Overview

URL netcdn.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
IP91.223.82.61
ASNIws Networks LLC
Location Netherlands
Report completed2022-09-13 05:30:35 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-13 2 gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack Phishing
2022-09-13 2 gaminghelper.co/js/jquery.countTo.js Phishing
2022-09-13 2 gaminghelper.co/js/fancySelect.js Phishing
2022-09-13 2 gaminghelper.co/js/sweetalert2.min.js Phishing
2022-09-13 2 gaminghelper.co/js/validator.min.js Phishing
2022-09-13 2 gaminghelper.co/js/com.js Phishing
2022-09-13 2 gaminghelper.co/js/form-scripts.js Phishing
2022-09-13 2 gaminghelper.co/js/jquery.magnific-popup.min.js Phishing
2022-09-13 2 gaminghelper.co/js/sticky.js Phishing
2022-09-13 2 gaminghelper.co/js/main.js Phishing
2022-09-13 2 gaminghelper.co/fonts/bebasneue_bold-webfont.html Phishing
2022-09-13 2 gaminghelper.co/fonts/et-line.woff Phishing
2022-09-13 2 gaminghelper.co/fonts/bebasneue_regular-webfont.html Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

URL r3.o.lencr.org/
IP  23.33.119.27
Magic gzip compressed data, max compression\012- data
Size 1187
MD5 c832c6005f70cd2e1a9f207df6cebaa1
SHA1 340d3b144137d3898e513250455220e9e99d8b01
SHA256 f2f5a96ccc4d06102e2f3ec5688cd21810b2c1137bc6f2d9e569bd6437aa8717
Analyzer Analysed Verdict Comment
VirusTotal 0/0


Passive DNS (16)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS downloadlocked.com (1) 127304 2021-10-06 18:17:41 UTC 2022-09-13 02:33:12 UTC 23.22.126.183
mnemonic passive DNS is4-ssl.mzstatic.com (1) 1752 2015-03-08 18:27:51 UTC 2022-09-13 04:58:38 UTC 23.72.244.23
mnemonic passive DNS track.enigmacdn.com (2) 0 2021-07-17 01:36:30 UTC 2022-09-13 02:57:45 UTC 91.223.82.61 Unknown ranking
mnemonic passive DNS ocsp.pki.goog (8) 175 2017-06-14 07:23:31 UTC 2022-09-12 04:51:36 UTC 142.250.74.3
mnemonic passive DNS s10.histats.com (1) 15211 2012-05-21 17:14:14 UTC 2022-09-13 04:36:43 UTC 46.105.201.240
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-13 04:47:34 UTC 44.238.202.79
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-09-12 23:34:51 UTC 93.184.220.29
mnemonic passive DNS s4.histats.com (1) 12782 2012-05-21 17:14:14 UTC 2022-09-13 04:39:23 UTC 192.99.0.58
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-12 12:46:20 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-12 18:42:19 UTC 143.204.55.35
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-12 04:53:23 UTC 34.117.237.239
mnemonic passive DNS gaminghelper.co (34) 0 2021-10-07 04:32:40 UTC 2022-09-12 22:57:39 UTC 91.223.82.61 Unknown ranking
mnemonic passive DNS i0.wp.com (1) 3021 2013-09-17 06:14:42 UTC 2022-09-12 05:52:01 UTC 192.0.77.2
mnemonic passive DNS netcdn.co (1) 0 2021-06-14 02:08:46 UTC 2022-09-13 02:29:39 UTC 91.223.82.61 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (9) 344 2020-12-02 08:52:13 UTC 2022-09-12 04:51:47 UTC 23.33.119.27
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-12 21:02:00 UTC 143.204.55.25


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 91.223.82.61

Date UQ / IDS / BL URL IP
2022-12-09 18:21:30 +0000
0 - 0 - 12 netcdn.co/app/431946152/free-roblox-robux-gen (...) 91.223.82.61
2022-12-09 15:03:34 +0000
0 - 0 - 14 gaminghelper.co/app/431946152/robux-hack-2021 (...) 91.223.82.61
2022-12-09 09:28:59 +0000
0 - 0 - 14 gaminghelper.co/app/431946152/roblox-super-po (...) 91.223.82.61
2022-12-09 00:03:16 +0000
0 - 0 - 49 netcdn.xyz/app/1330123889/pubg-uc-or-ag-game-hack 91.223.82.61
2022-12-09 00:02:53 +0000
0 - 0 - 49 gaminghelper.co/app/1330123889/pubg-uc-or-ag- (...) 91.223.82.61

Last 5 reports on ASN: Iws Networks LLC

Date UQ / IDS / BL URL IP
2022-12-09 18:21:30 +0000
0 - 0 - 12 netcdn.co/app/431946152/free-roblox-robux-gen (...) 91.223.82.61
2022-12-09 15:03:34 +0000
0 - 0 - 14 gaminghelper.co/app/431946152/robux-hack-2021 (...) 91.223.82.61
2022-12-09 09:28:59 +0000
0 - 0 - 14 gaminghelper.co/app/431946152/roblox-super-po (...) 91.223.82.61
2022-12-09 00:03:16 +0000
0 - 0 - 49 netcdn.xyz/app/1330123889/pubg-uc-or-ag-game-hack 91.223.82.61
2022-12-09 00:02:53 +0000
0 - 0 - 49 gaminghelper.co/app/1330123889/pubg-uc-or-ag- (...) 91.223.82.61

Last 5 reports on domain: netcdn.co

Date UQ / IDS / BL URL IP
2022-12-09 18:21:30 +0000
0 - 0 - 12 netcdn.co/app/431946152/free-roblox-robux-gen (...) 91.223.82.61
2022-12-08 11:03:14 +0000
0 - 0 - 45 netcdn.co/app/431946152/get-free-robux-now-no (...) 91.223.82.61
2022-12-08 09:11:34 +0000
0 - 0 - 35 netcdn.co/app/431946152/how-to-generate-free- (...) 91.223.82.61
2022-12-08 09:11:30 +0000
0 - 0 - 36 netcdn.co/app/431946152/youtube-how-to-get-fr (...) 91.223.82.61
2022-12-07 19:12:32 +0000
0 - 0 - 34 netcdn.co/app/431946152/minish-roblox-hacker- (...) 91.223.82.61

