| 164.52.218.227/ke/sf/KidsVideos/adpromo.php?v_id=3&clickid=kerbw;dor2kznon;revl; | 164.52.218.227 | | 0 B |
URL 164.52.218.227/ke/sf/KidsVideos/adpromo.php?v_id=3&clickid=kerbw;dor2kznon;revl; IP164.52.218.227:0 ASN#132420 282, Sector 19
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ke/sf/KidsVideos/adpromo.php?v_id=3&clickid=kerbw;dor2kznon;revl; HTTP/1.1
Host: 164.52.218.227
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Date: Wed, 08 May 2024 19:06:12 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/8.1.22
X-Powered-By: PHP/8.1.22
Set-Cookie: PHPSESSID=b5uqlketgjr91090q2lmcubeck; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: http://ke-webfun.upp.st/KSD-KESAF-RAINB/Door2kidszone-001023834383-Daily-No-Web?trxID=1798512493577552
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
|
|
| ke-webfun.upp.st/KSD-KESAF-RAINB/Door2kidszone-001023834383-Daily-No-Web?trxID=1798512493577552 | 91.241.95.201 | | 2.9 kB |
URL ke-webfun.upp.st/KSD-KESAF-RAINB/Door2kidszone-001023834383-Daily-No-Web?trxID=1798512493577552 IP91.241.95.201:0 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
File typeHTML document, Unicode text, UTF-8 text, with very long lines (301) Hash4086f40cf75b9d2195eece9e3dfb2a8c 0f630e4a6eb030204814e7925575685748d6445f 66b4066f8ade2b81a9a4f05661c189562b890eacf40a5d458f893a410dfad9fc
GET /KSD-KESAF-RAINB/Door2kidszone-001023834383-Daily-No-Web?trxID=1798512493577552 HTTP/1.1
Host: ke-webfun.upp.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 19:06:13 GMT
Cache-Control: no-cache, private
X-Frame-Options: DENY
Strict-Transport-Security: max-age=0; includeSubDomains
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
X-Varnish: 502215938
Age: 0
Via: 1.1 kesaf1-varnish-7ddc7f988f-4h6bt (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: MISS
Access-Control-Allow-Origin: *
Set-Cookie: ng_session=eyJpdiI6IkJkck9KMUxMY000Z1BjSkZ5MEc5eEE9PSIsInZhbHVlIjoiTEFRYUpDZ1doVURPN0paU05VK2x3MGJvc1g3eUsveGxGQ0F4Nm5hQ2o0Rjg4eFFpb3JIK0RBRGVJUkloNlVqSEpXWWtzSEhiVjA1TXZpc0NZc1FxYW0zWk1NY2lucXR5eUZpc1dnUWErOTJoTEhhZDdMbEgvc2J4ZDNYRDlsOGciLCJtYWMiOiI3ZmU5NDNkYjFjNTZiMGQxN2YxMTcwN2MxZDE0NmExM2VjZWVhYWFlZjViYTQyZDJkN2U3NzJhNWEwOTJlYWRkIiwidGFnIjoiIn0%3D; expires=Thu, 09 May 2024 01:06:13 GMT; Max-Age=21600; path=/; httponly; samesite=lax
ctxid=eyJpdiI6Ik9kTnhHS3FpMGEvQWNZOUd6ckdkQ1E9PSIsInZhbHVlIjoid3UybnovU1BQZGFTNVlNRE1zeGhnQmVIM28za3BqdnRScGtaNE53OGY4TzdXWFZkZTc0TGJ0aS92NjR0dktndEtTZkZEVDUya1hqQXFrVmE2dktETmp3UzNaRjFaNWtBRUM2RncvWG1YcHM9IiwibWFjIjoiM2Q4NDdhNWQxZjAwYTY3M2M4YmY3MzNhN2EyYjA5NWIwODA3MGY4YWE0MTg4NWZhZjcxOWRkNmQ5MTkyM2ZmMiIsInRhZyI6IiJ9; expires=Sat, 06 May 2034 19:06:13 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
rd=deleted; expires=Tue, 09 May 2023 19:06:12 GMT; Max-Age=0; path=/; httponly; samesite=lax
userSessionID=eyJpdiI6Im5RR2xQUGo0TkNjK2t0MHJ5MnNUNWc9PSIsInZhbHVlIjoiclhCQk9JUUZLMFlyUm9XMmRzdzE0dzIrSTBsTVR1VjFDTVRwK2UwbXhyajAxbW1ERnMrK0J5NXpRY2x5VDZLZDI2emV5OEIxVWFuK0hYelcvNU1YWlhrVjdacFN3d0xQbFVtU0J3U0xGVWs9IiwibWFjIjoiYWFhYjAxN2NhYzc4ZTQ1OGZhOTRiN2E2NGUzNzc4OGVjMmRjOWMzNjlhMWIwZmY2OTZjOWU2N2RhZDJjNjBjNiIsInRhZyI6IiJ9; expires=Wed, 08 May 2024 19:36:13 GMT; Max-Age=1800; path=/; httponly; samesite=lax
userPermID=eyJpdiI6IjI3L2dPbG10bWpEZlFHclFOVmVuUnc9PSIsInZhbHVlIjoiekZvMi9EK2tEdDlRclh3dm1Yc2hRSXVkK2RUbVZDNDJsbEwyVE1iaUVSMXIvNVJaVGhCNTdRNVcyMzhVS1BkcjZDb2V2WnVaSUp0SXB6V3YyTjdBWVFIUGtVWmpGek1kSmFtYjllT0JYS1k9IiwibWFjIjoiY2FmMzNhZmIzMDNjZTVhOTQ3MTJlYjQ3NmY1NjQ3ZDYzY2RjNGU4MWUwYTUyMWExMTVlYjg4NDdiMjA1NjFkOSIsInRhZyI6IiJ9; expires=Sat, 06 May 2034 19:06:13 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461; Path=/
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| ke-webfun.upp.st/KSD-KESAF-RAINB/assets/KSD-KESAF-RAINB-door2kidszone-001023834383-daily-no-web.css?ver=2 | 91.241.95.201 | | 3.0 kB |
