200 OK 0 B IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET / HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Feb 2024 19:56:55 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 16 Feb 2024 20:56:55 GMT
Location: https://lightdl.xyz/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wKI5tfZ2v5f5TLkByGfRvwJTYQIa5nsINTf81Qv%2FfnqEvdJ%2BqwUgCJ%2F3geu1uDv%2BqvFXfPL3C%2FFbN8CaU2y1%2BI6wHfYwZ01YY0kwTy2mL7hbAMILOsD0ej8MhpcZxA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 85685b4d3ec10b3d-OSL
alt-svc: h2=":443"; ma=60
6.4 kB URL
lightdl.xyz/favicon.ico
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Resource Info
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3
First Seen 2024-02-16
Last Seen 2024-08-20
Times Seen 15
Size 6.4 kB (6387 bytes)
MD5 aa0364a89b47c92f9571d9e3016cdf92
SHA1 f60d18c198585d6e205ade5fea465644db660f75
SHA256 2791791e2cd8352380f6ec983480a524116b723fcf77f774802aa71202968d50
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /favicon.ico HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lightdl.xyz/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Fri, 16 Feb 2024 19:56:56 GMT
content-type: text/html; charset=UTF-8
location: https://lightdl.xyz/wp-content/uploads/2022/05/cropped-favicon-image.g-32x32.png
link: <https://lightdl.xyz/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
vary: User-Agent, Accept-Encoding
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=znay8oCjTxWs4qmp%2FEMU1RKc8fPPFEEMMvZ0Ro4KXHIePK7QqCuUGhOZauxFHZ7h%2FDRMkF4%2F7co9xpP9hSciWEEHHLdEU5LJKqHrzNgoyM2mjYaf%2Fb3UWfmKc2ReEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b4fae36b50f-OSL
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/uploads/2023/02/IMG-2020040.jpg
200 OK 58 kB URL
lightdl.xyz/wp-content/uploads/2023/02/IMG-2020040.jpg
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7], baseline, precision 8, 551x240, components 3
First Seen 2023-06-30
Last Seen 2025-04-26
Times Seen 11
Size 58 kB (58442 bytes)
MD5 721bb50eb92fedb7e6b73f01f218f6a2
SHA1 02049ddb44ca39076ddbbf3ebb7ed78ae93d83d6
SHA256 375807f0ce6c981bed6fe0abddffaac137deba79ead703aa9dcc2f209832fb65
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2023/02/IMG-2020040.jpg HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: image/jpeg
content-length: 58442
last-modified: Fri, 17 Feb 2023 15:28:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n7roGYIof6I2fj3vNxon2N467hGJ2ZELozLoRY1vmLPb9zSmieY94frYzu6TudIWs4hqnwUH%2BMxSg6XddZw%2FM75Q1q3bfTpKg5FAwnHR0ULnqK1hVUAcsIQnm7hnrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b7dff03b50f-OSL
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=317afd605f368082816f
200 OK 1.2 kB URL
lightdl.xyz/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=317afd605f368082816f
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (1610), with no line terminators
First Seen 2023-05-01
Last Seen 2025-07-22
Times Seen 166
Size 1.2 kB (1178 bytes)
MD5 85001da72d2adacd89f64191337692ca
SHA1 f4aabaaef3d271c4e6cbcfb974b3d3b403a32db0
SHA256 95d19d87f29a6ea4e274e3681e839eac392e30647f4d373841c3c9c30749b64b
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-videopress/build/block-editor/blocks/video/view.css?minify=false&ver=317afd605f368082816f HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/css
cf-bgj: minify
last-modified: Wed, 10 May 2023 02:20:39 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AEaG40UYOGyVVga1TvOUbdsgIdfp2BxIoJ1Jystn6xfUs5R%2B2b6LYZYkVJcL2BiIOOe%2BivL3TSiryPu2pre9NtmG0ZbMZcGJSUmeLSaaWuBCFFTUod9ReOzgnSDZig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7dded0b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET ruinjan.com/fa/0c/46/fa0c46a46b8bf033ac65bc5cabeebf34.js
200 OK 16 kB URL
ruinjan.com/fa/0c/46/fa0c46a46b8bf033ac65bc5cabeebf34.js
IP / ASN
172.240.108.84
#7979 SERVERS-COM
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (44074), with no line terminators
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 16 kB (15804 bytes)
MD5 e585df64891d22a25967bb8a7bde06b1
SHA1 29133328741ecfe92221bc59c740b05cf2c5e3f2
SHA256 5a05f0a3431af94ac51071bcf447de1fb8a008b7bcb3c27547901510434bc600
Certificate Info
Issuer Let's Encrypt
Subject ruinjan.com
Fingerprint 19:4C:55:2A:3C:1D:47:45:C8:E6:BD:68:73:88:F9:5F:BD:18:E3:BA
Validity Wed, 24 Jan 2024 16:44:55 GMT - Tue, 23 Apr 2024 16:44:54 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /fa/0c/46/fa0c46a46b8bf033ac65bc5cabeebf34.js HTTP/1.1
Host: ruinjan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1f663ced145fa395ef7a909a1f54646b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET ruinjan.com/28/5d/f7/285df780ad9f1ead33467ba105295e80.js
200 OK 31 kB URL
ruinjan.com/28/5d/f7/285df780ad9f1ead33467ba105295e80.js
IP / ASN
172.240.108.84
#7979 SERVERS-COM
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 31 kB (31385 bytes)
MD5 f1361a4fb0d119dbb16764567fef2374
SHA1 0bcbe15441321a5e32dee7cab2d6372c48b7cae5
SHA256 8711249e06b68614e659d886686121b4113992fa3d368dfa79cbeea17031aa2d
Certificate Info
Issuer Let's Encrypt
Subject ruinjan.com
Fingerprint 19:4C:55:2A:3C:1D:47:45:C8:E6:BD:68:73:88:F9:5F:BD:18:E3:BA
Validity Wed, 24 Jan 2024 16:44:55 GMT - Tue, 23 Apr 2024 16:44:54 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /28/5d/f7/285df780ad9f1ead33467ba105295e80.js HTTP/1.1
Host: ruinjan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:03 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-3127_layer=1; expires=Tue, 20 Feb 2024 19:57:03 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 35219ac923da2aed80a6ae8249e047d4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
200 OK 114 kB IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Resource Info
File type HTML document, ASCII text, with very long lines (9539), with CRLF, LF line terminators
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 114 kB (114310 bytes)
MD5 eb0765897e12dac218c83a37aa5d5682
SHA1 1a785018465cd41d5906a4c08070fb6520dc015e
SHA256 ae3248d330a444ed89772f26fc55432166b89957e075f12267a08c8e87a54707
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
POST / HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lightdl.xyz/?__cf_chl_tk=1A44OrwEkxLvRB2zxVX99yfGbt2fE0dF4pSnwB0UZd0-1708113415-0.0-3410
Content-Type: application/x-www-form-urlencoded
Content-Length: 5921
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:02 GMT
content-type: text/html; charset=UTF-8
set-cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=; path=/; expires=Sat, 15-Feb-25 19:57:01 GMT; domain=.lightdl.xyz; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding, Accept-Encoding,User-Agent
link: <https://lightdl.xyz/wp-json/>; rel="https://api.w.org/", <https://lightdl.xyz/wp-json/wp/v2/pages/9785>; rel="alternate"; type="application/json", <https://lightdl.xyz/>; rel=shortlink
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iCInXpBvXjBlJLmu4IIUe63HdhbMxte6MxRSMj31gYEKNT5g1TgqYZuqx6styNiGq9IRJtgT%2B2NA3BWFkVwhknedj6Lrp5tO64FY7KV6rhSjNYxQSLGz5a%2Bau91oXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b736857b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET proftrafficcounter.com/stats
200 OK 40 B URL
proftrafficcounter.com/stats
IP / ASN
3.79.157.91
#16509 AMAZON-02
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with no line terminators
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 40 B (40 bytes)
MD5 74ad688c786d57b75a10d2c49994c096
SHA1 0deece9df29a14843fad12df7dc0ed2204eb6adb
SHA256 5d88551bda5733c51c15dc18ddaeff546f22188a771edb83ef1e086bb897b252
Certificate Info
Issuer Amazon
Subject proftrafficcounter.com
Fingerprint E3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
Validity Tue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://lightdl.xyz
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=5578a17e-5602-4fed-8f61-a3565077b3a9:1:1; expires=Mon, 13 Feb 2034 19:57:04 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=963059d7cceb10dc9b9adeec7fadb27d
200 OK 29 kB URL
lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=963059d7cceb10dc9b9adeec7fadb27d
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (65536), with no line terminators
First Seen 2024-02-11
Last Seen 2024-08-20
Times Seen 8
Size 29 kB (29257 bytes)
MD5 dc8bc3bce61abcdbb417cc72fc0124ad
SHA1 c9a823d4e2c32e78b61a9cfa6f07d4ea9f09d7c9
SHA256 112fa8df8bf2ca6431122822caf7499cba8f69d84f01e115af4bd93eb4959289
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=963059d7cceb10dc9b9adeec7fadb27d HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=170553
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IH%2BLtN%2FQ1o8BUhOdEg2B451vgHFP6XCCf%2F5Cf6%2BlwDkZ04GC71vH1rNA%2FZxMaFc6cy7sFIbLj6Qg3Zq12WWKKRWguSk6hkJcghDK3MXBejekUygu3l%2BshuTGvaWDfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7deee7b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET proftrafficcounter.com/stats
200 OK 40 B URL
proftrafficcounter.com/stats
IP / ASN
3.79.157.91
#16509 AMAZON-02
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with no line terminators
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 40 B (40 bytes)
MD5 fbf375557ff86a79a89b01d88dd416dd
SHA1 c88ddbc05f9b14a444c01fb349694d5908a6bb66
SHA256 7a989d68beb3a40bb1b05c20f99a60ab3b8512d14312ae35e622d090d30a8c26
Certificate Info
Issuer Amazon
Subject proftrafficcounter.com
Fingerprint E3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
Validity Tue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://lightdl.xyz
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=87fea89a-52e2-45b5-a3fa-b91589dc504a:3:1; expires=Mon, 13 Feb 2034 19:57:04 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.4.3
200 OK 17 kB URL
lightdl.xyz/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.4.3
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (4186), with no line terminators
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 24459
Size 17 kB (16839 bytes)
MD5 ea958276b7de454bd3c2873f0dc47e5f
SHA1 b143f6e8e8f79d8f104c26b0057ef5514d763219
SHA256 2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.4.3 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding,User-Agent
last-modified: Sat, 08 Jun 2019 02:15:02 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KnhM79KQ3kVe9d84KVeM9OpnmXnuW3ZA2PSsf4qxQCy67TFzBmBIPX4jciWSlXDZoMJtx5wU3yU7AaFZkKeBnI7wJ6iIJ9%2B8UC6uEaouIt88fQTOL4Oo0lDWCLPbtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7deedcb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdSocialSharing.js?ver=12.6.4
200 OK 49 kB URL
lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdSocialSharing.js?ver=12.6.4
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (2626), with no line terminators
First Seen 2023-09-22
Last Seen 2025-07-14
Times Seen 623
Size 49 kB (49132 bytes)
MD5 578ce2c28d5216fe1b1925c6b5b131d3
SHA1 033e7489b7c5cfcf7c70029873bf93eff553771b
SHA256 ca8ab1a0ac9c26942bdc4e0ecc6813dde09c8fcf4a026e646c9e298ac14df58f
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tdSocialSharing.js?ver=12.6.4 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=2632
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C5uyObe3YL8x3Dx1EhmhdcXGSb7fpIQvme65hQBmkTwVYzvqYx9cd6va0apEcKnegW%2FHuLwGYLmcVty%2B%2B4%2F0YB7Co6w%2FlBULTHD8v3Dlx0d0C775pMfOLfWPyK8HDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ee813b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET fonts.googleapis.com/css?family=Open+Sans%3A400%2C600%2C700%2C300%7CRoboto%3A400%2C500%2C700%2C300&display=swap&ver=12.6.4
200 OK 18 kB URL
fonts.googleapis.com/css?family=Open+Sans%3A400%2C600%2C700%2C300%7CRoboto%3A400%2C500%2C700%2C300&display=swap&ver=12.6.4
IP / ASN
142.250.74.106
#15169 GOOGLE
Requested by https://lightdl.xyz/
Resource Info
File type gzip compressed data, max compression
First Seen 2024-02-16
Last Seen 2024-08-20
Times Seen 3
Size 18 kB (17910 bytes)
MD5 ae066020189fa395c8e54ebc90a1c84b
SHA1 e6a9a9fe5a00c24b62fb5efcbfead3bfcb4a63ce
SHA256 fdb688b4fcbfcaaaa896150144ae31405fcf3f8d2099446f157eadb174d138df
Certificate Info
Issuer Google Trust Services LLC
Subject upload.video.google.com
Fingerprint 06:40:93:2C:C7:11:8F:E2:38:AB:FF:48:FC:7A:C5:3C:C3:FF:99:0A
Validity Mon, 29 Jan 2024 08:19:51 GMT - Mon, 22 Apr 2024 08:19:50 GMT
GET /css?family=Open+Sans%3A400%2C600%2C700%2C300%7CRoboto%3A400%2C500%2C700%2C300&display=swap&ver=12.6.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Feb 2024 19:57:03 GMT
date: Fri, 16 Feb 2024 19:57:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=f37a0b116c45d11f14bca079946a1778
200 OK 69 kB URL
lightdl.xyz/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=f37a0b116c45d11f14bca079946a1778
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (65536), with no line terminators
First Seen 2024-02-11
Last Seen 2024-08-20
Times Seen 18
Size 69 kB (69131 bytes)
MD5 3ee4848cda414108efbd9acc86722ec7
SHA1 634acdfaa4447e39946d58a744a3ee6e74463f99
SHA256 ceb8ae059b8e2d487faaebe8d2b68467f9a46173c2628c99fda39b7333432d27
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=f37a0b116c45d11f14bca079946a1778 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=734325
last-modified: Sat, 10 Feb 2024 14:16:52 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PCbTddxVHgVSCZndv86f0zSE9J%2BU2GWjZh%2BabdovbIbbc8O8hfsgMJ5OLpV9bfWly6wrPp7nsVl8ehpTbqgZQjG0IOKDWX4CgqtKynLHjvKBXp%2F3zX7%2BP7crThgAMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7deeecb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP / ASN
142.250.74.67
#15169 GOOGLE
Requested by https://lightdl.xyz/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
First Seen 2023-12-14
Last Seen 2025-08-02
Times Seen 89269
Size 48 kB (48236 bytes)
MD5 015c126a3520c9a8f6a27979d0266e96
SHA1 2acf956561d44434a6d84204670cf849d3215d5f
SHA256 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
Certificate Info
Issuer Google Trust Services LLC
Subject *.gstatic.com
Fingerprint F1:41:DD:4F:A6:9F:7B:AE:AE:AF:78:BD:08:F8:C8:40:3C:C4:8C:93
Validity Mon, 29 Jan 2024 08:19:40 GMT - Mon, 22 Apr 2024 08:19:39 GMT
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:47:26 GMT
expires: Fri, 14 Feb 2025 03:47:26 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
age: 144578
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/uploads/2023/02/footer_bg.jpg
200 OK 108 kB URL
lightdl.xyz/wp-content/uploads/2023/02/footer_bg.jpg
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JPEG image data, progressive, precision 8, 1200x531, components 3
First Seen 2023-04-09
Last Seen 2025-07-15
Times Seen 92
Size 108 kB (107649 bytes)
MD5 bee581b44ea2faa7487a483de388b3ce
SHA1 745fb06dedd6079d855e8ed9f116ddd7c49cd597
SHA256 eeced1d8cb05e0490197eca352ff09680161f09b254df3fca1acb8e98593a275
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2023/02/footer_bg.jpg HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: image/jpeg
content-length: 107649
last-modified: Fri, 17 Feb 2023 12:55:30 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5323
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JtC6l56BXzJapr9SSCDQ2%2BqJfA1taUygEKNy7b816mqG0T94bYc7qdUShhEQbz04pbHsvNomKPLfs94IsWT1NLRQrTq5A60T3mU%2FTBmxTxq4XnAyCgQIDm6G3dp57w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b861981b50f-OSL
alt-svc: h3=":443"; ma=86400
GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP / ASN
142.250.74.67
#15169 GOOGLE
Requested by https://lightdl.xyz/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
First Seen 2023-12-14
Last Seen 2025-08-02
Times Seen 89269
Size 48 kB (48236 bytes)
MD5 015c126a3520c9a8f6a27979d0266e96
SHA1 2acf956561d44434a6d84204670cf849d3215d5f
SHA256 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
Certificate Info
Issuer Google Trust Services LLC
Subject *.gstatic.com
Fingerprint F1:41:DD:4F:A6:9F:7B:AE:AE:AF:78:BD:08:F8:C8:40:3C:C4:8C:93
Validity Mon, 29 Jan 2024 08:19:40 GMT - Mon, 22 Apr 2024 08:19:39 GMT
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:47:26 GMT
expires: Fri, 14 Feb 2025 03:47:26 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
age: 144578
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 24 kB URL
lightdl.xyz/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (13479)
First Seen 2023-05-09
Last Seen 2025-08-02
Times Seen 159565
Size 24 kB (23833 bytes)
MD5 9ffeb32e2d9efbf8f70caabded242267
SHA1 3ad0c10e501ac2a9bfa18f9cd7e700219b378738
SHA256 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
vary: Accept-Encoding, Accept-Encoding,User-Agent
last-modified: Wed, 27 Dec 2023 04:46:26 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fw0q%2FoIL2V6kkjfoxtXueZj%2Fm%2FIMwwYZUQAh4Tl8CHPFSv6tr%2BwgWxLVMHFoX10yVi8mGgG7%2FYgnhgwp32i3Oq6C0MeNgjB6%2BGhYwbJXLjPvwBuqLHjYVDDNcL0%2BnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7dff01b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
42 kB URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/flow/ov1/104251139:1708111455:xJKbdy6coPbXkAptoU2Bo3JvqsXiU1pFp7OR7MNuKLk/85685b5118500b02/e4f880ef715bb70
IP / ASN
104.17.2.184
#13335 CLOUDFLARENET
Resource Info
File type ASCII text, with very long lines (19080), with no line terminators
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 42 kB (41538 bytes)
MD5 b89f63b3a4da79272a419f485370800f
SHA1 815e3b208e4beb42dde37f12f359971afdf325f6
SHA256 6fbb8da6c08c50a806ee4b05f49a42285af3b47d0504836e6f1240d2ef2312e4
POST /cdn-cgi/challenge-platform/h/g/flow/ov1/104251139:1708111455:xJKbdy6coPbXkAptoU2Bo3JvqsXiU1pFp7OR7MNuKLk/85685b5118500b02/e4f880ef715bb70 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tkq9j/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
Content-type: application/x-www-form-urlencoded
CF-Challenge: e4f880ef715bb70
Content-Length: 25750
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:56:58 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: XA/nnamCjdCCLrFqODu+gOzWLMFOvBlM46XUxHQnEZjQUvxY/CUBRJFtD5sFKCSn$hmb1erd7gZLb+8nUQTHRFg==
server: cloudflare
cf-ray: 85685b5e9c3d0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET frameworkjaw.com/pixel/purst?dl=0&th=0&sc=0&rs=2520&rd=2520&fd=861&bv=24.2.6564&tmpl=70
200 OK 0 B URL
frameworkjaw.com/pixel/purst?dl=0&th=0&sc=0&rs=2520&rd=2520&fd=861&bv=24.2.6564&tmpl=70
IP / ASN
192.243.59.13
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject frameworkjaw.com
Fingerprint 85:28:B8:C7:B5:F9:87:0B:10:62:4D:B7:16:9C:B2:0D:F3:A7:DD:F6
Validity Fri, 16 Feb 2024 08:05:32 GMT - Thu, 16 May 2024 08:05:31 GMT
GET /pixel/purst?dl=0&th=0&sc=0&rs=2520&rd=2520&fd=861&bv=24.2.6564&tmpl=70 HTTP/1.1
Host: frameworkjaw.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Feb 2024 19:57:04 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET friendshipmale.com/sfp.js
200 OK 37 kB URL
friendshipmale.com/sfp.js
IP / ASN
172.64.99.2
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
First Seen 2023-11-23
Last Seen 2024-08-20
Times Seen 6307
Size 37 kB (36756 bytes)
MD5 924e967bca1d599992556a8d139b1c5a
SHA1 222b09dbf164ddc03d39100fd0524a22018d28b2
SHA256 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
Certificate Info
Issuer Cloudflare, Inc.
Subject friendshipmale.com
Fingerprint 77:97:02:FC:C8:FC:DE:5B:AC:45:9E:A1:D2:B1:B7:9C:1B:F8:23:92
Validity Thu, 18 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: bbe13e759875e5f675db00d095477471
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 16 Feb 2024 19:57:03 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C46QyDDHYYyye1TsUvbwZhwof0C7ddTJUyVvvkp8O%2BOZ1VP2Cz6v0H93Z1VTHsxhkkq2JZIQW0oETSOqNoGvwX7ijtwuUxIqooQhxIlMWS%2FTds0lx2RwAQAbAS1e5oopMy5aoIQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b846f724057-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/uploads/2022/05/cropped-favicon-image.g-192x192.png
200 OK 14 kB URL
lightdl.xyz/wp-content/uploads/2022/05/cropped-favicon-image.g-192x192.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
First Seen 2023-06-30
Last Seen 2024-08-20
Times Seen 6
Size 14 kB (14209 bytes)
MD5 686454b248423727879ceb19535eb281
SHA1 19d1a7a223769140a9df8fcde8ceef21458aa52a
SHA256 20bd560b1a38082fe8b634bf5070426184c9701f5d40cd6d806b17396a91af62
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2022/05/cropped-favicon-image.g-192x192.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: image/png
content-length: 14209
last-modified: Wed, 11 May 2022 17:26:55 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5322
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lQoG0u7ymBoOaCnuHLKCaTjqR2dB0%2Fmo%2FgwsfFJgbUwpAVtHmGO4c8SJWSpFPk0fn39W%2B2NR1159GiLelQO76cKn16CYV9uo2BZQ6DL6igKHOVDgXy4UPxAVk%2BxCgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b88accab50f-OSL
alt-svc: h3=":443"; ma=86400
12 kB URL
challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/i/85685b5118500b02/1708113416189/nRrfZExJgXGFjRo
IP / ASN
104.17.2.184
#13335 CLOUDFLARENET
Resource Info
File type PNG image data, 100 x 47, 8-bit/color RGB, non-interlaced
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 12 kB (12485 bytes)
MD5 cd4acc2f17a9a4d18ca69ccaf3779344
SHA1 e01301122ae42aa28aa4bd4ac7c115e37a3985e7
SHA256 8af63a0ec20917f719c99d5474cf8ed6b6545113cf6091bd2e309e6e3ad7a95a
GET /cdn-cgi/challenge-platform/h/g/i/85685b5118500b02/1708113416189/nRrfZExJgXGFjRo HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/if/ov2/av0/rcv0/0/tkq9j/0x4AAAAAAADnPIDROrmt1Wwj/light/normal
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:56:57 GMT
content-type: image/png
server: cloudflare
cf-ray: 85685b5b69130b02-OSL
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-composer/td-multi-purpose/images/icons/multipurpose.woff?2
200 OK 1.8 kB URL
lightdl.xyz/wp-content/plugins/td-composer/td-multi-purpose/images/icons/multipurpose.woff?2
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type Web Open Font Format, TrueType, length 1840, version 1.0
First Seen 2023-05-17
Last Seen 2025-06-24
Times Seen 131
Size 1.8 kB (1840 bytes)
MD5 0563ba43efbc4ed34087e1246859253f
SHA1 082eb9aa97de4c3aac864b70aafc6f7e3221b410
SHA256 87294a383cc19662de55e0537e93366873a7d98caf414b50636cfd6bfcf1a46a
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/td-multi-purpose/images/icons/multipurpose.woff?2 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=963059d7cceb10dc9b9adeec7fadb27d
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:05 GMT
content-type: font/woff
content-length: 1840
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y0ItSMrXbwdDvorAoBhZwvv%2BtQq%2BPYjZWbrjNsZ2fWvb1%2FF6FO0p6SUTRYlLSTnqMPdRWSocNqFaUlJQjzfzdzmgYWCnXzneC8uaClTwvNMCQJu6OzFoJ0bHoGsXug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b86ca83b50f-OSL
alt-svc: h3=":443"; ma=86400
GET capaciousdrewreligion.com/advertisers.js
200 OK 0 B URL
capaciousdrewreligion.com/advertisers.js
IP / ASN
192.243.61.225
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject capaciousdrewreligion.com
Fingerprint 61:0D:30:24:10:C8:EC:35:B9:F2:10:DA:14:D3:F3:AB:2E:F5:FA:E8
Validity Sat, 06 Jan 2024 10:55:16 GMT - Fri, 05 Apr 2024 10:55:15 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /advertisers.js HTTP/1.1
Host: capaciousdrewreligion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:05 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c1b132d98c720ffd30ab4d388a7672f5
Strict-Transport-Security: max-age=0; includeSubdomains
GET lyricalattorneyexplorer.com/sbar.json?key=fa0c46a46b8bf033ac65bc5cabeebf34
200 OK 7.9 kB URL
lyricalattorneyexplorer.com/sbar.json?key=fa0c46a46b8bf033ac65bc5cabeebf34
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type JSON text data
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 7.9 kB (7932 bytes)
MD5 28f8b36d7a4b20e288c38ff506cee5da
SHA1 90d18d91a371b5145b81bb9934b058d79d8fbfd0
SHA256 87e07d3f42ced9f7eafc49099a81d66446ef6a2c66950327a366a547e6ba2ac0
Certificate Info
Issuer Let's Encrypt
Subject lyricalattorneyexplorer.com
Fingerprint AB:A2:07:4A:5A:3E:42:79:4B:FD:74:B4:7F:D3:92:2F:41:D8:54:18
Validity Fri, 16 Feb 2024 07:47:29 GMT - Thu, 16 May 2024 07:47:28 GMT
GET /sbar.json?key=fa0c46a46b8bf033ac65bc5cabeebf34 HTTP/1.1
Host: lyricalattorneyexplorer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:05 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://lightdl.xyz
Access-Control-Allow-Origin: https://lightdl.xyz
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16744733; expires=Sat, 17 Feb 2024 19:57:05 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 17 Feb 2024 19:57:05 GMT; secure; SameSite=None
uncs=1; expires=Sat, 17 Feb 2024 19:57:05 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 17 Feb 2024 19:57:05 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 17 Feb 2024 19:57:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ef71f7e63966251171ee22957526f72f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
GET c.adsco.re/
33 kB IP / ASN
104.17.167.186
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (689)
First Seen 2024-02-14
Last Seen 2024-08-20
Times Seen 1206
Size 33 kB (32634 bytes)
MD5 a0b475c65fed312aba8d7c43a0cbc928
SHA1 3fdd052b41c37318e44084be4f92d42fba4ded61
SHA256 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
Certificate Info
Issuer Sectigo Limited
Subject *.adsco.re
Fingerprint 40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
Validity Sat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 18 Mar 2024 19:57:04 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 183793
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b89fb34569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET lyricalattorneyexplorer.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSz2skRRTHq7PxoiCs7MllYY4ryKR7ZtIzcQ%2BLa4wE42bdXdGb1K%2BelKnuaqq6pydzii7IHgf%2Fgp7vJBvURTY3EQzSWfAQUHY85WAu%2FgcKizdlxsHRB93vvfq%2Bgs979T4f5RckQE7P198zA6U1XVmt%2B7XrHwXBjdqWSvJ%2Brd8JPw5bN2q298ZaWPdfq70j%2Ba5ZafiB7wd%2BUNtQVkamvzIVodLHa0F9za%2B3GvVgtYW%2B%2FX%2Fucg%2BOehC9C%2FIKlJgsP%2FWuQPEKSfxkXbrdzKSvvx3nmmbGoieOPkh2E1MkiBdhZD1EydG8GsY92ziBSQ5nuDC9fwuZmhDvxxOw5GgOCdY7mHEyDZmAiZdQ9CpIXUHRCtw8gBLPCMAFbm8jiR%2FdNrage%2F%2BodKpOyPLzP6CKCVn%2B9QqS%2BJtbWvVr94zOM2USh35UQvUrqG6FND9FNvCgilPw7DMo8RNZeb6FJD7YdtpAiXLWu1IVVFRByyGo85BPP%2BUhjzzkqYdYnNd4EARtX3Dqd9Y4b4q2ZKHwA9qOAhr4YQc5n%2BINkaVDcD0Et%2FtI7T521RA2%2FwFup4QTHlw2Id77%2B%2BiJEoUkKBxBQQkKRVBkBEWvPBTaNVz5SGiXs2DuG3PfLMcm647oocm6MiGgdjhKL8jl2Wz%2B%2BvQaduV5LaI%2Bb4W0FbIOi%2Fxmk%2FJwlfFVTpmULGq24FQJ5ZZm7Q7UhLz6okGqJuSFP78Fo6dw%2BhRceaD5NdBi3G74oDvjVsfHIDnWqruTCVMk2lBR7%2B8NIEyJNFtGtueN9AW5OoPZ3H4Cyc9u%2FtacGbgtkdoSn6inBF39cHzXFOTgrikcOd5OMxWrAZ0%2B4r2MZvLSV%2B%2FKvcJYsbnuhl%2B%2ByafCNHx8X7psiyZCJV1Hvr6lhJB2w1guyfeb7kPJ7uRu51ZukzzduvPWxmacWumcMkkFOt3H3y24mpCXr96f7ef177ahbAWbl4jzMzI3KFOBp%2Ftw6YLfGQKrFzUs9VDk5dg22OJQKwItFzllJdx%2FcraIx5ZOb1NVjtxDdO0SaPYASVyiZ0v0dAmqh3D5pXGW2rObv8wxmF4aM22XDpi2%2BovZmKe%2FYzh1Xms3mz4N11aDdpvKNms1OlEYCEobrbARhrSJzE3kzyeX%2FwYAAP%2F%2FAQAA%2F%2F82kXUUeQQAAA%3D%3D
200 OK 7 B URL
lyricalattorneyexplorer.com/ren.gif?sid=H4sIAAAAAAAC%2F1SSz2skRRTHq7PxoiCs7MllYY4ryKR7ZtIzcQ%2BLa4wE42bdXdGb1K%2BelKnuaqq6pydzii7IHgf%2Fgp7vJBvURTY3EQzSWfAQUHY85WAu%2FgcKizdlxsHRB93vvfq%2Bgs979T4f5RckQE7P198zA6U1XVmt%2B7XrHwXBjdqWSvJ%2Brd8JPw5bN2q298ZaWPdfq70j%2Ba5ZafiB7wd%2BUNtQVkamvzIVodLHa0F9za%2B3GvVgtYW%2B%2FX%2Fucg%2BOehC9C%2FIKlJgsP%2FWuQPEKSfxkXbrdzKSvvx3nmmbGoieOPkh2E1MkiBdhZD1EydG8GsY92ziBSQ5nuDC9fwuZmhDvxxOw5GgOCdY7mHEyDZmAiZdQ9CpIXUHRCtw8gBLPCMAFbm8jiR%2FdNrage%2F%2BodKpOyPLzP6CKCVn%2B9QqS%2BJtbWvVr94zOM2USh35UQvUrqG6FND9FNvCgilPw7DMo8RNZeb6FJD7YdtpAiXLWu1IVVFRByyGo85BPP%2BUhjzzkqYdYnNd4EARtX3Dqd9Y4b4q2ZKHwA9qOAhr4YQc5n%2BINkaVDcD0Et%2FtI7T521RA2%2FwFup4QTHlw2Id77%2B%2BiJEoUkKBxBQQkKRVBkBEWvPBTaNVz5SGiXs2DuG3PfLMcm647oocm6MiGgdjhKL8jl2Wz%2B%2BvQaduV5LaI%2Bb4W0FbIOi%2Fxmk%2FJwlfFVTpmULGq24FQJ5ZZm7Q7UhLz6okGqJuSFP78Fo6dw%2BhRceaD5NdBi3G74oDvjVsfHIDnWqruTCVMk2lBR7%2B8NIEyJNFtGtueN9AW5OoPZ3H4Cyc9u%2FtacGbgtkdoSn6inBF39cHzXFOTgrikcOd5OMxWrAZ0%2B4r2MZvLSV%2B%2FKvcJYsbnuhl%2B%2ByafCNHx8X7psiyZCJV1Hvr6lhJB2w1guyfeb7kPJ7uRu51ZukzzduvPWxmacWumcMkkFOt3H3y24mpCXr96f7ef177ahbAWbl4jzMzI3KFOBp%2Ftw6YLfGQKrFzUs9VDk5dg22OJQKwItFzllJdx%2FcraIx5ZOb1NVjtxDdO0SaPYASVyiZ0v0dAmqh3D5pXGW2rObv8wxmF4aM22XDpi2%2BovZmKe%2FYzh1Xms3mz4N11aDdpvKNms1OlEYCEobrbARhrSJzE3kzyeX%2FwYAAP%2F%2FAQAA%2F%2F82kXUUeQQAAA%3D%3D
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with no line terminators
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 19107
Size 7 B (7 bytes)
MD5 132d6af1b46048b45cf86cdee7991d31
SHA1 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
SHA256 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Certificate Info
Issuer Let's Encrypt
Subject lyricalattorneyexplorer.com
Fingerprint AB:A2:07:4A:5A:3E:42:79:4B:FD:74:B4:7F:D3:92:2F:41:D8:54:18
Validity Fri, 16 Feb 2024 07:47:29 GMT - Thu, 16 May 2024 07:47:28 GMT
GET /ren.gif?sid=H4sIAAAAAAAC%2F1SSz2skRRTHq7PxoiCs7MllYY4ryKR7ZtIzcQ%2BLa4wE42bdXdGb1K%2BelKnuaqq6pydzii7IHgf%2Fgp7vJBvURTY3EQzSWfAQUHY85WAu%2FgcKizdlxsHRB93vvfq%2Bgs979T4f5RckQE7P198zA6U1XVmt%2B7XrHwXBjdqWSvJ%2Brd8JPw5bN2q298ZaWPdfq70j%2Ba5ZafiB7wd%2BUNtQVkamvzIVodLHa0F9za%2B3GvVgtYW%2B%2FX%2Fucg%2BOehC9C%2FIKlJgsP%2FWuQPEKSfxkXbrdzKSvvx3nmmbGoieOPkh2E1MkiBdhZD1EydG8GsY92ziBSQ5nuDC9fwuZmhDvxxOw5GgOCdY7mHEyDZmAiZdQ9CpIXUHRCtw8gBLPCMAFbm8jiR%2FdNrage%2F%2BodKpOyPLzP6CKCVn%2B9QqS%2BJtbWvVr94zOM2USh35UQvUrqG6FND9FNvCgilPw7DMo8RNZeb6FJD7YdtpAiXLWu1IVVFRByyGo85BPP%2BUhjzzkqYdYnNd4EARtX3Dqd9Y4b4q2ZKHwA9qOAhr4YQc5n%2BINkaVDcD0Et%2FtI7T521RA2%2FwFup4QTHlw2Id77%2B%2BiJEoUkKBxBQQkKRVBkBEWvPBTaNVz5SGiXs2DuG3PfLMcm647oocm6MiGgdjhKL8jl2Wz%2B%2BvQaduV5LaI%2Bb4W0FbIOi%2Fxmk%2FJwlfFVTpmULGq24FQJ5ZZm7Q7UhLz6okGqJuSFP78Fo6dw%2BhRceaD5NdBi3G74oDvjVsfHIDnWqruTCVMk2lBR7%2B8NIEyJNFtGtueN9AW5OoPZ3H4Cyc9u%2FtacGbgtkdoSn6inBF39cHzXFOTgrikcOd5OMxWrAZ0%2B4r2MZvLSV%2B%2FKvcJYsbnuhl%2B%2ByafCNHx8X7psiyZCJV1Hvr6lhJB2w1guyfeb7kPJ7uRu51ZukzzduvPWxmacWumcMkkFOt3H3y24mpCXr96f7ef177ahbAWbl4jzMzI3KFOBp%2Ftw6YLfGQKrFzUs9VDk5dg22OJQKwItFzllJdx%2FcraIx5ZOb1NVjtxDdO0SaPYASVyiZ0v0dAmqh3D5pXGW2rObv8wxmF4aM22XDpi2%2BovZmKe%2FYzh1Xms3mz4N11aDdpvKNms1OlEYCEobrbARhrSJzE3kzyeX%2FwYAAP%2F%2FAQAA%2F%2F82kXUUeQQAAA%3D%3D HTTP/1.1
Host: lyricalattorneyexplorer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: u_pl=16744733; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:05 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 496ba527803c49dd84f2b9073c231908
Strict-Transport-Security: max-age=0; includeSubdomains
GET 6.adsco.re/
200 OK 0 B IP / ASN
104.17.167.186
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.adsco.re
Fingerprint 40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
Validity Sat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:05 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://lightdl.xyz
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b8fbc6956c1-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET 6.adsco.re:2087/
200 OK 0 B IP / ASN
104.17.167.186
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.adsco.re
Fingerprint 40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
Validity Sat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
GET / HTTP/1.1
Host: 6.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:05 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://lightdl.xyz
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b8fb96456c6-OSL
alt-svc: h3=":2087"; ma=86400
X-Firefox-Spdy: h2
13 kB URL
challenges.cloudflare.com/turnstile/v0/g/16c3caa4cd49/api.js?onload=rxTkym1&render=explicit
IP / ASN
104.17.2.184
#13335 CLOUDFLARENET
Resource Info
File type JavaScript source, ASCII text, with very long lines (38995)
First Seen 2024-02-14
Last Seen 2024-08-20
Times Seen 2875
Size 13 kB (13178 bytes)
MD5 b3a292b061d5798d8137443e2403c1b7
SHA1 fa53d20134ae387d08d1d35340537d2044ea2509
SHA256 88d2c2da48ce40325f19c9aa5d3776ae6751e2dc3cd8db961bf6c06cb55382f1
GET /turnstile/v0/g/16c3caa4cd49/api.js?onload=rxTkym1&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:56:55 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: max-age=31536000
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b4fcc82b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET 4.adsco.re/
200 OK 62 B IP / ASN
162.252.214.5
#53334 TUT-AS
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with no line terminators
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 15334
Size 62 B (62 bytes)
MD5 5b41cb22f84f645a103acc7bfbf084ff
SHA1 bac3967b26d5ec4a0d09a580714e8219796816bd
SHA256 709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
Certificate Info
Issuer Sectigo Limited
Subject *.adsco.re
Fingerprint 40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
Validity Sat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Feb 2024 19:57:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://lightdl.xyz
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
POST 5njeqmhle8l2.l4.adsco.re/
200 OK 0 B URL
5njeqmhle8l2.l4.adsco.re/
IP / ASN
185.200.118.51
#9009 M247 Europe SRL
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject *.l4.adsco.re
Fingerprint 8F:22:DA:E8:0A:F6:AC:93:E2:91:DC:65:F8:A9:EB:74:F5:6E:9F:D4
Validity Fri, 19 Jan 2024 09:12:32 GMT - Thu, 18 Apr 2024 09:12:31 GMT
POST / HTTP/1.1
Host: 5njeqmhle8l2.l4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:05 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
GET 6.adsco.re/
200 OK 0 B IP / ASN
104.17.167.186
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Sectigo Limited
Subject *.adsco.re
Fingerprint 40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
Validity Sat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b90ca511c0a-OSL
alt-svc: h3=":443"; ma=86400
GET lyricalattorneyexplorer.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=197
200 OK 0 B URL
lyricalattorneyexplorer.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=197
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject lyricalattorneyexplorer.com
Fingerprint AB:A2:07:4A:5A:3E:42:79:4B:FD:74:B4:7F:D3:92:2F:41:D8:54:18
Validity Fri, 16 Feb 2024 07:47:29 GMT - Thu, 16 May 2024 07:47:28 GMT
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F2f%2F33%2F17%2F2f3317da28d2a6ed09610d2d267aa136%2F1648542458.html&l=2977&fd=197 HTTP/1.1
Host: lyricalattorneyexplorer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: u_pl=16744733; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:06 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html
200 OK 904 kB URL
cdn.barscreative1.com/sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html
IP / ASN
45.133.44.4
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type gzip compressed data, from Unix
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 904 kB (904312 bytes)
MD5 68665cd200f8e0d5d428ec397073e5c3
SHA1 4387ff8961903d26f93a2101c7fe75b912e32662
SHA256 59aca5bd5c5c7c3d9b5fcd4206550d8a6accfa230aa3c68bc1be336b4f4e5d39
Certificate Info
Issuer Let's Encrypt
Subject cdn.barscreative1.com
Fingerprint 0F:4E:8E:BE:C9:40:4B:09:BB:C5:73:C2:49:28:4D:F3:D4:95:2F:A3
Validity Wed, 10 Jan 2024 03:01:07 GMT - Tue, 09 Apr 2024 03:01:06 GMT
GET /sb/au/2f/33/17/2f3317da28d2a6ed09610d2d267aa136/1648542458.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:05 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Tue, 29 Mar 2022 08:27:42 GMT
etag: W/"6242c2fe-ba1"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Fri, 16 Feb 2024 20:57:05 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/uploads/2024/02/Sexy-Beast-2024.png
200 OK 1.1 MB URL
lightdl.xyz/wp-content/uploads/2024/02/Sexy-Beast-2024.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 577 x 862, 8-bit/color RGBA, non-interlaced
First Seen 2024-02-11
Last Seen 2024-08-20
Times Seen 2
Size 1.1 MB (1077870 bytes)
MD5 5c312065ac568735a0240122009e4e4f
SHA1 437a5cbc9615f3cd4abe45134e9a9f89dbe47529
SHA256 0f9dd1f52eaff9ab5f7bc68a99cd00f88ed9a4d821101944a25e43595fe81a79
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2024/02/Sexy-Beast-2024.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=; pp_main_285df780ad9f1ead33467ba105295e80=1; sb_main_fa0c46a46b8bf033ac65bc5cabeebf34=1; sb_count_fa0c46a46b8bf033ac65bc5cabeebf34=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=87fea89a-52e2-45b5-a3fa-b91589dc504a%3A3%3A1; a=XkTMPExSogK9aONmkvNCUVtRoWVi0Oww
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: image/png
content-length: 1077870
last-modified: Sat, 10 Feb 2024 11:14:26 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1OopAyNzyKSj1kkQmm0fyK4aIBeI%2B9GEBR3VuS%2F4tpD7AgbLKoMumd41Enz4zKd3VcIS6hwPJS0ztldPtndjRQw68WvFsC%2BW8BVo6dQkt914fCtus0p5xQou%2FRuvIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b8d9c07b50f-OSL
alt-svc: h3=":443"; ma=86400
GET cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png
200 OK 6.0 kB URL
cdn.creative-bars1.com/sb/chat/mob/ssp/1/img/close.png
IP / ASN
172.64.131.3
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 2659
Size 6.0 kB (5982 bytes)
MD5 c489ce2c491a22ee37a55e26a92dfd73
SHA1 2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
SHA256 1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
Certificate Info
Issuer Google Trust Services LLC
Subject creative-bars1.com
Fingerprint 10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22
Validity Fri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
GET /sb/chat/mob/ssp/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: image/png
content-length: 5982
last-modified: Mon, 21 Feb 2022 08:25:06 GMT
etag: "62134c62-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 197876
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NM7%2B7%2FSOyrL7A24z8jfvVzNWH9QIf5ZCrPlkcpoSVprPewiHFPE8npBWd2OFOX2dEU5ScfdFlw%2Fp2qsCYt3dVWyYKAZCQcn5FxWz275S0trpwFOPfCM738aTm81Ep7G5D205VA2IyMn%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b92c8064189-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/uploads/2022/05/Halo-2022.png
200 OK 906 kB URL
lightdl.xyz/wp-content/uploads/2022/05/Halo-2022.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 674 x 823, 8-bit/color RGBA, non-interlaced
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 906 kB (905450 bytes)
MD5 fd353c3c0fee6100250a71b2685135fa
SHA1 55be083a7225f7ecd5780577a4f765314acd1565
SHA256 be4a8f04c411b80e1644770cdae9b151dfe3214508789d0020b26bc376a72c27
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2022/05/Halo-2022.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=; pp_main_285df780ad9f1ead33467ba105295e80=1; sb_main_fa0c46a46b8bf033ac65bc5cabeebf34=1; sb_count_fa0c46a46b8bf033ac65bc5cabeebf34=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=87fea89a-52e2-45b5-a3fa-b91589dc504a%3A3%3A1; a=XkTMPExSogK9aONmkvNCUVtRoWVi0Oww; pbpr0tpuw4isk85t8yg3jb2lj5vqf=lyricalattorneyexplorer.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: image/png
content-length: 905450
last-modified: Wed, 11 May 2022 16:29:20 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DRESJ7lu7DQoVMDxmZYuaVlMX7vcRJE46NT4lMw%2BVfYesfqKHGMhY8cEeaANSB%2Fzl63fH0wCUYVSNxkQSEJIczoK4sVqpaLAg1Vcqb7oYGfNynqdVk1j7KRoappHFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b92ca83b50f-OSL
alt-svc: h3=":443"; ma=86400
GET lyricalattorneyexplorer.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=146
200 OK 0 B URL
lyricalattorneyexplorer.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=146
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject lyricalattorneyexplorer.com
Fingerprint AB:A2:07:4A:5A:3E:42:79:4B:FD:74:B4:7F:D3:92:2F:41:D8:54:18
Validity Fri, 16 Feb 2024 07:47:29 GMT - Thu, 16 May 2024 07:47:28 GMT
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fanimate.css&l=79313&fd=146 HTTP/1.1
Host: lyricalattorneyexplorer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: u_pl=16744733; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:06 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
POST 5njeqmhle8l2.n4.adsco.re/
200 OK 0 B URL
5njeqmhle8l2.n4.adsco.re/
IP / ASN
38.132.109.115
#9009 M247 Europe SRL
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject *.n4.adsco.re
Fingerprint 13:47:CD:B8:B0:D7:81:8D:D3:8E:5F:D7:A6:8B:41:34:B1:3F:55:16
Validity Fri, 19 Jan 2024 09:12:32 GMT - Thu, 18 Apr 2024 09:12:31 GMT
POST / HTTP/1.1
Host: 5njeqmhle8l2.n4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
GET cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png
200 OK 14 kB URL
cdn.cloudimagesb.com/si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png
IP / ASN
45.133.44.10
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced
First Seen 2023-12-04
Last Seen 2025-08-02
Times Seen 1000
Size 14 kB (14496 bytes)
MD5 962ac416cce3fad636d4904386c8d3d4
SHA1 811166fceb971353dc6a9ea3a153367f20b47592
SHA256 ec6c8e1c030499a846897265d0c1f66dedc6ece17c1ea6006b700faf37e73555
Certificate Info
Issuer Let's Encrypt
Subject cdn.cloudimagesb.com
Fingerprint 71:38:53:46:20:AD:CB:67:E9:56:B6:72:8C:A7:4C:60:7B:37:35:13
Validity Mon, 22 Jan 2024 05:00:36 GMT - Sun, 21 Apr 2024 05:00:35 GMT
GET /si/52/3a/8c/523a8ce104cfc3373cd17ab1c0e5131b/1701651901.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: image/png
content-length: 14496
server: nginx/1.21.6
last-modified: Mon, 04 Dec 2023 01:05:10 GMT
etag: "656d25c6-38a0"
expires: Sun, 18 Feb 2024 19:57:06 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
GET c.adsco.re/
28 kB IP / ASN
104.17.167.186
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (689)
First Seen 2024-02-14
Last Seen 2024-08-20
Times Seen 1206
Size 28 kB (28350 bytes)
MD5 a0b475c65fed312aba8d7c43a0cbc928
SHA1 3fdd052b41c37318e44084be4f92d42fba4ded61
SHA256 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
Certificate Info
Issuer Sectigo Limited
Subject *.adsco.re
Fingerprint 40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
Validity Sat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 18 Mar 2024 19:57:06 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 183795
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b90aa361c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lyricalattorneyexplorer.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=150
200 OK 0 B URL
lyricalattorneyexplorer.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=150
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject lyricalattorneyexplorer.com
Fingerprint AB:A2:07:4A:5A:3E:42:79:4B:FD:74:B4:7F:D3:92:2F:41:D8:54:18
Validity Fri, 16 Feb 2024 07:47:29 GMT - Thu, 16 May 2024 07:47:28 GMT
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fcss%2Fstyle.css&l=4617&fd=150 HTTP/1.1
Host: lyricalattorneyexplorer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: u_pl=16744733; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:06 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css
200 OK 16 kB URL
cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/animate.css
IP / ASN
172.64.131.3
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 1268
Size 16 kB (16232 bytes)
MD5 fc638645a938f69e69360c75335ffd1a
SHA1 143132fb8361c3ad0acf88cb70bf0b07c0ecc2d4
SHA256 7ef76aab275d0221c68602d18f81b4285b280756f0f71d535ed8b5b889bc2f90
Certificate Info
Issuer Google Trust Services LLC
Subject creative-bars1.com
Fingerprint 10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22
Validity Fri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
GET /sb/chat/mob/ssp/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-135d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 87791
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YhyrdF%2FnX6wy4Y9DNAOjbhT5mGKFLrd0HsT28bAEXUS52S0YxBf0fLJm25PfoEGFF%2BOpJzIA9DG%2BoZj4Zgy%2FZxxJjEf9JDlSxSQfeqYJ0YZcDgtw8%2BYoyagItqfpy0PtqQIG9x62UrNo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b90edb74189-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/uploads/2024/02/Sexy-Beast-2024-218x150.png
200 OK 69 kB URL
lightdl.xyz/wp-content/uploads/2024/02/Sexy-Beast-2024-218x150.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 218 x 150, 8-bit/color RGBA, non-interlaced
First Seen 2024-02-11
Last Seen 2024-08-20
Times Seen 2
Size 69 kB (68745 bytes)
MD5 ecc4b1339c1395c974f24a32fa3ba7fb
SHA1 a5f5405788b9461162745c263fa58b81eea4761f
SHA256 18f487cedea64e6c96cdeb5200f6c9e555b0fc46f056f7f068e5841bcbcf0e18
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2024/02/Sexy-Beast-2024-218x150.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=; pp_main_285df780ad9f1ead33467ba105295e80=1; sb_main_fa0c46a46b8bf033ac65bc5cabeebf34=1; sb_count_fa0c46a46b8bf033ac65bc5cabeebf34=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=87fea89a-52e2-45b5-a3fa-b91589dc504a%3A3%3A1; a=XkTMPExSogK9aONmkvNCUVtRoWVi0Oww; pbpr0tpuw4isk85t8yg3jb2lj5vqf=lyricalattorneyexplorer.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: image/png
content-length: 68745
last-modified: Sat, 10 Feb 2024 11:14:26 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mmhDeiqDmDpEoj5%2F0pdTiiNFThgHyC8yabKcSyIn6BbI9qzHte4%2BPBR2XeRqPZyIIDdSC566c1Caataw1iV3yRtWSJTJNpqvrEEOiGTxSHLTIyUiTboyxuM2KRT8xQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b951cd8b50f-OSL
alt-svc: h3=":443"; ma=86400
GET lyricalattorneyexplorer.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=78
200 OK 0 B URL
lyricalattorneyexplorer.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=78
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject lyricalattorneyexplorer.com
Fingerprint AB:A2:07:4A:5A:3E:42:79:4B:FD:74:B4:7F:D3:92:2F:41:D8:54:18
Validity Fri, 16 Feb 2024 07:47:29 GMT - Thu, 16 May 2024 07:47:28 GMT
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fchat%2Fmob%2Fssp%2F1%2Fjs%2Fscript.js&l=382&fd=78 HTTP/1.1
Host: lyricalattorneyexplorer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: u_pl=16744733; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:06 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET unseenreport.com/pxf.gif?uuid=87fea89a-52e2-45b5-a3fa-b91589dc504a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fa0c46a46b8bf033ac65bc5cabeebf34&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
200 OK 1 B URL
unseenreport.com/pxf.gif?uuid=87fea89a-52e2-45b5-a3fa-b91589dc504a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fa0c46a46b8bf033ac65bc5cabeebf34&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type very short file (no magic)
First Seen 2023-04-05
Last Seen 2025-07-31
Times Seen 25187
Size 1 B (1 bytes)
MD5 93b885adfe0da089cdf634904fd59f71
SHA1 5ba93c9db0cff93f52b521d7420e43f6eda2784f
SHA256 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Certificate Info
Issuer Let's Encrypt
Subject *.unseenreport.com
Fingerprint 18:C3:E7:4B:C5:EA:23:FC:38:62:D0:43:31:B5:79:2E:62:86:60:9E
Validity Sun, 21 Jan 2024 08:27:47 GMT - Sat, 20 Apr 2024 08:27:46 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=87fea89a-52e2-45b5-a3fa-b91589dc504a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=fa0c46a46b8bf033ac65bc5cabeebf34&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:06 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e37a48e0e6a0fa52d86ffb6e8b04c1d8
Strict-Transport-Security: max-age=0; includeSubdomains
GET lightdl.xyz/wp-content/uploads/2024/01/Sanctuary-2024.png
200 OK 918 kB URL
lightdl.xyz/wp-content/uploads/2024/01/Sanctuary-2024.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 586 x 862, 8-bit/color RGBA, non-interlaced
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 918 kB (917529 bytes)
MD5 51a362f8765c10f03bb7747c0a27d8db
SHA1 fca341ea9582fb46f674c81b6ff763ac3e328949
SHA256 3834457031960bb2fd113f7e0acd052872dbce10bcd80b3c0deb88ff07927537
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2024/01/Sanctuary-2024.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=; pp_main_285df780ad9f1ead33467ba105295e80=1; sb_main_fa0c46a46b8bf033ac65bc5cabeebf34=1; sb_count_fa0c46a46b8bf033ac65bc5cabeebf34=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=87fea89a-52e2-45b5-a3fa-b91589dc504a%3A3%3A1; a=XkTMPExSogK9aONmkvNCUVtRoWVi0Oww; pbpr0tpuw4isk85t8yg3jb2lj5vqf=lyricalattorneyexplorer.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: image/png
content-length: 917529
last-modified: Fri, 05 Jan 2024 08:22:42 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GsDaMdf7vMKzAh1ARIILpfGEDPD9klX58HwsM1wcnxKShPpSUheWVjFa2bFBybWonRJfyreHh0tYl%2BkGdNaq9lmYZNYAd8IOJM2aHc%2BCI%2FjuIBMcu3HIH1B5ty%2BvTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b92ca85b50f-OSL
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/uploads/2024/02/Sexy-Beast-2024-485x360.png
200 OK 337 kB URL
lightdl.xyz/wp-content/uploads/2024/02/Sexy-Beast-2024-485x360.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 485 x 360, 8-bit/color RGBA, non-interlaced
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 337 kB (336790 bytes)
MD5 37e5ebae1f6eb390eb00fc5973740cca
SHA1 26356ca8624542d9447b2e7b96983816ed5b1eb1
SHA256 9ca49e4ad63029508de3c725eb6e9181bc215cd9335630c6e237c7703fa0ec66
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2024/02/Sexy-Beast-2024-485x360.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=; pp_main_285df780ad9f1ead33467ba105295e80=1; sb_main_fa0c46a46b8bf033ac65bc5cabeebf34=1; sb_count_fa0c46a46b8bf033ac65bc5cabeebf34=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=87fea89a-52e2-45b5-a3fa-b91589dc504a%3A3%3A1; a=XkTMPExSogK9aONmkvNCUVtRoWVi0Oww; pbpr0tpuw4isk85t8yg3jb2lj5vqf=lyricalattorneyexplorer.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: image/png
content-length: 336790
last-modified: Sat, 10 Feb 2024 11:14:26 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YuThuqpojyH83KoDQWY6hRxzLCEeNl0Oe%2BtOiPitkWh777Mp8SytdBm3iAtSrUJA1FnOLMJufhaymZbT%2F64%2F2uUP6oB4pPKLKz4%2BF7kkHZFiq8037dPz0jbWdD423g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b92ca86b50f-OSL
alt-svc: h3=":443"; ma=86400
GET unseenreport.com/pxf.gif?uuid=87fea89a-52e2-45b5-a3fa-b91589dc504a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=285df780ad9f1ead33467ba105295e80&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
200 OK 1 B URL
unseenreport.com/pxf.gif?uuid=87fea89a-52e2-45b5-a3fa-b91589dc504a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=285df780ad9f1ead33467ba105295e80&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type very short file (no magic)
First Seen 2023-04-05
Last Seen 2025-07-31
Times Seen 25187
Size 1 B (1 bytes)
MD5 93b885adfe0da089cdf634904fd59f71
SHA1 5ba93c9db0cff93f52b521d7420e43f6eda2784f
SHA256 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Certificate Info
Issuer Let's Encrypt
Subject *.unseenreport.com
Fingerprint 18:C3:E7:4B:C5:EA:23:FC:38:62:D0:43:31:B5:79:2E:62:86:60:9E
Validity Sun, 21 Jan 2024 08:27:47 GMT - Sat, 20 Apr 2024 08:27:46 GMT
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=87fea89a-52e2-45b5-a3fa-b91589dc504a&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=285df780ad9f1ead33467ba105295e80&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:06 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 401dc07c1f7cc17a41bb96a89989a013
Strict-Transport-Security: max-age=0; includeSubdomains
GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP / ASN
142.250.74.67
#15169 GOOGLE
Requested by https://lightdl.xyz/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 85155
Size 16 kB (15860 bytes)
MD5 e9f5aaf547f165386cd313b995dddd8e
SHA1 acdef5603c2387b0e5bffd744b679a24a8bc1968
SHA256 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
Certificate Info
Issuer Google Trust Services LLC
Subject *.gstatic.com
Fingerprint F1:41:DD:4F:A6:9F:7B:AE:AE:AF:78:BD:08:F8:C8:40:3C:C4:8C:93
Validity Mon, 29 Jan 2024 08:19:40 GMT - Mon, 22 Apr 2024 08:19:39 GMT
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:48:35 GMT
expires: Fri, 14 Feb 2025 03:48:35 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 144512
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/uploads/2024/01/Sanctuary-2024-218x150.png
200 OK 53 kB URL
lightdl.xyz/wp-content/uploads/2024/01/Sanctuary-2024-218x150.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 218 x 150, 8-bit/color RGBA, non-interlaced
