r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9678
Expires: Tue, 22 Nov 2022 10:22:30 GMT
Date: Tue, 22 Nov 2022 07:41:12 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4843de3bf95411e6aa89834def44bb86
1f1882351ac63fba73a22014382f69df5e02ec96
1e6ed1df02f8fa6c89ddca66f7c9981f8a06127d7ec90b503703137e823bb4b7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4091
Cache-Control: max-age=100696
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 07:41:12 GMT
Etag: "637b5375-1d7"
Expires: Wed, 23 Nov 2022 11:39:28 GMT
Last-Modified: Mon, 21 Nov 2022 10:31:17 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 07:09:21 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1911
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12623
Expires: Tue, 22 Nov 2022 11:11:35 GMT
Date: Tue, 22 Nov 2022 07:41:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: qxwe0x07M+oytSfAUIAmvu+P0cUYrsCpdtlnIBWvyXZ3sYNJ1GDsQjwz6wsdtfSesAKOT2YRtrU=
x-amz-request-id: G4K9XQASWD84FZDZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 07:39:28 GMT
age: 104
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 07:41:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
kittyland.ws/
103.109.100.248200 OK 8.0 kB IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1151), with CRLF, LF line terminators
Hash 5c6c083c754e9f12735256d3a82a55b8
af421800d83e7ea1d747af1286cc74481bd9dd94
e6abd7b352bb9bfcc05599ba9d1b41958a3b6a50a1507745b7a1310896b43eb1
GET / HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:12 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 7987
Connection: keep-alive
Set-Cookie: mybb[lastvisit]=1669102872; expires=Wed, 22-Nov-2023 07:41:12 GMT; path=/; domain=.kittyland.ws
mybb[lastactive]=1669102872; expires=Wed, 22-Nov-2023 07:41:12 GMT; path=/; domain=.kittyland.ws
sid=cdbbf2b9c8460e8145ed93a13eaaf5b2; path=/; domain=.kittyland.ws; HttpOnly
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PHP/7.0.33, PleskLin
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 07:08:53 GMT
cache-control: public,max-age=3600
age: 1939
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a0dafe97af899901031783137dfbc709
062736fdfe2f9745a3d4a7575397ac7afa9537bd
59d7b6f72ef5adcef0920ce99c229dc6b0bc5ef9bcda7e3b9d1c3e001da9c296
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5237
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 07:41:12 GMT
Last-Modified: Tue, 22 Nov 2022 06:13:55 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 07:41:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/eGAPiV3.jpg
151.101.84.193200 OK 30 kB IP 151.101.84.193:0
File type JPEG image data, progressive, precision 8, 468x60, components 3\012- data
Hash d9897ee1e7b8410064cfeda76e85f00a
9a7748d890f28d678ee285d03bc4bf965feb3aee
8ffa5f10a26db6f85fb5a4a0ade16389cca0d63f2e341388036b5fde1c0f19d1
GET /eGAPiV3.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 23 Jul 2020 00:59:14 GMT
etag: "d9897ee1e7b8410064cfeda76e85f00a"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 22 Nov 2022 07:41:12 GMT
age: 3548879
x-served-by: cache-iad-kcgs7200149-IAD, cache-bma1624-BMA
x-cache: HIT, HIT
x-cache-hits: 23906, 8112
x-timer: S1669102873.992799,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 30540
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 585eab785e44953b9e6d7c389024ff3e
57582825e9a285177f38cd2fa868ad3a8eab85d1
f1c62af1e27c8510576adcb62b28be35f290d2ee71e873f7000c194980522e80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 07:41:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/DcHg2p9.jpg
151.101.84.193200 OK 34 kB IP 151.101.84.193:0
File type JPEG image data, progressive, precision 8, 468x60, components 3\012- data
Hash 2a79130b4ba1136e696b4b36f115b29c
eb8658ab5b046ed3b1e7baf10df40bd2b28c750f
a91f53939225509f2d1c7a0ae49ad3bed703746e26605dfcd15a67477c79fa24
GET /DcHg2p9.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 23 Oct 2021 00:58:56 GMT
etag: "2a79130b4ba1136e696b4b36f115b29c"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 22 Nov 2022 07:41:12 GMT
age: 3502504
x-served-by: cache-iad-kiad7000169-IAD, cache-bma1624-BMA
x-cache: HIT, HIT
x-cache-hits: 25479, 1
x-timer: S1669102873.992622,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 33958
X-Firefox-Spdy: h2
i.imgur.com/QMlh9xK.png
151.101.84.193200 OK 98 kB IP 151.101.84.193:0
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 4372b0d9947e29db3cb5e6f3f06beb80
ee5bd644788d39f97966fbe23b82a4f93f25823e
217234b460c615adc8f4863a1764b250145ee21db520699acb1419d95a76df2b
GET /QMlh9xK.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 17:51:05 GMT
etag: "4372b0d9947e29db3cb5e6f3f06beb80"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 22 Nov 2022 07:41:12 GMT
age: 4888208
x-served-by: cache-iad-kiad7000047-IAD, cache-bma1624-BMA
x-cache: HIT, HIT
x-cache-hits: 35470, 1
x-timer: S1669102873.992938,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 98245
X-Firefox-Spdy: h2
i.imgur.com/VJtJxdE.jpg
151.101.84.193200 OK 43 kB IP 151.101.84.193:0
File type JPEG image data, progressive, precision 8, 468x60, components 3\012- data
Hash a8d7bc442b2474a75351d7becbf0d65a
da43cbf04c33c7c9180142371eea02768ce8aeee
5b3f733bb04a31aa4f489752f8a8872ec2b4c6f269cdb9377bef71184eeda355
GET /VJtJxdE.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 26 Sep 2022 17:45:51 GMT
etag: "a8d7bc442b2474a75351d7becbf0d65a"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 22 Nov 2022 07:41:13 GMT
age: 3004434
x-served-by: cache-iad-kcgs7200131-IAD, cache-bma1624-BMA
x-cache: HIT, HIT
x-cache-hits: 27911, 1
x-timer: S1669102873.992781,VS0,VE10
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 42562
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2db0ebb9efcf3be3c92f23b61de5c065
dd830565723f18a7944c26d24b0fb142d06a71a5
8615316184c4d1d64db923a5364363bbb3d25e146a042c5fbd5bf0cfcec8effb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3391
Cache-Control: max-age=94932
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 07:41:13 GMT
Etag: "637b3fae-1d7"
Expires: Wed, 23 Nov 2022 10:03:25 GMT
Last-Modified: Mon, 21 Nov 2022 09:06:54 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
www.googletagmanager.com/gtag/js?id=UA-135448172-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-135448172-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 0f378e91928725dc00888236f9292032
34fba87354846e0408a2cdc3c61e13732014c64c
e4e1ac873474046e253fd59aaba6b78a35a17b78a2fd32aa322794605b0cbc93
GET /gtag/js?id=UA-135448172-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 22 Nov 2022 07:41:13 GMT
expires: Tue, 22 Nov 2022 07:41:13 GMT
cache-control: private, max-age=900
last-modified: Tue, 22 Nov 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43683
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a0dafe97af899901031783137dfbc709
062736fdfe2f9745a3d4a7575397ac7afa9537bd
59d7b6f72ef5adcef0920ce99c229dc6b0bc5ef9bcda7e3b9d1c3e001da9c296
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5238
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 07:41:13 GMT
Last-Modified: Tue, 22 Nov 2022 06:13:55 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eb526d16fc4a304286cf261dc5d8abea
0aed946d28abc21cb11657e6f864b561a0c68fba
551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 07:41:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 585eab785e44953b9e6d7c389024ff3e
