www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m=1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m=1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m=1
142.250.74.179301 Moved Permanently 350 B URL HTTP/1.1 www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m=1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m=1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m=1
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (547)
Hash ee47854704ae2d85266d57503f728c68
b3272886efc6adc13510c1febdb47d06bc09a3f9
c1ba03df9825532080c8f979db60490660d25d8e6d474f47512dc06ea867404a
GET /2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m=1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m=1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m=1 HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m%3D1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 22 Jan 2023 22:51:58 GMT
Expires: Sun, 22 Jan 2023 22:51:58 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 350
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0be6cec5607bb65c06dbadd33456aec1
9d13129e936eb5fc82e403931884cdc8c6e6ab92
cb028034340b709ece65e45e8fc1a26a64dd85926beaa542f308d3f1d5ee2c84
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB028034340B709ECE65E45E8FC1A26A64DD85926BEAA542F308D3F1D5EE2C84"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12178
Expires: Mon, 23 Jan 2023 02:14:56 GMT
Date: Sun, 22 Jan 2023 22:51:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f416977a8d6dfaafb2dbfd0e68b871f8
dfa97bd829b03162de91c80133f2fde69b58a8d2
2c4d0fd1b7a6d398026a4817267adce203429acdd3defa44a879f0d945f392d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C4D0FD1B7A6D398026A4817267ADCE203429ACDD3DEFA44A879F0D945F392D5"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9310
Expires: Mon, 23 Jan 2023 01:27:08 GMT
Date: Sun, 22 Jan 2023 22:51:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 22:34:53 GMT
content-type: application/json
age: 1025
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 31c8743c2b5202ce0228bac5aad7229b
4b5eee8e1ecbfc992505003be58e265ff3a0ee0a
8b3b47ea29fc02b8a08ee2a340a05ab23e391f0eb3b8d6beb17516706bb2e94d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4770
Expires: Mon, 23 Jan 2023 00:11:28 GMT
Date: Sun, 22 Jan 2023 22:51:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: evF75sDFjt+JJxIQgy2I7O44XRMeYCrntnAWMgzkIGPy1IS+Pft3JUndQG4nl+iTDBglKDayNcw=
x-amz-request-id: GZH7P39MB18F48Z8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 22:47:28 GMT
age: 270
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Iwa-0MGng7Y
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Iwa-0MGng7Y
IP 142.250.74.131:0
Hash 45a5897a8c53e955a364d9cef841fda5
4dd019c69043f0db4de32cc8ac7ae8483b539aa2
e66eacbded63d03bcd19199cd04de40d06878541bf0e1fc86e8f0962a8aa04af
POST /s/gts1d4/Iwa-0MGng7Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 22:51:58 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 22:48:58 GMT
age: 180
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m%3D1
142.250.74.179200 OK 50 kB URL HTTP/2 www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m%3D1
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1352)
Hash a1700f54ca692b1bb1852ac9802364e6
87d2525415a2ca418db4139ebba8c663a6e73c0e
b0a25ed63fca740037a858b76befe0ee3e580f05207a605292de0caef1fe45a7
GET /2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m%3D1 HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 22 Jan 2023 22:51:58 GMT
date: Sun, 22 Jan 2023 22:51:58 GMT
cache-control: private, max-age=0
last-modified: Sun, 22 Jan 2023 21:51:16 GMT
etag: W/"7985a1d29baac0bfcbe1dd6b3ea0fa2d61d1e55804a090c89346243e1f8ccfd6"
x-robots-tag: all
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 50419
server: GSE
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c74880fa99032b5c3831c179d702419
0020b368309735c94d8053d3781a7efb7283cfc5
437e2d4e2bbfb33b0ff696172378ce55a0a5ed005a1b8c4005eab4a6995a3042
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5830
Cache-Control: max-age=129119
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:58 GMT
Etag: "63ccfca7-1d7"
Expires: Tue, 24 Jan 2023 10:43:57 GMT
Last-Modified: Sun, 22 Jan 2023 09:06:47 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (56656)
Hash 5c32368e2726220885c82f35b6fb4e78
bb3909d2aaca84d895296187aeaea024c76f46ec
53ceda316a9da4b956909214bb1bdaf76d2b2e3d2037614a13b6749e1e5c9e17
GET /ajax/libs/font-awesome/5.11.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:58 GMT
content-type: text/css; charset=utf-8
content-length: 10022
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-de0a"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 322518
expires: Fri, 12 Jan 2024 22:51:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VrYUx25tA2UVVNgsOyXpRhihdOwPg7XiwvYLKX1S3GPpgZVTPM4C3L%2FM4HYA39XC0pWtI45umuQUPK8M%2BZ%2BGz1neIMWWuYL3x9FbUVDfMZEX%2BnH1WNWWaCQnEPKhTmTyiwpM8R8Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78dbdb7daeef0b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js
104.17.24.14200 OK 27 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (32065)
Hash 63827323c175768ccb0e8ed54589a3e5
9760e238d6ecced66396798559f70593793d801e
196f9479a27db836a2a7454e222f0cb52d4eeb162e0a50e69401ba1a8d81b564
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 26909
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-14e4a"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 153365
expires: Fri, 12 Jan 2024 22:51:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zC05VLHGm6h1LllqWg5LwwtaA0bBzYan32ZPZYDIJDGeKl4QUd1gM6gk7dovKBHGkbkTAIvDzMpD2olYdmr%2F5oRGfr5QEGtYjiD4ERXdwgxt8mSzwc%2Ffb10Ua%2FpoyNN2ULUsJTSm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78dbdb7def200b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.dzgurus.com/js/cookienotice.js
142.250.74.179200 OK 2.0 kB URL HTTP/2 www.dzgurus.com/js/cookienotice.js
IP 142.250.74.179:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m%3D1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Sun, 22 Jan 2023 22:51:59 GMT
expires: Sun, 29 Jan 2023 22:51:59 GMT
cache-control: public, max-age=604800
last-modified: Sun, 22 Jan 2023 21:51:10 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-C7GTCGUrWl4/YLfpu-tuJtI/AAAAAAAAE08/cGt6om4vC2MU4XLU3YLsE-61Dqsmlq-IwCLcBGAsYHQ/s320/PicsArt_06-02-08.19.32.jpg
142.250.74.161200 OK 22 kB URL HTTP/2 1.bp.blogspot.com/-C7GTCGUrWl4/YLfpu-tuJtI/AAAAAAAAE08/cGt6om4vC2MU4XLU3YLsE-61Dqsmlq-IwCLcBGAsYHQ/s320/PicsArt_06-02-08.19.32.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x162, components 3\012- data
Hash 195fb0f90cf62af4b074dbd60046c07f
ec40bc8b6c34292b57eee7b70ea65593d2a07089
eef7b800308fc19533d23056d0a6dd1abfbfd03213ee894e7fd9f70f44420e7d
GET /-C7GTCGUrWl4/YLfpu-tuJtI/AAAAAAAAE08/cGt6om4vC2MU4XLU3YLsE-61Dqsmlq-IwCLcBGAsYHQ/s320/PicsArt_06-02-08.19.32.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="PicsArt_06-02-08.19.32.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 21625
x-xss-protection: 0
date: Sun, 22 Jan 2023 22:51:45 GMT
expires: Mon, 23 Jan 2023 22:51:45 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1353"
content-type: image/jpeg
age: 14
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-Oxd9IkfmJ2o/YLfpRRk4iYI/AAAAAAAAE0s/N7dMwWFEbiQfZHSiuW16XcpdKrYelbQIgCLcBGAsYHQ/s320/PicsArt_03-25-10.16.52.jpg
142.250.74.161200 OK 8.4 kB URL HTTP/2 1.bp.blogspot.com/-Oxd9IkfmJ2o/YLfpRRk4iYI/AAAAAAAAE0s/N7dMwWFEbiQfZHSiuW16XcpdKrYelbQIgCLcBGAsYHQ/s320/PicsArt_03-25-10.16.52.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x73, components 3\012- data
Hash 73fd64c44a4b3aa6da43890adcb73b2a
ce5d6cc764667f9c0861eede441d6937e1ddcedb
b09e31b91a097b6a57ebd30443599bc8385e3f58be25e7e7429ef0173b3c984e
GET /-Oxd9IkfmJ2o/YLfpRRk4iYI/AAAAAAAAE0s/N7dMwWFEbiQfZHSiuW16XcpdKrYelbQIgCLcBGAsYHQ/s320/PicsArt_03-25-10.16.52.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="PicsArt_03-25-10.16.52.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 8446
x-xss-protection: 0
date: Sun, 22 Jan 2023 22:51:45 GMT
expires: Mon, 23 Jan 2023 22:51:45 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1352"
content-type: image/jpeg
age: 14
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-LVweTayC9NU/YLfpgOFr7GI/AAAAAAAAE0w/mSvxklVRDGkeY56gqc1OZ27q210KhEz8wCLcBGAsYHQ/s320/PicsArt_06-02-08.20.13.jpg
