r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16438
Expires: Tue, 22 Nov 2022 05:53:29 GMT
Date: Tue, 22 Nov 2022 01:19:31 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4843de3bf95411e6aa89834def44bb86
1f1882351ac63fba73a22014382f69df5e02ec96
1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4464
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:19:31 GMT
Last-Modified: Tue, 22 Nov 2022 00:05:07 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12400
Expires: Tue, 22 Nov 2022 04:46:11 GMT
Date: Tue, 22 Nov 2022 01:19:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 01:09:18 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 613
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eWokECfmokdypjbeCOiQuWQPgAFlPLN3F6DO8lod5I8z/GSTyqMGy1sp4da0ESa74yCyudgFJ0s=
x-amz-request-id: 2B53YAZS5KJ9WGKN
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 00:39:21 GMT
age: 2410
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 01:19:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
176.123.6.125301 Moved Permanently 0 B URL HTTP/1.1 leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
IP 176.123.6.125:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aa35cf5447f0a4f4a157b3cc772924d9/ HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 22 Nov 2022 01:19:31 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
set-cookie: PHPSESSID=eaaa2461f89b047e18f901ea25850016; path=/; secure; HttpOnly
pragma: no-cache
expires: Tue, 22 Nov 2022 02:19:31 GMT
cache-control: max-age=3600
x-litespeed-tag: 774_HTTP.200,774_HTTP.301,774_HTTP.301
x-redirect-by: WordPress
location: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
x-turbo-charged-by: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 01:08:53 GMT
cache-control: public,max-age=3600
age: 638
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 6188228be7d55f79dfd9db6bf4be5c5a
d164748be8052745200532678e3ad815cb5b1b2b
22419b8afdaeca70fbf23172fb674ef41d6ba4bf396c5b4b61152a6e51681747
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 01:19:32 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 10:00:28 GMT
Expires: Mon, 28 Nov 2022 10:00:27 GMT
Etag: "d164748be8052745200532678e3ad815cb5b1b2b"
Cache-Control: max-age=549054,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76ddd6614947b4f1-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2db0ebb9efcf3be3c92f23b61de5c065
dd830565723f18a7944c26d24b0fb142d06a71a5
8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4289
Cache-Control: max-age=118731
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:19:32 GMT
Etag: "637b3fae-1d7"
Expires: Wed, 23 Nov 2022 10:18:23 GMT
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.161.231.36101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.231.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xRsXmUXq8R6Pcj+SoVFIGw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PEYPCuJ61eVgeHikmer7rchJQtA=
leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
176.123.6.125200 OK 52 kB URL HTTP/1.1 leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
IP 176.123.6.125:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash aeb7225165d6e43f87d40d4f3523afcd
3cfde3ffce427b171b158f32508bd61ac246d9a9
c75340e16d23a4f3a7aa8bc9c425b3dbfc78983dd429d351b95c727e964ea1a9
GET /aa35cf5447f0a4f4a157b3cc772924d9/ HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-litespeed-tag: 774_HTTP.200
set-cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf; path=/; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://leechpub.com/wp-json/>; rel="https://api.w.org/", <https://leechpub.com/wp-json/wp/v2/posts/39402>; rel="alternate"; type="application/json", <https://leechpub.com/?p=39402>; rel=shortlink
x-turbo-charged-by: LiteSpeed
cdn.jsdelivr.net/npm/bootstrap-icons@1.4.1/font/bootstrap-icons.css
151.101.85.229200 OK 8.8 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap-icons@1.4.1/font/bootstrap-icons.css
IP 151.101.85.229:0
Hash 5813a944575a76776931431ffde6693f
865909634bd204fb4b0c654543fabe87209bdf26
9e3f7c85a1d0099f7f50b05e7e6934129fe6d108d783d34bd599812c53be4eac
GET /npm/bootstrap-icons@1.4.1/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.4.1
x-jsd-version-type: version
etag: W/"f8b2-v7ZMVELJO4O8jF4rcNGwrm8YAaE"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 22 Nov 2022 01:19:32 GMT
age: 8457127
x-served-by: cache-fra19141-FRA, cache-bma1645-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8844
X-Firefox-Spdy: h2
leechpub.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
176.123.6.125200 OK 95 kB URL HTTP/1.1 leechpub.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 176.123.6.125:0
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:32 GMT
Content-Type: text/css
Content-Length: 94889
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:22 GMT
last-modified: Wed, 16 Nov 2022 02:34:41 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash e858ed863106a1c40dc789cf3a289385
ba1584619e5f24f58141cfd369ca1e884e6580f4
e2283ee3d1a0e16b92e200f82c3f9ca79504fcf739de08bcfe7a512942686adc
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 22 Nov 2022 01:19:32 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "104120B77DA608043F80C91E14D1410C2953DDF0"
Expires: Tue, 22 Nov 2022 12:00:00 GMT
Last-Modified: Tue, 22 Nov 2022 00:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2366
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76ddd666e927b50c-OSL
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8796b1bba5e0df458c07179adea64173
b3c3f64718de099805a200e156774ea356a08132
ae32033094ed99df37e4537b91ec3d52a8fd2f0d2f538e3c81901e1f9c29a0a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:19:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cd02dc5520fe0185d4bd148f9bbd8cfc
43ef506fb48e6157cb58358f8f35c52ab1c91e34
c4ba899700b0e09424324aa0f20bb875ced42bce09aaf188908ca723a6021446
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C4BA899700B0E09424324AA0F20BB875CED42BCE09AAF188908CA723A6021446"
Last-Modified: Mon, 21 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14880
Expires: Tue, 22 Nov 2022 05:27:32 GMT
Date: Tue, 22 Nov 2022 01:19:32 GMT
Connection: keep-alive
amygdalbrittle.com/fwyuyqDZdir7r/35371
142.91.159.150200 OK 26 B URL HTTP/1.1 amygdalbrittle.com/fwyuyqDZdir7r/35371
IP 142.91.159.150:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
Analyzer Verdict Alert fortinet Malware
GET /fwyuyqDZdir7r/35371 HTTP/1.1
Host: amygdalbrittle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://leechpub.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Wed, 23-Nov-2022 01:19:32 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Wed, 23-Nov-2022 01:19:32 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
leechpub.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
176.123.6.125200 OK 18 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
IP 176.123.6.125:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash 1ddf23fcfd1b2941c456ce01da8180a6
156ef5cc77061010e3f4123a47fa415c6391e5ff
dd18a408a35aa5d393458657eb24fb56ab754ece3f88bd78a038e5793d3f6991
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:32 GMT
Content-Type: text/css
Content-Length: 17809
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:24 GMT
last-modified: Wed, 09 Nov 2022 02:34:38 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 8796b1bba5e0df458c07179adea64173
b3c3f64718de099805a200e156774ea356a08132
ae32033094ed99df37e4537b91ec3d52a8fd2f0d2f538e3c81901e1f9c29a0a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:19:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
leechpub.com/wp-includes/css/classic-themes.min.css?ver=1
176.123.6.125200 OK 217 B URL HTTP/1.1 leechpub.com/wp-includes/css/classic-themes.min.css?ver=1
IP 176.123.6.125:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: text/css
Content-Length: 217
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:22 GMT
last-modified: Tue, 08 Nov 2022 04:08:30 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
176.123.6.125200 OK 2.7 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 176.123.6.125:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: text/css
Content-Length: 2731
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:22 GMT
last-modified: Wed, 19 Oct 2022 14:34:36 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
176.123.6.125200 OK 10 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP 176.123.6.125:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash 27a91498e22d4778e559dd13a12c6ab6
9868807cc628fab1cc5ccb6f6c53934e6e9303b4
4a25eb6972f4a513da7ead5d8c0f74832ed42b1ae5e1f13ed3ea36f0865a59c9
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: text/css
Content-Length: 10435
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:22 GMT
last-modified: Wed, 09 Nov 2022 02:34:38 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/top-bar/css/topbar_style.css?ver=6.1.1
176.123.6.125200 OK 405 B URL HTTP/1.1 leechpub.com/wp-content/plugins/top-bar/css/topbar_style.css?ver=6.1.1
IP 176.123.6.125:0
File type ASCII text, with CRLF line terminators
Hash fa1d58cc5cc2a7e6ddd23978c6ebf821
6e074074ea925ab1a31c3bb67071016d065b3642
4db9729ba08861a0bb4291ebae581a67dc5990baa93d89a05f3863033c44abf4
GET /wp-content/plugins/top-bar/css/topbar_style.css?ver=6.1.1 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: text/css
Content-Length: 405
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:22 GMT
last-modified: Fri, 09 Sep 2022 02:34:36 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
176.123.6.125200 OK 63 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
IP 176.123.6.125:0
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash 4911ee48036e51ae4980b7be957d899f
e577252607817c3fdc773123f41220c8a910d95a
a831fbad3ff846921596056c21beb9c77328927cc84403156ec0fcfa330d338a
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: text/css
Content-Length: 62783
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:24 GMT
last-modified: Wed, 09 Nov 2022 02:34:38 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
176.123.6.125200 OK 11 kB URL HTTP/1.1 leechpub.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 176.123.6.125:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 11224
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:24 GMT
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/top-bar/js/tpbr_front.min.js?ver=6.1.1
176.123.6.125200 OK 4.9 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/top-bar/js/tpbr_front.min.js?ver=6.1.1
IP 176.123.6.125:0
File type ASCII text, with very long lines (4846), with CRLF line terminators
Hash 1147e7d6a016b0623d41c7709b37d246
d1a870681dd5000a478706e7273d0f23ea89dba7
859a548b863dd42958a781bf8782e0867d3a8fc29168cc402b2e5a4d6df9e547
GET /wp-content/plugins/top-bar/js/tpbr_front.min.js?ver=6.1.1 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 4890
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:24 GMT
last-modified: Fri, 09 Sep 2022 02:34:36 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
176.123.6.125200 OK 9.9 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 176.123.6.125:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash dc74c9954b1944928eca0172c3b8c6b3
e9e00e587e0e28491b69563b4e768945ff2e0ed5
d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 9937
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:26 GMT
last-modified: Wed, 19 Oct 2022 14:34:36 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
176.123.6.125200 OK 90 kB URL HTTP/1.1 leechpub.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 176.123.6.125:0
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 89684
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:23 GMT
last-modified: Tue, 08 Nov 2022 04:08:30 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
176.123.6.125200 OK 236 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP 176.123.6.125:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size 236 kB (235926 bytes)
Hash 1f7f24d802dda3c86486d768519911d4
cd5408ee57e21aa1c6cdd92b56ecc27e5ac8e714
ed9766c9f4ce4f6851e3d8416e9bec35b425dfc2b817b7647b1db8ff1a96c731
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: text/css
Content-Length: 235926
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:22 GMT
last-modified: Wed, 09 Nov 2022 02:34:38 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
176.123.6.125200 OK 12 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 176.123.6.125:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 1f9968a7c7a2a02491393fb9d4103dae
0032c8a6a692e6f072b2cef20828449402fdd57d
f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 12310
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:26 GMT
last-modified: Wed, 19 Oct 2022 14:34:36 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
176.123.6.125200 OK 9.5 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 176.123.6.125:0
File type ASCII text, with very long lines (9111)
Hash 4ffc462852340d9e6b5b7b29276fcb71
5e04050e09e3f7d8107ef3b9aa9313be618c460e
18336635cd5e9edf2aff3ae18b67250684311c2a459457091b063dafba57d526
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 9505
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:28 GMT
last-modified: Wed, 09 Nov 2022 02:34:38 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
176.123.6.125200 OK 3.0 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP 176.123.6.125:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash f449e3e4a7c058f7c48f57e05c788fb0
e7b0c58a1a14c14a92e452cc544b312ed91fa52e
bfd861dc2936299f52adca1da826c273dced7c77ad4c33d31916ad55ab354e89
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 3029
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:28 GMT
last-modified: Wed, 09 Nov 2022 02:34:38 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/themes/Zing33_LeechPub/style.css?ver=1.1.6
176.123.6.125200 OK 116 kB URL HTTP/1.1 leechpub.com/wp-content/themes/Zing33_LeechPub/style.css?ver=1.1.6
IP 176.123.6.125:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (61747)
Size 116 kB (115549 bytes)
Hash 79f7cf2127203900438a762f3525b7a8
cf316a48b11c1c1967a7b21fbee5ec64d1e4ae84
8137ccc8afe16d3c1254258efc0a49acf8de9a28dbd923520037fb771628a000
GET /wp-content/themes/Zing33_LeechPub/style.css?ver=1.1.6 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: text/css
Content-Length: 115549
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:34 GMT
last-modified: Fri, 19 Nov 2021 18:56:18 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
176.123.6.125200 OK 1.8 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP 176.123.6.125:0
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 1834
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:30 GMT
last-modified: Wed, 09 Nov 2022 02:34:38 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
176.123.6.125200 OK 2.1 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP 176.123.6.125:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 2139
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:30 GMT
last-modified: Wed, 09 Nov 2022 02:34:38 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
176.123.6.125200 OK 2.9 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP 176.123.6.125:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 2938
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:32 GMT
last-modified: Wed, 09 Nov 2022 02:34:38 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/themes/Zing33_LeechPub/js/plugins.js?ver=1.1.6
176.123.6.125200 OK 48 kB URL HTTP/1.1 leechpub.com/wp-content/themes/Zing33_LeechPub/js/plugins.js?ver=1.1.6
IP 176.123.6.125:0
File type ASCII text, with very long lines (48342), with CRLF line terminators
Hash 7f73b951179469c321823c13903a2dd5
d41564acd421769175afde10c49754a4a415422d
20c182c225525016c8bfe0e89cfe5bd9366c6da019aaf845263c81745e5f49e1
GET /wp-content/themes/Zing33_LeechPub/js/plugins.js?ver=1.1.6 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 48356
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:34 GMT
last-modified: Thu, 07 Oct 2021 15:39:20 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:19:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
leechpub.com/wp-content/themes/Zing33_LeechPub/js/custom.js?ver=1.1.6
176.123.6.125200 OK 5.3 kB URL HTTP/1.1 leechpub.com/wp-content/themes/Zing33_LeechPub/js/custom.js?ver=1.1.6
IP 176.123.6.125:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash fefb10af7e967b719cae638edc3e3975
ea5feea6e9354b32b76b224e9fcd05a7707d0a03
f96faa64f63b80d5d0e11773e539577b960b0faadf3037cee1b9ff20faf15616
GET /wp-content/themes/Zing33_LeechPub/js/custom.js?ver=1.1.6 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 5325
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:35 GMT
last-modified: Tue, 19 Oct 2021 02:59:09 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
216.58.207.195200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leechpub.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 08:32:10 GMT
expires: Thu, 16 Nov 2023 08:32:10 GMT
cache-control: public, max-age=31536000
age: 492443
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:19:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d9afe0ae0199aff69fefbe5a55490d31
126f648ad266469bf531b5c08f7f71a973d0eeb0
105d272d89fa39de018c77cb85f97c12af739243c6bf8172e2914217bd2efec5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:19:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
216.58.207.195200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leechpub.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 19:30:59 GMT
expires: Thu, 16 Nov 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 452914
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.195200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://leechpub.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 21:48:50 GMT
expires: Thu, 16 Nov 2023 21:48:50 GMT
cache-control: public, max-age=31536000
age: 444643
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash d9afe0ae0199aff69fefbe5a55490d31
126f648ad266469bf531b5c08f7f71a973d0eeb0
105d272d89fa39de018c77cb85f97c12af739243c6bf8172e2914217bd2efec5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 01:19:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
leechpub.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
176.123.6.125200 OK 19 kB URL HTTP/1.1 leechpub.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 176.123.6.125:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 18617
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:05 GMT
last-modified: Thu, 11 Aug 2022 11:02:18 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
176.123.6.125200 OK 7.0 kB URL HTTP/1.1 leechpub.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
IP 176.123.6.125:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 456663a286a204386735fd775542a59e
0a61620b88f4ae0fa7d71e2c7a014ea2c3ab5749
a7a83e60e7e3b8cadeed69327ba498b4cd68605db6e408729fa1b946758e7501
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: text/css
Content-Length: 7043
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:34 GMT
last-modified: Wed, 09 Nov 2022 02:34:38 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/themes/Zing33_LeechPub/images/logo-m.png
176.123.6.125200 OK 20 kB URL HTTP/1.1 leechpub.com/wp-content/themes/Zing33_LeechPub/images/logo-m.png
IP 176.123.6.125:0
File type PNG image data, 320 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 2c14b457cff887ba82624cf956a08da4
a8d578d7bbaba4daa7a83a1e926f290a4ad45062
ea26210824b236303313865fd5007f62440fb4c098a167176ad9bde9484baae6
GET /wp-content/themes/Zing33_LeechPub/images/logo-m.png HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: image/png
Content-Length: 19881
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:08 GMT
last-modified: Thu, 07 Oct 2021 15:39:20 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/themes/Zing33_LeechPub/js/bootstrap.bundle.min.js?ver=1.1.6
176.123.6.125200 OK 84 kB URL HTTP/1.1 leechpub.com/wp-content/themes/Zing33_LeechPub/js/bootstrap.bundle.min.js?ver=1.1.6
IP 176.123.6.125:0
File type ASCII text, with very long lines (65299)
Hash f81d0a1705048649befc8b595e455a94
aec551e4d573463088fca7d14fb644eb389f1839
b0212543cc5a4a0a31c1b5a9d1e8973261992116b4cfde3e7dfcf33b4e81a97b
GET /wp-content/themes/Zing33_LeechPub/js/bootstrap.bundle.min.js?ver=1.1.6 HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: application/javascript
Content-Length: 84378
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:04:32 GMT
last-modified: Thu, 07 Oct 2021 15:39:20 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
leechpub.com/wp-content/themes/Zing33_LeechPub/images/47602.png
176.123.6.125200 OK 407 B URL HTTP/1.1 leechpub.com/wp-content/themes/Zing33_LeechPub/images/47602.png
IP 176.123.6.125:0
File type PNG image data, 100 x 30, 4-bit colormap, non-interlaced\012- data
Hash 5faec435de76cec22e6ea82ceb867ce0
60551e3dd4512dabff86da8bcf02b9e324c06d94
61b929144f72724a29f4ac1675839c38bb5043e296ed28c3eb742c6f5a46452c
GET /wp-content/themes/Zing33_LeechPub/images/47602.png HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:33 GMT
Content-Type: image/png
Content-Length: 407
Connection: keep-alive
cache-control: public, max-age=604800
expires: Tue, 29 Nov 2022 00:23:06 GMT
last-modified: Mon, 03 Aug 2020 06:28:34 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13416
Expires: Tue, 22 Nov 2022 05:03:09 GMT
Date: Tue, 22 Nov 2022 01:19:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13416
Expires: Tue, 22 Nov 2022 05:03:09 GMT
Date: Tue, 22 Nov 2022 01:19:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13416
Expires: Tue, 22 Nov 2022 05:03:09 GMT
Date: Tue, 22 Nov 2022 01:19:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13416
Expires: Tue, 22 Nov 2022 05:03:09 GMT
Date: Tue, 22 Nov 2022 01:19:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13416
Expires: Tue, 22 Nov 2022 05:03:09 GMT
Date: Tue, 22 Nov 2022 01:19:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f3c55266-9b03-4b7f-b076-fdf56704318e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0QQyECioAMFzdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6377fa6b-3e10cef6117a10a4115cfce7;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 21:34:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9FO1gkdftjvJFDvAlxwLD63BP-liwnS2MImVhVdjg83wi4xJdM73Kg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:35:40 GMT
age: 13433
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0ab62c5a7c3296600de924eb0b283bc1
bc4a2dc43898e3fb78ba7301d8b09b280991d221
f2a4c0829a4fb9a585113ed358832d16470ec391035a302a8f3c4666172f02bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10556
x-amzn-requestid: d2426c6d-5e78-496c-8649-0496a872b380
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-Iq0GPVoAMF9bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee45-1ee6dc09394731cc4dbfc38a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: sBNLrVAl4G6pJ-OBZ6aJZC64MrkkGQdsuZKITQwcqgYgP6-GJiblfA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:59:20 GMT
age: 12013
etag: "bc4a2dc43898e3fb78ba7301d8b09b280991d221"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3675a1c1e9e3bfc3d16d71644b4c7ab1
c09ea0df36485d017a0fea2c992f5a5676d42d7c
6771ed9a8f8fbcc5c822f261c71018296febd92463c56662f3af6fe793248227
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11088
x-amzn-requestid: 3a42e1ee-d63c-4a40-8122-22ea5775bd5d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6nFpMoAMF3gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-01b48ea07786649b466b9b29;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QDkzifM71KejjNwstX70B3QktoK01Nfq7tcoHuC5EqOqELF6z0sHfQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:47:01 GMT
etag: "c09ea0df36485d017a0fea2c992f5a5676d42d7c"
content-type: image/jpeg
age: 12752
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb52ad6b-bc3e-4cc6-8c74-7f367173fbdc.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb52ad6b-bc3e-4cc6-8c74-7f367173fbdc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b52c578c918c74f35f3c0a3f0c5dd2be
39d9b60a2b11b95c0ae37f35deb9a594d8e61d08
48a67feefffe59d04660c0e7de58234f184bded9cbb121da8157387ebd24f8f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb52ad6b-bc3e-4cc6-8c74-7f367173fbdc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4269
x-amzn-requestid: 9e70b9ad-7fb2-4f2d-bc87-d703abeb4888
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I62ERzIAMFcvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeab-6de953ea2d2aee071fea324b;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:31 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KSAEAQLao_Wbr7-82c36qtuN-bHp_dE4tItvqg_WZS-1TNGYla1o9w==
via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:58:29 GMT
age: 12064
etag: "39d9b60a2b11b95c0ae37f35deb9a594d8e61d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d5a9928-3c61-44dc-af42-7d4e3c891caa.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d5a9928-3c61-44dc-af42-7d4e3c891caa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03830e3ff377979c234bf37561c54cfd
c18884ce9370c97e6b4e12ab0f827d68a1938bfa
5ba8bfc69c7eba42de4a16bf6d1e1e3570cd3918fe15cb8b2d25950ef791ddbb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6d5a9928-3c61-44dc-af42-7d4e3c891caa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8365
x-amzn-requestid: e6c2ec6e-525e-4b9f-a45d-63076580df5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrpFJ3oAMF4mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee4a-576f678b6e364bca09532010;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 89jqCw8OJIxusDPoTi5-HDxWcgCfNvRrku2VFBLcQbFJwLLaZBpHGA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:44:46 GMT
age: 12887
etag: "c18884ce9370c97e6b4e12ab0f827d68a1938bfa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc359aabf-c4a1-4d9e-8a0a-da6aa777cb57.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc359aabf-c4a1-4d9e-8a0a-da6aa777cb57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fd91c051d71cf4d0a1436e4f371cd958
4c51df26158581b7db7a1dd4a8b44013e1b5493c
f1cc4c2d990689b2482c9817191fd1367a64aec5be46f8a074296d235acca341
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc359aabf-c4a1-4d9e-8a0a-da6aa777cb57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11307
x-amzn-requestid: e9ae5ce5-6e07-4deb-843b-ea49fc889d2c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oHvoIAMF8qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-0dcf9a735bcbd51d0acdb0bf;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mvlsQDF0wOF5I4B0GTF5aLgKzZsWWiIExjJ6Vl66VO6C4F2I655dYw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:58:29 GMT
age: 12064
etag: "4c51df26158581b7db7a1dd4a8b44013e1b5493c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 194d2641c3e0f32a61e0bd8a42923d25
1b957023af23f2f405c875b643e3990e95b46e40
d5d0abfa78e56adbfcdd496ac38cda909067f993d66bbdb07c9771ea218d9158
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5D0ABFA78E56ADBFCDD496AC38CDA909067F993D66BBDB07C9771EA218D9158"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6393
Expires: Tue, 22 Nov 2022 03:06:06 GMT
Date: Tue, 22 Nov 2022 01:19:33 GMT
Connection: keep-alive
71692fai4cc0.com/0604c83bc4546351b59231edc9366192/invoke.js
192.243.59.13200 OK 9.8 kB URL HTTP/1.1 71692fai4cc0.com/0604c83bc4546351b59231edc9366192/invoke.js
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
File type exported SGML document, ASCII text, with very long lines (27018), with no line terminators
Hash 5e80ffde7006115ede4105492d7d33b9
32c9255878fc17be47d58deb42bc7406be587ebc
fd5869d75aa44e871b53b74ee55b2a310c7754624b1911f5d672b897e1933a96
Analyzer Verdict Alert fortinet Malware
GET /0604c83bc4546351b59231edc9366192/invoke.js HTTP/1.1
Host: 71692fai4cc0.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Tue, 22 Nov 2022 01:19:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 12d8c79a9403d42cb385158e91945ef2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
amygdalbrittle.com/fwyuyqDZdir7r/35371
142.91.159.150200 OK 26 B URL HTTP/1.1 amygdalbrittle.com/fwyuyqDZdir7r/35371
IP 142.91.159.150:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
Analyzer Verdict Alert fortinet Malware
GET /fwyuyqDZdir7r/35371 HTTP/1.1
Host: amygdalbrittle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/
Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:34 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://leechpub.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 475a2bcd0ca22473d900c78e84762245
c7fc502de2091c1398719ee50e8832995d19e43b
6225d07ff554cc6520e4526aa14eeb17884f1cf2c0a779614d745e9c40301c1c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=136381
Date: Tue, 22 Nov 2022 01:19:34 GMT
Etag: "637b7d94-1d7"
Expires: Wed, 23 Nov 2022 15:12:35 GMT
Last-Modified: Mon, 21 Nov 2022 13:31:00 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CDLQ-kctkzHM6lIdpIgtFhUEu4FkTHYq1_jywV0yza2Ut1oZKLBmSQ==
Age: 6095
simplewebanalysis.com/stats
18.185.190.54200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.185.190.54:0
File type ASCII text, with no line terminators
Hash 34b6c2efccadc0d5008c5792e55a5f19
1f383c0ddc214a4b3f711a35551450b3b70212a8
4085c55dc636c755d144df5a34ebd2bd72a1438dde26f81b8ac6079d83034a20
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://leechpub.com
Connection: keep-alive
Referer: https://leechpub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 01:19:34 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://leechpub.com
access-control-allow-credentials: true
set-cookie: uid_id2=1a1431a5-dd5f-49ab-85a4-9aa8cc47e57a:2:1; expires=Fri, 19 Nov 2032 01:19:34 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
leechpub.com/?wc-ajax=get_refreshed_fragments
176.123.6.125200 OK 210 B URL HTTP/1.1 leechpub.com/?wc-ajax=get_refreshed_fragments
IP 176.123.6.125:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0c97a46508dc677362be2a79fd34feea
bce89aaf991907a16c951cc6a9a8121045374e22
3e799d21e1116a135fcd10c071506f34b99cf79d93b5548199e1376f88b62434
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://leechpub.com
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:34 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 210
Connection: keep-alive
access-control-allow-origin: https://leechpub.com
access-control-allow-credentials: true
x-content-type-options: nosniff
x-robots-tag: noindex
x-litespeed-tag: 774_HTTP.200,774_HTTP.200
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-turbo-charged-by: LiteSpeed
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 25a6f78f8ff60538bb3eb171f44b8f59
02d995a4ec9232640b360faa08f29edaea16093f
296da0f5f048f82401ac864f83f1366b665f873f0e90b1943d16cdda3cdf3923
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "296DA0F5F048F82401AC864F83F1366B665F873F0E90B1943D16CDDA3CDF3923"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16183
Expires: Tue, 22 Nov 2022 05:49:17 GMT
Date: Tue, 22 Nov 2022 01:19:34 GMT
Connection: keep-alive
leechpub.com/wp-content/uploads/2020/04/favicon-32x32-1.png
176.123.6.125200 OK 677 B URL HTTP/1.1 leechpub.com/wp-content/uploads/2020/04/favicon-32x32-1.png
IP 176.123.6.125:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 51be7fdba770c9cf52e062a643e22fae
cd127dd80ed5be0caea2b024f0c6455a5a8e4999
0062d0c173e4bd3faa5c04a9421267c67567dfefd3fac8ef006c246e6f1d8bc4
GET /wp-content/uploads/2020/04/favicon-32x32-1.png HTTP/1.1
Host: leechpub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/aa35cf5447f0a4f4a157b3cc772924d9/
Cookie: PHPSESSID=df0eacae450d5db285b51a0270912bbf; dom3ic8zudi28v8lr6fgphwffqoz0j6c=1a1431a5-dd5f-49ab-85a4-9aa8cc47e57a%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 01:19:34 GMT
Content-Type: image/png
Content-Length: 677
Connection: keep-alive
cache-control: public, max-age=604800
expires: Mon, 28 Nov 2022 04:05:42 GMT
last-modified: Fri, 24 Apr 2020 11:47:47 GMT
x-turbo-charged-by: LiteSpeed
Accept-Ranges: bytes
relativelyweptcurls.com/a5/8b/f6/a58bf6b571694812c417f03db47287e4.js
192.243.61.225200 OK 29 kB URL HTTP/1.1 relativelyweptcurls.com/a5/8b/f6/a58bf6b571694812c417f03db47287e4.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 158e7bbc998532a9196110e5604788f1
e6e53313444d5d419c489edc68554338597f609b
3ef7084e3453c26f830ab3107d4acea5d9ad0bb5ec415228ffaf3d0301d3cb39
Analyzer Verdict Alert quad9 Sinkholed
GET /a5/8b/f6/a58bf6b571694812c417f03db47287e4.js HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 22 Nov 2022 01:19:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3cdaac168c980518c4172c16e77c041d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
relativelyweptcurls.com/watch.648237070784.js?key=0604c83bc4546351b59231edc9366192&kw=%5B%22koisuru%22%2C%22boukun%22%2C%22v01-05%22%2C%22rar%22%2C%22%E2%80%93%22%2C%22leech%22%2C%22pub%22%5D&refer=https%3A%2F%2Fleechpub.com%2Faa35cf5447f0a4f4a157b3cc772924d9%2F&tz=0&dev=e&res=12.1055&uuid=1a1431a5-dd5f-49ab-85a4-9aa8cc47e57a%3A2%3A1
192.243.61.225307 Temporary Redirect 0 B URL HTTP/1.1 relativelyweptcurls.com/watch.648237070784.js?key=0604c83bc4546351b59231edc9366192&kw=%5B%22koisuru%22%2C%22boukun%22%2C%22v01-05%22%2C%22rar%22%2C%22%E2%80%93%22%2C%22leech%22%2C%22pub%22%5D&refer=https%3A%2F%2Fleechpub.com%2Faa35cf5447f0a4f4a157b3cc772924d9%2F&tz=0&dev=e&res=12.1055&uuid=1a1431a5-dd5f-49ab-85a4-9aa8cc47e57a%3A2%3A1
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.648237070784.js?key=0604c83bc4546351b59231edc9366192&kw=%5B%22koisuru%22%2C%22boukun%22%2C%22v01-05%22%2C%22rar%22%2C%22%E2%80%93%22%2C%22leech%22%2C%22pub%22%5D&refer=https%3A%2F%2Fleechpub.com%2Faa35cf5447f0a4f4a157b3cc772924d9%2F&tz=0&dev=e&res=12.1055&uuid=1a1431a5-dd5f-49ab-85a4-9aa8cc47e57a%3A2%3A1 HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://leechpub.com
Connection: keep-alive
Referer: https://leechpub.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.22.0
Date: Tue, 22 Nov 2022 01:19:34 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://leechpub.com
Access-Control-Allow-Origin: https://leechpub.com
Access-Control-Allow-Credentials: true
Location: https://relativelyweptcurls.com/watch.648237070784.js?key=0604c83bc4546351b59231edc9366192&kw=%5B%22koisuru%22%2C%22boukun%22%2C%22v01-05%22%2C%22rar%22%2C%22%E2%80%93%22%2C%22leech%22%2C%22pub%22%5D&refer=https%3A%2F%2Fleechpub.com%2Faa35cf5447f0a4f4a157b3cc772924d9%2F&tz=0&dev=e&res=12.1055&uuid=1a1431a5-dd5f-49ab-85a4-9aa8cc47e57a%3A2%3A1&shu=1dfb0d8a240b3a37e0cc929be2385f972449374ee47f91fe3bf78d119e715c1af9543a753c696b3e5476256cf90281d0f34712d0d7d90810ec10f7b22c8117faaa46f8235f9962753bdab98a24340f19f1dfe5&pst=1669080034&rmtc=t
Set-Cookie: u_pl=16122367; expires=Wed, 23 Nov 2022 01:19:34 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjEyMjM2NywiayI6IjA2MDRjODNiYzQ1NDYzNTFiNTkyMzFlZGM5MzY2MTkyIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNTA5NTYwLCJwaWQiOjM1ODgwLCJhbiI6dHJ1ZSwibGFuIjp0cnVlLCJjaWQiOjI4LCJhaWQiOjUsInB0Ijo0LCJwayI6Im5xdnZ4eTN2ZCIsImNwa3MiOnsgIjI5IjoiZDg0NjFkZWVkOGQ4YTQ5ZjNmN2Y2NzRiODQwMTQ0NmMiLCIyOCI6ImE1OGJmNmI1NzE2OTQ4MTJjNDE3ZjAzZGI0NzI4N2U0In0sInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo5MDc1MzQ1NywiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEyMDYyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMDUuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2xlZWNocHViLmNvbS9hYTM1Y2Y1NDQ3ZjBhNGY0YTE1N2IzY2M3NzI5MjRkOS8ifX0.JJf845yojaO1Rp8urzbamGtpfdpZ3Jqdq8PY-3uzq6c; expires=Tue, 22 Nov 2022 01:20:34 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 479503c3457c1b9d25e0c93aac158388
Strict-Transport-Security: max-age=0; includeSubdomains
relativelyweptcurls.com/watch.648237070784.js?key=0604c83bc4546351b59231edc9366192&kw=%5B%22koisuru%22%2C%22boukun%22%2C%22v01-05%22%2C%22rar%22%2C%22%E2%80%93%22%2C%22leech%22%2C%22pub%22%5D&refer=https%3A%2F%2Fleechpub.com%2Faa35cf5447f0a4f4a157b3cc772924d9%2F&tz=0&dev=e&res=12.1055&uuid=1a1431a5-dd5f-49ab-85a4-9aa8cc47e57a%3A2%3A1&shu=1dfb0d8a240b3a37e0cc929be2385f972449374ee47f91fe3bf78d119e715c1af9543a753c696b3e5476256cf90281d0f34712d0d7d90810ec10f7b22c8117faaa46f8235f9962753bdab98a24340f19f1dfe5&pst=1669080034&rmtc=t
192.243.61.225200 OK 2.1 kB URL HTTP/1.1 relativelyweptcurls.com/watch.648237070784.js?key=0604c83bc4546351b59231edc9366192&kw=%5B%22koisuru%22%2C%22boukun%22%2C%22v01-05%22%2C%22rar%22%2C%22%E2%80%93%22%2C%22leech%22%2C%22pub%22%5D&refer=https%3A%2F%2Fleechpub.com%2Faa35cf5447f0a4f4a157b3cc772924d9%2F&tz=0&dev=e&res=12.1055&uuid=1a1431a5-dd5f-49ab-85a4-9aa8cc47e57a%3A2%3A1&shu=1dfb0d8a240b3a37e0cc929be2385f972449374ee47f91fe3bf78d119e715c1af9543a753c696b3e5476256cf90281d0f34712d0d7d90810ec10f7b22c8117faaa46f8235f9962753bdab98a24340f19f1dfe5&pst=1669080034&rmtc=t
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text, with very long lines (2615)
Hash 149470cd6978f8ee37098d0a5a9b0c2e
12ee253f3b22dbb02a7a0311a1b3fd63f457a700
949e529221997d39998a2d0416fe38318607d527650131ad391799bab3e82ef1
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.648237070784.js?key=0604c83bc4546351b59231edc9366192&kw=%5B%22koisuru%22%2C%22boukun%22%2C%22v01-05%22%2C%22rar%22%2C%22%E2%80%93%22%2C%22leech%22%2C%22pub%22%5D&refer=https%3A%2F%2Fleechpub.com%2Faa35cf5447f0a4f4a157b3cc772924d9%2F&tz=0&dev=e&res=12.1055&uuid=1a1431a5-dd5f-49ab-85a4-9aa8cc47e57a%3A2%3A1&shu=1dfb0d8a240b3a37e0cc929be2385f972449374ee47f91fe3bf78d119e715c1af9543a753c696b3e5476256cf90281d0f34712d0d7d90810ec10f7b22c8117faaa46f8235f9962753bdab98a24340f19f1dfe5&pst=1669080034&rmtc=t HTTP/1.1
Host: relativelyweptcurls.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://leechpub.com
Referer: https://leechpub.com/
Connection: keep-alive
Cookie: u_pl=16122367; ain=eyJhbGciOiJIUzI1NiJ9.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.JJf845yojaO1Rp8urzbamGtpfdpZ3Jqdq8PY-3uzq6c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 22 Nov 2022 01:19:35 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://leechpub.com
Access-Control-Allow-Origin: https://leechpub.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=1a1431a5-dd5f-49ab-85a4-9aa8cc47e57a:2:1; expires=Tue, 29 Nov 2022 01:19:35 GMT; secure; SameSite=None
iprc3d6d8fe0a3b4c317ea2b274774b827c3=3569806; expires=Tue, 22 Nov 2022 05:19:35 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 23 Nov 2022 01:19:35 GMT; secure; SameSite=None
uncs=1; expires=Wed, 23 Nov 2022 01:19:35 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 23 Nov 2022 01:19:35 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 23 Nov 2022 01:19:35 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0ad18bfbae1a2196c1ac09478d68035f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aa255c1412b41f35d7997ae16efec662
bd6e95b35315d4a1d7e5120159da2be578816d36
9a6721311f330592ce18094da7e73d4434105590fcbf316a8ba986ba5e5eda15
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9A6721311F330592CE18094DA7E73D4434105590FCBF316A8BA986BA5E5EDA15"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2751
Expires: Tue, 22 Nov 2022 02:05:26 GMT
Date: Tue, 22 Nov 2022 01:19:35 GMT
Connection: keep-alive
cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
45.133.44.10200 OK 144 kB URL HTTP/2 cdn.cloudimagesb.com/cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size 144 kB (144379 bytes)
Hash 33c304429dc1a4408a96e6a74ffa2feb
c45fa8e65528d1bb2b46bf8a28af9eeaa1903d04
dbed482e5948ead5587d30a22306a5b611305f704de940bd22c76daf90e0a314
GET /cti/7d/00/a0/7d00a008556ebc4e68d1de531274e928/1658920033.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 01:19:35 GMT
content-type: image/png
content-length: 144379
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 11:07:21 GMT
etag: "62e11c69-233fb"
expires: Thu, 24 Nov 2022 01:19:35 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c89a54a12255dcc369f60630e84b619
bcb03b406a142c88e150e30b95fc8075f55ae29e
59f8b87e0f3e21c7c29b6e057e7555b4fe6c651f3ed56676ef3866321a371492
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59F8B87E0F3E21C7C29B6E057E7555B4FE6C651F3ED56676EF3866321A371492"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17783
Expires: Tue, 22 Nov 2022 06:15:58 GMT
Date: Tue, 22 Nov 2022 01:19:35 GMT
Connection: keep-alive
majorityevaluatewiped.com/pixel/purst?dl=0&th=0&sc=0&rs=3825&rd=3825&fd=801&bv=22.10.v.10&tmpl=136
173.233.137.44200 OK 0 B URL HTTP/1.1 majorityevaluatewiped.com/pixel/purst?dl=0&th=0&sc=0&rs=3825&rd=3825&fd=801&bv=22.10.v.10&tmpl=136
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=3825&rd=3825&fd=801&bv=22.10.v.10&tmpl=136 HTTP/1.1
Host: majorityevaluatewiped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 22 Nov 2022 01:19:35 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;900&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Poppins:wght@300;400;500;600;700;900&display=swap
IP 142.250.74.10:0
GET /css2?family=Poppins:wght@300;400;500;600;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://leechpub.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 01:19:32 GMT
date: Tue, 22 Nov 2022 01:19:32 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2