urlquery - report: gaminghelper.co/app/431946152/roblox-login-cheats-game-hack

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-12-15 17:12:02 UTC	34.160.144.191
i0.wp.com (1)	3021	2013-09-17 06:14:42 UTC	2022-12-15 18:33:56 UTC	192.0.77.2
translate.google.com (1)	1156	2012-05-30 01:30:32 UTC	2022-12-15 17:13:34 UTC	216.58.211.14
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-12-15 17:13:30 UTC	34.117.237.239
ocsp.pki.goog (10)	175	2017-06-14 07:23:31 UTC	2022-12-15 17:12:06 UTC	142.250.74.131
fonts.googleapis.com (1)	8877	2012-05-23 12:41:44 UTC	2022-12-15 22:22:03 UTC	142.250.74.106
www.gstatic.com (2)	0	2012-05-29 15:36:17 UTC	2022-12-15 20:35:41 UTC	142.250.74.35	Domain (gstatic.com) ranked at: 540
s4.histats.com (1)	12782	2012-05-21 17:14:14 UTC	2022-12-15 19:01:39 UTC	54.39.128.117
gaminghelper.co (36)	0	2021-10-07 04:32:40 UTC	2022-12-16 06:14:39 UTC	91.223.82.61	Unknown ranking
firefox.settings.services.mozilla.com (2)	867	2020-05-25 20:06:39 UTC	2022-12-15 17:12:38 UTC	35.241.9.150
ajax.googleapis.com (2)	12905	2012-05-22 10:38:03 UTC	2022-12-16 00:08:33 UTC	142.250.74.74
is1-ssl.mzstatic.com (1)	1597	2015-02-12 10:39:50 UTC	2022-12-15 22:28:44 UTC	23.38.200.24
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-12-15 17:13:13 UTC	52.39.94.191
s10.histats.com (1)	15211	2012-05-21 17:14:14 UTC	2022-12-15 19:01:39 UTC	46.105.201.240
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-12-15 17:58:16 UTC	34.120.237.76
maxcdn.bootstrapcdn.com (1)	724	2014-06-18 00:37:31 UTC	2022-12-15 23:01:14 UTC	188.114.98.224
r3.o.lencr.org (11)	344	2020-12-02 08:52:13 UTC	2022-12-15 17:12:06 UTC	95.101.11.115
ocsp.digicert.com (4)	86	2012-05-21 07:02:23 UTC	2022-12-15 21:15:59 UTC	93.184.220.29
downloadlocked.com (1)	127304	2021-10-06 18:17:41 UTC	2022-12-15 18:29:30 UTC	23.22.126.183
translate.googleapis.com (1)	1005	2012-05-31 07:21:21 UTC	2022-12-15 22:51:29 UTC	142.250.74.42
track.enigmacdn.com (2)	0	2021-07-17 01:36:30 UTC	2022-12-15 14:03:50 UTC	91.223.82.61	Unknown ranking

Scan Date	Severity	Indicator	Comment
2022-12-16	2	gaminghelper.co/app/431946152/roblox-login-cheats-game-hack	Phishing
2022-12-16	2	gaminghelper.co/app/431946152/roblox-login-cheats-game-hack	Phishing
2022-12-16	2	gaminghelper.co/js/fancySelect.js	Phishing
2022-12-16	2	gaminghelper.co/js/jquery.countTo.js	Phishing
2022-12-16	2	gaminghelper.co/js/com.js	Phishing
2022-12-16	2	gaminghelper.co/js/sweetalert2.min.js	Phishing
2022-12-16	2	gaminghelper.co/js/validator.min.js	Phishing
2022-12-16	2	gaminghelper.co/js/form-scripts.js	Phishing
2022-12-16	2	gaminghelper.co/js/jquery.magnific-popup.min.js	Phishing
2022-12-16	2	gaminghelper.co/js/sticky.js	Phishing
2022-12-16	2	gaminghelper.co/js/main.js	Phishing
2022-12-16	2	gaminghelper.co/fonts/bebasneue_bold-webfont.html	Phishing
2022-12-16	2	gaminghelper.co/fonts/et-line.woff	Phishing
2022-12-16	2	gaminghelper.co/fonts/bebasneue_regular-webfont.html	Phishing

Scan Date	Severity	Indicator	Comment
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed
2022-12-16	2	gaminghelper.co	Sinkholed

Date	UQ / IDS / BL	URL	IP
2022-12-17 09:20:56 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/ninja-assassin- (...)	91.223.82.61
2022-12-17 06:18:11 +0000	0 - 0 - 49	gaminghelper.co/app/431946152/roblox-free-rob (...)	91.223.82.61
2022-12-16 09:03:55 +0000	0 - 0 - 48	gaminghelper.co/app/431946152/how-do-you-get- (...)	91.223.82.61
2022-12-16 08:11:44 +0000	0 - 0 - 48	netcdn.co/app/431946152/roblox-hack-tower-bat (...)	91.223.82.61
2022-12-16 07:12:35 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/roblox-maps-fre (...)	91.223.82.61

Date	UQ / IDS / BL	URL	IP
2023-03-24 17:28:27 +0000	0 - 2 - 0	modymain.us/realtek-high-definition-audio-dri (...)	185.7.33.56
2023-03-15 00:27:15 +0000	0 - 0 - 12	moviemediaz.com/sk/movie/47094/The%20Genesis% (...)	91.223.82.201
2023-03-08 14:10:43 +0000	0 - 7 - 7	hentaijl.com/hentai/55/yari-agari/episodio-1	185.7.33.56
2023-03-06 10:30:50 +0000	0 - 0 - 8	91.223.82.6/	91.223.82.6
2023-02-27 19:23:01 +0000	0 - 3 - 1	www.newbosspass.xyz/laptop/pt2.exe	91.223.82.124

Date	UQ / IDS / BL	URL	IP
2022-12-17 09:20:56 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/ninja-assassin- (...)	91.223.82.61
2022-12-17 06:18:11 +0000	0 - 0 - 49	gaminghelper.co/app/431946152/roblox-free-rob (...)	91.223.82.61
2022-12-16 09:03:55 +0000	0 - 0 - 48	gaminghelper.co/app/431946152/how-do-you-get- (...)	91.223.82.61
2022-12-16 07:12:35 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/roblox-maps-fre (...)	91.223.82.61
2022-12-16 06:21:12 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/roblox-login-ch (...)	91.223.82.61

Date	UQ / IDS / BL	URL	IP
2022-12-17 09:20:56 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/ninja-assassin- (...)	91.223.82.61
2022-12-17 06:18:11 +0000	0 - 0 - 49	gaminghelper.co/app/431946152/roblox-free-rob (...)	91.223.82.61
2022-12-16 08:11:44 +0000	0 - 0 - 48	netcdn.co/app/431946152/roblox-hack-tower-bat (...)	91.223.82.61
2022-12-16 06:23:00 +0000	0 - 0 - 46	netcdn.co/app/431946152/roblox-ninja-warrior- (...)	91.223.82.61
2022-12-15 14:04:00 +0000	0 - 0 - 46	netcdn.co/app/431946152/buy-free-robux-card-g (...)	91.223.82.61

HTTP Transactions (87)