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 53 kB (53015 bytes)
MD5 54633155dbaa238a62e52a2880cbbe45
SHA1 03806408e9b552daa54068fd26365589be7b247b
SHA256 c3a3d121a3724494262220bb478e1522987953f1c8935cc72046cd3602af13de
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2024/01/Sanctuary-2024-218x150.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=; pp_main_285df780ad9f1ead33467ba105295e80=1; sb_main_fa0c46a46b8bf033ac65bc5cabeebf34=1; sb_count_fa0c46a46b8bf033ac65bc5cabeebf34=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=87fea89a-52e2-45b5-a3fa-b91589dc504a%3A3%3A1; a=XkTMPExSogK9aONmkvNCUVtRoWVi0Oww; pbpr0tpuw4isk85t8yg3jb2lj5vqf=lyricalattorneyexplorer.com; token_QpUJAAAAAAAAGu98Hdz1l_lcSZ2rY60Ajjk9U1c=BQLyAAAAAAAACZUAAsMg6ekrao-1m2AQL0AGTTrBGcvci9yQtJtnRaIYlmWSBjkLFW6ABkH6wdT-8g4vuqBghT3GHM96akGoH7fkueyxMkMiV_ypCZ_p1brXBwhHo1Rt0VTeS2JPLt9y0idnowt8OhFL5V6tZdxJiNCzGQwfcHya_PleaYSHYMRxBDP0uV9Yd5uo0ornxE0sKuLkVmg34Ul_-gfveESttl9xAPVgmVjuB2gNpJXNO9koJDsLPI61dl7Cjy8UvAJQyRp48hLTjaLYkmvjYcAV34MwCLmJPragrkgdI7r0vaqY44tC0MG6p1yLvt0fXH05qotA-_ziu5hFvry3MaJN7GJJ-0EK0oizpaZS3AZ4G2l3f5zWMKv-cVJVneprgFwWuqEZyRQyR3hkvRWwqWZtDtp41Y1s1BTHC0eERPcWvCqYhZwTAahTHq5QwMGNx7Hqobd6iHHIDmkg8ZxaCAtF5noOnd-ZX631H_FcPMW0Eu3ksznP6zb0M8DJI8-6XsvuNOg5IPvlUZfLsE9ofhMsgAKGRrS8-ybaxo5Udb4wyxIPUkQyVDQyagAlxxpE9o6CgQRAZ_yePpEyIosDNU9oZl7UZwc5nZiAZabWYd3srx25qogv20UFrx6NE5FFXNyCerG0rmbe9jbaBRR8cg45KDIV10xD96l0sQZxqMBfsKwr9QpvdQQFx1WywemSUv0lzNMgTpNIs5FLKtgeJXnSBYH7gNddwru0YIna1gsLGB1Y6f4n43px3rnIkOCuRL-OKizKFBUXNpafgnslaxnyJ5DOfjkBIt9yhPUjXLHB3vVCwcZxgKpMuDPPxt7nFh_Ec97VgJPROd8SowFOFdmh_E0ip_ADbYJPwDQbVD0HhCOjovgHsTt3nwYBo-IT0b3Wh893SnxYR38yfNBQxKP-f70iCNhUtc8IHzGbSywVjzx8ApFq8G1kWJNuka0OaPXMEWQb4CFExnTeM_Gj4zgmbK3CqJWo_PpnJxTDM1pC1B5iA-eD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:07 GMT
content-type: image/png
content-length: 53015
last-modified: Fri, 05 Jan 2024 08:22:42 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rcOb35D5%2Bu2lZ%2FTqsGCzyTaxhHzzPYViCL4m%2FeOewHUzScCrslxAeSLp6qkaz%2B0HX14SPwdDgHm%2BFZMfJSiYAZbMLA2XwVlaj7dZMNlzpNdO5OwSgYFJtkx27FmUJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b97bfe1b50f-OSL
alt-svc: h3=":443"; ma=86400
GET fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP / ASN
142.250.74.67
#15169 GOOGLE
Requested by https://lightdl.xyz/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 151637
Size 16 kB (15744 bytes)
MD5 15d9f621c3bd1599f0169dcf0bd5e63e
SHA1 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
SHA256 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
Certificate Info
Issuer Google Trust Services LLC
Subject *.gstatic.com
Fingerprint F1:41:DD:4F:A6:9F:7B:AE:AE:AF:78:BD:08:F8:C8:40:3C:C4:8C:93
Validity Mon, 29 Jan 2024 08:19:40 GMT - Mon, 22 Apr 2024 08:19:39 GMT
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:55:29 GMT
expires: Fri, 14 Feb 2025 03:55:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 144098
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST 5njeqmhle8l2.s4.adsco.re/
200 OK 0 B URL
5njeqmhle8l2.s4.adsco.re/
IP / ASN
185.200.116.51
#9009 M247 Europe SRL
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject *.s4.adsco.re
Fingerprint AE:19:09:85:8B:22:B4:A7:C6:B6:F4:46:86:9E:DC:E1:FC:4A:0E:54
Validity Fri, 19 Jan 2024 09:12:31 GMT - Thu, 18 Apr 2024 09:12:30 GMT
POST / HTTP/1.1
Host: 5njeqmhle8l2.s4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:07 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/uploads/2022/03/Resident-Alien-2021.png
200 OK 794 kB URL
lightdl.xyz/wp-content/uploads/2022/03/Resident-Alien-2021.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 548 x 833, 8-bit/color RGBA, non-interlaced
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 794 kB (794367 bytes)
MD5 c80dd79c3e9ebdf2a80cb2c82fb6980f
SHA1 709c48feb7688371cbbfeb388460c7d1ab80a61c
SHA256 e47b31bbd9e2b6b921de39f717d667a90f01ec05e9968773bf52dd3955066bc4
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2022/03/Resident-Alien-2021.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=; pp_main_285df780ad9f1ead33467ba105295e80=1; sb_main_fa0c46a46b8bf033ac65bc5cabeebf34=1; sb_count_fa0c46a46b8bf033ac65bc5cabeebf34=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=87fea89a-52e2-45b5-a3fa-b91589dc504a%3A3%3A1; a=XkTMPExSogK9aONmkvNCUVtRoWVi0Oww; pbpr0tpuw4isk85t8yg3jb2lj5vqf=lyricalattorneyexplorer.com; token_QpUJAAAAAAAAGu98Hdz1l_lcSZ2rY60Ajjk9U1c=BQLyAAAAAAAACZUAAsMg6ekrao-1m2AQL0AGTTrBGcvci9yQtJtnRaIYlmWSBjkLFW6ABkH6wdT-8g4vuqBghT3GHM96akGoH7fkueyxMkMiV_ypCZ_p1brXBwhHo1Rt0VTeS2JPLt9y0idnowt8OhFL5V6tZdxJiNCzGQwfcHya_PleaYSHYMRxBDP0uV9Yd5uo0ornxE0sKuLkVmg34Ul_-gfveESttl9xAPVgmVjuB2gNpJXNO9koJDsLPI61dl7Cjy8UvAJQyRp48hLTjaLYkmvjYcAV34MwCLmJPragrkgdI7r0vaqY44tC0MG6p1yLvt0fXH05qotA-_ziu5hFvry3MaJN7GJJ-0EK0oizpaZS3AZ4G2l3f5zWMKv-cVJVneprgFwWuqEZyRQyR3hkvRWwqWZtDtp41Y1s1BTHC0eERPcWvCqYhZwTAahTHq5QwMGNx7Hqobd6iHHIDmkg8ZxaCAtF5noOnd-ZX631H_FcPMW0Eu3ksznP6zb0M8DJI8-6XsvuNOg5IPvlUZfLsE9ofhMsgAKGRrS8-ybaxo5Udb4wyxIPUkQyVDQyagAlxxpE9o6CgQRAZ_yePpEyIosDNU9oZl7UZwc5nZiAZabWYd3srx25qogv20UFrx6NE5FFXNyCerG0rmbe9jbaBRR8cg45KDIV10xD96l0sQZxqMBfsKwr9QpvdQQFx1WywemSUv0lzNMgTpNIs5FLKtgeJXnSBYH7gNddwru0YIna1gsLGB1Y6f4n43px3rnIkOCuRL-OKizKFBUXNpafgnslaxnyJ5DOfjkBIt9yhPUjXLHB3vVCwcZxgKpMuDPPxt7nFh_Ec97VgJPROd8SowFOFdmh_E0ip_ADbYJPwDQbVD0HhCOjovgHsTt3nwYBo-IT0b3Wh893SnxYR38yfNBQxKP-f70iCNhUtc8IHzGbSywVjzx8ApFq8G1kWJNuka0OaPXMEWQb4CFExnTeM_Gj4zgmbK3CqJWo_PpnJxTDM1pC1B5iA-eD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:07 GMT
content-type: image/png
content-length: 794367
last-modified: Sat, 18 Jun 2022 07:49:07 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EEID9ihTzaEttkNjg%2FMZVcUzVlhIcXGbeYdpQf5%2BGxH0wHtjwuVeWipfIMOjIXslHkDqkDKRD9JKflbg2LK%2Bn84sO1BTWwH7oBfmmB2lBFsBPluvlmtK%2FB%2FFRX52cg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b97bfe3b50f-OSL
alt-svc: h3=":443"; ma=86400
GET lyricalattorneyexplorer.com/impr.gif?sid=H4sIAAAAAAAC%2F1SSz2skRRTHq7PxoiCs7MllYY4ryKR7fsc9LK4xEoybdXdFb1K%2FelKmpqup6pqezCm6IHsc%2FAs630k2qItsbiIYpLPgIaDseMrBXPwPFBZvyoyDow%2B633v1fQWf9%2Bp9vu8vSARPz9feM0OlNV1pVsPK9Y%2Bi6EZlUyV%2BUBl0Wh%2B3Gjcqtv%2FGaqsavlZ5R%2FIds1ILozCMwqiyrqyMzWBlKkKlj1ej6mpYbdSqUbOBgf1%2F7nwARwOI%2FgV5BUpMlp8GV6B4iaT3ZE26ncykr7%2Fd85pmxqIvjj5IdhKTJ%2BgtwtgGiJOjeTWMe7Z%2BApMcznBh%2Bv8WMjUhwY8nYMnRHBKsfzDjZBoyARMvIe%2BXkLqEoiW4eQAlnhGAC9zeQtJ7dNvYnO7%2Bo9KpOiHLz%2F%2BAyidk%2BdcrSHrf3NJqULlntM%2BUSRwGcQE1KKG6JVJ%2FimwYQOWn4NlnUOInsvJ8E0nvYMtpAyWKWe9KlVBxCS1HoC6An34qgI8D%2BDRAT5xXeBRF7VBwGnZWOa%2BLtmQtEUa0HUc0ClsdeD7FGyFLR%2BB6BG73kNo97KgRrP8BbruAEwFcNiHB%2B3voiwK5JMgdQU4JckWQZwR5vzgU2tVc8Uho51k097W5rxdjk3X36aHJujIhoHa0n16Qy7PZ%2FPXpNezI80pMQ95o0UaLdVgc1uuUt5qMNzllUrK43oBTBZRbmrU7VBPy6osGqZqQF%2F78FoyewulTcBWA%2Bmug%2BbhdC0G3x41OiGFyrFV3OxMmT7ShojrYHUKYAmm2jGw32NcX5OoMZmPrCSQ%2Fu%2FlbfWbgtkBqC3yinhJ09cPxXZOTg7smd%2BR4K81UTw3p9BHvZTSTl756V%2B7mxoqNNTf68k0%2BFabh4%2FvSZZs0ESrpOvL1LSWEtOvGckm%2B33AfSnbHu%2B1b3iY%2B3bzz1vpGL7XSOWWSEnS6j79bcDUhL1%2B9P9vP699tQdkS1hfo%2BTMyNyhTgqd7cOmC3xkCqxc1LA2Q%2B2Jsa2xxqBWBloucsgLuPzlbxGNLp7epKvbdQ3TtEmj2AEmvQN8W6OsCVI%2Fg%2FKVxltqzm7%2FMMZheGjNtlw6YtvqL2Zinv2M4dV6ph6LNZCzbTDaajVhywZpNFvKYs7rodDgyN5E%2Fn1z%2BGwAA%2F%2F8BAAD%2F%2F7ZFoPx5BAAA
200 OK 7 B URL
lyricalattorneyexplorer.com/impr.gif?sid=H4sIAAAAAAAC%2F1SSz2skRRTHq7PxoiCs7MllYY4ryKR7fsc9LK4xEoybdXdFb1K%2FelKmpqup6pqezCm6IHsc%2FAs630k2qItsbiIYpLPgIaDseMrBXPwPFBZvyoyDow%2B633v1fQWf9%2Bp9vu8vSARPz9feM0OlNV1pVsPK9Y%2Bi6EZlUyV%2BUBl0Wh%2B3Gjcqtv%2FGaqsavlZ5R%2FIds1ILozCMwqiyrqyMzWBlKkKlj1ej6mpYbdSqUbOBgf1%2F7nwARwOI%2FgV5BUpMlp8GV6B4iaT3ZE26ncykr7%2Fd85pmxqIvjj5IdhKTJ%2BgtwtgGiJOjeTWMe7Z%2BApMcznBh%2Bv8WMjUhwY8nYMnRHBKsfzDjZBoyARMvIe%2BXkLqEoiW4eQAlnhGAC9zeQtJ7dNvYnO7%2Bo9KpOiHLz%2F%2BAyidk%2BdcrSHrf3NJqULlntM%2BUSRwGcQE1KKG6JVJ%2FimwYQOWn4NlnUOInsvJ8E0nvYMtpAyWKWe9KlVBxCS1HoC6An34qgI8D%2BDRAT5xXeBRF7VBwGnZWOa%2BLtmQtEUa0HUc0ClsdeD7FGyFLR%2BB6BG73kNo97KgRrP8BbruAEwFcNiHB%2B3voiwK5JMgdQU4JckWQZwR5vzgU2tVc8Uho51k097W5rxdjk3X36aHJujIhoHa0n16Qy7PZ%2FPXpNezI80pMQ95o0UaLdVgc1uuUt5qMNzllUrK43oBTBZRbmrU7VBPy6osGqZqQF%2F78FoyewulTcBWA%2Bmug%2BbhdC0G3x41OiGFyrFV3OxMmT7ShojrYHUKYAmm2jGw32NcX5OoMZmPrCSQ%2Fu%2FlbfWbgtkBqC3yinhJ09cPxXZOTg7smd%2BR4K81UTw3p9BHvZTSTl756V%2B7mxoqNNTf68k0%2BFabh4%2FvSZZs0ESrpOvL1LSWEtOvGckm%2B33AfSnbHu%2B1b3iY%2B3bzz1vpGL7XSOWWSEnS6j79bcDUhL1%2B9P9vP699tQdkS1hfo%2BTMyNyhTgqd7cOmC3xkCqxc1LA2Q%2B2Jsa2xxqBWBloucsgLuPzlbxGNLp7epKvbdQ3TtEmj2AEmvQN8W6OsCVI%2Fg%2FKVxltqzm7%2FMMZheGjNtlw6YtvqL2Zinv2M4dV6ph6LNZCzbTDaajVhywZpNFvKYs7rodDgyN5E%2Fn1z%2BGwAA%2F%2F8BAAD%2F%2F7ZFoPx5BAAA
IP / ASN
192.243.61.227
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with no line terminators
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 19107
Size 7 B (7 bytes)
MD5 132d6af1b46048b45cf86cdee7991d31
SHA1 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
SHA256 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Certificate Info
Issuer Let's Encrypt
Subject lyricalattorneyexplorer.com
Fingerprint AB:A2:07:4A:5A:3E:42:79:4B:FD:74:B4:7F:D3:92:2F:41:D8:54:18
Validity Fri, 16 Feb 2024 07:47:29 GMT - Thu, 16 May 2024 07:47:28 GMT
GET /impr.gif?sid=H4sIAAAAAAAC%2F1SSz2skRRTHq7PxoiCs7MllYY4ryKR7fsc9LK4xEoybdXdFb1K%2FelKmpqup6pqezCm6IHsc%2FAs630k2qItsbiIYpLPgIaDseMrBXPwPFBZvyoyDow%2B633v1fQWf9%2Bp9vu8vSARPz9feM0OlNV1pVsPK9Y%2Bi6EZlUyV%2BUBl0Wh%2B3Gjcqtv%2FGaqsavlZ5R%2FIds1ILozCMwqiyrqyMzWBlKkKlj1ej6mpYbdSqUbOBgf1%2F7nwARwOI%2FgV5BUpMlp8GV6B4iaT3ZE26ncykr7%2Fd85pmxqIvjj5IdhKTJ%2BgtwtgGiJOjeTWMe7Z%2BApMcznBh%2Bv8WMjUhwY8nYMnRHBKsfzDjZBoyARMvIe%2BXkLqEoiW4eQAlnhGAC9zeQtJ7dNvYnO7%2Bo9KpOiHLz%2F%2BAyidk%2BdcrSHrf3NJqULlntM%2BUSRwGcQE1KKG6JVJ%2FimwYQOWn4NlnUOInsvJ8E0nvYMtpAyWKWe9KlVBxCS1HoC6An34qgI8D%2BDRAT5xXeBRF7VBwGnZWOa%2BLtmQtEUa0HUc0ClsdeD7FGyFLR%2BB6BG73kNo97KgRrP8BbruAEwFcNiHB%2B3voiwK5JMgdQU4JckWQZwR5vzgU2tVc8Uho51k097W5rxdjk3X36aHJujIhoHa0n16Qy7PZ%2FPXpNezI80pMQ95o0UaLdVgc1uuUt5qMNzllUrK43oBTBZRbmrU7VBPy6osGqZqQF%2F78FoyewulTcBWA%2Bmug%2BbhdC0G3x41OiGFyrFV3OxMmT7ShojrYHUKYAmm2jGw32NcX5OoMZmPrCSQ%2Fu%2FlbfWbgtkBqC3yinhJ09cPxXZOTg7smd%2BR4K81UTw3p9BHvZTSTl756V%2B7mxoqNNTf68k0%2BFabh4%2FvSZZs0ESrpOvL1LSWEtOvGckm%2B33AfSnbHu%2B1b3iY%2B3bzz1vpGL7XSOWWSEnS6j79bcDUhL1%2B9P9vP699tQdkS1hfo%2BTMyNyhTgqd7cOmC3xkCqxc1LA2Q%2B2Jsa2xxqBWBloucsgLuPzlbxGNLp7epKvbdQ3TtEmj2AEmvQN8W6OsCVI%2Fg%2FKVxltqzm7%2FMMZheGjNtlw6YtvqL2Zinv2M4dV6ph6LNZCzbTDaajVhywZpNFvKYs7rodDgyN5E%2Fn1z%2BGwAA%2F%2F8BAAD%2F%2F7ZFoPx5BAAA HTTP/1.1
Host: lyricalattorneyexplorer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: u_pl=16744733; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 16 Feb 2024 19:57:07 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 41e7780f1fdea5894ffb1d8ff13fe624
Strict-Transport-Security: max-age=0; includeSubdomains
GET lyricalattorneyexplorer.com/pixel/sbs?c=1
200 OK 0 B URL
lyricalattorneyexplorer.com/pixel/sbs?c=1
IP / ASN
192.243.59.12
#39572 DataWeb Global Group B.V.
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Let's Encrypt
Subject lyricalattorneyexplorer.com
Fingerprint AB:A2:07:4A:5A:3E:42:79:4B:FD:74:B4:7F:D3:92:2F:41:D8:54:18
Validity Fri, 16 Feb 2024 07:47:29 GMT - Thu, 16 May 2024 07:47:28 GMT
GET /pixel/sbs?c=1 HTTP/1.1
Host: lyricalattorneyexplorer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: u_pl=16744733; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 16 Feb 2024 19:57:07 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
GET lightdl.xyz/wp-content/uploads/2023/02/Not-Dead-Yet-2023.png
200 OK 457 kB URL
lightdl.xyz/wp-content/uploads/2023/02/Not-Dead-Yet-2023.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 471 x 589, 8-bit/color RGBA, non-interlaced
First Seen 2024-02-11
Last Seen 2024-08-20
Times Seen 2
Size 457 kB (456568 bytes)
MD5 d539d8337a0b9ada45be4c33b8673924
SHA1 8e7329fc772d2929b0e92091014b1d1abd031395
SHA256 785b69a2d380fde7f0273713d40702ff1210aa77baac120a16e87b3f3ce2aff5
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2023/02/Not-Dead-Yet-2023.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=; pp_main_285df780ad9f1ead33467ba105295e80=1; sb_main_fa0c46a46b8bf033ac65bc5cabeebf34=1; sb_count_fa0c46a46b8bf033ac65bc5cabeebf34=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=87fea89a-52e2-45b5-a3fa-b91589dc504a%3A3%3A1; a=XkTMPExSogK9aONmkvNCUVtRoWVi0Oww; pbpr0tpuw4isk85t8yg3jb2lj5vqf=lyricalattorneyexplorer.com; token_QpUJAAAAAAAAGu98Hdz1l_lcSZ2rY60Ajjk9U1c=BQLyAAAAAAAACZUAAsMg6ekrao-1m2AQL0AGTTrBGcvci9yQtJtnRaIYlmWSBjkLFW6ABkH6wdT-8g4vuqBghT3GHM96akGoH7fkueyxMkMiV_ypCZ_p1brXBwhHo1Rt0VTeS2JPLt9y0idnowt8OhFL5V6tZdxJiNCzGQwfcHya_PleaYSHYMRxBDP0uV9Yd5uo0ornxE0sKuLkVmg34Ul_-gfveESttl9xAPVgmVjuB2gNpJXNO9koJDsLPI61dl7Cjy8UvAJQyRp48hLTjaLYkmvjYcAV34MwCLmJPragrkgdI7r0vaqY44tC0MG6p1yLvt0fXH05qotA-_ziu5hFvry3MaJN7GJJ-0EK0oizpaZS3AZ4G2l3f5zWMKv-cVJVneprgFwWuqEZyRQyR3hkvRWwqWZtDtp41Y1s1BTHC0eERPcWvCqYhZwTAahTHq5QwMGNx7Hqobd6iHHIDmkg8ZxaCAtF5noOnd-ZX631H_FcPMW0Eu3ksznP6zb0M8DJI8-6XsvuNOg5IPvlUZfLsE9ofhMsgAKGRrS8-ybaxo5Udb4wyxIPUkQyVDQyagAlxxpE9o6CgQRAZ_yePpEyIosDNU9oZl7UZwc5nZiAZabWYd3srx25qogv20UFrx6NE5FFXNyCerG0rmbe9jbaBRR8cg45KDIV10xD96l0sQZxqMBfsKwr9QpvdQQFx1WywemSUv0lzNMgTpNIs5FLKtgeJXnSBYH7gNddwru0YIna1gsLGB1Y6f4n43px3rnIkOCuRL-OKizKFBUXNpafgnslaxnyJ5DOfjkBIt9yhPUjXLHB3vVCwcZxgKpMuDPPxt7nFh_Ec97VgJPROd8SowFOFdmh_E0ip_ADbYJPwDQbVD0HhCOjovgHsTt3nwYBo-IT0b3Wh893SnxYR38yfNBQxKP-f70iCNhUtc8IHzGbSywVjzx8ApFq8G1kWJNuka0OaPXMEWQb4CFExnTeM_Gj4zgmbK3CqJWo_PpnJxTDM1pC1B5iA-eD
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:07 GMT
content-type: image/png
content-length: 456568
last-modified: Mon, 13 Feb 2023 16:17:35 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D48aCj3Il9yA8zJxRnjmVWxj0NbdLoG8HvOazKxY1E0DBQbYFYIJXTeS26BWEm6aWKQNc9IDb3VCb4xNYnDroJN8%2BTY4tFPypL08c7NXBmzUGrRGfMR7mSjfiSawUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b9878d9b50f-OSL
alt-svc: h3=":443"; ma=86400
GET cdn4ads.com/zaucwfenrhhnat?GmwLFouU=BQLyAAAAAAAACZUAAsMg6ekrao-1m2AQL0AGTTrBGcvci9yQtJtnRaIYlmWSBjkLFW6ABkH6wdT-8g4vuqBghT3GHM96akGoH7fkueyxMkMiV_ypCZ_p1brXBwhHo1Rt0VTeS2JPLt9y0idnowt8OhFL5V6tZdxJiNCzGQwfcHya_PleaYSHYMRxBDP0uV9Yd5uo0ornxE0sKuLkVmg34Ul_-gfveESttl9xAPVgmVjuB2gNpJXNO9koJDsLPI61dl7Cjy8UvAJQyRp48hLTjaLYkmvjYcAV34MwCLmJPragrkgdI7r0vaqY44tC0MG6p1yLvt0fXH05qotA-_ziu5hFvry3MaJN7GJJ-0EK0oizpaZS3AZ4G2l3f5zWMKv-cVJVneprgFwWuqEZyRQyR3hkvRWwqWZtDtp41Y1s1BTHC0eERPcWvCqYhZwTAahTHq5QwMGNx7Hqobd6iHHIDmkg8ZxaCAtF5noOnd-ZX631H_FcPMW0Eu3ksznP6zb0M8DJI8-6XsvuNOg5IPvlUZfLsE9ofhMsgAKGRrS8-ybaxo5Udb4wyxIPUkQyVDQyagAlxxpE9o6CgQRAZ_yePpEyIosDNU9oZl7UZwc5nZiAZabWYd3srx25qogv20UFrx6NE5FFXNyCerG0rmbe9jbaBRR8cg45KDIV10xD96l0sQZxqMBfsKwr9QpvdQQFx1WywemSUv0lzNMgTpNIs5FLKtgeJXnSBYH7gNddwru0YIna1gsLGB1Y6f4n43px3rnIkOCuRL-OKizKFBUXNpafgnslaxnyJ5DOfjkBIt9yhPUjXLHB3vVCwcZxgKpMuDPPxt7nFh_Ec97VgJPROd8SowFOFdmh_E0ip_ADbYJPwDQbVD0HhCOjovgHsTt3nwYBo-IT0b3Wh893SnxYR38yfNBQxKP-f70iCNhUtc8IHzGbSywVjzx8ApFq8G1kWJNuka0OaPXMEWQb4CFExnTeM_Gj4zgmbK3CqJWo_PpnJxTDM1pC1B5iA-eD&grBezUaH=4&OrdFKSUm=2035086&NKALBJcM=&hFwkHSKy=0,0&eGKcEvyA=&yflmJTSo=https%3A%2F%2Flightdl.xyz%2F%3F__cf_chl_tk%3D1A44OrwEkxLvRB2zxVX99yfGbt2fE0dF4pSnwB0UZd0-1708113415-0.0-3410&XFbMlxnu=1280,1024,1,1280,1024,0
200 OK 1.0 kB URL
cdn4ads.com/zaucwfenrhhnat?GmwLFouU=BQLyAAAAAAAACZUAAsMg6ekrao-1m2AQL0AGTTrBGcvci9yQtJtnRaIYlmWSBjkLFW6ABkH6wdT-8g4vuqBghT3GHM96akGoH7fkueyxMkMiV_ypCZ_p1brXBwhHo1Rt0VTeS2JPLt9y0idnowt8OhFL5V6tZdxJiNCzGQwfcHya_PleaYSHYMRxBDP0uV9Yd5uo0ornxE0sKuLkVmg34Ul_-gfveESttl9xAPVgmVjuB2gNpJXNO9koJDsLPI61dl7Cjy8UvAJQyRp48hLTjaLYkmvjYcAV34MwCLmJPragrkgdI7r0vaqY44tC0MG6p1yLvt0fXH05qotA-_ziu5hFvry3MaJN7GJJ-0EK0oizpaZS3AZ4G2l3f5zWMKv-cVJVneprgFwWuqEZyRQyR3hkvRWwqWZtDtp41Y1s1BTHC0eERPcWvCqYhZwTAahTHq5QwMGNx7Hqobd6iHHIDmkg8ZxaCAtF5noOnd-ZX631H_FcPMW0Eu3ksznP6zb0M8DJI8-6XsvuNOg5IPvlUZfLsE9ofhMsgAKGRrS8-ybaxo5Udb4wyxIPUkQyVDQyagAlxxpE9o6CgQRAZ_yePpEyIosDNU9oZl7UZwc5nZiAZabWYd3srx25qogv20UFrx6NE5FFXNyCerG0rmbe9jbaBRR8cg45KDIV10xD96l0sQZxqMBfsKwr9QpvdQQFx1WywemSUv0lzNMgTpNIs5FLKtgeJXnSBYH7gNddwru0YIna1gsLGB1Y6f4n43px3rnIkOCuRL-OKizKFBUXNpafgnslaxnyJ5DOfjkBIt9yhPUjXLHB3vVCwcZxgKpMuDPPxt7nFh_Ec97VgJPROd8SowFOFdmh_E0ip_ADbYJPwDQbVD0HhCOjovgHsTt3nwYBo-IT0b3Wh893SnxYR38yfNBQxKP-f70iCNhUtc8IHzGbSywVjzx8ApFq8G1kWJNuka0OaPXMEWQb4CFExnTeM_Gj4zgmbK3CqJWo_PpnJxTDM1pC1B5iA-eD&grBezUaH=4&OrdFKSUm=2035086&NKALBJcM=&hFwkHSKy=0,0&eGKcEvyA=&yflmJTSo=https%3A%2F%2Flightdl.xyz%2F%3F__cf_chl_tk%3D1A44OrwEkxLvRB2zxVX99yfGbt2fE0dF4pSnwB0UZd0-1708113415-0.0-3410&XFbMlxnu=1280,1024,1,1280,1024,0
IP / ASN
216.59.63.128
#53334 TUT-AS
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (1428), with no line terminators
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 1.0 kB (1035 bytes)
MD5 4c4dfe73fc90bbace50682d8a081043d
SHA1 f8831f38aa8d0d1b6a2ee002d44d3eb10370214a
SHA256 b26a4629fc4bb7d4195d237733f3a7c29ab2d5de811f708b6965db4bb6e3ac19
Certificate Info
Issuer Sectigo Limited
Subject cdn4ads.com
Fingerprint 68:D8:58:BD:34:E8:B3:D8:CA:10:F2:9A:EA:B3:4E:27:B5:5C:87:B1
Validity Mon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
GET /zaucwfenrhhnat?GmwLFouU=BQLyAAAAAAAACZUAAsMg6ekrao-1m2AQL0AGTTrBGcvci9yQtJtnRaIYlmWSBjkLFW6ABkH6wdT-8g4vuqBghT3GHM96akGoH7fkueyxMkMiV_ypCZ_p1brXBwhHo1Rt0VTeS2JPLt9y0idnowt8OhFL5V6tZdxJiNCzGQwfcHya_PleaYSHYMRxBDP0uV9Yd5uo0ornxE0sKuLkVmg34Ul_-gfveESttl9xAPVgmVjuB2gNpJXNO9koJDsLPI61dl7Cjy8UvAJQyRp48hLTjaLYkmvjYcAV34MwCLmJPragrkgdI7r0vaqY44tC0MG6p1yLvt0fXH05qotA-_ziu5hFvry3MaJN7GJJ-0EK0oizpaZS3AZ4G2l3f5zWMKv-cVJVneprgFwWuqEZyRQyR3hkvRWwqWZtDtp41Y1s1BTHC0eERPcWvCqYhZwTAahTHq5QwMGNx7Hqobd6iHHIDmkg8ZxaCAtF5noOnd-ZX631H_FcPMW0Eu3ksznP6zb0M8DJI8-6XsvuNOg5IPvlUZfLsE9ofhMsgAKGRrS8-ybaxo5Udb4wyxIPUkQyVDQyagAlxxpE9o6CgQRAZ_yePpEyIosDNU9oZl7UZwc5nZiAZabWYd3srx25qogv20UFrx6NE5FFXNyCerG0rmbe9jbaBRR8cg45KDIV10xD96l0sQZxqMBfsKwr9QpvdQQFx1WywemSUv0lzNMgTpNIs5FLKtgeJXnSBYH7gNddwru0YIna1gsLGB1Y6f4n43px3rnIkOCuRL-OKizKFBUXNpafgnslaxnyJ5DOfjkBIt9yhPUjXLHB3vVCwcZxgKpMuDPPxt7nFh_Ec97VgJPROd8SowFOFdmh_E0ip_ADbYJPwDQbVD0HhCOjovgHsTt3nwYBo-IT0b3Wh893SnxYR38yfNBQxKP-f70iCNhUtc8IHzGbSywVjzx8ApFq8G1kWJNuka0OaPXMEWQb4CFExnTeM_Gj4zgmbK3CqJWo_PpnJxTDM1pC1B5iA-eD&grBezUaH=4&OrdFKSUm=2035086&NKALBJcM=&hFwkHSKy=0,0&eGKcEvyA=&yflmJTSo=https%3A%2F%2Flightdl.xyz%2F%3F__cf_chl_tk%3D1A44OrwEkxLvRB2zxVX99yfGbt2fE0dF4pSnwB0UZd0-1708113415-0.0-3410&XFbMlxnu=1280,1024,1,1280,1024,0 HTTP/1.1
Host: cdn4ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
asf: 6
cache-control: private, no-store, no-cache, must-revalidate, no-transform, max-age=0
pragma: no-cache
content-type: application/javascript; charset=utf-8
set-cookie: PP_CV=yes; expires=Fri, 16-Feb-2024 20:57:07 GMT; Max-Age=3600
fraudcheck=7266a8bda9677f4067c13f62c1826466; expires=Sun, 17-Mar-2024 19:57:07 GMT; Max-Age=2592000; path=/; domain=.popads.net
PopAds_CF_Pass=1; expires=Sat, 17-Feb-2024 01:57:07 GMT; Max-Age=21600
link: <https://www.spartafit.com>;rel=preconnect
content-length: 1035
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Feb 2024 19:57:07 GMT
X-Firefox-Spdy: h2
GET www.spartafit.com/favicon.ico
200 OK 1.4 kB URL
www.spartafit.com/favicon.ico
IP / ASN
173.254.30.247
#46606 UNIFIEDLAYER-AS-1
Requested by moz-nullprincipal:{3e785ab3-0255-43eb-b499-d1c7beccf380}?https://lightdl.xyz
Resource Info
File type MS Windows icon resource - 1 icon, 16x16
First Seen 2023-08-12
Last Seen 2024-08-21
Times Seen 66
Size 1.4 kB (1406 bytes)
MD5 a030de16a99e45adfb6178620cf720b3
SHA1 4cde21a027464c9d1f0f75793ea746ae9b35162e
SHA256 f240f3be5d9c34452c698e471d71d5cb419a169c2096dd09803622644bed8e28
Certificate Info
Issuer Let's Encrypt
Subject webmail.spartafit.com
Fingerprint 29:2D:86:0D:2C:45:2B:30:94:D4:E6:87:58:32:0C:D7:20:45:BC:3E
Validity Tue, 16 Jan 2024 04:11:51 GMT - Mon, 15 Apr 2024 04:11:50 GMT
GET /favicon.ico HTTP/1.1
Host: www.spartafit.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Tue, 11 Nov 2008 17:59:52 GMT
accept-ranges: bytes
content-length: 1406
cache-control: max-age=604800
expires: Fri, 23 Feb 2024 19:57:08 GMT
content-type: image/x-icon
date: Fri, 16 Feb 2024 19:57:08 GMT
server: Apache
X-Firefox-Spdy: h2
GET c.adsco.re/
200 OK 82 kB IP / ASN
104.17.167.186
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (689)
First Seen 2024-02-14
Last Seen 2024-08-20
Times Seen 1206
Size 82 kB (82400 bytes)
MD5 a0b475c65fed312aba8d7c43a0cbc928
SHA1 3fdd052b41c37318e44084be4f92d42fba4ded61
SHA256 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
Certificate Info
Issuer Sectigo Limited
Subject *.adsco.re
Fingerprint 40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
Validity Sat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:05 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Mon, 18 Mar 2024 19:57:05 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 183794
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b8f49311c0a-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-cloud-library/assets/js/tdbMenu.js?ver=9e24474348f1755e0ebe145b87be714d
200 OK 11 kB URL
lightdl.xyz/wp-content/plugins/td-cloud-library/assets/js/tdbMenu.js?ver=9e24474348f1755e0ebe145b87be714d
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (10758), with no line terminators
First Seen 2023-12-22
Last Seen 2025-07-14
Times Seen 530
Size 11 kB (10758 bytes)
MD5 f6e41c15ff8a7c8f22499f506572460e
SHA1 dd0e01bafaedec16b5f7f2bdef888ccc5b1625ee
SHA256 f1c62d99354195470e5b00ea8c9590bfc5810e78bf2e16fd72ae60785c19e0be
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-cloud-library/assets/js/tdbMenu.js?ver=9e24474348f1755e0ebe145b87be714d HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=10781
last-modified: Sat, 10 Feb 2024 14:16:36 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hxugCEQOmf5MDuRjk1tMONkEMGmeL5QrPJwijsSY2ZVk9m6eCl1dr%2Fujw7k2Yln%2BHVscMt9F38%2BaNwFY2QGkidiBUfvXBBn%2FImcArI66NlGm39AIqRQWHbVgteUJUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ef82eb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET pixel.wp.com/g.gif?v=ext&blog=215547667&post=9785&tz=0&srv=lightdl.xyz&j=1%3A12.1&host=lightdl.xyz&ref=https%3A%2F%2Flightdl.xyz%2F%3F__cf_chl_tk%3D1A44OrwEkxLvRB2zxVX99yfGbt2fE0dF4pSnwB0UZd0-1708113415-0.0-3410&fcp=2715&rand=0.4086379183727057
200 OK 50 B URL
pixel.wp.com/g.gif?v=ext&blog=215547667&post=9785&tz=0&srv=lightdl.xyz&j=1%3A12.1&host=lightdl.xyz&ref=https%3A%2F%2Flightdl.xyz%2F%3F__cf_chl_tk%3D1A44OrwEkxLvRB2zxVX99yfGbt2fE0dF4pSnwB0UZd0-1708113415-0.0-3410&fcp=2715&rand=0.4086379183727057
IP / ASN
192.0.76.3
#2635 AUTOMATTIC
Requested by https://lightdl.xyz/
Resource Info
File type GIF image data, version 89a, 6 x 5
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 26958
Size 50 B (50 bytes)
MD5 e4d673a55c5656f19ef81563fb10884c
SHA1 1f2d8ed221d39329251ad3a6ff1edb20b7219443
SHA256 f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
Certificate Info
Issuer Sectigo Limited
Subject *.wp.com
Fingerprint 5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
Validity Tue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
GET /g.gif?v=ext&blog=215547667&post=9785&tz=0&srv=lightdl.xyz&j=1%3A12.1&host=lightdl.xyz&ref=https%3A%2F%2Flightdl.xyz%2F%3F__cf_chl_tk%3D1A44OrwEkxLvRB2zxVX99yfGbt2fE0dF4pSnwB0UZd0-1708113415-0.0-3410&fcp=2715&rand=0.4086379183727057 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=9e24474348f1755e0ebe145b87be714d
200 OK 43 kB URL
lightdl.xyz/wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=9e24474348f1755e0ebe145b87be714d
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (43167), with no line terminators
First Seen 2023-10-29
Last Seen 2025-02-07
Times Seen 569
Size 43 kB (43167 bytes)
MD5 b71962ba842ec8fe80423633c446a102
SHA1 c3a32491c7c95d151c54149de77cf9c84f62cc27
SHA256 afcc663536de33d814d9d34e095d967c24ce211d814f8957ff9ff313bea37693
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=9e24474348f1755e0ebe145b87be714d HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=48163
last-modified: Sat, 10 Feb 2024 14:16:36 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UcUO4XZSYUuHJBDxvB5X0QAzpX%2BkjUGHLjCZVIM1NspMtbGkOFykKNdYe9qJ1bG1WJIIJXiLTfkL90fjsxfI1BbuSYlREKwsyDDbowiZ7IJZVHArtLOUgr9DpT9HJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7dfefab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET stats.wp.com/e-202407.js
200 OK 7.3 kB URL
stats.wp.com/e-202407.js
IP / ASN
192.0.76.3
#2635 AUTOMATTIC
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (7504), with no line terminators
First Seen 2024-01-08
Last Seen 2025-03-06
Times Seen 1652
Size 7.3 kB (7329 bytes)
MD5 43bf680c0caba9b62f1c46e128d40360
SHA1 e8950271ef6af3759a7429b45a7e583e6e24e305
SHA256 21ef883e41d9b0fc02bd11801d9823daf93a2b294a6f05b6080bad1b689facab
Certificate Info
Issuer Sectigo Limited
Subject *.wp.com
Fingerprint 5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
Validity Tue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
GET /e-202407.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/14377-1704402356443.5398
content-encoding: br
expires: Mon, 10 Feb 2025 15:57:12 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/plugins/td-cloud-library/assets/js/tdbSearch.js?ver=9e24474348f1755e0ebe145b87be714d
200 OK 5.9 kB URL
lightdl.xyz/wp-content/plugins/td-cloud-library/assets/js/tdbSearch.js?ver=9e24474348f1755e0ebe145b87be714d
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (6048), with no line terminators
First Seen 2023-10-20
Last Seen 2025-02-07
Times Seen 42
Size 5.9 kB (5933 bytes)
MD5 3e38ee17076230da165d2682077da444
SHA1 a62a0eee02b5842c3bb89704dab46d1c147b0a09
SHA256 709de0dd11b75aab387a255d67ce303879909e06464641d4534e50331d9ae8d6
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-cloud-library/assets/js/tdbSearch.js?ver=9e24474348f1755e0ebe145b87be714d HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=5945
last-modified: Sat, 10 Feb 2024 14:16:36 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mWWllOCWSsoav23Yf02MrjJCnTcJSJaPYYnNbo8Hrt2O6hk86PbzLIdhu02tYSeOjVujBGR4m754XjMBR1KWzq8hvKaHLQIlvZEkprP1jioU5sMepR8pTVzFhTDWcQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ef832b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/uploads/2022/04/Tokyo-Vice-2022.png
200 OK 904 kB URL
lightdl.xyz/wp-content/uploads/2022/04/Tokyo-Vice-2022.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 567 x 832, 8-bit/color RGBA, non-interlaced
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 904 kB (903651 bytes)
MD5 1d3af24bfedc86baf9fe1f6aabc5c3b2
SHA1 0a00f01f6b7c039aede077ac61c70d226281a880
SHA256 38738c6441842476103191b331704b94aeaf2e72e1dc9dc3427afce17f5f0c1f
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2022/04/Tokyo-Vice-2022.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=; pp_main_285df780ad9f1ead33467ba105295e80=1; sb_main_fa0c46a46b8bf033ac65bc5cabeebf34=1; sb_count_fa0c46a46b8bf033ac65bc5cabeebf34=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=87fea89a-52e2-45b5-a3fa-b91589dc504a%3A3%3A1; a=XkTMPExSogK9aONmkvNCUVtRoWVi0Oww; pbpr0tpuw4isk85t8yg3jb2lj5vqf=lyricalattorneyexplorer.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: image/png
content-length: 903651
last-modified: Mon, 30 May 2022 00:25:31 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kl7yq192h0ME2TW3IUbYuEF9Y9cUWsb8nP%2Bh6GY1CYmV3a2DgFZv3K4S7jzFc0u8KpOJ04QXnzHjD9mK4LNz4zDn6%2Bz6JI70FBEzS3WjgY3mJ0JLX7scgEK2FQRQRw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b91089db50f-OSL
alt-svc: h3=":443"; ma=86400
GET cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css
200 OK 4.6 kB URL
cdn.creative-bars1.com/sb/chat/mob/ssp/1/css/style.css
IP / ASN
172.64.131.3
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (4886), with no line terminators
First Seen 2023-05-18
Last Seen 2024-12-15
Times Seen 505
Size 4.6 kB (4617 bytes)
MD5 1230b98f01a549572edcd2bf3bdcb4ad
SHA1 ac87a2a752ffb8b5167566183fddd531d7971be9
SHA256 9a2954fc66ebbb9adf18c2ea4403d2a0a5dedf2928f9905e1fc656f5dc1b208d
Certificate Info
Issuer Google Trust Services LLC
Subject creative-bars1.com
Fingerprint 10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22
Validity Fri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
GET /sb/chat/mob/ssp/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: text/css
last-modified: Mon, 21 Feb 2022 08:25:04 GMT
etag: W/"62134c60-1209"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 87791
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9yeiUrRJE1BYpt7DZAJDmDi7tPKV0CKHMxQ3UrcF7X%2BH%2Fqffc%2FLdDy656HLmBXApAR9KLhXjShdVJhCqnPBtdyjr2TqeBzEHMboIepodhem0yyJ0NuZvAl5bpIoh9q4ItR10tp9ULuQV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b90edba4189-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST adsco.re/p
200 OK 1.0 kB IP / ASN
162.252.214.5
#53334 TUT-AS
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (1020), with no line terminators
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 1.0 kB (1020 bytes)
MD5 9477b24c4953ddcbb96ba4435d194930
SHA1 c77ef4fe2275d1aeb2679e6b00210641843084d1
SHA256 8ebfd5eebb01e3c12ff940384e41a7fc9e72f56584d5ea9298bbe94921e772ee
Certificate Info
Issuer Sectigo Limited
Subject *.adsco.re
Fingerprint 40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
Validity Sat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1765
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Feb 2024 19:57:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://lightdl.xyz
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
GET cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js
200 OK 90 kB URL
cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/jquery.min.js
IP / ASN
172.64.131.3
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (65451)
First Seen 2023-03-07
Last Seen 2025-08-02
Times Seen 2980
Size 90 kB (89492 bytes)
MD5 561acb3e541133bbdd2c0c19f8ee35a1
SHA1 ffd1353cf3f77d25f801c84d8208613eb0d3d548
SHA256 9fde6da568db31801e29243a903bf24f342256b41e3c01e7d018ff7c566ce7fc
Certificate Info
Issuer Google Trust Services LLC
Subject creative-bars1.com
Fingerprint 10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22
Validity Fri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
GET /sb/chat/mob/ssp/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:09 GMT
etag: W/"62134c65-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 197876
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yGQPr1mjZ7e1opP%2B5By0T%2FOuR52UhlJg5EmFQTuvpADUYns9%2Bm%2BFmm7sFXo7XvWxZmW8WRLzbHthkLq9AHcL0L8HV3tTywL6B5kNtYxvYJe%2BlmzVVesWESjFPeOW8R%2B7c%2FUla9CWVYJw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b92d80e4189-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js
200 OK 382 B URL
cdn.creative-bars1.com/sb/chat/mob/ssp/1/js/script.js
IP / ASN
172.64.131.3
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (411), with no line terminators
First Seen 2023-05-18
Last Seen 2024-12-13
Times Seen 599
Size 382 B (382 bytes)
MD5 9ffae600059bf4e6adb35ebb274ae385
SHA1 6130e466c04551baa2a5d650e6bd5a87daba73a7
SHA256 a7d15e051fb3d3c31494683306bb7752478354894825b110d26d333cbeaaeb39
Certificate Info
Issuer Google Trust Services LLC
Subject creative-bars1.com
Fingerprint 10:69:48:04:3B:B6:11:3A:D4:D0:E1:5F:B2:F9:B4:75:BB:EE:39:22
Validity Fri, 16 Feb 2024 15:25:59 GMT - Thu, 16 May 2024 15:25:58 GMT
GET /sb/chat/mob/ssp/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:06 GMT
content-type: application/javascript
last-modified: Mon, 21 Feb 2022 08:25:08 GMT
etag: W/"62134c64-17e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 87791
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=esLUUzOp5TI1mf6EQlG%2B62lVb4ZPczH1NwjXVOQsJAympX4NlnEw9YJTFMHNJCC5lsQ0w9HKF2yxKqPid6nyrmAdsgGPHrzMkPHUvEaQnhyhIZL8LreRLnsMEwR%2B7iSktEFEhiUmzKEH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b94198f4189-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
200 OK 11 kB URL
lightdl.xyz/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (11256), with no line terminators
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 24226
Size 11 kB (11256 bytes)
MD5 2b0dd7eecea03b4bdedb94ba622fdb03
SHA1 703becba85161118dd6fc66af465428ef43f561c
SHA256 b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding,User-Agent
last-modified: Tue, 29 Sep 2020 21:23:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xGoimtWqAbl%2Be5pYqetpWbDLHFAjIn1DOlGKYJFADjVFVFoV4EkiIgp8r%2F2g7egnIqGQlq%2FC3wCMWOdeC9P3qnoe10p6J5uKWCL9szc6dMY1uagNRFieNthQujVSSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7deed6b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=9e24474348f1755e0ebe145b87be714d
200 OK 30 kB URL
lightdl.xyz/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=9e24474348f1755e0ebe145b87be714d
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (1037)
First Seen 2023-11-11
Last Seen 2025-08-02
Times Seen 1168
Size 30 kB (29608 bytes)
MD5 46274bb8b2b01adb4ddec66747e81be4
SHA1 1f2512ecd0a9dc53097c7da53c7451d8447f6f7b
SHA256 119976944646a79019ce03beff913584eb2f12e344b1e549c58a0da61fb1e6c7
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=9e24474348f1755e0ebe145b87be714d HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
vary: Accept-Encoding, Accept-Encoding,User-Agent
last-modified: Sat, 10 Feb 2024 14:16:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qVUWxMQp99H9gsuGzdPqepBvaF3BCj5m7cwe0VEBQdowMTsA8%2BR7bsIkdHplIMYM0mnD1xzjfKhSS7UfycK%2F944tjPUf7bDI0xFiEXUJ0IL86PVCOXRmTpQVPdYpRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ef823b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdPostImages.js?ver=12.6.4
200 OK 2.4 kB URL
lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdPostImages.js?ver=12.6.4
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (2576), with no line terminators
First Seen 2023-09-22
Last Seen 2025-02-07
Times Seen 386
Size 2.4 kB (2443 bytes)
MD5 f252713cb4b4c74045e169b9c3be9ca0
SHA1 8a40e82bc4a04307f511037cd9c67064b12c8fb4
SHA256 f2b009fef23926d87a0db68c63846d142c8451bec08e2d7e3bdb1fcdc16f7cb0
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tdPostImages.js?ver=12.6.4 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=2449
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lahJHWFm9rMvfL1pyx80cosU3iBrc1gQIz7ZqbnR5O3fpM3E1mFBW3zuJDeG1u4leMn0jyQ5SYx2N5Rg8%2FCutN916ugWsgOAF6hi0olQEEhwLvdTN6pFK4iik6tAaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ee808b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
POST lightdl.xyz/cdn-cgi/challenge-platform/h/g/jsd/r/85685b736857b50f
200 OK 0 B URL
lightdl.xyz/cdn-cgi/challenge-platform/h/g/jsd/r/85685b736857b50f
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
POST /cdn-cgi/challenge-platform/h/g/jsd/r/85685b736857b50f HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12150
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:09 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_clearance=88aKIHYK5Gb3KwrCMlQABEPE_IZ1XX5FNaLJeR65lcE-1708113429-1.0-AfACHcrALRS3+mO0m0pI+/uccOy09u6CUusuE/VYcq77RoRxfc8cjpX+sHKxTPZHY597+Q7g6G0sGkO1JdwJSqc=; path=/; expires=Sat, 15-Feb-25 19:57:09 GMT; domain=.lightdl.xyz; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xvJOL%2Fvuaw0qk0udSzq6AeWOx6zXUIh4AffaDhpxyyJFDV0GJ46wVPJNoT0lezGpkt2itnSRdbpU6e%2FA59LtZg5T%2FyoQ2q7mlKn2EZ9dXwp1DkW0d2k6CG7bSqHUMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b88fd48b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/themes/Newspaper/style.css?ver=12.6.4
200 OK 114 kB URL
lightdl.xyz/wp-content/themes/Newspaper/style.css?ver=12.6.4
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (65536), with no line terminators
First Seen 2023-11-23
Last Seen 2025-02-07
Times Seen 48
Size 114 kB (114297 bytes)
MD5 6050cc44c0f915f754b8ebb95c62c8b5
SHA1 8af9a25ff2a289d71d107bdc3f4bb516af1d3390
SHA256 4c8e252ca4e5d2d5e9ed4b681995105f525e35bab43539d099d4eb50ba345902
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/themes/Newspaper/style.css?ver=12.6.4 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=157014
last-modified: Sat, 10 Feb 2024 14:16:19 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qJ5jwVlz47yqWruwhBi4m6J4LAIVBYqft%2FG1Ve6vCiU3e62e7TcUoVP29Gk%2BS3sNw5%2B7DNFQDCXRXiZMurqJIc%2FIXBxH3yPLAancFFyxJM0CdG%2BEVp%2B%2BqPD3GIkDUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7deee6b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET 4.adsco.re:2087/
200 OK 45 B IP / ASN
162.252.214.5
#53334 TUT-AS
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with no line terminators
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 15334
Size 45 B (45 bytes)
MD5 5b41cb22f84f645a103acc7bfbf084ff
SHA1 bac3967b26d5ec4a0d09a580714e8219796816bd
SHA256 709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
Certificate Info
Issuer Sectigo Limited
Subject *.adsco.re
Fingerprint 40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73
Validity Sat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
GET / HTTP/1.1
Host: 4.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Feb 2024 19:57:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://lightdl.xyz
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
GET lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.6.4
200 OK 160 kB URL
lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.6.4
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (670)
First Seen 2024-02-11
Last Seen 2025-07-31
Times Seen 90
Size 160 kB (160478 bytes)
MD5 2b3a6d1c0c1cc1f4ca173aa7c1645bdb
SHA1 896718612ca0d597bac65e66dbe78563a807f9d5
SHA256 7e88c3dc7e72d5e8348aebad64e1666a2bffc1b6d98c00239d8dca4f62887bd4
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.6.4 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
vary: Accept-Encoding, Accept-Encoding,User-Agent
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i8xPYRus6J8uqPUSpr23%2BtYJOkuMxZkh4TdLJq36Y%2BoVVEHfIq8tr7yLewFBmESS6RqUjtbIdpqq2JQQj%2BgetH3bjPtZPfFWCzmhKJYeQPv3C2PBnkLi73bN8U3K6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7eeffdb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
200 OK 7.0 kB URL
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP / ASN
142.250.74.106
#15169 GOOGLE
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (7193), with no line terminators
First Seen 2024-02-10
Last Seen 2024-08-20
Times Seen 2579
Size 7.0 kB (7004 bytes)
MD5 16b49a99486594c0b42d9bd7821deb2c
SHA1 2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a
SHA256 3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21
Certificate Info
Issuer Google Trust Services LLC
Subject upload.video.google.com
Fingerprint 06:40:93:2C:C7:11:8F:E2:38:AB:FF:48:FC:7A:C5:3C:C3:FF:99:0A
Validity Mon, 29 Jan 2024 08:19:51 GMT - Mon, 22 Apr 2024 08:19:50 GMT
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Feb 2024 19:57:06 GMT
date: Fri, 16 Feb 2024 19:57:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.cdn4ads.com/kjump.min.css
200 OK 36 kB URL
www.cdn4ads.com/kjump.min.css
IP / ASN
185.76.9.22
#60068 Datacamp Limited
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (1568)
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 36 kB (36082 bytes)
MD5 48d1a7a5428f88d2ddd087f8a538d095
SHA1 f0ddcaff1b9acfca8d83354fdfcce4c0c361413f
SHA256 ad7f4a9574f6b29e0810ea96284caca0350ab9b978fa2ff902db32d03d9c4e15
Certificate Info
Issuer Let's Encrypt
Subject 1037973644.rsc.cdn77.org
Fingerprint 1F:5E:86:EF:90:F1:A2:65:73:21:DF:85:05:70:C0:D9:92:9B:29:3D
Validity Mon, 11 Dec 2023 22:56:50 GMT - Sun, 10 Mar 2024 22:56:49 GMT
GET /kjump.min.css HTTP/1.1
Host: www.cdn4ads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: application/x-javascript
vary: Accept-Encoding, Origin
expires: Mon, 19 Feb 2024 07:33:04 GMT
access-control-allow-origin: https://lightdl.xyz
link: <https://cdn4ads.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwwBuUwJFAHXpccFAAwBuUwKEwH35SsAAAwBisclwQH31gAAAA
x-77-nzt-ray: af585630b985fc4910becf651f63d702
x-accel-expires: @1708327984
x-accel-date: 1707734635
x-77-cache: HIT
x-77-age: 390240
content-encoding: gzip
x-cache-lb: HIT
x-age-lb: 11237
server: CDN77-Turbo
x-cache: HIT
x-age: 378789
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/uploads/2022/05/cropped-favicon-image.g-32x32.png
200 OK 1.4 kB URL
lightdl.xyz/wp-content/uploads/2022/05/cropped-favicon-image.g-32x32.png
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
First Seen 2023-06-30
Last Seen 2024-08-20
Times Seen 5
Size 1.4 kB (1446 bytes)
MD5 2f98a8b95fe76359af4c7b6c7d6831a1
SHA1 9d40ba52fb59292c18b0987371e0b545acdeb70c
SHA256 0371940458fdf7da96a86b15f5f0c744c20cc299a2a548eff0c8ee9574e04462
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/uploads/2022/05/cropped-favicon-image.g-32x32.png HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: image/png
content-length: 1446
last-modified: Wed, 11 May 2022 17:26:55 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1350
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fNBiQkRFWxl4mJoijf9TsYbwMtjdyEhACJIc02iATLitqSaUil4vGlyTCVs3FgdnBSCdpw%2B%2BrofJZxL%2BQVP7%2B5s2OKBPu0G0zaoRlc3TIPH0Syn%2BQ0onIMwmXdrBxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 85685b88acd2b50f-OSL
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdAjaxSearch.js?ver=12.6.4
200 OK 6.1 kB URL
lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdAjaxSearch.js?ver=12.6.4
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (6256), with no line terminators
First Seen 2023-10-20
Last Seen 2025-02-07
Times Seen 70
Size 6.1 kB (6132 bytes)
MD5 a478a78b27fa96dd29deabca430bec10
SHA1 c16033521e86401b5aa081942b4258885c9bf465
SHA256 1b94161da446a60dd3623eb510aa251e61b2e2bf8d6b3317df6f0eb9273d8c6c
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tdAjaxSearch.js?ver=12.6.4 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=6145
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ZEnlF5zbpg8QNbnRu2WiaFJWmqcKKCsyAAUk8zGkT2vyivXkPiQqboLtFIQVqooV8Uj7Lj1Yx74o1YQ%2B7lYhrnePFEwBRm7%2BtF%2BcfPS6ZDd4PsbJatgLbdQ0PGDIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ef830b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdModalPostImages.js?ver=12.6.4
200 OK 8.9 kB URL
lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdModalPostImages.js?ver=12.6.4
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (9124), with no line terminators
First Seen 2023-09-22
Last Seen 2024-12-20
Times Seen 409
Size 8.9 kB (8874 bytes)
MD5 44785af421847a7ee93a07b1d1d5477e
SHA1 ea35178a4ae8aab905c8e59f57baa9d1e82e486c
SHA256 8438c10dc0700da15e9b21a1ed90650ab3f5a30cd4e81e61cfa1d50b06fc2dc3
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tdModalPostImages.js?ver=12.6.4 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=8892
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=020Q5TQin5DgzWU3O0X%2Fv6YDVMLI7Xa2IO4kkqO129mIms2hqNqPB%2FaVSR5%2FSZzZvRyel8E9QgVnJu7CnWLjuAGG6JAqJj8XKDn3Gi88pr5XCLnsJYiF7ECxXnSePg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ee818b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=963059d7cceb10dc9b9adeec7fadb27d
200 OK 38 kB URL
lightdl.xyz/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=963059d7cceb10dc9b9adeec7fadb27d
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (38499), with no line terminators
First Seen 2023-10-29
Last Seen 2025-02-07
Times Seen 63
Size 38 kB (38499 bytes)
MD5 3d3b0373078c30bbd31f9ecdd5dddbae
SHA1 2aab17d00757ee262cc8673d992b81a6e22cd383
SHA256 4834e9f1e9d73b8d2baf08fd6294f6cb4a360ad0cb7b91ea707dffa4866be240
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=963059d7cceb10dc9b9adeec7fadb27d HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=38728
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p9cO3mk6KBkBHfz1QajjlC4Zt8P8IWb829FzPOSma6GL0pJgAvrz4bkYxw158QEWfIaz3Qw%2FtlEqS7U%2F7SmgFZFF1LcVk%2BvTcFhBIj1ZQ3Gmu1p%2B4%2BHQW5Qf32bOGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7deedfb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP / ASN
142.250.74.67
#15169 GOOGLE
Requested by https://lightdl.xyz/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-01
Times Seen 60853
Size 16 kB (15920 bytes)
MD5 3a44e06eb954b96aa043227f3534189d
SHA1 23cef6993ddb2b2979e8e7647fc3763694e2ba7d
SHA256 b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
Certificate Info
Issuer Google Trust Services LLC
Subject *.gstatic.com
Fingerprint F1:41:DD:4F:A6:9F:7B:AE:AE:AF:78:BD:08:F8:C8:40:3C:C4:8C:93
Validity Mon, 29 Jan 2024 08:19:40 GMT - Mon, 22 Apr 2024 08:19:39 GMT
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Feb 2024 03:59:11 GMT
expires: Fri, 14 Feb 2025 03:59:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 143873
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET lightdl.xyz/wp-content/plugins/jetpack/css/jetpack.css?ver=12.1
200 OK 100 kB URL
lightdl.xyz/wp-content/plugins/jetpack/css/jetpack.css?ver=12.1
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 100 kB (99643 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=12.1 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=99690
last-modified: Wed, 10 May 2023 02:20:39 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YsJo50Zz56h0Y58r4cXctmIqpql8zXn06d7CyIUfjVGDpifsXS9EXm1%2FIMvhAXAGmYNzcI%2B%2BDu%2B1RDNQ4mT%2FqH8ru71Knxu8Ucfa2HJHX1a%2F97ie31DpSvHTMdmtGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7dfefbb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
200 OK 88 kB URL
lightdl.xyz/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (65447)
First Seen 2023-11-03
Last Seen 2025-08-02
Times Seen 153878
Size 88 kB (87553 bytes)
MD5 826eb77e86b02ab7724fe3d0141ff87c
SHA1 79cd3587d565afe290076a8d36c31c305a573d18
SHA256 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
vary: Accept-Encoding, Accept-Encoding,User-Agent
last-modified: Wed, 27 Dec 2023 04:46:26 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NrhK73yrT6pF78UO%2Fy0lh89bgAjdEJ2ofpV%2B747ojzzBs4zk9eGIioEFfMQJBTCtpJQYSdy%2FyDRGgQubkjOqvMHAcCWTwzbu%2BpmUUIKARM9xcuCrzjpu%2FA%2B4hv6JYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7dfeffb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdInfiniteLoader.js?ver=12.6.4
200 OK 1.9 kB URL
lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdInfiniteLoader.js?ver=12.6.4
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (1893), with no line terminators
First Seen 2023-09-22
Last Seen 2024-08-21
Times Seen 62
Size 1.9 kB (1869 bytes)
MD5 ae2ba46f8199eba2d07fb0edba0e575a
SHA1 d9d3f436d7ecd756578472437b200d856d625392
SHA256 468207377cc178d941f0d6193d937091830ae9434c8c7bab119d5d4458c468ad
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tdInfiniteLoader.js?ver=12.6.4 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=1874
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R2wf27Nk5Fo3v0GMPOcSG7zReusPEQCp3266BmxUJnSE0TaeZuWkviTwSCD8D9rjhNA1e9nWvu6%2BEqCsAZwxCKyHDENUjvapGm3W5vWePR2v9qWMZ88%2BdZvF2rrnsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ef834b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/themes/Newspaper/images/icons/newspaper.woff?23
200 OK 34 kB URL
lightdl.xyz/wp-content/themes/Newspaper/images/icons/newspaper.woff?23
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type Web Open Font Format, TrueType, length 33904, version 0.0
First Seen 2023-11-11
Last Seen 2025-08-02
Times Seen 1742
Size 34 kB (33904 bytes)
MD5 f69149ebacb6945516dc3461078b40fd
SHA1 746e7e09079d98ae39d3e72284c89c03a3a4797b
SHA256 d3bdf8bf7932544a7776521d75c5e5d03223a4997fdefdb0bfd4b80021f58d23
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/themes/Newspaper/images/icons/newspaper.woff?23 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/wp-content/themes/Newspaper/style.css?ver=12.6.4
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: font/woff
content-length: 33904
last-modified: Sat, 10 Feb 2024 14:16:19 GMT
vary: Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zmirTN8kfEItS8uzAYBBCiYe3ccQ0wiCBr8xrF0m408K%2B0jzLMC7bX0ZCl0ea3UOnGMpf%2B3QOlFh%2F%2B0ZyWaNbiQAvQuJasb7kj4NDVBbM20qKoIwASlmTitL5pjeDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b83fe69b50f-OSL
alt-svc: h3=":443"; ma=86400
GET fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
200 OK 16 kB URL
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP / ASN
142.250.74.67
#15169 GOOGLE
Requested by https://lightdl.xyz/
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0
First Seen 2023-04-05
Last Seen 2025-08-02
Times Seen 27954
Size 16 kB (15740 bytes)
MD5 b9c29351c46f3e8c8631c4002457f48a
SHA1 e57e59c5780995ff2937ab2b511a769212974a87
SHA256 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
Certificate Info
Issuer Google Trust Services LLC
Subject *.gstatic.com
Fingerprint F1:41:DD:4F:A6:9F:7B:AE:AE:AF:78:BD:08:F8:C8:40:3C:C4:8C:93
Validity Mon, 29 Jan 2024 08:19:40 GMT - Mon, 22 Apr 2024 08:19:39 GMT
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lightdl.xyz
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Feb 2024 21:36:53 GMT
expires: Thu, 13 Feb 2025 21:36:53 GMT
cache-control: public, max-age=31536000
age: 166811
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET lightdl.xyz/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 7.8 kB URL
lightdl.xyz/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-02
Times Seen 5606696
Size 7.8 kB (7835 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Fri, 16 Feb 2024 19:57:04 GMT
access-control-allow-origin: *
cache-control: max-age=300, public
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/16c3caa4cd49/main.js
vary: accept-encoding
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XGMWsMm3t8Oj4ne12tieO0oKpI7pf5YPqYpCJm2cLptEPo6Gysix9PDIQQQ6EYQTFZLUjH%2FUZWrOls6jXzg1KbEMfJLNgVp0m3gYEoPa7QqErxG5T01KJJoc4Ix7Nw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b86facbb50f-OSL
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-includes/js/comment-reply.min.js?ver=6.4.3
200 OK 3.0 kB URL
lightdl.xyz/wp-includes/js/comment-reply.min.js?ver=6.4.3
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type ASCII text, with very long lines (3056), with no line terminators
First Seen 2023-04-05
Last Seen 2025-04-06
Times Seen 7019
Size 3.0 kB (2981 bytes)
MD5 dc7f90d513295c29acc441fe114a2cab
SHA1 ca9e5069d9afc4aa13ab2e152313dfb476e842ef
SHA256 f87915c58d8c25473c726646b58d2fe0ba9a136987571e6c810aba3c67b4f74c
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-includes/js/comment-reply.min.js?ver=6.4.3 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
vary: Accept-Encoding, Accept-Encoding,User-Agent
last-modified: Fri, 12 Aug 2022 22:48:20 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rkmlUenYqzPvhytmZ75LZamj5%2Be9QjE27N30f4YoPR8dimH8Efk5Kl5rHrzFm%2Bry93RVpKdyBjoGC0WqYhVLgH4cDN2gjAxcka2z6jkvI%2FkHzmbWXW%2FRRNxpcWl3aQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ee81ab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdLoadingBox.js?ver=12.6.4
200 OK 2.7 kB URL
lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdLoadingBox.js?ver=12.6.4
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (2744), with no line terminators
First Seen 2023-09-22
Last Seen 2025-01-25
Times Seen 56
Size 2.7 kB (2665 bytes)
MD5 4b58033778cd00908c66d8c65417dccf
SHA1 7e7402e615fd8218d405fb130a5f67767f1e21f4
SHA256 ad34f48a3ad97cb3d8d0d67ebc4ac0d96e5a7fabd3b7148065f6668d06d454a2
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tdLoadingBox.js?ver=12.6.4 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=2670
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gvzktjl02KgP65D8ull%2BsvrI2eRz2Hcf2G9fu1Qh9OBtqKDlwijRvjt3OEOpvx%2FnKQ9tZ6De13BIt%2BkIqOcBZnZEtGF4m4tNxzTqrvVPTQHnMJLyPYHt2hy1OcNM5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ef825b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdSmartSidebar.js?ver=12.6.4
200 OK 9.7 kB URL
lightdl.xyz/wp-content/plugins/td-composer/legacy/Newspaper/js/tdSmartSidebar.js?ver=12.6.4
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (9910), with no line terminators
First Seen 2023-11-26
Last Seen 2024-08-20
Times Seen 32
Size 9.7 kB (9696 bytes)
MD5 4311f3cda8a782f3811c73f412d6a82c
SHA1 227fda8466db7d00e0c90f0b14575c13d6851db2
SHA256 6500b870e40f6ff305a83d01b12e5d32222a1ad63fb4cb5d41d4ab0f89041852
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tdSmartSidebar.js?ver=12.6.4 HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://lightdl.xyz/
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:03 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=9716
last-modified: Sat, 10 Feb 2024 14:16:28 GMT
vary: Accept-Encoding, Accept-Encoding,User-Agent
cache-control: max-age=14400
cf-cache-status: HIT
age: 5324
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D8XyNMqi1rRMDQKQqbPQQzArULGxCFOQ%2B8cW2%2BEnyCdRrKL%2FDKAhwblBPJLXLWpbf3auzab3%2Bz8K1FVr3LiMf1aC8BrdUfsT9s6ReTPb%2BYKpT6wXs7DWjI2ntcLPpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b7ef835b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
GET lightdl.xyz/cdn-cgi/challenge-platform/h/g/scripts/jsd/16c3caa4cd49/main.js
200 OK 7.8 kB URL
lightdl.xyz/cdn-cgi/challenge-platform/h/g/scripts/jsd/16c3caa4cd49/main.js
IP / ASN
104.21.35.46
#13335 CLOUDFLARENET
Requested by https://lightdl.xyz/
Resource Info
File type JavaScript source, ASCII text, with very long lines (7835), with no line terminators
First Seen 2024-08-20
Last Seen 2024-08-20
Times Seen 1
Size 7.8 kB (7835 bytes)
MD5 d0503d0dbebaa202081272124c7d5015
SHA1 5e10b913573c60d09000212427b2f0ec831d1cb2
SHA256 f6263ffd2b51326a0d2a63cc7acf5a561d6cd021710a2da40b44b4722096558c
Certificate Info
Issuer Google Trust Services LLC
Subject lightdl.xyz
Fingerprint 5D:FC:B6:9A:2C:A8:E4:6C:7B:F5:B2:ED:9A:C2:5F:F4:15:78:BF:01
Validity Tue, 19 Dec 2023 16:34:42 GMT - Mon, 18 Mar 2024 16:34:41 GMT
GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/16c3caa4cd49/main.js HTTP/1.1
Host: lightdl.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=KdpwavsuwsDpzbR_16pP6WopSREhkhLnJ_d8X4CNlew-1708113415-1.0-ARzpsAqnaQykZlbcq/0ahwVNBEX7Lfaq3fQZWDY6fTP8m2goGI6XNmEyfAg+4GRl9L0CscHIrHuqMZd/qB2GB6E=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 16 Feb 2024 19:57:04 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
vary: accept-encoding
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3DxnXRcAhnWib%2FSJWmVsGHBl6y1AoeUITU9xzRrZCd8tTd4oAUW%2Foo6uAzPrwqEh7sXCqMr%2F9hBTP2dhGugWL%2FeaOuTUioSNfbtsH7rG9gEFLBnPmLdJywCTvpW%2Btw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 85685b876b47b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
