| www.selcuksportshd105.xyz/ | 172.67.132.207 | 301 Moved Permanently | 0 B |
URL HTTP/1.1www.selcuksportshd105.xyz/ IP172.67.132.207:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: www.selcuksportshd105.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 08 Sep 2022 13:32:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 14:32:13 GMT
Location: https://www.selcuksportshd105.xyz/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dpgp3AYpojPxs%2BlbFj6Sf9KvvoeAoNXOJ42VM5k4fyDt5y5tbBCToDeOgoBNcSnI0b%2B80DbzVvmi5NLaOlFPO9mRBRydPcOl6DIwqo5BI2vwG1mm6xVydeysmI5KDBjAUArXnLTzegcsPxPT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 74780c873f00b515-OSL
alt-svc: h2=":443"; ma=60
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.35 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.35:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash99b7d23c1748d0526782b9ff9ea45f09 eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 13:05:17 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZhCXj4wniCjU3PARzQzK9OKoqvhkI8wPquUoLtSdNYofW4Z3W9bpnw==
Age: 1616
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb9adda4796e3cda8d92753c46964621c 5f1eba1f6085b23dea088a91fe6f8947172f9f62 a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13308
Expires: Thu, 08 Sep 2022 17:14:01 GMT
Date: Thu, 08 Sep 2022 13:32:13 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain | 143.204.55.49 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain IP143.204.55.49:0
File typePEM certificate\012- , ASCII text Hash742edb4038f38bc533514982f3d2e861 cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Pmz8f_SWLGjoYzy8De1VvEouylgQobBPDdMshBqOIjlWph8Hgo2TmQ==
age: 35139
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 13:32:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash75c6696e6a9648f2503120f5c923ea9a 834a9cd8436d93f7f11005a09963fab079c81a43 6d5b554664fda018ac94c655861c6035ac72c738d638b0aa662e7dfa492e9c7f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6D5B554664FDA018AC94C655861C6035AC72C738D638B0AA662E7DFA492E9C7F"
Last-Modified: Thu, 08 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Thu, 08 Sep 2022 19:31:19 GMT
Date: Thu, 08 Sep 2022 13:32:13 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash75c6696e6a9648f2503120f5c923ea9a 834a9cd8436d93f7f11005a09963fab079c81a43 6d5b554664fda018ac94c655861c6035ac72c738d638b0aa662e7dfa492e9c7f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "6D5B554664FDA018AC94C655861C6035AC72C738D638B0AA662E7DFA492E9C7F"
Last-Modified: Thu, 08 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Thu, 08 Sep 2022 19:31:19 GMT
Date: Thu, 08 Sep 2022 13:32:13 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.35 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.35:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 08 Sep 2022 12:38:18 GMT
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 13:19:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Kn1JHJ3aaQY0ApXyWpZDAC2q4dQlDAoV2rgo739ZimYaFVbuNH1gKQ==
Age: 3236
|
|
| code.jquery.com/jquery-3.6.0.min.js | 69.16.175.42 | 200 OK | 31 kB |
URL HTTP/2code.jquery.com/jquery-3.6.0.min.js IP69.16.175.42:0
File typeASCII text, with very long lines (65447) Hash899f0189aaf034bbba5340f724d91dfa 210ea9de03968edb9d839ba4a0ce2d48666a8ab8 949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1662643934.dop068.sk1.t,1662643934.cds264.sk1.hn,1662643934.cds210.sk1.c
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash652bdaaaca09a66fc9a260163eee7aeb f59f82dd2c189cdff5c641ff7c53c5f257e1f2d2 bbaf18a14748bb922b9bd19125c78310a564b1aebb7de8f30af0be6fa390e7da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashb63f97bc3dce37e8ee6a0c9fcae468fe cc70326582c0016d7434d0553486734266e57e71 6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash042105f89c8d64b470d84e052cd412d1 a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4 fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5690
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Last-Modified: Thu, 08 Sep 2022 11:57:24 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
|
|
| www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1 | 142.250.74.72 | 200 OK | 75 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1 IP142.250.74.72:0
File typeASCII text, with very long lines (17899) Hash6893cdfcd0793b9b1e2c95ff41806332 db1167b489aebef88e8305cc3f591bf4aadb0285 6e16fd84fae2d920a881f26ddc9a92010cae2a27ef46fe4b6a0091bbd1281bc8
GET /gtag/js?id=G-CVN78DGZN1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Sep 2022 13:32:14 GMT
expires: Thu, 08 Sep 2022 13:32:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74686
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash652bdaaaca09a66fc9a260163eee7aeb f59f82dd2c189cdff5c641ff7c53c5f257e1f2d2 bbaf18a14748bb922b9bd19125c78310a564b1aebb7de8f30af0be6fa390e7da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashb63f97bc3dce37e8ee6a0c9fcae468fe cc70326582c0016d7434d0553486734266e57e71 6b3b365123beead4021532b8f2578b3761bbd47af45ed2a461a0476d53aa637d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashdb3d2d40f373a7ef445874e65d7f0397 087a4802f28647e830222fafc67bda30dec5fc31 4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 34.215.56.181 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.215.56.181:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: W6TDihcXSzXfDcnyQTnLhg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Jcau5IdjdsJm4XgMlPHWvlTtyck=