57582825e9a285177f38cd2fa868ad3a8eab85d1
f1c62af1e27c8510576adcb62b28be35f290d2ee71e873f7000c194980522e80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 07:41:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.39.62.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.62.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6LXC9pGZlw2UVhWXhQNsKQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5nyU2qelkMD4egBNGF9I7WdJAHQ=
kittyland.ws/cache/themes/theme11/css3.css
103.109.100.248200 OK 3.3 kB URL HTTP/1.1 kittyland.ws/cache/themes/theme11/css3.css
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with CRLF, LF line terminators
Hash 10aab34a1453c64b284046a6e9a3ecdb
a63e194e84887b8e1643548507fc9018dd186c6d
b7e527ffd36053b01ec0deffafea3079546d5cd50c41a7b94f9be45013c96a27
GET /cache/themes/theme11/css3.css HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: text/css
Content-Length: 3264
Last-Modified: Sat, 14 Sep 2019 01:13:38 GMT
Connection: keep-alive
ETag: "5d7c3ec2-cc0"
X-Powered-By: PleskLin
Accept-Ranges: bytes
kittyland.ws/jscripts/jquery.plugins.min.js?ver=1820
103.109.100.248200 OK 24 kB URL HTTP/1.1 kittyland.ws/jscripts/jquery.plugins.min.js?ver=1820
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with very long lines (23521), with no line terminators
Hash e94aaa8d2ae5c69287d9f693a3134d15
36b5272e62b12eec3e8345a68350369e61b875e0
8c18ebcc8fdcbc4296e86684bf4d6c668aaa415cad2c3be0c1304a9d69eb8b81
GET /jscripts/jquery.plugins.min.js?ver=1820 HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: application/javascript
Content-Length: 23521
Last-Modified: Fri, 13 Sep 2019 05:35:18 GMT
Connection: keep-alive
ETag: "5d7b2a96-5be1"
X-Powered-By: PleskLin
Accept-Ranges: bytes
kittyland.ws/cache/themes/theme11/navigation.css
103.109.100.248200 OK 3.4 kB URL HTTP/1.1 kittyland.ws/cache/themes/theme11/navigation.css
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with CRLF, LF line terminators
Hash 2b523c4d47e4511121bba561171d6d8b
105723ef6ac00beb388ec1f370bde9dd173f04d2
fb303efa70a1cbf2218c2abf30a3319ab1bb9665f815f86d859922ded0554149
GET /cache/themes/theme11/navigation.css HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: text/css
Content-Length: 3356
Last-Modified: Sun, 15 Sep 2019 16:30:26 GMT
Connection: keep-alive
ETag: "5d7e6722-d1c"
X-Powered-By: PleskLin
Accept-Ranges: bytes
terminusbedsexchanged.com/a2/89/ce/a289cea0efc01ecc6d483b54b6e14570.js
173.233.137.36200 OK 17 kB URL HTTP/1.1 terminusbedsexchanged.com/a2/89/ce/a289cea0efc01ecc6d483b54b6e14570.js
IP 173.233.137.36:0
File type ASCII text, with very long lines (53734), with no line terminators
Hash a40b81f18ef6a22ce7937ef06792110d
c7fe263323cb948914e70518879d61216dcc1dab
82a0a827ae9607419827236a8440b049b5d5a16e38cbe1c3920598ffb0dc5302
GET /a2/89/ce/a289cea0efc01ecc6d483b54b6e14570.js HTTP/1.1
Host: terminusbedsexchanged.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 29fdcc9b68869fac20351ad1ebadbead
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
kittyland.ws/jscripts/general.js?ver=1817
103.109.100.248200 OK 14 kB URL HTTP/1.1 kittyland.ws/jscripts/general.js?ver=1817
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with very long lines (322)
Hash 1ceee3d93269eec42d3deeff783f2b87
cabe55334c28136b5c8cc843c1fc2caed2666130
a67789463ec702f1ad2f23abedd1eab92965b6b6c97c061702c9b87c1370e004
GET /jscripts/general.js?ver=1817 HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: application/javascript
Content-Length: 14480
Last-Modified: Fri, 13 Sep 2019 05:35:20 GMT
Connection: keep-alive
ETag: "5d7b2a98-3890"
X-Powered-By: PleskLin
Accept-Ranges: bytes
kittyland.ws/cache/themes/theme11/color_green.css
103.109.100.248200 OK 1.5 kB URL HTTP/1.1 kittyland.ws/cache/themes/theme11/color_green.css
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with CRLF line terminators
Hash 2ebe5c4b1f87556173fcd89cbccdfd64
f942af7effe01b85eb5e62cdb28ab435e4cff737
291e20afe6ad5201c5129f0129fdb8b40c42725fcb4b8732c4225e50a29a49fe
GET /cache/themes/theme11/color_green.css HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: text/css
Content-Length: 1463
Last-Modified: Sun, 15 Sep 2019 16:31:06 GMT
Connection: keep-alive
ETag: "5d7e674a-5b7"
X-Powered-By: PleskLin
Accept-Ranges: bytes
kittyland.ws/cache/themes/theme11/global.css
103.109.100.248200 OK 36 kB URL HTTP/1.1 kittyland.ws/cache/themes/theme11/global.css
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with CRLF line terminators
Hash 21ba6b824cebc1f0139885c11bc712d7
3d8dd1386f8919c2f81012095f65685150dd1acd
49aa06230cabf9a720dc98c17573c301a7f0ef032a08359479e7f09dd5a192ad
GET /cache/themes/theme11/global.css HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: text/css
Content-Length: 36334
Last-Modified: Thu, 17 Oct 2019 15:49:01 GMT
Connection: keep-alive
ETag: "5da88d6d-8dee"
X-Powered-By: PleskLin
Accept-Ranges: bytes
kittyland.ws/2eddb609da.php
103.109.100.248200 OK 1.4 kB URL HTTP/1.1 kittyland.ws/2eddb609da.php
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type ASCII text, with very long lines (9718), with no line terminators
Hash 38018adfd5ecc54365ac91f618875ecb
b628473ebaea2b1e41d60d43f9abca220e8cfae2
154644012d975a6d4a7beff30b2cc359562b4bba089ef3e7cb765b81661601d3
GET /2eddb609da.php HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 1385
Connection: keep-alive
Vary: Accept-Encoding
Content-Encoding: gzip
X-Powered-By: PHP/7.0.33, PleskLin
primejb.top/images/banner.jpg
172.67.150.65200 OK 46 kB URL HTTP/2 primejb.top/images/banner.jpg
IP 172.67.150.65:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=81, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=640], progressive, precision 8, 468x60, components 3\012- data
Hash 4c0a26a7c2f61094bc42b21d93f577a1
9f8ea928bb5487d4401784f1defddbb4f6a40ce3
d6e84160752fc3634eb3dc68f6ab8c682dc206ba396ec907288208f843150c2e
GET /images/banner.jpg HTTP/1.1
Host: primejb.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 07:41:13 GMT
content-type: image/jpeg
content-length: 46115
last-modified: Tue, 27 Sep 2022 17:35:52 GMT
etag: "63333478-b423"
x-powered-by: PleskLin
cache-control: max-age=14400
cf-cache-status: HIT
age: 6831
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mHGEeftIrZxQoRf2qbXZVOEgahJxSuElobej9KIPG86OZPSFA2TEHWWmV7DcNIjgrVn6kqvPsxppCUo%2BUzqw1ssZ6Tl2T53R%2FjL7Ci9HAgnHpJUB%2FAXXUTGZcf0Ktg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76e00580f84db509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 07:41:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2
216.58.207.195200 OK 33 kB URL HTTP/2 fonts.gstatic.com/s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 33436, version 1.0\012- data
Hash b9b4c932ef89c39525bfe1b604cda3a1
767246e4c7df1b6c32f590c16c135808382b1aba
9a932e49823b59769330d1ce8ef9f1b90e5ae8ecd5f2bb388d19bf684cdb7ebd
GET /s/lobster/v28/neILzCirqoswsqX9zoKmMw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kittyland.ws
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 17:58:13 GMT
expires: Wed, 15 Nov 2023 17:58:13 GMT
cache-control: public, max-age=31536000
age: 567780
last-modified: Tue, 26 Apr 2022 15:01:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kindly-face.pro/cbD_9.6_b/2_5SllS/WGQe9/NtDTE/3cMczFIK3hMiwI
188.72.219.36301 Moved Permanently 162 B URL HTTP/1.1 kindly-face.pro/cbD_9.6_b/2_5SllS/WGQe9/NtDTE/3cMczFIK3hMiwI
IP 188.72.219.36:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert quad9 Sinkholed
GET /cbD_9.6_b/2_5SllS/WGQe9/NtDTE/3cMczFIK3hMiwI HTTP/1.1
Host: kindly-face.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://kindly-face.pro/cbD_9.6_b/2_5SllS/WGQe9/NtDTE/3cMczFIK3hMiwI
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
X-Content-Type-Options: nosniff
use.fontawesome.com/releases/v5.5.0/webfonts/fa-solid-900.woff2
172.64.132.15200 OK 74 kB URL HTTP/2 use.fontawesome.com/releases/v5.5.0/webfonts/fa-solid-900.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 73852, version 1.0\012- data
Hash fb493903265cad425ccdf8e04fc2de61
fef2f08d60e907750df0bc41ce64a7139642ddf0
7798165ee5a3c6809310d8261dcbe7c8d0c12d795b7b09a71af3eb86ec8f33f2
GET /releases/v5.5.0/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kittyland.ws
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 07:41:13 GMT
content-type: font/woff2
content-length: 73852
x-amz-id-2: NcVVWRcP6ZfjYXyJItBqRJTpEbB9ftFwu3pavtfDPG7ufHwsJSJlqYo4LB5NLNKwiyGAHmMC1nQ=
x-amz-request-id: VAFCPTQNPG56AB61
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:43:51 GMT
etag: "fb493903265cad425ccdf8e04fc2de61"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2283705
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KHcKmVaYSDo7aMoFWt2rY6UEAkI9xCCpXb3Ha52wixfTEpMfHZCnvRoLoooQUxxvePlOmUoFbsbOyh5xJaSOB%2FHnoDtBLPht1LEPEO%2Fb9v53ijY0rDN%2FSh2hPvxEnJm4m7SxGC3C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e00581987a7785-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.5.0/webfonts/fa-regular-400.woff2
172.64.132.15200 OK 15 kB URL HTTP/2 use.fontawesome.com/releases/v5.5.0/webfonts/fa-regular-400.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 14844, version 1.0\012- data
Hash bdadb6ce95c5a2e7b673940721450d3c
f1e8cb035436d638da83d4696248cec831dcbe7a
92ba7bfaa43a35c94353e96860d99376313ee9b5fce6124d4e64067280f9a841
GET /releases/v5.5.0/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://kittyland.ws
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 07:41:13 GMT
content-type: font/woff2
content-length: 14844
x-amz-id-2: qC3NNNWqDG39pwyo7xWZmkL2x2LEdXGZ2c1SrAp9EjwfxKBhq5IBsUTsOCy5MNSIMaCCCkSiVEA=
x-amz-request-id: E3MQT4FP9ZJYXGCQ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:43:51 GMT
etag: "bdadb6ce95c5a2e7b673940721450d3c"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1678826
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wx0gg%2BRuZiYICK%2B187dJ6LVZa8MsX13H3%2F1KWtQce43lysVi4p%2B85UH7tiMWA0x3vNv%2FiOutbqziFmkGcuKPgSifxmif2Q0ocPej3Bz%2FDdT%2FE7rSD0SEqViOJHtQ0%2Fciq%2BDau0av"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e00581c8bf7785-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash ed3ae8e878b9c8c9c5fc3ab22d8547d6
e4d08dc74fa84a3bcc9d442e225e8f7a6c124822
e135b6fb23500cb2edbf836719ed450cdb6b1e86b7c8491289cb4e1ccbd9ce84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 07:41:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kittyland.ws/images/collapse.png
103.109.100.248200 OK 369 B URL HTTP/1.1 kittyland.ws/images/collapse.png
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 6af553ac5e86504743b02f220405abdd
c07e8d586443c0ace4d91eea0d46476845b6baec
408e40949e493302b9fd79a82e68c13509ba6370f04be5088ccd7503a4d1f94c
GET /images/collapse.png HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: image/png
Content-Length: 369
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Fri, 13 Sep 2019 05:34:32 GMT
ETag: "171-592689bd16a00"
Accept-Ranges: bytes
X-Powered-By: PleskLin
addresseepaper.com/sfp.js
34.160.73.230429 Too Many Requests 298 B URL HTTP/1.1 addresseepaper.com/sfp.js
IP 34.160.73.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2d276fc22806d34e2355196fe7bea1f3
0f2c85ecd7a43e866345fd0eafe5e0fdd4aa7acf
9e522902dee04e1345219cee056a1a291ba4eca674870853ab05f3579875ff38
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 429 Too Many Requests
Server: openresty
Date: Tue, 22 Nov 2022 07:41:14 GMT
Content-Type: text/html
Content-Length: 298
ETag: "63734770-12a"
Via: 1.1 google
kittyland.ws/images/focus/pattern.png
103.109.100.248404 Not Found 808 B URL HTTP/1.1 kittyland.ws/images/focus/pattern.png
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a943672a32297727bab01c3e76977550
3a667c4b7a457ef6c586cc581d533c128737bf53
b9347f234dc3c8d56e015e86d88a1400415db8f7a5ad91f02b6a2323c10a4187
GET /images/focus/pattern.png HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/cache/themes/theme11/global.css
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2; 149b4=bm9yZWZ8fHwxfDB8MHxub25lfDA6; 149b4b=1669102872
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: text/html
Content-Length: 808
Connection: keep-alive
Last-Modified: Sun, 24 Oct 2021 23:56:16 GMT
ETag: "328-5cf21fd70b29e"
Accept-Ranges: bytes
kittyland.ws/images/forum_icon_sprite.png
103.109.100.248200 OK 1.1 kB URL HTTP/1.1 kittyland.ws/images/forum_icon_sprite.png
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type PNG image data, 30 x 120, 8-bit colormap, non-interlaced\012- data
Hash 212f6e3895ee44bf54b31cf39a162611
7d1f15044536b4f243495c47b03b2334b5493b4f
b95e7d7fb4d9efd1e305194cd5ec83f0b16a02baad62b355c66f1af8688a528b
GET /images/forum_icon_sprite.png HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/cache/themes/theme11/global.css
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2; 149b4=bm9yZWZ8fHwxfDB8MHxub25lfDA6; 149b4b=1669102872
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: image/png
Content-Length: 1130
Last-Modified: Fri, 13 Sep 2019 05:34:30 GMT
Connection: keep-alive
ETag: "5d7b2a66-46a"
X-Powered-By: PleskLin
Accept-Ranges: bytes
kittyland.ws/images/kittyland_logo.png
103.109.100.248200 OK 51 kB URL HTTP/1.1 kittyland.ws/images/kittyland_logo.png
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type PNG image data, 330 x 116, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ef84d514d84be50579b37b8eea23513
bf5253c09376a483a8bb7579fc34afbfe90a20e4
cd444c8e03c6b3729bde000c8da0e6e5821391452fb3f70b5df129f5ecb42d19
GET /images/kittyland_logo.png HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: image/png
Content-Length: 51412
Last-Modified: Mon, 16 Nov 2020 17:55:46 GMT
Connection: keep-alive
ETag: "5fb2bd22-c8d4"
X-Powered-By: PleskLin
Accept-Ranges: bytes
lightssyrupdecree.com/43/75/f7/4375f70441eacfde85e17f2cc1e0a66f.js
192.243.59.20200 OK 13 kB URL HTTP/1.1 lightssyrupdecree.com/43/75/f7/4375f70441eacfde85e17f2cc1e0a66f.js
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37155), with no line terminators
Hash f0ca39e2be1d366b5a91d98d1dd98f84
6fccee999e520e109534f19b2301fda3c25b23b4
8f9f379c24bc9e0acf3bfd3249a6625b0844c8dc926164041fc2c11428b05dd6
GET /43/75/f7/4375f70441eacfde85e17f2cc1e0a66f.js HTTP/1.1
Host: lightssyrupdecree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 22 Nov 2022 07:41:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7e697b042e3ed125a09d4f711024afa4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.fihycotu.pro/acc282/a9e8def3f993.js
67.216.91.19200 OK 53 kB URL HTTP/2 www.fihycotu.pro/acc282/a9e8def3f993.js
IP 67.216.91.19:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9a8439e61b485a23183c613f7bfc27d5