URL ke-webfun.upp.st/KSD-KESAF-RAINB/assets/KSD-KESAF-RAINB-door2kidszone-001023834383-daily-no-web.css?ver=2 IP91.241.95.201:0 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Hash4d144ff46333a5379531ca7fefc04dd3 eeaf24b5c62dedf10153773336679fbce63e5eab 8b328db44dce5ea5314e7807ecb591022c66fc4bff343fe878fa5afbfbb5f4a0
GET /KSD-KESAF-RAINB/assets/KSD-KESAF-RAINB-door2kidszone-001023834383-daily-no-web.css?ver=2 HTTP/1.1
Host: ke-webfun.upp.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ke-webfun.upp.st/KSD-KESAF-RAINB/Door2kidszone-001023834383-Daily-No-Web?trxID=1798512493577552
Cookie: ng_session=eyJpdiI6IkJkck9KMUxMY000Z1BjSkZ5MEc5eEE9PSIsInZhbHVlIjoiTEFRYUpDZ1doVURPN0paU05VK2x3MGJvc1g3eUsveGxGQ0F4Nm5hQ2o0Rjg4eFFpb3JIK0RBRGVJUkloNlVqSEpXWWtzSEhiVjA1TXZpc0NZc1FxYW0zWk1NY2lucXR5eUZpc1dnUWErOTJoTEhhZDdMbEgvc2J4ZDNYRDlsOGciLCJtYWMiOiI3ZmU5NDNkYjFjNTZiMGQxN2YxMTcwN2MxZDE0NmExM2VjZWVhYWFlZjViYTQyZDJkN2U3NzJhNWEwOTJlYWRkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6Ik9kTnhHS3FpMGEvQWNZOUd6ckdkQ1E9PSIsInZhbHVlIjoid3UybnovU1BQZGFTNVlNRE1zeGhnQmVIM28za3BqdnRScGtaNE53OGY4TzdXWFZkZTc0TGJ0aS92NjR0dktndEtTZkZEVDUya1hqQXFrVmE2dktETmp3UzNaRjFaNWtBRUM2RncvWG1YcHM9IiwibWFjIjoiM2Q4NDdhNWQxZjAwYTY3M2M4YmY3MzNhN2EyYjA5NWIwODA3MGY4YWE0MTg4NWZhZjcxOWRkNmQ5MTkyM2ZmMiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Im5RR2xQUGo0TkNjK2t0MHJ5MnNUNWc9PSIsInZhbHVlIjoiclhCQk9JUUZLMFlyUm9XMmRzdzE0dzIrSTBsTVR1VjFDTVRwK2UwbXhyajAxbW1ERnMrK0J5NXpRY2x5VDZLZDI2emV5OEIxVWFuK0hYelcvNU1YWlhrVjdacFN3d0xQbFVtU0J3U0xGVWs9IiwibWFjIjoiYWFhYjAxN2NhYzc4ZTQ1OGZhOTRiN2E2NGUzNzc4OGVjMmRjOWMzNjlhMWIwZmY2OTZjOWU2N2RhZDJjNjBjNiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjI3L2dPbG10bWpEZlFHclFOVmVuUnc9PSIsInZhbHVlIjoiekZvMi9EK2tEdDlRclh3dm1Yc2hRSXVkK2RUbVZDNDJsbEwyVE1iaUVSMXIvNVJaVGhCNTdRNVcyMzhVS1BkcjZDb2V2WnVaSUp0SXB6V3YyTjdBWVFIUGtVWmpGek1kSmFtYjllT0JYS1k9IiwibWFjIjoiY2FmMzNhZmIzMDNjZTVhOTQ3MTJlYjQ3NmY1NjQ3ZDYzY2RjNGU4MWUwYTUyMWExMTVlYjg4NDdiMjA1NjFkOSIsInRhZyI6IiJ9; TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 19:04:54 GMT
Last-Modified: Tue, 10 Oct 2023 08:46:22 GMT
ETag: "5bad-60758bdbc1547-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3031
Content-Type: text/css
X-Varnish: 502445098 502924349
Age: 78
Via: 1.1 kesaf1-varnish-7ddc7f988f-4h6bt (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=999
Connection: Keep-Alive
|
|
| ke-webfun.upp.st/KSD-KESAF-RAINB/assets/images/KSD/fallback-image-320x200.jpg | 91.241.95.201 | 200 OK | 4.9 kB |
URL GET HTTP/1.1ke-webfun.upp.st/KSD-KESAF-RAINB/assets/images/KSD/fallback-image-320x200.jpg IP91.241.95.201:443 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttps://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 CertificateIssuerDigiCert Inc Subject*.upp.st FingerprintD9:D9:D5:5E:98:2E:56:79:AB:2C:DF:A0:57:76:A1:6D:F0:DA:E0:49 ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 320x200, components 3 Hash8c23674101ec963b42fc50ba8ce5b88b d4adb9b2130dd40a8eabb8880786c644436df238 e35d50e790d4bb1fcfd366aac03f495d66c765f4296cceb428500b820b445c1a
GET /KSD-KESAF-RAINB/assets/images/KSD/fallback-image-320x200.jpg HTTP/1.1
Host: ke-webfun.upp.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ke-webfun.upp.st/KSD-KESAF-RAINB/Door2kidszone-001023834383-Daily-No-Web?trxID=1798512493577552