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-12-05 14:47:04 +0000
0 - 0 - 49 gaminghelper.co/app/431946152/roblox-knife-ha (...) 91.223.82.61
2022-12-05 14:18:11 +0000
0 - 0 - 47 gaminghelper.co/app/431946152/how-to-get-a-fr (...) 91.223.82.61
2022-12-05 13:27:52 +0000
0 - 0 - 46 netcdn.co/app/431946152/roblox-free-robux-cod (...) 91.223.82.61
2022-12-05 11:58:23 +0000
0 - 0 - 48 netcdn.co/app/431946152/fun-free-games-like-r (...) 91.223.82.61
2022-12-05 11:55:09 +0000
0 - 0 - 48 netcdn.co/app/431946152/roblox-booga-booga-ha (...) 91.223.82.61


JavaScript

Executed Scripts (23)


Executed Evals (0)


Executed Writes (3)

#1 JavaScript::Write (size: 2866, repeated: 1) - SHA256: bd9b9037f2231777bcc799f76eeeae2e5a01663cce765e72e2ed1bda49cc926c

                                        < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF8" > < link rel = "stylesheet"
type = "text/css"
href = "https://translate.googleapis.com/translate_static/css/translateelement.css" > < /head><body class="goog-te-banner" scroll="no" border=0 dir="ltr"><table border=0 cellspacing=0 cellpadding=0 width=100% height=100%><tr valign=middle><td width=1 nowrap><a href="https:/ / translate.google.com " class="
goog - logo - link " target="
_blank "><img src="
https: //www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png" alt="Google Oversetter"></a></td><td width=1><img src="https://www.google.com/images/cleardot.gif" width="9" height="15" title="Innholdet p� denne sikre siden sendes til Google via en sikker tilkobling for � bli oversatt." alt="Innholdet p� denne sikre siden sendes til Google via en sikker tilkobling for � bli oversatt." style="background-image:url(https://translate.googleapis.com/translate_static/img/te_ctrl3.gif);background-position:-56px 0px;margin:0 4px"></td><td class="goog-te-banner-margin"></td><td><table border=0 cellspacing=0 cellpadding=0 height=100%><tr id=":1.promptSection" style="display:none" valign=middle><td nowrap><span class="goog-te-banner-content">Vis denne siden p�: <span id=":1.promptTargetLang"></span></span></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":1.confirm"><b>Oversett</b></button></div></div></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":1.noAutoPopup"></button></div></div></td></tr><tr id=":1.progressSection" style="display:none" valign=middle><td><span class="goog-te-banner-content">Oversettelse p�g�r&nbsp;<span dir="ltr">(<b id=":1.progressValue"></b>%)</span>&nbsp;<img src="https://translate.googleapis.com/translate_static/img/loading.gif"></span></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":1.cancel">Avbryt</button></div></div></td></tr><tr id=":1.finishSection" style="display:none"><td><span class="goog-te-banner-content">Oversatt til: <span id=":1.finishTargetLang"></span></span></td><td class="goog-te-banner-margin"></td><td nowrap><div class="goog-te-button"><div><button id=":1.restore">Vis original</button></div></div></td></tr><tr id=":1.errorSection" style="display:none" valign=middle><td><span id=":1.errorContent" class="goog-te-banner-content"></span></td></tr></table></td><td class="goog-te-banner-margin"></td><td width=1 id="options"></td><td width=1><a id=":1.close" class="goog-close-link" href="javascript:void(0)" title="Lukk"><img src="https://www.google.com/images/cleardot.gif" width="15" height="15" alt="Lukk" style="background-image:url(https://translate.googleapis.com/translate_static/img/te_ctrl3.gif);background-position:-28px 0px"></a></td></tr></table></body>
                                    

#2 JavaScript::Write (size: 382, repeated: 1) - SHA256: d2485660acb012ca34ca118cb59e6fbb11edb83ea98a0e050dd9bed186ee9274

                                        < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF8" > < link rel = "stylesheet"
type = "text/css"
href = "https://translate.googleapis.com/translate_static/css/translateelement.css" > < /head><body scroll="no" style="margin:0px;overflow:hidden" dir="ltr" marginHeight=0 marginWidth=0 leftMargin=0 topMargin=0 border=0><div id=":2.menuBody" class="goog-te-menu"></div > < /body>
                                    

#3 JavaScript::Write (size: 382, repeated: 1) - SHA256: c68c84b340115ef05318c4438aed24d3cd6198fdac59ac30dc7bac98452fda69

                                        < head > < meta http - equiv = "Content-Type"
content = "text/html; charset=UTF8" > < link rel = "stylesheet"
type = "text/css"
href = "https://translate.googleapis.com/translate_static/css/translateelement.css" > < /head><body scroll="no" style="margin:0px;overflow:hidden" dir="ltr" marginHeight=0 marginWidth=0 leftMargin=0 topMargin=0 border=0><div id=":3.menuBody" class="goog-te-menu"></div > < /body>
                                    


HTTP Transactions (72)


Request Response
                                        
                                            GET /app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack HTTP/1.1 
Host: netcdn.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         91.223.82.61
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:23 GMT
Content-Length: 296
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   296
Md5:    ca0c386680e7eabef49727b0ef3d1d8b
Sha1:   f40ab060249c1b171cf4efed9b2fe857c3666712
Sha256: 3887305f5136fa0e60dff04495ea2fc4ec67fac74eb67454ecf35e5b672e9457
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 13 Sep 2022 05:08:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jLLBl2y6S8SOeA2rb8jUMp1BJInVJt9V0OnsNRtF01ZphJk2kdWFgQ==
Age: 1302


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2468
Expires: Tue, 13 Sep 2022 06:11:32 GMT
Date: Tue, 13 Sep 2022 05:30:24 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dbnC_ewEuVPNxdRjOC0oK0cJE1rtoLlava9YWyy_nPRNd6wv5gcJ3A==
age: 79992
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 13 Sep 2022 05:30:24 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "03533279EAA92C6F0AE21AE3D0D0C14731355339EBDE7FA414A967E32D5B2684"
Last-Modified: Mon, 12 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19808
Expires: Tue, 13 Sep 2022 11:00:32 GMT
Date: Tue, 13 Sep 2022 05:30:24 GMT
Connection: keep-alive

                                        
                                            GET /app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
X-Powered-By: PHP/8.0.8RC1
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14923)
Size:   20007
Md5:    3dfe4d1d4ce7321aaef89102529fccd7
Sha1:   599ccbf6ef303d70a3d652b911c5afceccdb8482
Sha256: 5042c79b11112903a11e00aacd199b309d7b90540fae89bfc85f952aa26b4cf5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /css/bootstrap.min.css HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:30:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c104-1d9bb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   19597
Md5:    3f142cfc2d7123b31a1e696e0591f27a
Sha1:   834192dbadf2713cd2ff89f50d7ec2f1d4782e54
Sha256: 3421e2383a7c02f24509d2f1294d3099b658d0773f97706b87b832b0b770c0b6
                                        
                                            GET /css/style.css HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:30:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c106-bd7b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (1512)
Size:   8520
Md5:    4d36bdeba8bb00f4ee280771fddfa689
Sha1:   8dfbed7251f5bb010d5fe8f64e0d60abc3e9fd54
Sha256: 08bb84420272831b8755bc5bd2858bf8a486006a9367b670d826ee516262a2c8
                                        
                                            GET /css/animate.css HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:30:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c104-10cbc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   4026
Md5:    48bc9b81bca18c06ba937cbb880b4cb3
Sha1:   697313edfad185bcca5c7bde18da4a98f93e3adb
Sha256: b30b4d8565f9af6c8d2cb3839aa09dbccd60ca1a766465d542debade38f45741
                                        
                                            GET /css/sweetalert2.min.css HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:30:30 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c106-36a3"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (13987), with no line terminators
Size:   2737
Md5:    1cfac88a4a8e1bc20b811757fb028b40
Sha1:   10427c064f703342d031411a3310e2a5ef2083bc
Sha256: 53976df2ad3ce0c0f2632bb620bbb02d930a5eb943298170e97189f029a0d70d
                                        
                                            GET /css/magnific-popup.css HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:30:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c105-1f0a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   1994
Md5:    c0275239cb960b014d780d8105b44d72
Sha1:   8db83ac790988232549a3740ecf04fc199da1ce8
Sha256: 211b79363793093a7a2f1d342768844e938e88156b62293093185a6500ead1cf
                                        
                                            GET /css/fancySelect.css HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:30:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c105-109d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   1023
Md5:    458a1a06f282aa4c457a8b613d6a38e6
Sha1:   b524e1cb32722230e18bc85f414b9a10e43a7e2d
Sha256: 3f41176d4616a36f4325865bb3c0ea652f3616dec60b31bd923df91f600506b2
                                        
                                            GET /js/jquery.countTo.js HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:33:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c1b3-eb1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   1125
Md5:    547f5246e091d19af521dee35588e468
Sha1:   4772f3c1e62865ccbbab04abd39e69510c8f5843
Sha256: 67880d8532d95db3e74b7da985ca2fe7c9d9660e3dd125202cebcda96a2007e2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/fancySelect.js HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c1b2-1a7a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   1661
Md5:    a60791b5b353371813114e815d946494
Sha1:   69d1f371b0ed899641e640b2649c0914302812bd
Sha256: 5d19375a0386f8ea11115e3145c61105cfa1daca00d15ad54b49c84967f518d0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/sweetalert2.min.js HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:33:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c1b9-4f51"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (20305), with no line terminators
Size:   6538
Md5:    b238ef007e57c4c8f9447cba68fdb3a2
Sha1:   2d4ca455aca3fcd8ee7ac2e2883cfa89c87bd532
Sha256: aeafa1e7bb6a973eac2b4f5462844b1c2d64d53eb2e09e75f265e646320f7080

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/validator.min.js HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:33:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c1b9-17a7"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (5862)
Size:   2094
Md5:    1ab13fa2eeca5d16de99a1cad839416c
Sha1:   0d0a95bd88d04b02d89e1162dd3ebb20b5543dd8
Sha256: 56b8d7fb44f86809b49d416022455ac170fb0b79d1ab4b6e5192a046e660f667

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/com.js HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c1b2-461a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  C source, Unicode text, UTF-8 text, with very long lines (2456)
Size:   3265
Md5:    ecf323c878106fa274f5e9f3b3a82437
Sha1:   86b15826e8a83c81da7ef264dd8e3ff59ef5c1bf
Sha256: 28babf5e232e3dc0985bab21a28eea25b17bc078bafc92a6ba049eefb1e45720

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/form-scripts.js HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c1b2-5bd"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   609
Md5:    4fb85eb3b2f0dd8b8f5953c58236da3e
Sha1:   1c9f6c7a15a3248147e056672ffbf4fdbaed6718
Sha256: 3dd0f5e5567c73519dc3eeb98ba6fef9d2b2982af24544ba3d7bbc684d6bae6c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jquery.magnific-popup.min.js HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:33:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c1b6-5297"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (21014)
Size:   7685
Md5:    12a9a563724e70a895de0fbd5f7b4ee5
Sha1:   a14c616f532deb9ca2d5fa0de6124d47ea60ab57
Sha256: f2e1cd5f2953925591288bd1cc3f167bbd392497476119083458e33e9ab87079

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/sticky.js HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 0
Last-Modified: Fri, 03 Sep 2021 06:33:28 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c1b8-0"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 05:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 05:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 05:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 05:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/main.js HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Fri, 03 Sep 2021 06:33:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"6131c1b7-a08b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (16162)
Size:   15195
Md5:    562dc83f2f14b713905fe69a0994e11d
Sha1:   43cd616f9ea8c8c1eb0edccd54a29e2490fcf90a
Sha256: 745ecf708bc71ba73f7071b8a35c3f639ec7f3e05ceb826458a1b6a8fb4fe782

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 05:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 05:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 05:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D110A4D8DD6F7E8BAE6AB3F65694A7D771ED31F05BE1F6C32963EA399A3726B5"
Last-Modified: Sun, 11 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19809
Expires: Tue, 13 Sep 2022 11:00:33 GMT
Date: Tue, 13 Sep 2022 05:30:24 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  gzip compressed data, max compression\012- data
Size:   1187
Md5:    c832c6005f70cd2e1a9f207df6cebaa1
Sha1:   340d3b144137d3898e513250455220e9e99d8b01
Sha256: f2f5a96ccc4d06102e2f3ec5688cd21810b2c1137bc6f2d9e569bd6437aa8717

Alerts:
  File Analyzers:
    - virustotal: 0/0
                                        
                                            GET /img/robux.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 14564
Last-Modified: Fri, 03 Sep 2021 06:31:43 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c14f-38e4"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size:   14564
Md5:    9c5420a8f8c55be36294fce245595dba
Sha1:   4b9a024b51a475b1b7514a7650ff684ec9323572
Sha256: 44e5a0923e6a0c2157435f215db9d3c2edf95408dfb3d87fa553830f582e24fd
                                        
                                            GET /cl/js/114v1 HTTP/1.1 
Host: downloadlocked.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/
Cookie: XSRF-TOKEN=eyJpdiI6IlZRR2M1RVNqdEhORkxONTcxVElTM2c9PSIsInZhbHVlIjoiam9ZMS9waGZ4eW5yblo2Rmk1VTB3cGFLWFJ3ME1PWWhGNzVHdVBPNzdNd000NVc2aFFBd3lBNkYyUWJjb1d3dzBoVSt0a2xwckFQNGVtNjJIdW5zVXhEdEFPWldLcjByRVprNEZnSXZQQ1BBQ2ovT1ROSkcvNjBVeEFyNitFSloiLCJtYWMiOiJjZDA2NWZiMmZiNzVkMjcxZWY3ZGIyNTVmNTEyMzgyM2Y4OTEyZTU1ODZmZGRiODZlZjEzYWE1MzQ1MmYzMWU0IiwidGFnIjoiIn0%3D; ogads_session=eyJpdiI6InUwTzlCUk0rMTVKTmdlazNjdnh6T2c9PSIsInZhbHVlIjoiZ3NQQlIzeGRKWU1NaWFjWGgrNTg0MUJHZnlUZGV6SFNWdjhYS0ZadUZWT2tBaFBLYzVXcmtSMEtQazRhOXpLS3k0Zks4TUwxNjluM1EwT3JidUxGYU1oalZVOS9xZkJRU3R6a21SQWE2MXZER3VUL0orMlY2S2d1SFNRdytwUzEiLCJtYWMiOiIwYjFkNzllNTY5ZDQ4NWI4YTMyZmRkZGJmOTkyMTE1YTJiNmExMzhjNmU3YzU5ZmE0NzVjZTFlNDJlOGU5NTdjIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.22.126.183
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
server: nginx
date: Tue, 13 Sep 2022 05:30:24 GMT
cache-control: no-cache, private
access-control-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-robots-tag: none
set-cookie: XSRF-TOKEN=eyJpdiI6InZwSFRLdXQ2NmxlWEV6eG1EQTg5eWc9PSIsInZhbHVlIjoiYlFibDQyNW5XdEdhckloTGFKYmxac1lnY3hVby85RUx0bnVsZHBKMTR0RWpUSGdOQWtRR2pzYUhESDkyYSswU1VGbml4TjFhS3ZyNE1LdTBhZDBabU0rSDVrZVFXc3k5UDdaRGxJSkFpcnRFZFkxQVdFNEEwSkVINGUwQkVxcUkiLCJtYWMiOiJmMWU3NzM0NzI0ZGY0ZmVmZDM3OWRjMTIyODdiNDAwZWI2YmJhMjliZWE3Zjk4N2NkODc1MjI3NWQxYTlkMjZjIiwidGFnIjoiIn0%3D; expires=Wed, 14-Sep-2022 01:30:24 GMT; Max-Age=72000; path=/; secure; samesite=none ogads_session=eyJpdiI6IlFCSU5jS0U0UXlvQTN5WCtjZDNaMkE9PSIsInZhbHVlIjoiZnBKdWxXR1NoeEdERlVMUUtTdmlteFRmM000WUo1QXBaNXNtRFgyeW41YkgyQlRNOStMdjFKcHVMalh0amxpcS9OSVVCV01STVdxQXNwMEtpZGc0ZEhlZ3BmWDcwc0FqY2JiazA5ZU1ocEVwdHVCM3l3WUMyTSthc2IrcGUxV0giLCJtYWMiOiJkN2EzNGQ0YTc3YzE1MmZmYTE2MjVjNTY5ZTRiNDdlYWM0N2UyNzg3NmZkNTBmNzhiNzdjNjAyODA4NjI4ZWEwIiwidGFnIjoiIn0%3D; expires=Wed, 14-Sep-2022 01:30:24 GMT; Max-Age=72000; path=/; secure; httponly; samesite=none
x-xss-protection: 1; mode=block, 1; mode=block
x-content-type-options: DENY, nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   12164
Md5:    aace7e55a257fc2be3604ede532113c5
Sha1:   c26f8010d8c55eba76e638389c379e1f56d057fd
Sha256: 15bbd46fb7fb24806f5be8b3004bc7228b4b78c65b830bf7f0f79cd2757ff54e
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 13 Sep 2022 05:03:22 GMT
Expires: Tue, 13 Sep 2022 05:47:45 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: n7jfqKZp1hPgI1cD4g5xtjt-cuIMZMaTHq0gc-yExWKMDSyj8Z9OKw==
Age: 1622


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /enigmanetwork.net/dmca.png HTTP/1.1 
Host: i0.wp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.0.77.2
HTTP/2 200 OK
content-type: image/webp
                                        
server: nginx
date: Tue, 13 Sep 2022 05:30:24 GMT
content-length: 668
last-modified: Thu, 04 Aug 2022 17:20:08 GMT
expires: Sun, 04 Aug 2024 05:20:08 GMT
cache-control: public, max-age=63115200
link: <http://enigmanetwork.net/dmca.png>; rel="canonical"
x-content-type-options: nosniff
etag: "a264775a6858f15f"
vary: Accept
x-nc: HIT arn 5
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   668
Md5:    fa302d465f15a34e8264bc761a6902aa
Sha1:   2c73911e3cfcf82860d1d59a0ccd2625ae98fffb
Sha256: 0cbddd5e01b49d35d16b15fc54a481a17a0f2803c2da6807800428139dd50f7f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4330
Cache-Control: max-age=127505
Date: Tue, 13 Sep 2022 05:30:24 GMT
Etag: "631f5397-1d7"
Expires: Wed, 14 Sep 2022 16:55:29 GMT
Last-Modified: Mon, 12 Sep 2022 15:43:19 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /img/pr-l.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/css/style.css
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 7453
Last-Modified: Fri, 03 Sep 2021 06:31:41 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c14d-1d1d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 960 x 1080, 8-bit colormap, non-interlaced\012- data
Size:   7453
Md5:    91d0b1f8f5b7685478ff0d1f461fa658
Sha1:   7e457376b687add741a5d6cea2713dc4ef37efbc
Sha256: 37e1b903b1a3b99f70dd9b463948bbaed162d7f3cc957dbc5084f0c523b9ec0d
                                        
                                            GET /img/pr-r.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/css/style.css
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 11003
Last-Modified: Fri, 03 Sep 2021 06:31:41 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c14d-2afb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 960 x 1080, 8-bit colormap, non-interlaced\012- data
Size:   11003
Md5:    284e10ee335890399e8f772c430570a9
Sha1:   188bf895905cee7d579aad2b6b5cdf795741f9cd
Sha256: e88b54e0aa65055cb25657c0ed283b4d768a79770980c27f424886a48fa046ef
                                        
                                            GET /img/panel-overlay.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/css/style.css
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 3116
Last-Modified: Fri, 03 Sep 2021 06:31:34 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c146-c2c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 960 x 661, 4-bit colormap, non-interlaced\012- data
Size:   3116
Md5:    2b026d93f79b384005e4252c80701791
Sha1:   87804a0d83d2e745b31526c8b60d026abecbe73a
Sha256: b7a5d35c1c7be1953002244f054a14f38ed11912ad52d25a8e963774f7f52e0e
                                        
                                            GET /image/thumb/Purple112/v4/6d/85/7f/6d857f0d-3613-9573-669a-3f3f024be41a/AppIcon-1x_U007emarketing-0-7-0-0-85-220.png/150x150bb.jpg HTTP/1.1 
Host: is4-ssl.mzstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.72.244.23
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: daiquiri/3.0.0
content-length: 12213
x-apple-jingle-correlation-key: HCATQI45JHOVEBRR6ANSYZGCPA
x-apple-request-uuid: 38813823-9d49-dd52-0631-f01b2c64c278
b3: 388138239d49dd520631f01b2c64c278-a3de7f35e9f17ad4
x-b3-traceid: 388138239d49dd520631f01b2c64c278
x-b3-spanid: a3de7f35e9f17ad4
apple-seq: 0.0
apple-tk: false
apple-originating-system: UnknownOriginatingSystem
last-modified: Thu, 08 Sep 2022 21:01:25 GMT
etag: "MSwxLjI4LTIySCxWZXJzaW9uIDEyLjEgKEJ1aWxkIDIxQzUyKSwxNjYyNjcwODg1MTIzLGlzQnVpbGRWZXJzaW9uTm90U2V0LDUwMjczLG5vRWZmZWN0"
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Type,ETag,Cache-Control,Expires,Last-Modified
timing-allow-origin: *
strict-transport-security: max-age=31536000; includeSubDomains
x-daiquiri-instance: daiquiri:13624002:mr85p00it-hyhk03094901:7987:22RELEASE113:daiquiri-amp-processing-shared-int-001-mr
cdnuuid: d6bb654f-5d25-44aa-ad1a-fb3f96224b2f-745158794
cache-control: no-transform, max-age=16565784
date: Tue, 13 Sep 2022 05:30:24 GMT
x-cache: TCP_MEM_HIT from a23-72-139-22.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 150x150, components 3\012- data
Size:   12213
Md5:    c2da90c8eaab6855cdefd4ed866589b0
Sha1:   ce97132b5df7ab97431da4b1300b855b40928137
Sha256: 23e21b8236836ee07053c24c4dd79baac9140cd5c98c155dd19626524d5048f1
                                        
                                            GET /img/smallbtnbg.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/css/style.css
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 1405
Last-Modified: Fri, 03 Sep 2021 06:31:48 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c154-57d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 100 x 150, 8-bit colormap, non-interlaced\012- data
Size:   1405
Md5:    92b84c143879abe85792a3408ae4845d
Sha1:   1f8e983f7514d582e81cfee98ad8bb40ced26972
Sha256: dcf687cc9a059bc7a036faf3a86c50103d04e1fdca867deb7553ec9136719f0d
                                        
                                            GET /img/button-dot.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/css/style.css
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 672
Last-Modified: Fri, 03 Sep 2021 06:31:14 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c132-2a0"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 15 x 15, 8-bit colormap, non-interlaced\012- data
Size:   672
Md5:    478aefab2e280b16b0372e607414d3c2
Sha1:   710f5aaa706ec23cbf45006d7c1d25be76b4fa64
Sha256: a651e77df132fc0c4dbccb7c56f84923c28dcb159f4b7a112bde8bbc548632bc
                                        
                                            GET /img/smallbtnbg-r.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/css/style.css
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 1393
Last-Modified: Fri, 03 Sep 2021 06:31:48 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c154-571"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 100 x 150, 8-bit colormap, non-interlaced\012- data
Size:   1393
Md5:    bdfffd47e30bf7d045d45f0125a33164
Sha1:   5834aea23f79a1ddccea3825bd51249307435c5f
Sha256: 0f61dff49d41fddbcc21de3dd4f1a62006f366083361d725bfd92ccf87212067
                                        
                                            GET /fonts/bebasneue_bold-webfont.html HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gaminghelper.co/css/style.css
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 15216
Last-Modified: Fri, 03 Sep 2021 06:30:48 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: "6131c118-3b70"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15216, version 1.197\012- data
Size:   15216
Md5:    772fc6a0795e2498a1715526dd95ac22
Sha1:   d410a8da10385a0ef11a74e69644493b99315fc3
Sha256: 13c03e5c6b49e447770ba4d0aee22d4aedbeed87e94f54fdcaf990934c109830

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/btn-img.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/css/style.css
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 1335
Last-Modified: Fri, 03 Sep 2021 06:31:13 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c131-537"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 150 x 100, 8-bit colormap, non-interlaced\012- data
Size:   1335
Md5:    817cb08a965fe5bf8debba11091e94c0
Sha1:   214d58c18bcbcfebd1606554929e9bc5f65755c6
Sha256: e7e359cb00b793c60c192fb1dbffa401806d99267e9b55d8bc9ce3c8260568ae
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 13 Sep 2022 05:30:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /fonts/et-line.woff HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gaminghelper.co/css/style.css
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: font/woff
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 55220
Last-Modified: Fri, 03 Sep 2021 06:30:56 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c120-d7b4"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format, CFF, length 55220, version 1.0\012- data
Size:   55220
Md5:    b01ff252761958325faab1535c90c87f
Sha1:   d33413e7bc42acc8837cc9030ca45d29c1ccf0c6
Sha256: 19d2f43d546ada73dd083f7778aa4a5cac1a8e7a3af56efccae580fce07a5e1c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /fonts/bebasneue_regular-webfont.html HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gaminghelper.co/css/style.css
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 15948
Last-Modified: Fri, 03 Sep 2021 06:30:51 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: "6131c11b-3e4c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15948, version 1.197\012- data
Size:   15948
Md5:    af83f1b88fb4654673e9c841bd22a8c7
Sha1:   61e5a340ea87431211d732024f2703dca5b80cbc
Sha256: bee0bcc11701aea746fd8b734379ba5e003a034460bfd71d88dc364b4d939be6

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /img/cf/Austria.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2; username1Cookie=Andrew; username2Cookie=Fausto Greco; username3Cookie=Anacleto; comment1Cookie=that was amazing!!! thanks a lot for this. . c= This site is awesome !; comment2Cookie=this is legit website !; comment3Cookie=Wow :D thanks for sharing ! Perfect! this is what i am looking for! 1000000 Cash.. :D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 1185
Last-Modified: Fri, 03 Sep 2021 06:32:02 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c162-4a1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size:   1185
Md5:    b5d8b3b68f859a85af6cfaeebfeb1771
Sha1:   cf18ba15e1a24655f941de3373a5af219fe7f7ca
Sha256: 46720d083791121548d358df470294388da27184cd0de1d6e85afc8a063d4274
                                        
                                            GET /close.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2; username1Cookie=Andrew; username2Cookie=Fausto Greco; username3Cookie=Anacleto; comment1Cookie=that was amazing!!! thanks a lot for this. . c= This site is awesome !; comment2Cookie=this is legit website !; comment3Cookie=Wow :D thanks for sharing ! Perfect! this is what i am looking for! 1000000 Cash.. :D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Content-Length: 4878
Last-Modified: Fri, 03 Sep 2021 06:30:21 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c0fd-130e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size:   4878
Md5:    fb5d414fccc35f19fde0f30a8c98139b
Sha1:   4b4a030923039e56efdad2c2d97f0a74d2c74657
Sha256: a967335d601fb662b5723f1181b3d07f25811d2ca26131598c48482b9935217b
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0CAD23688DF438B11455AE825F379D1379C1F71918EB2B118EBC8D45E80E2B35"
Last-Modified: Sat, 10 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15611
Expires: Tue, 13 Sep 2022 09:50:36 GMT
Date: Tue, 13 Sep 2022 05:30:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 218
Cache-Control: 'max-age=158059'
Date: Tue, 13 Sep 2022 05:30:25 GMT
Last-Modified: Tue, 13 Sep 2022 05:26:47 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /matomo.js HTTP/1.1 
Host: track.enigmacdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:24 GMT
Last-Modified: Wed, 26 May 2021 02:21:35 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"60adb0af-f330"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (1404)
Size:   20210
Md5:    8cd72e4f9c8225acdd40bf7dc2406e19
Sha1:   0cd39b8143536dfb54d1224e502ccc6567081204
Sha256: f7a1fe5cff057b3d4c769d456085425932f39e43050ba4ff77fd9e0a66b57881
                                        
                                            GET /app/431946152/img/favicon-16x16.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663046159560; HstCmu4515739=1663045221259; HstPn4515739=2; HstPt4515739=2; HstCnv4515739=1; HstCns4515739=2; username1Cookie=Andrew; username2Cookie=Fausto Greco; username3Cookie=Anacleto; comment1Cookie=that was amazing!!! thanks a lot for this. . c= This site is awesome !; comment2Cookie=this is legit website !; comment3Cookie=Wow :D thanks for sharing ! Perfect! this is what i am looking for! 1000000 Cash.. :D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
X-Powered-By: PHP/8.0.8RC1
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14923)
Size:   20007
Md5:    3dfe4d1d4ce7321aaef89102529fccd7
Sha1:   599ccbf6ef303d70a3d652b911c5afceccdb8482
Sha256: 5042c79b11112903a11e00aacd199b309d7b90540fae89bfc85f952aa26b4cf5
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "41AFD36104D30803EB2FAE472A09E0254312557F37BB65216A46139B1365CE59"
Last-Modified: Sun, 11 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9705
Expires: Tue, 13 Sep 2022 08:12:10 GMT
Date: Tue, 13 Sep 2022 05:30:25 GMT
Connection: keep-alive

                                        
                                            GET /js15_as.js HTTP/1.1 
Host: s10.histats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         46.105.201.240
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Tue, 13 Sep 2022 05:28:49 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 97059479
content-encoding: br
x-cdn-pop: rbx1
x-cdn-pop-ip: 51.254.41.128/25
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (11440), with no line terminators
Size:   4364
Md5:    ed192092c129db6123a3397855f42619
Sha1:   067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
Sha256: 998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wOKh/O8TB9bgcAKJ87g99w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.238.202.79
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WihgOXbod9Z4a23kj/5L9LeVDRo=

                                        
                                            GET /stats/0.php?4515739&@f16&@g0&@h3&@i1&@j1663047012653&@k853093&@l3&@mRobux%20Generator%20Online&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-72461173&@b3:1663047013&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fgaminghelper.co%2Fapp%2F431946152%2Froblox-mad-city-free-car-glitch-season-4-game-hack&@w HTTP/1.1 
Host: s4.histats.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         192.99.0.58
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
                                        
Date: Tue, 13 Sep 2022 05:30:25 GMT
Content-Length: 52
Connection: close


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   52
Md5:    67fb8d23b42770658b2c71dc8370fbcf
Sha1:   f5390fa6e9799456015d5dcf90ff0914874c7529
Sha256: 0fbf453033ad30bbfe866bc2d4eff839a389447e33369e669b41f9a81d02ed8e
                                        
                                            POST /matomo.php?action_name=Robux%20Generator%20Online&idsite=1&rec=1&r=517460&h=5&m=30&s=12&url=https%3A%2F%2Fgaminghelper.co%2Fapp%2F431946152%2Froblox-mad-city-free-car-glitch-season-4-game-hack&_id=fc060cb5f9277260&_idn=0&_refts=0&send_image=0&cookie=1&res=1280x1024&pv_id=dkbT04&pf_net=183&pf_srv=50&pf_tfr=25&pf_dm1=576 HTTP/1.1 
Host: track.enigmacdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: https://gaminghelper.co
Connection: keep-alive
Referer: https://gaminghelper.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         91.223.82.61
HTTP/1.1 204 No Response
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:26 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=60
X-Powered-By: PHP/8.0.8RC1
Access-Control-Allow-Origin: https://gaminghelper.co
Access-Control-Allow-Credentials: true

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4371
Expires: Tue, 13 Sep 2022 06:43:17 GMT
Date: Tue, 13 Sep 2022 05:30:26 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4371
Expires: Tue, 13 Sep 2022 06:43:17 GMT
Date: Tue, 13 Sep 2022 05:30:26 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4371
Expires: Tue, 13 Sep 2022 06:43:17 GMT
Date: Tue, 13 Sep 2022 05:30:26 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.33.119.27
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "EC9DDD9D47E4CD14BD7471042CE3060C1D119038DAC5D1F02A4040C617228B0D"
Last-Modified: Mon, 12 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4371
Expires: Tue, 13 Sep 2022 06:43:17 GMT
Date: Tue, 13 Sep 2022 05:30:26 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F898fa8c6-1f06-4fa4-88d0-333a32c1a7a8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10245
x-amzn-requestid: 20d58a44-c942-46a8-9136-a824d775275c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLNZPFsjoAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ac2a1-24d2272a61fd0f39088251b4;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 04:35:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 2E2yaVqFHLXdfuJns8hs9DNomHNQWVNVSeZSCMdD2W7bGMMgA0QoZQ==
via: 1.1 024f97192fe648974da2251fbcc71f38.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 22:17:59 GMT
age: 25947
etag: "ec2e96359ef3a236514cab21af80ea5b9420e9c3"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10245
Md5:    019416755742a78ddf35671ba5eaccc7
Sha1:   ec2e96359ef3a236514cab21af80ea5b9420e9c3
Sha256: a6b0e0ec56c2ce2f94dae8032e0deb297236c35f7a8928a14a254e3fdb2a255a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2830e2cb-8887-441e-8c0c-906b8fbb2366.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9945
x-amzn-requestid: a347749f-a63a-4533-a274-7151b9f235ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXcX8HAKoAMF5EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa765-56cff18515b2a5b3397231df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:40:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 43wWNADffkA0e8T-SYvAMjp266nAE5hrDjNMQQsuYeT0i6xQt7wLVg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:55:34 GMT
age: 27292
etag: "744fee4a0baa22ba3aa352d60620a916972b47dd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9945
Md5:    c9ab2ec10c79b91d15edb1d1e3dc763c
Sha1:   744fee4a0baa22ba3aa352d60620a916972b47dd
Sha256: f7bb66f5bb572d73f936fc74823f51ede1f2c4e309a939b39d9529ff8f757fbe
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2fa3e758-893f-4e13-94ae-85209a30089e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6670
x-amzn-requestid: 6f0e9fd2-a2a3-4b89-a109-e0ada80efb41
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X_Y9vFPHoAMFkBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63160857-3c8f54b87e1e502e2308a204;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 14:31:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nfLjMEzh5cygwX91VZ8DCa_wD5a-KMQPz8xXFFDZc9qlDa-TCAiX2A==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:58:24 GMT
age: 27122
etag: "0c9cdc03cf2b5a60542cdb91de6b7b37866254cc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6670
Md5:    c3057080b51e9f8360222d0bba39807f
Sha1:   0c9cdc03cf2b5a60542cdb91de6b7b37866254cc
Sha256: 303c7c2f54dd0ef80f6a7b2cc050ff118f8907a79334dcab7e8fa4d4cab3b7bb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd8556c96-436b-4bd5-a201-21cf57a952e7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10824
x-amzn-requestid: 83e40f01-9fae-4e47-a19d-635a8c4fca39
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YRmerFeJoAMFXJA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d512a-6256ec4e7c0ebf940d9a82ee;Sampled=0
x-amzn-remapped-date: Sun, 11 Sep 2022 03:08:26 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Y8rxBV1mQxfJadiCkwSv80M9EdKRE-wi0G22STwimc1WOo2S5zmkWw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Sep 2022 03:27:11 GMT
age: 7395
etag: "2d11d7d4547ded348f9e32cd946877e16ad587ae"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10824
Md5:    8245683fe462ff0393ab02b56ea18789
Sha1:   2d11d7d4547ded348f9e32cd946877e16ad587ae
Sha256: 992f87a9da550b8dbd14cdcd7c5f11903a2bef58db7ced55f456d29d339bf94b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87c57865-c702-4995-8386-d5a054dd23e8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 2711
x-amzn-requestid: d1f9060c-585c-4ac8-bc60-2b3a2c80ee65
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXb4DGKToAMFfog=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa699-3522d608453b1c6374e4a94e;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:37:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8mpzgCJSACJcuNdIy6YE8iH1n_OjyEs0cV7qjQbfg42w3nQHw5SOA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:58:18 GMT
age: 27128
etag: "5955dc0e311eca9988970d55d222bb77a7552fec"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   2711
Md5:    96d4d68111565e0e9d942cb22e3e4e93
Sha1:   5955dc0e311eca9988970d55d222bb77a7552fec
Sha256: 294fe6fa82e831192a0b16e1b2b1e57ac4ff082709a31ef52cc9c8586b9a4906
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F909eacf9-8e5f-4cbb-aa74-803702af05cc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7170
x-amzn-requestid: 00af58fc-9faf-4c4e-8650-f9f7013a0708
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YXbw2HqjoAMFjVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631fa66b-42d241ad62d240b10368efb1;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 21:36:43 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XxHrSf4TfYOv8k2DrepWg3Mdm1za4uxiwhP4tF0nbJamiRbOPeBp3A==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Sep 2022 21:47:05 GMT
age: 27801
etag: "b92938c3202d126a14c2b5188a10bff2a6e5cdbb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7170
Md5:    72d299fa183dd450fc6a065c6705d8f8
Sha1:   b92938c3202d126a14c2b5188a10bff2a6e5cdbb
Sha256: 33e34e0f624b1a8e1a502ce9087b507f631a3debe0c7c5e62ba528114b1e0cd8
                                        
                                            GET /img/cf/Ireland.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663047012653; HstCmu4515739=1663045221259; HstPn4515739=3; HstPt4515739=3; HstCnv4515739=1; HstCns4515739=3; username1Cookie=Andrew; username2Cookie=Fausto Greco; username3Cookie=Anacleto; comment1Cookie=that was amazing!!! thanks a lot for this. . c= This site is awesome !; comment2Cookie=this is legit website !; comment3Cookie=Wow :D thanks for sharing ! Perfect! this is what i am looking for! 1000000 Cash.. :D; timePosted11Cookie=214145; timePosted22Cookie=182201; timePosted33Cookie=70565
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:27 GMT
Content-Length: 1189
Last-Modified: Fri, 03 Sep 2021 06:32:30 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c17e-4a5"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size:   1189
Md5:    21f489acdddaae890450b01936248b9a
Sha1:   c5dabe5b630c36f47d7b92f3160d460e63a75a85
Sha256: deb5a787ec58672db4328b9233d0217c0f4c063c3dd46dcbc744e3978eb55c73
                                        
                                            GET /img/cf/Italy.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663047012653; HstCmu4515739=1663045221259; HstPn4515739=3; HstPt4515739=3; HstCnv4515739=1; HstCns4515739=3; username1Cookie=Andrew; username2Cookie=Fausto Greco; username3Cookie=Anacleto; comment1Cookie=that was amazing!!! thanks a lot for this. . c= This site is awesome !; comment2Cookie=this is legit website !; comment3Cookie=Wow :D thanks for sharing ! Perfect! this is what i am looking for! 1000000 Cash.. :D; timePosted11Cookie=217145; timePosted22Cookie=185201; timePosted33Cookie=73565
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:29 GMT
Content-Length: 1189
Last-Modified: Fri, 03 Sep 2021 06:32:30 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c17e-4a5"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size:   1189
Md5:    df891e228f93d4bf850386971dbe38f8
Sha1:   ca7a98f4f88db0871cdfc6f7311137e71491479a
Sha256: 6dfa36808c40ce49318230061806936c68a7626797102bbfd182d024d2b26c3a
                                        
                                            GET /img/cf/Saudi-Arabia.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663047012653; HstCmu4515739=1663045221259; HstPn4515739=3; HstPt4515739=3; HstCnv4515739=1; HstCns4515739=3; username1Cookie=Andrew; username2Cookie=Fausto Greco; username3Cookie=Anacleto; comment1Cookie=that was amazing!!! thanks a lot for this. . c= This site is awesome !; comment2Cookie=this is legit website !; comment3Cookie=Wow :D thanks for sharing ! Perfect! this is what i am looking for! 1000000 Cash.. :D; timePosted11Cookie=218145; timePosted22Cookie=186201; timePosted33Cookie=74565
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:31 GMT
Content-Length: 3804
Last-Modified: Fri, 03 Sep 2021 06:32:58 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c19a-edc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size:   3804
Md5:    17442b5aeae873f02f4315e68bb9168b
Sha1:   75f7252104d1c0480c6e8389a48dfba3cb2109a6
Sha256: 3a5caead074a7965008d5b701f9c8fb67d5e1b64e27b15fb8172db05504f7f40
                                        
                                            GET /img/cf/Georgia.png HTTP/1.1 
Host: gaminghelper.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gaminghelper.co/app/431946152/roblox-mad-city-free-car-glitch-season-4-game-hack
Cookie: _pk_id.1.166e=fc060cb5f9277260.1663045221.; _pk_ses.1.166e=1; HstCfa4515739=1663045221259; HstCla4515739=1663047012653; HstCmu4515739=1663045221259; HstPn4515739=3; HstPt4515739=3; HstCnv4515739=1; HstCns4515739=3; username1Cookie=Andrew; username2Cookie=Fausto Greco; username3Cookie=Anacleto; comment1Cookie=that was amazing!!! thanks a lot for this. . c= This site is awesome !; comment2Cookie=this is legit website !; comment3Cookie=Wow :D thanks for sharing ! Perfect! this is what i am looking for! 1000000 Cash.. :D; timePosted11Cookie=219145; timePosted22Cookie=187201; timePosted33Cookie=75565
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         91.223.82.61
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 13 Sep 2022 05:30:32 GMT
Content-Length: 1473
Last-Modified: Fri, 03 Sep 2021 06:32:23 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "6131c177-5c1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size:   1473
Md5:    5eb68f589d8843e14c064340666d5dc9
Sha1:   ed7a4b513439b28fd3680d9a9a290aedb940fd6f
Sha256: e2ac376415e7796a7a2a6d74ed15ed2c6909e175554aeb2954b36b0c598952fe