dans-bg.rf.gd/
554 B IP
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (824), with no line terminators
Hash 5384c2ba2d0cca13c190fc1db656b6a5
2de0cc6bd2ebec807bfa02db7826e0906911a13a
d06c5554e7a7d5722fac77890a71d0c4590f8dc3d7e96099d94693af8c6c10ef
GET / HTTP/1.1
Host: dans-bg.rf.gd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 05:21:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Content-Encoding: gzip
dans-bg.rf.gd/aes.js
31 kB IP
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 78a66859739b0c9e18bc5b4538c03bf9
77aa2fbbc258645904620937b387d3deedbd16ea
d2701c86a2a31a641520e72121749dbbabeed4b1a59aece20bbf14f9c9de82bc
GET /aes.js HTTP/1.1
Host: dans-bg.rf.gd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://dans-bg.rf.gd/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 05:21:08 GMT
Content-Type: application/javascript
Content-Length: 31206
Last-Modified: Sat, 08 Aug 2015 08:10:59 GMT
Connection: keep-alive
ETag: "55c5b993-79e6"
Accept-Ranges: bytes
1.2 kB IP
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 829751ebd08c0f51fef882bf190930f7
c84070f88530df6944c7443bcc91413269a6e4f3
684ad36ae2b0e7a69ca46ec15214337c39c5517d161b02d2a226de1ce750ff15
GET /?i=1 HTTP/1.1
Host: dans-bg.rf.gd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://dans-bg.rf.gd/
DNT: 1
Connection: keep-alive
Cookie: __test=7da11f1c3aec6fedc537eb0a7f6e670d
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 19 Sep 2023 05:21:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Tue, 12 Sep 2023 08:15:15 GMT
Cache-Control: max-age=2592000, public, proxy-revalidate, public, proxy-revalidate
Expires: Thu, 19 Oct 2023 05:21:08 GMT
Content-Encoding: gzip
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css
200 OK 10 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css
IP
Requested by http://dans-bg.rf.gd/?i=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (59119)
Hash ecd507b3125edc4d2a03aa6ae5d07da9
a57ee68d11601b0fd8e5037fc241ff65a754473c
99464ceb71bc9bbdcc72275faefe44f98eb5cbb6b5d8ee665b87b35376f1a96e
GET /ajax/libs/font-awesome/5.15.4/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://dans-bg.rf.gd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 19 Sep 2023 05:21:09 GMT
content-type: text/css; charset=utf-8
content-length: 10462
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942a3b-28de"
last-modified: Thu, 22 Jun 2023 11:02:19 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1616159
expires: Sun, 08 Sep 2024 05:21:09 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fhcQd775Nd0L4D9j1v8q3E%2Bksh1KuxUe9uNYgxH2kB%2BaaW9usHwUl52CewbIn9KEt1l2fIAmzIyQ6vUMXYRZ3Q2WYn0kBdBEUhHUX8YLrD14fnjfSp1olHtAZnygeYyqy5Mm5gvF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 808f62336fb40b61-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@3.3.7/dist/css/bootstrap.min.css
200 OK 21 kB URL GET HTTP/2 cdn.jsdelivr.net/npm/bootstrap@3.3.7/dist/css/bootstrap.min.css
IP
Requested by http://dans-bg.rf.gd/?i=1
Certificate IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint88:D1:D3:FA:BE:69:45:71:5A:74:78:14:1A:E8:F3:5A:88:69:9C:7F
ValidityFri, 23 Dec 2022 10:55:14 GMT - Wed, 24 Jan 2024 10:55:13 GMT
File type ASCII text, with very long lines (65371)
Hash ec3bb52a00e176a7181d454dffaea219
6527d8bf3e1e9368bab8c7b60f56bc01fa3afd68
f75e846cc83bd11432f4b1e21a45f31bc85283d11d372f7b19accd1bf6a2635c
GET /npm/bootstrap@3.3.7/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://dans-bg.rf.gd
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 3.3.7
x-jsd-version-type: version
etag: W/"1d970-ZSfYvz4ek2i6uMe2D1a8Afo6/Wg"
content-encoding: br
accept-ranges: bytes
date: Tue, 19 Sep 2023 05:21:09 GMT
age: 12024353
x-served-by: cache-fra-eddf8230076-FRA, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 21190
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash abdf8b53099dccf8d09dbfddf3de9ead
ae1e54f0d16df6b3c6c56a557b1d973b2d21e852
8e6598419100a6447e92e81214ae1277824289350a90fa89b3594f1288debcc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 05:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m01.amazontrust.com/
471 B URL ocsp.r2m01.amazontrust.com/
IP
Hash fce5557552aabe454f81e2bf7ac21862
0597068c870af0cec6563c1f3a085ab2e2080af4
034b4328187109988fb83d4024464e862bd7391525b2a9c97bb08bbd480cc8b5
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Tue, 19 Sep 2023 05:21:09 GMT
Server: ECAcc (amb/6AD6)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TYiCX4lKkW3j7z8kjLPZE5tJdYv-a7aQ30hhab9QzTWqTo4Sjlo2yw==
ocsp.pki.goog/gts1c3
471 B IP
Hash abdf8b53099dccf8d09dbfddf3de9ead
ae1e54f0d16df6b3c6c56a557b1d973b2d21e852
8e6598419100a6447e92e81214ae1277824289350a90fa89b3594f1288debcc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 05:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vpassets.infinityfree.net/welcome2017/logo.png
200 OK 4.8 kB URL GET HTTP/2 vpassets.infinityfree.net/welcome2017/logo.png
IP
Requested by http://dans-bg.rf.gd/?i=1
Certificate IssuerAmazon
Subjectvpassets.infinityfree.net
Fingerprint9C:D7:7B:8F:92:D9:6F:7D:AB:6F:80:06:DB:CB:D9:D2:AE:BE:12:C6
ValidityMon, 27 Feb 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT
File type PNG image data, 183 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash a426c3bc6ef80c545000f0fe00e1134b
a3480354562de0650b88cb9a37bb8caf8e1879c8
03749723775e00d10b6864fbcef9cb02e163738996f64fce147824f306a6a7b6
GET /welcome2017/logo.png HTTP/1.1
Host: vpassets.infinityfree.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://dans-bg.rf.gd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 4770
last-modified: Sun, 06 Aug 2023 12:49:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 19 Sep 2023 05:21:10 GMT
etag: "a426c3bc6ef80c545000f0fe00e1134b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OGJiZNpR37kzl0xzKr-nk6tnKpceAZLYID4TL0UsE71qiLfj3zQQoQ==
age: 1757
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
472 B IP
Hash 85073dc38dce61b5a442199213e5e449
436a960500e7061a8bfa3cc3fa897efdaa3dcaa4
0215bd45a978d1802cb17ebe04b8f9b322e7e3b2f12cfbcd8bc61369aeeee040
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 05:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vpassets.infinityfree.net/welcome2017/background.jpg
200 OK 394 kB URL GET HTTP/2 vpassets.infinityfree.net/welcome2017/background.jpg
IP
Requested by http://dans-bg.rf.gd/?i=1
Certificate IssuerAmazon
Subjectvpassets.infinityfree.net
Fingerprint9C:D7:7B:8F:92:D9:6F:7D:AB:6F:80:06:DB:CB:D9:D2:AE:BE:12:C6
ValidityMon, 27 Feb 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1440, components 3\012- data
Size 394 kB (393775 bytes)
Hash e6c66532ab2b33a59216e338a7028e2c
c726ce8dde91e29ffc48825b5a034dcde4892eae
c0821bf0069d5620a79fe55f96426c6b0d903e5ba6fc7134a6eca3def32b17da
GET /welcome2017/background.jpg HTTP/1.1
Host: vpassets.infinityfree.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://vpassets.infinityfree.net/welcome2017/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 393775
last-modified: Sun, 06 Aug 2023 12:49:00 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
date: Tue, 19 Sep 2023 04:37:30 GMT
etag: "e6c66532ab2b33a59216e338a7028e2c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Osbxz7BrnyTzr3eTUPH-M1OD9_1PJUJCH1T2zdQnxHua059PPcWCyw==
age: 2620
X-Firefox-Spdy: h2
fonts.gstatic.com/s/plusjakartasans/v8/LDIbaomQNQcsA88c7O9yZ4KMCoOg4IA6-91aHEjcWuA_qU79TR_V.woff2
200 OK 12 kB URL GET HTTP/2 fonts.gstatic.com/s/plusjakartasans/v8/LDIbaomQNQcsA88c7O9yZ4KMCoOg4IA6-91aHEjcWuA_qU79TR_V.woff2
IP
Requested by http://dans-bg.rf.gd/?i=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintAB:14:67:80:B6:91:41:34:54:E4:AE:2E:71:65:B4:8E:65:B2:D2:2D
ValidityMon, 14 Aug 2023 08:22:45 GMT - Mon, 06 Nov 2023 08:22:44 GMT
File type Web Open Font Format (Version 2), TrueType, length 11876, version 1.0\012- data
Hash 657ceef57276d20f536bc131c051ba04
46b53b71e5311750a6647826f1ac556619ce7b71
cf1300338d5db6340c61d3e549d482298897791d327c156509e1968c84e0f143
GET /s/plusjakartasans/v8/LDIbaomQNQcsA88c7O9yZ4KMCoOg4IA6-91aHEjcWuA_qU79TR_V.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://dans-bg.rf.gd
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11876
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 18 Sep 2023 08:03:27 GMT
expires: Tue, 17 Sep 2024 08:03:27 GMT
cache-control: public, max-age=31536000
age: 76663
last-modified: Thu, 22 Jun 2023 14:14:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
471 B URL ocsp.r2m01.amazontrust.com/
IP
Hash fce5557552aabe454f81e2bf7ac21862
0597068c870af0cec6563c1f3a085ab2e2080af4
034b4328187109988fb83d4024464e862bd7391525b2a9c97bb08bbd480cc8b5
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Tue, 19 Sep 2023 05:21:10 GMT
Server: ECAcc (amb/6B09)
X-Cache: Miss from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JIAbKsJpWanA2tZD38PR01tz-rFFYzVLbOdeB_HPsES1lUDrP9N4Bw==
ocsp.pki.goog/gts1c3
472 B IP
Hash 85073dc38dce61b5a442199213e5e449
436a960500e7061a8bfa3cc3fa897efdaa3dcaa4
0215bd45a978d1802cb17ebe04b8f9b322e7e3b2f12cfbcd8bc61369aeeee040
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 19 Sep 2023 05:21:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dans-bg.rf.gd/favicon.ico
302 Found 227 B URL GET HTTP/1.1 dans-bg.rf.gd/favicon.ico
IP
ASN #34119 Wildcard UK Limited
Requested by http://dans-bg.rf.gd/?i=1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 062083477478aac3073dc04e65b37ca7
23384c8e312715b238ad2996f9bd2b020e3d55b7
924f0f4dea114255f599c39bfe3ed86330193e32d9f43563c6159c10f465193b
GET /favicon.ico HTTP/1.1
Host: dans-bg.rf.gd
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://dans-bg.rf.gd/?i=1
Cookie: __test=7da11f1c3aec6fedc537eb0a7f6e670d
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 19 Sep 2023 05:21:09 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 227
Connection: keep-alive
Location: https://errors.infinityfree.net/errors/404/
Cache-Control: max-age=2592000
Expires: Thu, 19 Oct 2023 05:21:09 GMT
errors.infinityfree.net/errors/404/
404 Not Found 0 B URL GET HTTP/2 errors.infinityfree.net/errors/404/
IP
Requested by http://dans-bg.rf.gd/?i=1
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDA:51:59:52:65:D6:57:48:F7:11:99:9C:BE:81:CA:F5:F1:A3:12:2D
ValiditySun, 16 Apr 2023 00:00:00 GMT - Mon, 15 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /errors/404/ HTTP/1.1
Host: errors.infinityfree.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://dans-bg.rf.gd/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Tue, 19 Sep 2023 05:21:10 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CX3J031qFrGzOVLaWkE2Q%2ByiCoAZtdH7NMSDK%2F%2BiNKyPmw4gZSRicDpD6Z0Qah7Sz7Z1wGJ9nJSLkZ1Wq96xWZ4yAPvDEvLegHB7aGB3zir2PteFRescHkgwOjxb4NjcwUZN0xTsFhg7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
server: cloudflare
cf-ray: 808f6237889b56a5-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@400
200 OK 1.6 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Plus+Jakarta+Sans:wght@400
IP
Requested by http://dans-bg.rf.gd/?i=1
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type ASCII text, with very long lines (1623), with no line terminators
Hash 6337fcabecf97094875a8959a9f0fe29
1a10868d0ad161c5487eccd991ab6c7071512b9e
d872ce57ffd8a1d671967e4b786ca50824464328835eb4e3ec06d9b838d5f25f
GET /css2?family=Plus+Jakarta+Sans:wght@400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://dans-bg.rf.gd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 19 Sep 2023 05:21:09 GMT
date: Tue, 19 Sep 2023 05:21:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
vpassets.infinityfree.net/welcome2017/style.css
200 OK 2.1 kB URL GET HTTP/2 vpassets.infinityfree.net/welcome2017/style.css
IP
Requested by http://dans-bg.rf.gd/?i=1
Certificate IssuerAmazon
Subjectvpassets.infinityfree.net
Fingerprint9C:D7:7B:8F:92:D9:6F:7D:AB:6F:80:06:DB:CB:D9:D2:AE:BE:12:C6
ValidityMon, 27 Feb 2023 00:00:00 GMT - Wed, 27 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (2142), with no line terminators
Hash e44e905f7ddf2b255d73d1d70e443a79
fa6b6acab939fc6755d75385bdc389564618e072
a0f6fd8d41b832e60e15211a234fc1193df09c94f5ba3bdb6a7bcd49f5fe876a
GET /welcome2017/style.css HTTP/1.1
Host: vpassets.infinityfree.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://dans-bg.rf.gd/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
last-modified: Sun, 06 Aug 2023 12:49:00 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 19 Sep 2023 04:27:55 GMT
etag: W/"76bffb56ba8d2f4cf37f700e2c4f732d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tSrUBj-2ekcW6pQKRhbe_L1m8Lx6fqAABz4qifGgeTJj6rI4oAzZBg==
age: 3213
X-Firefox-Spdy: h2
185.27.134.55
142.250.74.131
104.17.24.14