d94dc3b67a8e13fa4ac933a6e59a30b8e2dd226c
6db7caf792f8374866a875d53b7cb0cf7a449431a470c29059bbbf6b0b67c7a2
GET /acc282/a9e8def3f993.js HTTP/1.1
Host: www.fihycotu.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: http://kittyland.ws
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ucdn/1.22.1
date: Tue, 22 Nov 2022 07:41:14 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315357526, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsog41fW3hOd965Uj5PfSqLO3GY8s5N7WkiuyFrNS0bW2GjDED1Td4QszNpqMuQg55RKoY6ehLyvar8c574+4+Vt
x-served-from: l1
x-vhostid: 101, 21725
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 475a2bcd0ca22473d900c78e84762245
c7fc502de2091c1398719ee50e8832995d19e43b
6225d07ff554cc6520e4526aa14eeb17884f1cf2c0a779614d745e9c40301c1c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113591
Date: Tue, 22 Nov 2022 07:41:14 GMT
Etag: "637b7d94-1d7"
Expires: Wed, 23 Nov 2022 15:14:25 GMT
Last-Modified: Mon, 21 Nov 2022 13:31:00 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Tvjd0PW7GtN9wqvXGaCvSzG7f0qbqMRst2bFQ-FLR4-_ns6T89EP-g==
Age: 6205
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash fa10547d2adba4784df4d87eccf808d3
ee95e29f691baf4aa54b420a48ff139e364da530
48f7919afa4aff918b62d6e15090314d517b9749d2e8b67b5f161cd041d7071b
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kittyland.ws
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 07:41:14 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://kittyland.ws
access-control-allow-credentials: true
set-cookie: uid_id2=0ae54957-ba7b-48cf-b858-47c8b17e0ad2:2:1; expires=Fri, 19 Nov 2032 07:41:14 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9929
Expires: Tue, 22 Nov 2022 10:26:43 GMT
Date: Tue, 22 Nov 2022 07:41:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9929
Expires: Tue, 22 Nov 2022 10:26:43 GMT
Date: Tue, 22 Nov 2022 07:41:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9929
Expires: Tue, 22 Nov 2022 10:26:43 GMT
Date: Tue, 22 Nov 2022 07:41:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 611d1eca860866489908506a26bd6a2a
5e8c401f098357cd12889a6e507baf7c8a87772a
e3216e5edd547bc8f6a43780da5a118842b96de96d5cf668af68d8706ceb32e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3216E5EDD547BC8F6A43780DA5A118842B96DE96D5CF668AF68D8706CEB32E4"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9929
Expires: Tue, 22 Nov 2022 10:26:43 GMT
Date: Tue, 22 Nov 2022 07:41:14 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 06:05:40 GMT
age: 5734
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F559c6770-d162-460d-b372-5ff036a364d6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F559c6770-d162-460d-b372-5ff036a364d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9defa28d124bae7e5ef29a1fb165ee02
2afe813f0fefae511064297ccff9a6de548104e8
8cfdd12386dcc87cfd874ed0c2d42cd33ae2a05cb35127f1a94e163d17bd5b31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F559c6770-d162-460d-b372-5ff036a364d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11576
x-amzn-requestid: 9dd2cb2e-de79-4937-b525-05be9d57c03b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrdFuxoAMFa9g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee49-5437ea0f1568967278fe96ad;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:53 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1daKtJmaZARpzMRiPQaWttMITAndRqZt0VwhiBzbxzxBvw4a28a2sg==
via: 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:59:23 GMT
age: 34911
etag: "2afe813f0fefae511064297ccff9a6de548104e8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3675a1c1e9e3bfc3d16d71644b4c7ab1
c09ea0df36485d017a0fea2c992f5a5676d42d7c
6771ed9a8f8fbcc5c822f261c71018296febd92463c56662f3af6fe793248227
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F359c7e24-81c9-4605-bf89-c3a58f4c72b2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11088
x-amzn-requestid: 3a42e1ee-d63c-4a40-8122-22ea5775bd5d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6nFpMoAMF3gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-01b48ea07786649b466b9b29;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QDkzifM71KejjNwstX70B3QktoK01Nfq7tcoHuC5EqOqELF6z0sHfQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:47:01 GMT
etag: "c09ea0df36485d017a0fea2c992f5a5676d42d7c"
content-type: image/jpeg
age: 35653
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc359aabf-c4a1-4d9e-8a0a-da6aa777cb57.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc359aabf-c4a1-4d9e-8a0a-da6aa777cb57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fd91c051d71cf4d0a1436e4f371cd958
4c51df26158581b7db7a1dd4a8b44013e1b5493c
f1cc4c2d990689b2482c9817191fd1367a64aec5be46f8a074296d235acca341
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc359aabf-c4a1-4d9e-8a0a-da6aa777cb57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11307
x-amzn-requestid: e9ae5ce5-6e07-4deb-843b-ea49fc889d2c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oHvoIAMF8qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-0dcf9a735bcbd51d0acdb0bf;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mvlsQDF0wOF5I4B0GTF5aLgKzZsWWiIExjJ6Vl66VO6C4F2I655dYw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:58:29 GMT
age: 34965
etag: "4c51df26158581b7db7a1dd4a8b44013e1b5493c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd770f2a4-df6c-467f-9831-3297f524941e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd770f2a4-df6c-467f-9831-3297f524941e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 296559cb68d1f42b8b9e5d5e5a8167bc
a4b04d0296539fa5063b1f464d2c461be37491a5
eeab74cba5a5a12453a831f9d7e002999c6752576f8a2f31a7040158a7f57bee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd770f2a4-df6c-467f-9831-3297f524941e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11343
x-amzn-requestid: 5af18795-3668-4174-a2cf-47a020d665f2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6pEjEIAMF3pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-26f7d1cd340cb8ab3ab6c81b;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H6tjj0BtgHgcETfLkgynpkUp4BHwPlJq91XFrzdImb-nOJx1hGPQOA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:34:53 GMT
age: 32781
etag: "a4b04d0296539fa5063b1f464d2c461be37491a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dafd9e17dc0023e71ae513c6025e4b80
12e2654db1f384bb04f5c5042848b25dda86b710
e9c885a102dc811648cec4ac292db63564e81a48d7a3611cb31fba73b37286dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4639
x-amzn-requestid: 8a93fa29-158b-4402-aac4-85ad29a74ae1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oELooAMFWFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-5a85509b26d9aeef7ae59b4c;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bmrDryUp_4bvIikGkppa36e9isEfvK0gjunV6xmU5ApJtxlLR_GYkA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:05:18 GMT
age: 34556
etag: "12e2654db1f384bb04f5c5042848b25dda86b710"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kindly-face.pro/cbD_9.6_b/2_5SllS/WGQe9/NtDTE/3cMczFIK3hMiwI
188.72.219.36200 OK 15 kB URL HTTP/2 kindly-face.pro/cbD_9.6_b/2_5SllS/WGQe9/NtDTE/3cMczFIK3hMiwI
IP 188.72.219.36:0
File type Unicode text, UTF-8 text, with very long lines (5600)
Hash f7d34eae7aaa0224915142d5c65999bb
4383f6f495535c8fc691abce08edb083d9ccbff6
c7584f575ace2c605e754abe8a8fa4db3dce8bb902fcc5a93a9c89a22d4563ac