|
|
| fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGIVzY4SY.woff2 | 142.250.74.163 | 200 OK | 6.7 kB |
URL HTTP/2fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGIVzY4SY.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 6660, version 1.0\012- data Hash5a3e69c4263292b8d1608b0a0265b447 fc59e4f20fa9620636f53b30f4f993af679399ea 8f8ebc7e5d94244c2499c5f4c10c4d28639ce2d6126e52de3e9842ce64977391
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGIVzY4SY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd130.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 08:31:15 GMT
expires: Wed, 06 Sep 2023 08:31:15 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:44:43 GMT
content-type: font/woff2
age: 190859
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2 | 142.250.74.163 | 200 OK | 6.8 kB |
URL HTTP/2fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 6776, version 1.0\012- data Hashca9745459de645cbea7eb8a9f671cac2 8156e13525f20c77e0d52e1850dac48bc0dffc7c 05e415164465aa7031a976c10aeb71e4fa19bb4958104c769e32c47f9f05c1a1
GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd130.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 23:45:25 GMT
expires: Thu, 07 Sep 2023 23:45:25 GMT
cache-control: public, max-age=31536000
age: 49609
last-modified: Wed, 27 Apr 2022 16:14:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashdb3d2d40f373a7ef445874e65d7f0397 087a4802f28647e830222fafc67bda30dec5fc31 4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashdb3d2d40f373a7ef445874e65d7f0397 087a4802f28647e830222fafc67bda30dec5fc31 4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 | 142.250.74.163 | 200 OK | 12 kB |
URL HTTP/2fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 12136, version 1.0\012- data Hash5d7c6bb8fd4fc992c54e596ab7433d5d 35fd6e4c125235cb7f9aa6e297da4b64ae45b06a dd870101ad4e95d687a2eb734707b0dd7c20808f76d7be77a71a5d13cf99401c
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd130.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:28:29 GMT
expires: Thu, 07 Sep 2023 19:28:29 GMT
cache-control: public, max-age=31536000
age: 65025
last-modified: Wed, 27 Apr 2022 15:39:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 | 142.250.74.163 | 200 OK | 13 kB |
URL HTTP/2fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 IP142.250.74.163:0
Hashe4deefcadc7380c961b87de87b3789dc b4fe50cab9c8f7aa47b90baed43234073b9fa173 464f94dd1ed89ffaf9d87a8c0b8cbe96878627c015ba5e36e8bf55b4bee2fe86
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd130.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:28:33 GMT
expires: Thu, 07 Sep 2023 19:28:33 GMT
cache-control: public, max-age=31536000
age: 65021
last-modified: Wed, 27 Apr 2022 15:47:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 | 142.250.74.163 | 200 OK | 12 kB |
URL HTTP/2fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 IP142.250.74.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 12372, version 1.0\012- data Hash0ef99cf07a2a261ab43d5dc1937ffb27 bd39f9cd13ef2a6f912dcba8fa916fc67b4a19d9 557f6d0883db85be712c3a77baa38875ddf99ecbdfd6fec98e5c0b1f7a0e1532
GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd130.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:28:22 GMT
expires: Thu, 07 Sep 2023 19:28:22 GMT
cache-control: public, max-age=31536000
age: 65032
last-modified: Wed, 27 Apr 2022 16:19:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 346 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash642e188ca9769aa9e025e18325035da8 3c7745044a30ccbb31e3a6e352185a00f4fa69fe 72f6ad4ca4cda790b64697bca01232e5eb044f4d46c8d1f01a4a0dbf8e407403
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "72F6AD4CA4CDA790B64697BCA01232E5EB044F4D46C8D1F01A4A0DBF8E407403"
Last-Modified: Tue, 06 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16004
Expires: Thu, 08 Sep 2022 17:58:58 GMT
Date: Thu, 08 Sep 2022 13:32:14 GMT
Connection: keep-alive
|
|
| unpkg.com/swiper/swiper-bundle.min.js | 104.16.124.175 | 302 Found | 402 B |
URL HTTP/2unpkg.com/swiper/swiper-bundle.min.js IP104.16.124.175:0
Hash5c338690389407cb52b8790bc470d1b7 e24cf8607c0bb0f78d07523aeebecb74e27d783f 8d548aac5d583d36bffd201962a0c5d96dd8ba1d92044c60fbf18f6c0de89a0a
GET /swiper/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@8.3.2/swiper-bundle.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GCEMH1VQZ7WJ18ZZEVTBMNTQ-fra
cf-cache-status: HIT
age: 298
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8cfaf6fab8-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashdb3d2d40f373a7ef445874e65d7f0397 087a4802f28647e830222fafc67bda30dec5fc31 4a7ff3bf120d9795d86e370be5fb2987edd4575e1ce0ab1f2f7a66ddf1e5b0d0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| js.rfp.fout.jp/rfp-infeed.js | 23.32.107.182 | 200 OK | 15 kB |
URL HTTP/2js.rfp.fout.jp/rfp-infeed.js IP23.32.107.182:0
File typeASCII text, with very long lines (54214) Hasha2a27174d303ab04fb5b1e166d0b054f 8fe315b365e69ca138eed86d86ca4795319d1b64 caed7a1742ccc02bf163bcdc499154e30d92bb555ee7d343e1d60e0b8cc10b97
GET /rfp-infeed.js HTTP/1.1
Host: js.rfp.fout.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtLfaO18vBHFGVOTELsLYxwbSDnpmY8nJZx3pj6DGCwNguDMBQuj_YINW4ReKbMzbeeNDJbH_OzVEgKteAumTMc0A
last-modified: Mon, 05 Sep 2022 02:06:28 GMT
etag: "a2a27174d303ab04fb5b1e166d0b054f"
x-goog-generation: 1662343588239694
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 14823
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=1JnjJg==, md5=oqJxdNMDqwT7Wx4WbQsFTw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 14823
server: UploadServer
cache-control: public, max-age=1800
expires: Thu, 08 Sep 2022 14:02:14 GMT
date: Thu, 08 Sep 2022 13:32:14 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 346 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash642e188ca9769aa9e025e18325035da8 3c7745044a30ccbb31e3a6e352185a00f4fa69fe 72f6ad4ca4cda790b64697bca01232e5eb044f4d46c8d1f01a4a0dbf8e407403
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "72F6AD4CA4CDA790B64697BCA01232E5EB044F4D46C8D1F01A4A0DBF8E407403"
Last-Modified: Tue, 06 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16004
Expires: Thu, 08 Sep 2022 17:58:58 GMT
Date: Thu, 08 Sep 2022 13:32:14 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 346 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash078b5434d58bcb9ce68b19757fa1d766 e949c7ab3cac3e973bceae1da17679fbf74996ba 80d2260137aae93c6a3b7fa92e8dd15cffedaa7804bed4b009345eabc63ece9d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "80D2260137AAE93C6A3B7FA92E8DD15CFFEDAA7804BED4B009345EABC63ECE9D"
Last-Modified: Wed, 07 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 08 Sep 2022 19:32:14 GMT
Date: Thu, 08 Sep 2022 13:32:14 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash9affdabd3d7c41f9a9e65578979b5e40 2378ed4d2a2f0ab9f43488178a2038df8acb0bc2 952c0237719a3f38e131eb43dd3798b5411919775ac4ecc4a02340e2a3e85247
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3040
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Last-Modified: Thu, 08 Sep 2022 12:41:35 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash9affdabd3d7c41f9a9e65578979b5e40 2378ed4d2a2f0ab9f43488178a2038df8acb0bc2 952c0237719a3f38e131eb43dd3798b5411919775ac4ecc4a02340e2a3e85247
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3040
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:14 GMT
Last-Modified: Thu, 08 Sep 2022 12:41:35 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 278
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf655c981475af9bfc852a4fdaf60ed6d ae2f656ed6389263eaf4fb7739792e1c192c340e 65d47cc077623912647c293d80a5a7c22764411bea0322634659f98b9fb5cdef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D47CC077623912647C293D80A5A7C22764411BEA0322634659F98B9FB5CDEF"
Last-Modified: Wed, 07 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5087
Expires: Thu, 08 Sep 2022 14:57:02 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf655c981475af9bfc852a4fdaf60ed6d ae2f656ed6389263eaf4fb7739792e1c192c340e 65d47cc077623912647c293d80a5a7c22764411bea0322634659f98b9fb5cdef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D47CC077623912647C293D80A5A7C22764411BEA0322634659F98B9FB5CDEF"
Last-Modified: Wed, 07 Sep 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5111
Expires: Thu, 08 Sep 2022 14:57:26 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive
|
|
| www.trtspor.com.tr/static/js/jquery.md5.js | 85.111.24.216 | 200 OK | 9.6 kB |
URL HTTP/2www.trtspor.com.tr/static/js/jquery.md5.js IP85.111.24.216:0
Hashc629663d7fe3432af0760b26d4b546e7 0abc4b9564d71cf8d23b7f5b661552092c8e7d67 41f41aa3f32ea20a820c36488c40e2acb8f022c35d91c69a1d1c75e63edebf54
GET /static/js/jquery.md5.js HTTP/1.1
Host: www.trtspor.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: application/javascript
content-length: 9606
last-modified: Mon, 16 Sep 2019 09:15:34 GMT
etag: "5d7f52b6-2586"
expires: Thu, 08 Sep 2022 14:02:15 GMT
cache-control: max-age=1800
x-node: script
x-worker: 7566
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash57b76c2eaa40c77778280f75772a8971 7a21423b8f9efeb8f921f95a91606870ee8334d6 94f718b131c436658c4b592c006161071617a3deb8d9170161af0119462a1398
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "94F718B131C436658C4B592C006161071617A3DEB8D9170161AF0119462A1398"
Last-Modified: Mon, 05 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2927
Expires: Thu, 08 Sep 2022 14:21:02 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive
|
|
| cbox.im/i/WUfMg.c100.jpg | 104.21.45.225 | 200 OK | 3.3 kB |
IP104.21.45.225:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 100x100, components 3\012- data Hash093752ca2f0eb59fb0ec549c7d699235 e55e0459a1adad326582da7bcff1d75200239adc 8f7723bfa7c517b9f6561cc341e8a885eeaf5465b5379ff5bc46781c28ea1c3d
GET /i/WUfMg.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: image/jpg
x-cached: 1
expires: Sat, 17 Sep 2022 17:17:24 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1800891
last-modified: Thu, 18 Aug 2022 17:17:24 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GSycUad75Dy0tHClpzl7uc1GnDiLsyHxcebkd29OTA730BnEJ8RRTSIW7TKAm0xPJSfQ7w6qIUwKpGhA7JsBLt7XvFbgcEYTfRXGZ1A%2FgOxfU2aD6mLGBNcW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74780c9228a6b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.selcuksportshd129.xyz/img/madrid-wp2.jpg | 104.21.67.183 | 301 Moved Permanently | 482 B |
URL HTTP/2www.selcuksportshd129.xyz/img/madrid-wp2.jpg IP104.21.67.183:0
Hash8f2859c07a129d7a38f17f1288d5e785 307fcdbdcc41ede58197318f13fe1a75dff423cc 7295fee0b276ddbb8fd23c7c09da5e55f4d9d5d792a91c5f0f95305e128b3816
GET /img/madrid-wp2.jpg HTTP/1.1
Host: www.selcuksportshd129.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: text/html
location: https://www.selcuksportshd130.xyz/
cf-cache-status: HIT
age: 359
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YHKbFLlSaFbnrAv2olUCGY5G0sUxFebfTVxedIYULbZ4QacdiuBTAEu1WfX4djtFc7KtpPQcMhn0Ml0jKoe%2FG%2FB78xKPfVZ0LEFV5XjxOcALC%2FnENUKNzB3IyuwAoKYwdV1jvfnYulgJ3FBp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c932aa4b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.trtspor.com.tr/static/js/jquery.js | 85.111.24.216 | 200 OK | 93 kB |
URL HTTP/2www.trtspor.com.tr/static/js/jquery.js IP85.111.24.216:0
File typeUnicode text, UTF-8 text, with very long lines (65479) Hash4ec9f95ecc0911c41abb247dfff887b4 022b0ffc6dd4a825ff56d9cfaf69f75c5a7210d4 7200a2f4c45a1c5f9049777223c7361afb33b36945e97858d0ba4e49ea85cf0b
GET /static/js/jquery.js HTTP/1.1
Host: www.trtspor.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: application/javascript
content-length: 92794
last-modified: Sat, 12 Oct 2013 15:24:23 GMT
etag: "525969a7-16a7a"
expires: Thu, 08 Sep 2022 14:02:15 GMT
cache-control: max-age=1800
x-node: script
x-worker: 7566
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| cbox.im/i/4UrBC.c100.jpg | 104.21.45.225 | 200 OK | 3.9 kB |
IP104.21.45.225:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 100x100, components 3\012- data Hash16186b8f9fec1f185267f1bb49cfadbc 851132c9ae8ec9a732f7e490f7d9e0416d8ec136 79fb34ee0c0e84e0e8362fef7b3da9ee4576229cd87198012c54e8f21bb05560
GET /i/4UrBC.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: image/jpg
x-cached: 1
expires: Sat, 17 Sep 2022 17:17:24 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1800891
last-modified: Thu, 18 Aug 2022 17:17:24 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1SfKQkUl3I61DoWjB%2Fvt8%2BsElk%2BV%2FnCD%2FQ8ago3icTwWy%2Bji1iYcI14TqK7FXExSX8AcIe7w802r63TZYnZN9bC82Igvn%2Fu53OvR%2FXU8JhJJ3OQNeB3L9XXA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74780c9238b7b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash745359d372160932e8030c0199354252 1590e053a17d05095a48538fc08ff06245bac4d6 e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116 | 142.251.1.154 | 302 Found | 369 B |
URL HTTP/2stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116 IP142.251.1.154:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators Hashbc3da7cd5fb1712d391471500ad80c7a 52df739dd7ace2a7d90eb918f2bf4bd266e82f65 2421b9e927828a0d15cafe9681feedcc561126ce833970965f0b1b8c0ebef4fb
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd130.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 08 Sep 2022 13:32:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 369
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashde50d39318f58f490483c86aecd38e4c f92177f493cb7bab9c5ce67f6b41f9214920907d 8bca037d0d46ddd72b4c1bbfc2829f96bc9e7bfb28724af3010f1441d14b7180
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cbox.im/i/JqIX7.c100.png | 104.21.45.225 | 200 OK | 18 kB |
IP104.21.45.225:0
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data Hashb0ed25c25e0076e5422a57d0e099ecae d14141802bd3608dc2ae240eb8af0c2171382264 68b8b5b89f4b1512d428b552face16335eecb703ea942e1a8054037182390d6f
GET /i/JqIX7.c100.png HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: image/jpg
x-cached: 1
expires: Mon, 03 Oct 2022 04:51:51 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 463224
last-modified: Sat, 03 Sep 2022 04:51:51 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V1gFUAReZBGeQOwKI7fj0DJUQ1qJd6b8TGTOGnmM7sRXmgDcPsCU8dL5hMMa2218Hs8jykD1FxP8NwXQtQVMZBMpYs8z%2BJdwYCB5879oJ8P%2F%2FQ%2BS4i03hta1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74780c9238a7b512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash426dfe3ec82e0a77cbdfe9ff46ac9d89 486658615b3daeccb0e1f0431ef6583078d89785 653a398fdd1c3b7860432ff4d6e6828e034a70a4da82e9d8d27dbd90f0b88273
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash745359d372160932e8030c0199354252 1590e053a17d05095a48538fc08ff06245bac4d6 e7f798120d5e587145e512941e7c090ec2720d30d216e241f5b6f96d5b2d1241
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashde50d39318f58f490483c86aecd38e4c f92177f493cb7bab9c5ce67f6b41f9214920907d 8bca037d0d46ddd72b4c1bbfc2829f96bc9e7bfb28724af3010f1441d14b7180
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116 | 142.250.74.164 | 302 Found | 0 B |
URL HTTP/2www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116 IP142.250.74.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd130.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Sep 2022 13:32:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116&slf_rd=1&random=4105194124
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashf791e6440ce515569bb0194eda4d603b 8d8fa952205d85133136ac352d2732bc4c838c42 c32a6a6c9669d371e94d43f6e765a8e438096c6eb8b69d719ad365255d669417
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| iframer.strmrdrfrocf.xyz/streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css | 104.21.39.251 | 200 OK | 3.7 kB |
URL HTTP/2iframer.strmrdrfrocf.xyz/streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css IP104.21.39.251:0
File typeASCII text, with very long lines (5810) Hash56376db22d1fc627ed5065cee925a9e0 97d8fd31adf4ae925091d6490b021ecfebfecc1f 777525dc6f53c169049aefc2e8d2384f4323ece07eef233a83d15741745e2b92
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/index.php?id=601
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/css; charset=utf-8
last-modified: Fri, 22 Jan 2021 03:58:15 GMT
vary: Accept-Encoding
expires: Wed, 06 Sep 2023 19:47:38 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 150276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uWpdswehtUGeU%2Bwou2yMrLDe5mTBhx3qqTbzP1CUvxROeU5m3dWY6YxJPRDQcYyvvlu7%2Flc9h2XC98La57R%2F710SCrDHEXiMGyIiL9euExYRg2yyI2aE6noCWxwiJvEaDiK%2FAdytMwm4JFY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c900f76fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116&slf_rd=1&random=4105194124 | 142.250.74.3 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116&slf_rd=1&random=4105194124 IP142.250.74.3:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=1471945248.1662643927&jid=1569920180&_v=5.7.2&z=1137518116&slf_rd=1&random=4105194124 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd130.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Sep 2022 13:32:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashb544c4d2427305f830d70cd40f2e5263 f8d3fbf9d368742f894816ea71d8cc9016078d1f 6f5bb81b798a2bb4ba854703b03d71c3cb1b0c0adb437f6ff863f1f7774c3005
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 13:32:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash741cac9ee5a24cbda74db8978bd1c6ef b42d19b29a76241636d305767eae32e9686189dc ce939f7a61e0155fa78517166f10eeea4c139a594c88044a5f4a224f86d3e7ab
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE939F7A61E0155FA78517166F10EEEA4C139A594C88044A5F4A224F86D3E7AB"
Last-Modified: Tue, 06 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3791
Expires: Thu, 08 Sep 2022 14:35:26 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive
|
|
| cbox.im/i/qFg14.c100.jpg | 104.21.45.225 | 200 OK | 2.9 kB |
IP104.21.45.225:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 100x100, components 3\012- data Hash72d3ea895a4a82c90c8ac38794cdbc01 2a3c5adf5f0cafba6a623f42b6c1fa56501af218 c6bc115583ba09c9f7f2f9861e0b4cec6ec35150fdf0a18bc4568179a49cb4ac
GET /i/qFg14.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: image/jpg
x-cached: 1
expires: Sat, 17 Sep 2022 17:17:24 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1800891
last-modified: Thu, 18 Aug 2022 17:17:24 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U0XqqszB9Cuosd4JvNM8gsQ7OWjBwPeBoW1SmdzGdtq01Qs2AnlIWIL%2B0jt%2BooZRnfYfnQrZDeELxiONtY6pJstavqRKi%2B%2FiEy7%2FpKEy1gE1SQdhFCMyV1dw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74780c9238aeb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe0fbe5627b19e9ad7ad4d40c96514ae9 d9d361271987c5947d96ddacc67efb3f3a32bbd3 48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5035
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe0fbe5627b19e9ad7ad4d40c96514ae9 d9d361271987c5947d96ddacc67efb3f3a32bbd3 48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5035
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe0fbe5627b19e9ad7ad4d40c96514ae9 d9d361271987c5947d96ddacc67efb3f3a32bbd3 48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5035
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe0fbe5627b19e9ad7ad4d40c96514ae9 d9d361271987c5947d96ddacc67efb3f3a32bbd3 48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5035
Expires: Thu, 08 Sep 2022 14:56:10 GMT
Date: Thu, 08 Sep 2022 13:32:15 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg | 34.120.237.76 | 200 OK | 6.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf922505178de0cea92eedcfda85a9f67 50f1459de01174e594e03e7df4dfaa8eb1798672 981cd58768d6ad841673add855ddcc7106fbc85de05db9a1bd2d6bc8928b4c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ef55d7-b6c2-4550-aff3-c9052f7d4816.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6214
x-amzn-requestid: 46a44af0-e547-49e8-bc39-f6c49d94e375
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj_0HFKbIAMFRbg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b134d-0297c83c305422fa51b86dcf;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:03:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ZKcuRO8Z6wBMdm79iDZj5uRYk4YYpYJqOoG8hZqY81O0R7hfbe5bQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 05:34:36 GMT
age: 28659
etag: "50f1459de01174e594e03e7df4dfaa8eb1798672"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9afa50f-5ac3-4bb1-b267-82b7fe3558d5.jpeg | 34.120.237.76 | 200 OK | 5.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9afa50f-5ac3-4bb1-b267-82b7fe3558d5.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc80ab72b0027230ca932410e56e77509 ed0ed6164c756645532fd631d0ce72bc76ef6aa4 03ed42a7fb94bff45232e88d934f41889703e15934d106cd100f327f1c17d346
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9afa50f-5ac3-4bb1-b267-82b7fe3558d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5395
x-amzn-requestid: 33c5a8a9-a006-40e4-b210-ad6ca29523e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG-lnEMWIAMF8fQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63191156-7792c8dc77d1e9706466b7a7;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:47:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: cJ-JtA3PFE3C0aqz9Ui5ymiQeFQYEVEIb55nHkOEWw8KnVQsjS8jeA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 95785220a566cd050f3ad80928463374.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:12:25 GMT
age: 55190
etag: "ed0ed6164c756645532fd631d0ce72bc76ef6aa4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd1232dc455c65c9e2d4515b6235ca8c7 8e94919a162c8bcf1ce76f395e8e8bddc94ed9a5 9c8ad996fff98d6dbd7a43c4c36905013d6e74649976294cd3a429f276a0db58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F54a37db8-5622-4532-b3bf-d5e45c3888d3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6751
x-amzn-requestid: 847805f8-6893-4c51-80b9-655aa50f922d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TiGnlIAMF_oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-293897317a79be817669cfaa;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f8xbrJQbaXsHcsUNPeH3knAN2mXMzP4ValMvxzIX9KLVmPFVGqS1ng==
via: 1.1 0b8b9a0373f930a971a9e76550280d02.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "8e94919a162c8bcf1ce76f395e8e8bddc94ed9a5"
content-type: image/jpeg
age: 56620
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7ca5b5d4ac26d97b5729a30ecdc688bc 3e633bc6c4ab9adfe84899e5209d73bef1d097eb 2c8275d1819d933f86df9685b76aea030842ba5a341c59ea88ffd2da99a5a3d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6069f6c-2029-46b3-9867-5eaeb96d65e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7885
x-amzn-requestid: 305dc6b7-eb3d-40ad-af89-8b60be935637
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9ThE3DIAMFRtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-7c0b58644e26de7f27c5b388;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ry2D03udnweYHan_7KhC9IDhT01g9_73G40Fa10BdIX21tgK0Cgjiw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:48:35 GMT
etag: "3e633bc6c4ab9adfe84899e5209d73bef1d097eb"
content-type: image/jpeg
age: 56620
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg | 34.120.237.76 | 200 OK | 7.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha07d553b6441514870ed7e9e989a29a7 98c145b9326d1e6036fa9089d87a25232dd45b0b 373a586b596016baeb8de98022207c25af24c099c06077edbdfd837cffc31a0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5314d83a-c7f9-468e-8b42-535c4fae5d85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7492
x-amzn-requestid: 2c5e9ff3-c7a4-4a8f-96bf-74f0ca5d9137
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9dOHguIAMFjGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f87-70dbe6532b1a241e6dbe729e;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:39:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 6mfdlMHJozdykr4faiijvUuJPXVrJGU_n0MxJgCrZ-uWWdejGYfiAQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 020978022b22df6352245f09cfbc410c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 22:33:06 GMT
age: 53949
etag: "98c145b9326d1e6036fa9089d87a25232dd45b0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8def29c-7ade-4990-abac-c54befd5dd27.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8def29c-7ade-4990-abac-c54befd5dd27.jpeg IP34.120.237.76:0
File typegzip compressed data, max compression\012- data Hashb945edbea5a30a449e2748fa2f7045f0 56e6ad521061fd8b1dae153b631a79de6166c851 4e87f501f2fb87ee038e18cb7f9f35092512af945d02774f13c9d4e333b85ae9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8def29c-7ade-4990-abac-c54befd5dd27.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6330
x-amzn-requestid: 9e6e1482-e341-4abf-9aab-0c9a1c2911ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YG9TgGplIAMFd1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63190f49-69decda2237011501bdc7327;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 21:38:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 43kJUMzns6kqvyRubrcsk5-Ovd5_7j1ajv5tEAttwrofEhdd2uCIrA==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Sep 2022 21:54:07 GMT
age: 56288
etag: "48c83029644495c0ee4041d647e7f29a38048825"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl | 172.67.128.112 | 200 OK | 0 B |
URL HTTP/2www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl IP172.67.128.112:0
GET /box/?boxid=921687&boxtag=DX8bvl HTTP/1.1
Host: www5.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.selcuksportsuygulama12.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
cache-control: public, max-age=60
last-modified: Thu, 31 Mar 2022 15:31:42 GMT
x-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=up6tsGjzEYcR0cPZYbBNm4lk2gymjZe0%2BSYNOkC5cnRYtpCosfNKbp2RriPCGGjoFuY5A90rQnznTQNejTNWCZ538hahFPBCbjOneyZzZS22uNbPICIhFn%2F0jPMjKtU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74780c90ef6fb50c-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.cbox.ws/jsc/jsc_10_1629383500.js | 172.67.128.112 | 200 OK | 0 B |