Cookie: ng_session=eyJpdiI6IkJkck9KMUxMY000Z1BjSkZ5MEc5eEE9PSIsInZhbHVlIjoiTEFRYUpDZ1doVURPN0paU05VK2x3MGJvc1g3eUsveGxGQ0F4Nm5hQ2o0Rjg4eFFpb3JIK0RBRGVJUkloNlVqSEpXWWtzSEhiVjA1TXZpc0NZc1FxYW0zWk1NY2lucXR5eUZpc1dnUWErOTJoTEhhZDdMbEgvc2J4ZDNYRDlsOGciLCJtYWMiOiI3ZmU5NDNkYjFjNTZiMGQxN2YxMTcwN2MxZDE0NmExM2VjZWVhYWFlZjViYTQyZDJkN2U3NzJhNWEwOTJlYWRkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6Ik9kTnhHS3FpMGEvQWNZOUd6ckdkQ1E9PSIsInZhbHVlIjoid3UybnovU1BQZGFTNVlNRE1zeGhnQmVIM28za3BqdnRScGtaNE53OGY4TzdXWFZkZTc0TGJ0aS92NjR0dktndEtTZkZEVDUya1hqQXFrVmE2dktETmp3UzNaRjFaNWtBRUM2RncvWG1YcHM9IiwibWFjIjoiM2Q4NDdhNWQxZjAwYTY3M2M4YmY3MzNhN2EyYjA5NWIwODA3MGY4YWE0MTg4NWZhZjcxOWRkNmQ5MTkyM2ZmMiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Im5RR2xQUGo0TkNjK2t0MHJ5MnNUNWc9PSIsInZhbHVlIjoiclhCQk9JUUZLMFlyUm9XMmRzdzE0dzIrSTBsTVR1VjFDTVRwK2UwbXhyajAxbW1ERnMrK0J5NXpRY2x5VDZLZDI2emV5OEIxVWFuK0hYelcvNU1YWlhrVjdacFN3d0xQbFVtU0J3U0xGVWs9IiwibWFjIjoiYWFhYjAxN2NhYzc4ZTQ1OGZhOTRiN2E2NGUzNzc4OGVjMmRjOWMzNjlhMWIwZmY2OTZjOWU2N2RhZDJjNjBjNiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjI3L2dPbG10bWpEZlFHclFOVmVuUnc9PSIsInZhbHVlIjoiekZvMi9EK2tEdDlRclh3dm1Yc2hRSXVkK2RUbVZDNDJsbEwyVE1iaUVSMXIvNVJaVGhCNTdRNVcyMzhVS1BkcjZDb2V2WnVaSUp0SXB6V3YyTjdBWVFIUGtVWmpGek1kSmFtYjllT0JYS1k9IiwibWFjIjoiY2FmMzNhZmIzMDNjZTVhOTQ3MTJlYjQ3NmY1NjQ3ZDYzY2RjNGU4MWUwYTUyMWExMTVlYjg4NDdiMjA1NjFkOSIsInRhZyI6IiJ9; TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:35:03 GMT
Last-Modified: Wed, 03 Aug 2022 08:34:11 GMT
ETag: "12f4-5e55218e6a20c"
Content-Length: 4852
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:35:03 GMT
Content-Type: image/jpeg
X-Varnish: 500762382 292653147
Age: 2431870
Via: 1.1 kesaf1-varnish-7ddc7f988f-nlp4f (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap | 142.250.74.106 | 200 OK | 1.1 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Roboto:wght@400;500&display=swap IP142.250.74.106:443
Requested byhttps://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash27909a67e69639a4ebc7d5a01a3a5056 0a9a2076eedd446626b450a1e1f03c52a8d16ba7 e4fc20d13e9e1409000e4f6da3670d5a0fab84b1f8b43142bf4269172eda516b
GET /css2?family=Roboto:wght@400;500&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://ke-webfun.upp.st/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 19:06:13 GMT
date: Wed, 08 May 2024 19:06:13 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ke-webfun.upp.st/assets/images/KSD/Door2KidsZone-image-320x200.jpg | 91.241.95.201 | 200 OK | 34 kB |
URL GET HTTP/1.1ke-webfun.upp.st/assets/images/KSD/Door2KidsZone-image-320x200.jpg IP91.241.95.201:443 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttps://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 CertificateIssuerDigiCert Inc Subject*.upp.st FingerprintD9:D9:D5:5E:98:2E:56:79:AB:2C:DF:A0:57:76:A1:6D:F0:DA:E0:49 ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 320x200, components 3 Hash037f93955ef7ad7c68620f001a2a2914 720e6509bd0e6cb642c582de30386b9e5f63d9c3 efe5c70efc1913981bd00b49ae8067774250de88cb2910061fc963cce84b4453
GET /assets/images/KSD/Door2KidsZone-image-320x200.jpg HTTP/1.1
Host: ke-webfun.upp.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ke-webfun.upp.st/KSD-KESAF-RAINB/Door2kidszone-001023834383-Daily-No-Web?trxID=1798512493577552
Cookie: ng_session=eyJpdiI6IkJkck9KMUxMY000Z1BjSkZ5MEc5eEE9PSIsInZhbHVlIjoiTEFRYUpDZ1doVURPN0paU05VK2x3MGJvc1g3eUsveGxGQ0F4Nm5hQ2o0Rjg4eFFpb3JIK0RBRGVJUkloNlVqSEpXWWtzSEhiVjA1TXZpc0NZc1FxYW0zWk1NY2lucXR5eUZpc1dnUWErOTJoTEhhZDdMbEgvc2J4ZDNYRDlsOGciLCJtYWMiOiI3ZmU5NDNkYjFjNTZiMGQxN2YxMTcwN2MxZDE0NmExM2VjZWVhYWFlZjViYTQyZDJkN2U3NzJhNWEwOTJlYWRkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6Ik9kTnhHS3FpMGEvQWNZOUd6ckdkQ1E9PSIsInZhbHVlIjoid3UybnovU1BQZGFTNVlNRE1zeGhnQmVIM28za3BqdnRScGtaNE53OGY4TzdXWFZkZTc0TGJ0aS92NjR0dktndEtTZkZEVDUya1hqQXFrVmE2dktETmp3UzNaRjFaNWtBRUM2RncvWG1YcHM9IiwibWFjIjoiM2Q4NDdhNWQxZjAwYTY3M2M4YmY3MzNhN2EyYjA5NWIwODA3MGY4YWE0MTg4NWZhZjcxOWRkNmQ5MTkyM2ZmMiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Im5RR2xQUGo0TkNjK2t0MHJ5MnNUNWc9PSIsInZhbHVlIjoiclhCQk9JUUZLMFlyUm9XMmRzdzE0dzIrSTBsTVR1VjFDTVRwK2UwbXhyajAxbW1ERnMrK0J5NXpRY2x5VDZLZDI2emV5OEIxVWFuK0hYelcvNU1YWlhrVjdacFN3d0xQbFVtU0J3U0xGVWs9IiwibWFjIjoiYWFhYjAxN2NhYzc4ZTQ1OGZhOTRiN2E2NGUzNzc4OGVjMmRjOWMzNjlhMWIwZmY2OTZjOWU2N2RhZDJjNjBjNiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjI3L2dPbG10bWpEZlFHclFOVmVuUnc9PSIsInZhbHVlIjoiekZvMi9EK2tEdDlRclh3dm1Yc2hRSXVkK2RUbVZDNDJsbEwyVE1iaUVSMXIvNVJaVGhCNTdRNVcyMzhVS1BkcjZDb2V2WnVaSUp0SXB6V3YyTjdBWVFIUGtVWmpGek1kSmFtYjllT0JYS1k9IiwibWFjIjoiY2FmMzNhZmIzMDNjZTVhOTQ3MTJlYjQ3NmY1NjQ3ZDYzY2RjNGU4MWUwYTUyMWExMTVlYjg4NDdiMjA1NjFkOSIsInRhZyI6IiJ9; TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:34:26 GMT
Last-Modified: Tue, 10 Oct 2023 08:42:10 GMT
ETag: "83a6-60758aec4f53e"
Content-Length: 33702
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:34:26 GMT
Content-Type: image/jpeg
X-Varnish: 501936964 289906216
Age: 2431907
Via: 1.1 kesaf1-varnish-7ddc7f988f-4h6bt (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=998
Connection: Keep-Alive
|
|
| ke-webfun.upp.st/KSD-KESAF-RAINB/assets/assets/fonts/Poppins.ttf | 91.241.95.201 | 200 OK | 74 kB |
URL GET HTTP/1.1ke-webfun.upp.st/KSD-KESAF-RAINB/assets/assets/fonts/Poppins.ttf IP91.241.95.201:443 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttps://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 CertificateIssuerDigiCert Inc Subject*.upp.st FingerprintD9:D9:D5:5E:98:2E:56:79:AB:2C:DF:A0:57:76:A1:6D:F0:DA:E0:49 ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT
File typeTrueType Font data, 15 tables, 1st "FFTM", 34 names, Macintosh Hashde94a85c73334510b8645762a276917d 26e81ed581db3e381e81f8059479b55f15237f38 12e8f76d9bc181fd1128655ab06dfb91521fd19e6e9b1f50f4ccd01d799ce87b
GET /KSD-KESAF-RAINB/assets/assets/fonts/Poppins.ttf HTTP/1.1
Host: ke-webfun.upp.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://ke-webfun.upp.st/KSD-KESAF-RAINB/assets/KSD-KESAF-RAINB-door2kidszone-001023834383-daily-no-web.css?ver=2
Cookie: ng_session=eyJpdiI6IkJkck9KMUxMY000Z1BjSkZ5MEc5eEE9PSIsInZhbHVlIjoiTEFRYUpDZ1doVURPN0paU05VK2x3MGJvc1g3eUsveGxGQ0F4Nm5hQ2o0Rjg4eFFpb3JIK0RBRGVJUkloNlVqSEpXWWtzSEhiVjA1TXZpc0NZc1FxYW0zWk1NY2lucXR5eUZpc1dnUWErOTJoTEhhZDdMbEgvc2J4ZDNYRDlsOGciLCJtYWMiOiI3ZmU5NDNkYjFjNTZiMGQxN2YxMTcwN2MxZDE0NmExM2VjZWVhYWFlZjViYTQyZDJkN2U3NzJhNWEwOTJlYWRkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6Ik9kTnhHS3FpMGEvQWNZOUd6ckdkQ1E9PSIsInZhbHVlIjoid3UybnovU1BQZGFTNVlNRE1zeGhnQmVIM28za3BqdnRScGtaNE53OGY4TzdXWFZkZTc0TGJ0aS92NjR0dktndEtTZkZEVDUya1hqQXFrVmE2dktETmp3UzNaRjFaNWtBRUM2RncvWG1YcHM9IiwibWFjIjoiM2Q4NDdhNWQxZjAwYTY3M2M4YmY3MzNhN2EyYjA5NWIwODA3MGY4YWE0MTg4NWZhZjcxOWRkNmQ5MTkyM2ZmMiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Im5RR2xQUGo0TkNjK2t0MHJ5MnNUNWc9PSIsInZhbHVlIjoiclhCQk9JUUZLMFlyUm9XMmRzdzE0dzIrSTBsTVR1VjFDTVRwK2UwbXhyajAxbW1ERnMrK0J5NXpRY2x5VDZLZDI2emV5OEIxVWFuK0hYelcvNU1YWlhrVjdacFN3d0xQbFVtU0J3U0xGVWs9IiwibWFjIjoiYWFhYjAxN2NhYzc4ZTQ1OGZhOTRiN2E2NGUzNzc4OGVjMmRjOWMzNjlhMWIwZmY2OTZjOWU2N2RhZDJjNjBjNiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjI3L2dPbG10bWpEZlFHclFOVmVuUnc9PSIsInZhbHVlIjoiekZvMi9EK2tEdDlRclh3dm1Yc2hRSXVkK2RUbVZDNDJsbEwyVE1iaUVSMXIvNVJaVGhCNTdRNVcyMzhVS1BkcjZDb2V2WnVaSUp0SXB6V3YyTjdBWVFIUGtVWmpGek1kSmFtYjllT0JYS1k9IiwibWFjIjoiY2FmMzNhZmIzMDNjZTVhOTQ3MTJlYjQ3NmY1NjQ3ZDYzY2RjNGU4MWUwYTUyMWExMTVlYjg4NDdiMjA1NjFkOSIsInRhZyI6IiJ9; TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 19:06:13 GMT
Last-Modified: Tue, 11 Jul 2023 10:00:34 GMT
ETag: "28318-600332b8de5be-gzip"
Content-Type: font/ttf
X-Varnish: 500762383
Age: 0
Via: 1.1 kesaf1-varnish-7ddc7f988f-nlp4f (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: MISS
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=999
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 | 91.241.95.201 | 200 OK | 1.6 kB |
URL User Request GET HTTP/1.1ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 IP91.241.95.201:443 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