Analyzer Verdict Alert quad9 Sinkholed
GET /cbD_9.6_b/2_5SllS/WGQe9/NtDTE/3cMczFIK3hMiwI HTTP/1.1
Host: kindly-face.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 07:41:14 GMT
content-type: application/javascript
vary: Accept-Encoding
expires: Mon, 26 Jul 2011 05:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
accept-ch: Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
last-modified: Tue, 22 Nov 2022 07:41:14 GMT
access-control-allow-methods: GET
set-cookie: kadSlcJ=eyJ0aW1lU3RhbXAiOjE2NjkxMDI4NzQsInpvbmVzIjp7IjQxNzMyNzMiOls0MTczMjczLDEsMTY2OTEwMjg3NF19fQ==; max-age=1700638874; path=/
x-content-type-options: nosniff
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/s2/favicons?domain=jviral.buzz
142.250.74.164301 Moved Permanently 331 B URL HTTP/1.1 www.google.com/s2/favicons?domain=jviral.buzz
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash d5adbcc989a235567173b0f5557eaf97
00f848fc7b5d098afd2ff6d11aaae3da36f62cd5
bc28bd28b1f7307bda89089a945013fab15d0d62f1363b1195ba880c30b2af04
GET /s2/favicons?domain=jviral.buzz HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jviral.buzz&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 331
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=niceporn.tv
142.250.74.164301 Moved Permanently 331 B URL HTTP/1.1 www.google.com/s2/favicons?domain=niceporn.tv
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 194cad92655d348f97b156325e82bddf
c04c12a4b52ba8f6b3e8c337597a09ed962a4334
a983a82856fa7c159203e49c13b1468b44c95e2088786a2ca7adadf808cecbd5
GET /s2/favicons?domain=niceporn.tv HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://niceporn.tv&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 331
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:40:24 GMT
Expires: Tue, 22 Nov 2022 08:10:24 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 50
www.google.com/s2/favicons?domain=jlove.pw
142.250.74.164301 Moved Permanently 328 B URL HTTP/1.1 www.google.com/s2/favicons?domain=jlove.pw
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 1ab4ebfcd7ccd758093c78e76e44331a
36b375b686974217bb9317d8584f8378080afc70
daf18cc1b13e2acc49653af7f103d3527031e049b892fa5f1358debb80a4355b
GET /s2/favicons?domain=jlove.pw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jlove.pw&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 328
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=hbabes.net
142.250.74.164301 Moved Permanently 330 B URL HTTP/1.1 www.google.com/s2/favicons?domain=hbabes.net
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 952bf25af74eed1bcdc85ea9a1212bf9
38b676cd62e97d5babfbada1f8cdac844f37c015
c43e2b18bde7a9549844c65e3a5965ec037ea4f29a4d7eefe10599eba7be46a4
GET /s2/favicons?domain=hbabes.net HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hbabes.net&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 330
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=lilibox.top
142.250.74.164301 Moved Permanently 331 B URL HTTP/1.1 www.google.com/s2/favicons?domain=lilibox.top
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c9c8baa571f4c0e6c2f108f8c75e3bf5
e2fc9c36fd35464011763b89812424557da86f2d
0992c33da7b6f26b79be24343a1b80f1cab299f50cae8a9a7ae5d938981ccb6d
GET /s2/favicons?domain=lilibox.top HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://lilibox.top&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 331
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=fap18.tv
142.250.74.164301 Moved Permanently 328 B URL HTTP/1.1 www.google.com/s2/favicons?domain=fap18.tv
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash bd6b92fe5f5d393c6db023c6cde01442
4e5cfe2290bb0ab5f31076a9377d39d2c0dcb6fe
0bdaa6da6f8cc2104f1fd71edbcb9cb9e3bebea7622b8ae25b0168b7dab63723
GET /s2/favicons?domain=fap18.tv HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fap18.tv&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 328
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:40:24 GMT
Expires: Tue, 22 Nov 2022 08:10:24 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 50
www.google.com/s2/favicons?domain=bodyxxx.top
142.250.74.164301 Moved Permanently 331 B URL HTTP/1.1 www.google.com/s2/favicons?domain=bodyxxx.top
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c010b8f93b900106d9124599bf8e376c
b9ab70fdb6eb3b65b0eda52feb9b21342e3e3b95
fa6b6f47f8b7bec2f174cbedd614574e5857dc69f18dfef5d82fb60af30dc358
GET /s2/favicons?domain=bodyxxx.top HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bodyxxx.top&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 331
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=mignonnes.net
142.250.74.164301 Moved Permanently 333 B URL HTTP/1.1 www.google.com/s2/favicons?domain=mignonnes.net
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 209aad7669a2c2423c4b1abb9524f735
8899bba945d3ef5ae29df05799711bd0dc74f37c
f40a762f395e8c68eea963245ca1c01bfc189579319588c991fa397eb7476e54
GET /s2/favicons?domain=mignonnes.net HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://mignonnes.net&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 333
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=prettydoll.fr
142.250.74.164301 Moved Permanently 333 B URL HTTP/1.1 www.google.com/s2/favicons?domain=prettydoll.fr
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 8831908b80e05abd13be9574d32ae63d
7fb2819a597dc1f125380263a23586d08e5f0430
a76c0918dac31ebed3ac77963418c943d9b484ae4059431833fbcba2a7e1290c
GET /s2/favicons?domain=prettydoll.fr HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://prettydoll.fr&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 333
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=anyxxx.me
142.250.74.164301 Moved Permanently 329 B URL HTTP/1.1 www.google.com/s2/favicons?domain=anyxxx.me
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c93499b162c2017dd4ee432a047f6d5d
a0def02d7fd18deb8afe1008f608870e9d8dbd4a
7693a1016b23b161969eb805bbbe9bdfab41d54e1ec3a9bf9db7a7d98779d35c
GET /s2/favicons?domain=anyxxx.me HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://anyxxx.me&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 329
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
fonts.googleapis.com/css?family=Lobster
142.250.74.10200 OK 808 B URL HTTP/2 fonts.googleapis.com/css?family=Lobster
IP 142.250.74.10:0
Hash 6c0da26a844b2b76c55d0b3d4b41a130
50b2b85b637a7e34c4338c19e781a15d5e072bbf
159ed1a67b14051b4c7bcd54d7a416ae84344c76f71ebb9d613c157537e37057
GET /css?family=Lobster HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 07:41:13 GMT
date: Tue, 22 Nov 2022 07:41:13 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/favicons?domain=candyhub.ga
142.250.74.164301 Moved Permanently 331 B URL HTTP/1.1 www.google.com/s2/favicons?domain=candyhub.ga
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 691441a9edf2e2071c59dd44322d3d1d
4a5fe190184c189eaa1713242b3065529ca6baca
a0bb8c4e2dd9176287b060f5d280e7b882a3470b6225c275ecd2c013150587f1
GET /s2/favicons?domain=candyhub.ga HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://candyhub.ga&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 331
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=jbslist.top
142.250.74.164301 Moved Permanently 331 B URL HTTP/1.1 www.google.com/s2/favicons?domain=jbslist.top
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 1a83c83490bc8851384d0189277b4a3f
ee87d4708913753d3c0bc5514182616b76fb14fb
a590f29b6e7d7196bfab81b6f3725e97be2fe23172f4aef17c5ba0c335bca63a
GET /s2/favicons?domain=jbslist.top HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jbslist.top&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 331
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 22 Nov 2022 06:41:09 GMT
expires: Tue, 22 Nov 2022 08:41:09 GMT
cache-control: public, max-age=7200
age: 3605
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/s2/favicons?domain=orella.net
142.250.74.164301 Moved Permanently 330 B URL HTTP/1.1 www.google.com/s2/favicons?domain=orella.net
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c023de13621fa711112828edd810deba
408b52b7b72f891a3eb15e6adccbcc982710b149
ec20f6c32f17dcf1ff891428778fe69091185c2894991f0650fc1dc5f9d61e4c
GET /s2/favicons?domain=orella.net HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://orella.net&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 330
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=sybilleporn.com
142.250.74.164301 Moved Permanently 335 B URL HTTP/1.1 www.google.com/s2/favicons?domain=sybilleporn.com
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4db9ea9aa6a1c32bf0cc68f287aea5b6
c4e03e92b1dcb7de0403706b91880f230865b23c
3b0d3e0b466344db0d12e12695bab79145890dde6d20d7b5342d124d43e5493e
GET /s2/favicons?domain=sybilleporn.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://sybilleporn.com&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 335
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=hdpornfree.tv
142.250.74.164301 Moved Permanently 333 B URL HTTP/1.1 www.google.com/s2/favicons?domain=hdpornfree.tv
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a62434e450f2fd1ce2721c179c9b04e2
90a84dae0c23e97f6b9c2e8dcee1a09226db51da
50bb2ce049b8435a7ac0e3853db630a95e61fb0a6123b5467778cf8e9f29b20b
GET /s2/favicons?domain=hdpornfree.tv HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hdpornfree.tv&size=16
Content-Type: text/html; charset=UTF-8
X-Content-Type-Options: nosniff
Date: Tue, 22 Nov 2022 07:41:14 GMT
Expires: Tue, 22 Nov 2022 08:11:14 GMT
Cache-Control: public, max-age=1800
Server: sffe
Content-Length: 333
X-XSS-Protection: 0
www.google.com/s2/favicons?domain=hdpicsi.com
142.250.74.164301 Moved Permanently 331 B URL HTTP/1.1 www.google.com/s2/favicons?domain=hdpicsi.com
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 08c437eaf80a7ff1729c8468ccc020e1
e045718d770d8c8e6071e04365576b3ec89c3183
aacbcb86797aff29f032f07b09895067862bc56219c1436aa7bf00e6f3124647
GET /s2/favicons?domain=hdpicsi.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hdpicsi.com&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 331
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 306
www.google.com/s2/favicons?domain=zefullporn.com
142.250.74.164301 Moved Permanently 334 B URL HTTP/1.1 www.google.com/s2/favicons?domain=zefullporn.com
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash be74fc02a68c0cc269a9bae8c354cc56
fc56565175be4338098584664a293e4a9bf6792f
2a89a670bd0958290c3c6528ffc92aee826ded19f4b1c7debe03c909bb164a1a
GET /s2/favicons?domain=zefullporn.com HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://zefullporn.com&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 334
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 307
www.google.com/s2/favicons?domain=blackdaddy.top
142.250.74.164301 Moved Permanently 334 B URL HTTP/1.1 www.google.com/s2/favicons?domain=blackdaddy.top
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 236f18e77869bc1f384626dd73ea9f4c
90b29035a48224e055a2a5e92ea0d30342d51d16
6f12390257203c671d2083a6c88abcfd695b1cf0e8afced5eca798e4b00a994e
GET /s2/favicons?domain=blackdaddy.top HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://blackdaddy.top&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 334
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 307
www.google.com/s2/favicons?domain=jrice.buzz
142.250.74.164301 Moved Permanently 330 B URL HTTP/1.1 www.google.com/s2/favicons?domain=jrice.buzz
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 6052ade7465f75ef9403023dd444e251
68efa41b307a8c0b6bf5ea7be506a6c0efb48402
9c89b8dfdaed1796624d19d779b236da53b88cffa97edee87f587ef225a2f440
GET /s2/favicons?domain=jrice.buzz HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
HTTP/1.1 301 Moved Permanently
Location: https://t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jrice.buzz&size=16
X-Content-Type-Options: nosniff
Server: sffe
Content-Length: 330
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 07:36:08 GMT
Expires: Tue, 22 Nov 2022 08:06:08 GMT
Cache-Control: public, max-age=1800
Content-Type: text/html; charset=UTF-8
Age: 307
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://niceporn.tv&size=16
142.250.74.36200 OK 205 B URL HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://niceporn.tv&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 1225e3807d6f671d1c728aa090b8afca
bc6b16cbdcc786788df549928c503e944737072b
48a22e814a57399c87d77d1f0b2de40e4426425a37ba63338ad610644d1364eb
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://niceporn.tv&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
content-location: https://niceporn.tv/i/favicon/apple-icon-57x57.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 205
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 16:01:41 GMT
expires: Tue, 22 Nov 2022 16:01:41 GMT
cache-control: public, max-age=604800
age: 574774
last-modified: Sat, 16 Nov 2019 04:54:39 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://lilibox.top&size=16
142.250.74.36200 OK 565 B URL HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://lilibox.top&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 63f22f1ceefc11f583c1ef226bc113bc
03c1ad8c4ef751dab23658a66e1f70fe5a364558
3247333430d523ab8e1e023b9f2e1f5a7e592e705fb911940cfd2262cce78719
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://lilibox.top&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://lilibox.top/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 565
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 14:25:21 GMT
expires: Tue, 22 Nov 2022 14:25:21 GMT
cache-control: public, max-age=604800
last-modified: Sun, 05 Jul 2020 03:07:18 GMT
content-type: image/png
age: 580554
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fap18.tv&size=16
142.250.74.36200 OK 248 B URL HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fap18.tv&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 8e6ba5af4906e0f7e0278ffeb02bdedc
907b0b3dd605218b7f84c0eb8cc16edceb0ebe20
000bb8316fbe3758f43c20aa99c67cb869cfe42de916afdcdcb71d4f72449c6c
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://fap18.tv&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://fap18.tv/i/favicon/apple-icon-57x57.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 22:39:03 GMT
expires: Sat, 26 Nov 2022 22:39:03 GMT
cache-control: public, max-age=604800
age: 205332
last-modified: Tue, 07 Dec 2021 12:56:04 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://anyxxx.me&size=16
142.250.74.36200 OK 239 B URL HTTP/2 t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://anyxxx.me&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash cde8fdf8fde40716549d2933804709a8
