firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 03:15:38 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: p0RwmwLMu9Fl97QZGchNd7d8VeYXXhKZqcPvbD7rbBNFGqPsnuTtzQ==
Age: 509
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2346
Expires: Wed, 28 Sep 2022 04:03:14 GMT
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vhxY-9RMQLp2iKnvd8KD_Q0sfpfJgGsP5bOUhmVB7jFrNI-efUeTWw==
age: 64795
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 03:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 03:14:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r0hq4yuotG0Szi2igf7C-HPDpVgXrb2r3BqfdDBiVRHT3XUs24a-Dw==
Age: 3275
waptrick.com/en/free/mp3/Daville/
104.36.23.152200 OK 3.7 kB URL HTTP/1.1 waptrick.com/en/free/mp3/Daville/
IP 104.36.23.152:0
File type gzip compressed data, from NTFS filesystem (NT)\012- data
Hash eaa25c03ed1b30d53dfa4c0816eb419c
f8f722054f3fd2c47b782867a8731276f9ca5842
838fd65d5fb423eb9e7467572259ed1b0cb241f9d431d17b0da479e20aa4a023
GET /en/free/mp3/Daville/ HTTP/1.1
Host: waptrick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: Microsoft-IIS/7.5
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-type: text/html; charset=utf-8
Expires: 0
Pragma: no-cache
Cache-control: max-age=0, no-store, no-cache, must-revalidate
Vary: accept-encoding, user-agent
Set-cookie: uuid=0xc4c8bdc1f1a15d82;Domain=waptrick.com;Expires=Wed, 12-Oct-2022 03:24:09 GMT;Path=/
adsterra=Y;Domain=waptrick.com;Expires=Wed, 28-Sep-2022 03:29:09 GMT;Path=/
Content-encoding: gzip
Transfer-encoding: chunked
Connection: close
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6383
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:24:08 GMT
Last-Modified: Wed, 28 Sep 2022 01:37:46 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
nabalpal.com/tvlP48j0j7GHQZa/37433
23.109.87.74200 OK 25 B URL HTTP/1.1 nabalpal.com/tvlP48j0j7GHQZa/37433
IP 23.109.87.74:0
File type ASCII text, with no line terminators
Hash d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
GET /tvlP48j0j7GHQZa/37433 HTTP/1.1
Host: nabalpal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 03:24:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtOwzAYhPMOVUnESDkAR2gi0rRLNqy4Q%2BTYf4Jp4r9y3Ae3xyDBbh6fZoIgiKoS4TWLEV9Ei%2BejGru9pJrkoW6a%2BuXQyLEdRDfWqunqdoeNXnsnhplcgseJDFkte8mKCjz56i85Gb6ZBOlghVEF0sUTc4F8sHxbyVYxEiMWQv6mLY1894T4ZIvouPdSGy%2FDHSJeq7jcIH3X5nIvt1lQFlmA7XkWbmS79Fp5m05WKEL4igcpHE1sv5ArWk%2BOzwDPqv%2Fnfz%2FT%2BWcNmaKrlt6y%2ByD7DTb9Sx8%3D; expires=Thu, 29-Sep-2022 03:24:08 GMT; Max-Age=86400; path=/
GL_GI10=eJxNjMFqg0AURXXSTCOK5UI%2FID9Qk7R2kW3TZdGFHzBY8xIGzDxxJm0mX181ULK5HA6cGwSBeE4hdIdku8m26yx%2FzTbvOWZHYoiiRNLw2bjeK1OfCLLg%2Frf2kD0dNRuI9RviG6uG94R5Ub7cuSmKS9vycjf%2BeDw0etxRIRr51j0O3eRm2nZIP1p9WVbcnt3wYhEZcsp2RHtEu%2Fq7pdVn9YX0304fMsRCW9X1fPEDPzl9oisbUnw4WHJSIPyR4g8Mt0dW; expires=Thu, 29-Sep-2022 03:24:08 GMT; Max-Age=86400; path=/
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
a.exdynsrv.com/ad-provider.js
205.185.216.10200 OK 24 kB URL HTTP/1.1 a.exdynsrv.com/ad-provider.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 81ef2e5397caa335947731e7e737f5c3
6a05a4b2d22c13ad2692170510bc8685b16002bf
cec22380c4f1438b29077d202d0396a6ad32b41761ed51d968f1bfbdf2423378
GET /ad-provider.js HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 23727
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"d944899a6eb421496e94cbddc42"
X-HW: 1664335448.dop212.sk1.t,1664335448.cds201.sk1.shn,1664335448.dop212.sk1.t,1664335448.cds246.sk1.c
Access-Control-Allow-Origin: *, *
push.services.mozilla.com/
54.148.228.200101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8OkGDaOlYNhCeJeGmDZyPg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SSX9ub3DXJsLBihNPiERr2D3AMM=
samp.waptrick.org/js/combinedv136.js
162.251.163.98200 OK 2.3 kB URL HTTP/1.1 samp.waptrick.org/js/combinedv136.js
IP 162.251.163.98:0
File type Unicode text, UTF-8 text, with very long lines (519), with CRLF line terminators
Hash 1c780d06b80889abc2b4dc2c42da1a0d
0b2e2d8d1dddd2e1a4644c5bd40fbac1c8ea1e45
3f40410d685839a594f1d8eb6dfec0e4c8adc7664774d4a796e84e912b038e51
GET /js/combinedv136.js HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 07:56:44 GMT
Accept-Ranges: bytes
ETag: "0c61b7b4adfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 2279
samp.waptrick.org/js/jquery_scroll.js
162.251.163.98200 OK 2.0 kB URL HTTP/1.1 samp.waptrick.org/js/jquery_scroll.js
IP 162.251.163.98:0
File type ASCII text, with CRLF line terminators
Hash e183fa3c407ab5574fd031fc9dff9c82
60dcaf14911262a7312d92f5218d06c3c558cb8e
84714cc57554d33bcac659c53b181b27d590a77445ed1ca84c0876fea58dabe8
GET /js/jquery_scroll.js HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 07:58:36 GMT
Accept-Ranges: bytes
ETag: "09eddbd4adfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 1995
samp.waptrick.org/css/htmlv125_basic.css
162.251.163.98200 OK 5.8 kB URL HTTP/1.1 samp.waptrick.org/css/htmlv125_basic.css
IP 162.251.163.98:0
File type ASCII text, with very long lines (25053), with no line terminators
Hash 04fc8047a2f34f1b1d0e61e00e6ac803
777ff47e71982bfa284e04d8b63df0f203b7a6f1
0dcdc08230cb9ba8e66315ca0aff736f5543c643e07304de785631bf342d6dfa
GET /css/htmlv125_basic.css HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 08:24:45 GMT
Accept-Ranges: bytes
ETag: "80410654edfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 5752
samp.waptrick.org/js/jquery-3.4.1.min.js
162.251.163.98200 OK 31 kB URL HTTP/1.1 samp.waptrick.org/js/jquery-3.4.1.min.js
IP 162.251.163.98:0
File type ASCII text, with very long lines (65451)
Hash 3195e7e20d5daf86f6c6f6107c7bad9d
f5dc59013bfc44a61d3379e5c2e0356935ccda0e
524f9b76882cacbfa2459d4e6464bd039da02db98a25dc29754c54ea4b2d8867
GET /js/jquery-3.4.1.min.js HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 08:01:30 GMT
Accept-Ranges: bytes
ETag: "0e993254bdfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 30737
samp.waptrick.org/js/prop_push_bloc_v105_waptrick.js
162.251.163.98200 OK 19 kB URL HTTP/1.1 samp.waptrick.org/js/prop_push_bloc_v105_waptrick.js
IP 162.251.163.98:0
File type ASCII text, with very long lines (62141), with no line terminators
Hash c2b161376b1159967cbf036af1ff10d8
bf8ba102226dec5a75037ae44b57440285cfe0f5
4b8d7657a472b76a77eadff2fc402c240492f519bfc560654acc46bb30d73f87
GET /js/prop_push_bloc_v105_waptrick.js HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 12 Jan 2022 10:37:24 GMT
Accept-Ranges: bytes
ETag: "0caba62a07d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 19238
cudgelridge.com/bf/0d/76/bf0d7612e94ed920aec918d8bc477e4f.js
192.243.61.227200 OK 20 kB URL HTTP/1.1 cudgelridge.com/bf/0d/76/bf0d7612e94ed920aec918d8bc477e4f.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (59381), with no line terminators
Hash 947f4cc4f7e70dac5d4d49664f48a009
729a77a81a42434d986824ec66f54e3fcea456ca
e7e9ebe08da37204353745af6727b35072ec12b6690a74150bdf10f57297dfd1
Analyzer Verdict Alert quad9 Sinkholed
GET /bf/0d/76/bf0d7612e94ed920aec918d8bc477e4f.js HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f025827da5a223bd9e4f858b50fdafc6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
nabalpal.com/tvlP48j0j7GHQZa/37433
23.109.87.74200 OK 25 B URL HTTP/1.1 nabalpal.com/tvlP48j0j7GHQZa/37433
IP 23.109.87.74:0
File type ASCII text, with no line terminators
Hash d488addc5df5fc9b9ff4135bb4e3a823
6ce56f48e851df4d562b43d3bc1269a504ae83fc
d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
GET /tvlP48j0j7GHQZa/37433 HTTP/1.1
Host: nabalpal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtOwzAYhPMOVUnESDkAR2gi0rRLNqy4Q%2BTYf4Jp4r9y3Ae3xyDBbh6fZoIgiKoS4TWLEV9Ei%2BejGru9pJrkoW6a%2BuXQyLEdRDfWqunqdoeNXnsnhplcgseJDFkte8mKCjz56i85Gb6ZBOlghVEF0sUTc4F8sHxbyVYxEiMWQv6mLY1894T4ZIvouPdSGy%2FDHSJeq7jcIH3X5nIvt1lQFlmA7XkWbmS79Fp5m05WKEL4igcpHE1sv5ArWk%2BOzwDPqv%2Fnfz%2FT%2BWcNmaKrlt6y%2ByD7DTb9Sx8%3D; expires=Thu, 29-Sep-2022 03:24:09 GMT; Max-Age=86400; path=/
GL_GI10=eJxNjMFqg0AURXXSTCOK5UI%2FID9Qk7R2kW3TZdGFHzBY8xIGzDxxJm0mX181ULK5HA6cGwSBeE4hdIdku8m26yx%2FzTbvOWZHYoiiRNLw2bjeK1OfCLLg%2Frf2kD0dNRuI9RviG6uG94R5Ub7cuSmKS9vycjf%2BeDw0etxRIRr51j0O3eRm2nZIP1p9WVbcnt3wYhEZcsp2RHtEu%2Fq7pdVn9YX0304fMsRCW9X1fPEDPzl9oisbUnw4WHJSIPyR4g8Mt0dW; expires=Thu, 29-Sep-2022 03:24:09 GMT; Max-Age=86400; path=/
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
samp.waptrick.org/imgs/htmlcssv11/more_content_icon32x32.png
162.251.163.98200 OK 778 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/more_content_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash baec56d8e9b034c2849690fa5897ad47
d2ac9cce0eabd87eb375969970cc0647c03ec881
67c48950a529b391622aaddeaea1fe85fbb53c68557ecef82dbfc2c955171e2c
GET /imgs/htmlcssv11/more_content_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Wed, 09 Apr 2014 12:11:00 GMT
Accept-Ranges: bytes
ETag: "0227c5ec53cf1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 778
cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
192.243.61.227200 OK 1.1 kB URL HTTP/1.1 cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash bbd76c9b73ff1850604c12e962bc8512
356e176dcd2a815a1152398f7fda083814d021b0
ae1894d00b0731a715744c9e74ab60892c0801ba6a3468eab058997d9d35b9bb
Analyzer Verdict Alert quad9 Sinkholed
GET /watchnew?key=0d90779d5172c783ebd7800dad489a3d HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=14457359; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.PWIhRmuZIdNhejuuNIdyGbQC3bvySNPr6s50ZpGCy_w; expires=Wed, 28 Sep 2022 03:25:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b43afc96ec1c372dbcc1873c566c630b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
samp.waptrick.org/imgs/htmlcssv11/back_change_language_icon32x32.png
162.251.163.98200 OK 3.0 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/back_change_language_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 9879e97102aaacacf42f1257a5afb761
e523a42312b049a9aadb51a0f0a62833ec1fca96
209d59d004a87671c892d53fffc966ec01aa511ba5cd5bef59c16b5455f24102
GET /imgs/htmlcssv11/back_change_language_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Wed, 09 Apr 2014 09:02:34 GMT
Accept-Ranges: bytes
ETag: "0712072d253cf1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 3042
optyruntchan.com/400/3089649
139.45.197.237200 OK 30 kB URL HTTP/1.1 optyruntchan.com/400/3089649
IP 139.45.197.237:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0492dbd4bd782e08e6c375a157f16b23
57a0d3bb9ef396fd36b244a86d063b3e5a23923d
422037f87e2c8fe0cd31cb11144092b53650dcaec332e7b34a7203c35501b15c
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /400/3089649 HTTP/1.1
Host: optyruntchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 2620a45b8c9f2e470653ef2874cf9e7d
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=58cd5b2937934f2599ad98931a562796; expires=Thu, 28 Sep 2023 03:24:09 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip
syndication.exdynsrv.com/v1/api.php
95.211.229.245200 OK 4.3 kB URL HTTP/1.1 syndication.exdynsrv.com/v1/api.php
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (9756), with no line terminators
Hash 1efddf806785c01490852f25050d8814
a905a04eacb8fe436768c1c4d4ed7aab3e056911
9e80d26b281224be554aedf48cf2cbd2bffd00f80a08ab272f09f506bb718449
POST /v1/api.php HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 273
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D; expires=Fri, 27-Sep-2024 03:24:09 GMT; Max-Age=63072000; path=/; domain=exdynsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
addresseepaper.com/sfp.js
104.21.234.254200 OK 28 kB URL HTTP/1.1 addresseepaper.com/sfp.js
IP 104.21.234.254:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash b1fa950e77a7db5425f9a5257af02e9c
2d5580451f34ad96218f8b97edf9708f9ee1be87
d999c4320df27dc4a1d3de5aec22bb3ef201560b47a7eff3f28f4133c1997a14
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: 261162fda2418e6a0b36011b1acc9336
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Wed, 28 Sep 2022 03:24:08 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PHYn%2BUciee%2FE7PitBA2pA4VlJv7OQ5LJDXAhrmJcaaGydH8pLGESYHR0if4btKy5znejZZ9ctPVBlrnqh96%2B2XtFnoQpYxw4rcehq8D2sQYnXcOLNLEwNBN6hFMSiTQeWKOtx5Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75195d50c8b30672-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
samp.waptrick.org/special/imgs/arrow2.gif
162.251.163.98200 OK 12 kB URL HTTP/1.1 samp.waptrick.org/special/imgs/arrow2.gif
IP 162.251.163.98:0
File type GIF image data, version 89a, 41 x 43\012- data
Hash f8189d98cbf1b8071b0df6ab8e637d97
b50d92ab9ff465669c3fdc3eae879c68b7561ff2
199258e3d406ba3d92ea0d3286a3fb6b482c53719d30ada80fdf225854ed8575
GET /special/imgs/arrow2.gif HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/gif
Last-Modified: Tue, 26 Mar 2019 06:53:24 GMT
Accept-Ranges: bytes
ETag: "264949ba0e3d41:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 11840
samp.waptrick.org/imgs/waptrick_html_flag.png
162.251.163.98200 OK 2.2 kB URL HTTP/1.1 samp.waptrick.org/imgs/waptrick_html_flag.png
IP 162.251.163.98:0
File type PNG image data, 155 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 8dabbade5c7050e85ed02fd7ffea93db
efaf45364e8d6041a27e1246a07591b002a67b2e
106ebe3072f58bb44727eb4d1700f1a8f7ca3b106282a36227245873fbbb3e46
GET /imgs/waptrick_html_flag.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 12 Dec 2019 07:05:11 GMT
Accept-Ranges: bytes
ETag: "fae0a77ebab0d51:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 2230
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash b3d6b07e3998c6d4341acb2b263e609e
12e3561297d635de3fbd5212e2ae66a6e91ac673
534a36edebee87dbf492d6b5895e47385e65849b261348ab3623a8e17dc323cc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 03:24:09 GMT
Last-Modified: Wed, 28 Sep 2022 02:11:10 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qsDfdYd0Nu4VcyxqHmxIaR9a0zS6_nE2d12l6gArHDrEggUcEn7FdQ==
Age: 4379
samp.waptrick.org/imgs/htmlcssv11/back_home_icon32x32.png
162.251.163.98200 OK 459 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/back_home_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 208c830c05cacb548355849c1dd3bd81
087981869aa8e1ed51b7a5d36f74bad3ca24dc08
64253536f1c9ed9b084061ac08f0f80f068dab87302fa8114821a08d7d7fc483
GET /imgs/htmlcssv11/back_home_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Wed, 09 Apr 2014 08:31:00 GMT
Accept-Ranges: bytes
ETag: "0fa369ce53cf1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 459
samp.waptrick.org/imgs/flags/NORWAY.png
162.251.163.98200 OK 2.2 kB URL HTTP/1.1 samp.waptrick.org/imgs/flags/NORWAY.png
IP 162.251.163.98:0
File type PNG image data, 25 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d63618403a5116c6f67652c052780939
76a973780634b8753544f896c10c07cf1d308cb6
a2afdc332e5e773e12aae4ac22807a41b982c338398e103b5d46aa28ef5728c7
GET /imgs/flags/NORWAY.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 12 Dec 2019 08:10:42 GMT
Accept-Ranges: bytes
ETag: "0ad8ea5c3b0d51:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 2214
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VQ7UoEMQx8FV9gSz7bzf32tweKD7BbVxDxTvRAhXl4swXPhoZpM5lJKyQyUUzSbkQPYgcKBJegYlLYDXfHexjja3m/fLz013I+bXBnowqXWcjQqLpTkmaimOHMWQmJZDRXp9oE7FBQhria7agQEXNgJjw+3I7NGULIvJtCZlhi+h591Zpt3tZlZeXoVmXxJ9XFreqa8kn8H7Kf34bb8MnWXfjvAsqmYoKJrwdDLsIoL58/pw5c6fkyqeG6Ix8yCjaj1DRvIWJr0755565Em9kanN/z7Ky/MyW0JV0BAAA=
95.211.229.245200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VQ7UoEMQx8FV9gSz7bzf32tweKD7BbVxDxTvRAhXl4swXPhoZpM5lJKyQyUUzSbkQPYgcKBJegYlLYDXfHexjja3m/fLz013I+bXBnowqXWcjQqLpTkmaimOHMWQmJZDRXp9oE7FBQhria7agQEXNgJjw+3I7NGULIvJtCZlhi+h591Zpt3tZlZeXoVmXxJ9XFreqa8kn8H7Kf34bb8MnWXfjvAsqmYoKJrwdDLsIoL58/pw5c6fkyqeG6Ix8yCjaj1DRvIWJr0755565Em9kanN/z7Ky/MyW0JV0BAAA=
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VQ7UoEMQx8FV9gSz7bzf32tweKD7BbVxDxTvRAhXl4swXPhoZpM5lJKyQyUUzSbkQPYgcKBJegYlLYDXfHexjja3m/fLz013I+bXBnowqXWcjQqLpTkmaimOHMWQmJZDRXp9oE7FBQhria7agQEXNgJjw+3I7NGULIvJtCZlhi+h591Zpt3tZlZeXoVmXxJ9XFreqa8kn8H7Kf34bb8MnWXfjvAsqmYoKJrwdDLsIoL58/pw5c6fkyqeG6Ix8yCjaj1DRvIWJr0755565Em9kanN/z7Ky/MyW0JV0BAAA= HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226333be59be2258.598062553969452179%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
cudgelridge.com/watchnew?shu=650a7fc3752c324d892891050daeb99402110350fca6b3fb5208162ad13f44afe096115d571b11bb570cfff27d7fcaf699b54d1c374528ef3bbb3a36a0101337a34f611c1841f21d65f0b990afa62ba6b4410832a3a08e233415e7915d0098&pst=1664335509&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F
192.243.61.227200 OK 1.7 kB URL HTTP/1.1 cudgelridge.com/watchnew?shu=650a7fc3752c324d892891050daeb99402110350fca6b3fb5208162ad13f44afe096115d571b11bb570cfff27d7fcaf699b54d1c374528ef3bbb3a36a0101337a34f611c1841f21d65f0b990afa62ba6b4410832a3a08e233415e7915d0098&pst=1664335509&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2326)
Hash 8edea965f88513c31849e792042b84b9
554943c75c7969ce2ad4ba2bf27bcf8c63be0650
921936fefe7607e14a06daa99fc1b54728c3d8293922626c162c2d31b328d077
Analyzer Verdict Alert quad9 Sinkholed
GET /watchnew?shu=650a7fc3752c324d892891050daeb99402110350fca6b3fb5208162ad13f44afe096115d571b11bb570cfff27d7fcaf699b54d1c374528ef3bbb3a36a0101337a34f611c1841f21d65f0b990afa62ba6b4410832a3a08e233415e7915d0098&pst=1664335509&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://waptrick.com/
Access-Control-Allow-Origin: http://waptrick.com/
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=14457359; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None
uncs=1; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None
pdhtkv5=true; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None
uncs5=1; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dc1b291a1d35e4825ec9e98e456c6642
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
simplewebanalysis.com/stats
3.66.118.16200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.66.118.16:0
File type ASCII text, with no line terminators
Hash 9f7fb80912defe4d926b06c2e0db408c
05e884b2efb8c0ed6baaa13f9e09939f85682609
c66708327fcdfa88e89be4b62c00e56e16ced55cc3f9808993c7587830e3e454
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 03:24:09 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://waptrick.com
access-control-allow-credentials: true
set-cookie: uid_id2=2c42f7ad-84a2-4695-8bd7-0300c59955e9:2:1; expires=Sat, 25 Sep 2032 03:24:09 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VPW0oEMRC8iheYUP1KT/ZbfxUUD5AZI4i4u6igQh/e3kHGFOl0UZV+MJgntIn9iuXAekCLRqWhKBcyjdu7+1CKr37+fH9ZX8vpOMLB1jSMZ4Ymq2ZI0wy0OYwoVFgkJW3i1WQOspBAgk1U86WCm8liRjw+XG+XEozIeGkZBA5Ngu/tW1XXYb70hYTaqpW7PYl00ypLVk/j/4zr6S2pqVB2hoI4UKDswQn8QSjHVI6JdqKRB7HJ/ePnuEbs9tyQazO5ZLaXoWiusvBwE3OgP/dRrfqorQ2H1/UXLC+RbmIBAAA=
95.211.229.245200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VPW0oEMRC8iheYUP1KT/ZbfxUUD5AZI4i4u6igQh/e3kHGFOl0UZV+MJgntIn9iuXAekCLRqWhKBcyjdu7+1CKr37+fH9ZX8vpOMLB1jSMZ4Ymq2ZI0wy0OYwoVFgkJW3i1WQOspBAgk1U86WCm8liRjw+XG+XEozIeGkZBA5Ngu/tW1XXYb70hYTaqpW7PYl00ypLVk/j/4zr6S2pqVB2hoI4UKDswQn8QSjHVI6JdqKRB7HJ/ePnuEbs9tyQazO5ZLaXoWiusvBwE3OgP/dRrfqorQ2H1/UXLC+RbmIBAAA=
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VPW0oEMRC8iheYUP1KT/ZbfxUUD5AZI4i4u6igQh/e3kHGFOl0UZV+MJgntIn9iuXAekCLRqWhKBcyjdu7+1CKr37+fH9ZX8vpOMLB1jSMZ4Ymq2ZI0wy0OYwoVFgkJW3i1WQOspBAgk1U86WCm8liRjw+XG+XEozIeGkZBA5Ngu/tW1XXYb70hYTaqpW7PYl00ypLVk/j/4zr6S2pqVB2hoI4UKDswQn8QSjHVI6JdqKRB7HJ/ePnuEbs9tyQazO5ZLaXoWiusvBwE3OgP/dRrfqorQ2H1/UXLC+RbmIBAAA= HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226333be59be2258.598062553969452179%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/widget-branding-logo.png
185.76.9.21200 OK 1.5 kB URL HTTP/1.1 s3t3d2y8.afcdn.net/widget-branding-logo.png
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
File type PNG image data, 94 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 7a95be207bf27c9a91720b8ac81976ca
6412e94ce13924fede8b1bec73cb8e049b76688c