142.250.74.161200 OK 26 kB URL HTTP/2 1.bp.blogspot.com/-LVweTayC9NU/YLfpgOFr7GI/AAAAAAAAE0w/mSvxklVRDGkeY56gqc1OZ27q210KhEz8wCLcBGAsYHQ/s320/PicsArt_06-02-08.20.13.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x213, components 3\012- data
Hash 915ccd36cd033d0620a12f6954e37859
cad14f145308fddc74e1bf83d599d3de8feae97c
4d068152d2bb5df8d04ca5d077429e7e6fa5f2dfbebcbd07a54e851f77ddbc03
GET /-LVweTayC9NU/YLfpgOFr7GI/AAAAAAAAE0w/mSvxklVRDGkeY56gqc1OZ27q210KhEz8wCLcBGAsYHQ/s320/PicsArt_06-02-08.20.13.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="PicsArt_06-02-08.20.13.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 26047
x-xss-protection: 0
date: Sun, 22 Jan 2023 22:51:45 GMT
expires: Mon, 23 Jan 2023 22:51:45 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1350"
content-type: image/jpeg
age: 14
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-Z-JnzS_9qCk/YLfpgOcBAwI/AAAAAAAAE00/o5pAPFz3Ywo2Fzvxy6B-u8KH30SpWj95QCLcBGAsYHQ/s320/PicsArt_06-02-08.20.31.jpg
142.250.74.161200 OK 24 kB URL HTTP/2 1.bp.blogspot.com/-Z-JnzS_9qCk/YLfpgOcBAwI/AAAAAAAAE00/o5pAPFz3Ywo2Fzvxy6B-u8KH30SpWj95QCLcBGAsYHQ/s320/PicsArt_06-02-08.20.31.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x192, components 3\012- data
Hash 6a8e5d270044f09ab6204d8b0bcc523d
a0de9b6a88e6ca74d18962628cf620fa3c318d5d
062b908c1c1c47d0887f9ac8bbb8588a0bf466facfd785525a0c2f8344b8979f
GET /-Z-JnzS_9qCk/YLfpgOcBAwI/AAAAAAAAE00/o5pAPFz3Ywo2Fzvxy6B-u8KH30SpWj95QCLcBGAsYHQ/s320/PicsArt_06-02-08.20.31.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="PicsArt_06-02-08.20.31.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 23988
x-xss-protection: 0
date: Sun, 22 Jan 2023 22:51:45 GMT
expires: Mon, 23 Jan 2023 22:51:45 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1351"
content-type: image/jpeg
age: 14
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-RkPcKyZt3Lk/YLfpgK1G6mI/AAAAAAAAE04/L1gzONHRWeEAyc2UCcDhhuHtFjt31girwCLcBGAsYHQ/s320/PicsArt_06-02-08.20.45.jpg
142.250.74.161200 OK 22 kB URL HTTP/2 1.bp.blogspot.com/-RkPcKyZt3Lk/YLfpgK1G6mI/AAAAAAAAE04/L1gzONHRWeEAyc2UCcDhhuHtFjt31girwCLcBGAsYHQ/s320/PicsArt_06-02-08.20.45.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x180, components 3\012- data
Hash 111f0bd3c39f054eeccc28a1f7f153ea
7e42ca5ad394783564dc7affb29bc93a95adb062
61212e195b017e37edaefbd9da855fb998e977c72c2b043e906e353ba36fe49f
GET /-RkPcKyZt3Lk/YLfpgK1G6mI/AAAAAAAAE04/L1gzONHRWeEAyc2UCcDhhuHtFjt31girwCLcBGAsYHQ/s320/PicsArt_06-02-08.20.45.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="PicsArt_06-02-08.20.45.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 21606
x-xss-protection: 0
date: Sun, 22 Jan 2023 22:51:45 GMT
expires: Mon, 23 Jan 2023 22:51:45 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1352"
content-type: image/jpeg
age: 14
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2182bcd522c31d3b880961c8c82e5789
e5caa39d2aa22d6d5f9f4cecc26ec61d244a4be9
25d37caaa7bb1a0e464d7bbf1495839e70f06c1cb4ad0ad5abe42e8ab0e1676e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/4196832948-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/4196832948-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 24f533b2cc89b4264c224d433a37718a
fc4848c3b411e8fdc97831e20c7ebcbf735e636a
aa805bed551a6ac1fa4886b1ee634633bdec1de952fbf94cd81a805ef702a395
GET /static/v1/widgets/4196832948-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56454
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 02:15:20 GMT
expires: Thu, 18 Jan 2024 02:15:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 17 Jan 2023 17:54:44 GMT
content-type: text/javascript
age: 419799
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 15:34:31 GMT
expires: Wed, 17 Jan 2024 15:34:31 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Jan 2023 22:50:27 GMT
content-type: text/javascript
age: 458248
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash 2354fa28c58e16af89e7da6224aeca93
6bd3430a81730ed77c5d53f5406ddb40306ecabd
dc35ae752b7be035bd3a3bd4ae205e41afce5fa8f88e1bfe0e9524610df10f3b
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20950
date: Sun, 22 Jan 2023 22:51:59 GMT
expires: Sun, 22 Jan 2023 22:51:59 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "3bf61407b05a4bca"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 698b6ba9ccaa05fe77921f60c658d465
4bf1c2824672d0545f2538e41d5d046028ba74c9
24c1e9f42f1c5d74cd0407d7706c865d2d2b01b01f62f3072a050602c15ce2a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24C1E9F42F1C5D74CD0407D7706C865D2D2B01B01F62F3072A050602C15CE2A6"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10479
Expires: Mon, 23 Jan 2023 01:46:38 GMT
Date: Sun, 22 Jan 2023 22:51:59 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.dzgurus.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=showrecentpostswiththumbs
142.250.74.179200 OK 43 kB URL HTTP/2 www.dzgurus.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=showrecentpostswiththumbs
IP 142.250.74.179:0
File type Unicode text, UTF-8 text, with very long lines (65514)
Hash 8b136b9dcf7f2f20038c38094f12ef23
e75b32bee83c63c62192963080a1cb9508b347d3
a982f21b51ce9632f4acd3fb4ee40362593488d4b32e18b3f061d8de77831470
GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=showrecentpostswiththumbs HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m%3D1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
content-encoding: gzip
etag: W/"db0b902955b1cba3724cc235997eaae3f1bfd7366d963444ac74eef20c2ac43f"
date: Sun, 22 Jan 2023 22:51:59 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
vary: Accept-Encoding
expires: Sun, 22 Jan 2023 22:52:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 22 Jan 2023 21:51:16 GMT
content-length: 43046
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bb5fac1f289cb91381d3d1a07094b179
df6f8fe7a21efb35290d24f2b8b0fe809cae8d33
34472778a647b2db33e669d8582b510d94d9e0d355d77c73d643b7495b0f6997
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
54.200.117.177101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.117.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MtHmDgfj9ydg5bmzWQT3kA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xtnYA3J7rrkq83IFBUXNVcqiq+E=
pl15872466.highcpmrevenuenetwork.com/f7/c2/f2/f7c2f218a71324f49eac3f7733565c8b.js
173.233.137.52200 OK 13 kB URL HTTP/1.1 pl15872466.highcpmrevenuenetwork.com/f7/c2/f2/f7c2f218a71324f49eac3f7733565c8b.js
IP 173.233.137.52:0
File type ASCII text, with very long lines (37131), with no line terminators
Hash 8a8b7e72a45edb83ff5eb270daa4b040
7831c9893355ef7682fdcac6a097f276a0fd71e0
59181d19a1ea1b42c8526629f0d1a9083f9191b9978eb135896a61f7555dd600
Analyzer Verdict Alert quad9 Sinkholed
GET /f7/c2/f2/f7c2f218a71324f49eac3f7733565c8b.js HTTP/1.1
Host: pl15872466.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 047757749d8ff43657aab4c3f7dfcb19
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
pl15872141.highcpmrevenuenetwork.com/07/0f/10/070f1088c9802792a1aea00839b47afe.js
192.243.59.20200 OK 21 kB URL HTTP/1.1 pl15872141.highcpmrevenuenetwork.com/07/0f/10/070f1088c9802792a1aea00839b47afe.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (60149), with no line terminators
Hash 3bf21cbdb5243dcf31d847e3383115a4
ae55508721aac8d2b0400a790b862c47b3a8004c
1cee8cc68fdfbf7f511b7a3e9092e8d3147a531d66636dd862eb37715e5468b9
Analyzer Verdict Alert quad9 Sinkholed
GET /07/0f/10/070f1088c9802792a1aea00839b47afe.js HTTP/1.1
Host: pl15872141.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 22 Jan 2023 22:51:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 50522d5d020224187fa6282cc0520612
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash dec1960c15b7b32835eece7cb397c51f
ddaf303a58c2f336530c55a9ca29d5731e5f7da6
f2d6ba10803cb182fe6bac4e417ce57f3d712c836ed1d8950829bd29cbb35f48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash dec1960c15b7b32835eece7cb397c51f
ddaf303a58c2f336530c55a9ca29d5731e5f7da6
f2d6ba10803cb182fe6bac4e417ce57f3d712c836ed1d8950829bd29cbb35f48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v19/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.67200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v19/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 15816, version 1.0\012- data
Hash 2735a3a69b509faf3577afd25bdf552e
8621aff863b67040010ccc183da5b9079ce6fd1d
b4d07892cde715d50bb69c1982df496385d1dfd8f9d1867c31f19a3c8634cfae
GET /s/roboto/v19/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 16:07:50 GMT
expires: Tue, 16 Jan 2024 16:07:50 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Mar 2019 20:13:46 GMT
content-type: font/woff2
age: 542649
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v19/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.67200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v19/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 15872, version 1.0\012- data
Hash 020c97dc8e0463259c2f9df929bb0c69
8f956a31154047d1b6527b63db2ecf0f3a463f24
24369e1b2461af9dcefecaf9cc93d64cf22a4c5bac32506100b9e21014507bcf
GET /s/roboto/v19/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 21 Jan 2023 13:51:43 GMT
expires: Sun, 21 Jan 2024 13:51:43 GMT
cache-control: public, max-age=31536000
age: 118816
last-modified: Mon, 25 Mar 2019 20:14:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v19/KFOkCnqEu92Fr1Mu51xIIzI.woff2
142.250.74.67200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v19/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 17324, version 1.0\012- data
Hash 51521a2a8da71e50d871ac6fd2187e87
f94000b9ce048908c52269b3705e251a50c6979e
401e6c25801ba2d59795d05a6dd973f95566b41070d3939ba9307d65860ae50e
GET /s/roboto/v19/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 10:08:24 GMT
expires: Thu, 18 Jan 2024 10:08:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Mar 2019 20:12:42 GMT
content-type: font/woff2
age: 391415
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 4dab8a11f6f832896613d012233bf6ba
05fb1e721b40793fc921c840b2b89d732868184a
04948e2b6ac1e964c58eb5cdee1bbb5adc6d5a80edb63bf96e62426d19c2f5ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142294
Date: Sun, 22 Jan 2023 22:51:59 GMT
Etag: "63cd3a95-1d7"
Expires: Tue, 24 Jan 2023 14:23:33 GMT
Last-Modified: Sun, 22 Jan 2023 13:31:01 GMT
Server: ECS (nyb/1D12)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OvkEK6-4iKMueW7BQ5wxS-dkWEubmgL5iM6up-YGun_u2udHdxtgmg==
Age: 3152
fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.67200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3
GET /s/roboto/v19/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 13:09:12 GMT
expires: Wed, 17 Jan 2024 13:09:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Mar 2019 20:12:01 GMT
content-type: font/woff2
age: 466967
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 4dab8a11f6f832896613d012233bf6ba
05fb1e721b40793fc921c840b2b89d732868184a
04948e2b6ac1e964c58eb5cdee1bbb5adc6d5a80edb63bf96e62426d19c2f5ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 22 Jan 2023 22:51:59 GMT
Last-Modified: Sun, 22 Jan 2023 22:06:15 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fJ6IZBg3XUTLdOPA-mcuG2u6BAijznVnRLe5uBHS1yuD0MSj14rQEg==
Age: 2744
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash dec1960c15b7b32835eece7cb397c51f
ddaf303a58c2f336530c55a9ca29d5731e5f7da6
f2d6ba10803cb182fe6bac4e417ce57f3d712c836ed1d8950829bd29cbb35f48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b4d3f7c90e33fd9bc533104666ffb2f3
a2cade72417d60ae62988e01e45c97e6b4b8838d
b88d11d68942430fff7fcb702c6721e7f9a48f05a1c2c0997c57c6700c0894f7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B88D11D68942430FFF7FCB702C6721E7F9A48F05A1C2C0997C57C6700C0894F7"
Last-Modified: Fri, 20 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2115
Expires: Sun, 22 Jan 2023 23:27:14 GMT
Date: Sun, 22 Jan 2023 22:51:59 GMT
Connection: keep-alive
simplewebanalysis.com/stats
52.29.129.178200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.29.129.178:0
File type ASCII text, with no line terminators
Hash a79bd4bed059d6d8eaca4249aa0cc002
b17051e0e16545ae990300633344ad2fe82624bb
1eba1fefaac64c78424a57e8326e7e05e210bc2477bfc4f1f2298f13a3a8a903
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.dzgurus.com
access-control-allow-credentials: true
set-cookie: uid_id2=467db258-2a23-46f0-bc17-724a2cd2fbeb:2:1; expires=Wed, 19 Jan 2033 22:51:59 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
52.29.129.178200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.29.129.178:0
File type ASCII text, with no line terminators
Hash 36760485f363188ca107778e8866407d
2a54f7053aae922a339ed391b47c14a5a82eccd2
0be47d75fff490bc63c704feeb184af574a8c76ee15ff2f41ab8d7d6155ebc40
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.dzgurus.com
access-control-allow-credentials: true
set-cookie: uid_id2=a8bf0359-a8dd-46cd-a789-4e26a06b59d2:2:1; expires=Wed, 19 Jan 2033 22:51:59 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
www.dzgurus.com/feeds/comments/summary?alt=json&max-results=3
142.250.74.179200 OK 1.7 kB URL HTTP/2 www.dzgurus.com/feeds/comments/summary?alt=json&max-results=3
IP 142.250.74.179:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6908), with no line terminators
Hash e9dd7659e93e336391b1b906b6d9d313
f0c52004bc757c3a34a952d6e900512618c19614
b8ce88a2aea1c95046f22f240988bcf3ce36189f2be14cd44ec75cc74f6fb4a1
GET /feeds/comments/summary?alt=json&max-results=3 HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m%3D1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
content-encoding: gzip
etag: W/"f992b400b1f02bad78597071e91966c6769f692caf720b6b00151d87d85f2419"
date: Sun, 22 Jan 2023 22:51:59 GMT
content-type: application/json; charset=UTF-8
server: blogger-renderd
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
vary: Accept-Encoding
expires: Sun, 22 Jan 2023 22:52:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 22 Jan 2023 00:45:31 GMT
content-length: 1705
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08d5f6e247476bf494fa9802cc2e8ce9
7c6f9537b0f2f116907c3f135598e44b8cb1541b
5a0fbac520b7dc9c73d124658b20feabadf68096184a4139e45405ebae5d7619
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "5A0FBAC520B7DC9C73D124658B20FEABADF68096184A4139E45405EBAE5D7619"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3597
Expires: Sun, 22 Jan 2023 23:51:56 GMT
Date: Sun, 22 Jan 2023 22:51:59 GMT
Connection: keep-alive
sighsuspectshaped.com/pixel/purst?dl=0&th=0&sc=0&rs=1697&rd=1697&fd=735&bv=22.10.v.9&tmpl=70
192.243.59.12200 OK 0 B URL HTTP/1.1 sighsuspectshaped.com/pixel/purst?dl=0&th=0&sc=0&rs=1697&rd=1697&fd=735&bv=22.10.v.9&tmpl=70
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1697&rd=1697&fd=735&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: sighsuspectshaped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 22 Jan 2023 22:51:59 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 36f69c576be6f781f131e89d144916b2
a96a0a7bad1198b6265756eb6dd79d444199dbaf
b1fa2795c057042627ad607c3a2bce695c3c564803d938373cd8243478d3d0d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (4879)
Hash ff1a392c0a9addcb48ccb716e272aec5
12a523f4b0c6218e2fa31048d9140cccd1935119
64ca915a5160fa6496b3c2e04a4677ef2a865ebc6fc07594d892d5d37be1444c
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 22 Jan 2023 22:52:00 GMT
expires: Sun, 22 Jan 2023 22:52:00 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 4122624554067219228
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49722
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2719765140359855&host=ca-host-pub-1556223355139109
142.250.74.162200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2719765140359855&host=ca-host-pub-1556223355139109
IP 142.250.74.162:0
File type ASCII text, with very long lines (4879)
Hash 48c2bf670f0280f835add52612fea045
ad41f078a719976515ff4316dfda22e78a7ef55f
1f455bbdc6702dc3cc1cc4f229c1707d9de0291e513122c411d50d6c365057a1
GET /pagead/js/adsbygoogle.js?client=ca-pub-2719765140359855&host=ca-host-pub-1556223355139109 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 22 Jan 2023 22:52:00 GMT
expires: Sun, 22 Jan 2023 22:52:00 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 12023926735851124396
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49621
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9f9788e381983082a10350bba3234afb
dc16e103c5174374433d4432b8d6171a3960dbbc
961980c0a8fa08aca4b97e793686994e2d85e5272cebeb48229611a88ecabc83
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8e1eb6e16692164482a67140b236591
0ab89c2c8b3ddb77066bc545cefd10f20c57820f
16dff07e3b0127826a4180103cf518b46ee42e69ba4ccba362802c9a68a740b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "16DFF07E3B0127826A4180103CF518B46EE42E69BA4CCBA362802C9A68A740B4"
Last-Modified: Sun, 22 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2231
Expires: Sun, 22 Jan 2023 23:29:11 GMT
Date: Sun, 22 Jan 2023 22:52:00 GMT
Connection: keep-alive
www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
142.250.74.164200 OK 668 B URL HTTP/2 www.google.com/recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu
IP 142.250.74.164:0
File type ASCII text, with very long lines (1034), with no line terminators
Hash 64762a8c7a8b42888f860c739b31d37e
4a856d853e58d34e37ffea6e507604e031cbbac0
75038c96bae5ba105b7b99533f364f0a566ef9975f95f9cf7570353f7a7634d6
GET /recaptcha/api.js?trustedtypes=true&render=6LcdyMoZAAAAAFYwZAM4wZySTWVzr15BuInOVasu HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 22 Jan 2023 22:52:00 GMT
date: Sun, 22 Jan 2023 22:52:00 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 668
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.dzgurus.com/feeds/posts/summary/-/ANDROID%20(Action)?alt=json&max-results=5
142.250.74.179200 OK 3.3 kB URL HTTP/2 www.dzgurus.com/feeds/posts/summary/-/ANDROID%20(Action)?alt=json&max-results=5
IP 142.250.74.179:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (15546), with no line terminators
Hash de5ef44d6e6cc6d3302896b4dda58760
b53f94e136b407f62a1ccb68bc0fe8bfbd72ac8c
2ef4389211a2bb563127634403f53808de7fe67aab871f1f4fe89f57a1656637
GET /feeds/posts/summary/-/ANDROID%20(Action)?alt=json&max-results=5 HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m%3D1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
content-encoding: gzip
etag: W/"a02cf0512823fac1fa1adaf75ac1da1179d0d0ead9c6a2ac50cca926923cb1fc"
date: Sun, 22 Jan 2023 22:52:00 GMT
content-type: application/json; charset=UTF-8
server: blogger-renderd
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
vary: Accept-Encoding
expires: Sun, 22 Jan 2023 22:52:01 GMT
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 22 Jan 2023 21:51:16 GMT
content-length: 3308
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20230118/r20190131/zrt_lookup.html
142.250.74.130200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230118/r20190131/zrt_lookup.html
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230118/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Sun, 22 Jan 2023 20:36:16 GMT
expires: Sun, 05 Feb 2023 20:36:16 GMT
cache-control: public, max-age=1209600
age: 8144
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js
216.58.211.3200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (636)
Size 164 kB (163892 bytes)
Hash f2995e9cc3eedf3359420fb8d714b2ca
bdc68875ff161b35dbe9d8d85241e41c862ec8e3
fbe663b4f0f239aca19a5a2720c2b494ac58a53e0d68288155eb772ae04935c1
GET /recaptcha/releases/Gg72x2_SHmxi8X0BLo33HMpr/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163892
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 15:41:18 GMT
expires: Wed, 17 Jan 2024 15:41:18 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Jan 2023 01:02:16 GMT
content-type: text/javascript
age: 457842
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16493
Expires: Mon, 23 Jan 2023 03:26:53 GMT
Date: Sun, 22 Jan 2023 22:52:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16493
Expires: Mon, 23 Jan 2023 03:26:53 GMT
Date: Sun, 22 Jan 2023 22:52:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16493
Expires: Mon, 23 Jan 2023 03:26:53 GMT
Date: Sun, 22 Jan 2023 22:52:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16493
Expires: Mon, 23 Jan 2023 03:26:53 GMT
Date: Sun, 22 Jan 2023 22:52:00 GMT
Connection: keep-alive
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgHddadROY03a81RPDFBXPKYn60b_OsDV_YFllOMzi3rRVE9JOcb-lr9sYCkt69Kz_TyA-egtR8vNJLbLqbXlcPmtuifzroDqGjPfl0GeOknsYwf42MCE-fJSCAK_2VOQq9S9VA9I6McWW85TEaTf6vCA3vNCZ8xi4nUhjKYDBARG8Pdk3CNxkz-YKtCQ/w80-h65-p-k-no-nu/PicsArt_08-23-05.37.53.jpg
142.250.74.97200 OK 4.1 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgHddadROY03a81RPDFBXPKYn60b_OsDV_YFllOMzi3rRVE9JOcb-lr9sYCkt69Kz_TyA-egtR8vNJLbLqbXlcPmtuifzroDqGjPfl0GeOknsYwf42MCE-fJSCAK_2VOQq9S9VA9I6McWW85TEaTf6vCA3vNCZ8xi4nUhjKYDBARG8Pdk3CNxkz-YKtCQ/w80-h65-p-k-no-nu/PicsArt_08-23-05.37.53.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 80x65, components 3\012- data
Hash ce2b296cd0f36d337f7e264f0894c708
e82f9c84337b9f6da07070b9ecaa26085328cba5
7a220cd452a5729b1c57384ad43c83ac782bff63fed4bfd1bac38046ebb6794d
GET /img/b/R29vZ2xl/AVvXsEgHddadROY03a81RPDFBXPKYn60b_OsDV_YFllOMzi3rRVE9JOcb-lr9sYCkt69Kz_TyA-egtR8vNJLbLqbXlcPmtuifzroDqGjPfl0GeOknsYwf42MCE-fJSCAK_2VOQq9S9VA9I6McWW85TEaTf6vCA3vNCZ8xi4nUhjKYDBARG8Pdk3CNxkz-YKtCQ/w80-h65-p-k-no-nu/PicsArt_08-23-05.37.53.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2290"
expires: Mon, 23 Jan 2023 22:52:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_08-23-05.37.53.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:52:00 GMT
server: fife
content-length: 4067
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh3xmj6sSVzflZZ8u3gEr_4EhDk5vPVCKvUZyHMZkTu3U-aFjH0n1KIK-hkcS5Z75cDgrUMNFeDjSQR5aZIrel_QtPG0sFNdlsLpUi-ge7tNeZpfnhSGX_X4zgeqV7DrmF8UaONP8DGEO881uvKzMDMRuXttS73Yx1gK3AVJU6OkFqNiYEIQyVjYA4AbQ/w80-h65-p-k-no-nu/IMG_20230121_003822_147.jpg
142.250.74.97200 OK 4.7 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh3xmj6sSVzflZZ8u3gEr_4EhDk5vPVCKvUZyHMZkTu3U-aFjH0n1KIK-hkcS5Z75cDgrUMNFeDjSQR5aZIrel_QtPG0sFNdlsLpUi-ge7tNeZpfnhSGX_X4zgeqV7DrmF8UaONP8DGEO881uvKzMDMRuXttS73Yx1gK3AVJU6OkFqNiYEIQyVjYA4AbQ/w80-h65-p-k-no-nu/IMG_20230121_003822_147.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 80x65, components 3\012- data
Hash 5518b7e6ebbfc4b07821b20609059e99
a20d203f1c9121437684fd9b06acde5b91343d49
5dab2491564401f9eb8bb23b2520229e49378258b36bc958ebbf7a8c10d0201c
GET /img/b/R29vZ2xl/AVvXsEh3xmj6sSVzflZZ8u3gEr_4EhDk5vPVCKvUZyHMZkTu3U-aFjH0n1KIK-hkcS5Z75cDgrUMNFeDjSQR5aZIrel_QtPG0sFNdlsLpUi-ge7tNeZpfnhSGX_X4zgeqV7DrmF8UaONP8DGEO881uvKzMDMRuXttS73Yx1gK3AVJU6OkFqNiYEIQyVjYA4AbQ/w80-h65-p-k-no-nu/IMG_20230121_003822_147.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v273f"
expires: Mon, 23 Jan 2023 22:52:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_20230121_003822_147.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:52:00 GMT
server: fife
content-length: 4743
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ed6afa7-c805-4ddd-a71c-bc9bde7aee5a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ed6afa7-c805-4ddd-a71c-bc9bde7aee5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e42f475b1e14cb9d0939ef39db8e1f91
dda57d67c7b5f32123d3c9956dec8f805138b3bf
ace1e5843457dc5493432ea113059e67827e6c95d6998a7465dea1eb0e723a1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ed6afa7-c805-4ddd-a71c-bc9bde7aee5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11818
x-amzn-requestid: 8cd506da-66ce-47b0-95b0-167d603a4411
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqzLFMEIAMFVmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb5814-6a5502fc0f91fa74133957d9;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: q1n880h-4e27Al82oIIs06VDSSIJVwC0bQtlHvfU8FjK3QdKUxvBQA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 04:07:43 GMT
age: 67457
etag: "dda57d67c7b5f32123d3c9956dec8f805138b3bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
shaggyselectmast.com/sbar.json?key=f7c2f218a71324f49eac3f7733565c8b
192.243.59.20200 OK 4.1 kB URL HTTP/1.1 shaggyselectmast.com/sbar.json?key=f7c2f218a71324f49eac3f7733565c8b
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6096), with no line terminators
Hash 94a79fc901c77cbb718049abb4b9a6b3
8f9e71193202f24bf9837931ee101ada9ed5a049
11eb9bf4f498ad8219d3db997265f6ca72e2104430c4598d39ebfb640dd4a231
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=f7c2f218a71324f49eac3f7733565c8b HTTP/1.1
Host: shaggyselectmast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 22 Jan 2023 22:52:00 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.dzgurus.com
Access-Control-Allow-Origin: https://www.dzgurus.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15771967; expires=Mon, 23 Jan 2023 22:52:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 23 Jan 2023 22:52:00 GMT; secure; SameSite=None
uncs=1; expires=Mon, 23 Jan 2023 22:52:00 GMT; secure; SameSite=None
pdhtkv29=true; expires=Mon, 23 Jan 2023 22:52:00 GMT; secure; SameSite=None
uncs29=1; expires=Mon, 23 Jan 2023 22:52:00 GMT; secure; SameSite=None
slecf7c2f218a71324f49eac3f7733565c8b=[3952979]; expires=Sun, 22 Jan 2023 22:52:05 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c0da0cc1e42bb218d42f732744fbd950
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiwLCDz6jG0iKOahPL51jTrfSKxA8my-TFxJZVJu3ahniSI806H2_Q-ZuxX8CeMBdeA1WOvl8izge7PNiiGLqkwVo5Dj-vveVV2pjVsrblwqcGywuau4nNuv0JVFjyQjjW_EijylQpBko8JyksWapMy-K41FWW1J3KigchaJjuFkp9QjctandfhpQwcqg/w80-h65-p-k-no-nu/PicsArt_08-07-07.44.17.jpg
142.250.74.97200 OK 35 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiwLCDz6jG0iKOahPL51jTrfSKxA8my-TFxJZVJu3ahniSI806H2_Q-ZuxX8CeMBdeA1WOvl8izge7PNiiGLqkwVo5Dj-vveVV2pjVsrblwqcGywuau4nNuv0JVFjyQjjW_EijylQpBko8JyksWapMy-K41FWW1J3KigchaJjuFkp9QjctandfhpQwcqg/w80-h65-p-k-no-nu/PicsArt_08-07-07.44.17.jpg
IP 142.250.74.97:0
File type gzip compressed data, max compression\012- data
Hash 6f6ea53dee413db1ad0aca78825aa2ea
ffe3e9f28bbc35b258425ad7a1789f28b4532735
8e9a0d984b0a177d52a327ba9460378392b4e7bab0d8a6dd3b362d821817e5ab
GET /img/b/R29vZ2xl/AVvXsEiwLCDz6jG0iKOahPL51jTrfSKxA8my-TFxJZVJu3ahniSI806H2_Q-ZuxX8CeMBdeA1WOvl8izge7PNiiGLqkwVo5Dj-vveVV2pjVsrblwqcGywuau4nNuv0JVFjyQjjW_EijylQpBko8JyksWapMy-K41FWW1J3KigchaJjuFkp9QjctandfhpQwcqg/w80-h65-p-k-no-nu/PicsArt_08-07-07.44.17.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2212"
expires: Mon, 23 Jan 2023 22:52:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_08-07-07.44.17.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:52:00 GMT
server: fife
content-length: 4319
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 805711aaab303931f8966bbf73aeda52
2bd02a45c8b407e36a41a482b121ea3e14f7c722
66268668c1a970268d75beb1b57f66a759bedac76958a3359cb23104de40fbeb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3411
x-amzn-requestid: 62afd364-e94f-45ff-ba6c-9b589fc53e5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-EyCEzrIAMFb8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4d9-203f51040f82f12d535446c4;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K73B093GBbsf85ny_o8fc9oE417nJBFlH0eEdhiifeQk3KG5Q-HHdg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 05:17:02 GMT
age: 63298
etag: "2bd02a45c8b407e36a41a482b121ea3e14f7c722"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh2NtpCcJVfUaTFKDEgdAcziYTdLFan_7yGWYHeAj0R_LSixmYIwZRoWTnbmk3h4A_HXKk45Fz_OAkwnOCO3ZIOAvhSlSXSg091-UrGixl13ZvOdZSAFZrBt7OqQy1N8z5JVo2vfUvkJlX1CPzsFzfEJyTJIeqA5QvSH01HlsHQ2Ehw3Mqe-sf6ZmewBg/w80-h65-p-k-no-nu/PicsArt_09-20-09.31.38.jpg
142.250.74.97200 OK 4.7 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh2NtpCcJVfUaTFKDEgdAcziYTdLFan_7yGWYHeAj0R_LSixmYIwZRoWTnbmk3h4A_HXKk45Fz_OAkwnOCO3ZIOAvhSlSXSg091-UrGixl13ZvOdZSAFZrBt7OqQy1N8z5JVo2vfUvkJlX1CPzsFzfEJyTJIeqA5QvSH01HlsHQ2Ehw3Mqe-sf6ZmewBg/w80-h65-p-k-no-nu/PicsArt_09-20-09.31.38.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 80x65, components 3\012- data
Hash 88c127bf820a8d437252794ed9bd45cc
85b2ddb8f302d42c797edbc30640eb26505a3f12
073c9e4da230b2e3e37a1367e160ba67bd989ef72e70a70c55e21d80e15ed3f7
GET /img/b/R29vZ2xl/AVvXsEh2NtpCcJVfUaTFKDEgdAcziYTdLFan_7yGWYHeAj0R_LSixmYIwZRoWTnbmk3h4A_HXKk45Fz_OAkwnOCO3ZIOAvhSlSXSg091-UrGixl13ZvOdZSAFZrBt7OqQy1N8z5JVo2vfUvkJlX1CPzsFzfEJyTJIeqA5QvSH01HlsHQ2Ehw3Mqe-sf6ZmewBg/w80-h65-p-k-no-nu/PicsArt_09-20-09.31.38.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v246d"
expires: Mon, 23 Jan 2023 22:52:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_09-20-09.31.38.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:52:00 GMT
server: fife
content-length: 4739
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F776639f2-eb42-4725-b2a7-00e94fc28d19.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F776639f2-eb42-4725-b2a7-00e94fc28d19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3bb461e2e4e28de0ad024cd421d4b1a
9c67f7af385f0999feb27ab02bb96fb86f74d93d
f430b4b3d325f51ce516a4ab3abae723daffe011f1b1246146a75aedd58c70a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F776639f2-eb42-4725-b2a7-00e94fc28d19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8440
x-amzn-requestid: e39ab13e-8072-4c5b-8c3c-5cf627252fdb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKezKFq-IAMFkdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdab47-3cdf64b20b43bdd705acb62f;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 21:31:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ACOiHqbWw5n9e1-bsH5yof60dWVekQO4OB-v7l1reKanhm9gliFbBg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:47:59 GMT
age: 3841
etag: "9c67f7af385f0999feb27ab02bb96fb86f74d93d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4b994-3774-4962-a9e1-b5806a10d003.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4b994-3774-4962-a9e1-b5806a10d003.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95b95060778eca8d5323002d4afe406f
d91109d98c607bd3a0eb56784ed91fbcfc89bd5f
d549664c9a2abc859b3fe4f0144b18095d8c4b63552385224ff9d77f8b57b297
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4b994-3774-4962-a9e1-b5806a10d003.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12886
x-amzn-requestid: 60d7f7b0-742a-4485-9db9-8457791b59e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exbSWEAfoAMFVow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a5a8-528cc2b371f663ce2e11b779;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:05:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9MMu0unR0j56kK4Y-vcAXnmH-IJDgWyeLrV1Raegi914Uyqh85u-cg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 04:03:27 GMT
age: 67713
etag: "d91109d98c607bd3a0eb56784ed91fbcfc89bd5f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf2abec1-a455-47b9-9aaf-69794032330f.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf2abec1-a455-47b9-9aaf-69794032330f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ec35d753b6b816abcd14030255a7b76
a67bd0fa5beb10935442bef246bf4f52ec6e74bd
9adfddc8877a8ea9f1c3bcc0af99548cb11dc4e1d62a706bf9b2a5cc6d72e82f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf2abec1-a455-47b9-9aaf-69794032330f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7982
x-amzn-requestid: 59d91715-b444-445e-bd6b-268fc630024b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKezLExAIAMFSeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdab47-1e12e8f335ea162532ce6aca;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 21:31:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R-9qgCHHj8iD9FEwYhzLoXAQvdrO6D6qRIWAvyQJyfB-LHDGUjvmzA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:47:59 GMT
age: 3841
etag: "a67bd0fa5beb10935442bef246bf4f52ec6e74bd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0247217-9730-4fdb-8be7-667f0568ffc2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0247217-9730-4fdb-8be7-667f0568ffc2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d95b4a29d3337c5c2ca7e4d31fa3a0b6
4c6d22bdc48d7011e2c875ee18876da6a8401669
23421c7f67582c927dacf52c25779e43f5196a40fb1b70467ed737c2417ba39e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0247217-9730-4fdb-8be7-667f0568ffc2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 60a33a3f-36b1-4f6e-a17b-964118a9da31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3AcMGeNoAMFs7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5e11a-7673a87f26759a1a64e4aab2;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 23:43:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yxOiDecizhIzCJoYi-ps_EhYJkKfIagTqM0ybgsgvdVRAgjdsSTRTQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:44:17 GMT
age: 4063
etag: "4c6d22bdc48d7011e2c875ee18876da6a8401669"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiWjm1753aaZWZg9nINMfTZsyD9y3J_DhEIWTMY6rm1m665JubJKStwwf6mi5P6QwuVbkHq5hs7C4qTX5YXlB-R7FLt96lwT9Mgna0DCm00-mXWY5mlTYF790fJMw7yIovx6VFEH_36zgpygHjlMIqzuj1DjwC_Z6E8tcbio-QormTcftNKfRDxVpcVJQ/w80-h65-p-k-no-nu/PicsArt_08-18-12.22.08.jpg
142.250.74.97200 OK 4.1 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiWjm1753aaZWZg9nINMfTZsyD9y3J_DhEIWTMY6rm1m665JubJKStwwf6mi5P6QwuVbkHq5hs7C4qTX5YXlB-R7FLt96lwT9Mgna0DCm00-mXWY5mlTYF790fJMw7yIovx6VFEH_36zgpygHjlMIqzuj1DjwC_Z6E8tcbio-QormTcftNKfRDxVpcVJQ/w80-h65-p-k-no-nu/PicsArt_08-18-12.22.08.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 80x65, components 3\012- data
Hash 45013417b6b49e5f5c51902458fe2668
090caf9e40e57a604d07f2bd8275879459826ded
a2be8941b9b14e165d6be277e3b3d3570f5ba1a9da7e1d35abe68c8cd485a860
GET /img/b/R29vZ2xl/AVvXsEiWjm1753aaZWZg9nINMfTZsyD9y3J_DhEIWTMY6rm1m665JubJKStwwf6mi5P6QwuVbkHq5hs7C4qTX5YXlB-R7FLt96lwT9Mgna0DCm00-mXWY5mlTYF790fJMw7yIovx6VFEH_36zgpygHjlMIqzuj1DjwC_Z6E8tcbio-QormTcftNKfRDxVpcVJQ/w80-h65-p-k-no-nu/PicsArt_08-18-12.22.08.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2273"
expires: Mon, 23 Jan 2023 22:52:00 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_08-18-12.22.08.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:52:00 GMT
server: fife
content-length: 4085
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 36f69c576be6f781f131e89d144916b2
a96a0a7bad1198b6265756eb6dd79d444199dbaf
b1fa2795c057042627ad607c3a2bce695c3c564803d938373cd8243478d3d0d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cc298ded3fc0f058105ddd7b442f5b55
38d43fe921b0b34e4a762598c3ad003956592c04
61a166c11ee3bc04f5be109d262b7f69525e428b1a85f68e00a58de4ff26b4c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 31a96aea31b9bde911c809b90b4b2340
67ac2a598c4d19de11e6a81eabb7af7aeec45dcb
22eb898eb4c8aafb440456924cb0a74529b3f18dbc9e0fa11fdfeeef4ac37908
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bb5fac1f289cb91381d3d1a07094b179
df6f8fe7a21efb35290d24f2b8b0fe809cae8d33
34472778a647b2db33e669d8582b510d94d9e0d355d77c73d643b7495b0f6997
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.dzgurus.com&callback=_gfp_s_&client=ca-pub-2719765140359855
216.58.207.226200 OK 252 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.dzgurus.com&callback=_gfp_s_&client=ca-pub-2719765140359855
IP 216.58.207.226:0
File type ASCII text, with very long lines (389), with no line terminators
Hash 3fd71e5a803ba0e275c2989e6091c52a
b8909d5fb49eddff5379fa45aa063286f03f2c6c
e68d4fa21c2e24f9faf6b6625bff23cca8a5497995ab3a3c3158fbdcdc2b6bc8
GET /gampad/cookie.js?domain=www.dzgurus.com&callback=_gfp_s_&client=ca-pub-2719765140359855 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 22 Jan 2023 22:52:01 GMT
server: cafe
cache-control: private
content-length: 252
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.dzgurus.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.dzgurus.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.dzgurus.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 22 Jan 2023 22:52:01 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.dzgurus.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.dzgurus.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.dzgurus.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 22 Jan 2023 22:52:01 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fa8a13e70570700654b112eb06029bd8
58de515ebe29aab1e5932eed2fbe5d802eb1707c
59253e9d3bc1a2319f2e05163644da0445077741392d78d996cc8394d13a8bc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59253E9D3BC1A2319F2E05163644DA0445077741392D78D996CC8394D13A8BC8"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3095
Expires: Sun, 22 Jan 2023 23:43:36 GMT
Date: Sun, 22 Jan 2023 22:52:01 GMT
Connection: keep-alive
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.14200 OK 0 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.blogger.com/
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Sun, 22 Jan 2023 22:52:01 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+157; expires=Tue, 21-Jan-2025 22:52:01 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 22 Jan 2023 22:52:01 GMT
cache-control: private
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html
45.133.44.3200 OK 955 B URL HTTP/2 cdn.barscreative1.com/sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text
Hash 3311b451b6e90781dab5ae61a1e4f65d
940e4700d9c5fbf74f8c15dcf10c28661e34cf2c
3def788280ca0f9ba09e050e3f3bfba82e5268fe2104f1c02a8f265c12774023
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:52:01 GMT
content-type: text/html; charset=utf-8
content-length: 955
server: nginx/1.17.6
last-modified: Wed, 18 May 2022 11:09:59 GMT
etag: "6284d407-3bb"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
expires: Sun, 22 Jan 2023 23:52:01 GMT
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 31a96aea31b9bde911c809b90b4b2340
67ac2a598c4d19de11e6a81eabb7af7aeec45dcb
22eb898eb4c8aafb440456924cb0a74529b3f18dbc9e0fa11fdfeeef4ac37908
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.google.com/log?format=json&hasfast=true&authuser=0
142.250.74.14200 OK 131 B URL HTTP/2 play.google.com/log?format=json&hasfast=true&authuser=0
IP 142.250.74.14:0
File type JSON data\012- , ASCII text, with no line terminators
Hash babb6f090aeebc6f421624475b4aefff
06079b7547949822c118224e51604f4c5ebf80c8
b2fe8b91f31edc7284cc9690e90dd4a38d985598374df68967d917590beb55dd
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.blogger.com/
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 1558
Origin: https://www.blogger.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.blogger.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Sun, 22 Jan 2023 22:52:01 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+764; expires=Tue, 21-Jan-2025 22:52:01 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sun, 22 Jan 2023 22:52:01 GMT
X-Firefox-Spdy: h2
shaggyselectmast.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3o2nvayLe%2FAg9FFBJt3zIzNjhGBcI8E1yW5WIh6E6qrqSZmarqaqa3oyeIgu6F6E2ZMeO98kG9ZdZBe8%2BoOJByV42PYgORj%2FhQXBs8xkIPig6r1X3zt836vvi313RgI4errxvh5Ipeh8oxL4r27JhOvc%2Bmt3%2FDCoBIv%2BlkwW6ot%2Bf3KZ3hth0KgEr%2FnvCraj56tBGARhEPor0ohY9%2BenKGT6uB1W2kGlXq2EjTr65v%2B9dR4s9cB7Z%2BQaJC9f2P7tKSQbI%2Bk%2BuSHsTqbT19%2FpOkUzbdDjRx8kO4nOE3Qvyth4iJOj2TS0LQn55hJ0cjRTAN07mChAJEvi%2FRkiSo5mNBH1Ds%2BZRgoiQcSvIO%2BNIdQYko7B9F1I%2FowAjGNtHUn3wZo2Od09R%2BkELcncv%2F9A5iWZ%2B%2BslJN3vlpXs%2B5tauUzqxKIfF5D9MWRnjNQdIxt4kPkxWPY5JCdIugUkL6aqpRxDxmMoMQS1HtzkSA8u9uBSD11%2B6tNGOw6CZhzFtVqrzhir1RhrtBZ4g9fqrTiAYxNaQ2TpEEwNwcweUrOHHXn%2FWeMajPsZdruA5R5sVhLv1h56vEAuCHJLkFOCXBLkGUHeKw65slVbPODKuiic5eos14qRzjr79FBnHZGQ%2FfSMvDhdyfOHS9gRp37cZNW4GrZoM6xV63G9LSirxc1mrdZYaLBWBCsLSHtpqnYgS3L94ydIZUkuX%2F8SET2GVcdg8jKoewU0HzWrAej2qN4KMEge8UHHGWcrTHfBdYE0m0O26%2B2rM%2FLylMabtzYh2AmZBZgpkJoCn8hfCDrq3ui2zsnBbZ1b8nQ9zWRXDujk1zYzmgnv2%2FfEbq4NX71hhw%2FfYhNgUj6%2BI2x2kyZcJh1LHi1LzoVZ0YYJ8sOq3RLRhrPby84kLr258fbKajc1wlqpkzGoLAn57FMwWZIrXjJ1pN8%2FgzRjGFeg6y64Sn0Mlu7BpidLX3%2B1%2Fvci%2FwhWExh1MROlHnJXjEw1unhUkkCJi55GBaw4Wfr1%2B%2FaHV6M1ROLkp%2Bfn2L69h47xQLO7Ux%2F2TIGeKkDVENZdHmWpOVn6ozYNRMobRcp4B5Ey6v75cq089UUjDmIRVEUUt6O4SQPejuvtiLZD0YwaNERmS%2Fb7j1f%2FAwAA%2F%2F8BAAD%2F%2F9CNGhBpBAAA
192.243.59.20200 OK 7 B URL HTTP/1.1 shaggyselectmast.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3o2nvayLe%2FAg9FFBJt3zIzNjhGBcI8E1yW5WIh6E6qrqSZmarqaqa3oyeIgu6F6E2ZMeO98kG9ZdZBe8%2BoOJByV42PYgORj%2FhQXBs8xkIPig6r1X3zt836vvi313RgI4errxvh5Ipeh8oxL4r27JhOvc%2Bmt3%2FDCoBIv%2BlkwW6ot%2Bf3KZ3hth0KgEr%2FnvCraj56tBGARhEPor0ohY9%2BenKGT6uB1W2kGlXq2EjTr65v%2B9dR4s9cB7Z%2BQaJC9f2P7tKSQbI%2Bk%2BuSHsTqbT19%2FpOkUzbdDjRx8kO4nOE3Qvyth4iJOj2TS0LQn55hJ0cjRTAN07mChAJEvi%2FRkiSo5mNBH1Ds%2BZRgoiQcSvIO%2BNIdQYko7B9F1I%2FowAjGNtHUn3wZo2Od09R%2BkELcncv%2F9A5iWZ%2B%2BslJN3vlpXs%2B5tauUzqxKIfF5D9MWRnjNQdIxt4kPkxWPY5JCdIugUkL6aqpRxDxmMoMQS1HtzkSA8u9uBSD11%2B6tNGOw6CZhzFtVqrzhir1RhrtBZ4g9fqrTiAYxNaQ2TpEEwNwcweUrOHHXn%2FWeMajPsZdruA5R5sVhLv1h56vEAuCHJLkFOCXBLkGUHeKw65slVbPODKuiic5eos14qRzjr79FBnHZGQ%2FfSMvDhdyfOHS9gRp37cZNW4GrZoM6xV63G9LSirxc1mrdZYaLBWBCsLSHtpqnYgS3L94ydIZUkuX%2F8SET2GVcdg8jKoewU0HzWrAej2qN4KMEge8UHHGWcrTHfBdYE0m0O26%2B2rM%2FLylMabtzYh2AmZBZgpkJoCn8hfCDrq3ui2zsnBbZ1b8nQ9zWRXDujk1zYzmgnv2%2FfEbq4NX71hhw%2FfYhNgUj6%2BI2x2kyZcJh1LHi1LzoVZ0YYJ8sOq3RLRhrPby84kLr258fbKajc1wlqpkzGoLAn57FMwWZIrXjJ1pN8%2FgzRjGFeg6y64Sn0Mlu7BpidLX3%2B1%2Fvci%2FwhWExh1MROlHnJXjEw1unhUkkCJi55GBaw4Wfr1%2B%2FaHV6M1ROLkp%2Bfn2L69h47xQLO7Ux%2F2TIGeKkDVENZdHmWpOVn6ozYNRMobRcp4B5Ey6v75cq089UUjDmIRVEUUt6O4SQPejuvtiLZD0YwaNERmS%2Fb7j1f%2FAwAA%2F%2F8BAAD%2F%2F9CNGhBpBAAA
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSu3o2nvayLe%2FAg9FFBJt3zIzNjhGBcI8E1yW5WIh6E6qrqSZmarqaqa3oyeIgu6F6E2ZMeO98kG9ZdZBe8%2BoOJByV42PYgORj%2FhQXBs8xkIPig6r1X3zt836vvi313RgI4errxvh5Ipeh8oxL4r27JhOvc%2Bmt3%2FDCoBIv%2BlkwW6ot%2Bf3KZ3hth0KgEr%2FnvCraj56tBGARhEPor0ohY9%2BenKGT6uB1W2kGlXq2EjTr65v%2B9dR4s9cB7Z%2BQaJC9f2P7tKSQbI%2Bk%2BuSHsTqbT19%2FpOkUzbdDjRx8kO4nOE3Qvyth4iJOj2TS0LQn55hJ0cjRTAN07mChAJEvi%2FRkiSo5mNBH1Ds%2BZRgoiQcSvIO%2BNIdQYko7B9F1I%2FowAjGNtHUn3wZo2Od09R%2BkELcncv%2F9A5iWZ%2B%2BslJN3vlpXs%2B5tauUzqxKIfF5D9MWRnjNQdIxt4kPkxWPY5JCdIugUkL6aqpRxDxmMoMQS1HtzkSA8u9uBSD11%2B6tNGOw6CZhzFtVqrzhir1RhrtBZ4g9fqrTiAYxNaQ2TpEEwNwcweUrOHHXn%2FWeMajPsZdruA5R5sVhLv1h56vEAuCHJLkFOCXBLkGUHeKw65slVbPODKuiic5eos14qRzjr79FBnHZGQ%2FfSMvDhdyfOHS9gRp37cZNW4GrZoM6xV63G9LSirxc1mrdZYaLBWBCsLSHtpqnYgS3L94ydIZUkuX%2F8SET2GVcdg8jKoewU0HzWrAej2qN4KMEge8UHHGWcrTHfBdYE0m0O26%2B2rM%2FLylMabtzYh2AmZBZgpkJoCn8hfCDrq3ui2zsnBbZ1b8nQ9zWRXDujk1zYzmgnv2%2FfEbq4NX71hhw%2FfYhNgUj6%2BI2x2kyZcJh1LHi1LzoVZ0YYJ8sOq3RLRhrPby84kLr258fbKajc1wlqpkzGoLAn57FMwWZIrXjJ1pN8%2FgzRjGFeg6y64Sn0Mlu7BpidLX3%2B1%2Fvci%2FwhWExh1MROlHnJXjEw1unhUkkCJi55GBaw4Wfr1%2B%2FaHV6M1ROLkp%2Bfn2L69h47xQLO7Ux%2F2TIGeKkDVENZdHmWpOVn6ozYNRMobRcp4B5Ey6v75cq089UUjDmIRVEUUt6O4SQPejuvtiLZD0YwaNERmS%2Fb7j1f%2FAwAA%2F%2F8BAAD%2F%2F9CNGhBpBAAA HTTP/1.1
Host: shaggyselectmast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 22 Jan 2023 22:52:01 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8774fab545536a7d3012aeb5d4f1dde0
Strict-Transport-Security: max-age=0; includeSubdomains
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f82a4633fe57b496fb5cd05288b04145
ac0346f5dcb9cf3e1a2cc701848f95ee57b0bfd2
a081933eef2483a8b7fe00e421b35ea57db032bbdae36b45d520935df4006425
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A081933EEF2483A8B7FE00E421B35EA57DB032BBDAE36B45D520935DF4006425"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7866
Expires: Mon, 23 Jan 2023 01:03:07 GMT
Date: Sun, 22 Jan 2023 22:52:01 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f82a4633fe57b496fb5cd05288b04145
ac0346f5dcb9cf3e1a2cc701848f95ee57b0bfd2
a081933eef2483a8b7fe00e421b35ea57db032bbdae36b45d520935df4006425
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A081933EEF2483A8B7FE00E421B35EA57DB032BBDAE36B45D520935DF4006425"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7866
Expires: Mon, 23 Jan 2023 01:03:07 GMT
Date: Sun, 22 Jan 2023 22:52:01 GMT
Connection: keep-alive
shaggyselectmast.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F5e%2F2f%2Fd4%2F5e2fd4b3d4c51bdf7b2952c27a9795ef%2F1652872195.html&l=955&fd=128
192.243.59.20200 OK 0 B URL HTTP/1.1 shaggyselectmast.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F5e%2F2f%2Fd4%2F5e2fd4b3d4c51bdf7b2952c27a9795ef%2F1652872195.html&l=955&fd=128
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F5e%2F2f%2Fd4%2F5e2fd4b3d4c51bdf7b2952c27a9795ef%2F1652872195.html&l=955&fd=128 HTTP/1.1
Host: shaggyselectmast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 22 Jan 2023 22:52:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f82a4633fe57b496fb5cd05288b04145
ac0346f5dcb9cf3e1a2cc701848f95ee57b0bfd2
a081933eef2483a8b7fe00e421b35ea57db032bbdae36b45d520935df4006425
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A081933EEF2483A8B7FE00E421B35EA57DB032BBDAE36B45D520935DF4006425"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7866
Expires: Mon, 23 Jan 2023 01:03:07 GMT
Date: Sun, 22 Jan 2023 22:52:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2b2efca8c8196585d979ceab9f57e43
f12e303169c0d0f56488c3c94f748e1d1c0f1c14
22827ebe7f1adc4d02d82b33af14e04f3b30c74ba3b8af90e0905c8e407fcd7b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22827EBE7F1ADC4D02D82B33AF14E04F3B30C74BA3B8AF90E0905C8E407FCD7B"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7107
Expires: Mon, 23 Jan 2023 00:50:28 GMT
Date: Sun, 22 Jan 2023 22:52:01 GMT
Connection: keep-alive
shaggyselectmast.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fanimate.css&l=79245&fd=164
192.243.59.20200 OK 0 B URL HTTP/1.1 shaggyselectmast.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fanimate.css&l=79245&fd=164
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fanimate.css&l=79245&fd=164 HTTP/1.1
Host: shaggyselectmast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 22 Jan 2023 22:52:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.cloudimagesb.com/si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png
45.133.44.10200 OK 12 kB URL HTTP/2 cdn.cloudimagesb.com/si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash c07f1baac701b672939b359081f813c7
d38ffbae259aae1e8ad3b38959339bb29da9b69f
85bc8e3de3651f6f03dc381ea4bbaff350d8973c37f598582838677817bf1826
GET /si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:52:01 GMT
content-type: image/png
content-length: 12186
server: nginx/1.17.6
last-modified: Sun, 22 Jan 2023 04:25:10 GMT
etag: "63ccbaa6-2f9a"
expires: Tue, 24 Jan 2023 22:52:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
shaggyselectmast.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fstyle.css&l=5214&fd=179
192.243.59.20200 OK 0 B URL HTTP/1.1 shaggyselectmast.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fstyle.css&l=5214&fd=179
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fstyle.css&l=5214&fd=179 HTTP/1.1
Host: shaggyselectmast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 22 Jan 2023 22:52:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
shaggyselectmast.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fjs%2Fscript.js&l=387&fd=165
192.243.59.20200 OK 0 B URL HTTP/1.1 shaggyselectmast.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fjs%2Fscript.js&l=387&fd=165
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fjs%2Fscript.js&l=387&fd=165 HTTP/1.1
Host: shaggyselectmast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 22 Jan 2023 22:52:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/SFUIText-Regular.woff
172.64.166.9200 OK 73 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/SFUIText-Regular.woff
IP 172.64.166.9:0
File type Web Open Font Format, TrueType, length 72696, version 11.0\012- data
Hash 53d97caea7ef8a12beab745fcc5744e1
b8c70e4f67957e4f2cb809a58d84c773a3bde6d0
542772868e28df6d786b6f00f9dec929cba214d928cb013b32588485b46f8715
GET /sb/notifications/software/us/ios/desk-new-big/SFUIText-Regular.woff HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:52:01 GMT
content-type: application/font-woff
content-length: 72696
last-modified: Wed, 17 Feb 2021 11:42:38 GMT
etag: "602d012e-11bf8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 10
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nCLBQ4itSNWC8TIelr6XBkicwWBsmlZQQEg9ekHJZf6jlyGZAj2eQ8CCB%2BZIt2ToQPTk5JYBDf7NmgCuS%2BYz8WkcvlaCJ%2Babfv7WeApjIh%2FLLgCgQWp9%2BQgjTMuykgFnlLieSDSLz%2BNP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dbdb8fb97423b7-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 74597e1773e5a430676d5164f92afeb5
39d84e29de2522537cedd6ba99130800166d88d9
e46a906361e4f7f39f9c4ba5cd91b5a9371ee77ead5d2a0913f5d3298919e48d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E46A906361E4F7F39F9C4BA5CD91B5A9371EE77EAD5D2A0913F5D3298919E48D"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7425
Expires: Mon, 23 Jan 2023 00:55:46 GMT
Date: Sun, 22 Jan 2023 22:52:01 GMT
Connection: keep-alive
shaggyselectmast.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRSebcOpl1LRAwekPYKEnF2vHdsEKSKUoIiSpE1REAek2ZlZZ8h4ZzWz43UsDoFK0AuSe4Lj5nPSqLRCrcSVH3I4gCIONQeUA%2BFfqITEGdmxFPGkmffefO%2FwfW%2B%2BL%2FbdGQng6OnG%2B7ovlaLz9Urgv7olU64L66%2Fd8cOgEiz6WzJdqC36vcllum%2BEQb0SvOa%2FK9iOnq8GYRCEQeivSCMS3ZufopDZ41ZYaQWVWrUS1mvomf%2F31nmw1APvnpFrkHz8wvZvTyHZCGnnyQ1hd3Kdvf5Oxymaa4MuP%2Fog3Ul1kaJzUSbGQ5Iezaah7ZiQby5Bp0czBdDdg4kCxHJMvD9DxOnRjCbi7uE501hBpIj5FRTdEYQaQdIRmL4LyZ8RgHGsrSPtPFjTpqC75yidoGMy9%2B8%2FkMWYzP31EtLOd8tK9vxNrVwudWrRS0rI3giyPULmjpH3PcjiGCz%2FHJITpJ0SkpdT1VKOIJMRlBiAWg9ucqQHl3hwmYcOP%2FVpvZUEQSOJkyhq1hhjUcRYvbnA6zyqNZMAjk1oDZBnAzA1ADN7yMweduT9Z%2FVrMO5n2O0Slnuw%2BZh4t%2FbQ5SUKQVBYgoISFJKgyAmKbnnIla3a8gFX1sXhLFdnOSqHOm%2Fv00Odt0VK9rMz8uJ0Jc8fLmFHnPpJg1WTatikjTCq1pJaS1AWJY1GFNUX6qwZw8oS0l6aqu3LMbn%2B8RNkckwuX%2F8SMT2GVcdg8jKoewW0GDaqAej2sNYM0E8f8X7bGWcrTHfAdYksn0O%2B6%2B2rM%2FLylMabtzYh2AmZBZgpkZkSn8hfCNrq3vC2LsjBbV1Y8nQ9y2VH9unk1zZzmgvv2%2FfEbqENX71hBw%2FfYhNgUj6%2BI2x%2Bk6Zcpm1LHi1LzoVZ0YYJ8sOq3RLxhrPby86kLru58fbKaiczwlqp0xGoHBPy2adgckyueOnUkX7vDNKMYFyJjrvgKvUxWLYHm50sff3V%2Bt%2BL%2FCNYTWDUxUyceShcOTTV%2BOJRSQIlLnoal7DiZOnX71sfXo3XEIuTn56fY%2Fv2HtrGA83vTn3YNSW6qgRVA1h3eZhn5mTpj2gaiJU3jJXxDmJl1P3z5Vp56tfDmmjGzQbjPBaMh41q1IyCoMp5rdESYQu5HbPff7z6HwAAAP%2F%2FAQAA%2F%2F%2FEhZT2aQQAAA%3D%3D
192.243.59.20200 OK 7 B URL HTTP/1.1 shaggyselectmast.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRSebcOpl1LRAwekPYKEnF2vHdsEKSKUoIiSpE1REAek2ZlZZ8h4ZzWz43UsDoFK0AuSe4Lj5nPSqLRCrcSVH3I4gCIONQeUA%2BFfqITEGdmxFPGkmffefO%2FwfW%2B%2BL%2FbdGQng6OnG%2B7ovlaLz9Urgv7olU64L66%2Fd8cOgEiz6WzJdqC36vcllum%2BEQb0SvOa%2FK9iOnq8GYRCEQeivSCMS3ZufopDZ41ZYaQWVWrUS1mvomf%2F31nmw1APvnpFrkHz8wvZvTyHZCGnnyQ1hd3Kdvf5Oxymaa4MuP%2Fog3Ul1kaJzUSbGQ5Iezaah7ZiQby5Bp0czBdDdg4kCxHJMvD9DxOnRjCbi7uE501hBpIj5FRTdEYQaQdIRmL4LyZ8RgHGsrSPtPFjTpqC75yidoGMy9%2B8%2FkMWYzP31EtLOd8tK9vxNrVwudWrRS0rI3giyPULmjpH3PcjiGCz%2FHJITpJ0SkpdT1VKOIJMRlBiAWg9ucqQHl3hwmYcOP%2FVpvZUEQSOJkyhq1hhjUcRYvbnA6zyqNZMAjk1oDZBnAzA1ADN7yMweduT9Z%2FVrMO5n2O0Slnuw%2BZh4t%2FbQ5SUKQVBYgoISFJKgyAmKbnnIla3a8gFX1sXhLFdnOSqHOm%2Fv00Odt0VK9rMz8uJ0Jc8fLmFHnPpJg1WTatikjTCq1pJaS1AWJY1GFNUX6qwZw8oS0l6aqu3LMbn%2B8RNkckwuX%2F8SMT2GVcdg8jKoewW0GDaqAej2sNYM0E8f8X7bGWcrTHfAdYksn0O%2B6%2B2rM%2FLylMabtzYh2AmZBZgpkZkSn8hfCNrq3vC2LsjBbV1Y8nQ9y2VH9unk1zZzmgvv2%2FfEbqENX71hBw%2FfYhNgUj6%2BI2x%2Bk6Zcpm1LHi1LzoVZ0YYJ8sOq3RLxhrPby86kLru58fbKaiczwlqp0xGoHBPy2adgckyueOnUkX7vDNKMYFyJjrvgKvUxWLYHm50sff3V%2Bt%2BL%2FCNYTWDUxUyceShcOTTV%2BOJRSQIlLnoal7DiZOnX71sfXo3XEIuTn56fY%2Fv2HtrGA83vTn3YNSW6qgRVA1h3eZhn5mTpj2gaiJU3jJXxDmJl1P3z5Vp56tfDmmjGzQbjPBaMh41q1IyCoMp5rdESYQu5HbPff7z6HwAAAP%2F%2FAQAA%2F%2F%2FEhZT2aQQAAA%3D%3D
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRSebcOpl1LRAwekPYKEnF2vHdsEKSKUoIiSpE1REAek2ZlZZ8h4ZzWz43UsDoFK0AuSe4Lj5nPSqLRCrcSVH3I4gCIONQeUA%2BFfqITEGdmxFPGkmffefO%2FwfW%2B%2BL%2FbdGQng6OnG%2B7ovlaLz9Urgv7olU64L66%2Fd8cOgEiz6WzJdqC36vcllum%2BEQb0SvOa%2FK9iOnq8GYRCEQeivSCMS3ZufopDZ41ZYaQWVWrUS1mvomf%2F31nmw1APvnpFrkHz8wvZvTyHZCGnnyQ1hd3Kdvf5Oxymaa4MuP%2Fog3Ul1kaJzUSbGQ5Iezaah7ZiQby5Bp0czBdDdg4kCxHJMvD9DxOnRjCbi7uE501hBpIj5FRTdEYQaQdIRmL4LyZ8RgHGsrSPtPFjTpqC75yidoGMy9%2B8%2FkMWYzP31EtLOd8tK9vxNrVwudWrRS0rI3giyPULmjpH3PcjiGCz%2FHJITpJ0SkpdT1VKOIJMRlBiAWg9ucqQHl3hwmYcOP%2FVpvZUEQSOJkyhq1hhjUcRYvbnA6zyqNZMAjk1oDZBnAzA1ADN7yMweduT9Z%2FVrMO5n2O0Slnuw%2BZh4t%2FbQ5SUKQVBYgoISFJKgyAmKbnnIla3a8gFX1sXhLFdnOSqHOm%2Fv00Odt0VK9rMz8uJ0Jc8fLmFHnPpJg1WTatikjTCq1pJaS1AWJY1GFNUX6qwZw8oS0l6aqu3LMbn%2B8RNkckwuX%2F8SMT2GVcdg8jKoewW0GDaqAej2sNYM0E8f8X7bGWcrTHfAdYksn0O%2B6%2B2rM%2FLylMabtzYh2AmZBZgpkZkSn8hfCNrq3vC2LsjBbV1Y8nQ9y2VH9unk1zZzmgvv2%2FfEbqENX71hBw%2FfYhNgUj6%2BI2x%2Bk6Zcpm1LHi1LzoVZ0YYJ8sOq3RLxhrPby86kLru58fbKaiczwlqp0xGoHBPy2adgckyueOnUkX7vDNKMYFyJjrvgKvUxWLYHm50sff3V%2Bt%2BL%2FCNYTWDUxUyceShcOTTV%2BOJRSQIlLnoal7DiZOnX71sfXo3XEIuTn56fY%2Fv2HtrGA83vTn3YNSW6qgRVA1h3eZhn5mTpj2gaiJU3jJXxDmJl1P3z5Vp56tfDmmjGzQbjPBaMh41q1IyCoMp5rdESYQu5HbPff7z6HwAAAP%2F%2FAQAA%2F%2F%2FEhZT2aQQAAA%3D%3D HTTP/1.1
Host: shaggyselectmast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 22 Jan 2023 22:52:01 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ff6072adad830c15776e794649830441
Strict-Transport-Security: max-age=0; includeSubdomains
shaggyselectmast.com/pixel/sbs?c=1
192.243.59.20200 OK 0 B URL HTTP/1.1 shaggyselectmast.com/pixel/sbs?c=1
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: shaggyselectmast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 22 Jan 2023 22:52:01 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
unseenreport.com/pxf.gif?uuid=a8bf0359-a8dd-46cd-a789-4e26a06b59d2&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=070f1088c9802792a1aea00839b47afe&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
192.243.59.12200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=a8bf0359-a8dd-46cd-a789-4e26a06b59d2&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=070f1088c9802792a1aea00839b47afe&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=a8bf0359-a8dd-46cd-a789-4e26a06b59d2&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=070f1088c9802792a1aea00839b47afe&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 22 Jan 2023 22:52:02 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9207404869d7947c1269f317f2b388bf
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=a8bf0359-a8dd-46cd-a789-4e26a06b59d2&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=f7c2f218a71324f49eac3f7733565c8b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
192.243.59.12200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=a8bf0359-a8dd-46cd-a789-4e26a06b59d2&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=f7c2f218a71324f49eac3f7733565c8b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=a8bf0359-a8dd-46cd-a789-4e26a06b59d2&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=f7c2f218a71324f49eac3f7733565c8b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=22 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 22 Jan 2023 22:52:02 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 261a5f9571d32e33c9c8a27ff615ddb6
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 61ad64be1d17c072bde0da4ad094fe74
be20a360ad4314e4488560d3dd9bf6f6d95ac01f
27242c742941dbf7b04c1998d0971b1c5c738311c3ea9925dfeaee3db4f93b4c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:52:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/style.css
172.64.166.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/style.css
IP 172.64.166.9:0
GET /sb/notifications/software/us/ios/desk-new-big/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:52:01 GMT
content-type: text/css
last-modified: Thu, 23 Sep 2021 12:16:53 GMT
etag: W/"614c7035-145e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 12
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jB4j6pCpNXvgZAHTvJ3ghdLZXNZ4d%2BYOrQAjV%2FjYNTc5VOfd9l6Sqs%2BefsMo9mEwgl56A9idvtk%2FWqPmfX%2Ftza41rLzFFGnHR2CdHERSA5%2BG%2BDl8kgjOkOWos04fQWxTRfTIbglJ1pT2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dbdb8d5e2223b7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
172.64.140.24200 OK 0 B URL HTTP/2 friendshipmale.com/sfp.js
IP 172.64.140.24:0
Analyzer Verdict Alert fortinet Malware
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:59 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: fbda55ce7fb265ee55d4b5437e82ad3d
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 22 Jan 2023 22:51:59 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AW9%2FQbcH%2FqAohvnrCAOvUIJQnPABjuxyrsIm3bTKsuOxtRsNQCm1yyXuuYPH6ogOPv1b0iIKTrkxhVjZwF2funWkeCGhG2gHJIMZylOiQpmeSsbnoWn6uxuN5gzQIXZZMqiDI6s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dbdb826bc575cf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.dzgurus.com/favicon.ico
142.250.74.179200 OK 0 B URL HTTP/2 www.dzgurus.com/favicon.ico
IP 142.250.74.179:0
GET /favicon.ico HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.htmlhttps://www.dzgurus.com/2020/11/gta-3-v16-apk-obb-mod-unlimited-money.html?m%3D1
Cookie: sb_main_f7c2f218a71324f49eac3f7733565c8b=1; sb_count_f7c2f218a71324f49eac3f7733565c8b=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
expires: Sun, 22 Jan 2023 22:52:00 GMT
date: Sun, 22 Jan 2023 22:52:00 GMT
cache-control: private, max-age=86400
last-modified: Sun, 22 Jan 2023 21:51:16 GMT
etag: W/"7985a1d29baac0bfcbe1dd6b3ea0fa2d61d1e55804a090c89346243e1f8ccfd6"
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 844
server: GSE
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/animate.css
172.64.166.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/animate.css
IP 172.64.166.9:0
GET /sb/notifications/software/us/ios/desk-new-big/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:52:01 GMT
content-type: text/css
last-modified: Wed, 17 Feb 2021 11:44:02 GMT
etag: W/"602d0182-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 12
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QgUCcmInE3tRsJfmetR4PimPDtQQiiBwzVL38siNtm69HGiha%2BpXxoDTsAOPhQQymP5aiMQp3WL8c5hrAlxc2Vi88f9yurZZa0auBaclFx2TnmlUAuPht23STF27f5DVoVedwmvNGTjR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dbdb8d4e1123b7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/js/script.js
172.64.166.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/js/script.js
IP 172.64.166.9:0
GET /sb/notifications/software/us/ios/desk-new-big/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:52:01 GMT
content-type: application/javascript
last-modified: Wed, 17 Feb 2021 11:44:05 GMT
etag: W/"602d0185-183"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 12
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hEYtGd2uLPI8tUPWBi405djsSh2MH%2F4tfo167vrer2KtUHYaicW2zaxy2vSbjSTG9VoL3dapCgAUhPxDW%2FVEN09UG7eT0UCgFpUln8ifk8mfWOmvDPxOHgJlFQGAFW8Wu7kWl%2FG6%2BIGZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dbdb8d5e1a23b7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2