CertificateIssuerDigiCert Inc Subject*.upp.st FingerprintD9:D9:D5:5E:98:2E:56:79:AB:2C:DF:A0:57:76:A1:6D:F0:DA:E0:49 ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (368) Hashf67fe35e0ee9199687ffa1adfb83b71b 0a6f8f3644cecc0a9252e1cb663eef5880b0d6da 43877cce2a18ce77a216928f9008c908e27b60bdfa1b667ac5cfee42fce580b5
GET /KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 HTTP/1.1
Host: ke-webfun.upp.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ke-webfun.upp.st/KSD-KESAF-RAINB/Door2kidszone-001023834383-Daily-No-Web?trxID=1798512493577552
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Cookie: ng_session=eyJpdiI6IkJkck9KMUxMY000Z1BjSkZ5MEc5eEE9PSIsInZhbHVlIjoiTEFRYUpDZ1doVURPN0paU05VK2x3MGJvc1g3eUsveGxGQ0F4Nm5hQ2o0Rjg4eFFpb3JIK0RBRGVJUkloNlVqSEpXWWtzSEhiVjA1TXZpc0NZc1FxYW0zWk1NY2lucXR5eUZpc1dnUWErOTJoTEhhZDdMbEgvc2J4ZDNYRDlsOGciLCJtYWMiOiI3ZmU5NDNkYjFjNTZiMGQxN2YxMTcwN2MxZDE0NmExM2VjZWVhYWFlZjViYTQyZDJkN2U3NzJhNWEwOTJlYWRkIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6Ik9kTnhHS3FpMGEvQWNZOUd6ckdkQ1E9PSIsInZhbHVlIjoid3UybnovU1BQZGFTNVlNRE1zeGhnQmVIM28za3BqdnRScGtaNE53OGY4TzdXWFZkZTc0TGJ0aS92NjR0dktndEtTZkZEVDUya1hqQXFrVmE2dktETmp3UzNaRjFaNWtBRUM2RncvWG1YcHM9IiwibWFjIjoiM2Q4NDdhNWQxZjAwYTY3M2M4YmY3MzNhN2EyYjA5NWIwODA3MGY4YWE0MTg4NWZhZjcxOWRkNmQ5MTkyM2ZmMiIsInRhZyI6IiJ9; userSessionID=eyJpdiI6Im5RR2xQUGo0TkNjK2t0MHJ5MnNUNWc9PSIsInZhbHVlIjoiclhCQk9JUUZLMFlyUm9XMmRzdzE0dzIrSTBsTVR1VjFDTVRwK2UwbXhyajAxbW1ERnMrK0J5NXpRY2x5VDZLZDI2emV5OEIxVWFuK0hYelcvNU1YWlhrVjdacFN3d0xQbFVtU0J3U0xGVWs9IiwibWFjIjoiYWFhYjAxN2NhYzc4ZTQ1OGZhOTRiN2E2NGUzNzc4OGVjMmRjOWMzNjlhMWIwZmY2OTZjOWU2N2RhZDJjNjBjNiIsInRhZyI6IiJ9; userPermID=eyJpdiI6IjI3L2dPbG10bWpEZlFHclFOVmVuUnc9PSIsInZhbHVlIjoiekZvMi9EK2tEdDlRclh3dm1Yc2hRSXVkK2RUbVZDNDJsbEwyVE1iaUVSMXIvNVJaVGhCNTdRNVcyMzhVS1BkcjZDb2V2WnVaSUp0SXB6V3YyTjdBWVFIUGtVWmpGek1kSmFtYjllT0JYS1k9IiwibWFjIjoiY2FmMzNhZmIzMDNjZTVhOTQ3MTJlYjQ3NmY1NjQ3ZDYzY2RjNGU4MWUwYTUyMWExMTVlYjg4NDdiMjA1NjFkOSIsInRhZyI6IiJ9; TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 19:06:29 GMT
Cache-Control: no-cache, private
X-Frame-Options: DENY
Strict-Transport-Security: max-age=0; includeSubDomains
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
X-Varnish: 502378689
Age: 0
Via: 1.1 kesaf1-varnish-7ddc7f988f-4h6bt (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: MISS
Access-Control-Allow-Origin: *
Set-Cookie: ng_session=eyJpdiI6IkZUVXc2SUsrMTJkbTN1K255dzFrd3c9PSIsInZhbHVlIjoiOXhTNXREY2FsdmpkYmtYalk0L0RrUDNOVlh0NDMrR3F6bXE1cU9tKzFheDNnNnFjS2c3bWRQaVZDc2wzQVgrdHJCb1hUTjh5azJvMTlBS0hKbXIzcWtEczdqZGo2SElHV29TbHhraVMzZkdzRFIzcjdOeS9HVExsdlcyakxLYXUiLCJtYWMiOiJmYzJjZTk4ODY0NTQ0YmI5ZDc0YTJiMjZjNjIzYzQ0MWExMjFhMWMzYzc2Njc2OWU2ZGU2ODIzNzgzMTdhMWZlIiwidGFnIjoiIn0%3D; expires=Thu, 09 May 2024 01:06:30 GMT; Max-Age=21600; path=/; httponly; samesite=lax
userPermID=eyJpdiI6InR4ajhvdmtQSXd2aFEzSkVYQ0o1Mmc9PSIsInZhbHVlIjoiSnRYb1dscnJmcnpHSzJOYi9VdGVrQWROK3ExWVkvbGZTK1V4MHZPRkRPUXBTZENTTFZVVDRoK1dlcHpuUnd1MHMzOG4wV05YMUh2a0tpR0FKc1BXcDl2RE9nZENFSUZvQXdSY0pVeThBSDg9IiwibWFjIjoiMGViODQ2Nzg1NjYwZDVhMDA1MjBhYmU1NWNhZTI4NWMwOWU2YzA4MDM4OGMzOWFmMGQxYTVhMDRmMzhjODc1NyIsInRhZyI6IiJ9; expires=Sat, 06 May 2034 19:06:30 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
userSessionID=eyJpdiI6InpDamEvTzNNYWdGeXcxSnpuV2poemc9PSIsInZhbHVlIjoiN3VmM1FqdGlzV09ZZU04U1EzRXR3VllManJqbWlYM1NpTStOSzIycjQxWWthV0lRcExlSE10MG1EM3dSVTdsU2hOTlhacFFpc1VtR0c5dWVLdFFEYzdDTGJiVTFJbzYrZkFOUGpSdlh6VjQ9IiwibWFjIjoiYWIyNWEyNzc4MjhlYTkwMmQ4MDRkZmU2N2QwMmQ1YjhmZjkwYTNhOTM4NDRkNmE3MjY3NzNlMjFiNzQ1ZjAxNyIsInRhZyI6IiJ9; expires=Wed, 08 May 2024 19:36:30 GMT; Max-Age=1800; path=/; httponly; samesite=lax
ctxid=eyJpdiI6ImVJeTU2YkZTWWJtLzZHSTRvdGRpRVE9PSIsInZhbHVlIjoiYUtJZWVVWmxiaGlUamRDNWtDSmRJSlZXVXRGWVNEYUY0NU05RHo5OUsreW56OU9sY0FsVjYvMlEwUFFIaURXRmFuU0dra3RJSW4zTkN1WUpCOUxQMGhyT3RpNkZVRjBYaUhpYWcrZ2ZlZUU9IiwibWFjIjoiYWFlMjMyMTM0YmU3Yzg4NTI5ZmVkM2VkYWIzZmM5Y2ZhZDI1ODEyNjg3MmI4ZWI5Y2Q1MTI2ODc0YzY2NDBjNSIsInRhZyI6IiJ9; expires=Sat, 06 May 2034 19:06:30 GMT; Max-Age=315360000; path=/; httponly; samesite=lax
rd=deleted; expires=Tue, 09 May 2023 19:06:29 GMT; Max-Age=0; path=/; httponly; samesite=lax
TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461; Path=/
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|
| ke-webfun.upp.st/KSD-KESAF-RAINB/assets/KSD-KESAF-RAINB-door2kidszone-001023834383-daily-no-wifi.css?ver=2 | 91.241.95.201 | 200 OK | 3.0 kB |
URL GET HTTP/1.1ke-webfun.upp.st/KSD-KESAF-RAINB/assets/KSD-KESAF-RAINB-door2kidszone-001023834383-daily-no-wifi.css?ver=2 IP91.241.95.201:443 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttps://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 CertificateIssuerDigiCert Inc Subject*.upp.st FingerprintD9:D9:D5:5E:98:2E:56:79:AB:2C:DF:A0:57:76:A1:6D:F0:DA:E0:49 ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT
Hash8335aec7de5b0a436c7866c0f57b7c9d 1e31e9d4eb146f1ae6d707f6307fca9182c4e24a 6cf42b2c7539da2efe249b867d49047f438c601a2a99d79acdbfcb0f55f9847a
GET /KSD-KESAF-RAINB/assets/KSD-KESAF-RAINB-door2kidszone-001023834383-daily-no-wifi.css?ver=2 HTTP/1.1
Host: ke-webfun.upp.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552
Cookie: ng_session=eyJpdiI6IkZUVXc2SUsrMTJkbTN1K255dzFrd3c9PSIsInZhbHVlIjoiOXhTNXREY2FsdmpkYmtYalk0L0RrUDNOVlh0NDMrR3F6bXE1cU9tKzFheDNnNnFjS2c3bWRQaVZDc2wzQVgrdHJCb1hUTjh5azJvMTlBS0hKbXIzcWtEczdqZGo2SElHV29TbHhraVMzZkdzRFIzcjdOeS9HVExsdlcyakxLYXUiLCJtYWMiOiJmYzJjZTk4ODY0NTQ0YmI5ZDc0YTJiMjZjNjIzYzQ0MWExMjFhMWMzYzc2Njc2OWU2ZGU2ODIzNzgzMTdhMWZlIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6ImVJeTU2YkZTWWJtLzZHSTRvdGRpRVE9PSIsInZhbHVlIjoiYUtJZWVVWmxiaGlUamRDNWtDSmRJSlZXVXRGWVNEYUY0NU05RHo5OUsreW56OU9sY0FsVjYvMlEwUFFIaURXRmFuU0dra3RJSW4zTkN1WUpCOUxQMGhyT3RpNkZVRjBYaUhpYWcrZ2ZlZUU9IiwibWFjIjoiYWFlMjMyMTM0YmU3Yzg4NTI5ZmVkM2VkYWIzZmM5Y2ZhZDI1ODEyNjg3MmI4ZWI5Y2Q1MTI2ODc0YzY2NDBjNSIsInRhZyI6IiJ9; userSessionID=eyJpdiI6InpDamEvTzNNYWdGeXcxSnpuV2poemc9PSIsInZhbHVlIjoiN3VmM1FqdGlzV09ZZU04U1EzRXR3VllManJqbWlYM1NpTStOSzIycjQxWWthV0lRcExlSE10MG1EM3dSVTdsU2hOTlhacFFpc1VtR0c5dWVLdFFEYzdDTGJiVTFJbzYrZkFOUGpSdlh6VjQ9IiwibWFjIjoiYWIyNWEyNzc4MjhlYTkwMmQ4MDRkZmU2N2QwMmQ1YjhmZjkwYTNhOTM4NDRkNmE3MjY3NzNlMjFiNzQ1ZjAxNyIsInRhZyI6IiJ9; userPermID=eyJpdiI6InR4ajhvdmtQSXd2aFEzSkVYQ0o1Mmc9PSIsInZhbHVlIjoiSnRYb1dscnJmcnpHSzJOYi9VdGVrQWROK3ExWVkvbGZTK1V4MHZPRkRPUXBTZENTTFZVVDRoK1dlcHpuUnd1MHMzOG4wV05YMUh2a0tpR0FKc1BXcDl2RE9nZENFSUZvQXdSY0pVeThBSDg9IiwibWFjIjoiMGViODQ2Nzg1NjYwZDVhMDA1MjBhYmU1NWNhZTI4NWMwOWU2YzA4MDM4OGMzOWFmMGQxYTVhMDRmMzhjODc1NyIsInRhZyI6IiJ9; TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 19:06:30 GMT
Last-Modified: Tue, 10 Oct 2023 08:46:22 GMT
ETag: "5b9e-60758bdbfedb0-gzip"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3031
Content-Type: text/css
X-Varnish: 502378691
Age: 0
Via: 1.1 kesaf1-varnish-7ddc7f988f-4h6bt (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: MISS
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=999
Connection: Keep-Alive
|
|
| ke-webfun.upp.st/KSD-KESAF-RAINB/assets/images/KSD/fallback-image-320x200.jpg | 91.241.95.201 | 200 OK | 4.9 kB |
URL GET HTTP/1.1ke-webfun.upp.st/KSD-KESAF-RAINB/assets/images/KSD/fallback-image-320x200.jpg IP91.241.95.201:443 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttps://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 CertificateIssuerDigiCert Inc Subject*.upp.st FingerprintD9:D9:D5:5E:98:2E:56:79:AB:2C:DF:A0:57:76:A1:6D:F0:DA:E0:49 ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 320x200, components 3 Hash8c23674101ec963b42fc50ba8ce5b88b d4adb9b2130dd40a8eabb8880786c644436df238 e35d50e790d4bb1fcfd366aac03f495d66c765f4296cceb428500b820b445c1a
GET /KSD-KESAF-RAINB/assets/images/KSD/fallback-image-320x200.jpg HTTP/1.1
Host: ke-webfun.upp.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552
Cookie: ng_session=eyJpdiI6IkZUVXc2SUsrMTJkbTN1K255dzFrd3c9PSIsInZhbHVlIjoiOXhTNXREY2FsdmpkYmtYalk0L0RrUDNOVlh0NDMrR3F6bXE1cU9tKzFheDNnNnFjS2c3bWRQaVZDc2wzQVgrdHJCb1hUTjh5azJvMTlBS0hKbXIzcWtEczdqZGo2SElHV29TbHhraVMzZkdzRFIzcjdOeS9HVExsdlcyakxLYXUiLCJtYWMiOiJmYzJjZTk4ODY0NTQ0YmI5ZDc0YTJiMjZjNjIzYzQ0MWExMjFhMWMzYzc2Njc2OWU2ZGU2ODIzNzgzMTdhMWZlIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6ImVJeTU2YkZTWWJtLzZHSTRvdGRpRVE9PSIsInZhbHVlIjoiYUtJZWVVWmxiaGlUamRDNWtDSmRJSlZXVXRGWVNEYUY0NU05RHo5OUsreW56OU9sY0FsVjYvMlEwUFFIaURXRmFuU0dra3RJSW4zTkN1WUpCOUxQMGhyT3RpNkZVRjBYaUhpYWcrZ2ZlZUU9IiwibWFjIjoiYWFlMjMyMTM0YmU3Yzg4NTI5ZmVkM2VkYWIzZmM5Y2ZhZDI1ODEyNjg3MmI4ZWI5Y2Q1MTI2ODc0YzY2NDBjNSIsInRhZyI6IiJ9; userSessionID=eyJpdiI6InpDamEvTzNNYWdGeXcxSnpuV2poemc9PSIsInZhbHVlIjoiN3VmM1FqdGlzV09ZZU04U1EzRXR3VllManJqbWlYM1NpTStOSzIycjQxWWthV0lRcExlSE10MG1EM3dSVTdsU2hOTlhacFFpc1VtR0c5dWVLdFFEYzdDTGJiVTFJbzYrZkFOUGpSdlh6VjQ9IiwibWFjIjoiYWIyNWEyNzc4MjhlYTkwMmQ4MDRkZmU2N2QwMmQ1YjhmZjkwYTNhOTM4NDRkNmE3MjY3NzNlMjFiNzQ1ZjAxNyIsInRhZyI6IiJ9; userPermID=eyJpdiI6InR4ajhvdmtQSXd2aFEzSkVYQ0o1Mmc9PSIsInZhbHVlIjoiSnRYb1dscnJmcnpHSzJOYi9VdGVrQWROK3ExWVkvbGZTK1V4MHZPRkRPUXBTZENTTFZVVDRoK1dlcHpuUnd1MHMzOG4wV05YMUh2a0tpR0FKc1BXcDl2RE9nZENFSUZvQXdSY0pVeThBSDg9IiwibWFjIjoiMGViODQ2Nzg1NjYwZDVhMDA1MjBhYmU1NWNhZTI4NWMwOWU2YzA4MDM4OGMzOWFmMGQxYTVhMDRmMzhjODc1NyIsInRhZyI6IiJ9; TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:40:54 GMT
Last-Modified: Wed, 03 Aug 2022 08:34:11 GMT
ETag: "12f4-5e55218e6a20c"
Content-Length: 4852
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:40:54 GMT
Content-Type: image/jpeg
X-Varnish: 502378693 291085088
Age: 2431535
Via: 1.1 kesaf1-varnish-7ddc7f988f-4h6bt (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=998
Connection: Keep-Alive
|
|
| ke-webfun.upp.st/assets/images/KSD/Door2KidsZone-image-320x200.jpg | 91.241.95.201 | 200 OK | 34 kB |
URL GET HTTP/1.1ke-webfun.upp.st/assets/images/KSD/Door2KidsZone-image-320x200.jpg IP91.241.95.201:443 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttps://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 CertificateIssuerDigiCert Inc Subject*.upp.st FingerprintD9:D9:D5:5E:98:2E:56:79:AB:2C:DF:A0:57:76:A1:6D:F0:DA:E0:49 ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 320x200, components 3 Hash037f93955ef7ad7c68620f001a2a2914 720e6509bd0e6cb642c582de30386b9e5f63d9c3 efe5c70efc1913981bd00b49ae8067774250de88cb2910061fc963cce84b4453
GET /assets/images/KSD/Door2KidsZone-image-320x200.jpg HTTP/1.1
Host: ke-webfun.upp.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552
Cookie: ng_session=eyJpdiI6IkZUVXc2SUsrMTJkbTN1K255dzFrd3c9PSIsInZhbHVlIjoiOXhTNXREY2FsdmpkYmtYalk0L0RrUDNOVlh0NDMrR3F6bXE1cU9tKzFheDNnNnFjS2c3bWRQaVZDc2wzQVgrdHJCb1hUTjh5azJvMTlBS0hKbXIzcWtEczdqZGo2SElHV29TbHhraVMzZkdzRFIzcjdOeS9HVExsdlcyakxLYXUiLCJtYWMiOiJmYzJjZTk4ODY0NTQ0YmI5ZDc0YTJiMjZjNjIzYzQ0MWExMjFhMWMzYzc2Njc2OWU2ZGU2ODIzNzgzMTdhMWZlIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6ImVJeTU2YkZTWWJtLzZHSTRvdGRpRVE9PSIsInZhbHVlIjoiYUtJZWVVWmxiaGlUamRDNWtDSmRJSlZXVXRGWVNEYUY0NU05RHo5OUsreW56OU9sY0FsVjYvMlEwUFFIaURXRmFuU0dra3RJSW4zTkN1WUpCOUxQMGhyT3RpNkZVRjBYaUhpYWcrZ2ZlZUU9IiwibWFjIjoiYWFlMjMyMTM0YmU3Yzg4NTI5ZmVkM2VkYWIzZmM5Y2ZhZDI1ODEyNjg3MmI4ZWI5Y2Q1MTI2ODc0YzY2NDBjNSIsInRhZyI6IiJ9; userSessionID=eyJpdiI6InpDamEvTzNNYWdGeXcxSnpuV2poemc9PSIsInZhbHVlIjoiN3VmM1FqdGlzV09ZZU04U1EzRXR3VllManJqbWlYM1NpTStOSzIycjQxWWthV0lRcExlSE10MG1EM3dSVTdsU2hOTlhacFFpc1VtR0c5dWVLdFFEYzdDTGJiVTFJbzYrZkFOUGpSdlh6VjQ9IiwibWFjIjoiYWIyNWEyNzc4MjhlYTkwMmQ4MDRkZmU2N2QwMmQ1YjhmZjkwYTNhOTM4NDRkNmE3MjY3NzNlMjFiNzQ1ZjAxNyIsInRhZyI6IiJ9; userPermID=eyJpdiI6InR4ajhvdmtQSXd2aFEzSkVYQ0o1Mmc9PSIsInZhbHVlIjoiSnRYb1dscnJmcnpHSzJOYi9VdGVrQWROK3ExWVkvbGZTK1V4MHZPRkRPUXBTZENTTFZVVDRoK1dlcHpuUnd1MHMzOG4wV05YMUh2a0tpR0FKc1BXcDl2RE9nZENFSUZvQXdSY0pVeThBSDg9IiwibWFjIjoiMGViODQ2Nzg1NjYwZDVhMDA1MjBhYmU1NWNhZTI4NWMwOWU2YzA4MDM4OGMzOWFmMGQxYTVhMDRmMzhjODc1NyIsInRhZyI6IiJ9; TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 10 Apr 2024 15:36:01 GMT
Last-Modified: Tue, 10 Oct 2023 08:42:10 GMT
ETag: "83a6-60758aec4f53e"
Content-Length: 33702
Cache-Control: max-age=5184000
Expires: Sun, 09 Jun 2024 15:36:01 GMT
Content-Type: image/jpeg
X-Varnish: 500696273 292589811
Age: 2431829
Via: 1.1 kesaf1-varnish-7ddc7f988f-nlp4f (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Keep-Alive: timeout=5, max=1000
Connection: Keep-Alive
|
|
| ke-webfun.upp.st/KSD-KESAF-RAINB/assets/assets/fonts/Poppins.ttf | 91.241.95.201 | 200 OK | 74 kB |
URL GET HTTP/1.1ke-webfun.upp.st/KSD-KESAF-RAINB/assets/assets/fonts/Poppins.ttf IP91.241.95.201:443 ASN#49582 Upstream Software And Telecommunications Systems S.m.s.a
Requested byhttps://ke-webfun.upp.st/KSD-KESAF-RAINB/door2kidszone-001023834383-daily-no-wifi?trxID=1798512493577552 CertificateIssuerDigiCert Inc Subject*.upp.st FingerprintD9:D9:D5:5E:98:2E:56:79:AB:2C:DF:A0:57:76:A1:6D:F0:DA:E0:49 ValidityTue, 30 Apr 2024 00:00:00 GMT - Sat, 31 May 2025 23:59:59 GMT
File typeTrueType Font data, 15 tables, 1st "FFTM", 34 names, Macintosh Hashde94a85c73334510b8645762a276917d 26e81ed581db3e381e81f8059479b55f15237f38 12e8f76d9bc181fd1128655ab06dfb91521fd19e6e9b1f50f4ccd01d799ce87b
GET /KSD-KESAF-RAINB/assets/assets/fonts/Poppins.ttf HTTP/1.1
Host: ke-webfun.upp.st
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://ke-webfun.upp.st/KSD-KESAF-RAINB/assets/KSD-KESAF-RAINB-door2kidszone-001023834383-daily-no-wifi.css?ver=2
Cookie: ng_session=eyJpdiI6IkZUVXc2SUsrMTJkbTN1K255dzFrd3c9PSIsInZhbHVlIjoiOXhTNXREY2FsdmpkYmtYalk0L0RrUDNOVlh0NDMrR3F6bXE1cU9tKzFheDNnNnFjS2c3bWRQaVZDc2wzQVgrdHJCb1hUTjh5azJvMTlBS0hKbXIzcWtEczdqZGo2SElHV29TbHhraVMzZkdzRFIzcjdOeS9HVExsdlcyakxLYXUiLCJtYWMiOiJmYzJjZTk4ODY0NTQ0YmI5ZDc0YTJiMjZjNjIzYzQ0MWExMjFhMWMzYzc2Njc2OWU2ZGU2ODIzNzgzMTdhMWZlIiwidGFnIjoiIn0%3D; ctxid=eyJpdiI6ImVJeTU2YkZTWWJtLzZHSTRvdGRpRVE9PSIsInZhbHVlIjoiYUtJZWVVWmxiaGlUamRDNWtDSmRJSlZXVXRGWVNEYUY0NU05RHo5OUsreW56OU9sY0FsVjYvMlEwUFFIaURXRmFuU0dra3RJSW4zTkN1WUpCOUxQMGhyT3RpNkZVRjBYaUhpYWcrZ2ZlZUU9IiwibWFjIjoiYWFlMjMyMTM0YmU3Yzg4NTI5ZmVkM2VkYWIzZmM5Y2ZhZDI1ODEyNjg3MmI4ZWI5Y2Q1MTI2ODc0YzY2NDBjNSIsInRhZyI6IiJ9; userSessionID=eyJpdiI6InpDamEvTzNNYWdGeXcxSnpuV2poemc9PSIsInZhbHVlIjoiN3VmM1FqdGlzV09ZZU04U1EzRXR3VllManJqbWlYM1NpTStOSzIycjQxWWthV0lRcExlSE10MG1EM3dSVTdsU2hOTlhacFFpc1VtR0c5dWVLdFFEYzdDTGJiVTFJbzYrZkFOUGpSdlh6VjQ9IiwibWFjIjoiYWIyNWEyNzc4MjhlYTkwMmQ4MDRkZmU2N2QwMmQ1YjhmZjkwYTNhOTM4NDRkNmE3MjY3NzNlMjFiNzQ1ZjAxNyIsInRhZyI6IiJ9; userPermID=eyJpdiI6InR4ajhvdmtQSXd2aFEzSkVYQ0o1Mmc9PSIsInZhbHVlIjoiSnRYb1dscnJmcnpHSzJOYi9VdGVrQWROK3ExWVkvbGZTK1V4MHZPRkRPUXBTZENTTFZVVDRoK1dlcHpuUnd1MHMzOG4wV05YMUh2a0tpR0FKc1BXcDl2RE9nZENFSUZvQXdSY0pVeThBSDg9IiwibWFjIjoiMGViODQ2Nzg1NjYwZDVhMDA1MjBhYmU1NWNhZTI4NWMwOWU2YzA4MDM4OGMzOWFmMGQxYTVhMDRmMzhjODc1NyIsInRhZyI6IiJ9; TS016b227f=01b02e3e89c83bcb74632b2de120b1f91ca845bb5fc8503d1dd4f56c76a04a4b8bcd1b94f4316952cda6755eadded3aa82b0028461
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 08 May 2024 19:06:13 GMT
Last-Modified: Tue, 11 Jul 2023 10:00:34 GMT
ETag: "28318-600332b8de5be-gzip"
Content-Type: font/ttf
X-Varnish: 498760747 500762384
Age: 16
Via: 1.1 kesaf1-varnish-7ddc7f988f-nlp4f (Varnish/7.4)
Accept-Ranges: bytes
X-Cache: HIT
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=997
Connection: Keep-Alive
Transfer-Encoding: chunked
|
|