5325d5beb64d82d48d3f7d78b606ee93b8e975a55868bba038905329ed1044b9
GET /widget-branding-logo.png HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: image/png
Content-Length: 1547
Connection: keep-alive
Last-Modified: Mon, 15 Apr 2019 09:03:59 GMT
ETag: "5cb448ff-60b"
Expires: Fri, 30 Jun 2023 16:01:02 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
X-Cache-OP: HIT
X-Accel-Expires: @1688195209
Server: CDN77-Turbo
X-77-NZT: AblMCRRol6P/UCF1AA
X-77-NZT-Ray: /1jDeVpIQyo
X-Cache: HIT
X-Age: 7676240
X-77-POP: stockholmSE
X-77-Cache: HIT
Accept-Ranges: bytes
waptrick.com/en/free/mp3/Daville/
104.36.23.152200 OK 0 B URL HTTP/1.1 waptrick.com/en/free/mp3/Daville/
IP 104.36.23.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /en/free/mp3/Daville/ HTTP/1.1
Host: waptrick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/en/free/mp3/Daville/
Cookie: uuid=0xc4c8bdc1f1a15d82; adsterra=Y
HTTP/1.1 200 OK
Server: Microsoft-IIS/7.5
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-type: text/html; charset=utf-8
Expires: 0
Pragma: no-cache
Cache-control: max-age=0, no-store, no-cache, must-revalidate
Vary: accept-encoding, user-agent
Set-cookie: exopopu=Y;Domain=waptrick.com;Expires=Wed, 28-Sep-2022 04:09:10 GMT;Path=/
Content-encoding: gzip
Connection: close
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VO0UoEMQz8FX9glyRNmuaeffZA8QN2eyuIeHeocArz8WYXXBtSJs10ZoREBopB/E7KQfRAgeAxaFQZ2RQPx0co4zZdvz5e+9t4OS+oIcYKkyakcKpmlKRGFA3GnJi8uUDVW7hXsKGAssSK6opGImI0wvPT/dacJYS8V0swpWQO9L19q+q6mM/TzIWja5XJTqVMprXMqZ7E/4z98r6ZbTYqvir/PaCwFlHBwPugyEPY1tPnz7kDOz1TSA0rK7JdhlFnjrAXyz7pwqEiNFuPDNnduP0Ci9krflkBAAA=
95.211.229.245200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VO0UoEMQz8FX9glyRNmuaeffZA8QN2eyuIeHeocArz8WYXXBtSJs10ZoREBopB/E7KQfRAgeAxaFQZ2RQPx0co4zZdvz5e+9t4OS+oIcYKkyakcKpmlKRGFA3GnJi8uUDVW7hXsKGAssSK6opGImI0wvPT/dacJYS8V0swpWQO9L19q+q6mM/TzIWja5XJTqVMprXMqZ7E/4z98r6ZbTYqvir/PaCwFlHBwPugyEPY1tPnz7kDOz1TSA0rK7JdhlFnjrAXyz7pwqEiNFuPDNnduP0Ci9krflkBAAA=
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VO0UoEMQz8FX9glyRNmuaeffZA8QN2eyuIeHeocArz8WYXXBtSJs10ZoREBopB/E7KQfRAgeAxaFQZ2RQPx0co4zZdvz5e+9t4OS+oIcYKkyakcKpmlKRGFA3GnJi8uUDVW7hXsKGAssSK6opGImI0wvPT/dacJYS8V0swpWQO9L19q+q6mM/TzIWja5XJTqVMprXMqZ7E/4z98r6ZbTYqvir/PaCwFlHBwPugyEPY1tPnz7kDOz1TSA0rK7JdhlFnjrAXyz7pwqEiNFuPDNnduP0Ci9krflkBAAA= HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226333be59be2258.598062553969452179%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/702594/71085bed7dbf0472e62f6edc5706d9abcda750be.jpg
185.76.9.21200 OK 40 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/702594/71085bed7dbf0472e62f6edc5706d9abcda750be.jpg
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash dad2f60ee6504de9a8d87d7b1d0244cc
71085bed7dbf0472e62f6edc5706d9abcda750be
8c208af1a77d4bbf9781db628ab2a76cdc3dd6bae1c4e281374054b578d72a01
GET /library/702594/71085bed7dbf0472e62f6edc5706d9abcda750be.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 03:24:09 GMT
content-type: image/jpeg
content-length: 39665
last-modified: Tue, 16 Mar 2021 14:48:53 GMT
etag: "6050c555-9af1"
expires: Fri, 30 Jun 2023 18:49:27 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195453
server: CDN77-Turbo
x-77-nzt: AblMCRS1N6//XCB1AA
x-77-nzt-ray: c52cCLidJb8
x-cache: HIT
x-age: 7675996
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VPW0oEMRC8iheYobvSncd++62geIDMQxBxd1FBhTq8PYOMKRKqk+qqDgQYpA0oN0gn2Ekam45NRsOobry7f6Apv/r18/1lfh0v55W5wdXoqBBjkewuIaoirdJVg0upBTQrtZVSqc5ECcCT2cZGEVFW4dPj7b41AGGcWyRVwjIK+d7bshVbvUx90qRttozuS0rdLacp3EP4P+N8edvD9phoJQJ/F0xqCQYOehTGWML9uX/8nGfykMcUyM3TxvywUa5lnlF1qc/SMwrMLSVMwNLjy0v9BXii/lhZAQAA
95.211.229.245200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAA0VPW0oEMRC8iheYobvSncd++62geIDMQxBxd1FBhTq8PYOMKRKqk+qqDgQYpA0oN0gn2Ekam45NRsOobry7f6Apv/r18/1lfh0v55W5wdXoqBBjkewuIaoirdJVg0upBTQrtZVSqc5ECcCT2cZGEVFW4dPj7b41AGGcWyRVwjIK+d7bshVbvUx90qRttozuS0rdLacp3EP4P+N8edvD9phoJQJ/F0xqCQYOehTGWML9uX/8nGfykMcUyM3TxvywUa5lnlF1qc/SMwrMLSVMwNLjy0v9BXii/lhZAQAA
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VPW0oEMRC8iheYobvSncd++62geIDMQxBxd1FBhTq8PYOMKRKqk+qqDgQYpA0oN0gn2Ekam45NRsOobry7f6Apv/r18/1lfh0v55W5wdXoqBBjkewuIaoirdJVg0upBTQrtZVSqc5ECcCT2cZGEVFW4dPj7b41AGGcWyRVwjIK+d7bshVbvUx90qRttozuS0rdLacp3EP4P+N8edvD9phoJQJ/F0xqCQYOehTGWML9uX/8nGfykMcUyM3TxvywUa5lnlF1qc/SMwrMLSVMwNLjy0v9BXii/lhZAQAA HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none
__upt=%7B%22v%22%3A1%2C%22id%22%3A%226333be59be2258.598062553969452179%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
s3t3d2y8.afcdn.net/library/692514/acd347fdcb1175ac14a50422a557843f31f66e4f.jpg
185.76.9.21200 OK 19 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/692514/acd347fdcb1175ac14a50422a557843f31f66e4f.jpg
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 6e24faee539ebedbe9c954f8f0a7ad4a
acd347fdcb1175ac14a50422a557843f31f66e4f
13b24df37ca05e71964fd4e3875e1cf4c82f6aa640f1f75c7ead2089117201ab
GET /library/692514/acd347fdcb1175ac14a50422a557843f31f66e4f.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 03:24:09 GMT
content-type: image/jpeg
content-length: 19070
last-modified: Thu, 22 Oct 2020 17:13:58 GMT
etag: "5f91bdd6-4a7e"
expires: Wed, 30 Aug 2023 14:54:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416603
server: CDN77-Turbo
x-77-nzt: AblMCRQeDmX/PnUlAA
x-77-nzt-ray: dgLcC1je2QQ
x-cache: HIT
x-age: 2454846
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/551406/df77b12b1430519b8a4ad553ee1c08c5abcc34f5.jpg
185.76.9.21200 OK 12 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/551406/df77b12b1430519b8a4ad553ee1c08c5abcc34f5.jpg
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 47b239f5f7f93527c72c9b1b87999a0c
df77b12b1430519b8a4ad553ee1c08c5abcc34f5
5f674910cc840142adf59454d0c5f799549c7ada943c49f07ccca90086f05f60
GET /library/551406/df77b12b1430519b8a4ad553ee1c08c5abcc34f5.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 03:24:09 GMT
content-type: image/jpeg
content-length: 11616
last-modified: Wed, 08 Jun 2022 05:29:21 GMT
etag: "62a033b1-2d60"
expires: Fri, 30 Jun 2023 18:20:00 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688369867
server: CDN77-Turbo
x-77-nzt: AblMCRRhrBD/DndyAA
x-77-nzt-ray: H6rqLVQxO0o
x-cache: HIT
x-age: 7501582
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
s3t3d2y8.afcdn.net/library/692514/86b9d1d123aa03a62d60845e0fa8135cce3d696f.jpg
185.76.9.21200 OK 25 kB URL HTTP/2 s3t3d2y8.afcdn.net/library/692514/86b9d1d123aa03a62d60845e0fa8135cce3d696f.jpg
IP 185.76.9.21:0
ASN #60068 Datacamp Limited
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 5763897785e578a5b08a4ae789e90fce
86b9d1d123aa03a62d60845e0fa8135cce3d696f
f29442007cb5e45fbc1f7a37aa5b38e7ec90a0bc800a49156a5daa5252dbcd25
GET /library/692514/86b9d1d123aa03a62d60845e0fa8135cce3d696f.jpg HTTP/1.1
Host: s3t3d2y8.afcdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 03:24:09 GMT
content-type: image/jpeg
content-length: 25232
last-modified: Thu, 22 Oct 2020 17:15:51 GMT
etag: "5f91be47-6290"
expires: Wed, 30 Aug 2023 14:54:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416548
server: CDN77-Turbo
x-77-nzt: AblMCRRw80z/dXUlAA
x-77-nzt-ray: zZ+5wmXr4NM
x-cache: HIT
x-age: 2454901
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
samp.waptrick.org/imgs/htmlcssv11/clear_icon.png
162.251.163.98200 OK 294 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/clear_icon.png
IP 162.251.163.98:0
File type PNG image data, 21 x 15, 8-bit colormap, non-interlaced\012- data
Hash e7932d617d61ef466439d3379e29c5b4
5ffb19024492dc19a6108d0b6f0487f2193aadf7
ddec118279ef42ab6c7170391e8422ab7d647a85875cfd12b9ea4d55ea8cc7d6
GET /imgs/htmlcssv11/clear_icon.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 05 Oct 2012 15:59:42 GMT
Accept-Ranges: bytes
ETag: "0eb5d6e12a3cd1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 294
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8e8875e1d01f3cfb802924da39423312
bb0fd5fc279cafe09b8ce5d00e3a31bdd03cf9ad
fc0a2cdc09ce8365b0eb9fdf07ae268d11cdcc69c92bc045764843bc6f2b05b6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC0A2CDC09CE8365B0EB9FDF07AE268D11CDCC69C92BC045764843BC6F2B05B6"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1391
Expires: Wed, 28 Sep 2022 03:47:21 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 0869109d63ef5270595fb34384023a90
f2ec69fdaca2a0327cd3599ac05d0051df3dee41
c4a67afda7094519228049f837e2e0c1674148bd2e564ae2dccc3458bbdb9ed4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 06:25:19 GMT
Expires: Mon, 03 Oct 2022 06:25:18 GMT
Etag: "f2ec69fdaca2a0327cd3599ac05d0051df3dee41"
Cache-Control: max-age=442267,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75195d51df540b39-OSL
cdn.cloudimagesb.com/cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png
45.133.44.10200 OK 108 kB URL HTTP/2 cdn.cloudimagesb.com/cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size 108 kB (107711 bytes)
Hash d5d8bc18ba152c6e850417cdf9dfbbff
888bf155775a9879f26faf0e7faaff5803296e8e
b481f86a9731573e3cfd04880209d5ecb5c163caa0e2656a9f740321c5e637c8
GET /cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cudgelridge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 03:24:10 GMT
content-type: image/png
content-length: 107711
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:51:18 GMT
etag: "61080666-1a4bf"
expires: Fri, 30 Sep 2022 03:24:10 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 6a23a28013389d5fe5497b6637b3498c
9925ed14d88032faee896dc7d3478c1ee22114fc
a0cb3a7c31f4185528cd0bae32b77fddcad3a77c41c6071415db89f8cb88c4a3
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://waptrick.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b79a05115cb64ff681f596101939bff2; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
samp.waptrick.org/imgs/htmlcssv11/golge_10px.png
162.251.163.98200 OK 91 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/golge_10px.png
IP 162.251.163.98:0
File type PNG image data, 2 x 10, 8-bit gray+alpha, non-interlaced\012- data
Hash 3adcffb90087422d4d7cfeb880a49597
4462b6a9ecf51133959b333e8014b9b3c9927031
ea5c7819f351e03a6adbb3957c73e8f1b516039869c2667da27b188c92121a65
GET /imgs/htmlcssv11/golge_10px.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 31 Aug 2012 07:13:58 GMT
Accept-Ranges: bytes
ETag: "03f38304887cd1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 91
samp.waptrick.org/imgs/htmlcssv11/whatsapp_icon32x32.png
162.251.163.98200 OK 3.1 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/whatsapp_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 36 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash af1b134ddf468446228d0fb5f69c62d0
9ffd6a9d6d624e3ca00a6c49df8c0762aefeba30
f9f611dc16257617b61ba4b01892a5eeda564ed9430c14e0edf86d872d729097
GET /imgs/htmlcssv11/whatsapp_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 09 May 2019 10:03:17 GMT
Accept-Ranges: bytes
ETag: "89cf366c4e6d51:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 3057
dictatepantry.com/pixel/purst?dl=0&th=0&sc=0&rs=1840&rd=1840&fd=761&bv=22.8.v.1&tmpl=70
192.243.59.12200 OK 0 B URL HTTP/1.1 dictatepantry.com/pixel/purst?dl=0&th=0&sc=0&rs=1840&rd=1840&fd=761&bv=22.8.v.1&tmpl=70
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1840&rd=1840&fd=761&bv=22.8.v.1&tmpl=70 HTTP/1.1
Host: dictatepantry.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
samp.waptrick.org/imgs/htmlcssv11/new_music_icon32x32.png
162.251.163.98200 OK 1.9 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/new_music_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 5403612166c9a0c55ae1006dfb55528f
6b043201338f85e7eb69a12465059ee8502e3367
7747dc4e3f40289c701afbf500a4956d9167867a6c2b62933027118dbec403ac
GET /imgs/htmlcssv11/new_music_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Mon, 26 Jan 2015 11:03:00 GMT
Accept-Ranges: bytes
ETag: "08ac7a55739d01:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:09 GMT
Connection: close
Content-Length: 1947
samp.waptrick.org/imgs/htmlcssv11/white_transparent_bg.png
162.251.163.98200 OK 156 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/white_transparent_bg.png
IP 162.251.163.98:0
File type PNG image data, 50 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash 393837b5c8fb68fcb4d40762f47409ad
78a9a294025c862052fe164d785b2687cbdbdc7b
2bfe590cdd9bc99659992219cc6ece86327ffcb6e66ab95cd0e04098708467a8
GET /imgs/htmlcssv11/white_transparent_bg.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 13 Jul 2012 08:36:56 GMT
Accept-Ranges: bytes
ETag: "0419a9d260cd1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:09 GMT
Connection: close
Content-Length: 156
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3cf19dab7bfbf8767ad8928238a7f320
4e22ef40cd1bb4135b9e5d4e3a486f50f65daf93
dfe93271415bf96c2b87ca098bd37a8c68538e8c5072d07c180a9a66b8bdf567
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DFE93271415BF96C2B87CA098BD37A8C68538E8C5072D07C180A9A66B8BDF567"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7558
Expires: Wed, 28 Sep 2022 05:30:08 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive
samp.waptrick.org/imgs/htmlcssv11/newheader_sprite.png
162.251.163.98200 OK 7.7 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/newheader_sprite.png
IP 162.251.163.98:0
File type PNG image data, 132 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash c69713a312d1b997f56a3cb735d20c18
e5cf3bfddfe63e46bae6878a3822b60df05708ac
1283d6887d31cbf075e56f03e88b9300ef4a5a1504203880046b7189b4e2dcef
GET /imgs/htmlcssv11/newheader_sprite.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 18 Apr 2013 10:39:32 GMT
Accept-Ranges: bytes
ETag: "0cadd2213cce1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 7735
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20150
Expires: Wed, 28 Sep 2022 09:00:00 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20150
Expires: Wed, 28 Sep 2022 09:00:00 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20150
Expires: Wed, 28 Sep 2022 09:00:00 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 20227
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 20380
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 9f410158-cd1a-45a9-9e86-4005b25577e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4Hw7oAMFpAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-70683c681f22a3b6103fcb4a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l9IinQYCcQV_iymSArIEnOWgbmLlmVqz94402zcsmga5Bp3Sty7QRg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:49 GMT
age: 20601
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f3e1fd3401c5e635a8dbeec5f78b721d
2142075b27d0d355c51231ab06fea46e25eb9c59
2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Vak91l2UKRnX0Go62y1yPwJ8E-Af7XBurmQATw5MSZXBqhUJrIgOCQ==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 04:55:01 GMT
age: 80949
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff14e2acf-9d43-48bc-ab80-1dc73fa7dfc8.webp
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff14e2acf-9d43-48bc-ab80-1dc73fa7dfc8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c301dff6ddda16fd64692c19173cfa8c
2afdfb716192540a61327137706462c53588bf23
fd0f33a778fec87dbfa323ffa6b24ca5f94aa16d102e62683ad54b759208058b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff14e2acf-9d43-48bc-ab80-1dc73fa7dfc8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5377
x-amzn-requestid: 28ddd5cd-c299-4b36-98be-b6dbeaadc1ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI4KRGo7oAMFUiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d74-27ebe6e974ee5b7d06227fca;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _yH8kTWHHDU-LcnNz0fjoHkPhf6dRP7p7QydoE3DNu4fJhDpEkxPrg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:17 GMT
age: 20033
etag: "2afdfb716192540a61327137706462c53588bf23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccfb4931d41ca01aa55b4b8e9ef6b4e1
2351d2547f4bd0aac45bb21a5aa8277e80ef15f2
89de9954ee2874b476c907810189812efe13234a46910180f34f68082429260f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7020
x-amzn-requestid: 1258ee7b-987a-4454-8963-e76b7c1470f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4EVxIAMFrmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7a1fbaa251600686757f9583;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VLZucSrpwv4p9vPso373WdFZsbrj-savmu1WPx7nkUuTDaZJ6NWzwg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 20227
etag: "2351d2547f4bd0aac45bb21a5aa8277e80ef15f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
banquetunarmedgrater.com/advertisers.js
192.243.61.225200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e1f2c9757c1720db999a4e4dbf4822d8
Strict-Transport-Security: max-age=0; includeSubdomains
samp.waptrick.org/special/videovak/videovak_336x280_3_en.jpg
162.251.163.98200 OK 16 kB URL HTTP/1.1 samp.waptrick.org/special/videovak/videovak_336x280_3_en.jpg
IP 162.251.163.98:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 336x280, components 3\012- data
Hash a261fb5fcaa541cfd00cf1472d7c1afb
087c139868a2405786ff1c71c15fbea86e93a532
687d13f2fc81508bb72f3cbc3d381719305cf35b8889a83235d2d00420d1a68b
GET /special/videovak/videovak_336x280_3_en.jpg HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Fri, 10 Jan 2020 09:39:19 GMT
Accept-Ranges: bytes
ETag: "749c15d599c7d51:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:09 GMT
Connection: close
Content-Length: 15705
cdn.uponelectabuzzor.club/1?z=3481957
139.45.197.239200 OK 3.6 kB URL HTTP/1.1 cdn.uponelectabuzzor.club/1?z=3481957
IP 139.45.197.239:0
File type ASCII text, with very long lines (7767)
Hash 635ae93f4bcb78c84388cc148c307e31
cdae0110e3d184e01e0e67b5b940d41891ee8ac1
99cf6cbaea55b11ec25288296f55a83f76861b739a47596a48f719a6f2c15499
GET /1?z=3481957 HTTP/1.1
Host: cdn.uponelectabuzzor.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin:
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
X-Trace-Id: 06aeb0597abb45d3d8244f5eff6fe7bf
Access-Control-Expose-Headers: X-Sc
X-Sc: 2povGnsa6jQtAFTWBQ0HkjmLtOBXocZAYSw49eUg8k3swU9C5_TKkj1SD8PQocL0f1X9uoDIQj5bt8j_2URDNiMABCQ=
Set-Cookie: scm=1; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
OAID=80cc44cb55a84bc8a330dfe2fb7d66e6; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
oaidts=1664335450; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 242c9bc60b0888612a1e537db8dbc2e3
b55595877e509261eb1d58f10dfdf8594941931d
74276aec058e3e59ee0846334fa4548c7cafd9ac2761eb7011a34b32aad56822
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74276AEC058E3E59EE0846334FA4548C7CAFD9AC2761EB7011A34B32AAD56822"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13010
Expires: Wed, 28 Sep 2022 07:01:00 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d67c91719617eecebc17fe48e8a53e98
a217203665798e94b6f553835813b2799516ecd2
92721c7ab4eeb285cf22743e7cd3a70bed636f866146c230a154be78c556dc3b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92721C7AB4EEB285CF22743E7CD3A70BED636F866146C230A154BE78C556DC3B"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2611
Expires: Wed, 28 Sep 2022 04:07:41 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d67c91719617eecebc17fe48e8a53e98
a217203665798e94b6f553835813b2799516ecd2
92721c7ab4eeb285cf22743e7cd3a70bed636f866146c230a154be78c556dc3b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "92721C7AB4EEB285CF22743E7CD3A70BED636F866146C230A154BE78C556DC3B"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2611
Expires: Wed, 28 Sep 2022 04:07:41 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.254200 OK 12 B URL HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.254:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://waptrick.com/
Content-Type: text/plain;charset=UTF-8
Origin: http://waptrick.com
Content-Length: 1512
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Wed, 28 Sep 2022 03:24:29 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
my.rtmark.net/gid.js?pub=0&userId=&zoneId=3487682&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=&zoneId=3487682&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 6a23a28013389d5fe5497b6637b3498c
9925ed14d88032faee896dc7d3478c1ee22114fc
a0cb3a7c31f4185528cd0bae32b77fddcad3a77c41c6071415db89f8cb88c4a3
GET /gid.js?pub=0&userId=&zoneId=3487682&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://waptrick.com/
Origin: http://waptrick.com
Connection: keep-alive
Cookie: ID=b79a05115cb64ff681f596101939bff2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://waptrick.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b79a05115cb64ff681f596101939bff2; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash f64200d008a3670048876ed9a4915ae8
02745fc47df86f86aeb0f8c25bbd67cff0bdbab7
cf758ae548390747028b3e68c89a557fec9286168cdf5f16bf56cae2203d7a6f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 15:02:18 GMT
Expires: Mon, 03 Oct 2022 15:02:17 GMT
Etag: "02745fc47df86f86aeb0f8c25bbd67cff0bdbab7"
Cache-Control: max-age=473286,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75195d55a88b0b39-OSL
cdn.uponelectabuzzor.club/42/38?z=3481957
139.45.197.239200 OK 0 B URL HTTP/2 cdn.uponelectabuzzor.club/42/38?z=3481957
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /42/38?z=3481957 HTTP/1.1
Host: cdn.uponelectabuzzor.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 3e5c23193bf077e9a72e914dfb962f2f
access-control-expose-headers: X-Sc
x-sc: Bm0-Ljc9YUPZCDfZoRBtEuKGgaX2zrfTnBFnX2dH9GTW3mDFxa2TNF1rTwSImPvMgi5iWnFTl4tmjO1sLgLNIdF10-k=
set-cookie: scm=1; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
OAID=7a0aa1cca76f4f05bca8d2dd6b26185d; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
oaidts=1664335450; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
pushagim.com/zone?pub=0&zone_id=3487682&is_mobile=false&domain=waptrick.com&var=&ymid=&var_3=
139.45.197.250200 OK 799 B URL HTTP/2 pushagim.com/zone?pub=0&zone_id=3487682&is_mobile=false&domain=waptrick.com&var=&ymid=&var_3=
IP 139.45.197.250:0
File type JSON data\012- , ASCII text, with very long lines (798)
Hash e675f816c0d5caeb952b8eaa31ceaf2d
5d65e33c7f2e496af61461302ac5ce1bc2fc3605
05374e9bcfc23dded3b40580f70f8c0275e065bcf3f322555da5988b535d5b71
GET /zone?pub=0&zone_id=3487682&is_mobile=false&domain=waptrick.com&var=&ymid=&var_3= HTTP/1.1
Host: pushagim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://waptrick.com/
Origin: http://waptrick.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-type: application/json; charset=utf-8
content-length: 799
x-trace-id: f30512ab1c0c828bb9953ca7fc89f93b
access-control-allow-origin: http://waptrick.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
cdn.uponelectabuzzor.club/9?z=3481957&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=b79a05115cb64ff681f596101939bff2
139.45.197.239204 No Content 0 B URL HTTP/2 cdn.uponelectabuzzor.club/9?z=3481957&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=b79a05115cb64ff681f596101939bff2
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /9?z=3481957&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=b79a05115cb64ff681f596101939bff2 HTTP/1.1
Host: cdn.uponelectabuzzor.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://waptrick.com/
Origin: http://waptrick.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://waptrick.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
offerimage.com/www/images/a563edd673308b2cd8cc1ec9c0543417.png
104.22.32.172200 OK 76 kB URL HTTP/2 offerimage.com/www/images/a563edd673308b2cd8cc1ec9c0543417.png
IP 104.22.32.172:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash a563edd673308b2cd8cc1ec9c0543417
bff09cb9d8c3dadb244db8d24b6f58b8dfab6469
bbd22caad95af25c9ccf019fe7499c74743b7ef4eaceeffe0781c3f64f054b0c
GET /www/images/a563edd673308b2cd8cc1ec9c0543417.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 03:24:11 GMT
content-type: image/png
content-length: 76281
last-modified: Tue, 07 Jun 2022 21:58:32 GMT
etag: "629fca08-129f9"
expires: Wed, 28 Sep 2022 22:10:41 GMT
cache-control: max-age=86400
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
timing-allow-origin: *
cf-cache-status: HIT
age: 18810
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75195d58bc999926-ARN
X-Firefox-Spdy: h2
cdn.uponelectabuzzor.club/9?z=3481957&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=b79a05115cb64ff681f596101939bff2
139.45.197.239200 OK 7 B URL HTTP/2 cdn.uponelectabuzzor.club/9?z=3481957&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=b79a05115cb64ff681f596101939bff2
IP 139.45.197.239:0
File type ASCII text, with no line terminators
Hash a97eb6fbe6f13b601d5d48c0eba8baae
736efb938caf3d0edec406932ada889f1a4f2268
a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
POST /9?z=3481957&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=b79a05115cb64ff681f596101939bff2 HTTP/1.1
Host: cdn.uponelectabuzzor.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 580
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:11 GMT
content-type: application/javascript
content-length: 7
access-control-allow-credentials: true
access-control-allow-origin: http://waptrick.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: ac16a2dd6e009f963caa20bf7bf64ca0
access-control-expose-headers: X-Sc
x-sc: LCeM00XHw033r4SAsRpqlP7WA0RNHRjcf_IHoJ0nWBtq1ExCi38CWDhq31hQaMZhhPfG9ayIkknpaV8DjkwG_jMt5NY=
set-cookie: scm=1; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
OAID=b79a05115cb64ff681f596101939bff2; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
oaidts=1664335450; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=2c42f7ad-84a2-4695-8bd7-0300c59955e9&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.29&b_frame=0&pk=bf0d7612e94ed920aec918d8bc477e4f&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=3
192.243.59.12200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=2c42f7ad-84a2-4695-8bd7-0300c59955e9&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.29&b_frame=0&pk=bf0d7612e94ed920aec918d8bc477e4f&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=3
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=2c42f7ad-84a2-4695-8bd7-0300c59955e9&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.29&b_frame=0&pk=bf0d7612e94ed920aec918d8bc477e4f&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=3 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Wed, 28 Sep 2022 03:24:11 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9b7609c23f90a9e17a0e1235b52b9b42
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.itskiddoan.club/apu.php?zoneid=3381466
139.45.197.236200 OK 26 kB URL HTTP/2 cdn.itskiddoan.club/apu.php?zoneid=3381466
IP 139.45.197.236:0
Hash a7ec6eccf53b2602f4eaa5794b5e1f38
e630c6473ded644712ac03967b34555fe87ad6d0
c3e78f07e227918f04451209a32854fa5ae7db06886fb644b392804d7e9867d5
GET /apu.php?zoneid=3381466 HTTP/1.1
Host: cdn.itskiddoan.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-type: application/javascript
x-trace-id: a9f60368abe500422135808412363e6d
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=960657f6216044c2b851caecb22c70dd; expires=Thu, 28 Sep 2023 03:24:10 GMT; path=/; secure; SameSite=None
oaidts=1664335450; expires=Thu, 28 Sep 2023 03:24:10 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
optyruntchan.com/impression/HQYNVnX-vrt7_LwclIHph1N3W-V8YOrRkGyORoKuXcUxLJ_egILezxYg7bcWypeDmQjQB-MFucW3quBD4LYScDLo4uoOqWBSVeDYjOVWVDq4Wml6YRKETuugBMLgWCzHL3M2JVtYpr1fhEfzTq_BlVcsU3njO8FrAxHoTj_SnnWZiRepr_M7gm4msRkVOLpJT-mg86k22NByyDEtecI1jKX1U2WL8onikg00qpKefg8z9aA1posfFHfc7PDD6h4_2eqRabfZ-a9eTxDe2jhjv9s4w1qDxGC0WkiEioEBXgYV2kn3pUio9T5ERZsLueIEZ9jYcMWmcciM9os3uVQh4HOBqxJSgN5AJ2qZc4Hk2PDevyr1ECObpDH2L9LSbWjL27zKEknPG4NYH2VSEbfCjHVbwj18H2N-yWdiAdc-dl6MjtkunOZ8ajB1QXDC-hLb34oaiOLiZATBHZHeRHtEhB3CRTbkHTG1VmL9vX2Q-hzQVpqVd16KS07ITjKq4ccyXLbld6VorQny8THOV4ynVINkSKVEAjWPO7F5L5S9ml7ZQAxXYHxbaLVNG9qEpD7AqcP0jYCis0coToEW8pPAk8XnadY8lTvyTB5sLjpeBqIPd93NcD7Pghs6wuzWUejfL6OCwS1Q56U1-G6J?_z=3089649&lse=4364&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 43 B URL HTTP/2 optyruntchan.com/impression/HQYNVnX-vrt7_LwclIHph1N3W-V8YOrRkGyORoKuXcUxLJ_egILezxYg7bcWypeDmQjQB-MFucW3quBD4LYScDLo4uoOqWBSVeDYjOVWVDq4Wml6YRKETuugBMLgWCzHL3M2JVtYpr1fhEfzTq_BlVcsU3njO8FrAxHoTj_SnnWZiRepr_M7gm4msRkVOLpJT-mg86k22NByyDEtecI1jKX1U2WL8onikg00qpKefg8z9aA1posfFHfc7PDD6h4_2eqRabfZ-a9eTxDe2jhjv9s4w1qDxGC0WkiEioEBXgYV2kn3pUio9T5ERZsLueIEZ9jYcMWmcciM9os3uVQh4HOBqxJSgN5AJ2qZc4Hk2PDevyr1ECObpDH2L9LSbWjL27zKEknPG4NYH2VSEbfCjHVbwj18H2N-yWdiAdc-dl6MjtkunOZ8ajB1QXDC-hLb34oaiOLiZATBHZHeRHtEhB3CRTbkHTG1VmL9vX2Q-hzQVpqVd16KS07ITjKq4ccyXLbld6VorQny8THOV4ynVINkSKVEAjWPO7F5L5S9ml7ZQAxXYHxbaLVNG9qEpD7AqcP0jYCis0coToEW8pPAk8XnadY8lTvyTB5sLjpeBqIPd93NcD7Pghs6wuzWUejfL6OCwS1Q56U1-G6J?_z=3089649&lse=4364&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert quad9 Sinkholed
GET /impression/HQYNVnX-vrt7_LwclIHph1N3W-V8YOrRkGyORoKuXcUxLJ_egILezxYg7bcWypeDmQjQB-MFucW3quBD4LYScDLo4uoOqWBSVeDYjOVWVDq4Wml6YRKETuugBMLgWCzHL3M2JVtYpr1fhEfzTq_BlVcsU3njO8FrAxHoTj_SnnWZiRepr_M7gm4msRkVOLpJT-mg86k22NByyDEtecI1jKX1U2WL8onikg00qpKefg8z9aA1posfFHfc7PDD6h4_2eqRabfZ-a9eTxDe2jhjv9s4w1qDxGC0WkiEioEBXgYV2kn3pUio9T5ERZsLueIEZ9jYcMWmcciM9os3uVQh4HOBqxJSgN5AJ2qZc4Hk2PDevyr1ECObpDH2L9LSbWjL27zKEknPG4NYH2VSEbfCjHVbwj18H2N-yWdiAdc-dl6MjtkunOZ8ajB1QXDC-hLb34oaiOLiZATBHZHeRHtEhB3CRTbkHTG1VmL9vX2Q-hzQVpqVd16KS07ITjKq4ccyXLbld6VorQny8THOV4ynVINkSKVEAjWPO7F5L5S9ml7ZQAxXYHxbaLVNG9qEpD7AqcP0jYCis0coToEW8pPAk8XnadY8lTvyTB5sLjpeBqIPd93NcD7Pghs6wuzWUejfL6OCwS1Q56U1-G6J?_z=3089649&lse=4364&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: optyruntchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: OAID=b79a05115cb64ff681f596101939bff2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:14 GMT
content-type: image/gif
content-length: 43
x-trace-id: e5a4b876282739f893c87e7ae5c99b50
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:24:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:24:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:24:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:24:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://waptrick.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 546607
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
142.250.74.10200 OK 17 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
IP 142.250.74.10:0
Hash 49dcb3f23a58f998f11d8c2ca1b90a68
0aee92fad52d2f03484a134901a90260af43e913
92223ea8fd1122967d4b3adaec6c401be4ab899e973ed13fb3fb90520cdefcfa
GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 03:24:15 GMT
date: Wed, 28 Sep 2022 03:24:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 03:24:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tzegilo.com/stattag.js
172.67.194.45200 OK 0 B IP 172.67.194.45:0
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 03:24:10 GMT
content-type: application/javascript
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 3424
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E2W1t8cFTj6qDT%2B9DbwZvY89ztbR%2FtKMPeIedJkiJttaUvlr7eRsOFI9zudcWWnxRaquI0RrCreud4q302UsOUmmB8RvSC9SWBmaMj8EAqOqh%2Fg0VPZr11l37qzKkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75195d555d801c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.uponelectabuzzor.club/27/b7bd02994a2771796f8a835cfb750d4b
139.45.197.239200 OK 0 B URL HTTP/2 cdn.uponelectabuzzor.club/27/b7bd02994a2771796f8a835cfb750d4b
IP 139.45.197.239:0
GET /27/b7bd02994a2771796f8a835cfb750d4b HTTP/1.1
Host: cdn.uponelectabuzzor.club
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Thu, 22 Sep 2022 08:42:06 GMT
expires: Thu, 22 Oct 2082 08:42:06 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
zamob.com/en/free/mp3/Daville
104.36.23.145301 Moved Permanently 0 B URL HTTP/1.1 zamob.com/en/free/mp3/Daville
IP 104.36.23.145:0
Analyzer Verdict Alert fortinet Phishing
GET /en/free/mp3/Daville HTTP/1.1
Host: zamob.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Microsoft-IIS/7.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Content-type: text/html
Location: http://waptrick.one/en/free/mp3/daville
Connection: close
Content-encoding: gzip
optyruntchan.com/401/3089649?oo=1&oaid=b79a05115cb64ff681f596101939bff2
139.45.197.237200 OK 0 B URL HTTP/2 optyruntchan.com/401/3089649?oo=1&oaid=b79a05115cb64ff681f596101939bff2
IP 139.45.197.237:0
Analyzer Verdict Alert quad9 Sinkholed
GET /401/3089649?oo=1&oaid=b79a05115cb64ff681f596101939bff2 HTTP/1.1
Host: optyruntchan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-type: application/json
x-trace-id: 3d5061a3f82ae1d26697ca294427a0b3
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: http://waptrick.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=b79a05115cb64ff681f596101939bff2; expires=Thu, 28 Sep 2023 03:24:10 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
pushagim.com/pfe/current/extra.min.js?z=3487682
139.45.197.250200 OK 0 B URL HTTP/2 pushagim.com/pfe/current/extra.min.js?z=3487682
IP 139.45.197.250:0
GET /pfe/current/extra.min.js?z=3487682 HTTP/1.1
Host: pushagim.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-type: application/javascript
last-modified: Tue, 27 Sep 2022 13:19:37 GMT
etag: W/"6332f869-f6af"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2