ad4183499e9608046dc9e01808e6f815f9125df8
a48d941fdd18a8a0fbd797121e1edb17e5dd110d54b3cc26ad9afd45c813ab11
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://anyxxx.me&size=16 HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://anyxxx.me/i/favicon/apple-icon-57x57.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 239
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 22:59:34 GMT
expires: Sat, 26 Nov 2022 22:59:34 GMT
cache-control: public, max-age=604800
age: 204101
last-modified: Sun, 17 Nov 2019 05:28:33 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://sexyhouse.top&size=16
142.250.74.36200 OK 565 B URL HTTP/2 t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://sexyhouse.top&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 63f22f1ceefc11f583c1ef226bc113bc
03c1ad8c4ef751dab23658a66e1f70fe5a364558
3247333430d523ab8e1e023b9f2e1f5a7e592e705fb911940cfd2262cce78719
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://sexyhouse.top&size=16 HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://sexyhouse.top/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 565
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 17 Nov 2022 23:03:18 GMT
expires: Thu, 24 Nov 2022 23:03:18 GMT
cache-control: public, max-age=604800
age: 376677
last-modified: Sun, 05 Jul 2020 03:07:18 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hdpornfree.tv&size=16
142.250.74.36200 OK 413 B URL HTTP/2 t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hdpornfree.tv&size=16
IP 142.250.74.36:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 16x16, components 3\012- data
Hash 9d84b798ec786a0f39557740f90dbed5
3c598cebc1eb1947499741e023dc4716f04f6e8f
6b87bc8e850b520a9ce6c99b9e6f9782296a320de1460b52ff7fc574ab6bf3df
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hdpornfree.tv&size=16 HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-location: https://hdpornfree.tv/i/favicon/apple-icon-57x57.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 413
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 19:28:40 GMT
expires: Tue, 22 Nov 2022 19:28:40 GMT
cache-control: public, max-age=604800
age: 562355
last-modified: Mon, 17 Aug 2020 04:03:03 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bodyxxx.top&size=16
142.250.74.36404 Not Found 726 B URL HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bodyxxx.top&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://bodyxxx.top&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=1402064682&t=pageview&_s=1&dl=http%3A%2F%2Fkittyland.ws%2F&ul=en-us&de=UTF-8&dt=Kittyland.ws%20%7C%20Teen%20Porn%20Forum&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1390710980&gjid=342193992&cid=304390957.1669102875&tid=UA-135448172-1&_gid=935926013.1669102875&_r=1>m=2oub90&z=1588385727
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=1402064682&t=pageview&_s=1&dl=http%3A%2F%2Fkittyland.ws%2F&ul=en-us&de=UTF-8&dt=Kittyland.ws%20%7C%20Teen%20Porn%20Forum&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1390710980&gjid=342193992&cid=304390957.1669102875&tid=UA-135448172-1&_gid=935926013.1669102875&_r=1>m=2oub90&z=1588385727
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j98&a=1402064682&t=pageview&_s=1&dl=http%3A%2F%2Fkittyland.ws%2F&ul=en-us&de=UTF-8&dt=Kittyland.ws%20%7C%20Teen%20Porn%20Forum&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1390710980&gjid=342193992&cid=304390957.1669102875&tid=UA-135448172-1&_gid=935926013.1669102875&_r=1>m=2oub90&z=1588385727 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://kittyland.ws
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: http://kittyland.ws
date: Tue, 22 Nov 2022 07:41:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://sybilleporn.com&size=16
142.250.74.36404 Not Found 726 B URL HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://sybilleporn.com&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://sybilleporn.com&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://mignonnes.net&size=16
142.250.74.36404 Not Found 726 B URL HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://mignonnes.net&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://mignonnes.net&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6db90aacc399c976e4f25b14874874e
8ece4a4cb6ec0f8aead0eaaa1fa65b619ec18f5d
1a417c0fe8f48adb38e30531c046ec554507d8a99d8480cf0ad7b7e07ef5a8e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1A417C0FE8F48ADB38E30531C046EC554507D8A99D8480CF0AD7B7E07EF5A8E6"
Last-Modified: Mon, 21 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18714
Expires: Tue, 22 Nov 2022 12:53:09 GMT
Date: Tue, 22 Nov 2022 07:41:15 GMT
Connection: keep-alive
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://blackdaddy.top&size=16
142.250.74.36404 Not Found 726 B URL HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://blackdaddy.top&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://blackdaddy.top&size=16 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://prettydoll.fr&size=16
142.250.74.132200 OK 609 B URL HTTP/2 t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://prettydoll.fr&size=16
IP 142.250.74.132:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash d6ee5be6d3d29288274a4c6e1798e9c7
0e0d4cc1d8f816fe5fe7e0fd0d676ed2eb7763df
a090b61818d80835c14af69ffd2e93186ce60377a67a9a351943eb49f2d11ef8
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://prettydoll.fr&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-location: http://prettydoll.fr/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 609
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 20 Nov 2022 17:16:32 GMT
expires: Sun, 27 Nov 2022 17:16:32 GMT
cache-control: public, max-age=604800
last-modified: Wed, 29 Nov 2017 12:34:19 GMT
content-type: image/png
age: 138283
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hbabes.net&size=16
142.250.74.36404 Not Found 726 B URL HTTP/2 t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hbabes.net&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hbabes.net&size=16 HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jrice.buzz&size=16
142.250.74.132404 Not Found 726 B URL HTTP/2 t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jrice.buzz&size=16
IP 142.250.74.132:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jrice.buzz&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://orella.net&size=16
142.250.74.132404 Not Found 726 B URL HTTP/2 t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://orella.net&size=16
IP 142.250.74.132:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://orella.net&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jviral.buzz&size=16
142.250.74.36404 Not Found 726 B URL HTTP/2 t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jviral.buzz&size=16
IP 142.250.74.36:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jviral.buzz&size=16 HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jlove.pw&size=16
142.250.74.132404 Not Found 726 B URL HTTP/2 t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jlove.pw&size=16
IP 142.250.74.132:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jlove.pw&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://candyhub.ga&size=16
