-bundle.min.js	143 kB	2023-03-07	2024-04-21
Pretty URL unpkg.com/swiper/swiper-bundle.min.js IP 104.16.124.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:47 Last Seen2024-04-21 21:57:19 Times Seen271 Hash c44016a358a170c6e50897090ac26e4d 286b647921b2f4f5915a3b4ed82b304c4d4da216 cc52733b73530cdb8ff7665895e0b1be88f67f1dcf738ec1ca3ec404f2723f97 Loading...

	iframer.strmrdrfrocf.xyz/keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js	9.7 kB	2023-03-07	2023-03-07
Pretty URL iframer.strmrdrfrocf.xyz/keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js IP 104.21.39.251 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:39 Last Seen2023-03-07 13:54:39 Times Seen1 Hash 4eabea4266da6a89fc842e0598b7536b cf4c1dd51e91b5836a067e86aed889d450f8e313 ad159fec7990c7e26348ba0023300d929b3d5b65846ef8ba2825b4d0942878d4 Loading...

	www.trtspor.com.tr/static/js/jquery.md5.js	9.6 kB	2023-03-07	2024-01-29
Pretty URL www.trtspor.com.tr/static/js/jquery.md5.js IP 85.111.24.216 ASN #9121 Turk Telekom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-01-29 15:36:01 Times Seen123 Hash c629663d7fe3432af0760b26d4b546e7 0abc4b9564d71cf8d23b7f5b661552092c8e7d67 41f41aa3f32ea20a820c36488c40e2acb8f022c35d91c69a1d1c75e63edebf54 Loading...

	www.trtspor.com.tr/static/js/jquery.js	93 kB	2023-03-07	2024-01-29
Pretty URL www.trtspor.com.tr/static/js/jquery.js IP 85.111.24.216 ASN #9121 Turk Telekom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-01-29 22:49:15 Times Seen79 Hash 4ec9f95ecc0911c41abb247dfff887b4 022b0ffc6dd4a825ff56d9cfaf69f75c5a7210d4 7200a2f4c45a1c5f9049777223c7361afb33b36945e97858d0ba4e49ea85cf0b Loading...

	www.selcuksportshd130.xyz/score_table.php	1.8 kB	2023-03-07	2023-11-11
Pretty URL www.selcuksportshd130.xyz/score_table.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-11-11 21:37:31 Times Seen18 Hash 7fb315d37befefd6692b5ed7ce7ad38f c9897f247e4eb44543ba1f7cee40be19f319c2ad 7ea89249c52d5e6ff3e2171104dd28923e487cc12f6aa6c901de497a89f527ad Loading...

	www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1	211 kB	2023-03-07	2023-03-07
Pretty URL www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:39 Last Seen2023-03-07 13:54:39 Times Seen1 Hash 850fa402ebb0ace5cf64a0b6ccc5cae2 7beeff5509ff20b4baa302322546e3bf4d5414e8 8e2bcea6ebba721c5381f01067afbd60622a1f82015e4bc409d74ea1d0e86206 Loading...

HTTP Transactions (79)

URL IP Response Size

www.selcuksportshd105.xyz/

172.67.132.207

301 Moved Permanently

0 B

URL HTTP/1.1
www.selcuksportshd105.xyz/
IP
172.67.132.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.selcuksportshd105.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Sep 2022 13:32:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 14:32:13 GMT
Location: https://www.selcuksportshd105.xyz/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dpgp3AYpojPxs%2BlbFj6Sf9KvvoeAoNXOJ42VM5k4fyDt5y5tbBCToDeOgoBNcSnI0b%2B80DbzVvmi5NLaOlFPO9mRBRydPcOl6DIwqo5BI2vwG1mm6xVydeysmI5KDBjAUArXnLTzegcsPxPT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 74780c873f00b515-OSL
alt-svc: h2=":443"; ma=60

firefox.settings.services.mozilla.com/v1/

143.204.55.35

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 13:05:17 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZhCXj4wniCjU3PARzQzK9OKoqvhkI8wPquUoLtSdNYofW4Z3W9bpnw==
Age: 1616

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13308
Expires: Thu, 08 Sep 2022 17:14:01 GMT
Date: Thu, 08 Sep 2022 13:32:13 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain

143.204.55.49

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP
143.204.55.49:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Pmz8f_SWLGjoYzy8De1VvEouylgQobBPDdMshBqOIjlWph8Hgo2TmQ==
age: 35139
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 13:32:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
75c6696e6a9648f2503120f5c923ea9a
834a9cd8436d93f7f11005a09963fab079c81a43
6d5b554664fda018ac94c655861c6035ac72c738d638b0aa662e7dfa492e9c7f

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6D5B554664FDA018AC94C655861C6035AC72C738D638B0AA662E7DFA492E9C7F"
Last-Modified: Thu, 08 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Thu, 08 Sep 2022 19:31:19 GMT
Date: Thu, 08 Sep 2022 13:32:13 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
75c6696e6a9648f2503120f5c923ea9a
834a9cd8436d93f7f11005a09963fab079c81a43
6d5b554664fda018ac94c655861c6035ac72c738d638b0aa662e7dfa492e9c7f

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6D5B554664FDA018AC94C655861C6035AC72C738D638B0AA662E7DFA492E9C7F"
Last-Modified: Thu, 08 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Thu, 08 Sep 2022 19:31:19 GMT
Date: Thu, 08 Sep 2022 13:32:13 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.35

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 08 Sep 2022 12:38:18 GMT
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 13:19:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Kn1JHJ3aaQY0ApXyWpZDAC2q4dQlDAoV2rgo739ZimYaFVbuNH1gKQ==
Age: 3236

code.jquery.com/jquery-3.6.0.min.js

69.16.175.42

200 OK

31 kB

URL HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1662643934.dop068.sk1.t,1662643934.cds264.sk1.hn,1662643934.cds210.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
652bdaaaca09a66fc9a260163eee7aeb
f59f82dd2c189cdff5c641ff7c53c5f257e1f2d2
bbaf18a14748bb922b9bd19125c78310a564b1aebb7de8f30af0be6fa390e7da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5690
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Last-Modified: Thu, 08 Sep 2022 11:57:24 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471

www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1

142.250.74.72

200 OK

75 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1
IP
142.250.74.72:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (17899)
Size
75 kB (74686 bytes)
Hash
6893cdfcd0793b9b1e2c95ff41806332
db1167b489aebef88e8305cc3f591bf4aadb0285
6e16fd84fae2d920a881f26ddc9a92010cae2a27ef46fe4b6a0091bbd1281bc8

HTTP Headers

GET /gtag/js?id=G-CVN78DGZN1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Sep 2022 13:32:14 GMT
expires: Thu, 08 Sep 2022 13:32:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74686
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
652bdaaaca09a66fc9a260163eee7aeb
f59f82dd2c189cdff5c641ff7c53c5f257e1f2d2
bbaf18a14748bb922b9bd19125c78310a564b1aebb7de8f30af0be6fa390e7da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b63f97bc3dce37e8ee6a0c9fcae468fe
cc70326582c0016d7434d0553486734266e57e71
6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

34.215.56.181

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.215.56.181:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W6TDihcXSzXfDcnyQTnLhg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Jcau5IdjdsJm4XgMlPHWvlTtyck=

fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGIVzY4SY.woff2

142.250.74.163

200 OK

6.7 kB

URL HTTP/2
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGIVzY4SY.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 6660, version 1.0\012- data
Size
6.7 kB (6660 bytes)
Hash
5a3e69c4263292b8d1608b0a0265b447
fc59e4f20fa9620636f53b30f4f993af679399ea
8f8ebc7e5d94244c2499c5f4c10c4d28639ce2d6126e52de3e9842ce64977391

HTTP Headers

GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGIVzY4SY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd130.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 08:31:15 GMT
expires: Wed, 06 Sep 2023 08:31:15 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:44:43 GMT
content-type: font/woff2
age: 190859
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2

142.250.74.163

200 OK

6.8 kB

URL HTTP/2
fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 6776, version 1.0\012- data
Size
6.8 kB (6776 bytes)
Hash
ca9745459de645cbea7eb8a9f671cac2
8156e13525f20c77e0d52e1850dac48bc0dffc7c
05e415164465aa7031a976c10aeb71e4fa19bb4958104c769e32c47f9f05c1a1

HTTP Headers

GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd130.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 23:45:25 GMT
expires: Thu, 07 Sep 2023 23:45:25 GMT
cache-control: public, max-age=31536000
age: 49609
last-modified: Wed, 27 Apr 2022 16:14:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12136, version 1.0\012- data
Size
12 kB (12136 bytes)
Hash
5d7c6bb8fd4fc992c54e596ab7433d5d
35fd6e4c125235cb7f9aa6e297da4b64ae45b06a
dd870101ad4e95d687a2eb734707b0dd7c20808f76d7be77a71a5d13cf99401c

HTTP Headers

GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd130.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:28:29 GMT
expires: Thu, 07 Sep 2023 19:28:29 GMT
cache-control: public, max-age=31536000
age: 65025
last-modified: Wed, 27 Apr 2022 15:39:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2

142.250.74.163

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
data
Size
13 kB (13265 bytes)
Hash
e4deefcadc7380c961b87de87b3789dc
b4fe50cab9c8f7aa47b90baed43234073b9fa173
464f94dd1ed89ffaf9d87a8c0b8cbe96878627c015ba5e36e8bf55b4bee2fe86

HTTP Headers

GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd130.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:28:33 GMT
expires: Thu, 07 Sep 2023 19:28:33 GMT
cache-control: public, max-age=31536000
age: 65021
last-modified: Wed, 27 Apr 2022 15:47:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2

142.250.74.163

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12372, version 1.0\012- data
Size
12 kB (12372 bytes)
Hash
0ef99cf07a2a261ab43d5dc1937ffb27
bd39f9cd13ef2a6f912dcba8fa916fc67b4a19d9
557f6d0883db85be712c3a77baa38875ddf99ecbdfd6fec98e5c0b1f7a0e1532

HTTP Headers

GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd130.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:28:22 GMT
expires: Thu, 07 Sep 2023 19:28:22 GMT
cache-control: public, max-age=31536000
age: 65032
last-modified: Wed, 27 Apr 2022 16:19:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
642e188ca9769aa9e025e18325035da8
3c7745044a30ccbb31e3a6e352185a00f4fa69fe
72f6ad4ca4cda790b64697bca01232e5eb044f4d46c8d1f01a4a0dbf8e407403

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "72F6AD4CA4CDA790B64697BCA01232E5EB044F4D46C8D1F01A4A0DBF8E407403"
Last-Modified: Tue, 06 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16004
Expires: Thu, 08 Sep 2022 17:58:58 GMT
Date: Thu, 08 Sep 2022 13:32:14 GMT
Connection: keep-alive

unpkg.com/swiper/swiper-bundle.min.js

104.16.124.175

302 Found

402 B

URL HTTP/2
unpkg.com/swiper/swiper-bundle.min.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
402 B (402 bytes)
Hash
5c338690389407cb52b8790bc470d1b7
e24cf8607c0bb0f78d07523aeebecb74e27d783f
8d548aac5d583d36bffd201962a0c5d96dd8ba1d92044c60fbf18f6c0de89a0a

HTTP Headers

GET /swiper/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@8.3.2/swiper-bundle.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GCEMH1VQZ7WJ18ZZEVTBMNTQ-fra
cf-cache-status: HIT
age: 298
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8cfaf6fab8-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
db3d2d40f373a7ef445874e65d7f0397
087a4802f28647e830222fafc67bda30dec5fc31
4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

js.rfp.fout.jp/rfp-infeed.js

23.32.107.182

200 OK

15 kB

URL HTTP/2
js.rfp.fout.jp/rfp-infeed.js
IP
23.32.107.182:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (54214)
Size
15 kB (14823 bytes)
Hash
a2a27174d303ab04fb5b1e166d0b054f
8fe315b365e69ca138eed86d86ca4795319d1b64
caed7a1742ccc02bf163bcdc499154e30d92bb555ee7d343e1d60e0b8cc10b97

HTTP Headers

GET /rfp-infeed.js HTTP/1.1
Host: js.rfp.fout.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdtLfaO18vBHFGVOTELsLYxwbSDnpmY8nJZx3pj6DGCwNguDMBQuj_YINW4ReKbMzbeeNDJbH_OzVEgKteAumTMc0A
last-modified: Mon, 05 Sep 2022 02:06:28 GMT
etag: "a2a27174d303ab04fb5b1e166d0b054f"
x-goog-generation: 1662343588239694
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 14823
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=1JnjJg==, md5=oqJxdNMDqwT7Wx4WbQsFTw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 14823
server: UploadServer
cache-control: public, max-age=1800
expires: Thu, 08 Sep 2022 14:02:14 GMT
date: Thu, 08 Sep 2022 13:32:14 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
642e188ca9769aa9e025e18325035da8
3c7745044a30ccbb31e3a6e352185a00f4fa69fe
72f6ad4ca4cda790b64697bca01232e5eb044f4d46c8d1f01a4a0dbf8e407403

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "72F6AD4CA4CDA790B64697BCA01232E5EB044F4D46C8D1F01A4A0DBF8E407403"
Last-Modified: Tue, 06 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16004
Expires: Thu, 08 Sep 2022 17:58:58 GMT
Date: Thu, 08 Sep 2022 13:32:14 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
078b5434d58bcb9ce68b19757fa1d766
e949c7ab3cac3e973bceae1da17679fbf74996ba
80d2260137aae93c6a3b7fa92e8dd15cffedaa7804bed4b009345eabc63ece9d

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "80D2260137AAE93C6A3B7FA92E8DD15CFFEDAA7804BED4B009345EABC63ECE9D"
Last-Modified: Wed, 07 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Sep 2022 19:32:14 GMT
Date: Thu, 08 Sep 2022 13:32:14 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
9affdabd3d7c41f9a9e65578979b5e40
2378ed4d2a2f0ab9f43488178a2038df8acb0bc2
952c0237719a3f38e131eb43dd3798b5411919775ac4ecc4a02340e2a3e85247

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3040
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Last-Modified: Thu, 08 Sep 2022 12:41:35 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
9affdabd3d7c41f9a9e65578979b5e40
2378ed4d2a2f0ab9f43488178a2038df8acb0bc2
952c0237719a3f38e131eb43dd3798b5411919775ac4ecc4a02340e2a3e85247

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3040
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Last-Modified: Thu, 08 Sep 2022 12:41:35 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f655c981475af9bfc852a4fdaf60ed6d
ae2f656ed6389263eaf4fb7739792e1c192c340e
65d47cc077623912647c293d80a5a7c22764411bea0322634659f98b9fb5cdef

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D47CC077623912647C293D80A5A7C22764411BEA0322634659F98B9FB5CDEF"
Last-Modified: Wed, 07 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5087
Expires: Thu, 08 Sep 2022 14:57:02 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f655c981475af9bfc852a4fdaf60ed6d
ae2f656ed6389263eaf4fb7739792e1c192c340e
65d47cc077623912647c293d80a5a7c22764411bea0322634659f98b9fb5cdef

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D47CC077623912647C293D80A5A7C22764411BEA0322634659F98B9FB5CDEF"
Last-Modified: Wed, 07 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5111
Expires: Thu, 08 Sep 2022 14:57:26 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive

www.trtspor.com.tr/static/js/jquery.md5.js

85.111.24.216

200 OK

9.6 kB

URL HTTP/2
www.trtspor.com.tr/static/js/jquery.md5.js
IP
85.111.24.216:0
ASN
#9121 Turk Telekom

File type
ASCII text
Size
9.6 kB (9606 bytes)
Hash
c629663d7fe3432af0760b26d4b546e7
0abc4b9564d71cf8d23b7f5b661552092c8e7d67
41f41aa3f32ea20a820c36488c40e2acb8f022c35d91c69a1d1c75e63edebf54

HTTP Headers

GET /static/js/jquery.md5.js HTTP/1.1
Host: www.trtspor.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: application/javascript
content-length: 9606
last-modified: Mon, 16 Sep 2019 09:15:34 GMT
etag: "5d7f52b6-2586"
expires: Thu, 08 Sep 2022 14:02:15 GMT
cache-control: max-age=1800
x-node: script
x-worker: 7566
accept-ranges: bytes
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
57b76c2eaa40c77778280f75772a8971
7a21423b8f9efeb8f921f95a91606870ee8334d6
94f718b131c436658c4b592c006161071617a3deb8d9170161af0119462a1398

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "94F718B131C436658C4B592C006161071617A3DEB8D9170161AF0119462A1398"
Last-Modified: Mon, 05 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Thu, 08 Sep 2022 14:21:02 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive

cbox.im/i/WUfMg.c100.jpg

104.21.45.225

200 OK

3.3 kB

URL HTTP/2
cbox.im/i/WUfMg.c100.jpg
IP
104.21.45.225:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 100x100, components 3\012- data
Size
3.3 kB (3346 bytes)
Hash
093752ca2f0eb59fb0ec549c7d699235
e55e0459a1adad326582da7bcff1d75200239adc
8f7723bfa7c517b9f6561cc341e8a885eeaf5465b5379ff5bc46781c28ea1c3d

HTTP Headers

GET /i/WUfMg.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: image/jpg
x-cached: 1
expires: Sat, 17 Sep 2022 17:17:24 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1800891
last-modified: Thu, 18 Aug 2022 17:17:24 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GSycUad75Dy0tHClpzl7uc1GnDiLsyHxcebkd29OTA730BnEJ8RRTSIW7TKAm0xPJSfQ7w6qIUwKpGhA7JsBLt7XvFbgcEYTfRXGZ1A%2FgOxfU2aD6mLGBNcW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74780c9228a6b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.selcuksportshd129.xyz/img/madrid-wp2.jpg

104.21.67.183

301 Moved Permanently

482 B

URL HTTP/2
www.selcuksportshd129.xyz/img/madrid-wp2.jpg
IP
104.21.67.183:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
482 B (482 bytes)
Hash
8f2859c07a129d7a38f17f1288d5e785
307fcdbdcc41ede58197318f13fe1a75dff423cc
7295fee0b276ddbb8fd23c7c09da5e55f4d9d5d792a91c5f0f95305e128b3816

HTTP Headers

GET /img/madrid-wp2.jpg HTTP/1.1
Host: www.selcuksportshd129.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: text/html
location: https://www.selcuksportshd130.xyz/
cf-cache-status: HIT
age: 359
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YHKbFLlSaFbnrAv2olUCGY5G0sUxFebfTVxedIYULbZ4QacdiuBTAEu1WfX4djtFc7KtpPQcMhn0Ml0jKoe%2FG%2FB78xKPfVZ0LEFV5XjxOcALC%2FnENUKNzB3IyuwAoKYwdV1jvfnYulgJ3FBp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c932aa4b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.trtspor.com.tr/static/js/jquery.js

85.111.24.216

200 OK

93 kB

URL HTTP/2
www.trtspor.com.tr/static/js/jquery.js
IP
85.111.24.216:0
ASN
#9121 Turk Telekom

File type
Unicode text, UTF-8 text, with very long lines (65479)
Size
93 kB (92794 bytes)
Hash
4ec9f95ecc0911c41abb247dfff887b4
022b0ffc6dd4a825ff56d9cfaf69f75c5a7210d4
7200a2f4c45a1c5f9049777223c7361afb33b36945e97858d0ba4e49ea85cf0b

HTTP Headers

GET /static/js/jquery.js HTTP/1.1
Host: www.trtspor.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: application/javascript
content-length: 92794
last-modified: Sat, 12 Oct 2013 15:24:23 GMT
etag: "525969a7-16a7a"
expires: Thu, 08 Sep 2022 14:02:15 GMT
cache-control: max-age=1800
x-node: script
x-worker: 7566
accept-ranges: bytes
X-Firefox-Spdy: h2

cbox.im/i/4UrBC.c100.jpg

104.21.45.225

200 OK

3.9 kB

URL HTTP/2
cbox.im/i/4UrBC.c100.jpg
IP
104.21.45.225:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 100x100, components 3\012- data
Size
3.9 kB (3856 bytes)
Hash
16186b8f9fec1f185267f1bb49cfadbc
851132c9ae8ec9a732f7e490f7d9e0416d8ec136
79fb34ee0c0e84e0e8362fef7b3da9ee4576229cd87198012c54e8f21bb05560

HTTP Headers

GET /i/4UrBC.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: image/jpg
x-cached: 1
expires: Sat, 17 Sep 2022 17:17:24 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1800891
last-modified: Thu, 18 Aug 2022 17:17:24 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1SfKQkUl3I61DoWjB%2Fvt8%2BsElk%2BV%2FnCD%2FQ8ago3icTwWy%2Bji1iYcI14TqK7FXExSX8AcIe7w802r63TZYnZN9bC82Igvn%2Fu53OvR%2FXU8JhJJ3OQNeB3L9XXA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74780c9238b7b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116

142.251.1.154

302 Found

369 B

URL HTTP/2
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116
IP
142.251.1.154:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
369 B (369 bytes)
Hash
bc3da7cd5fb1712d391471500ad80c7a
52df739dd7ace2a7d90eb918f2bf4bd266e82f65
2421b9e927828a0d15cafe9681feedcc561126ce833970965f0b1b8c0ebef4fb

HTTP Headers

GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd130.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 08 Sep 2022 13:32:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 369
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de50d39318f58f490483c86aecd38e4c
f92177f493cb7bab9c5ce67f6b41f9214920907d
8bca037d0d46ddd72b4c1bbfc2829f96bc9e7bfb28724af3010f1441d14b7180

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cbox.im/i/JqIX7.c100.png

104.21.45.225

200 OK

18 kB

URL HTTP/2
cbox.im/i/JqIX7.c100.png
IP
104.21.45.225:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
18 kB (17539 bytes)
Hash
b0ed25c25e0076e5422a57d0e099ecae
d14141802bd3608dc2ae240eb8af0c2171382264
68b8b5b89f4b1512d428b552face16335eecb703ea942e1a8054037182390d6f

HTTP Headers

GET /i/JqIX7.c100.png HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: image/jpg
x-cached: 1
expires: Mon, 03 Oct 2022 04:51:51 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 463224
last-modified: Sat, 03 Sep 2022 04:51:51 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V1gFUAReZBGeQOwKI7fj0DJUQ1qJd6b8TGTOGnmM7sRXmgDcPsCU8dL5hMMa2218Hs8jykD1FxP8NwXQtQVMZBMpYs8z%2BJdwYCB5879oJ8P%2F%2FQ%2BS4i03hta1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74780c9238a7b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
426dfe3ec82e0a77cbdfe9ff46ac9d89
486658615b3daeccb0e1f0431ef6583078d89785
653a398fdd1c3b7860432ff4d6e6828e034a70a4da82e9d8d27dbd90f0b88273

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
745359d372160932e8030c0199354252
1590e053a17d05095a48538fc08ff06245bac4d6
e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de50d39318f58f490483c86aecd38e4c
f92177f493cb7bab9c5ce67f6b41f9214920907d
8bca037d0d46ddd72b4c1bbfc2829f96bc9e7bfb28724af3010f1441d14b7180

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116

142.250.74.164

302 Found

0 B

URL HTTP/2
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd130.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Sep 2022 13:32:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116&slf_rd=1&random=4105194124
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f791e6440ce515569bb0194eda4d603b
8d8fa952205d85133136ac352d2732bc4c838c42
c32a6a6c9669d371e94d43f6e765a8e438096c6eb8b69d719ad365255d669417

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

iframer.strmrdrfrocf.xyz/streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css

104.21.39.251

200 OK

3.7 kB

URL HTTP/2
iframer.strmrdrfrocf.xyz/streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css
IP
104.21.39.251:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (5810)
Size
3.7 kB (3686 bytes)
Hash
56376db22d1fc627ed5065cee925a9e0
97d8fd31adf4ae925091d6490b021ecfebfecc1f
777525dc6f53c169049aefc2e8d2384f4323ece07eef233a83d15741745e2b92

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/index.php?id=601
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 22 Jan 2021 03:58:15 GMT
vary: Accept-Encoding
expires: Wed, 06 Sep 2023 19:47:38 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 150276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uWpdswehtUGeU%2Bwou2yMrLDe5mTBhx3qqTbzP1CUvxROeU5m3dWY6YxJPRDQcYyvvlu7%2Flc9h2XC98La57R%2F710SCrDHEXiMGyIiL9euExYRg2yyI2aE6noCWxwiJvEaDiK%2FAdytMwm4JFY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c900f76fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116&slf_rd=1&random=4105194124

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116&slf_rd=1&random=4105194124
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116&slf_rd=1&random=4105194124 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd130.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Sep 2022 13:32:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b544c4d2427305f830d70cd40f2e5263
f8d3fbf9d368742f894816ea71d8cc9016078d1f
6f5bb81b798a2bb4ba854703b03d71c3cb1b0c0adb437f6ff863f1f7774c3005

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
741cac9ee5a24cbda74db8978bd1c6ef
b42d19b29a76241636d305767eae32e9686189dc
ce939f7a61e0155fa78517166f10eeea4c139a594c88044a5f4a224f86d3e7ab

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE939F7A61E0155FA78517166F10EEEA4C139A594C88044A5F4A224F86D3E7AB"
Last-Modified: Tue, 06 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3791
Expires: Thu, 08 Sep 2022 14:35:26 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive

cbox.im/i/qFg14.c100.jpg

104.21.45.225

200 OK

2.9 kB

URL HTTP/2
cbox.im/i/qFg14.c100.jpg
IP
104.21.45.225:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 100x100, components 3\012- data
Size
2.9 kB (2854 bytes)
Hash
72d3ea895a4a82c90c8ac38794cdbc01
2a3c5adf5f0cafba6a623f42b6c1fa56501af218
c6bc115583ba09c9f7f2f9861e0b4cec6ec35150fdf0a18bc4568179a49cb4ac

HTTP Headers

GET /i/qFg14.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: image/jpg
x-cached: 1
expires: Sat, 17 Sep 2022 17:17:24 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1800891
last-modified: Thu, 18 Aug 2022 17:17:24 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U0XqqszB9Cuosd4JvNM8gsQ7OWjBwPeBoW1SmdzGdtq01Qs2AnlIWIL%2B0jt%2BooZRnfYfnQrZDeELxiONtY6pJstavqRKi%2B%2FiEy7%2FpKEy1gE1SQdhFCMyV1dw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74780c9238aeb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5035
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5035
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5035
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5035
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6214 bytes)
Hash
f922505178de0cea92eedcfda85a9f67
50f1459de01174e594e03e7df4dfaa8eb1798672
981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:34:36 GMT
age: 28659
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9afa50f-5ac3-4bb1-b267-82b7fe3558d5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5395 bytes)
Hash
c80ab72b0027230ca932410e56e77509
ed0ed6164c756645532fd631d0ce72bc76ef6aa4
03ed42a7fb94bff45232e88d934f41889703e15934d106cd100f327f1c17d346

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9afa50f-5ac3-4bb1-b267-82b7fe3558d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5395
x-amzn-requestid: 33c5a8a9-a006-40e4-b210-ad6ca29523e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG-lnEMWIAMF8fQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63191156-7792c8dc77d1e9706466b7a7;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:47:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: cJ-JtA3PFE3C0aqz9Ui5ymiQeFQYEVEIb55nHkOEWw8KnVQsjS8jeA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:12:25 GMT
age: 55190
etag: "ed0ed6164c756645532fd631d0ce72bc76ef6aa4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6751 bytes)
Hash
d1232dc455c65c9e2d4515b6235ca8c7
8e94919a162c8bcf1ce76f395e8e8bddc94ed9a5
9c8ad996fff98d6dbd7a43c4c36905013d6e74649976294cd3a429f276a0db58

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6751
x-amzn-requestid: 847805f8-6893-4c51-80b9-655aa50f922d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TiGnlIAMF_oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-293897317a79be817669cfaa;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f8xbrJQbaXsHcsUNPeH3knAN2mXMzP4ValMvxzIX9KLVmPFVGqS1ng==
via: 1.1 0b8b9a0373f930a971a9e76550280d02.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "8e94919a162c8bcf1ce76f395e8e8bddc94ed9a5"
content-type: image/jpeg
age: 56620
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7885 bytes)
Hash
7ca5b5d4ac26d97b5729a30ecdc688bc
3e633bc6c4ab9adfe84899e5209d73bef1d097eb
2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ry2D03udnweYHan_7KhC9IDhT01g9_73G40Fa10BdIX21tgK0Cgjiw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
content-type: image/jpeg
age: 56620
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7492 bytes)
Hash
a07d553b6441514870ed7e9e989a29a7
98c145b9326d1e6036fa9089d87a25232dd45b0b
373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6mfdlMHJozdykr4faiijvUuJPXVrJGU_n0MxJgCrZ-uWWdejGYfiAQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:33:06 GMT
age: 53949
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8def29c-7ade-4990-abac-c54befd5dd27.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
gzip compressed data, max compression\012- data
Size
6.8 kB (6825 bytes)
Hash
b945edbea5a30a449e2748fa2f7045f0
56e6ad521061fd8b1dae153b631a79de6166c851
4e87f501f2fb87ee038e18cb7f9f35092512af945d02774f13c9d4e333b85ae9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8def29c-7ade-4990-abac-c54befd5dd27.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6330
x-amzn-requestid: 9e6e1482-e341-4abf-9aab-0c9a1c2911ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgGplIAMFd1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-69decda2237011501bdc7327;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 43kJUMzns6kqvyRubrcsk5-Ovd5_7j1ajv5tEAttwrofEhdd2uCIrA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:54:07 GMT
age: 56288
etag: "48c83029644495c0ee4041d647e7f29a38048825"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl

172.67.128.112

200 OK

0 B

URL HTTP/2
www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl
IP
172.67.128.112:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /box/?boxid=921687&boxtag=DX8bvl HTTP/1.1
Host: www5.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.selcuksportsuygulama12.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
cache-control: public, max-age=60
last-modified: Thu, 31 Mar 2022 15:31:42 GMT
x-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=up6tsGjzEYcR0cPZYbBNm4lk2gymjZe0%2BSYNOkC5cnRYtpCosfNKbp2RriPCGGjoFuY5A90rQnznTQNejTNWCZ538hahFPBCbjOneyZzZS22uNbPICIhFn%2F0jPMjKtU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74780c90ef6fb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.cbox.ws/jsc/jsc_10_1629383500.js

172.67.128.112

200 OK

0 B

URL HTTP/2
static.cbox.ws/jsc/jsc_10_1629383500.js
IP
172.67.128.112:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /jsc/jsc_10_1629383500.js HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Origin: https://www5.cbox.ws
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:31:45 GMT
etag: W/"611e6b51-64a8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 8087080
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xHLY8V%2FFOifhTt%2BoDERg3p%2BE8yLMLhf1RCAJb3gAnDRYaWKePHqNSrwMV7btDmAP6Z%2BlaXeho9AaMbOa%2Fr80w8dMVfQoSos9tquNXgViuQ2n1PjKapa1r8OZEYTdn5fFjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74780c933bddb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Titillium+Web:wght@300;400;600;700&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Titillium+Web:wght@300;400;600;700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Titillium+Web:wght@300;400;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 13:32:14 GMT
date: Thu, 08 Sep 2022 13:32:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

iframer.strmrdrfrocf.xyz/keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js

104.21.39.251

200 OK

0 B

URL HTTP/2
iframer.strmrdrfrocf.xyz/keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js
IP
104.21.39.251:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/javascript; charset=utf-8
last-modified: Tue, 06 Sep 2022 18:49:29 GMT
vary: Accept-Encoding
expires: Wed, 06 Sep 2023 19:47:38 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 150276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EwOH8keYC9mnasoKOkVp%2BKe6IIW7f6U3dqV4h%2FxFAChpNLd%2BGYCTgJy1LrCnsQZaMMtWqELSEHvFLNvCHXxmgCUGPOZU5lKq4hsbDzihz6jajbTjjB0sqMMV3QhrBxWgddpXjDM2M5lE734%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c900f7afac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.selcuksportshd105.xyz/

172.67.132.207

301 Moved Permanently

0 B

URL HTTP/2
www.selcuksportshd105.xyz/
IP
172.67.132.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: www.selcuksportshd105.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
date: Thu, 08 Sep 2022 13:32:13 GMT
content-type: text/html
location: https://www.selcuksportshd130.xyz/
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6cDcZ0ek3sVBfCRHlWse8jSKJP6FXDGuPO2ZDcmoBTaeQ31bSSnXXqmnhMkUrx%2FRfTf3NGfw4dgRGpqNF4Qo3DahJlrx%2BBGRatA0s6Xhl%2FpqqWqSxy5c6IxKFmdFhgr0atkSwfP%2FsW92TVDB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8a092cb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

iframer.strmrdrfrocf.xyz/clappr.10a0c239c01882665a0bd2e1d8ea3493.js

104.21.39.251

200 OK

0 B

URL HTTP/2
iframer.strmrdrfrocf.xyz/clappr.10a0c239c01882665a0bd2e1d8ea3493.js
IP
104.21.39.251:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /clappr.10a0c239c01882665a0bd2e1d8ea3493.js HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 28 Nov 2021 15:52:12 GMT
vary: Accept-Encoding
expires: Wed, 06 Sep 2023 19:47:38 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 150276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q0EnTesPhbqD%2F78YKwkqKLobsrxTmAAsc9%2FTjb4DHsy%2Fx4Bm%2B161kuyLfO7f4OLkTo6yCVcFDPOaCWfwdKrF5MWZda7Ja8WOD80egvUFv8ZnISd0Mq7FZ0u5a83HrEU8vc7FnMBRQSJmr3o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c900f78fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

iframer.strmrdrfrocf.xyz/jquery.220afd743d9e9643852e31a135a9f3ae.js

104.21.39.251

200 OK

0 B

URL HTTP/2
iframer.strmrdrfrocf.xyz/jquery.220afd743d9e9643852e31a135a9f3ae.js
IP
104.21.39.251:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /jquery.220afd743d9e9643852e31a135a9f3ae.js HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 27 Sep 2020 13:19:40 GMT
vary: Accept-Encoding
expires: Wed, 06 Sep 2023 19:47:38 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 150276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jKpRAdDCyKW6WI0NThEInr%2BYwdsxw%2FHvRksISZr2DYEUwkjn6dZAymSwEb%2Ft5JmuwtZYgPMzf4yPltAEgCV9VgPmGJv4UYNrvUqY7hxsb7r9UVjibJIdVTO4tQ6CkA91dKSgVULLcvxGIi0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c900f77fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

unpkg.com/swiper@8.3.2/swiper-bundle.min.css

104.16.124.175

200 OK

0 B

URL HTTP/2
unpkg.com/swiper@8.3.2/swiper-bundle.min.css
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /swiper@8.3.2/swiper-bundle.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd130.xyz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"4052-dxUYZpo3DZFa3w0gfyoiCSp2jNE"
via: 1.1 fly.io
fly-request-id: 01G8X3P78MQ1FBRE6H3BCG1FRB-ams
cf-cache-status: HIT
age: 3809590
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8d5b4efab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

unpkg.com/swiper@8.3.2/swiper-bundle.min.js

104.16.124.175

200 OK

0 B

URL HTTP/2
unpkg.com/swiper@8.3.2/swiper-bundle.min.js
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /swiper@8.3.2/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd130.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"22fb1-KGtkeSGy9PWRWjtO2CswTE1NohY"
via: 1.1 fly.io
fly-request-id: 01G8X3FXCWJSYDYDFG651VPA6X-ams
cf-cache-status: HIT
age: 3809803
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8d6b52fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2

app.selcuksportsuygulama12.xyz/app/sohbet.php?8348478324

172.67.167.102

200 OK

0 B

URL HTTP/2
app.selcuksportsuygulama12.xyz/app/sohbet.php?8348478324
IP
172.67.167.102:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /app/sohbet.php?8348478324 HTTP/1.1
Host: app.selcuksportsuygulama12.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=600
cf-cache-status: HIT
age: 359
last-modified: Thu, 08 Sep 2022 13:26:15 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eD5bD1Pjg38CxAwIkuXl%2Ba75fVqGd2%2BoRxMSjnOA9P6RRJX4QR%2BLd2Q%2Fbg%2FZYp7PRtrF0FqNVCfz%2BV1wormoX%2FjST79sRlxCiFxU1eaLlPmw%2ByTG5kbprUBB3Vx3%2FSy41TyWcOaPfxVPGKye4nHqc5s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c90096a0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

iframer.strmrdrfrocf.xyz/index.php?id=601

104.21.39.251

200 OK

0 B

URL HTTP/2
iframer.strmrdrfrocf.xyz/index.php?id=601
IP
104.21.39.251:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /index.php?id=601 HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-store
access-control-allow-origin: *
link: </streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css>; rel=preload; as=style, </jquery.220afd743d9e9643852e31a135a9f3ae.js>; rel=preload; rel=preload; as=script, </clappr.10a0c239c01882665a0bd2e1d8ea3493.js>; rel=preload; as=script, </levelselector.ee341b104a9c406b73001afe57d16f18.js>; rel=preload; as=script, </keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js>; rel=preload; as=script
x-htz-md: Md eq fullversion
x-htz-rs: Rs eq slck
x-htz-rx: Rx eq https://www.selcuksportshd130.xyz
x-htz-st: St eq HIT
x-htz-ky: Ky eq Rh https://www.selcuksportshd130.xyz Md fullversion Rs slck Rm GET Hs iframer.strmrdrfrocf.xyz Hts iframer.strmrdrfrocf.xyz Ur /index.php Ru /index.php?id=601 Qs id=601 rruri /index.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hRT5RdHBS3ziWVN6dqhsuoxoIoXfHMURO1oyNqxmu18Z%2B6O%2F%2FGyeez%2Fty%2FLSQD7RGZ1zH8F2d1buxv43h0fmEe2QIfs7BA9FWRx33yvWCzFkVdBpAyaZWPssgiV9%2FAJECC5N%2B9Xo808L1Es%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8fcf31fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-h2-pushed: </streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css>,</jquery.220afd743d9e9643852e31a135a9f3ae.js>,</clappr.10a0c239c01882665a0bd2e1d8ea3493.js>,</levelselector.ee341b104a9c406b73001afe57d16f18.js>,</keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js>
X-Firefox-Spdy: h2

iframer.strmrdrfrocf.xyz/levelselector.ee341b104a9c406b73001afe57d16f18.js

104.21.39.251

200 OK

0 B

URL HTTP/2
iframer.strmrdrfrocf.xyz/levelselector.ee341b104a9c406b73001afe57d16f18.js
IP
104.21.39.251:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /levelselector.ee341b104a9c406b73001afe57d16f18.js HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 28 Nov 2021 15:49:55 GMT
vary: Accept-Encoding
expires: Wed, 06 Sep 2023 19:47:38 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 150276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2FRxQE8x2K5eLSSJ8YSx9bV7xzILCi54Do9Qk9G13NVbiURiJo546TF04zpMJVYN1n8iImyLGR4ev7C0zxJPeQoc7Iafya%2FuHfyUeNKNsOArmdLaFeuDglHDPvad1Ay%2B%2FhgiITLiwaqFOiw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c900f79fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

whos.amung.us/swidget/uu19fwdxlo.png

104.22.75.171

307 Temporary Redirect

0 B

URL HTTP/2
whos.amung.us/swidget/uu19fwdxlo.png
IP
104.22.75.171:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /swidget/uu19fwdxlo.png HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 307 Temporary Redirect
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/03/379.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74780c923aa195e4-ARN
X-Firefox-Spdy: h2

www.selcuksportshd130.xyz/

172.67.133.224

200 OK

0 B

URL HTTP/2
www.selcuksportshd130.xyz/
IP
172.67.133.224:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: www.selcuksportshd130.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=600
x-frame-options: sameorigin
link: <./css/index.css>; as=style; rel=preload, <./js/index.js>; as=script; rel=preload
cf-cache-status: HIT
age: 361
last-modified: Thu, 08 Sep 2022 13:26:13 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eEFGat48VZ69qmhLUuphRB7jiNAZwBjMuxE6XEO7t10GFZDMGgN4o6mrUOb6UjfYApxWH44K3rBwIu8WLuTqkQSfe3OAvRmxPrvKBIHpDWFI2UFGKb8apaovVvEJv2exs2jHAWHaAeitIaBf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8b8e32b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

unpkg.com/swiper/swiper-bundle.min.css

104.16.124.175

302 Found

0 B

URL HTTP/2
unpkg.com/swiper/swiper-bundle.min.css
IP
104.16.124.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /swiper/swiper-bundle.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@8.3.2/swiper-bundle.min.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GCEM9QDYT1R3SSBJAF0H5GVQ-fra
cf-cache-status: HIT
age: 538
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8caaa6fab8-OSL
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML