Report - api.downloadmr.com/installer/50092b62-0da4-49e7-ad30-24fc5bc06f2f/4462727/config

Report Overview

Submitted URL
api.downloadmr.com/installer/50092b62-0da4-49e7-ad30-24fc5bc06f2f/4462727/config
IP
3.18.7.81
ASN
#16509 AMAZON-02
Submitted
2023-05-26 15:38:55
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2023-05-26	467 B	14 kB	151.101.1.229
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-05-26	2.7 kB	5.6 kB	142.250.74.131
www.google.com	7	1997-09-15	2015-05-10	2023-05-26	2.4 kB	57 kB	142.250.74.132
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-05-26	428 B	48 kB	142.250.74.72
p.typekit.net	620	2010-08-02	2012-05-23	2023-05-26	465 B	338 B	23.36.76.96
use.typekit.net	494	2010-08-02	2012-07-05	2023-05-26	1.0 kB	22 kB	23.36.76.186
www.gstatic.com	unknown	2008-02-11	2016-07-26	2023-05-26	3.4 kB	723 kB	216.58.211.3
www.hugedomains.com	50857	2003-10-31	2017-01-29	2023-05-26	3.2 kB	92 kB	104.26.6.37
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-05-26	461 B	6.0 kB	142.250.74.106
api.downloadmr.com	unknown	2010-12-20	2012-06-30	2023-05-22	723 B	302 B	3.18.7.81
static.hugedomains.com	86609	2003-10-31	2015-10-21	2023-05-26	5.0 kB	342 kB	104.26.6.37
ocsp.globalsign.com	2075	1999-04-19	2012-07-20	2023-05-26	358 B	1.9 kB	104.18.21.226
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-05-26	1.1 kB	31 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-05-26 15:38:39	medium	Client IP	3.18.7.81	ETPRO ADWARE_PUP Adware.Solimba requesting install 3

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-04-25
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-25 03:29:01 Times Seen341440 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr	69 B	2023-03-07	2024-04-25
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-25 02:56:36 Times Seen99421 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.hugedomains.com/domain_profile.cfm?d=downloadmr.com	0 B	2023-03-07	2024-04-25
Pretty URL www.hugedomains.com/domain_profile.cfm?d=downloadmr.com IP 104.26.6.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 04:01:09 Times Seen37053623 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.hugedomains.com/domain_profile.cfm?d=downloadmr.com	1.2 kB	2023-05-26	2023-05-26
Pretty URL www.hugedomains.com/domain_profile.cfm?d=downloadmr.com IP 104.26.6.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 17:38:57 Last Seen2023-05-26 17:38:57 Times Seen1 Hash 35bdf3760dc61ebde51aca051378b62c 4ffa793516856dd1f2900bda68102f79a78f150b b17296efce9acc0a5f284954ecedaaa9082f2af93840b1da1093e8d6f2420354 Loading...

	www.hugedomains.com/domain_profile.cfm?d=downloadmr.com	0 B	2023-03-07	2024-04-25
Pretty URL www.hugedomains.com/domain_profile.cfm?d=downloadmr.com IP 104.26.6.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 04:01:09 Times Seen37053623 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	unknown	361 B	2023-05-26	2023-05-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 17:38:57 Last Seen2023-05-26 17:38:57 Times Seen1 Hash a54cac8dd76d24afc33c19f2dad13034 1cd628772a990cbdabe6109c4490f34fb55de476 d5b5b108a853bc3129e5cc0f8d034ed1143dff189f5c6bddca43fba6d2f8da9c Loading...

	www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js	417 kB	2023-05-25	2023-12-01
Pretty URL www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-25 23:34:05 Last Seen2023-12-01 20:53:29 Times Seen14311 Hash 95a32a4d8f8be968bc15d6ab9b9491d1 fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015 a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981 Loading...

	www.google.com/recaptcha/api.js	850 B	2023-05-25	2023-12-01
Pretty URL www.google.com/recaptcha/api.js IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-25 23:59:56 Last Seen2023-12-01 20:53:29 Times Seen1821 Hash df783ce1aff114831a54f9f75f41f66c 33148dcdac51d1a72787969900203bc0316ff82f f75b96abf98a7f4874b54f268b85ba2b2fa261741afa891097537bcfa1e73fd3 Loading...

	www.googletagmanager.com/gtag/js?id=UA-7117339-4	120 kB	2023-05-26	2023-05-27
Pretty URL www.googletagmanager.com/gtag/js?id=UA-7117339-4 IP 142.250.74.72 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 14:07:15 Last Seen2023-05-27 08:06:58 Times Seen11 Hash 509b7ad99ffd2f3a180f82663ce0b5ec aad4793bbf37bee2238aaddf786e72922ae5a131 6fa5330ba302e5934265780227bef1a0dcec2fb4037a04865cb7324811dee269 Loading...

	static.hugedomains.com/js/hdv3-js/jquery.min.js	87 kB	2023-03-07	2024-04-25
Pretty URL static.hugedomains.com/js/hdv3-js/jquery.min.js IP 104.26.6.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 03:12:12 Times Seen62227 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	www.hugedomains.com/sandbox%20eval%20code	147 B	2023-04-11	2024-04-25
Pretty URL www.hugedomains.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-04-25 03:29:01 Times Seen341937 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr	44 kB	2023-05-26	2023-05-26
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr IP 142.250.74.132 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-26 17:38:57 Last Seen2023-05-26 17:38:57 Times Seen1 Hash 5ea4c762f8263d3981845df9025cfa28 80e9cda295058bf3acdf0761316d1fe7b6f7d6eb 28e6530ece4eefcb44b91d255e3b77941ff72e0a6a38700d69fea5068457c4ee Loading...