142.250.74.132404 Not Found 726 B URL HTTP/2 t2.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://candyhub.ga&size=16
IP 142.250.74.132:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://candyhub.ga&size=16 HTTP/1.1
Host: t2.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jbslist.top&size=16
216.58.211.4200 OK 690 B URL HTTP/2 t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jbslist.top&size=16
IP 216.58.211.4:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 60071760c88670cbaeebbd793fec5a88
2cf1582f9da6c2e0aac3debe5768be31c63df3f6
4d8b81e2b4a3309a4867ceebb9aa434d35bc323976d190a6a2146beda40e5bf1
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://jbslist.top&size=16 HTTP/1.1
Host: t0.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-location: http://jbslist.top/images/focus/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 690
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 04:17:34 GMT
expires: Sat, 26 Nov 2022 04:17:34 GMT
cache-control: public, max-age=604800
age: 271421
last-modified: Sat, 20 Apr 2019 09:44:17 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hdpicsi.com&size=16
216.58.211.4404 Not Found 726 B URL HTTP/2 t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hdpicsi.com&size=16
IP 216.58.211.4:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://hdpicsi.com&size=16 HTTP/1.1
Host: t0.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://zefullporn.com&size=16
216.58.211.4404 Not Found 726 B URL HTTP/2 t0.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://zefullporn.com&size=16
IP 216.58.211.4:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b8a0bf372c762e966cc99ede8682bc71
2d7c9b60d1e2b4f4726141de2e4ab738110b9287
59bfe9bc385ad69f50793ce4a53397316d7a875a7148a63c16df9b674c6cda64
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://zefullporn.com&size=16 HTTP/1.1
Host: t0.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
cross-origin-resource-policy: cross-origin
content-type: image/png
x-content-type-options: nosniff
date: Tue, 22 Nov 2022 07:41:15 GMT
server: sffe
content-length: 726
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
kittyland.ws/favicon.ico
103.109.100.248200 OK 801 B IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b7f2dffaa88cad48dde72cd70b61b82b
04a8b696763c6d0186aca72fd7c48cd51b4d9e97
62151b674703a300dd668ccad9550335d2b687b12a9cda00a53581c3c83c2868
GET /favicon.ico HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2; 149b4=bm9yZWZ8fHwxfDB8MHxub25lfDA6; 149b4b=1669102872; ppu_main_a289cea0efc01ecc6d483b54b6e14570=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=0ae54957-ba7b-48cf-b858-47c8b17e0ad2%3A2%3A1; sb_main_4375f70441eacfde85e17f2cc1e0a66f=1; sb_idelay_4375f70441eacfde85e17f2cc1e0a66f=1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:15 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 801
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Fri, 13 Sep 2019 05:33:54 GMT
ETag: "321-59268998d9480"
Accept-Ranges: bytes
X-Powered-By: PleskLin
d24ak3f2b.top/advertisers.js
142.0.204.220200 OK 0 B URL HTTP/1.1 d24ak3f2b.top/advertisers.js
IP 142.0.204.220:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: d24ak3f2b.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://kittyland.ws/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Tue, 22 Nov 2022 07:41:15 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash afec857f09ac892f4d272a6506f0e2b9
46cef7b7c403235e439deb2d614f1848b2b2c168
71b2d3dfd33ece2fcd18294ec5608fdf12fff67d58d6a6886a6031c4f4eb45dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71B2D3DFD33ECE2FCD18294EC5608FDF12FFF67D58D6A6886A6031C4F4EB45DD"
Last-Modified: Mon, 21 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12230
Expires: Tue, 22 Nov 2022 11:05:09 GMT
Date: Tue, 22 Nov 2022 07:41:19 GMT
Connection: keep-alive
tractorfoolproofstandard.com/sbar.json?key=4375f70441eacfde85e17f2cc1e0a66f&uuid=0ae54957-ba7b-48cf-b858-47c8b17e0ad2%3A2%3A1
173.233.137.44403 Forbidden 0 B URL HTTP/1.1 tractorfoolproofstandard.com/sbar.json?key=4375f70441eacfde85e17f2cc1e0a66f&uuid=0ae54957-ba7b-48cf-b858-47c8b17e0ad2%3A2%3A1
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=4375f70441eacfde85e17f2cc1e0a66f&uuid=0ae54957-ba7b-48cf-b858-47c8b17e0ad2%3A2%3A1 HTTP/1.1
Host: tractorfoolproofstandard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kittyland.ws
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Server: nginx/1.19.5
Date: Tue, 22 Nov 2022 07:41:20 GMT
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
tractorfoolproofstandard.com/pixel/sbe?t=1&error=timeout
173.233.137.44200 OK 0 B URL HTTP/1.1 tractorfoolproofstandard.com/pixel/sbe?t=1&error=timeout
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbe?t=1&error=timeout HTTP/1.1
Host: tractorfoolproofstandard.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 22 Nov 2022 07:41:20 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
kittyland.ws/jscripts/jquery.js?ver=1820
103.109.100.248200 OK 0 B URL HTTP/1.1 kittyland.ws/jscripts/jquery.js?ver=1820
IP 103.109.100.248:0
ASN #206264 Amarutu Technology Ltd
GET /jscripts/jquery.js?ver=1820 HTTP/1.1
Host: kittyland.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kittyland.ws/
Cookie: mybb[lastvisit]=1669102872; mybb[lastactive]=1669102872; sid=cdbbf2b9c8460e8145ed93a13eaaf5b2
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 22 Nov 2022 07:41:13 GMT
Content-Type: application/javascript
Content-Length: 97163
Last-Modified: Fri, 13 Sep 2019 05:35:20 GMT
Connection: keep-alive
ETag: "5d7b2a98-17b8b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
use.fontawesome.com/releases/v5.5.0/css/all.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.5.0/css/all.css
IP 172.64.132.15:0
GET /releases/v5.5.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://kittyland.ws
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 07:41:13 GMT
content-type: text/css
x-amz-id-2: wZ9BtsRgr5gZ2v6YayPSG+L4OUC88JpTz+G8bQtF+0KHbphgqr/wfFTOUBA/WkSbskwBhBVjqz4=
x-amz-request-id: 3JAS5C4QMC17M595
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:43:32 GMT
etag: W/"1cc6c92172d124fbd305ba3d8e263333"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 2283841
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=61Y0QAH7%2FUC33DLyiCrWJBhJeilGJS5bf%2FDsLs6Y%2Bk7sY19GENjwfZZBytM0gl2CkOEzzVdJ4iHQrcsq1x31GKWWoyrssPYjkIKoRgxtqGr2NKUIddj8FWdRmJL4LWtQbsl7EtDg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e0057c39b77785-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.fihycotu.pro/acc282/a9e8def3f993.js
67.216.91.19200 OK 0 B URL HTTP/2 www.fihycotu.pro/acc282/a9e8def3f993.js
IP 67.216.91.19:0
GET /acc282/a9e8def3f993.js HTTP/1.1
Host: www.fihycotu.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kittyland.ws/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: ucdn/1.22.1
date: Tue, 22 Nov 2022 07:41:14 GMT
content-type: application/javascript
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: Content-Type
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315357526, public
x-ureq-id: XDrrrzssYKy7XniAYHDaCxO/1BtQYlPAo1HVcwFLMsog41fW3hOd965Uj5PfSqLO3GY8s5N7WkiuyFrNS0bW2GjDED1Td4QszNpqMuQg55RKoY6ehLyvar8c574+4+Vt
x-served-from: l1
x-vhostid: 101, 21866
content-encoding: br
X-Firefox-Spdy: h2