URL HTTP/2static.cbox.ws/jsc/jsc_10_1629383500.js IP172.67.128.112:0
GET /jsc/jsc_10_1629383500.js HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Origin: https://www5.cbox.ws
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: application/x-javascript
last-modified: Thu, 19 Aug 2021 14:31:45 GMT
etag: W/"611e6b51-64a8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 8087080
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xHLY8V%2FFOifhTt%2BoDERg3p%2BE8yLMLhf1RCAJb3gAnDRYaWKePHqNSrwMV7btDmAP6Z%2BlaXeho9AaMbOa%2Fr80w8dMVfQoSos9tquNXgViuQ2n1PjKapa1r8OZEYTdn5fFjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74780c933bddb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Titillium+Web:wght@300;400;600;700&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css2?family=Titillium+Web:wght@300;400;600;700&display=swap IP142.250.74.10:0
GET /css2?family=Titillium+Web:wght@300;400;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 08 Sep 2022 13:32:14 GMT
date: Thu, 08 Sep 2022 13:32:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| iframer.strmrdrfrocf.xyz/keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js | 104.21.39.251 | 200 OK | 0 B |
URL HTTP/2iframer.strmrdrfrocf.xyz/keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js IP104.21.39.251:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/javascript; charset=utf-8
last-modified: Tue, 06 Sep 2022 18:49:29 GMT
vary: Accept-Encoding
expires: Wed, 06 Sep 2023 19:47:38 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 150276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EwOH8keYC9mnasoKOkVp%2BKe6IIW7f6U3dqV4h%2FxFAChpNLd%2BGYCTgJy1LrCnsQZaMMtWqELSEHvFLNvCHXxmgCUGPOZU5lKq4hsbDzihz6jajbTjjB0sqMMV3QhrBxWgddpXjDM2M5lE734%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c900f7afac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.selcuksportshd105.xyz/ | 172.67.132.207 | 301 Moved Permanently | 0 B |
URL HTTP/2www.selcuksportshd105.xyz/ IP172.67.132.207:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET / HTTP/1.1
Host: www.selcuksportshd105.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Thu, 08 Sep 2022 13:32:13 GMT
content-type: text/html
location: https://www.selcuksportshd130.xyz/
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6cDcZ0ek3sVBfCRHlWse8jSKJP6FXDGuPO2ZDcmoBTaeQ31bSSnXXqmnhMkUrx%2FRfTf3NGfw4dgRGpqNF4Qo3DahJlrx%2BBGRatA0s6Xhl%2FpqqWqSxy5c6IxKFmdFhgr0atkSwfP%2FsW92TVDB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8a092cb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| iframer.strmrdrfrocf.xyz/clappr.10a0c239c01882665a0bd2e1d8ea3493.js | 104.21.39.251 | 200 OK | 0 B |
URL HTTP/2iframer.strmrdrfrocf.xyz/clappr.10a0c239c01882665a0bd2e1d8ea3493.js IP104.21.39.251:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /clappr.10a0c239c01882665a0bd2e1d8ea3493.js HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 28 Nov 2021 15:52:12 GMT
vary: Accept-Encoding
expires: Wed, 06 Sep 2023 19:47:38 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 150276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q0EnTesPhbqD%2F78YKwkqKLobsrxTmAAsc9%2FTjb4DHsy%2Fx4Bm%2B161kuyLfO7f4OLkTo6yCVcFDPOaCWfwdKrF5MWZda7Ja8WOD80egvUFv8ZnISd0Mq7FZ0u5a83HrEU8vc7FnMBRQSJmr3o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c900f78fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| iframer.strmrdrfrocf.xyz/jquery.220afd743d9e9643852e31a135a9f3ae.js | 104.21.39.251 | 200 OK | 0 B |
URL HTTP/2iframer.strmrdrfrocf.xyz/jquery.220afd743d9e9643852e31a135a9f3ae.js IP104.21.39.251:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /jquery.220afd743d9e9643852e31a135a9f3ae.js HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 27 Sep 2020 13:19:40 GMT
vary: Accept-Encoding
expires: Wed, 06 Sep 2023 19:47:38 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 150276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jKpRAdDCyKW6WI0NThEInr%2BYwdsxw%2FHvRksISZr2DYEUwkjn6dZAymSwEb%2Ft5JmuwtZYgPMzf4yPltAEgCV9VgPmGJv4UYNrvUqY7hxsb7r9UVjibJIdVTO4tQ6CkA91dKSgVULLcvxGIi0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c900f77fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| unpkg.com/swiper@8.3.2/swiper-bundle.min.css | 104.16.124.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/swiper@8.3.2/swiper-bundle.min.css IP104.16.124.175:0
GET /swiper@8.3.2/swiper-bundle.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd130.xyz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"4052-dxUYZpo3DZFa3w0gfyoiCSp2jNE"
via: 1.1 fly.io
fly-request-id: 01G8X3P78MQ1FBRE6H3BCG1FRB-ams
cf-cache-status: HIT
age: 3809590
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8d5b4efab8-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| unpkg.com/swiper@8.3.2/swiper-bundle.min.js | 104.16.124.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/swiper@8.3.2/swiper-bundle.min.js IP104.16.124.175:0
GET /swiper@8.3.2/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd130.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"22fb1-KGtkeSGy9PWRWjtO2CswTE1NohY"
via: 1.1 fly.io
fly-request-id: 01G8X3FXCWJSYDYDFG651VPA6X-ams