	static.hugedomains.com/js/hdv3-js/script.js	9.9 kB	2023-03-08	2024-04-25
Pretty URL static.hugedomains.com/js/hdv3-js/script.js IP 104.26.6.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:03 Last Seen2024-04-25 00:47:02 Times Seen6722 Hash defee0a43f53c0bd24b5420db2325418 55e3fdbced6fb04f1a2a664209f6117110b206f3 c1f8e55b298dc653477b557d4d9ef04951b3b8ba8362a836c54e2db10cda4d09 Loading...

	www.hugedomains.com/cdn-cgi/challenge-platform/scripts/invisible.js	23 kB	2023-05-26	2023-05-26
Pretty URL www.hugedomains.com/cdn-cgi/challenge-platform/scripts/invisible.js IP 104.26.6.37 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-26 17:38:57 Last Seen2023-05-26 17:38:57 Times Seen2 Hash a607bd6f65210e21d3231772aebc4e7e 2a4800a19a22f2ca8e4d7005ac860ca4c168ce00 85335171fbcbce5aafce1521da6fb7e58f5582f13cadeea86b695aace07f0436 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 93b606817edb7b600ec0c6da3ea600ee	20 kB	2023-05-26	2023-05-26
Pretty Observations First Seen2023-05-26 17:38:57 Last Seen2023-05-26 17:38:57 Times Seen1 Hash 93b606817edb7b600ec0c6da3ea600ee 0a3f804bc59ade98e5bed271d7136e233466571e 022a93404afa918488d61a0d03258240a7b33dab3573a1c4d91cbc94814bbc79 Loading...

	#2 Eval - b4382637425dcbd2b7193f4869bd2ea7	22 B	2023-05-10	2023-06-06
Pretty Observations First Seen2023-05-10 11:43:39 Last Seen2023-06-06 08:49:14 Times Seen1953 Hash b4382637425dcbd2b7193f4869bd2ea7 97cabfec2628032d4d148d0910b4056a3f34adfb 527c9e3edfb79e372ec5ac05510312764bd14023d848d9ac4746daecba21f13c Loading...

	#3 Eval - 3e17aa65db170d8d135c100ada8fb5e6	64 B	2023-05-10	2023-06-06
Pretty Observations First Seen2023-05-10 11:43:39 Last Seen2023-06-06 08:49:14 Times Seen1959 Hash 3e17aa65db170d8d135c100ada8fb5e6 2cccef52fe8dbfcffd7cebb2ae7ebc4c70c91b15 abe6e0a658bdad68d3e9185ac581468444ce5f020f508313ac8b38772e102eae Loading...

	#4 Eval - db239010a87e10045c38d68d80d53193	22 B	2023-05-10	2023-06-06
Pretty Observations First Seen2023-05-10 11:43:39 Last Seen2023-06-06 08:49:14 Times Seen1958 Hash db239010a87e10045c38d68d80d53193 1b4a5ec9e7be6d7ecf80e8da870c873e95a841d6 8e841e21866babc6374341c8912a81266537f7ad8747bbf62dfbf5b782427bc4 Loading...

	#5 Eval - 3486f9c2a32195c9fc5562d98041874c	16 kB	2023-05-10	2023-06-06
Pretty Observations First Seen2023-05-10 11:43:39 Last Seen2023-06-06 08:49:14 Times Seen1955 Hash 3486f9c2a32195c9fc5562d98041874c 4c4f3719194eece131e126860cc1bac9738d0456 92e4d4a9c97f6b559c3514fc92b5e34d8a95d9e71c4e5bb78ca1dad12ba88b75 Loading...

		Size	First Seen	Last Seen
	#1 Write - 23a9a19532d4d11d0162f8ff47f66385	96 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:06:56 Last Seen2024-04-24 16:41:09 Times Seen17082 Hash 23a9a19532d4d11d0162f8ff47f66385 39255a9f75cf85a5ce76383bab628291a9626f00 63fbe184fbb505dfd393d0292e5d1ee5f55922728fe59eef5b3d73818d6a9384 Loading...

HTTP Transactions (47)

URL IP Response Size

api.downloadmr.com/

3.18.7.81

0 B

URL
api.downloadmr.com/
IP
3.18.7.81:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: api.downloadmr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
content-length: 0
date: Fri, 26 May 2023 15:38:39 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com

api.downloadmr.com/installer/50092b62-0da4-49e7-ad30-24fc5bc06f2f/4462727/config

3.18.7.81

0 B

URL User Request GET
api.downloadmr.com/installer/50092b62-0da4-49e7-ad30-24fc5bc06f2f/4462727/config
IP
3.18.7.81:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

NIDS	Severity	Alert
suricata	medium	ETPRO ADWARE_PUP Adware.Solimba requesting install 3

HTTP Headers

GET /installer/50092b62-0da4-49e7-ad30-24fc5bc06f2f/4462727/config HTTP/1.1
Host: api.downloadmr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Found
content-length: 0
date: Fri, 26 May 2023 15:38:39 GMT
location: https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com

static.hugedomains.com/images/hdv3-img/phone-icon.png

104.26.6.37

200 OK

743 B

URL GET HTTP/2
static.hugedomains.com/images/hdv3-img/phone-icon.png
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
PNG image data, 22 x 22, 8-bit gray+alpha, non-interlaced\012- data
Size
743 B (743 bytes)
Hash
bd361461dbc83db995e644e42e59dca9
7d3d5350646382e10d1fd84a3489d2eec7f1c651
4e5d6e60573346e0eb3e8368ca629af38d0d59f4e51f750724e7f95f8be5917e

HTTP Headers

GET /images/hdv3-img/phone-icon.png HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: image/png
content-length: 743
access-control-allow-origin: *
cf-bgj: imgq:100,h2pri
cf-polished: origSize=2415
etag: "524238d6b75ed61:0"
last-modified: Mon, 20 Jul 2020 17:04:32 GMT
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5495
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FLSBlCxZYWd3%2FaA8lJZZ7%2BEQOf2G5C%2BxXvTJ1j1etlzXMq8qLA48uM0b8ES5R3AHM%2FWyXBdR1yG5gqtwYX9xzvodpcLlj4zikOP00dIn5BjHblQSKljJGcJn06yKlQMaMFvT9S8XKV4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd71b445c2c0b02-OSL
X-Firefox-Spdy: h2

static.hugedomains.com/images/hdv3-img/care.png

104.26.6.37

200 OK

708 B

URL GET HTTP/2
static.hugedomains.com/images/hdv3-img/care.png
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
PNG image data, 46 x 47, 8-bit gray+alpha, non-interlaced\012- data
Size
708 B (708 bytes)
Hash
3ceb91c3c875ca5750c7aadf7e4ece6c
041a428a64ee9d32d6da4befacf6d8e5e3f5e436
3ec2212fc76e58ec342024869548e63c5a954162535572610a184aa0690577c8

HTTP Headers

GET /images/hdv3-img/care.png HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: image/png
content-length: 708
access-control-allow-origin: *
cf-bgj: imgq:100,h2pri
cf-polished: origSize=1906
etag: "a9c92cd6b75ed61:0"
last-modified: Mon, 20 Jul 2020 17:04:31 GMT
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 2081
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s3kFlIjGjG3SKvAvX7UEf4pZ5813bBAtCl8rxZDgsBqIfgJuFPZ0R%2FlL0%2FfJqfwQH3YgsVQsWdG%2BZloNSbTDW8ZCDovBXyGYeeJH6zPWmBS8HSoDwSCMvsGKYO4TbFdnF103aFP0YV0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd71b445c2d0b02-OSL
X-Firefox-Spdy: h2

static.hugedomains.com/images/hdv3-img/logo.png

104.26.6.37

200 OK

4.3 kB

URL GET HTTP/2
static.hugedomains.com/images/hdv3-img/logo.png
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
PNG image data, 237 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
4.3 kB (4310 bytes)
Hash
c6585d35dbe66427d2971405193e3420
88f0c9cc830f31e475aa5040a44c959b6e5b309a
b7538e415e50685e667d23705f5513c5770ae627e849bd1ea3c98f5abaf336c8

HTTP Headers

GET /images/hdv3-img/logo.png HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: image/png
content-length: 4310
access-control-allow-origin: *
cf-bgj: imgq:100,h2pri
cf-polished: origSize=6473
etag: "32f437d6b75ed61:0"
last-modified: Mon, 20 Jul 2020 17:04:32 GMT
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 1678
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1fCMija38h0BHrZ%2BYnNCITC4qaMO8hVva1Wa%2FPTdEqJUjuBrKpx3AOZpL8K0oonQ5dCsn58XbXKQRE5kEdFcGFuTUFUsETlItINeOUdm9GbjXXm8ViEuRyrBw4OrNwFxT97j%2BMeImxo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd71b445c2b0b02-OSL
X-Firefox-Spdy: h2

static.hugedomains.com/images/hdv3-img/guarant-footer.png

104.26.6.37

200 OK

1.5 kB

URL GET HTTP/2
static.hugedomains.com/images/hdv3-img/guarant-footer.png
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
PNG image data, 37 x 47, 8-bit gray+alpha, non-interlaced\012- data
Size
1.5 kB (1507 bytes)
Hash
e527bd653c6ab12a65243ea7b6090d60
6f4cecd8c8d38e340a81295606d4faa28d34d0a7
397380d4c94183937f67dc28fc89697fadef075f66e637080ec71545b07d65f1

HTTP Headers

GET /images/hdv3-img/guarant-footer.png HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: image/png
content-length: 1507
access-control-allow-origin: *
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3413
etag: "8d4636d6b75ed61:0"
last-modified: Mon, 20 Jul 2020 17:04:31 GMT
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 3487
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TPE0v%2BkA99UYcDokLCqlEXpb44YBWU3KHy1vaVqUWN6574I21kd7iTOr%2BKvwSHaBs4s3Fn1dmPEZQLZ4YqkGx1IgAgDo5lkNapj43FAVGZu5ctf3d3U%2FgKbNuCa2jEnQoEpRYsbnL7E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd71b445c2e0b02-OSL
X-Firefox-Spdy: h2

static.hugedomains.com/images/hdv3-img/escrow.png

104.26.6.37

200 OK

2.8 kB

URL GET HTTP/2
static.hugedomains.com/images/hdv3-img/escrow.png
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
PNG image data, 196 x 47, 8-bit gray+alpha, non-interlaced\012- data
Size
2.8 kB (2799 bytes)
Hash
5e3fff838a9aa2ef46e2e4d9fe13ab85
a6ea4b142dd129e28d02ecc0dc59edade1976376
bbb3555394a1e45cb61c59281716bf177f29a026efef4750eed9c8a21b838765

HTTP Headers

GET /images/hdv3-img/escrow.png HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: image/png
content-length: 2799
access-control-allow-origin: *
cf-bgj: imgq:100,h2pri
cf-polished: origSize=5589
etag: "ece634d6b75ed61:0"
last-modified: Mon, 20 Jul 2020 17:04:31 GMT
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 3487
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PP8T0X4TCQ5T2JdKoX8KUc50lRtga8EtWq0QprH4znSarlwU401yguoUT4jXTiwB6I5NZzXr3Sg9ApL7NpkO6xLHj6w11iVCyFxw%2FE7CNXEgmtFs0jAUcjXGg20Whn0qkXP5NJKxYVY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd71b446c330b02-OSL
X-Firefox-Spdy: h2

static.hugedomains.com/images/hdv3-img/geo.png

104.26.6.37

200 OK

2.6 kB

URL GET HTTP/2
static.hugedomains.com/images/hdv3-img/geo.png
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
PNG image data, 166 x 36, 8-bit gray+alpha, non-interlaced\012- data
Size
2.6 kB (2578 bytes)
Hash
1aceace0b63ef3e4cf3a349b83f5725b
fede44a511cbb7a94be77c6a3fbaf05c0ac735e9
7185ad18f6d3ea3d12c0a64a084a4bc570ba2e79ed46a1fb3427a4c29ca9bb20

HTTP Headers

GET /images/hdv3-img/geo.png HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: image/png
content-length: 2578
access-control-allow-origin: *
cf-bgj: imgq:100,h2pri
cf-polished: origSize=5035
etag: "741f36d6b75ed61:0"
last-modified: Mon, 20 Jul 2020 17:04:31 GMT
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 4563
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jRj0%2FOoLBjzJyssAIAxiY5T0ksUqm7N4UpB1oHXW1IB%2FUBPAppzIvhHWVm%2BxQkQaIWcM8YhmffSBfyM3o98POLv1AUdBi%2FCjgoBxFqWKEhN57FNbBGzHtp6PSf36bux4YP6lXrDSaT0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd71b446c340b02-OSL
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/fancyapps/fancybox@3.5.7/dist/jquery.fancybox.min.css

151.101.1.229

200 OK

13 kB

URL GET HTTP/2
cdn.jsdelivr.net/gh/fancyapps/fancybox@3.5.7/dist/jquery.fancybox.min.css
IP
151.101.1.229:443
ASN
#54113 FASTLY

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT

File type
ASCII text, with very long lines (12795), with no line terminators
Size
13 kB (12795 bytes)
Hash
a2d42584292f64c5827e8b67b1b38726
1be9b79be02a1cfc5d96c4a5e0feb8f472babd95
5736e3eec0c34bfc288854b7b8d2a8f1e22e9e2e7dae3c8d1ad5dfb2d4734ad0

HTTP Headers

GET /gh/fancyapps/fancybox@3.5.7/dist/jquery.fancybox.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 3.5.7
x-jsd-version-type: version
etag: W/"31fb-G+m3m+AqHPxdlsSl4P649HK6vZU"
accept-ranges: bytes
date: Fri, 26 May 2023 15:38:40 GMT
age: 6763695
x-served-by: cache-fra-eddf8230072-FRA, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 12795
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4f771b9e05938d93366a814a2714cc32
33b5a01f35241d5085c476d06542865904652ad4
2db84be074e99462d8d9dd248b445da5bb78332b6087a247abfe88dd9b9f8cdf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:38:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
6b72408b6aa025b7292dfa9884621463
e3cc9bd0efe2a7ff90b23e74cff27b8f9a21933a
21aaf9003012d1c5b12cc116b740cd9f650340c1c738c4398bf9dea97d467f88

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:38:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4

104.18.21.226

1.5 kB

URL
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
61f87c23454f34c23bdcce2148e648f2
ca2b0bcaafcc345023414515bac2d996e44a318c
4e743072ef2a8920da1e595209b98ea517bd75558b1f7aaa7a1a16b0c9050080

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 26 May 2023 15:38:40 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "1DC32B1D5B1C7882EF08AF605A5D333EA909415C"
Expires: Sat, 27 May 2023 02:00:00 GMT
Last-Modified: Fri, 26 May 2023 14:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2664
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cd71b4508871bfe-OSL

www.google.com/recaptcha/api.js

142.250.74.132

200 OK

556 B

URL GET HTTP/2
www.google.com/recaptcha/api.js
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint85:AD:43:66:C0:73:07:1B:B5:5D:4A:83:4B:76:3F:DA:4B:2B:E1:F8
ValidityMon, 24 Apr 2023 12:01:16 GMT - Mon, 17 Jul 2023 12:01:15 GMT

File type
ASCII text, with very long lines (850), with no line terminators
Size
556 B (556 bytes)
Hash
df783ce1aff114831a54f9f75f41f66c
33148dcdac51d1a72787969900203bc0316ff82f
f75b96abf98a7f4874b54f268b85ba2b2fa261741afa891097537bcfa1e73fd3

HTTP Headers

GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
expires: Fri, 26 May 2023 15:38:40 GMT
date: Fri, 26 May 2023 15:38:40 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-7117339-4

142.250.74.72

200 OK

47 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-7117339-4
IP
142.250.74.72:443
ASN
#15169 GOOGLE

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type
ASCII text, with very long lines (2271)
Size
47 kB (46837 bytes)
Hash
509b7ad99ffd2f3a180f82663ce0b5ec
aad4793bbf37bee2238aaddf786e72922ae5a131
6fa5330ba302e5934265780227bef1a0dcec2fb4037a04865cb7324811dee269

HTTP Headers

GET /gtag/js?id=UA-7117339-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 15:38:40 GMT
expires: Fri, 26 May 2023 15:38:40 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 May 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46837
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

static.hugedomains.com/js/hdv3-js/script.js

104.26.6.37

200 OK

3.2 kB

URL GET HTTP/2
static.hugedomains.com/js/hdv3-js/script.js
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (3198)
Size
3.2 kB (3157 bytes)
Hash
defee0a43f53c0bd24b5420db2325418
55e3fdbced6fb04f1a2a664209f6117110b206f3
c1f8e55b298dc653477b557d4d9ef04951b3b8ba8362a836c54e2db10cda4d09

HTTP Headers

GET /js/hdv3-js/script.js HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: application/javascript
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=16782
etag: W/"04e7c371aebd81:0"
last-modified: Fri, 28 Oct 2022 22:11:24 GMT
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 4581
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k0BDbD3mGMgRUxFB5edf5V0AN3Ld%2BelrzXvD4KkFQm5D7mTepKcPcKpJRnVUcf7vE6T5hkgqHRwkgaX%2Bxmyo3mzi%2BuG2xLK%2FMLkw%2FNXMsym30xYUoG%2F6DaqmBdMBcN5ovFAL9ALygCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd71b445c270b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8fdba15b1e036bbb416fbd6c272e5543
20193b9d3ced059164358e60bad68a0ea1bc87b9
1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:38:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
61d13c286970b667c506166085b27432
e17257068ae421f755f2c671371b2fdfc3ea7fe1
68a17d38798d905ccc0ea237654927ec0a6c66c5164909e9a21e3344a576fd62

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:38:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

471 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
4f771b9e05938d93366a814a2714cc32
33b5a01f35241d5085c476d06542865904652ad4
2db84be074e99462d8d9dd248b445da5bb78332b6087a247abfe88dd9b9f8cdf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:38:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

p.typekit.net/p.css?s=1&k=zyw6mds&ht=tk&f=40411&a=11744788&app=typekit&e=css

23.36.76.96

200 OK

5 B

URL GET HTTP/2
p.typekit.net/p.css?s=1&k=zyw6mds&ht=tk&f=40411&a=11744788&app=typekit&e=css
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B
ValidityWed, 14 Sep 2022 00:00:00 GMT - Sun, 15 Oct 2023 23:59:59 GMT

File type
ASCII text
Size
5 B (5 bytes)
Hash
83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb

HTTP Headers

GET /p.css?s=1&k=zyw6mds&ht=tk&f=40411&a=11744788&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css
content-length: 5
last-modified: Fri, 21 Apr 2023 14:23:24 GMT
etag: "64429c5c-5"
cache-control: public, max-age=604800
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Fri, 26 May 2023 15:38:40 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:38:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.typekit.net/af/a91117/00000000000000003b9b257c/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3

23.36.76.186

200 OK

20 kB

URL GET HTTP/2
use.typekit.net/af/a91117/00000000000000003b9b257c/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
IP
23.36.76.186:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B
ValidityWed, 14 Sep 2022 00:00:00 GMT - Sun, 15 Oct 2023 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 19608, version 1.0\012- data
Size
20 kB (19608 bytes)
Hash
067422192cbb34922cab0a5cf0614816
f019792c33d128b074a639935cba0b585f5beb0e
cfa0e92aa58452201274b8ef57ba1066a5465809a6937a24ee224052ca6d71e0

HTTP Headers

GET /af/a91117/00000000000000003b9b257c/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hugedomains.com
DNT: 1
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 19608
etag: "98e73879b397d0b98b8a96538c3271fce677cf5c"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 26 May 2023 15:38:41 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:38:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/notosans/v28/o-0IIpQlx3QUlC5A4PNr5TRA.woff2

216.58.207.227

200 OK

14 kB

URL GET HTTP/2
fonts.gstatic.com/s/notosans/v28/o-0IIpQlx3QUlC5A4PNr5TRA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 14256, version 1.0\012- data
Size
14 kB (14256 bytes)
Hash
0f7d9a10be7f1a2f1a2add4dded5dae5
03184a1d29b1199670b159f72db9f134def99cb7
5fc4c95920416b0ef0b5aee93a90984989183a6d29f712e725a3383309806a54

HTTP Headers

GET /s/notosans/v28/o-0IIpQlx3QUlC5A4PNr5TRA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.hugedomains.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14256
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 16:39:49 GMT
expires: Thu, 23 May 2024 16:39:49 GMT
cache-control: public, max-age=31536000
age: 169132
last-modified: Thu, 27 Apr 2023 00:19:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

472 B

URL
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 15:38:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js

216.58.211.3

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (660)
Size
166 kB (166449 bytes)
Hash
95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981

HTTP Headers

GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.hugedomains.com
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 316152
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.hugedomains.com/favicon.ico

104.26.6.37

200 OK

29 kB

URL GET HTTP/2
www.hugedomains.com/favicon.ico
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
29 kB (29030 bytes)
Hash
0106d4fd24f36c561cf3e33bea3973e4
84572f2157c0ac8bacc38b563069b223f93cb23c
5a6c5f7923c7b5ba984f3c4b79b5c3005f3c2f1347a84a6a7b3c16ffbf11777d

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Cookie: site_version_phase=108; site_version=HDv3
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:41 GMT
content-type: image/x-icon
cache-control: private
last-modified: Mon, 20 Jul 2020 17:04:28 GMT
etag: W/"036d5d3b75ed61:0"
access-control-allow-origin: *
x-lbdetail: nonimg 1150 ctimage/x-icon
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f7hj7Af%2BUy3Q3G7SHJxttlrAz0DViEJKPwUMDovgV7ZSsduriR1ITjfJpMVl78LscAS1OL1svaIJ%2B38N2Xr1V3WsPd4Ry9n5HVUGer9WktzWxZ23MifA4qkAbZA6cfYsYX9J91o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd71b473ef20b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css

216.58.211.3

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (56403), with no line terminators
Size
25 kB (24605 bytes)
Hash
83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8

HTTP Headers

GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 315787
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js

216.58.211.3

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (660)
Size
166 kB (166449 bytes)
Hash
95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981

HTTP Headers

GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 316152
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 252429
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9

142.250.74.132

200 OK

112 B

URL GET HTTP/3
www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type
ASCII text, with no line terminators
Size
112 B (112 bytes)
Hash
ffdfcf8fae84f7684f006bf5af012c06
b31182bbb1c60a114919bf05e698805b61f76aba
1bf768716a75b7620d341f775d10d79ee73a3a47f6609a24ca25dd88e4aeda95

HTTP Headers

GET /recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
expires: Fri, 26 May 2023 15:38:41 GMT
date: Fri, 26 May 2023 15:38:41 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/api2/logo_48.png

216.58.211.3

200 OK

2.2 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/api2/logo_48.png
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
2.2 kB (2228 bytes)
Hash
ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a

HTTP Headers

GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 21:48:58 GMT
expires: Mon, 29 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 323383
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js

216.58.211.3

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (660)
Size
166 kB (166449 bytes)
Hash
95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981

HTTP Headers

GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 316152
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh

142.250.74.132

200 OK

1.2 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.2 kB (1157 bytes)
Hash
eb9cde4bf06db7999c4015cb3f83e53c
41fdd3a09e803eedff84675d001b3852a9eb072e
7a35d1635401add43d5c70091d14d1d66a83ba5726d84f6b7e390041a76a730a

HTTP Headers

GET /recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 15:38:41 GMT
content-security-policy: script-src 'nonce-Mm9fdUoPxU4Bn2osOZ3uLQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1157
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css

216.58.211.3

200 OK

25 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (56403), with no line terminators
Size
25 kB (24605 bytes)
Hash
83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8

HTTP Headers

GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 315788
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js

216.58.211.3

200 OK

166 kB

URL GET HTTP/3
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP
216.58.211.3:443
ASN
#15169 GOOGLE

Requested by
https://www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT

File type
ASCII text, with very long lines (660)
Size
166 kB (166449 bytes)
Hash
95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981

HTTP Headers

GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 316153
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

static.hugedomains.com/css/hdv3-css/responsive.css?r=20201105a

104.26.6.37

200 OK

65 kB

URL GET HTTP/2
static.hugedomains.com/css/hdv3-css/responsive.css?r=20201105a
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65093), with no line terminators
Size
65 kB (65093 bytes)
Hash
71c2751b4fc2bdd14c9ddb960f45a3f1
2ff12cf4611d1dd6b3b9a1260900a5c2f88eb472
0fb69e11495d2244539725a723358bd6aa59d242986f8b6aaefff070b698dc40

HTTP Headers

GET /css/hdv3-css/responsive.css?r=20201105a HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: text/css
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=91313
etag: W/"801d162c5bead81:0"
last-modified: Thu, 27 Oct 2022 23:23:51 GMT
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5491
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zeeEpR%2BY567gXqXR5dA2GR5g18EEvNpAvBGSvbLFBjS4a6zRepDN%2FNrcXST84GqtmNPqmMjIt17P0IQm5FF3BbYZoCI4pk5nLqh%2FKFMH9CZyzRf0g9tBeKrEsVEPYjMU2GOSlq7b8mc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd71b445c2a0b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

use.typekit.net/zyw6mds.css

23.36.76.186

200 OK

1.2 kB

URL GET HTTP/2
use.typekit.net/zyw6mds.css
IP
23.36.76.186:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerDigiCert Inc
Subjectuse.typekit.net
Fingerprint5F:2F:EB:47:33:08:97:87:7F:73:06:D1:9A:4B:F5:06:57:11:08:2B
ValidityWed, 14 Sep 2022 00:00:00 GMT - Sun, 15 Oct 2023 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (1274), with no line terminators
Size
1.2 kB (1231 bytes)
Hash
ad33328711f2562d3f22542e17ef63bb
f1b5633b424c58e2616f4e7aa213be578b176ef1
69af35fa674b2f47241050168a1bbf0b3c198981596a6d4e6a0588a2d59f28fe

HTTP Headers

GET /zyw6mds.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.hugedomains.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 588
date: Fri, 26 May 2023 15:38:40 GMT
X-Firefox-Spdy: h2

www.hugedomains.com/cdn-cgi/challenge-platform/scripts/invisible.js

104.26.6.37

302 Found

23 kB

URL GET HTTP/2
www.hugedomains.com/cdn-cgi/challenge-platform/scripts/invisible.js
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type

Size
23 kB (22859 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/invisible.js HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: site_version_phase=108; site_version=HDv3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Fri, 26 May 2023 15:38:41 GMT
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/938e2b5c/invisible.js
access-control-allow-origin: *
vary: accept-encoding
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rn5U8Xvz2KYxRPVgHMTOIP2Vu4MvdF5bkl0Gz2Kx7SIBJEYP%2FfOwEryxEipg0E2Y7ORQ50xC3ZaqGZA4qytBEBObi8RTZa0ZdkdW1Cp3ZbT6oYaoMxyIjwf99SOHdtvpyusvbbE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd71b46fea50b02-OSL
X-Firefox-Spdy: h2

static.hugedomains.com/css/hdv3-css/style.css?r=20201105a

104.26.6.37

200 OK

162 kB

URL GET HTTP/2
static.hugedomains.com/css/hdv3-css/style.css?r=20201105a
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
162 kB (162500 bytes)
Hash
9b02e62faf032ecb47560c0944d2044b
5c2283710f83026d0117c1d31567926c991e3c70
59190ed4208b5f4bdceb308020c144225d80d82c6436d7b9afd920c87c3315ef

HTTP Headers

GET /css/hdv3-css/style.css?r=20201105a HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: text/css
access-control-allow-origin: *
cf-bgj: minify
cf-polished: origSize=220164
etag: W/"08b51a4bdfad81:0"
last-modified: Thu, 17 Nov 2022 19:49:02 GMT
vary: Accept-Encoding
x-powered-by: ASP.NET
cache-control: max-age=14400
cf-cache-status: HIT
age: 5491
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RA0s8jJWp%2BTbIKxQb%2FmQcbtiecCy1r3IfkDD6o6qh1gOfVleiBBDv0rR38x1vpauzQYQApqBuPX0B%2FXAk5cp2MAUmEcT6ZICMFrk8vVmrFDV4oE9LiCWVi7HbhSZj8bFgvrK5RlSeKQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd71b445c290b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Noto+Sans:400,700&display=swap

142.250.74.106

200 OK

5.3 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Noto+Sans:400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT

File type
ASCII text, with very long lines (5482), with no line terminators
Size
5.3 kB (5338 bytes)
Hash
37bff1a948984178a5b42e3812f0635d
5dcc6ba33067997f792799b9a66f11f829a61e6e
40a100c8741c50eeea65cbe2a61d15b539e44be37cd8deb66b88861c2c30ff9b

HTTP Headers

GET /css?family=Noto+Sans:400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://static.hugedomains.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 15:38:40 GMT
date: Fri, 26 May 2023 15:38:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.hugedomains.com/domain_profile.cfm?d=downloadmr.com

104.26.6.37

200 OK

7.0 kB

URL User Request GET HTTP/2
www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (7451), with no line terminators
Size
7.0 kB (7033 bytes)
Hash
eaa39583acfe49d9aee3fa009a2fc599
8ce849a1a578b9a5856b77490448ecbc26c86f9f
ae1f55753c50063b02574ab75058eb697b3282b89e51e8b1174e82749a24931e

HTTP Headers

GET /domain_profile.cfm?d=downloadmr.com HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: text/html; charset=utf-8
cache-control: private
vary: Accept-Encoding
set-cookie: site_version_phase=108; expires=Mon, 20-May-2024 15:38:40 GMT; path=/
site_version=HDv3; expires=Mon, 20-May-2024 15:38:40 GMT; path=/
captcha-tracker=; expires=Thu, 25-May-2023 15:38:40 GMT; path=/
x-powered-by: ASP.NET
lb: TclPrdLbHd1
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KCCGrF13zd%2BxfNZmu5jYuX54j%2Fx22P5fvLgjTfH%2Fw9c6UXqqyj9YksSuaQ2EnfPSmwvwnM059dev69jUIjiW5Qxy4Lxyi4LIfN9TLRK9y9eVEpG7Sot0xYG8oc%2FhfwBm3l%2Bq7cQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd71b41690e0b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.hugedomains.com/cdn-cgi/challenge-platform/h/b/cv/result/7cd71b41690e0b02

104.26.6.37

200 OK

2 B

URL POST HTTP/2
www.hugedomains.com/cdn-cgi/challenge-platform/h/b/cv/result/7cd71b41690e0b02
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/cv/result/7cd71b41690e0b02 HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12414
Origin: https://www.hugedomains.com
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Cookie: site_version_phase=108; site_version=HDv3
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:41 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=CwSR66b7rUt958Re_b1fWiG.4Ga.whnTb_.o.4eg1IA-1685115521-0-AV0lN438PXc64hfR44cSyDNO5wKfZRQvh3cilyn1LAhXg3vLaescFwDg6azyfBmx3urhHnI6P6Ytjj+3qlMrd7aEX4rZott6txzlGbxDr13k; path=/; expires=Fri, 26-May-23 16:08:41 GMT; domain=.hugedomains.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=754PgOLS93hjW0KML6tE%2FRmTKMSPuk03E55uFjpN%2BngMsoMRqOvdS61ydw53yPTeWez%2FR3kiynXx4SZQf76XAMng5omXUDUHcaa4y0p%2BXHb1lWGt3EXyDN2AkrFrjc6jiCELq9E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd71b48d9b90b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.hugedomains.com/cdn-cgi/challenge-platform/h/b/scripts/pica.js

104.26.6.37

200 OK

5.7 kB

URL GET HTTP/2
www.hugedomains.com/cdn-cgi/challenge-platform/h/b/scripts/pica.js
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (5680), with no line terminators
Size
5.7 kB (5677 bytes)
Hash
a4fcb1d019e5ab3e7a770775a023bae4
2953546341638ec8274abfdd714e5f0b565bd089
1ab54043dd008581074e54d5592bbe138de86ff4e79aac0a70a84f59eff80d20

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/pica.js HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Cookie: site_version_phase=108; site_version=HDv3
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:41 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
vary: accept-encoding
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WDVRzDRfHe0moO69SjAbtQLHJpoPbjQ9uPddev3HTYWtnZDWwdgq808Lhk6LHcuRspuBrB84NJTWBPaw28Y6myEC30vaQBAw7DhgiDt0UD%2BiWA%2B44xxPpvhib7PHvh8lWzOgSEI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd71b477f370b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.hugedomains.com/css/hdv3-css/reboot.min.css

104.26.6.37

200 OK

4.0 kB

URL GET HTTP/2
static.hugedomains.com/css/hdv3-css/reboot.min.css
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4010), with no line terminators
Size
4.0 kB (3976 bytes)
Hash
5febb6306adc5b46fdb38ea8016aa42c
04c478b0763e4890e21d63996b210aa40b7cfd6d
06ecf228d2388f2a0fe7f36c5c94edf9945f908d672312764113e30c087cbb15

HTTP Headers

GET /css/hdv3-css/reboot.min.css HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: text/css
last-modified: Tue, 15 Nov 2022 18:51:51 GMT
etag: W/"80fd745223f9d81:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1715
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MTM8sOuAgTMx%2FSeliNg3vN28Ceh%2FOHnId7o20q0uSAKiBOJtBivu2szcEg14C95LkyAj3Wb5i1rsFcjtuAY%2FZrD5gAXYrteCTvCku%2FkkG0YN3N4VW1BEvyRgFgHWPjxMIvZ5dGQeWVA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd71b445c280b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.hugedomains.com/js/hdv3-js/jquery.min.js

104.26.6.37

200 OK

87 kB

URL GET HTTP/2
static.hugedomains.com/js/hdv3-js/jquery.min.js
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (32058)
Size
87 kB (86659 bytes)
Hash
c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de

HTTP Headers

GET /js/hdv3-js/jquery.min.js HTTP/1.1
Host: static.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:40 GMT
content-type: application/javascript
last-modified: Mon, 20 Jul 2020 17:04:33 GMT
etag: W/"8026d0d6b75ed61:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 4666
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QAtcSjbnFunF%2FEhwSs8DzU%2B%2BQeeVs5FYIf5drTYVvLulvM745hJBH%2F8Wk08aKGkgcbcCR%2Fj9fhEMXvU8wzKwm7HbjMnLF6TgEeTFuocbrAJHVxkdBO4XhE85mkPrSa%2FCNvRMZBsAAlo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd71b445c260b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr

142.250.74.132

200 OK

52 kB

URL GET HTTP/3
www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint08:73:2C:18:30:14:52:C3:CA:3E:02:79:65:B4:FE:90:AC:3F:3E:33
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (43637)
Size
52 kB (52055 bytes)
Hash
53b94102fedd99b723ba28d9588152fe
b668a8716032367d29b42b4394d416293a81f68d
3a7fd85f5254574d60a4bced1d41ac4628ee6c9e71c0b0af73a5d839d86f51f8

HTTP Headers

GET /recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&size=normal&cb=livurz82vxwr HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.hugedomains.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 15:38:41 GMT
content-security-policy: script-src 'nonce-lywD-xF1BHRFlUGAKmKqKg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 28517
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.hugedomains.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/938e2b5c/invisible.js

104.26.6.37

200 OK

23 kB

URL GET HTTP/2
www.hugedomains.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/938e2b5c/invisible.js
IP
104.26.6.37:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.hugedomains.com/domain_profile.cfm?d=downloadmr.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintCA:C3:42:89:F7:39:82:C9:63:E5:4E:FE:DF:25:DD:7F:6D:83:A8:EF
ValidityMon, 17 Apr 2023 00:00:00 GMT - Tue, 16 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (22859), with no line terminators
Size
23 kB (22859 bytes)
Hash
a607bd6f65210e21d3231772aebc4e7e
2a4800a19a22f2ca8e4d7005ac860ca4c168ce00
85335171fbcbce5aafce1521da6fb7e58f5582f13cadeea86b695aace07f0436

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/938e2b5c/invisible.js HTTP/1.1
Host: www.hugedomains.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: site_version_phase=108; site_version=HDv3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 May 2023 15:38:41 GMT
content-type: application/javascript; charset=UTF-8
vary: accept-encoding
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KMPImdjROPG8PvhP6RbYA%2F4P9n52cx0xvL5SFrrv5vorZtoERIqMocJiXmd2I%2BZvowMvHsMmCPIeECcKOzmicx7wo5gPkVGIR1XY3%2Bu1TB52GqxxPPXH79y5WF%2Bs9YanXosTyNE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd71b473ef60b02-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL