as09doansoda0124d.info/
151.139.128.11301 Moved Permanently 0 B IP 151.139.128.11:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: as09doansoda0124d.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 24 Mar 2023 23:29:48 GMT
Accept-Ranges: bytes
Cache-Control: max-age=0
Location: https://as09doansoda0124d.info/
X-HW: 1679700588.cds231.sk1.h2,1679700588.cds239.sk1.c
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Length: 0
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2332
Expires: Sat, 25 Mar 2023 00:08:40 GMT
Date: Fri, 24 Mar 2023 23:29:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 13f90146df1d559743af6df15c29b77b
6dd24f60629c39f857e3c996084f4d515cf3f8d0
ea5975be17b9cd29c8770939eb5d63ce43c1c44ce9a3a4d04e1e79cd69b30d1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA5975BE17B9CD29C8770939EB5D63CE43C1C44CE9A3A4D04E1E79CD69B30D1C"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15219
Expires: Sat, 25 Mar 2023 03:43:27 GMT
Date: Fri, 24 Mar 2023 23:29:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dc2752d83fbed82852248898a132467a
b27a6b4af2e07663a58cafb641513f7224c7a7c3
ea7838393d83805a7b8a2b01bd09e4423617c4da285b983a11e9ba36266810d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA7838393D83805A7B8A2B01BD09E4423617C4DA285B983A11E9BA36266810D5"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9557
Expires: Sat, 25 Mar 2023 02:09:05 GMT
Date: Fri, 24 Mar 2023 23:29:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 24 Mar 2023 23:27:40 GMT
content-type: application/json
age: 128
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TLRkeq4yH0VujLEuOoxposkSH/uLiR+BSTusa8tFiVV1ZHstBSb1xsGzbVwJilP5YRz3MS37+yE=
x-amz-request-id: NPVQ477JK2ZQFQRY
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 24 Mar 2023 23:00:33 GMT
age: 1755
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Mar 2023 23:29:48 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 24 Mar 2023 23:17:23 GMT
age: 746
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13379
Expires: Sat, 25 Mar 2023 03:12:48 GMT
Date: Fri, 24 Mar 2023 23:29:49 GMT
Connection: keep-alive
push.services.mozilla.com/
54.200.156.146101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.156.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Au6gd9flRGk4yUl18byEow==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3XbwXFy4v3PcdQYZGqGEI0riue8=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13448
Expires: Sat, 25 Mar 2023 03:13:57 GMT
Date: Fri, 24 Mar 2023 23:29:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13448
Expires: Sat, 25 Mar 2023 03:13:57 GMT
Date: Fri, 24 Mar 2023 23:29:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13448
Expires: Sat, 25 Mar 2023 03:13:57 GMT
Date: Fri, 24 Mar 2023 23:29:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13448
Expires: Sat, 25 Mar 2023 03:13:57 GMT
Date: Fri, 24 Mar 2023 23:29:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13448
Expires: Sat, 25 Mar 2023 03:13:57 GMT
Date: Fri, 24 Mar 2023 23:29:49 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcbf42d9-9670-45f8-b425-a162a5e30b3f.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcbf42d9-9670-45f8-b425-a162a5e30b3f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2af85a45729fe89653835173ffb1822c
00d118bd4343e36e69217d8c1baeecea253e7b48
45df61a4c5a5a555a09881035ccd36b950af783505cc14e4a28446f05c34348b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdcbf42d9-9670-45f8-b425-a162a5e30b3f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8876
x-amzn-requestid: 4a8c3364-d9e9-49ff-afa0-1f49a90f9f6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CM-xpFZIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641b780a-205addd335ac20c16c5a1a58;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 21:50:02 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: j5wNyBJQU_dvub550k1vWq6darXoOv-oJ5brvPh44JdSWFsbUviJKw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 17:28:43 GMT
age: 21666
etag: "00d118bd4343e36e69217d8c1baeecea253e7b48"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02e0767e0c72d95e30337ad42f5d15b3
79aa21ca35c9d98ea7d0713d219e9b67083bdc05
7991a0c4d409cca49259cb626d0de39684635f14fad72e074b303235026673a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6511
x-amzn-requestid: 38d33f4d-2b85-4666-b778-04f4b4dfdf10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihSFIdIAMFRjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a1-036a28e75189d05209396933;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: eYAgUDZFGkaskq0A77VgX54hvvjtQtClrFyED3COkankS76uD7hTAQ==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:43:52 GMT
age: 6357
etag: "79aa21ca35c9d98ea7d0713d219e9b67083bdc05"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: vOBDFA2LzOIp_0dMXApotrithfiToWtpM2xMRyx1pWAE86olKT6EpQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 02:36:43 GMT
age: 75186
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F644f61ad-59fd-4171-83b9-7bcc66bb6067.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F644f61ad-59fd-4171-83b9-7bcc66bb6067.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4fde777f6873c8532e6d5b8f1eadab56
5df18e308fe21cb5466d839d52a63a92b51d0ff4
ab805e2ce663c4df10af28ee58e6bdcd0618e602971cc5fdb841d865d824e858
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F644f61ad-59fd-4171-83b9-7bcc66bb6067.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15418
x-amzn-requestid: 8341421b-a004-404b-be63-837e3e093fda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzHu1oAMFWZA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-36bcecd1567f6180628b621e;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: nJLIxder3QMBDbb05YsfWzHPpaZgy5EmBALQfCxncPQzcLfUJLyQIQ==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:49:32 GMT
age: 6017
etag: "5df18e308fe21cb5466d839d52a63a92b51d0ff4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: i6dsVaC_gPijsRqh_EL5tZYZpjNEbQJvKIpPq501TIJZzcLUWeRz9w==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:45:56 GMT
age: 6233
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46ae0c32-7820-46e1-90ed-738107a0cdf3.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46ae0c32-7820-46e1-90ed-738107a0cdf3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b0d94712547b0292164797a9a1e012c
20f9fbbd9d79edc41cdfe02e9f670c6afa3bf31f
d7123791d821bf3a41ec770c0a814e8d7b25bf6cc9d9f99bf130754391b2772d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46ae0c32-7820-46e1-90ed-738107a0cdf3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12364
x-amzn-requestid: eed5e633-8900-4d33-9676-197cb7afe5c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiu1GXXIAMFbiQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-30eb694b637bd2104c05dcf7;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: H_do89fLV5BHRqnLmUuos_MMj_WGWJ5bmCmqUrfaURp531MA5nYayw==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:43:08 GMT
age: 6401
etag: "20f9fbbd9d79edc41cdfe02e9f670c6afa3bf31f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.livechatinc.com/tracking.js
23.36.79.16200 OK 26 kB URL HTTP/2 cdn.livechatinc.com/tracking.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash ca1a1fad7045926f80ec420ab6ca655e
236a40dc90d1cf21d4fbec8f37a29e5aa81bc142
d0bcb77b6046af479839fc31f4f7f9765029706304ed8ed8319ba577e40d81b8
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 15 Mar 2023 09:03:42 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: .nmbWTWYSt4mObEbpFmxweZDq.QZWcu.
server: AmazonS3
content-encoding: br
etag: W/"840d6e442c74218df05e0d3ded6c2d57"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: ePq7d4WSsZXQqnKqZJlazv-GCqLIrd3Prw48kxtM3opE4UlsmlOfWw==
content-length: 26391
cache-control: max-age=28800
expires: Sat, 25 Mar 2023 07:29:51 GMT
date: Fri, 24 Mar 2023 23:29:51 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/b4NcTnG8WyE
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/b4NcTnG8WyE
IP 142.250.74.131:0
Hash 67e160a59fe8391feba82bae6621b305
0d26f642f5dfeab390aef4572b91549821e9b3af
cb77dfbf4bfe2edcd7fc336bd155fab9fa8e2ceac1aa7b4e0a0293b798af6daa
POST /s/gts1d4/b4NcTnG8WyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 23:29:52 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=11291727&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fwww.atta4dgacor.com%2Fid&channel_type=code&jsonp=__h2mjs598jh9
23.36.79.16200 OK 391 B URL HTTP/2 api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?license_id=11291727&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fwww.atta4dgacor.com%2Fid&channel_type=code&jsonp=__h2mjs598jh9
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (391), with no line terminators
Hash 1244974e24194668b9ce7248d240b289
c36132b902649449bde2278c4fb8b565d948216f
3d2a54d3dc452c11065d6824cf7526dcdd7e3d77f6d75559a6bf6a36e1ca1078
GET /v3.6/customer/action/get_dynamic_configuration?license_id=11291727&client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5&url=https%3A%2F%2Fwww.atta4dgacor.com%2Fid&channel_type=code&jsonp=__h2mjs598jh9 HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: frame-ancestors https://www.atta4dgacor.com/;
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
x-frame-options: allow-from https://www.atta4dgacor.com/
content-length: 391
date: Fri, 24 Mar 2023 23:29:52 GMT
X-Firefox-Spdy: h2
api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=bfdf2f71-6342-45a7-bd48-7485397cb00a&version=1389.2.2.601.116.65.2.3.6.84.4.20.93&group_id=0&jsonp=__lc_static_config
23.36.79.16200 OK 46 kB URL HTTP/2 api.livechatinc.com/v3.4/customer/action/get_configuration?organization_id=bfdf2f71-6342-45a7-bd48-7485397cb00a&version=1389.2.2.601.116.65.2.3.6.84.4.20.93&group_id=0&jsonp=__lc_static_config
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash 63b549fdbca487492c285de57da66a57
d11a2ce1a3a1df07a821aa517e52473e546e225a
cb5900f314e699d6f9cf93113e473116deb4b11ed7710f579113e641fa239582
GET /v3.4/customer/action/get_configuration?organization_id=bfdf2f71-6342-45a7-bd48-7485397cb00a&version=1389.2.2.601.116.65.2.3.6.84.4.20.93&group_id=0&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2024-05-31
vary: Accept-Encoding
content-length: 1994
cache-control: public, max-age=600
expires: Fri, 24 Mar 2023 23:39:52 GMT
date: Fri, 24 Mar 2023 23:29:52 GMT
X-Firefox-Spdy: h2
secure.livechatinc.com/customer/action/open_chat?license_id=11291727&group=0&embedded=1&widget_version=3&unique_groups=0
23.36.79.16200 OK 2.6 kB URL HTTP/2 secure.livechatinc.com/customer/action/open_chat?license_id=11291727&group=0&embedded=1&widget_version=3&unique_groups=0
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8824), with no line terminators
Hash 0fa67c2edb3d404fbb15d383b079eedf
43d8626b6e24dff3cf937cc4143c10049acaf352
072e11771425c25df2301aea4faf826eb985eabc76ca8e3854f2daa32429fdcd
GET /customer/action/open_chat?license_id=11291727&group=0&embedded=1&widget_version=3&unique_groups=0 HTTP/1.1
Host: secure.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: text/html; charset=utf-8
vary: Accept-Encoding
date: Fri, 24 Mar 2023 23:29:52 GMT
content-length: 2559
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/1.56ff3dd7.chunk.js
23.36.79.16200 OK 66 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/1.56ff3dd7.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65462)
Hash 7c3dc364f1dbdd4c4e6f0de6bcc7e8d8
bd4287cc9bf64c24ac43e40aaf859af228235ea2
f87d4e7bafd6250364aa32f0000891a2eaeac14a0c59aa1889ee39bf92754838
GET /widget/static/js/1.56ff3dd7.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Mar 2023 09:29:10 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: xiuRP9ngsNjNTs9HmKs.2KjQwzL8hteR
server: AmazonS3
content-encoding: br
etag: W/"82d0dc19c8413c5682ac79122698124f"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: vuObFLNecmwEbmkTlAGfbdKtSw52WTt7Ynql6XYuDB18vuV269CtXg==
content-length: 66451
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 23:29:52 GMT
date: Fri, 24 Mar 2023 23:29:52 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=bfdf2f71-6342-45a7-bd48-7485397cb00a&version=ff93808ef52c6dd040640c4853b854bd_ff1a2f9a078172767c418908f445b3b6&language=en&group_id=0&jsonp=__lc_localization
23.36.79.16200 OK 19 kB URL HTTP/2 api.livechatinc.com/v3.4/customer/action/get_localization?organization_id=bfdf2f71-6342-45a7-bd48-7485397cb00a&version=ff93808ef52c6dd040640c4853b854bd_ff1a2f9a078172767c418908f445b3b6&language=en&group_id=0&jsonp=__lc_localization
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash b3f602f44aae2da25538845fff4a14f0
bdd764c93bafaef9a7369b4c7c43e4876195c5f1
b029fca6a6f682381205a8a9856b868c4c2cffbcd71a08f7897ba9734398933a
GET /v3.4/customer/action/get_localization?organization_id=bfdf2f71-6342-45a7-bd48-7485397cb00a&version=ff93808ef52c6dd040640c4853b854bd_ff1a2f9a078172767c418908f445b3b6&language=en&group_id=0&jsonp=__lc_localization HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2024-05-31
vary: Accept-Encoding
cache-control: public, max-age=600
expires: Fri, 24 Mar 2023 23:39:52 GMT
date: Fri, 24 Mar 2023 23:29:52 GMT
X-Firefox-Spdy: h2
9996777888.com/V0013/fonts/ekster/stylesheet.css
35.190.44.120200 OK 2.7 kB URL HTTP/2 9996777888.com/V0013/fonts/ekster/stylesheet.css
IP 35.190.44.120:0
File type ASCII text, with very long lines (2746), with no line terminators
Hash b39515e448fb9bcb60fe5bcf7f87a6fc
c245e37cb0b17746d7f052d7e2279a64dc987dce
251af6c5cd0f0c03ebf679680d1896e5a8d301bdfcdc88db5b699976d6a39efa
GET /V0013/fonts/ekster/stylesheet.css HTTP/1.1
Host: 9996777888.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvpG4AM8diCxLS5SFPE_-SIao5ldvcok48dbrXcGKji8IHRbAWwMvmZA5KZRqury_hkzI8902FO7oqwQB3p8uLipcTT8sEN
date: Fri, 24 Mar 2023 23:29:53 GMT
last-modified: Fri, 15 Jul 2022 08:01:34 GMT
etag: "b39515e448fb9bcb60fe5bcf7f87a6fc"
x-goog-generation: 1657872094242370
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2746
content-type: text/css
x-goog-hash: crc32c=B28auA==, md5=s5UV5Ej7m8tg/lvPf4em/A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 2746
access-control-allow-origin: *
server: UploadServer
cache-control: public,max-age=3600
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVZNyBx2pqPA.woff2
23.36.79.16200 OK 13 kB URL HTTP/2 cdn.livechatinc.com/widget/o-0NIpQlx3QUlC5A4PNjXhFVZNyBx2pqPA.woff2
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 12688, version 1.0\012- data
Hash d9f5998f47f6f22cb66e7dbf428c76ab
86b993baf91f867a03ea62e0d0adc9488530efaa
e94ba9c6df7a149b4b3c590bcc484ce24ce7c0f15c6f7f43479035a6311211d6
GET /widget/o-0NIpQlx3QUlC5A4PNjXhFVZNyBx2pqPA.woff2 HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 12688
last-modified: Tue, 18 Oct 2022 07:22:38 GMT
etag: "d9f5998f47f6f22cb66e7dbf428c76ab"
x-amz-version-id: msVoGOeEvv4rBAjmPT.bOOY9QhLnYq.K
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: HAM50-P2
x-amz-cf-id: X3prfpUvaSuujXUioKllfbrWJRSujJaRcEeTIItJqtcJgekTOM8gKw==
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 23:29:53 GMT
date: Fri, 24 Mar 2023 23:29:53 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2
23.36.79.16200 OK 37 kB URL HTTP/2 cdn.livechatinc.com/widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash e80e3416d6238f188bcb7c780eb2b580
8672d9842cd58306853ef5e96bc0a09a849e9eae
2a8e190541ed62e088fb9c7e4e3ffe03539a74ac89b76a0aeebded6975779433
GET /widget/o-0IIpQlx3QUlC5A4PNr5TRASf6M7Q.woff2 HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 12852
last-modified: Tue, 18 Oct 2022 07:22:37 GMT
etag: "3b5df7e947d77201eaf22f3dbdac08cc"
x-amz-version-id: 4jMtpmrTh3NU2il.eSSLRODO9UYgvJk9
accept-ranges: bytes
server: AmazonS3
x-amz-cf-pop: HAM50-C2
x-amz-cf-id: KM8abeyaVeSEIxlLTJcUkoNH7_q4l1PlUQolOkL0_K8Ml-Hn8lULcg==
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 23:29:53 GMT
date: Fri, 24 Mar 2023 23:29:53 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/b4NcTnG8WyE
142.250.74.131200 OK 46 kB URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/b4NcTnG8WyE
IP 142.250.74.131:0
Hash e87d7cc9cfdd624207ef989d12e216fb
ef9f7f3a62132d8e27b1d6b7d0a3b5d21939a672
5e2e02c6b006b5764ccbb46ab58e3e0a2781c13c3e77f448da8dbf2df2874f94
POST /s/gts1d4/b4NcTnG8WyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 23:29:53 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 23:29:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=undefined
142.250.74.168200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=undefined
IP 142.250.74.168:0
File type ASCII text, with very long lines (2206)
Hash baeb5a102b360c416d4f9fd69e079225
90fa2e4a8d860537ebf150a5e4a04f2490b604f2
e34a76b1e29c0ec6f5088983c270efcf28de421922ad0a02c9f9b02303b8699e
GET /gtag/js?id=undefined HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 24 Mar 2023 23:29:54 GMT
expires: Fri, 24 Mar 2023 23:29:54 GMT
cache-control: private, max-age=900
last-modified: Fri, 24 Mar 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 38527
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 23:29:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
api.livechatinc.com/v3.4/customer/rtm/ws?organization_id=bfdf2f71-6342-45a7-bd48-7485397cb00a
23.36.79.17101 Switching Protocols 0 B URL HTTP/1.1 api.livechatinc.com/v3.4/customer/rtm/ws?organization_id=bfdf2f71-6342-45a7-bd48-7485397cb00a
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v3.4/customer/rtm/ws?organization_id=bfdf2f71-6342-45a7-bd48-7485397cb00a HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://secure.livechatinc.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NiBxZgzYhp+7SC4DuDjNlw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
sec-websocket-accept: Yc1TD108ZLoaks6I9pp0nWsOOVE=
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://secure.livechatinc.com
legacy: 2024-05-31
Date: Fri, 24 Mar 2023 23:29:54 GMT
Upgrade: websocket
Connection: Upgrade
accounts.livechatinc.com/v2/customer/token
23.36.79.16200 OK 195 B URL HTTP/2 accounts.livechatinc.com/v2/customer/token
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text
Hash 3a08c4b653e2dccfc1302063cc3b0a9a
9f987da7945acdf1850ad97a04368c6b53d3c124
1e70ec59258aab48ba82a378e82a9369ce4591455e4d7f6087b0e3f094ec7ddc
POST /v2/customer/token HTTP/1.1
Host: accounts.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 225
Origin: https://secure.livechatinc.com
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://secure.livechatinc.com
cache-control: no-cache, no-store, max-age=0, must-revalidate
content-type: application/json
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 195
date: Fri, 24 Mar 2023 23:29:54 GMT
set-cookie: __lc_cid=aa7463d0-8871-4809-9011-707a463c6f65; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Mon, 24 Mar 2025 23:29:54 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=d0ac164532c515c76f756b84c849bbd03c91c8de06062a69ed102294530f6494a55a65abfa246ed869c1f1dcb3dca41f729ebdf4b7783abf1c7948f15026; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Mon, 24 Mar 2025 23:29:54 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cid=aa7463d0-8871-4809-9011-707a463c6f65; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Mon, 24 Mar 2025 23:29:54 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__lc_cst=d0ac164532c515c76f756b84c849bbd03c91c8de06062a69ed102294530f6494a55a65abfa246ed869c1f1dcb3dca41f729ebdf4b7783abf1c7948f15026; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Mon, 24 Mar 2025 23:29:54 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None
__oauth_redirect_detector=counter=1&t=1679700624&tag=e689a9e1c127933b323827a7be89662853d9134b; Path=/; Expires=Fri, 24 Mar 2023 23:30:24 GMT; HttpOnly; Secure; SameSite=None
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/media/new_message.34190d36.ogg
23.36.79.16206 Partial Content 11 kB URL HTTP/2 cdn.livechatinc.com/widget/static/media/new_message.34190d36.ogg
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type Ogg data, Vorbis audio, stereo, 44100 Hz, ~112000 bps\012- data
Hash a37211a6cfcda45352d5abcff1e446bb
5f46f941ea3247a17e35be65dcd38583c7ecbfb6
1d0bdbe8013ddd58bf31229ea12bd42dfe6bf4cb022cc65d519a45a13c403b5d
GET /widget/static/media/new_message.34190d36.ogg HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 206 Partial Content
content-type: application/octet-stream
last-modified: Tue, 07 Jun 2022 10:31:15 GMT
x-amz-version-id: 0eCQ7JzXZ_yjxrlSX_vlQead.GgqRhbb
accept-ranges: bytes
server: AmazonS3
etag: "a37211a6cfcda45352d5abcff1e446bb"
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: Jl-kA9f70ZstJ4iycPT9C0iokBLbhTz1Y4Rh3_BJ2ixGlD1N4r6mMA==
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 23:29:54 GMT
date: Fri, 24 Mar 2023 23:29:54 GMT
content-range: bytes 0-11403/11404
content-length: 11404
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/3.e9ed6e3a.chunk.js
23.36.79.16200 OK 10 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/3.e9ed6e3a.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (32629), with no line terminators
Hash 07436ea532c335f1bd5ac7ae82dd91be
f454ff7ad9e3e376492703e571ef29912e6f59a9
e090cfb7d902aa959c0b2ef8dca080b24650d9a620c7aa1a4617bde1fb3d4ca5
GET /widget/static/js/3.e9ed6e3a.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Mar 2023 09:29:10 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: vXC5UIu7gFBOtz6OaM.UvXr0sK8z0uYf
server: AmazonS3
content-encoding: br
etag: W/"d75894263db782f92fc0b355ef0789d8"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: kaGdVbjXkFwfQOLHmUROZLVaKtKf2C7l1CW4-lqTAoFsHhrOYRYPcQ==
content-length: 9990
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 23:29:55 GMT
date: Fri, 24 Mar 2023 23:29:55 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/iframe.4a9c5b18.chunk.js
23.36.79.16200 OK 14 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/iframe.4a9c5b18.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (11688)
Hash 4e7498a5519e2e089823715efe60490f
c1f2f453ecb3df34e90d5e19149ef0ed135ddc3f
4887826c99c730570c83ab74eb4d32e2e0f61c0172fd47b5405ee966d4dd4a51
GET /widget/static/js/iframe.4a9c5b18.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Mar 2023 09:03:45 GMT
etag: W/"ee1ee2e924d64b378d63f6a05a6ffdf0"
x-amz-server-side-encryption: AES256
x-amz-version-id: He6acq_HduuELcp3HP_QIcEBoA.Bhwcc
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: HNaNaxG97RyARcrGd2tjgwXyva5cOjqmOIardXaZlCSiL9dsxY5wZQ==
content-length: 206167
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 23:29:52 GMT
date: Fri, 24 Mar 2023 23:29:52 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/2.20a5c3fd.chunk.js
23.36.79.16200 OK 12 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/2.20a5c3fd.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (36618), with no line terminators
Hash fad70f33cbe748e981cd104e275a844a
a3fa1bda476cb4031e1e3afdd4fa869ee7c2871e
53fd23b80a1a7db3f2789cda52a2f9ac13969248e8ec4089248e955b1fa9e3a2
GET /widget/static/js/2.20a5c3fd.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Mar 2023 09:29:10 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 0Wue6HO.Ab0RrQECWqDoH3UNgU_9hLBQ
server: AmazonS3
content-encoding: br
etag: W/"89f6ad71d57fdfaaa33c6e689edb1b78"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: wTYzB35QKG8YmMn02WJa1EMHJYyNoxPCD6ETgL7Amu3BwhwwkzIurg==
content-length: 11482
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 23:29:55 GMT
date: Fri, 24 Mar 2023 23:29:55 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechatinc.com/widget/static/js/main-view.d9bddbc3.chunk.js
23.36.79.16200 OK 37 kB URL HTTP/2 cdn.livechatinc.com/widget/static/js/main-view.d9bddbc3.chunk.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash bac0e449b9a4a1d951fccabb4d7b1349
1c4ee9002ec18d5b41c1db971fe10075b9454510
7e160b0bd4300f5acb3cf2dc7371b737d9d948ea00b3e77b5804ef74de1847c6
GET /widget/static/js/main-view.d9bddbc3.chunk.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Mar 2023 09:29:10 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 6N8X8BMDO6uIxyX5H3TB3WfIlz4FkgSQ
server: AmazonS3
content-encoding: br
etag: W/"b4298fea69c72902279848c57fdfa45e"
vary: Accept-Encoding
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: NVn5PTpyZJzZOPUSxMMPHEWREf9HsjvMjaMPSEZeSZOc0pJFijInZw==
content-length: 37372
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 23:29:55 GMT
date: Fri, 24 Mar 2023 23:29:55 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f96cd1ff71b4be3ef9fa9c30043409f7
890ef0215905f787e8f90c863bbb5a26adc21fb2
56702acd925d587d32bbf8621ad63412547a3089ac481cb283beea2a2c5b2909
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56702ACD925D587D32BBF8621AD63412547A3089AC481CB283BEEA2A2C5B2909"
Last-Modified: Fri, 24 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 25 Mar 2023 05:29:55 GMT
Date: Fri, 24 Mar 2023 23:29:55 GMT
Connection: keep-alive
v0013.venpoapi.xyz/v1/public/maintenance/schedule/on-going/
104.21.1.80200 OK 2 B URL HTTP/2 v0013.venpoapi.xyz/v1/public/maintenance/schedule/on-going/
IP 104.21.1.80:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /v1/public/maintenance/schedule/on-going/ HTTP/1.1
Host: v0013.venpoapi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.atta4dgacor.com
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 24 Mar 2023 23:29:56 GMT
content-type: application/json
content-length: 2
set-cookie: INGRESSCOOKIE=a8791039a660473c3a3516e3f5db51b8|abc080e247465c49a93c8e12d2820f4f; Expires=Sun, 26-Mar-23 23:29:55 GMT; Max-Age=172800; Path=/v1/public/; Secure; HttpOnly
allow: GET, HEAD, OPTIONS
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: same-origin
vary: Origin
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
expires: Fri, 24 Mar 2023 23:29:55 GMT
cache-control: max-age=0, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FDSzZx6fSQiw3V59jW9DYdYhsZZeuy9PyqknqGKMtLnQnKbREdTMJDVt69rittYRwW8oWZkf7QG7PJsErgIvGvK%2BamOHM3wuhFkYY45nEg%2FydN97DAF%2BiH8Kg2N%2BnosjF2Isy2o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad2b2f089c4b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.livechat-files.com/api/file/lc/main/default/logo/c4bf6633aa89a76af7461279581d8bdb.png
23.36.79.16200 OK 41 kB URL HTTP/2 cdn.livechat-files.com/api/file/lc/main/default/logo/c4bf6633aa89a76af7461279581d8bdb.png
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash cbb88ac317eccff2d957ff5b120229ee
bdbf9a3d69ac5fac2753459096d4c2c024d714a1
f9050198624b183c773a92a81eee3e0333b590c0612ec75ddd20359687732e6f
GET /api/file/lc/main/default/logo/c4bf6633aa89a76af7461279581d8bdb.png HTTP/1.1
Host: cdn.livechat-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 5512
content-type: image/png
cache-control: private, max-age=52702
date: Fri, 24 Mar 2023 23:29:56 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
cdn.livechat-files.com/api/file/lc/img/11291727/3b097a6a913f6eeb31c2672869ef00a7.png
23.36.79.16200 OK 16 kB URL HTTP/2 cdn.livechat-files.com/api/file/lc/img/11291727/3b097a6a913f6eeb31c2672869ef00a7.png
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type PNG image data, 200 x 200, 8-bit colormap, non-interlaced\012- data
Hash 487a40dbcd24f277e39cfaf8ef108a83
a02a5a5cff2877fe8e620246be9fffce01d00cbc
03a82a37d3209f6f20eacf1c3a60dc0f6842568d2a0e3fde222090f82006f728
GET /api/file/lc/img/11291727/3b097a6a913f6eeb31c2672869ef00a7.png HTTP/1.1
Host: cdn.livechat-files.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://secure.livechatinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 16483
content-type: image/png
cache-control: private, max-age=84465
date: Fri, 24 Mar 2023 23:29:56 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee780ea6-5b5e-419f-916d-42d0f5e1912a.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee780ea6-5b5e-419f-916d-42d0f5e1912a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7950abafdbc9bbc363ac4cd490f864f
d1356ae16dd758eb699eb62402122d4fb2f307c9
7e98a04cefe4e21aafdf261d0e819352c515695cb9250a64e316c0a5cafc143d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee780ea6-5b5e-419f-916d-42d0f5e1912a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9196
x-amzn-requestid: a63eade0-457b-48f3-bfdc-50d4f6a97363
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CK89kGECIAMFdpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641aa856-5ce23570768e4a753ee47cf5;Sampled=0
x-amzn-remapped-date: Wed, 22 Mar 2023 07:03:50 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: ibirp1iPy9HA8aFiYEk7JMCnJAVTlXrLG57bWhRQFf2jeqL6Gmnwiw==
via: 1.1 5502255f9557c1e2c098b94110b6151c.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 07:22:59 GMT
age: 58017
etag: "d1356ae16dd758eb699eb62402122d4fb2f307c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
v0013.wesopro.xyz/ws/v1/public/maintenance/own-maintenance-status/
35.234.56.220101 Switching Protocols 7.9 kB URL HTTP/1.1 v0013.wesopro.xyz/ws/v1/public/maintenance/own-maintenance-status/
IP 35.234.56.220:0
Hash ee32a20d5c2748d30b600b8970b991a5
e988c87bead3cf1795673ef9aba4cbd2a68c36e1
bee1d0cbf5ae80afc91923a5deae7cec8c91f182980d1527ae686a2d6e4c5271
GET /ws/v1/public/maintenance/own-maintenance-status/ HTTP/1.1
Host: v0013.wesopro.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.atta4dgacor.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +qs/WcKMJnKu1b3w9Vi5+Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 24 Mar 2023 23:29:57 GMT
Connection: upgrade
Set-Cookie: INGRESSCOOKIE=844277ccf9f29dca616d6abcf50bd883|55bd00d94569c75e74f6f6d4d93c75b8; Expires=Sun, 26-Mar-23 23:29:57 GMT; Max-Age=172800; Path=/ws/v1/public; Secure; HttpOnly
Upgrade: websocket
Sec-WebSocket-Accept: MYhXkVlLa58Tfhza+iTyDR+fmhg=
Sec-WebSocket-Extensions: permessage-deflate
Strict-Transport-Security: max-age=15724800; includeSubDomains
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
as09doansoda0124d.info/
151.139.128.11301 Moved Permanently 0 B IP 151.139.128.11:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: as09doansoda0124d.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Fri, 24 Mar 2023 23:29:49 GMT
accept-ranges: bytes
content-encoding: gzip
content-type: text/html; charset=iso-8859-1
server: Apache
location: https://atta4dmax1.com/
x-hw: 1679700588.cds251.sk1.hn,1679700588.cds219.sk1.sc,1679700589.cds219.sk1.p
access-control-allow-origin: *
X-Firefox-Spdy: h2
atta4dmax1.com/
172.67.161.78301 Moved Permanently 0 B IP 172.67.161.78:0
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: atta4dmax1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Fri, 24 Mar 2023 23:29:49 GMT
location: https://www.atta4dgacor.com/
cache-control: max-age=3600
expires: Sat, 25 Mar 2023 00:29:49 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2QVPim1ZbbSDjv%2F9AiyuP8POWVN8meNoEnNCEhhYrFjQhs373ZivXVXx7uWJpO7u4uNvPF%2BAR6dNapaB4VxMnY8lWTb7gdnKL2I2aEG0crHDCaZU7F3dZFS5MfgBwU35%2Bg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad2b2cd6e1a0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
client.pragmaticplaylive.net/desktop/assets/api/fullscreenApi.js
54.230.111.25200 OK 0 B URL HTTP/2 client.pragmaticplaylive.net/desktop/assets/api/fullscreenApi.js
IP 54.230.111.25:0
GET /desktop/assets/api/fullscreenApi.js HTTP/1.1
Host: client.pragmaticplaylive.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 23 Feb 2023 10:48:59 GMT
server: AmazonS3
content-encoding: gzip
date: Fri, 24 Mar 2023 01:20:24 GMT
etag: W/"0c0ffc14ab8da5f94ebf794f9b373750"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: b5vWKZoAPk4mJAuH8olpTxBW8N0AQu-M51U5C7W8jS6euLglx99UGg==
age: 79785
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=60, public, must-revalidate, proxy-revalidate
X-Firefox-Spdy: h2
v0013.venpoapi.xyz/v1/public/player/player-level
104.21.1.80200 OK 0 B URL HTTP/2 v0013.venpoapi.xyz/v1/public/player/player-level
IP 104.21.1.80:0
GET /v1/public/player/player-level HTTP/1.1
Host: v0013.venpoapi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.atta4dgacor.com
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 23:29:56 GMT
content-type: application/json
set-cookie: INGRESSCOOKIE=a8791039a660473c3a3516e3f5db51b8|abc080e247465c49a93c8e12d2820f4f; Expires=Sun, 26-Mar-23 23:29:56 GMT; Max-Age=172800; Path=/v1/public/; Secure; HttpOnly
allow: GET, HEAD, OPTIONS
vary: Accept-Encoding, Cookie, Origin
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: same-origin
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
expires: Fri, 24 Mar 2023 23:29:56 GMT
cache-control: max-age=0, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PLKlkrW9cTyhWPtaUMvr%2B3NS7iFoxpAdK67mqxmDotWXQMxDpTyUenYl6DyV8UZX2avrNAvW9Y7tnWCHa6qlg2FZOEZHmQLscEBjkXNh%2F4ldod4CVBGeCTy0tal7v%2Fv3zI1jb%2BE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad2b2f48ddfb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
v0013.venpoapi.xyz/v1/public/provider/maintenance/
104.21.1.80200 OK 0 B URL HTTP/2 v0013.venpoapi.xyz/v1/public/provider/maintenance/
IP 104.21.1.80:0
GET /v1/public/provider/maintenance/ HTTP/1.1
Host: v0013.venpoapi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.atta4dgacor.com
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 23:29:56 GMT
content-type: application/json
set-cookie: INGRESSCOOKIE=a8791039a660473c3a3516e3f5db51b8|abc080e247465c49a93c8e12d2820f4f; Expires=Sun, 26-Mar-23 23:29:56 GMT; Max-Age=172800; Path=/v1/public/; Secure; HttpOnly
allow: GET, HEAD, OPTIONS
vary: Accept-Encoding, Origin
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: same-origin
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
expires: Fri, 24 Mar 2023 23:29:56 GMT
cache-control: max-age=0, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BrfzhvfLmlY2cmXnbiqaPf55gafTfWFKvuMz%2F9oD1AUtUGgJcrLBU3VasZxkiqDwajaJqnjMwC54TTUiZ9fA1cUdct%2F%2BDVIqRKkPqDKj%2FEtKgT86PNsAV1wLfThegwGeknLjDUM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad2b2f48de2b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
v0013.venpoapi.xyz/v1/public/provider/maintenance/
104.21.1.80200 OK 0 B URL HTTP/2 v0013.venpoapi.xyz/v1/public/provider/maintenance/
IP 104.21.1.80:0
GET /v1/public/provider/maintenance/ HTTP/1.1
Host: v0013.venpoapi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.atta4dgacor.com
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 23:29:56 GMT
content-type: application/json
set-cookie: INGRESSCOOKIE=e263b094dc3ff4b20a8f02dc56593f05|abc080e247465c49a93c8e12d2820f4f; Expires=Sun, 26-Mar-23 23:29:56 GMT; Max-Age=172800; Path=/v1/public/; Secure; HttpOnly
allow: GET, HEAD, OPTIONS
vary: Accept-Encoding, Origin
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: same-origin
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
expires: Fri, 24 Mar 2023 23:29:56 GMT
cache-control: max-age=0, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7pn2ExyOFFzm83iPqmZ6Ea9kXJ9WWz3bv%2FxZqG%2BwgGE9oy8h3Yutl8hFvZniPkYjSr6dYQ5z2U%2Fun4eKu5MObH1PQ1gmG%2FfFWCehUmHVc%2BZMg4Me%2BTr7X88u4Z9m2fs9YKMLoCY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad2b2f48de4b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.atta4dgacor.com/id/
188.114.97.1308 Permanent Redirect 0 B IP 188.114.97.1:0
GET /id/ HTTP/1.1
Host: www.atta4dgacor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: INGRESSCOOKIE=7fe8e2f59e1b6f7ceb968bdc13c0dd76|906e14eb440a806bf8587ed89398e2c0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 308 Permanent Redirect
date: Fri, 24 Mar 2023 23:29:50 GMT
location: /id
refresh: 0;url=/id
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-origin: *
access-control-allow-credentials: true
expires: Fri, 24 Mar 2023 23:29:50 GMT
cache-control: max-age=0, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0xvSMJw0b1iuOTnYyXIkSPv4Gea1UlgBnSBVaIR5gbxM44GkdyLe43vYPAvTiqNpNO5Z1dD3QqP9eiwXI3EBuCuas%2Bg6vwcwP31YUr7VBo7QAbawC6ZIdB5qkpDZGl7v6HSmHJI%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad2b2d30dd61c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
v0013.venpoapi.xyz/v1/public/notification/running-text/
104.21.1.80200 OK 0 B URL HTTP/2 v0013.venpoapi.xyz/v1/public/notification/running-text/
IP 104.21.1.80:0
GET /v1/public/notification/running-text/ HTTP/1.1
Host: v0013.venpoapi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.atta4dgacor.com
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 23:29:56 GMT
content-type: application/json
set-cookie: INGRESSCOOKIE=99e0047464ba7d240a2393fff4738d3b|abc080e247465c49a93c8e12d2820f4f; Expires=Sun, 26-Mar-23 23:29:56 GMT; Max-Age=172800; Path=/v1/public/; Secure; HttpOnly
allow: GET, HEAD, OPTIONS
vary: Accept-Encoding, Cookie, Origin
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: same-origin
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
expires: Fri, 24 Mar 2023 23:29:56 GMT
cache-control: max-age=0, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ROaRvFpau5qvwlE03XgklI%2Fof%2Fy1vXYMPp4456yOXmYP%2B0lLF4wiPvkA7D%2F7QK3GIsE9LRXEWlU6JD6rF%2BjiDHSKEB7pKJyxdT41WeYNNM56n37TlHwhM00u%2FeOwOlcGbXklXk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad2b2f48dd8b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
v0013.venpoapi.xyz/v1/public/player/player-level
104.21.1.80200 OK 0 B URL HTTP/2 v0013.venpoapi.xyz/v1/public/player/player-level
IP 104.21.1.80:0
GET /v1/public/player/player-level HTTP/1.1
Host: v0013.venpoapi.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.atta4dgacor.com
Connection: keep-alive
Referer: https://www.atta4dgacor.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 24 Mar 2023 23:29:56 GMT
content-type: application/json
set-cookie: INGRESSCOOKIE=a8791039a660473c3a3516e3f5db51b8|abc080e247465c49a93c8e12d2820f4f; Expires=Sun, 26-Mar-23 23:29:56 GMT; Max-Age=172800; Path=/v1/public/; Secure; HttpOnly
allow: GET, HEAD, OPTIONS
vary: Accept-Encoding, Cookie, Origin
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: same-origin
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-credentials: true
expires: Fri, 24 Mar 2023 23:29:56 GMT
cache-control: max-age=0, no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c0DHpPoQOp6MPkMivt2Qffjo7k9OlP4DUwOAp82lGb4jTLnQz77LC4rgF8Y5voalwrONuLCJUdvdYH%2FDPLx%2FAMuBaYMtiAdx%2BTzEpr1faETKtT4CHGMbKB%2Bb5E7iAvViKPptdvQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ad2b2f48ddcb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2