Overview

URL zamob.com/en/free/mp3/Daville
IP104.36.23.145
ASNICASTCENTER
Location United States
Report completed2022-09-28 03:24:18 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-28 2 optyruntchan.com/400/3089649 Malware
2022-09-28 2 zamob.com/en/free/mp3/Daville Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-28 2 cudgelridge.com Sinkholed
2022-09-28 2 cudgelridge.com Sinkholed
2022-09-28 2 optyruntchan.com Sinkholed
2022-09-28 2 cudgelridge.com Sinkholed
2022-09-27 2 dictatepantry.com Sinkholed
2022-09-27 2 banquetunarmedgrater.com Sinkholed
2022-09-27 2 fleraprt.com Sinkholed
2022-09-27 2 unseenreport.com Sinkholed
2022-09-28 2 optyruntchan.com Sinkholed
2022-09-28 2 optyruntchan.com Sinkholed


Files

No files detected



Passive DNS (34)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-27 05:14:54 UTC 143.204.55.110
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-27 21:28:46 UTC 93.184.220.29
mnemonic passive DNS simplewebanalysis.com (1) 0 2022-02-25 04:06:25 UTC 2022-09-27 20:23:39 UTC 3.66.118.16 Unknown ranking
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-27 22:17:28 UTC 142.250.74.10
mnemonic passive DNS ocsp.pki.goog (5) 175 2017-06-14 07:23:31 UTC 2022-09-27 04:53:14 UTC 142.250.74.35
mnemonic passive DNS a.exdynsrv.com (1) 40663 2019-05-21 05:34:42 UTC 2022-09-27 21:56:35 UTC 205.185.216.10
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-27 05:14:54 UTC 54.148.228.200
mnemonic passive DNS cudgelridge.com (3) 0 2022-07-12 11:59:23 UTC 2022-09-27 03:33:00 UTC 192.243.61.227 Unknown ranking
mnemonic passive DNS syndication.exdynsrv.com (5) 34243 2016-04-20 18:35:15 UTC 2022-09-28 02:53:33 UTC 95.211.229.245
mnemonic passive DNS dictatepantry.com (1) 0 2022-09-19 02:25:15 UTC 2022-09-27 15:26:19 UTC 192.243.59.12 Unknown ranking
mnemonic passive DNS zamob.com (1) 0 2013-02-08 19:25:43 UTC 2022-09-28 01:12:55 UTC 104.36.23.145 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-27 04:52:33 UTC 34.117.237.239
mnemonic passive DNS banquetunarmedgrater.com (1) 0 2022-08-04 15:12:50 UTC 2022-09-27 20:23:40 UTC 192.243.61.225 Unknown ranking
mnemonic passive DNS unseenreport.com (1) 0 2022-03-30 14:33:17 UTC 2022-09-27 18:57:09 UTC 192.243.59.12 Unknown ranking
mnemonic passive DNS cdn.itskiddoan.club (1) 24539 2021-09-23 10:55:49 UTC 2022-09-27 20:31:41 UTC 139.45.197.236
mnemonic passive DNS fonts.gstatic.com (1) 0 2014-08-29 13:43:22 UTC 2022-09-27 04:53:14 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS addresseepaper.com (1) 18169 2021-11-01 21:11:31 UTC 2022-09-27 23:57:55 UTC 104.21.234.254
mnemonic passive DNS my.rtmark.net (2) 9054 2017-08-22 14:11:49 UTC 2022-09-27 14:07:47 UTC 139.45.195.8
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-28 17:26:30 UTC 2022-09-27 23:53:35 UTC 143.204.55.35
mnemonic passive DNS samp.waptrick.org (18) 910992 2019-04-08 11:19:21 UTC 2022-09-27 03:33:00 UTC 162.251.163.98
mnemonic passive DNS ocsp.sectigo.com (2) 487 2018-12-17 11:31:55 UTC 2022-09-28 00:01:04 UTC 104.18.32.68
mnemonic passive DNS cdn.uponelectabuzzor.club (5) 0 2022-03-10 06:30:29 UTC 2022-09-28 00:12:54 UTC 139.45.197.239 Unknown ranking
mnemonic passive DNS offerimage.com (1) 304078 2019-06-10 11:11:53 UTC 2022-09-27 20:31:39 UTC 104.22.32.172
mnemonic passive DNS r3.o.lencr.org (9) 344 2020-12-02 08:52:13 UTC 2022-09-27 04:52:25 UTC 23.36.77.32
mnemonic passive DNS optyruntchan.com (3) 428482 2021-08-10 13:00:48 UTC 2022-09-28 00:05:07 UTC 139.45.197.237
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.158
mnemonic passive DNS s3t3d2y8.afcdn.net (5) 0 2022-08-08 22:22:56 UTC 2022-09-27 11:40:13 UTC 185.76.9.21 Unknown ranking
mnemonic passive DNS tzegilo.com (1) 0 2022-01-14 15:27:15 UTC 2022-09-27 23:50:31 UTC 172.67.194.45 Unknown ranking
mnemonic passive DNS waptrick.com (2) 798622 2012-08-06 10:42:49 UTC 2022-09-27 03:32:59 UTC 104.36.23.152
mnemonic passive DNS nabalpal.com (2) 900700 2021-10-12 20:58:01 UTC 2022-09-27 03:33:00 UTC 23.109.87.74
mnemonic passive DNS cdn.cloudimagesb.com (1) 23099 2021-02-12 16:15:41 UTC 2022-09-27 14:12:30 UTC 45.133.44.10
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-27 13:22:33 UTC 34.120.237.76
mnemonic passive DNS fleraprt.com (1) 0 2022-01-14 22:55:14 UTC 2022-09-27 22:32:17 UTC 139.45.195.254 Unknown ranking
mnemonic passive DNS pushagim.com (2) 176755 2019-04-19 21:47:42 UTC 2022-09-28 00:07:38 UTC 139.45.197.250


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.36.23.145

Date UQ / IDS / BL URL IP
2022-11-29 03:01:59 +0000
0 - 0 - 8 waptrick.mobi/en/free/music_clip/Flabba 104.36.23.145
2022-11-29 02:55:29 +0000
0 - 0 - 10 waptrick.mobi/en/free/mp3/Swagboiz 104.36.23.145
2022-11-29 02:16:04 +0000
0 - 0 - 10 zamob.com/en/free/mp3/Kamaiyah 104.36.23.145
2022-11-29 01:54:39 +0000
0 - 0 - 10 zamob.com/en/free/music_clip/Kwame-Baah 104.36.23.145
2022-11-29 01:49:51 +0000
0 - 0 - 12 zamob.com/en/free/music_clip/Polo-G 104.36.23.145

Last 5 reports on ASN: ICASTCENTER

Date UQ / IDS / BL URL IP
2022-11-29 03:01:59 +0000
0 - 0 - 8 waptrick.mobi/en/free/music_clip/Flabba 104.36.23.145
2022-11-29 02:55:29 +0000
0 - 0 - 10 waptrick.mobi/en/free/mp3/Swagboiz 104.36.23.145
2022-11-29 02:16:04 +0000
0 - 0 - 10 zamob.com/en/free/mp3/Kamaiyah 104.36.23.145
2022-11-29 01:54:39 +0000
0 - 0 - 10 zamob.com/en/free/music_clip/Kwame-Baah 104.36.23.145
2022-11-29 01:49:51 +0000
0 - 0 - 12 zamob.com/en/free/music_clip/Polo-G 104.36.23.145

Last 5 reports on domain: zamob.com

Date UQ / IDS / BL URL IP
2022-11-29 02:16:04 +0000
0 - 0 - 10 zamob.com/en/free/mp3/Kamaiyah 104.36.23.145
2022-11-29 01:54:39 +0000
0 - 0 - 10 zamob.com/en/free/music_clip/Kwame-Baah 104.36.23.145
2022-11-29 01:49:51 +0000
0 - 0 - 12 zamob.com/en/free/music_clip/Polo-G 104.36.23.145
2022-11-28 03:13:34 +0000
0 - 0 - 8 zamob.com/en/free/mp3/DJ-Obi 104.36.23.145
2022-11-27 07:00:08 +0000
0 - 0 - 11 zamob.com/en/free/music_clip/Ebony 104.36.23.145

No other reports with similar screenshot



JavaScript

Executed Scripts (21)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (90)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 03:15:38 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: p0RwmwLMu9Fl97QZGchNd7d8VeYXXhKZqcPvbD7rbBNFGqPsnuTtzQ==
Age: 509


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2346
Expires: Wed, 28 Sep 2022 04:03:14 GMT
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: vhxY-9RMQLp2iKnvd8KD_Q0sfpfJgGsP5bOUhmVB7jFrNI-efUeTWw==
age: 64795
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:08 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 03:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Wed, 28 Sep 2022 03:14:58 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: r0hq4yuotG0Szi2igf7C-HPDpVgXrb2r3BqfdDBiVRHT3XUs24a-Dw==
Age: 3275


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /en/free/mp3/Daville/ HTTP/1.1 
Host: waptrick.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.36.23.152
HTTP/1.1 200 OK
                                        
Server: Microsoft-IIS/7.5
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-type: text/html; charset=utf-8
Expires: 0
Pragma: no-cache
Cache-control: max-age=0, no-store, no-cache, must-revalidate
Vary: accept-encoding, user-agent
Set-cookie: uuid=0xc4c8bdc1f1a15d82;Domain=waptrick.com;Expires=Wed, 12-Oct-2022 03:24:09 GMT;Path=/ adsterra=Y;Domain=waptrick.com;Expires=Wed, 28-Sep-2022 03:29:09 GMT;Path=/
Content-encoding: gzip
Transfer-encoding: chunked
Connection: close


--- Additional Info ---
Magic:  gzip compressed data, from NTFS filesystem (NT)\012- data
Size:   3699
Md5:    eaa25c03ed1b30d53dfa4c0816eb419c
Sha1:   f8f722054f3fd2c47b782867a8731276f9ca5842
Sha256: 838fd65d5fb423eb9e7467572259ed1b0cb241f9d431d17b0da479e20aa4a023
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6383
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 03:24:08 GMT
Last-Modified: Wed, 28 Sep 2022 01:37:46 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /tvlP48j0j7GHQZa/37433 HTTP/1.1 
Host: nabalpal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         23.109.87.74
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 03:24:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtOwzAYhPMOVUnESDkAR2gi0rRLNqy4Q%2BTYf4Jp4r9y3Ae3xyDBbh6fZoIgiKoS4TWLEV9Ei%2BejGru9pJrkoW6a%2BuXQyLEdRDfWqunqdoeNXnsnhplcgseJDFkte8mKCjz56i85Gb6ZBOlghVEF0sUTc4F8sHxbyVYxEiMWQv6mLY1894T4ZIvouPdSGy%2FDHSJeq7jcIH3X5nIvt1lQFlmA7XkWbmS79Fp5m05WKEL4igcpHE1sv5ArWk%2BOzwDPqv%2Fnfz%2FT%2BWcNmaKrlt6y%2ByD7DTb9Sx8%3D; expires=Thu, 29-Sep-2022 03:24:08 GMT; Max-Age=86400; path=/ GL_GI10=eJxNjMFqg0AURXXSTCOK5UI%2FID9Qk7R2kW3TZdGFHzBY8xIGzDxxJm0mX181ULK5HA6cGwSBeE4hdIdku8m26yx%2FzTbvOWZHYoiiRNLw2bjeK1OfCLLg%2Frf2kD0dNRuI9RviG6uG94R5Ub7cuSmKS9vycjf%2BeDw0etxRIRr51j0O3eRm2nZIP1p9WVbcnt3wYhEZcsp2RHtEu%2Fq7pdVn9YX0304fMsRCW9X1fPEDPzl9oisbUnw4WHJSIPyR4g8Mt0dW; expires=Thu, 29-Sep-2022 03:24:08 GMT; Max-Age=86400; path=/
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   25
Md5:    d488addc5df5fc9b9ff4135bb4e3a823
Sha1:   6ce56f48e851df4d562b43d3bc1269a504ae83fc
Sha256: d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
                                        
                                            GET /ad-provider.js HTTP/1.1 
Host: a.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         205.185.216.10
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 23727
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"d944899a6eb421496e94cbddc42"
X-HW: 1664335448.dop212.sk1.t,1664335448.cds201.sk1.shn,1664335448.dop212.sk1.t,1664335448.cds246.sk1.c
Access-Control-Allow-Origin: *, *


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   23727
Md5:    81ef2e5397caa335947731e7e737f5c3
Sha1:   6a05a4b2d22c13ad2692170510bc8685b16002bf
Sha256: cec22380c4f1438b29077d202d0396a6ad32b41761ed51d968f1bfbdf2423378
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8OkGDaOlYNhCeJeGmDZyPg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.148.228.200
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SSX9ub3DXJsLBihNPiERr2D3AMM=

                                        
                                            GET /js/combinedv136.js HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=2592000
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 07:56:44 GMT
Accept-Ranges: bytes
ETag: "0c61b7b4adfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 2279


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (519), with CRLF line terminators
Size:   2279
Md5:    1c780d06b80889abc2b4dc2c42da1a0d
Sha1:   0b2e2d8d1dddd2e1a4644c5bd40fbac1c8ea1e45
Sha256: 3f40410d685839a594f1d8eb6dfec0e4c8adc7664774d4a796e84e912b038e51
                                        
                                            GET /js/jquery_scroll.js HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=2592000
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 07:58:36 GMT
Accept-Ranges: bytes
ETag: "09eddbd4adfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 1995


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1995
Md5:    e183fa3c407ab5574fd031fc9dff9c82
Sha1:   60dcaf14911262a7312d92f5218d06c3c558cb8e
Sha256: 84714cc57554d33bcac659c53b181b27d590a77445ed1ca84c0876fea58dabe8
                                        
                                            GET /css/htmlv125_basic.css HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Cache-Control: max-age=2592000
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 08:24:45 GMT
Accept-Ranges: bytes
ETag: "80410654edfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 5752


--- Additional Info ---
Magic:  ASCII text, with very long lines (25053), with no line terminators
Size:   5752
Md5:    04fc8047a2f34f1b1d0e61e00e6ac803
Sha1:   777ff47e71982bfa284e04d8b63df0f203b7a6f1
Sha256: 0dcdc08230cb9ba8e66315ca0aff736f5543c643e07304de785631bf342d6dfa
                                        
                                            GET /js/jquery-3.4.1.min.js HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=2592000
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 08:01:30 GMT
Accept-Ranges: bytes
ETag: "0e993254bdfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 30737


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   30737
Md5:    3195e7e20d5daf86f6c6f6107c7bad9d
Sha1:   f5dc59013bfc44a61d3379e5c2e0356935ccda0e
Sha256: 524f9b76882cacbfa2459d4e6464bd039da02db98a25dc29754c54ea4b2d8867
                                        
                                            GET /js/prop_push_bloc_v105_waptrick.js HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Cache-Control: max-age=2592000
Content-Encoding: gzip
Last-Modified: Wed, 12 Jan 2022 10:37:24 GMT
Accept-Ranges: bytes
ETag: "0caba62a07d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 19238


--- Additional Info ---
Magic:  ASCII text, with very long lines (62141), with no line terminators
Size:   19238
Md5:    c2b161376b1159967cbf036af1ff10d8
Sha1:   bf8ba102226dec5a75037ae44b57440285cfe0f5
Sha256: 4b8d7657a472b76a77eadff2fc402c240492f519bfc560654acc46bb30d73f87
                                        
                                            GET /bf/0d/76/bf0d7612e94ed920aec918d8bc477e4f.js HTTP/1.1 
Host: cudgelridge.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f025827da5a223bd9e4f858b50fdafc6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (59381), with no line terminators
Size:   20324
Md5:    947f4cc4f7e70dac5d4d49664f48a009
Sha1:   729a77a81a42434d986824ec66f54e3fcea456ca
Sha256: e7e9ebe08da37204353745af6727b35072ec12b6690a74150bdf10f57297dfd1

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /tvlP48j0j7GHQZa/37433 HTTP/1.1 
Host: nabalpal.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         23.109.87.74
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
X-Frame-Options: SAMEORIGIN
Set-Cookie: GL_UI4=eJw9jUtOwzAYhPMOVUnESDkAR2gi0rRLNqy4Q%2BTYf4Jp4r9y3Ae3xyDBbh6fZoIgiKoS4TWLEV9Ei%2BejGru9pJrkoW6a%2BuXQyLEdRDfWqunqdoeNXnsnhplcgseJDFkte8mKCjz56i85Gb6ZBOlghVEF0sUTc4F8sHxbyVYxEiMWQv6mLY1894T4ZIvouPdSGy%2FDHSJeq7jcIH3X5nIvt1lQFlmA7XkWbmS79Fp5m05WKEL4igcpHE1sv5ArWk%2BOzwDPqv%2Fnfz%2FT%2BWcNmaKrlt6y%2ByD7DTb9Sx8%3D; expires=Thu, 29-Sep-2022 03:24:09 GMT; Max-Age=86400; path=/ GL_GI10=eJxNjMFqg0AURXXSTCOK5UI%2FID9Qk7R2kW3TZdGFHzBY8xIGzDxxJm0mX181ULK5HA6cGwSBeE4hdIdku8m26yx%2FzTbvOWZHYoiiRNLw2bjeK1OfCLLg%2Frf2kD0dNRuI9RviG6uG94R5Ub7cuSmKS9vycjf%2BeDw0etxRIRr51j0O3eRm2nZIP1p9WVbcnt3wYhEZcsp2RHtEu%2Fq7pdVn9YX0304fMsRCW9X1fPEDPzl9oisbUnw4WHJSIPyR4g8Mt0dW; expires=Thu, 29-Sep-2022 03:24:09 GMT; Max-Age=86400; path=/
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   25
Md5:    d488addc5df5fc9b9ff4135bb4e3a823
Sha1:   6ce56f48e851df4d562b43d3bc1269a504ae83fc
Sha256: d1e90b8aef655ca37932287e04cbda72092eb029fe90de2bac019c10d3431f60
                                        
                                            GET /imgs/htmlcssv11/more_content_icon32x32.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Wed, 09 Apr 2014 12:11:00 GMT
Accept-Ranges: bytes
ETag: "0227c5ec53cf1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 778


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size:   778
Md5:    baec56d8e9b034c2849690fa5897ad47
Sha1:   d2ac9cce0eabd87eb375969970cc0647c03ec881
Sha256: 67c48950a529b391622aaddeaea1fe85fbb53c68557ecef82dbfc2c955171e2c
                                        
                                            GET /watchnew?key=0d90779d5172c783ebd7800dad489a3d HTTP/1.1 
Host: cudgelridge.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
Upgrade-Insecure-Requests: 1

                                         
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=14457359; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None ain=eyJhbGciOiJIUzI1NiJ9.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.PWIhRmuZIdNhejuuNIdyGbQC3bvySNPr6s50ZpGCy_w; expires=Wed, 28 Sep 2022 03:25:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b43afc96ec1c372dbcc1873c566c630b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   1110
Md5:    bbd76c9b73ff1850604c12e962bc8512
Sha1:   356e176dcd2a815a1152398f7fda083814d021b0
Sha256: ae1894d00b0731a715744c9e74ab60892c0801ba6a3468eab058997d9d35b9bb

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /imgs/htmlcssv11/back_change_language_icon32x32.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Wed, 09 Apr 2014 09:02:34 GMT
Accept-Ranges: bytes
ETag: "0712072d253cf1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 3042


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   3042
Md5:    9879e97102aaacacf42f1257a5afb761
Sha1:   e523a42312b049a9aadb51a0f0a62833ec1fca96
Sha256: 209d59d004a87671c892d53fffc966ec01aa511ba5cd5bef59c16b5455f24102
                                        
                                            GET /400/3089649 HTTP/1.1 
Host: optyruntchan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         139.45.197.237
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace-Id: 2620a45b8c9f2e470653ef2874cf9e7d
Expires: Tue, 11 Jan 1994 10:00:00 GMT
Cache-Control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
Pragma: no-cache
Vary: Origin
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Link
Access-Control-Allow-Credentials: true
Set-Cookie: OAID=58cd5b2937934f2599ad98931a562796; expires=Thu, 28 Sep 2023 03:24:09 GMT; path=/; secure; SameSite=None
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
Timing-Allow-Origin: *, *
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   30101
Md5:    0492dbd4bd782e08e6c375a157f16b23
Sha1:   57a0d3bb9ef396fd36b244a86d063b3e5a23923d
Sha256: 422037f87e2c8fe0cd31cb11144092b53650dcaec332e7b34a7203c35501b15c

Alerts:
  Blocklists:
    - fortinet: Malware
    - quad9: Sinkholed
                                        
                                            POST /v1/api.php HTTP/1.1 
Host: syndication.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 273
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.245
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D; expires=Fri, 27-Sep-2024 03:24:09 GMT; Max-Age=63072000; path=/; domain=exdynsrv.com; secure; SameSite=None
X-Robots-Tag: noindex, follow
Content-Encoding: gzip


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (9756), with no line terminators
Size:   4286
Md5:    1efddf806785c01490852f25050d8814
Sha1:   a905a04eacb8fe436768c1c4d4ed7aab3e056911
Sha256: 9e80d26b281224be554aedf48cf2cbd2bffd00f80a08ab272f09f506bb718449
                                        
                                            GET /sfp.js HTTP/1.1 
Host: addresseepaper.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         104.21.234.254
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
                                        
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: 261162fda2418e6a0b36011b1acc9336
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Wed, 28 Sep 2022 03:24:08 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PHYn%2BUciee%2FE7PitBA2pA4VlJv7OQ5LJDXAhrmJcaaGydH8pLGESYHR0if4btKy5znejZZ9ctPVBlrnqh96%2B2XtFnoQpYxw4rcehq8D2sQYnXcOLNLEwNBN6hFMSiTQeWKOtx5Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75195d50c8b30672-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size:   27574
Md5:    b1fa950e77a7db5425f9a5257af02e9c
Sha1:   2d5580451f34ad96218f8b97edf9708f9ee1be87
Sha256: d999c4320df27dc4a1d3de5aec22bb3ef201560b47a7eff3f28f4133c1997a14
                                        
                                            GET /special/imgs/arrow2.gif HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Cache-Control: max-age=2592000
Last-Modified: Tue, 26 Mar 2019 06:53:24 GMT
Accept-Ranges: bytes
ETag: "264949ba0e3d41:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 11840


--- Additional Info ---
Magic:  GIF image data, version 89a, 41 x 43\012- data
Size:   11840
Md5:    f8189d98cbf1b8071b0df6ab8e637d97
Sha1:   b50d92ab9ff465669c3fdc3eae879c68b7561ff2
Sha256: 199258e3d406ba3d92ea0d3286a3fb6b482c53719d30ada80fdf225854ed8575
                                        
                                            GET /imgs/waptrick_html_flag.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Thu, 12 Dec 2019 07:05:11 GMT
Accept-Ranges: bytes
ETag: "fae0a77ebab0d51:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 2230


--- Additional Info ---
Magic:  PNG image data, 155 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size:   2230
Md5:    8dabbade5c7050e85ed02fd7ffea93db
Sha1:   efaf45364e8d6041a27e1246a07591b002a67b2e
Sha256: 106ebe3072f58bb44727eb4d1700f1a8f7ca3b106282a36227245873fbbb3e46
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.158
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 03:24:09 GMT
Last-Modified: Wed, 28 Sep 2022 02:11:10 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qsDfdYd0Nu4VcyxqHmxIaR9a0zS6_nE2d12l6gArHDrEggUcEn7FdQ==
Age: 4379

                                        
                                            GET /imgs/htmlcssv11/back_home_icon32x32.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Wed, 09 Apr 2014 08:31:00 GMT
Accept-Ranges: bytes
ETag: "0fa369ce53cf1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 459


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size:   459
Md5:    208c830c05cacb548355849c1dd3bd81
Sha1:   087981869aa8e1ed51b7a5d36f74bad3ca24dc08
Sha256: 64253536f1c9ed9b084061ac08f0f80f068dab87302fa8114821a08d7d7fc483
                                        
                                            GET /imgs/flags/NORWAY.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Thu, 12 Dec 2019 08:10:42 GMT
Accept-Ranges: bytes
ETag: "0ad8ea5c3b0d51:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 2214


--- Additional Info ---
Magic:  PNG image data, 25 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size:   2214
Md5:    d63618403a5116c6f67652c052780939
Sha1:   76a973780634b8753544f896c10c07cf1d308cb6
Sha256: a2afdc332e5e773e12aae4ac22807a41b982c338398e103b5d46aa28ef5728c7
                                        
                                            GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VQ7UoEMQx8FV9gSz7bzf32tweKD7BbVxDxTvRAhXl4swXPhoZpM5lJKyQyUUzSbkQPYgcKBJegYlLYDXfHexjja3m/fLz013I+bXBnowqXWcjQqLpTkmaimOHMWQmJZDRXp9oE7FBQhria7agQEXNgJjw+3I7NGULIvJtCZlhi+h591Zpt3tZlZeXoVmXxJ9XFreqa8kn8H7Kf34bb8MnWXfjvAsqmYoKJrwdDLsIoL58/pw5c6fkyqeG6Ix8yCjaj1DRvIWJr0755565Em9kanN/z7Ky/MyW0JV0BAAA= HTTP/1.1 
Host: syndication.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.245
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none __upt=%7B%22v%22%3A1%2C%22id%22%3A%226333be59be2258.598062553969452179%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /watchnew?shu=650a7fc3752c324d892891050daeb99402110350fca6b3fb5208162ad13f44afe096115d571b11bb570cfff27d7fcaf699b54d1c374528ef3bbb3a36a0101337a34f611c1841f21d65f0b990afa62ba6b4410832a3a08e233415e7915d0098&pst=1664335509&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F HTTP/1.1 
Host: cudgelridge.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
Upgrade-Insecure-Requests: 1

                                         
                                         192.243.61.227
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Server: nginx/1.22.0
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://waptrick.com/
Access-Control-Allow-Origin: http://waptrick.com/
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=14457359; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None pdhtkv=true; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None uncs=1; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None pdhtkv5=true; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None uncs5=1; expires=Thu, 29 Sep 2022 03:24:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dc1b291a1d35e4825ec9e98e456c6642
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2326)
Size:   1687
Md5:    8edea965f88513c31849e792042b84b9
Sha1:   554943c75c7969ce2ad4ba2bf27bcf8c63be0650
Sha256: 921936fefe7607e14a06daa99fc1b54728c3d8293922626c162c2d31b328d077

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /stats HTTP/1.1 
Host: simplewebanalysis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.66.118.16
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 03:24:09 GMT
content-length: 40
server: fasthttp
access-control-allow-origin: http://waptrick.com
access-control-allow-credentials: true
set-cookie: uid_id2=2c42f7ad-84a2-4695-8bd7-0300c59955e9:2:1; expires=Sat, 25 Sep 2032 03:24:09 GMT; secure; SameSite=None
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   40
Md5:    9f7fb80912defe4d926b06c2e0db408c
Sha1:   05e884b2efb8c0ed6baaa13f9e09939f85682609
Sha256: c66708327fcdfa88e89be4b62c00e56e16ced55cc3f9808993c7587830e3e454
                                        
                                            GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VPW0oEMRC8iheYUP1KT/ZbfxUUD5AZI4i4u6igQh/e3kHGFOl0UZV+MJgntIn9iuXAekCLRqWhKBcyjdu7+1CKr37+fH9ZX8vpOMLB1jSMZ4Ymq2ZI0wy0OYwoVFgkJW3i1WQOspBAgk1U86WCm8liRjw+XG+XEozIeGkZBA5Ngu/tW1XXYb70hYTaqpW7PYl00ypLVk/j/4zr6S2pqVB2hoI4UKDswQn8QSjHVI6JdqKRB7HJ/ePnuEbs9tyQazO5ZLaXoWiusvBwE3OgP/dRrfqorQ2H1/UXLC+RbmIBAAA= HTTP/1.1 
Host: syndication.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.245
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none __upt=%7B%22v%22%3A1%2C%22id%22%3A%226333be59be2258.598062553969452179%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /widget-branding-logo.png HTTP/1.1 
Host: s3t3d2y8.afcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         185.76.9.21
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 28 Sep 2022 03:24:09 GMT
Content-Length: 1547
Connection: keep-alive
Last-Modified: Mon, 15 Apr 2019 09:03:59 GMT
ETag: "5cb448ff-60b"
Expires: Fri, 30 Jun 2023 16:01:02 GMT
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
X-Cache-OP: HIT
X-Accel-Expires: @1688195209
Server: CDN77-Turbo
X-77-NZT: AblMCRRol6P/UCF1AA
X-77-NZT-Ray: /1jDeVpIQyo
X-Cache: HIT
X-Age: 7676240
X-77-POP: stockholmSE
X-77-Cache: HIT
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 94 x 28, 8-bit/color RGBA, non-interlaced\012- data
Size:   1547
Md5:    7a95be207bf27c9a91720b8ac81976ca
Sha1:   6412e94ce13924fede8b1bec73cb8e049b76688c
Sha256: 5325d5beb64d82d48d3f7d78b606ee93b8e975a55868bba038905329ed1044b9
                                        
                                            HEAD /en/free/mp3/Daville/ HTTP/1.1 
Host: waptrick.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/en/free/mp3/Daville/
Cookie: uuid=0xc4c8bdc1f1a15d82; adsterra=Y

                                         
                                         104.36.23.152
HTTP/1.1 200 OK
                                        
Server: Microsoft-IIS/7.5
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-type: text/html; charset=utf-8
Expires: 0
Pragma: no-cache
Cache-control: max-age=0, no-store, no-cache, must-revalidate
Vary: accept-encoding, user-agent
Set-cookie: exopopu=Y;Domain=waptrick.com;Expires=Wed, 28-Sep-2022 04:09:10 GMT;Path=/
Content-encoding: gzip
Connection: close

                                        
                                            GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VO0UoEMQz8FX9glyRNmuaeffZA8QN2eyuIeHeocArz8WYXXBtSJs10ZoREBopB/E7KQfRAgeAxaFQZ2RQPx0co4zZdvz5e+9t4OS+oIcYKkyakcKpmlKRGFA3GnJi8uUDVW7hXsKGAssSK6opGImI0wvPT/dacJYS8V0swpWQO9L19q+q6mM/TzIWja5XJTqVMprXMqZ7E/4z98r6ZbTYqvir/PaCwFlHBwPugyEPY1tPnz7kDOz1TSA0rK7JdhlFnjrAXyz7pwqEiNFuPDNnduP0Ci9krflkBAAA= HTTP/1.1 
Host: syndication.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.245
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none __upt=%7B%22v%22%3A1%2C%22id%22%3A%226333be59be2258.598062553969452179%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /library/702594/71085bed7dbf0472e62f6edc5706d9abcda750be.jpg HTTP/1.1 
Host: s3t3d2y8.afcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.76.9.21
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 28 Sep 2022 03:24:09 GMT
content-length: 39665
last-modified: Tue, 16 Mar 2021 14:48:53 GMT
etag: "6050c555-9af1"
expires: Fri, 30 Jun 2023 18:49:27 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688195453
server: CDN77-Turbo
x-77-nzt: AblMCRS1N6//XCB1AA
x-77-nzt-ray: c52cCLidJb8
x-cache: HIT
x-age: 7675996
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Size:   39665
Md5:    dad2f60ee6504de9a8d87d7b1d0244cc
Sha1:   71085bed7dbf0472e62f6edc5706d9abcda750be
Sha256: 8c208af1a77d4bbf9781db628ab2a76cdc3dd6bae1c4e281374054b578d72a01
                                        
                                            GET /cimp.php?t=api&data=H4sIAAAAAAAAA0VPW0oEMRC8iheYobvSncd++62geIDMQxBxd1FBhTq8PYOMKRKqk+qqDgQYpA0oN0gn2Ekam45NRsOobry7f6Apv/r18/1lfh0v55W5wdXoqBBjkewuIaoirdJVg0upBTQrtZVSqc5ECcCT2cZGEVFW4dPj7b41AGGcWyRVwjIK+d7bshVbvUx90qRttozuS0rdLacp3EP4P+N8edvD9phoJQJ/F0xqCQYOehTGWML9uX/8nGfykMcUyM3TxvywUa5lnlF1qc/SMwrMLSVMwNLjy0v9BXii/lhZAQAA HTTP/1.1 
Host: syndication.exdynsrv.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         95.211.229.245
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Server: nginx
Date: Wed, 28 Sep 2022 03:24:09 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%226333be59be2258.598062553969452179%22%3B%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=; domain=.exdynsrv.com; Secure; SameSite=none __upt=%7B%22v%22%3A1%2C%22id%22%3A%226333be59be2258.598062553969452179%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Fri, 27 Sep 2024 03:24:09 GMT; path=/; domain=.exdynsrv.com; Secure; SameSite=none
X-Robots-Tag: noindex, follow
Content-Encoding: gzip

                                        
                                            GET /library/692514/acd347fdcb1175ac14a50422a557843f31f66e4f.jpg HTTP/1.1 
Host: s3t3d2y8.afcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.76.9.21
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 28 Sep 2022 03:24:09 GMT
content-length: 19070
last-modified: Thu, 22 Oct 2020 17:13:58 GMT
etag: "5f91bdd6-4a7e"
expires: Wed, 30 Aug 2023 14:54:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416603
server: CDN77-Turbo
x-77-nzt: AblMCRQeDmX/PnUlAA
x-77-nzt-ray: dgLcC1je2QQ
x-cache: HIT
x-age: 2454846
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Size:   19070
Md5:    6e24faee539ebedbe9c954f8f0a7ad4a
Sha1:   acd347fdcb1175ac14a50422a557843f31f66e4f
Sha256: 13b24df37ca05e71964fd4e3875e1cf4c82f6aa640f1f75c7ead2089117201ab
                                        
                                            GET /library/551406/df77b12b1430519b8a4ad553ee1c08c5abcc34f5.jpg HTTP/1.1 
Host: s3t3d2y8.afcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.76.9.21
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 28 Sep 2022 03:24:09 GMT
content-length: 11616
last-modified: Wed, 08 Jun 2022 05:29:21 GMT
etag: "62a033b1-2d60"
expires: Fri, 30 Jun 2023 18:20:00 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1688369867
server: CDN77-Turbo
x-77-nzt: AblMCRRhrBD/DndyAA
x-77-nzt-ray: H6rqLVQxO0o
x-cache: HIT
x-age: 7501582
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Size:   11616
Md5:    47b239f5f7f93527c72c9b1b87999a0c
Sha1:   df77b12b1430519b8a4ad553ee1c08c5abcc34f5
Sha256: 5f674910cc840142adf59454d0c5f799549c7ada943c49f07ccca90086f05f60
                                        
                                            GET /library/692514/86b9d1d123aa03a62d60845e0fa8135cce3d696f.jpg HTTP/1.1 
Host: s3t3d2y8.afcdn.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         185.76.9.21
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Wed, 28 Sep 2022 03:24:09 GMT
content-length: 25232
last-modified: Thu, 22 Oct 2020 17:15:51 GMT
etag: "5f91be47-6290"
expires: Wed, 30 Aug 2023 14:54:35 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
x-cache-op: HIT
x-accel-expires: @1693416548
server: CDN77-Turbo
x-77-nzt: AblMCRRw80z/dXUlAA
x-77-nzt-ray: zZ+5wmXr4NM
x-cache: HIT
x-age: 2454901
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Size:   25232
Md5:    5763897785e578a5b08a4ae789e90fce
Sha1:   86b9d1d123aa03a62d60845e0fa8135cce3d696f
Sha256: f29442007cb5e45fbc1f7a37aa5b38e7ec90a0bc800a49156a5daa5252dbcd25
                                        
                                            GET /imgs/htmlcssv11/clear_icon.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Fri, 05 Oct 2012 15:59:42 GMT
Accept-Ranges: bytes
ETag: "0eb5d6e12a3cd1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 294


--- Additional Info ---
Magic:  PNG image data, 21 x 15, 8-bit colormap, non-interlaced\012- data
Size:   294
Md5:    e7932d617d61ef466439d3379e29c5b4
Sha1:   5ffb19024492dc19a6108d0b6f0487f2193aadf7
Sha256: ddec118279ef42ab6c7170391e8422ab7d647a85875cfd12b9ea4d55ea8cc7d6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FC0A2CDC09CE8365B0EB9FDF07AE268D11CDCC69C92BC045764843BC6F2B05B6"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1391
Expires: Wed, 28 Sep 2022 03:47:21 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 06:25:19 GMT
Expires: Mon, 03 Oct 2022 06:25:18 GMT
Etag: "f2ec69fdaca2a0327cd3599ac05d0051df3dee41"
Cache-Control: max-age=442267,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75195d51df540b39-OSL

                                        
                                            GET /cti/c8/d8/67/c8d8673ced1eaa7e51baa9035243a09a/1627915868.png HTTP/1.1 
Host: cdn.cloudimagesb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cudgelridge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         45.133.44.10
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 28 Sep 2022 03:24:10 GMT
content-length: 107711
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:51:18 GMT
etag: "61080666-1a4bf"
expires: Fri, 30 Sep 2022 03:24:10 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size:   107711
Md5:    d5d8bc18ba152c6e850417cdf9dfbbff
Sha1:   888bf155775a9879f26faf0e7faaff5803296e8e
Sha256: b481f86a9731573e3cfd04880209d5ecb5c163caa0e2656a9f740321c5e637c8
                                        
                                            GET /gid.js HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.195.8
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-length: 65
access-control-allow-origin: http://waptrick.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b79a05115cb64ff681f596101939bff2; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   65
Md5:    6a23a28013389d5fe5497b6637b3498c
Sha1:   9925ed14d88032faee896dc7d3478c1ee22114fc
Sha256: a0cb3a7c31f4185528cd0bae32b77fddcad3a77c41c6071415db89f8cb88c4a3
                                        
                                            GET /imgs/htmlcssv11/golge_10px.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Fri, 31 Aug 2012 07:13:58 GMT
Accept-Ranges: bytes
ETag: "03f38304887cd1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 91


--- Additional Info ---
Magic:  PNG image data, 2 x 10, 8-bit gray+alpha, non-interlaced\012- data
Size:   91
Md5:    3adcffb90087422d4d7cfeb880a49597
Sha1:   4462b6a9ecf51133959b333e8014b9b3c9927031
Sha256: ea5c7819f351e03a6adbb3957c73e8f1b516039869c2667da27b188c92121a65
                                        
                                            GET /imgs/htmlcssv11/whatsapp_icon32x32.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Thu, 09 May 2019 10:03:17 GMT
Accept-Ranges: bytes
ETag: "89cf366c4e6d51:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 3057


--- Additional Info ---
Magic:  PNG image data, 36 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size:   3057
Md5:    af1b134ddf468446228d0fb5f69c62d0
Sha1:   9ffd6a9d6d624e3ca00a6c49df8c0762aefeba30
Sha256: f9f611dc16257617b61ba4b01892a5eeda564ed9430c14e0edf86d872d729097
                                        
                                            GET /pixel/purst?dl=0&th=0&sc=0&rs=1840&rd=1840&fd=761&bv=22.8.v.1&tmpl=70 HTTP/1.1 
Host: dictatepantry.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         192.243.59.12
HTTP/1.1 200 OK
                                        
Server: nginx/1.17.6
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /imgs/htmlcssv11/new_music_icon32x32.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Mon, 26 Jan 2015 11:03:00 GMT
Accept-Ranges: bytes
ETag: "08ac7a55739d01:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:09 GMT
Connection: close
Content-Length: 1947


--- Additional Info ---
Magic:  PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   1947
Md5:    5403612166c9a0c55ae1006dfb55528f
Sha1:   6b043201338f85e7eb69a12465059ee8502e3367
Sha256: 7747dc4e3f40289c701afbf500a4956d9167867a6c2b62933027118dbec403ac
                                        
                                            GET /imgs/htmlcssv11/white_transparent_bg.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Fri, 13 Jul 2012 08:36:56 GMT
Accept-Ranges: bytes
ETag: "0419a9d260cd1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:09 GMT
Connection: close
Content-Length: 156


--- Additional Info ---
Magic:  PNG image data, 50 x 41, 8-bit/color RGBA, non-interlaced\012- data
Size:   156
Md5:    393837b5c8fb68fcb4d40762f47409ad
Sha1:   78a9a294025c862052fe164d785b2687cbdbdc7b
Sha256: 2bfe590cdd9bc99659992219cc6ece86327ffcb6e66ab95cd0e04098708467a8
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DFE93271415BF96C2B87CA098BD37A8C68538E8C5072D07C180A9A66B8BDF567"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7558
Expires: Wed, 28 Sep 2022 05:30:08 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive

                                        
                                            GET /imgs/htmlcssv11/newheader_sprite.png HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Cache-Control: max-age=2592000
Last-Modified: Thu, 18 Apr 2013 10:39:32 GMT
Accept-Ranges: bytes
ETag: "0cadd2213cce1:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Connection: close
Content-Length: 7735


--- Additional Info ---
Magic:  PNG image data, 132 x 89, 8-bit/color RGBA, non-interlaced\012- data
Size:   7735
Md5:    c69713a312d1b997f56a3cb735d20c18
Sha1:   e5cf3bfddfe63e46bae6878a3822b60df05708ac
Sha256: 1283d6887d31cbf075e56f03e88b9300ef4a5a1504203880046b7189b4e2dcef
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20150
Expires: Wed, 28 Sep 2022 09:00:00 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20150
Expires: Wed, 28 Sep 2022 09:00:00 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20150
Expires: Wed, 28 Sep 2022 09:00:00 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 20227
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    6139c878a7d2bd32c61fc8287996eb5b
Sha1:   9c4692ea64832895fbd107d91f879728b6a440c7
Sha256: 3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 20380
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12016
Md5:    4b794c6812cb546de0295e087ebe66a7
Sha1:   a54803cca7d3c509c195f65961e1110c8ec56f55
Sha256: 6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11314
x-amzn-requestid: 9f410158-cd1a-45a9-9e86-4005b25577e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4Hw7oAMFpAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-70683c681f22a3b6103fcb4a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: l9IinQYCcQV_iymSArIEnOWgbmLlmVqz94402zcsmga5Bp3Sty7QRg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:49 GMT
age: 20601
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11314
Md5:    ee83d08d024d127fad5918e1ffacb78b
Sha1:   8ad289a77705358ab660b6123e9d90de991b6c13
Sha256: aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02722822-e024-44b9-8ec1-48ec9500ca58.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9733
x-amzn-requestid: fff8214b-48f7-4b45-bd91-69ea4db871d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCAWhG9HIAMFloQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330adc3-1cffa63711378c525e49e11d;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 19:36:35 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Vak91l2UKRnX0Go62y1yPwJ8E-Af7XBurmQATw5MSZXBqhUJrIgOCQ==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 04:55:01 GMT
age: 80949
etag: "2142075b27d0d355c51231ab06fea46e25eb9c59"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9733
Md5:    f3e1fd3401c5e635a8dbeec5f78b721d
Sha1:   2142075b27d0d355c51231ab06fea46e25eb9c59
Sha256: 2e17a43985b624e6b6592d402c36dd45b915cd6e1ac84e187c18c46420eb9a1d
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff14e2acf-9d43-48bc-ab80-1dc73fa7dfc8.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5377
x-amzn-requestid: 28ddd5cd-c299-4b36-98be-b6dbeaadc1ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI4KRGo7oAMFUiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336d74-27ebe6e974ee5b7d06227fca;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:39:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _yH8kTWHHDU-LcnNz0fjoHkPhf6dRP7p7QydoE3DNu4fJhDpEkxPrg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:50:17 GMT
age: 20033
etag: "2afdfb716192540a61327137706462c53588bf23"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5377
Md5:    c301dff6ddda16fd64692c19173cfa8c
Sha1:   2afdfb716192540a61327137706462c53588bf23
Sha256: fd0f33a778fec87dbfa323ffa6b24ca5f94aa16d102e62683ad54b759208058b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7020
x-amzn-requestid: 1258ee7b-987a-4454-8963-e76b7c1470f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4EVxIAMFrmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7a1fbaa251600686757f9583;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VLZucSrpwv4p9vPso373WdFZsbrj-savmu1WPx7nkUuTDaZJ6NWzwg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 20227
etag: "2351d2547f4bd0aac45bb21a5aa8277e80ef15f2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7020
Md5:    ccfb4931d41ca01aa55b4b8e9ef6b4e1
Sha1:   2351d2547f4bd0aac45bb21a5aa8277e80ef15f2
Sha256: 89de9954ee2874b476c907810189812efe13234a46910180f34f68082429260f
                                        
                                            GET /advertisers.js HTTP/1.1 
Host: banquetunarmedgrater.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         192.243.61.225
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.22.0
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e1f2c9757c1720db999a4e4dbf4822d8
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /special/videovak/videovak_336x280_3_en.jpg HTTP/1.1 
Host: samp.waptrick.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         162.251.163.98
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: max-age=2592000
Last-Modified: Fri, 10 Jan 2020 09:39:19 GMT
Accept-Ranges: bytes
ETag: "749c15d599c7d51:0"
Server: Microsoft-IIS/8.5
Date: Wed, 28 Sep 2022 03:24:09 GMT
Connection: close
Content-Length: 15705


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 336x280, components 3\012- data
Size:   15705
Md5:    a261fb5fcaa541cfd00cf1472d7c1afb
Sha1:   087c139868a2405786ff1c71c15fbea86e93a532
Sha256: 687d13f2fc81508bb72f3cbc3d381719305cf35b8889a83235d2d00420d1a68b
                                        
                                            GET /1?z=3481957 HTTP/1.1 
Host: cdn.uponelectabuzzor.club
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         139.45.197.239
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Server: nginx
Date: Wed, 28 Sep 2022 03:24:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin:
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
X-Trace-Id: 06aeb0597abb45d3d8244f5eff6fe7bf
Access-Control-Expose-Headers: X-Sc
X-Sc: 2povGnsa6jQtAFTWBQ0HkjmLtOBXocZAYSw49eUg8k3swU9C5_TKkj1SD8PQocL0f1X9uoDIQj5bt8j_2URDNiMABCQ=
Set-Cookie: scm=1; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None OAID=80cc44cb55a84bc8a330dfe2fb7d66e6; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None oaidts=1664335450; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
Pragma: no-cache
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (7767)
Size:   3552
Md5:    635ae93f4bcb78c84388cc148c307e31
Sha1:   cdae0110e3d184e01e0e67b5b940d41891ee8ac1
Sha256: 99cf6cbaea55b11ec25288296f55a83f76861b739a47596a48f719a6f2c15499
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "74276AEC058E3E59EE0846334FA4548C7CAFD9AC2761EB7011A34B32AAD56822"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13010
Expires: Wed, 28 Sep 2022 07:01:00 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "92721C7AB4EEB285CF22743E7CD3A70BED636F866146C230A154BE78C556DC3B"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2611
Expires: Wed, 28 Sep 2022 04:07:41 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "92721C7AB4EEB285CF22743E7CD3A70BED636F866146C230A154BE78C556DC3B"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2611
Expires: Wed, 28 Sep 2022 04:07:41 GMT
Date: Wed, 28 Sep 2022 03:24:10 GMT
Connection: keep-alive

                                        
                                            POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1 
Host: fleraprt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://waptrick.com/
Content-Type: text/plain;charset=UTF-8
Origin: http://waptrick.com
Content-Length: 1512
Connection: keep-alive

                                         
                                         139.45.195.254
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Server: nginx/1.19.10
Date: Wed, 28 Sep 2022 03:24:29 GMT
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    adb4650bfc9d2a73d4dd69583b0ceb14
Sha1:   1ce399d6e936232aaf2192cd7903a279c5015f22
Sha256: 21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /gid.js?pub=0&userId=&zoneId=3487682&checkDuplicate=true&ymid=&var= HTTP/1.1 
Host: my.rtmark.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://waptrick.com/
Origin: http://waptrick.com
Connection: keep-alive
Cookie: ID=b79a05115cb64ff681f596101939bff2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.195.8
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-length: 65
access-control-allow-origin: http://waptrick.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b79a05115cb64ff681f596101939bff2; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   65
Md5:    6a23a28013389d5fe5497b6637b3498c
Sha1:   9925ed14d88032faee896dc7d3478c1ee22114fc
Sha256: a0cb3a7c31f4185528cd0bae32b77fddcad3a77c41c6071415db89f8cb88c4a3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 03:24:10 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 26 Sep 2022 15:02:18 GMT
Expires: Mon, 03 Oct 2022 15:02:17 GMT
Etag: "02745fc47df86f86aeb0f8c25bbd67cff0bdbab7"
Cache-Control: max-age=473286,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 75195d55a88b0b39-OSL

                                        
                                            GET /42/38?z=3481957 HTTP/1.1 
Host: cdn.uponelectabuzzor.club
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.239
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 3e5c23193bf077e9a72e914dfb962f2f
access-control-expose-headers: X-Sc
x-sc: Bm0-Ljc9YUPZCDfZoRBtEuKGgaX2zrfTnBFnX2dH9GTW3mDFxa2TNF1rTwSImPvMgi5iWnFTl4tmjO1sLgLNIdF10-k=
set-cookie: scm=1; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None OAID=7a0aa1cca76f4f05bca8d2dd6b26185d; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None oaidts=1664335450; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /zone?pub=0&zone_id=3487682&is_mobile=false&domain=waptrick.com&var=&ymid=&var_3= HTTP/1.1 
Host: pushagim.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://waptrick.com/
Origin: http://waptrick.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.250
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
content-length: 799
x-trace-id: f30512ab1c0c828bb9953ca7fc89f93b
access-control-allow-origin: http://waptrick.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (798)
Size:   799
Md5:    e675f816c0d5caeb952b8eaa31ceaf2d
Sha1:   5d65e33c7f2e496af61461302ac5ce1bc2fc3605
Sha256: 05374e9bcfc23dded3b40580f70f8c0275e065bcf3f322555da5988b535d5b71
                                        
                                            OPTIONS /9?z=3481957&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=b79a05115cb64ff681f596101939bff2 HTTP/1.1 
Host: cdn.uponelectabuzzor.club
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://waptrick.com/
Origin: http://waptrick.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.239
HTTP/2 204 No Content
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
access-control-allow-credentials: true
access-control-allow-origin: http://waptrick.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /www/images/a563edd673308b2cd8cc1ec9c0543417.png HTTP/1.1 
Host: offerimage.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.22.32.172
HTTP/2 200 OK
content-type: image/png
                                        
date: Wed, 28 Sep 2022 03:24:11 GMT
content-length: 76281
last-modified: Tue, 07 Jun 2022 21:58:32 GMT
etag: "629fca08-129f9"
expires: Wed, 28 Sep 2022 22:10:41 GMT
cache-control: max-age=86400
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
timing-allow-origin: *
cf-cache-status: HIT
age: 18810
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 75195d58bc999926-ARN
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   76281
Md5:    a563edd673308b2cd8cc1ec9c0543417
Sha1:   bff09cb9d8c3dadb244db8d24b6f58b8dfab6469
Sha256: bbd22caad95af25c9ccf019fe7499c74743b7ef4eaceeffe0781c3f64f054b0c
                                        
                                            POST /9?z=3481957&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=b79a05115cb64ff681f596101939bff2 HTTP/1.1 
Host: cdn.uponelectabuzzor.club
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 580
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.239
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:11 GMT
content-length: 7
access-control-allow-credentials: true
access-control-allow-origin: http://waptrick.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: ac16a2dd6e009f963caa20bf7bf64ca0
access-control-expose-headers: X-Sc
x-sc: LCeM00XHw033r4SAsRpqlP7WA0RNHRjcf_IHoJ0nWBtq1ExCi38CWDhq31hQaMZhhPfG9ayIkknpaV8DjkwG_jMt5NY=
set-cookie: scm=1; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None OAID=b79a05115cb64ff681f596101939bff2; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None oaidts=1664335450; expires=Thu, 28 Sep 2023 03:24:10 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   7
Md5:    a97eb6fbe6f13b601d5d48c0eba8baae
Sha1:   736efb938caf3d0edec406932ada889f1a4f2268
Sha256: a04bf061f53e0011fd2f43bdf081526344f003c50146c88c42c2d95ef22c1821
                                        
                                            GET /pxf.gif?uuid=2c42f7ad-84a2-4695-8bd7-0300c59955e9&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.29&b_frame=0&pk=bf0d7612e94ed920aec918d8bc477e4f&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=3 HTTP/1.1 
Host: unseenreport.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/

                                         
                                         192.243.59.12
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Server: nginx/1.17.6
Date: Wed, 28 Sep 2022 03:24:11 GMT
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9b7609c23f90a9e17a0e1235b52b9b42
Strict-Transport-Security: max-age=0; includeSubdomains


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    93b885adfe0da089cdf634904fd59f71
Sha1:   5ba93c9db0cff93f52b521d7420e43f6eda2784f
Sha256: 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /apu.php?zoneid=3381466 HTTP/1.1 
Host: cdn.itskiddoan.club
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.236
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
x-trace-id: a9f60368abe500422135808412363e6d
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=960657f6216044c2b851caecb22c70dd; expires=Thu, 28 Sep 2023 03:24:10 GMT; path=/; secure; SameSite=None oaidts=1664335450; expires=Thu, 28 Sep 2023 03:24:10 GMT; path=/; secure; SameSite=None syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   25988
Md5:    a7ec6eccf53b2602f4eaa5794b5e1f38
Sha1:   e630c6473ded644712ac03967b34555fe87ad6d0
Sha256: c3e78f07e227918f04451209a32854fa5ae7db06886fb644b392804d7e9867d5
                                        
                                            GET /impression/HQYNVnX-vrt7_LwclIHph1N3W-V8YOrRkGyORoKuXcUxLJ_egILezxYg7bcWypeDmQjQB-MFucW3quBD4LYScDLo4uoOqWBSVeDYjOVWVDq4Wml6YRKETuugBMLgWCzHL3M2JVtYpr1fhEfzTq_BlVcsU3njO8FrAxHoTj_SnnWZiRepr_M7gm4msRkVOLpJT-mg86k22NByyDEtecI1jKX1U2WL8onikg00qpKefg8z9aA1posfFHfc7PDD6h4_2eqRabfZ-a9eTxDe2jhjv9s4w1qDxGC0WkiEioEBXgYV2kn3pUio9T5ERZsLueIEZ9jYcMWmcciM9os3uVQh4HOBqxJSgN5AJ2qZc4Hk2PDevyr1ECObpDH2L9LSbWjL27zKEknPG4NYH2VSEbfCjHVbwj18H2N-yWdiAdc-dl6MjtkunOZ8ajB1QXDC-hLb34oaiOLiZATBHZHeRHtEhB3CRTbkHTG1VmL9vX2Q-hzQVpqVd16KS07ITjKq4ccyXLbld6VorQny8THOV4ynVINkSKVEAjWPO7F5L5S9ml7ZQAxXYHxbaLVNG9qEpD7AqcP0jYCis0coToEW8pPAk8XnadY8lTvyTB5sLjpeBqIPd93NcD7Pghs6wuzWUejfL6OCwS1Q56U1-G6J?_z=3089649&lse=4364&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmp3%2FDaville%2F&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1 
Host: optyruntchan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Cookie: OAID=b79a05115cb64ff681f596101939bff2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         139.45.197.237
HTTP/2 200 OK
content-type: image/gif
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:14 GMT
content-length: 43
x-trace-id: e5a4b876282739f893c87e7ae5c99b50
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    b4491705564909da7f9eaf749dbbfbb1
Sha1:   279315d507855c6a4351e1e2c2f39dd9cd2fccd8
Sha256: 4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 03:24:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 03:24:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 03:24:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 03:24:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://waptrick.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 546607
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 03:24:15 GMT
date: Wed, 28 Sep 2022 03:24:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   16620
Md5:    49dcb3f23a58f998f11d8c2ca1b90a68
Sha1:   0aee92fad52d2f03484a134901a90260af43e913
Sha256: 92223ea8fd1122967d4b3adaec6c401be4ab899e973ed13fb3fb90520cdefcfa
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 03:24:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /stattag.js HTTP/1.1 
Host: tzegilo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.194.45
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 03:24:10 GMT
last-modified: Thu, 04 Aug 2022 15:18:11 GMT
etag: W/"62ebe333-8007"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 3424
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E2W1t8cFTj6qDT%2B9DbwZvY89ztbR%2FtKMPeIedJkiJttaUvlr7eRsOFI9zudcWWnxRaquI0RrCreud4q302UsOUmmB8RvSC9SWBmaMj8EAqOqh%2Fg0VPZr11l37qzKkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75195d555d801c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /27/b7bd02994a2771796f8a835cfb750d4b HTTP/1.1 
Host: cdn.uponelectabuzzor.club
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.239
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Thu, 22 Sep 2022 08:42:06 GMT
expires: Thu, 22 Oct 2082 08:42:06 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /en/free/mp3/Daville HTTP/1.1 
Host: zamob.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.36.23.145
HTTP/1.1 301 Moved Permanently
                                        
Server: Microsoft-IIS/7.5
Date: Wed, 28 Sep 2022 03:24:08 GMT
Content-type: text/html
Location: http://waptrick.one/en/free/mp3/daville
Connection: close
Content-encoding: gzip


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /401/3089649?oo=1&oaid=b79a05115cb64ff681f596101939bff2 HTTP/1.1 
Host: optyruntchan.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.237
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
x-trace-id: 3d5061a3f82ae1d26697ca294427a0b3
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: http://waptrick.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=b79a05115cb64ff681f596101939bff2; expires=Thu, 28 Sep 2023 03:24:10 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /pfe/current/extra.min.js?z=3487682 HTTP/1.1 
Host: pushagim.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         139.45.197.250
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 03:24:10 GMT
last-modified: Tue, 27 Sep 2022 13:19:37 GMT
etag: W/"6332f869-f6af"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---