Request	Response
GET /app/431946152/roblox-login-cheats-game-hack HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: gaminghelper.co/app/431946152/roblox-login-cheats-game-hack FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 36571aacdc6d1a70a61cc90eff41aeeb0030b53e4a75e1c8ac573bbc9bb52467 91.223.82.61 HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=iso-8859-1 Server: nginx Date: Fri, 16 Dec 2022 06:21:00 GMT Content-Length: 275 Connection: keep-alive Keep-Alive: timeout=60 Location: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 275 Md5: 5726619b32ae8794d4cf6fecb60ef405 Sha1: cf70283734190216084921665629a71545d37340 Sha256: 36571aacdc6d1a70a61cc90eff41aeeb0030b53e4a75e1c8ac573bbc9bb52467 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: f4f9bdb5180359dfd734cef1e6f1b54bc9d8f72cae557366eb74f22100b94dc4 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F4F9BDB5180359DFD734CEF1E6F1B54BC9D8F72CAE557366EB74F22100B94DC4" Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4265 Expires: Fri, 16 Dec 2022 07:32:06 GMT Date: Fri, 16 Dec 2022 06:21:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 96367f956a4177aec7e7e80221539d58 Sha1: 8dcad10fde96c139d1ef212388cb6755fe3fe077 Sha256: f4f9bdb5180359dfd734cef1e6f1b54bc9d8f72cae557366eb74f22100b94dc4
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: c465efaf205ff2992af02c16187ca14a658cd5335b892903374f3adab32a8cd9 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C465EFAF205FF2992AF02C16187CA14A658CD5335B892903374F3ADAB32A8CD9" Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4650 Expires: Fri, 16 Dec 2022 07:38:31 GMT Date: Fri, 16 Dec 2022 06:21:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 4a5e9bc8b7891ac5f4552c29bcbaedb0 Sha1: 39735081eeb64eae477c61c1147daeb68fb37b22 Sha256: c465efaf205ff2992af02c16187ca14a658cd5335b892903374f3adab32a8cd9
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Fri, 16 Dec 2022 05:33:58 GMT age: 2823 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: b44c4b5daa307a355e7bab1c83c1ca82 Sha1: dbd14cd873f1dd4502f277b3f51cb7bc8da0c080 Sha256: fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 188d4a0d544f40048dc7476cb4f5e478f1eb49a8ef1d51699fb155d2ae258655 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "188D4A0D544F40048DC7476CB4F5E478F1EB49A8EF1D51699FB155D2AE258655" Last-Modified: Tue, 13 Dec 2022 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5495 Expires: Fri, 16 Dec 2022 07:52:36 GMT Date: Fri, 16 Dec 2022 06:21:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 51bd0cc75ed746fd33c950eb12936b7e Sha1: 4a1007ea6c6e4f5e8b4a7d1f85f7a3e329dc8f50 Sha256: 188d4a0d544f40048dc7476cb4f5e478f1eb49a8ef1d51699fb155d2ae258655
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: igp2vFKaTKEgI+TrvJKnAepKVqKYuAm/lIRYjEvkvksTivdCUSLdbNzvgN4ztwnBhgvaijrDiCE= x-amz-request-id: DW1EEA365AX2X5HM content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Fri, 16 Dec 2022 05:51:13 GMT age: 1788 last-modified: Wed, 30 Nov 2022 10:06:34 GMT etag: "53341dea33f4f3d9b4966f80589f429a" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 53341dea33f4f3d9b4966f80589f429a Sha1: 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d Sha256: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Fri, 16 Dec 2022 06:21:01 GMT content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 0fac6c15bab5673b634ba6f692c08d3990f7153596c636d0ad9f8720465b4f02 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "0FAC6C15BAB5673B634BA6F692C08D3990F7153596C636D0AD9F8720465B4F02" Last-Modified: Thu, 15 Dec 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21555 Expires: Fri, 16 Dec 2022 12:20:16 GMT Date: Fri, 16 Dec 2022 06:21:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d7a66e9a67c7922ae2a7aaa35b690ec5 Sha1: 8e3f9645bf0bce9f72dd633efff51538e1fba2fd Sha256: 0fac6c15bab5673b634ba6f692c08d3990f7153596c636d0ad9f8720465b4f02
GET /app/431946152/roblox-login-cheats-game-hack HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: gaminghelper.co/app/431946152/roblox-login-cheats-game-hack FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/8.0.8RC1 Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14923) Size: 20003 Md5: 94d17b53e2271b5c8ee9d31c9c3a57d2 Sha1: 58af2bb33446f359b61abecf0e9260f58a1cfe6f Sha256: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /css/bootstrap.min.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/bootstrap.min.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3421e2383a7c02f24509d2f1294d3099b658d0773f97706b87b832b0b770c0b6 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:30:28 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c104-1d9bb" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (65371) Size: 19597 Md5: 3f142cfc2d7123b31a1e696e0591f27a Sha1: 834192dbadf2713cd2ff89f50d7ec2f1d4782e54 Sha256: 3421e2383a7c02f24509d2f1294d3099b658d0773f97706b87b832b0b770c0b6 Alerts: Blocklists: - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: b0f085491438d08c58906100ae4ddc2fea2e4b34b333c8f3a5a2258fdfd7a51e 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 16 Dec 2022 06:21:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: f8d21614a5f07dffe6f4fb52c6133ce1 Sha1: aefac3c1cd05fd22634f71247cd4dd2e6fa1be88 Sha256: b0f085491438d08c58906100ae4ddc2fea2e4b34b333c8f3a5a2258fdfd7a51e
GET /js/fancySelect.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/fancySelect.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 5d19375a0386f8ea11115e3145c61105cfa1daca00d15ad54b49c84967f518d0 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b2-1a7a" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1661 Md5: a60791b5b353371813114e815d946494 Sha1: 69d1f371b0ed899641e640b2649c0914302812bd Sha256: 5d19375a0386f8ea11115e3145c61105cfa1daca00d15ad54b49c84967f518d0 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Fri, 16 Dec 2022 05:33:23 GMT age: 2858 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /css/sweetalert2.min.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/sweetalert2.min.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 53976df2ad3ce0c0f2632bb620bbb02d930a5eb943298170e97189f029a0d70d 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:30:30 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c106-36a3" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (13987), with no line terminators Size: 2737 Md5: 1cfac88a4a8e1bc20b811757fb028b40 Sha1: 10427c064f703342d031411a3310e2a5ef2083bc Sha256: 53976df2ad3ce0c0f2632bb620bbb02d930a5eb943298170e97189f029a0d70d Alerts: Blocklists: - quad9: Sinkholed
GET /css/magnific-popup.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/magnific-popup.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 211b79363793093a7a2f1d342768844e938e88156b62293093185a6500ead1cf 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:30:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c105-1f0a" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1994 Md5: c0275239cb960b014d780d8105b44d72 Sha1: 8db83ac790988232549a3740ecf04fc199da1ce8 Sha256: 211b79363793093a7a2f1d342768844e938e88156b62293093185a6500ead1cf Alerts: Blocklists: - quad9: Sinkholed
GET /css/animate.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/animate.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: b30b4d8565f9af6c8d2cb3839aa09dbccd60ca1a766465d542debade38f45741 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:30:28 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c104-10cbc" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 4026 Md5: 48bc9b81bca18c06ba937cbb880b4cb3 Sha1: 697313edfad185bcca5c7bde18da4a98f93e3adb Sha256: b30b4d8565f9af6c8d2cb3839aa09dbccd60ca1a766465d542debade38f45741 Alerts: Blocklists: - quad9: Sinkholed
GET /css/fancySelect.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/fancySelect.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3f41176d4616a36f4325865bb3c0ea652f3616dec60b31bd923df91f600506b2 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:30:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c105-109d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1023 Md5: 458a1a06f282aa4c457a8b613d6a38e6 Sha1: b524e1cb32722230e18bc85f414b9a10e43a7e2d Sha256: 3f41176d4616a36f4325865bb3c0ea652f3616dec60b31bd923df91f600506b2 Alerts: Blocklists: - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: db8f4f555c201994b386c718409b4f7b9dc75ef6910891a3d27097a0cb425e24 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 16 Dec 2022 06:21:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 3972e23b068a857e4b879417ecbf1d1a Sha1: c5593984f70d07200faa6a1ca10572cb8670665d Sha256: db8f4f555c201994b386c718409b4f7b9dc75ef6910891a3d27097a0cb425e24
GET /js/jquery.countTo.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/jquery.countTo.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 67880d8532d95db3e74b7da985ca2fe7c9d9660e3dd125202cebcda96a2007e2 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:33:23 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b3-eb1" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1125 Md5: 547f5246e091d19af521dee35588e468 Sha1: 4772f3c1e62865ccbbab04abd39e69510c8f5843 Sha256: 67880d8532d95db3e74b7da985ca2fe7c9d9660e3dd125202cebcda96a2007e2 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/com.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/com.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 28babf5e232e3dc0985bab21a28eea25b17bc078bafc92a6ba049eefb1e45720 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b2-461a" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: C source, Unicode text, UTF-8 text, with very long lines (2456) Size: 3265 Md5: ecf323c878106fa274f5e9f3b3a82437 Sha1: 86b15826e8a83c81da7ef264dd8e3ff59ef5c1bf Sha256: 28babf5e232e3dc0985bab21a28eea25b17bc078bafc92a6ba049eefb1e45720 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/sweetalert2.min.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/sweetalert2.min.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: aeafa1e7bb6a973eac2b4f5462844b1c2d64d53eb2e09e75f265e646320f7080 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:33:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b9-4f51" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (20305), with no line terminators Size: 6538 Md5: b238ef007e57c4c8f9447cba68fdb3a2 Sha1: 2d4ca455aca3fcd8ee7ac2e2883cfa89c87bd532 Sha256: aeafa1e7bb6a973eac2b4f5462844b1c2d64d53eb2e09e75f265e646320f7080 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/validator.min.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/validator.min.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 56b8d7fb44f86809b49d416022455ac170fb0b79d1ab4b6e5192a046e660f667 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:33:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b9-17a7" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (5862) Size: 2094 Md5: 1ab13fa2eeca5d16de99a1cad839416c Sha1: 0d0a95bd88d04b02d89e1162dd3ebb20b5543dd8 Sha256: 56b8d7fb44f86809b49d416022455ac170fb0b79d1ab4b6e5192a046e660f667 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/form-scripts.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/form-scripts.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3dd0f5e5567c73519dc3eeb98ba6fef9d2b2982af24544ba3d7bbc684d6bae6c 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b2-5bd" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 609 Md5: 4fb85eb3b2f0dd8b8f5953c58236da3e Sha1: 1c9f6c7a15a3248147e056672ffbf4fdbaed6718 Sha256: 3dd0f5e5567c73519dc3eeb98ba6fef9d2b2982af24544ba3d7bbc684d6bae6c Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /css/style.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/style.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 08bb84420272831b8755bc5bd2858bf8a486006a9367b670d826ee516262a2c8 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:30:30 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c106-bd7b" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (1512) Size: 8520 Md5: 4d36bdeba8bb00f4ee280771fddfa689 Sha1: 8dfbed7251f5bb010d5fe8f64e0d60abc3e9fd54 Sha256: 08bb84420272831b8755bc5bd2858bf8a486006a9367b670d826ee516262a2c8 Alerts: Blocklists: - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: dd4d3d2048b29affb30ddbbcf8112131cecdb15b0030a612c1d99cce54ab0132 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 16 Dec 2022 06:21:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 7ded1896628f431acd2e4a3d10ea3142 Sha1: ad603e2b43da4629ede29f9f193ae5df09f3cbb8 Sha256: dd4d3d2048b29affb30ddbbcf8112131cecdb15b0030a612c1d99cce54ab0132
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: dd4d3d2048b29affb30ddbbcf8112131cecdb15b0030a612c1d99cce54ab0132 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 16 Dec 2022 06:21:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 7ded1896628f431acd2e4a3d10ea3142 Sha1: ad603e2b43da4629ede29f9f193ae5df09f3cbb8 Sha256: dd4d3d2048b29affb30ddbbcf8112131cecdb15b0030a612c1d99cce54ab0132
GET /js/jquery.magnific-popup.min.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/jquery.magnific-popup.min.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: f2e1cd5f2953925591288bd1cc3f167bbd392497476119083458e33e9ab87079 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:33:26 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b6-5297" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (21014) Size: 7685 Md5: 12a9a563724e70a895de0fbd5f7b4ee5 Sha1: a14c616f532deb9ca2d5fa0de6124d47ea60ab57 Sha256: f2e1cd5f2953925591288bd1cc3f167bbd392497476119083458e33e9ab87079 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/sticky.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/sticky.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 0 Last-Modified: Fri, 03 Sep 2021 06:33:28 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c1b8-0" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 75342aaa31f02e9359554002a384b25bad7e12352bb89859068d07a62d4c2e2b 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2814 Cache-Control: max-age=91633 Date: Fri, 16 Dec 2022 06:21:01 GMT Etag: "639ac640-117" Expires: Sat, 17 Dec 2022 07:48:14 GMT Last-Modified: Thu, 15 Dec 2022 07:01:20 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: 6c9f05fb499af4966a29ef3512602332 Sha1: 4b9a332ca18810028ea54c3b867feed1c49267e3 Sha256: 75342aaa31f02e9359554002a384b25bad7e12352bb89859068d07a62d4c2e2b
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: b0f085491438d08c58906100ae4ddc2fea2e4b34b333c8f3a5a2258fdfd7a51e 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 16 Dec 2022 06:21:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: f8d21614a5f07dffe6f4fb52c6133ce1 Sha1: aefac3c1cd05fd22634f71247cd4dd2e6fa1be88 Sha256: b0f085491438d08c58906100ae4ddc2fea2e4b34b333c8f3a5a2258fdfd7a51e
GET /ajax/libs/jquery/2.1.4/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js FQDN: ajax.googleapis.com IP: 142.250.74.74 HASH: 675fa88b39008a09994460a93b310a7d4593735009a9b24b6f176c347ad12421 142.250.74.74 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 29725 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 15 Dec 2022 08:31:51 GMT expires: Fri, 15 Dec 2023 08:31:51 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 78550 last-modified: Tue, 03 Mar 2020 19:15:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (32025) Size: 29725 Md5: 83b3b5729cdff3976db52c51831e96b8 Sha1: d23dc823e37f58e5366340be755730f3fa9a850d Sha256: 675fa88b39008a09994460a93b310a7d4593735009a9b24b6f176c347ad12421
GET /ajax/libs/jqueryui/1.8.13/jquery-ui.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ajax.googleapis.com/ajax/libs/jqueryui/1.8.13/jquery-ui (...) FQDN: ajax.googleapis.com IP: 142.250.74.74 HASH: 4ae100977cea8b9965e5d231f3ae655783b4f163c56ee703953aff937525ed37 142.250.74.74 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 51711 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 13 Dec 2022 15:53:49 GMT expires: Wed, 13 Dec 2023 15:53:49 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 224832 last-modified: Tue, 03 Mar 2020 19:15:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (563) Size: 51711 Md5: d3908721b39ebbeffaf1c917bbda06e8 Sha1: 0f9b6c6bdad9cfc057f3e85f52cc417370959fb9 Sha256: 4ae100977cea8b9965e5d231f3ae655783b4f163c56ee703953aff937525ed37
GET /js/main.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/main.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 745ecf708bc71ba73f7071b8a35c3f639ec7f3e05ceb826458a1b6a8fb4fe782 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Last-Modified: Fri, 03 Sep 2021 06:33:27 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b7-a08b" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (16162) Size: 15195 Md5: 562dc83f2f14b713905fe69a0994e11d Sha1: 43cd616f9ea8c8c1eb0edccd54a29e2490fcf90a Sha256: 745ecf708bc71ba73f7071b8a35c3f639ec7f3e05ceb826458a1b6a8fb4fe782 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: db8f4f555c201994b386c718409b4f7b9dc75ef6910891a3d27097a0cb425e24 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 16 Dec 2022 06:21:01 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 3972e23b068a857e4b879417ecbf1d1a Sha1: c5593984f70d07200faa6a1ca10572cb8670665d Sha256: db8f4f555c201994b386c718409b4f7b9dc75ef6910891a3d27097a0cb425e24
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 12427975a5e6113b7f8c429376d8f0a1fd74dcf4638d5b9ae20beed354bf9766 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "12427975A5E6113B7F8C429376D8F0A1FD74DCF4638D5B9AE20BEED354BF9766" Last-Modified: Thu, 15 Dec 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2637 Expires: Fri, 16 Dec 2022 07:04:58 GMT Date: Fri, 16 Dec 2022 06:21:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: aa1e449e845d673f1ff7857226e57105 Sha1: ad6d901f1cbd5609a94c85e101c3e2eb6243e267 Sha256: 12427975a5e6113b7f8c429376d8f0a1fd74dcf4638d5b9ae20beed354bf9766
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: c5744a90c8f66629aa2331465a32afe0d430b36d16fd98bc821e370f1b24463c 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3501 Cache-Control: max-age=99860 Date: Fri, 16 Dec 2022 06:21:01 GMT Etag: "639ae3b4-1d7" Expires: Sat, 17 Dec 2022 10:05:21 GMT Last-Modified: Thu, 15 Dec 2022 09:07:00 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: b9f0adeb27a19629aeff6f34de67f3ad Sha1: 3876d1b871d7da6d18de23c2edb301eb30728066 Sha256: c5744a90c8f66629aa2331465a32afe0d430b36d16fd98bc821e370f1b24463c
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 75342aaa31f02e9359554002a384b25bad7e12352bb89859068d07a62d4c2e2b 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2814 Cache-Control: max-age=91633 Date: Fri, 16 Dec 2022 06:21:01 GMT Etag: "639ac640-117" Expires: Sat, 17 Dec 2022 07:48:14 GMT Last-Modified: Thu, 15 Dec 2022 07:01:20 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 279 --- Additional Info --- Magic: data Size: 279 Md5: 6c9f05fb499af4966a29ef3512602332 Sha1: 4b9a332ca18810028ea54c3b867feed1c49267e3 Sha256: 75342aaa31f02e9359554002a384b25bad7e12352bb89859068d07a62d4c2e2b
GET /css?family=Open+Sans:300,400,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Open+Sans:300,400,700 FQDN: fonts.googleapis.com IP: 142.250.74.106 HASH: 6555250c6c2dea1a18c9c1b07164042d131b16661ba2a8dfd9f7941e3c26e5ea 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 16 Dec 2022 06:21:01 GMT date: Fri, 16 Dec 2022 06:21:01 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 1156 Md5: d72933daa5e6d7241158a61f4c1255df Sha1: 021f29c46a87b747e79d8099b7349fd78f98957f Sha256: 6555250c6c2dea1a18c9c1b07164042d131b16661ba2a8dfd9f7941e3c26e5ea
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 9448f1a8ed49adfc2725e9f9dd31ca7434e1b22d9a0f61eb5a7ffea0ff826070 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5053 Cache-Control: max-age=128796 Date: Fri, 16 Dec 2022 06:21:01 GMT Etag: "639b4eac-1d7" Expires: Sat, 17 Dec 2022 18:07:37 GMT Last-Modified: Thu, 15 Dec 2022 16:43:24 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 99be5e6cb4d677c48fc643a3808addcf Sha1: 1f0d81d0a81a5d838fb534dcec5b52be65ed0ab9 Sha256: 9448f1a8ed49adfc2725e9f9dd31ca7434e1b22d9a0f61eb5a7ffea0ff826070
GET /image/thumb/Purple122/v4/9b/ac/11/9bac11ba-0ca7-a097-9c52-b47dcaf27748/AppIcon-1x_U007emarketing-0-7-0-0-85-220.png/150x150bb.jpg HTTP/1.1 Host: is1-ssl.mzstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: is1-ssl.mzstatic.com/image/thumb/Purple122/v4/9b/ac/11/ (...) FQDN: is1-ssl.mzstatic.com IP: 23.38.200.24 HASH: 2ad1acfa41c0453140b8739505564112b5c255f6b1eca9a6338310db44061f26 23.38.200.24 HTTP/2 200 OK content-type: image/jpeg server: daiquiri/3.0.0 content-length: 12213 x-apple-jingle-correlation-key: OOCNGUETKYYAYBWWGPU42467XM x-apple-request-uuid: 7384d350-9356-300c-06d6-33e9cd73dfbb b3: 7384d3509356300c06d633e9cd73dfbb-aa58e7e80c2524bd x-b3-traceid: 7384d3509356300c06d633e9cd73dfbb x-b3-spanid: aa58e7e80c2524bd apple-seq: 0.0 apple-tk: false apple-originating-system: UnknownOriginatingSystem last-modified: Thu, 08 Dec 2022 22:54:33 GMT etag: "MSwxLjI4LTIySCxWZXJzaW9uIDEyLjEgKEJ1aWxkIDIxQzUyKSwxNjcwNTQwMDczMTIxLGlzQnVpbGRWZXJzaW9uTm90U2V0LDUwMjg0LG5vRWZmZWN0" access-control-allow-origin: * access-control-expose-headers: Content-Length,Content-Type,ETag,Cache-Control,Expires,Last-Modified timing-allow-origin: * strict-transport-security: max-age=31536000; includeSubDomains x-daiquiri-instance: daiquiri:13624002:mr85p00it-hyhk03094901:7987:22RELEASE175:daiquiri-amp-processing-shared-int-001-mr cdnuuid: db1ce18a-00fc-451a-9389-ab5a87cb7b33-3886458766 cache-control: no-transform, max-age=14808058 date: Fri, 16 Dec 2022 06:21:01 GMT x-cache: TCP_MEM_HIT from a23-36-79-6.deploy.akamaitechnologies.com (AkamaiGHost/10.10.3-45298580) (-) X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 150x150, components 3\012- data Size: 12213 Md5: eaa6067e2c9d149e326fbcfbc7d2367b Sha1: e2bb57b2028e5a3f04e59db618d87b0fb4818230 Sha256: 2ad1acfa41c0453140b8739505564112b5c255f6b1eca9a6338310db44061f26
GET /img/robux.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/robux.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 44e5a0923e6a0c2157435f215db9d3c2edf95408dfb3d87fa553830f582e24fd 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 14564 Last-Modified: Fri, 03 Sep 2021 06:31:43 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c14f-38e4" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data Size: 14564 Md5: 9c5420a8f8c55be36294fce245595dba Sha1: 4b9a024b51a475b1b7514a7650ff684ec9323572 Sha256: 44e5a0923e6a0c2157435f215db9d3c2edf95408dfb3d87fa553830f582e24fd Alerts: Blocklists: - quad9: Sinkholed
GET /img/main-bg.jpg HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/main-bg.jpg FQDN: gaminghelper.co IP: 91.223.82.61 HASH: efbff382982bb66a918e5412741a23a309c6f4ca4e9820e65e67f659767765d6 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 9365 Last-Modified: Fri, 03 Sep 2021 06:31:31 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c143-2495" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data Size: 9365 Md5: d93b1723b2a2723d48696c5a6cae3b7e Sha1: 6f69bdc7079dd114f6fc816c5098f80b58c7b794 Sha256: efbff382982bb66a918e5412741a23a309c6f4ca4e9820e65e67f659767765d6 Alerts: Blocklists: - quad9: Sinkholed
GET /enigmanetwork.net/dmca.png HTTP/1.1 Host: i0.wp.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: i0.wp.com/enigmanetwork.net/dmca.png FQDN: i0.wp.com IP: 192.0.77.2 HASH: 0cbddd5e01b49d35d16b15fc54a481a17a0f2803c2da6807800428139dd50f7f 192.0.77.2 HTTP/2 200 OK content-type: image/webp server: nginx date: Fri, 16 Dec 2022 06:21:02 GMT content-length: 668 last-modified: Thu, 04 Aug 2022 17:20:08 GMT expires: Sun, 04 Aug 2024 05:20:08 GMT cache-control: public, max-age=63115200 link: <http://enigmanetwork.net/dmca.png>; rel="canonical" x-content-type-options: nosniff etag: "a264775a6858f15f" vary: Accept x-nc: HIT arn 5 access-control-allow-origin: * access-control-allow-methods: GET, HEAD timing-allow-origin: * X-Firefox-Spdy: h2 --- Additional Info --- Magic: RIFF (little-endian) data, Web/P image\012- data Size: 668 Md5: fa302d465f15a34e8264bc761a6902aa Sha1: 2c73911e3cfcf82860d1d59a0ccd2625ae98fffb Sha256: 0cbddd5e01b49d35d16b15fc54a481a17a0f2803c2da6807800428139dd50f7f
GET /img/pr-r.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/pr-r.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: e88b54e0aa65055cb25657c0ed283b4d768a79770980c27f424886a48fa046ef 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 11003 Last-Modified: Fri, 03 Sep 2021 06:31:41 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c14d-2afb" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 960 x 1080, 8-bit colormap, non-interlaced\012- data Size: 11003 Md5: 284e10ee335890399e8f772c430570a9 Sha1: 188bf895905cee7d579aad2b6b5cdf795741f9cd Sha256: e88b54e0aa65055cb25657c0ed283b4d768a79770980c27f424886a48fa046ef Alerts: Blocklists: - quad9: Sinkholed
GET /img/pr-l.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/pr-l.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 37e1b903b1a3b99f70dd9b463948bbaed162d7f3cc957dbc5084f0c523b9ec0d 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 7453 Last-Modified: Fri, 03 Sep 2021 06:31:41 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c14d-1d1d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 960 x 1080, 8-bit colormap, non-interlaced\012- data Size: 7453 Md5: 91d0b1f8f5b7685478ff0d1f461fa658 Sha1: 7e457376b687add741a5d6cea2713dc4ef37efbc Sha256: 37e1b903b1a3b99f70dd9b463948bbaed162d7f3cc957dbc5084f0c523b9ec0d Alerts: Blocklists: - quad9: Sinkholed
GET /img/panel-overlay.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/panel-overlay.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: b7a5d35c1c7be1953002244f054a14f38ed11912ad52d25a8e963774f7f52e0e 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 3116 Last-Modified: Fri, 03 Sep 2021 06:31:34 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c146-c2c" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 960 x 661, 4-bit colormap, non-interlaced\012- data Size: 3116 Md5: 2b026d93f79b384005e4252c80701791 Sha1: 87804a0d83d2e745b31526c8b60d026abecbe73a Sha256: b7a5d35c1c7be1953002244f054a14f38ed11912ad52d25a8e963774f7f52e0e Alerts: Blocklists: - quad9: Sinkholed
GET /img/smallbtnbg.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/smallbtnbg.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: dcf687cc9a059bc7a036faf3a86c50103d04e1fdca867deb7553ec9136719f0d 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 1405 Last-Modified: Fri, 03 Sep 2021 06:31:48 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c154-57d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 100 x 150, 8-bit colormap, non-interlaced\012- data Size: 1405 Md5: 92b84c143879abe85792a3408ae4845d Sha1: 1f8e983f7514d582e81cfee98ad8bb40ced26972 Sha256: dcf687cc9a059bc7a036faf3a86c50103d04e1fdca867deb7553ec9136719f0d Alerts: Blocklists: - quad9: Sinkholed
GET /img/smallbtnbg-r.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/smallbtnbg-r.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 0f61dff49d41fddbcc21de3dd4f1a62006f366083361d725bfd92ccf87212067 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 1393 Last-Modified: Fri, 03 Sep 2021 06:31:48 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c154-571" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 100 x 150, 8-bit colormap, non-interlaced\012- data Size: 1393 Md5: bdfffd47e30bf7d045d45f0125a33164 Sha1: 5834aea23f79a1ddccea3825bd51249307435c5f Sha256: 0f61dff49d41fddbcc21de3dd4f1a62006f366083361d725bfd92ccf87212067 Alerts: Blocklists: - quad9: Sinkholed
GET /img/button-dot.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/button-dot.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: a651e77df132fc0c4dbccb7c56f84923c28dcb159f4b7a112bde8bbc548632bc 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 672 Last-Modified: Fri, 03 Sep 2021 06:31:14 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c132-2a0" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 15 x 15, 8-bit colormap, non-interlaced\012- data Size: 672 Md5: 478aefab2e280b16b0372e607414d3c2 Sha1: 710f5aaa706ec23cbf45006d7c1d25be76b4fa64 Sha256: a651e77df132fc0c4dbccb7c56f84923c28dcb159f4b7a112bde8bbc548632bc Alerts: Blocklists: - quad9: Sinkholed
GET /fonts/bebasneue_bold-webfont.html HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/fonts/bebasneue_bold-webfont.html FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 13c03e5c6b49e447770ba4d0aee22d4aedbeed87e94f54fdcaf990934c109830 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 15216 Last-Modified: Fri, 03 Sep 2021 06:30:48 GMT Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: "6131c118-3b70" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15216, version 1.197\012- data Size: 15216 Md5: 772fc6a0795e2498a1715526dd95ac22 Sha1: d410a8da10385a0ef11a74e69644493b99315fc3 Sha256: 13c03e5c6b49e447770ba4d0aee22d4aedbeed87e94f54fdcaf990934c109830 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /img/btn-img.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/btn-img.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: e7e359cb00b793c60c192fb1dbffa401806d99267e9b55d8bc9ce3c8260568ae 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 1335 Last-Modified: Fri, 03 Sep 2021 06:31:13 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c131-537" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 150 x 100, 8-bit colormap, non-interlaced\012- data Size: 1335 Md5: 817cb08a965fe5bf8debba11091e94c0 Sha1: 214d58c18bcbcfebd1606554929e9bc5f65755c6 Sha256: e7e359cb00b793c60c192fb1dbffa401806d99267e9b55d8bc9ce3c8260568ae Alerts: Blocklists: - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 124bf9140ccdb6cfdcde9939aea5c60ee478ad64e5e3fde620257860df22bb8b 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 16 Dec 2022 06:21:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 6eab05ad76b8e184bcfc74c40f7e3278 Sha1: ea5548fe4b2d46ecc6659c0bb6197119d67442a1 Sha256: 124bf9140ccdb6cfdcde9939aea5c60ee478ad64e5e3fde620257860df22bb8b
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 124bf9140ccdb6cfdcde9939aea5c60ee478ad64e5e3fde620257860df22bb8b 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 16 Dec 2022 06:21:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 6eab05ad76b8e184bcfc74c40f7e3278 Sha1: ea5548fe4b2d46ecc6659c0bb6197119d67442a1 Sha256: 124bf9140ccdb6cfdcde9939aea5c60ee478ad64e5e3fde620257860df22bb8b
GET /cl/js/114v1 HTTP/1.1 Host: downloadlocked.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: downloadlocked.com/cl/js/114v1 FQDN: downloadlocked.com IP: 23.22.126.183 HASH: cd752eb79a304d56d1b17efe52e524fe9a4d1f3718da2dea3a95184ecbc435f8 23.22.126.183 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 server: nginx date: Fri, 16 Dec 2022 06:21:01 GMT cache-control: no-cache, private access-control-allow-origin: * strict-transport-security: max-age=31536000; includeSubDomains x-robots-tag: none set-cookie: XSRF-TOKEN=eyJpdiI6ImlqKzJSUXpJMUFNazFqVUlGWWswV1E9PSIsInZhbHVlIjoiMmxPRWIvcWtHZkdSNTFrclRCR3FuNUlKWXF6aDAzRkh6ZlpSWlRwKzd0K01oV3lPTW1tUUZTWDRDbE5UR1prZncrS21maDUxd0g4Z21ZNGE1SXE1U0NLcWJweE1tVGZJd3Q5RmpaaGdZVmgySCtnb0UvRC9ROEJISGJ0MWRFRjIiLCJtYWMiOiJkMzc4YjE3ZTkzMTk4ODA2MTczZGRiMTRmMGM2NDI3MWFiYmMxYjIwODdjYjk4YmRlZDNhMWQzOWJmYWU0NzBkIiwidGFnIjoiIn0%3D; expires=Sat, 17 Dec 2022 02:21:01 GMT; Max-Age=72000; path=/; secure; samesite=none ogads_session=eyJpdiI6Ijc5STZqSjBNQWpLWGlXWk90KzJITEE9PSIsInZhbHVlIjoiaGJMbWRJR0orZ21KY3FlSnFKS0gwcEpKRHRsZVdNSnFHVFlhZkJEOGtoWmh3bVBLLzVpWnpmQ3NyMnZOTnJDdGlrQTRCR3cwNnpheFR4WHRpdE9uU1dvV2ZVQ3pmYnZMc082bTVLcUVQcDAvakpPbTdCa0s5eEtSVUtUT1hFb1AiLCJtYWMiOiJlMzJkM2IxOTAzNjkyNzdjNjBjYzkyMjZlNmI0Zjk0NThmNzU4ODIyN2ZjMDIyZTVkYjljZGU1OWE5N2JlMWRlIiwidGFnIjoiIn0%3D; expires=Sat, 17 Dec 2022 02:21:01 GMT; Max-Age=72000; path=/; secure; httponly; samesite=none x-xss-protection: 1; mode=block, 1; mode=block x-content-type-options: DENY, nosniff X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 47655 Md5: 5f1cff1c33a088c49891ee189d09230c Sha1: fb7ca4332dcd3e724f4488425ab5f66420f6107c Sha256: cd752eb79a304d56d1b17efe52e524fe9a4d1f3718da2dea3a95184ecbc435f8
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 124bf9140ccdb6cfdcde9939aea5c60ee478ad64e5e3fde620257860df22bb8b 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 16 Dec 2022 06:21:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 6eab05ad76b8e184bcfc74c40f7e3278 Sha1: ea5548fe4b2d46ecc6659c0bb6197119d67442a1 Sha256: 124bf9140ccdb6cfdcde9939aea5c60ee478ad64e5e3fde620257860df22bb8b
GET /fonts/et-line.woff HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/fonts/et-line.woff FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 19d2f43d546ada73dd083f7778aa4a5cac1a8e7a3af56efccae580fce07a5e1c 91.223.82.61 HTTP/1.1 200 OK Content-Type: font/woff Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 55220 Last-Modified: Fri, 03 Sep 2021 06:30:56 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c120-d7b4" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Web Open Font Format, CFF, length 55220, version 1.0\012- data Size: 55220 Md5: b01ff252761958325faab1535c90c87f Sha1: d33413e7bc42acc8837cc9030ca45d29c1ccf0c6 Sha256: 19d2f43d546ada73dd083f7778aa4a5cac1a8e7a3af56efccae580fce07a5e1c Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /fonts/bebasneue_regular-webfont.html HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/fonts/bebasneue_regular-webfont.html FQDN: gaminghelper.co IP: 91.223.82.61 HASH: bee0bcc11701aea746fd8b734379ba5e003a034460bfd71d88dc364b4d939be6 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 15948 Last-Modified: Fri, 03 Sep 2021 06:30:51 GMT Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: "6131c11b-3e4c" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15948, version 1.197\012- data Size: 15948 Md5: af83f1b88fb4654673e9c841bd22a8c7 Sha1: 61e5a340ea87431211d732024f2703dca5b80cbc Sha256: bee0bcc11701aea746fd8b734379ba5e003a034460bfd71d88dc364b4d939be6 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: BiXTTmy79FyMglNdLN+EOg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.39.94.191 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.39.94.191 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 6t5hXM7UHXIy4oT2dlKTpa9VIWY= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translate_static/css/translateelement.css HTTP/1.1 Host: translate.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: translate.googleapis.com/translate_static/css/translate (...) FQDN: translate.googleapis.com IP: 142.250.74.42 HASH: 696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0 142.250.74.42 HTTP/2 200 OK content-type: text/css accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="rosetta" report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]} content-length: 3619 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 16 Dec 2022 05:24:27 GMT expires: Fri, 16 Dec 2022 06:24:27 GMT cache-control: public, max-age=3600 age: 3395 last-modified: Wed, 17 Aug 2022 23:38:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (18670) Size: 3619 Md5: 897ba9a21d9625286674da769dacc2e2 Sha1: 84b4923ab7dee562395160824d53496314499b77 Sha256: 696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 124bf9140ccdb6cfdcde9939aea5c60ee478ad64e5e3fde620257860df22bb8b 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 16 Dec 2022 06:21:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 6eab05ad76b8e184bcfc74c40f7e3278 Sha1: ea5548fe4b2d46ecc6659c0bb6197119d67442a1 Sha256: 124bf9140ccdb6cfdcde9939aea5c60ee478ad64e5e3fde620257860df22bb8b
GET /img/cf/Czech-Republic.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Cookie: username1Cookie=Abelardo; username2Cookie=Fausto Greco; username3Cookie=Eliano Fallaci; comment1Cookie=that was amazing!!! thanks a lot for this. . :D thanks for sharing ..; comment2Cookie=thank you so much :D; comment3Cookie=thanks a lot.. works! FREAKING AAMZING!! 1000000 Cash Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Czech-Republic.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3fb0821137e44562ed77147e2da4137738c64120a859438baea07c8e71b2da98 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 1716 Last-Modified: Fri, 03 Sep 2021 06:32:16 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c170-6b4" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 1716 Md5: a42f43abb39ae89c6d8fc4e32d82c9db Sha1: bd6199e8baf1886592d04b85d35e9455e6bb20fd Sha256: 3fb0821137e44562ed77147e2da4137738c64120a859438baea07c8e71b2da98 Alerts: Blocklists: - quad9: Sinkholed
GET /close.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Cookie: username1Cookie=Abelardo; username2Cookie=Fausto Greco; username3Cookie=Eliano Fallaci; comment1Cookie=that was amazing!!! thanks a lot for this. . :D thanks for sharing ..; comment2Cookie=thank you so much :D; comment3Cookie=thanks a lot.. works! FREAKING AAMZING!! 1000000 Cash Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/close.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: a967335d601fb662b5723f1181b3d07f25811d2ca26131598c48482b9935217b 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:01 GMT Content-Length: 4878 Last-Modified: Fri, 03 Sep 2021 06:30:21 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c0fd-130e" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data Size: 4878 Md5: fb5d414fccc35f19fde0f30a8c98139b Sha1: 4b4a030923039e56efdad2c2d97f0a74d2c74657 Sha256: a967335d601fb662b5723f1181b3d07f25811d2ca26131598c48482b9935217b Alerts: Blocklists: - quad9: Sinkholed
GET /app/431946152/img/favicon-16x16.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Cookie: username1Cookie=Abelardo; username2Cookie=Fausto Greco; username3Cookie=Eliano Fallaci; comment1Cookie=that was amazing!!! thanks a lot for this. . :D thanks for sharing ..; comment2Cookie=thank you so much :D; comment3Cookie=thanks a lot.. works! FREAKING AAMZING!! 1000000 Cash Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/app/431946152/img/favicon-16x16.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: nginx Date: Fri, 16 Dec 2022 06:21:02 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/8.0.8RC1 Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14923) Size: 20003 Md5: 94d17b53e2271b5c8ee9d31c9c3a57d2 Sha1: 58af2bb33446f359b61abecf0e9260f58a1cfe6f Sha256: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d Alerts: Blocklists: - quad9: Sinkholed
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 1d0520087fefef4170e99bdb8f6bbfc790a6c64b6c318242b222f0564c779fb4 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "1D0520087FEFEF4170E99BDB8F6BBFC790A6C64B6C318242B222F0564C779FB4" Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4593 Expires: Fri, 16 Dec 2022 07:37:35 GMT Date: Fri, 16 Dec 2022 06:21:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1ab50ca87adae787e552d20798f7ae70 Sha1: 517e87351e638266712b284be6627cf147fd578e Sha256: 1d0520087fefef4170e99bdb8f6bbfc790a6c64b6c318242b222f0564c779fb4
GET /js15_as.js HTTP/1.1 Host: s10.histats.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s10.histats.com/js15_as.js FQDN: s10.histats.com IP: 46.105.201.240 HASH: 998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1 46.105.201.240 HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 date: Fri, 16 Dec 2022 06:16:15 GMT etag: "-375139978" last-modified: Thu, 16 Apr 2020 10:44:16 GMT x-request-id: 827230769 content-encoding: br x-cdn-pop: sbg x-cdn-pop-ip: 137.74.120.0/27 x-cacheable: Matched cache accept-ranges: bytes content-length: 4364 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (11440), with no line terminators Size: 4364 Md5: ed192092c129db6123a3397855f42619 Sha1: 067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e Sha256: 998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 16632492de1d44389b48fabd408a69c08ac503b13b380133173e39f8d49d4632 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "16632492DE1D44389B48FABD408A69C08AC503B13B380133173E39F8D49D4632" Last-Modified: Thu, 15 Dec 2022 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21553 Expires: Fri, 16 Dec 2022 12:20:15 GMT Date: Fri, 16 Dec 2022 06:21:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d971e6258edb35519f7907b10e4e1d0c Sha1: f617a446897568287ad56f521ad7f5572451063a Sha256: 16632492de1d44389b48fabd408a69c08ac503b13b380133173e39f8d49d4632
GET /matomo.js HTTP/1.1 Host: track.enigmacdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: track.enigmacdn.com/matomo.js FQDN: track.enigmacdn.com IP: 91.223.82.61 HASH: f7a1fe5cff057b3d4c769d456085425932f39e43050ba4ff77fd9e0a66b57881 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Fri, 16 Dec 2022 06:21:02 GMT Last-Modified: Wed, 26 May 2021 02:21:35 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"60adb0af-f330" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (1404) Size: 20210 Md5: 8cd72e4f9c8225acdd40bf7dc2406e19 Sha1: 0cd39b8143536dfb54d1224e502ccc6567081204 Sha256: f7a1fe5cff057b3d4c769d456085425932f39e43050ba4ff77fd9e0a66b57881
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.gstatic.com/images/branding/product/1x/translate_24 (...) FQDN: www.gstatic.com IP: 142.250.74.35 HASH: 5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99 142.250.74.35 HTTP/2 200 OK content-type: image/png accept-ranges: bytes vary: Origin cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 846 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 15 Dec 2022 18:33:08 GMT expires: Fri, 15 Dec 2023 18:33:08 GMT cache-control: public, max-age=31536000 last-modified: Thu, 14 Oct 2021 09:08:00 GMT age: 42474 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data Size: 846 Md5: e9cd262114358f26b7608b56905185dc Sha1: 6dbde0a96deaab2b529723ce26c62043cf9180ab Sha256: 5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://translate.googleapis.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: www.gstatic.com/images/branding/product/2x/translate_24 (...) FQDN: www.gstatic.com IP: 142.250.74.35 HASH: 4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82 142.250.74.35 HTTP/2 200 OK content-type: image/png accept-ranges: bytes vary: Origin cross-origin-resource-policy: cross-origin cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable" report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]} content-length: 1842 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 16 Dec 2022 06:09:35 GMT expires: Sat, 16 Dec 2023 06:09:35 GMT cache-control: public, max-age=31536000 last-modified: Thu, 14 Oct 2021 09:08:00 GMT age: 687 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data Size: 1842 Md5: c69c796362406f9e11c7f4bf5bb628da Sha1: e489ce95ab56208090868882113d7416abf46775 Sha256: 4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /stats/0.php?4515739&@f16&@g1&@h1&@i1&@j1671171659490&@k0&@l1&@mRobux%20Generator%20Online&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-66164421&@b3:1671171659&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fgaminghelper.co%2Fapp%2F431946152%2Froblox-login-cheats-game-hack&@w HTTP/1.1 Host: s4.histats.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s4.histats.com/stats/0.php?4515739&@f16&@g1&@h1&@i1&@j1 (...) FQDN: s4.histats.com IP: 54.39.128.117 HASH: 1cad962c2e839b106ab023b7f37e3a87e50a880e2dd7f7068fc1bba4529c998d 54.39.128.117 HTTP/1.1 200 OK Content-Type: text/html;charset=UTF-8 Date: Fri, 16 Dec 2022 06:21:02 GMT Content-Length: 51 Connection: close --- Additional Info --- Magic: ASCII text, with no line terminators Size: 51 Md5: 5e164eb761b009f54e8b07609f1e5767 Sha1: 76fc1a4d39891471b09b6c9fe232f17e82319752 Sha256: 1cad962c2e839b106ab023b7f37e3a87e50a880e2dd7f7068fc1bba4529c998d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E" Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5058 Expires: Fri, 16 Dec 2022 07:45:21 GMT Date: Fri, 16 Dec 2022 06:21:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 0e5a8cf5962c05bf28a3b45f5c8745e2 Sha1: 9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f Sha256: f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E" Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5058 Expires: Fri, 16 Dec 2022 07:45:21 GMT Date: Fri, 16 Dec 2022 06:21:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 0e5a8cf5962c05bf28a3b45f5c8745e2 Sha1: 9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f Sha256: f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E" Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5058 Expires: Fri, 16 Dec 2022 07:45:21 GMT Date: Fri, 16 Dec 2022 06:21:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 0e5a8cf5962c05bf28a3b45f5c8745e2 Sha1: 9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f Sha256: f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E" Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5058 Expires: Fri, 16 Dec 2022 07:45:21 GMT Date: Fri, 16 Dec 2022 06:21:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 0e5a8cf5962c05bf28a3b45f5c8745e2 Sha1: 9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f Sha256: f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62fa3452-e15b-41dd-b257-cd6d8cfaea78.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 7b9a28ad984bc7544d0798ff38cf8e1ce9f2f21a0112c18ee127a7566ba683e4 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5791 x-amzn-requestid: 2fb8518c-1fe3-426e-94ed-eea686005473 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dNRKYHeoIAMFgKA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-639b9575-0e312c40469090d033c6fc6a;Sampled=0 x-amzn-remapped-date: Thu, 15 Dec 2022 21:45:25 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 6olOOvZFj56PITpWNzTgBluV3ax4I4WaJdqPJR_XigifUWYFKhOuaQ== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google date: Thu, 15 Dec 2022 22:00:51 GMT etag: "362e1b907abcaccb16b3750c21ed04e4fa91f04c" age: 30012 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5791 Md5: c89c607de35e59fa4b8f79762af0f269 Sha1: 362e1b907abcaccb16b3750c21ed04e4fa91f04c Sha256: 7b9a28ad984bc7544d0798ff38cf8e1ce9f2f21a0112c18ee127a7566ba683e4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61dd0e23-c172-4f68-b254-9fd26e2782f6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 042c3809a802ef44ff6de8a270194cdf69cc3ba9d8f5192110dda7829d2d52d8 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5710 x-amzn-requestid: 9e587daa-7632-4765-a8c5-6cea13058bac x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dNQQJEp6IAMF1Og= x-content-type-options: nosniff x-amzn-trace-id: Root=1-639b9400-63c04fa4691c32f914301a3d;Sampled=0 x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Qj7aKHjYDmSpAkdiFXcYQ5fL2bIwo2KEYkDvvKo-_YBToKJVM2GWng== via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google date: Thu, 15 Dec 2022 22:12:29 GMT age: 29314 etag: "67e1f40fbf45d7f32e4bd05f7c9e71f352483fa9" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5710 Md5: 5d9d95001bfc942895a41fb4bbd50c56 Sha1: 67e1f40fbf45d7f32e4bd05f7c9e71f352483fa9 Sha256: 042c3809a802ef44ff6de8a270194cdf69cc3ba9d8f5192110dda7829d2d52d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6873e310-18bc-4048-a538-a334095e2630.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: c18f41a6b4367ad833d41ff6686cc8987e5b34961db4ac689834b4c013946ad7 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 3482 x-amzn-requestid: 01bd8674-7772-4df9-a9ab-f4769a77a856 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dNQQKEMOoAMFZ-g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-639b9400-4fa03c782e961da07a7ea339;Sampled=0 x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: lYZHdOdBQ9Kqvd1HG6uZY20FkoQqm0NeQvgTWCi6LHhIy3qqisF4BQ== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google date: Thu, 15 Dec 2022 21:56:47 GMT age: 30256 etag: "af81d8f513ce5e57331b23e7293c24b788d14814" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 3482 Md5: 05e3e1b7b913ea0135618df17b15cf3d Sha1: af81d8f513ce5e57331b23e7293c24b788d14814 Sha256: c18f41a6b4367ad833d41ff6686cc8987e5b34961db4ac689834b4c013946ad7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3d8e92b-b195-43c0-8e2f-62a017239151.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: f05aa573d327a6290b7517ffd4e2d9bdecbf636df162c2ce06619da956903524 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8858 x-amzn-requestid: a9d48630-b01d-4a1a-b70a-b60359b0f66f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dNQQJG_yIAMF7cA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-639b9400-16dd0ea1486fc41c64588e91;Sampled=0 x-amzn-remapped-date: Thu, 15 Dec 2022 21:39:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: FNlOOeO4HvoMeWxLLL-BND3btNaNXtSyAO84eyfLD52sUXw9AR1WZw== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google date: Thu, 15 Dec 2022 21:57:04 GMT etag: "53ada59827f09895eb8394c6b40af52dd45c2232" age: 30239 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8858 Md5: 45931af14497dd73408c02ccc0b581c3 Sha1: 53ada59827f09895eb8394c6b40af52dd45c2232 Sha256: f05aa573d327a6290b7517ffd4e2d9bdecbf636df162c2ce06619da956903524
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff22fa4a3-ba63-491d-a915-4c7ea375f720.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: a5aad1c8c3464232f0bb74c8115ea0cb0d2ac6f43c5418feb967803ea8286ff3 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7896 x-amzn-requestid: cf094f2f-ce6b-4626-8168-36944d557cb7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dHbA4FexoAMFe-g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63993ed2-60e1d5f53f3d2ad01060a8d4;Sampled=0 x-amzn-remapped-date: Wed, 14 Dec 2022 03:11:14 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: mll3QERZM31KbfZHDwBbhVAn07NlWeRTNTL4hVyHXp1ctwbk-_Djjg== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Fri, 16 Dec 2022 03:33:43 GMT age: 10040 etag: "bfe8173cae5e2c8fa781f11661dc0893fc159eb3" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7896 Md5: 1439b219bc14c22c96fdba089d03dc40 Sha1: bfe8173cae5e2c8fa781f11661dc0893fc159eb3 Sha256: a5aad1c8c3464232f0bb74c8115ea0cb0d2ac6f43c5418feb967803ea8286ff3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44d28b3d-7927-4346-840a-8cfc2e3ea292.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: b406a1135ac6a56d3b7e3ba1f9adeb1a69d56e7a070f30e1dd20fea4ebedf3a4 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5424 x-amzn-requestid: e579538e-8990-425d-a635-ede55d60ed50 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dNSvBETaoAMFyKQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-639b97f9-3560628d3673feb33f4b958e;Sampled=0 x-amzn-remapped-date: Thu, 15 Dec 2022 21:56:09 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: CjP6MuggD8GZZTJUICeoKXHsb5qopw53uqsKfb6drH5nHj4gL1CptQ== via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Thu, 15 Dec 2022 22:13:35 GMT age: 29248 etag: "b8da5c239832fc19c22722c23412adac1ef200ec" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5424 Md5: 30739a2896ba00103578a7cd3589767c Sha1: b8da5c239832fc19c22722c23412adac1ef200ec Sha256: b406a1135ac6a56d3b7e3ba1f9adeb1a69d56e7a070f30e1dd20fea4ebedf3a4
POST /matomo.php?action_name=Robux%20Generator%20Online&idsite=1&rec=1&r=076631&h=6&m=20&s=59&url=https%3A%2F%2Fgaminghelper.co%2Fapp%2F431946152%2Froblox-login-cheats-game-hack&_id=57ec924049993485&_idn=1&_refts=0&send_image=0&cookie=1&res=1280x1024&pv_id=nwgxOF&pf_net=269&pf_srv=51&pf_tfr=31&pf_dm1=594 HTTP/1.1 Host: track.enigmacdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=utf-8 Content-Length: 0 Origin: https://gaminghelper.co Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: track.enigmacdn.com/matomo.php?action_name=Robux%20Gene (...) FQDN: track.enigmacdn.com IP: 91.223.82.61 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 91.223.82.61 HTTP/1.1 204 No Response Content-Type: text/html; charset=UTF-8 Server: nginx Date: Fri, 16 Dec 2022 06:21:03 GMT Content-Length: 0 Connection: keep-alive Keep-Alive: timeout=60 X-Powered-By: PHP/8.0.8RC1 Access-Control-Allow-Origin: https://gaminghelper.co Access-Control-Allow-Credentials: true --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/cf/Australia.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Cookie: username1Cookie=Abelardo; username2Cookie=Fausto Greco; username3Cookie=Eliano Fallaci; comment1Cookie=that was amazing!!! thanks a lot for this. . :D thanks for sharing ..; comment2Cookie=thank you so much :D; comment3Cookie=thanks a lot.. works! FREAKING AAMZING!! 1000000 Cash; HstCfa4515739=1671171659490; HstCla4515739=1671171659490; HstCmu4515739=1671171659490; HstPn4515739=1; HstPt4515739=1; HstCnv4515739=1; HstCns4515739=1; _pk_id.1.166e=57ec924049993485.1671171660.; _pk_ses.1.166e=1; timePosted11Cookie=78980; timePosted22Cookie=56733; timePosted33Cookie=39468 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Australia.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: fd95fecd771de335148c8bfa9ae7623d432bf6ec237c61cc42b03203c7752736 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:04 GMT Content-Length: 2236 Last-Modified: Fri, 03 Sep 2021 06:32:01 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c161-8bc" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 2236 Md5: 6e02b268dd832cf821f5a979231df494 Sha1: 303ccd6186acd8a641d1ab745e12028f75d1cd8e Sha256: fd95fecd771de335148c8bfa9ae7623d432bf6ec237c61cc42b03203c7752736 Alerts: Blocklists: - quad9: Sinkholed
GET /img/cf/Denmark.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Cookie: username1Cookie=Abelardo; username2Cookie=Fausto Greco; username3Cookie=Eliano Fallaci; comment1Cookie=that was amazing!!! thanks a lot for this. . :D thanks for sharing ..; comment2Cookie=thank you so much :D; comment3Cookie=thanks a lot.. works! FREAKING AAMZING!! 1000000 Cash; HstCfa4515739=1671171659490; HstCla4515739=1671171659490; HstCmu4515739=1671171659490; HstPn4515739=1; HstPt4515739=1; HstCnv4515739=1; HstCns4515739=1; _pk_id.1.166e=57ec924049993485.1671171660.; _pk_ses.1.166e=1; timePosted11Cookie=81980; timePosted22Cookie=59733; timePosted33Cookie=42468 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Denmark.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 9ba452d86b662525ea222c7aeba61d07142d68d0832198957d10d1ef1b228986 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:06 GMT Content-Length: 1202 Last-Modified: Fri, 03 Sep 2021 06:32:16 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c170-4b2" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 1202 Md5: f8655f1f24c7ee6e7f3812df40abd058 Sha1: a2b2b0e18e634d6d88fa4fe8096faa0e23587094 Sha256: 9ba452d86b662525ea222c7aeba61d07142d68d0832198957d10d1ef1b228986 Alerts: Blocklists: - quad9: Sinkholed
GET /img/cf/Grecee.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Cookie: username1Cookie=Abelardo; username2Cookie=Fausto Greco; username3Cookie=Eliano Fallaci; comment1Cookie=that was amazing!!! thanks a lot for this. . :D thanks for sharing ..; comment2Cookie=thank you so much :D; comment3Cookie=thanks a lot.. works! FREAKING AAMZING!! 1000000 Cash; HstCfa4515739=1671171659490; HstCla4515739=1671171659490; HstCmu4515739=1671171659490; HstPn4515739=1; HstPt4515739=1; HstCnv4515739=1; HstCns4515739=1; _pk_id.1.166e=57ec924049993485.1671171660.; _pk_ses.1.166e=1; timePosted11Cookie=82980; timePosted22Cookie=60733; timePosted33Cookie=43468 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Grecee.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 54fc9fef0da8843d76e1dbd2a0e523200d54a74b649f2ae18aa132a29e590f56 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:08 GMT Content-Length: 1257 Last-Modified: Fri, 03 Sep 2021 06:32:24 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c178-4e9" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 1257 Md5: d19290ba3158e138bb241ae669a3bc37 Sha1: f9c89926e6d6b741ab9662f5a559c79a7d5e8304 Sha256: 54fc9fef0da8843d76e1dbd2a0e523200d54a74b649f2ae18aa132a29e590f56 Alerts: Blocklists: - quad9: Sinkholed
GET /img/cf/Ireland.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/roblox-login-cheats-game-hack Cookie: username1Cookie=Abelardo; username2Cookie=Fausto Greco; username3Cookie=Eliano Fallaci; comment1Cookie=that was amazing!!! thanks a lot for this. . :D thanks for sharing ..; comment2Cookie=thank you so much :D; comment3Cookie=thanks a lot.. works! FREAKING AAMZING!! 1000000 Cash; HstCfa4515739=1671171659490; HstCla4515739=1671171659490; HstCmu4515739=1671171659490; HstPn4515739=1; HstPt4515739=1; HstCnv4515739=1; HstCns4515739=1; _pk_id.1.166e=57ec924049993485.1671171660.; _pk_ses.1.166e=1; timePosted11Cookie=83980; timePosted22Cookie=61733; timePosted33Cookie=44468 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Ireland.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: deb5a787ec58672db4328b9233d0217c0f4c063c3dd46dcbc744e3978eb55c73 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Fri, 16 Dec 2022 06:21:09 GMT Content-Length: 1189 Last-Modified: Fri, 03 Sep 2021 06:32:30 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c17e-4a5" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 1189 Md5: 21f489acdddaae890450b01936248b9a Sha1: c5dabe5b630c36f47d7b92f3160d460e63a75a85 Sha256: deb5a787ec58672db4328b9233d0217c0f4c063c3dd46dcbc744e3978eb55c73 Alerts: Blocklists: - quad9: Sinkholed
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1 Host: translate.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: translate.google.com/translate_a/element.js?cb=googleTr (...) FQDN: translate.google.com IP: 216.58.211.14 216.58.211.14 HTTP/2 200 OK content-type: text/javascript; charset=utf-8 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Fri, 16 Dec 2022 06:21:01 GMT cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: CONSENT=PENDING+176; expires=Sun, 15-Dec-2024 06:21:01 GMT; path=/; domain=.google.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1 Host: maxcdn.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awe (...) FQDN: maxcdn.bootstrapcdn.com IP: 188.114.98.224 188.114.98.224 HTTP/2 200 OK content-type: text/css; charset=utf-8 date: Fri, 16 Dec 2022 06:21:01 GMT vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE cdn-edgestorageid: 565, 617, 617 last-modified: Mon, 25 Jan 2021 22:04:54 GMT cdn-cachedat: 2021-06-08 19:04:20 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cache-control: public, max-age=31919000 timing-allow-origin: * cross-origin-resource-policy: cross-origin access-control-allow-origin: * x-content-type-options: nosniff cdn-requestid: e9a84d03a1f7c6aa17012c712a6e5dd5 cdn-status: 200 cdn-cache: HIT cf-cache-status: HIT age: 16615909 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 77a55105fd2fb505-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---

URL	gaminghelper.co/app/431946152/roblox-login-cheats-game-hack
IP	91.223.82.61 (Netherlands)
ASN	#199968 Iws Networks LLC
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-12-16 06:21:12 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	50
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (21)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 91.223.82.61

Last 5 reports on ASN: Iws Networks LLC

Last 5 reports on domain: gaminghelper.co

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (87)

Overview

Domain Summary (21)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 91.223.82.61

Last 5 reports on ASN: Iws Networks LLC

Last 5 reports on domain: gaminghelper.co

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (21)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (87)

Network Intrusion Detection Systems