cf-cache-status: HIT
age: 3809803
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8d6b52fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| app.selcuksportsuygulama12.xyz/app/sohbet.php?8348478324 | 172.67.167.102 | 200 OK | 0 B |
URL HTTP/2app.selcuksportsuygulama12.xyz/app/sohbet.php?8348478324 IP172.67.167.102:0
GET /app/sohbet.php?8348478324 HTTP/1.1
Host: app.selcuksportsuygulama12.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=600
cf-cache-status: HIT
age: 359
last-modified: Thu, 08 Sep 2022 13:26:15 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eD5bD1Pjg38CxAwIkuXl%2Ba75fVqGd2%2BoRxMSjnOA9P6RRJX4QR%2BLd2Q%2Fbg%2FZYp7PRtrF0FqNVCfz%2BV1wormoX%2FjST79sRlxCiFxU1eaLlPmw%2ByTG5kbprUBB3Vx3%2FSy41TyWcOaPfxVPGKye4nHqc5s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c90096a0afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| iframer.strmrdrfrocf.xyz/index.php?id=601 | 104.21.39.251 | 200 OK | 0 B |
URL HTTP/2iframer.strmrdrfrocf.xyz/index.php?id=601 IP104.21.39.251:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /index.php?id=601 HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-store
access-control-allow-origin: *
link: </streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css>; rel=preload; as=style, </jquery.220afd743d9e9643852e31a135a9f3ae.js>; rel=preload; rel=preload; as=script, </clappr.10a0c239c01882665a0bd2e1d8ea3493.js>; rel=preload; as=script, </levelselector.ee341b104a9c406b73001afe57d16f18.js>; rel=preload; as=script, </keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js>; rel=preload; as=script
x-htz-md: Md eq fullversion
x-htz-rs: Rs eq slck
x-htz-rx: Rx eq https://www.selcuksportshd130.xyz
x-htz-st: St eq HIT
x-htz-ky: Ky eq Rh https://www.selcuksportshd130.xyz Md fullversion Rs slck Rm GET Hs iframer.strmrdrfrocf.xyz Hts iframer.strmrdrfrocf.xyz Ur /index.php Ru /index.php?id=601 Qs id=601 rruri /index.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hRT5RdHBS3ziWVN6dqhsuoxoIoXfHMURO1oyNqxmu18Z%2B6O%2F%2FGyeez%2Fty%2FLSQD7RGZ1zH8F2d1buxv43h0fmEe2QIfs7BA9FWRx33yvWCzFkVdBpAyaZWPssgiV9%2FAJECC5N%2B9Xo808L1Es%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8fcf31fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-h2-pushed: </streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css>,</jquery.220afd743d9e9643852e31a135a9f3ae.js>,</clappr.10a0c239c01882665a0bd2e1d8ea3493.js>,</levelselector.ee341b104a9c406b73001afe57d16f18.js>,</keslanorospucocugu.4eabea4266da6a89fc842e0598b7536b.js>
X-Firefox-Spdy: h2
|
|
| iframer.strmrdrfrocf.xyz/levelselector.ee341b104a9c406b73001afe57d16f18.js | 104.21.39.251 | 200 OK | 0 B |
URL HTTP/2iframer.strmrdrfrocf.xyz/levelselector.ee341b104a9c406b73001afe57d16f18.js IP104.21.39.251:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /levelselector.ee341b104a9c406b73001afe57d16f18.js HTTP/1.1
Host: iframer.strmrdrfrocf.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 28 Nov 2021 15:49:55 GMT
vary: Accept-Encoding
expires: Wed, 06 Sep 2023 19:47:38 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 150276
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2FRxQE8x2K5eLSSJ8YSx9bV7xzILCi54Do9Qk9G13NVbiURiJo546TF04zpMJVYN1n8iImyLGR4ev7C0zxJPeQoc7Iafya%2FuHfyUeNKNsOArmdLaFeuDglHDPvad1Ay%2B%2FhgiITLiwaqFOiw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c900f79fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| whos.amung.us/swidget/uu19fwdxlo.png | 104.22.75.171 | 307 Temporary Redirect | 0 B |
URL HTTP/2whos.amung.us/swidget/uu19fwdxlo.png IP104.22.75.171:0
GET /swidget/uu19fwdxlo.png HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframer.strmrdrfrocf.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Thu, 08 Sep 2022 13:32:15 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/03/379.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74780c923aa195e4-ARN
X-Firefox-Spdy: h2
|
|
| www.selcuksportshd130.xyz/ | 172.67.133.224 | 200 OK | 0 B |
URL HTTP/2www.selcuksportshd130.xyz/ IP172.67.133.224:0
GET / HTTP/1.1
Host: www.selcuksportshd130.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=600
x-frame-options: sameorigin
link: <./css/index.css>; as=style; rel=preload, <./js/index.js>; as=script; rel=preload
cf-cache-status: HIT
age: 361
last-modified: Thu, 08 Sep 2022 13:26:13 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eEFGat48VZ69qmhLUuphRB7jiNAZwBjMuxE6XEO7t10GFZDMGgN4o6mrUOb6UjfYApxWH44K3rBwIu8WLuTqkQSfe3OAvRmxPrvKBIHpDWFI2UFGKb8apaovVvEJv2exs2jHAWHaAeitIaBf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8b8e32b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| unpkg.com/swiper/swiper-bundle.min.css | 104.16.124.175 | 302 Found | 0 B |
URL HTTP/2unpkg.com/swiper/swiper-bundle.min.css IP104.16.124.175:0
GET /swiper/swiper-bundle.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd130.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 08 Sep 2022 13:32:14 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@8.3.2/swiper-bundle.min.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GCEM9QDYT1R3SSBJAF0H5GVQ-fra
cf-cache-status: HIT
age: 538
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74780c8caaa6fab8-OSL
X-Firefox-Spdy: h2
|
|