Report - selcuksportshd194.xyz/

Report Overview

Submitted URL
selcuksportshd194.xyz/
IP
172.67.166.22
ASN
#13335 CLOUDFLARENET
Submitted
2022-10-04 08:05:15
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ssl.google-analytics.com	275	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	907 B	11 kB	142.250.74.40
www.trtspor.com.tr	293306	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	746 B	103 kB	85.111.24.216
widgets.amung.us	12623	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	742 B	172.67.8.141
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	763 B	572 B	216.239.34.36
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	484 B	845 B	142.250.74.164
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	49 kB	34.120.237.76
www.selcuksportshd195.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	443 B	930 B	104.21.86.82
app.selcuksportsuygulama14.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	502 B	820 B	172.67.186.81
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	6.2 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
js.rfp.fout.jp	34450	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	361 B	16 kB	23.32.107.182
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	75 kB	104.16.123.175
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	486 B	1.1 kB	74.125.131.154
istatistik.trthaber.com	372477	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	479 B	207 B	3.120.109.111
www5.cbox.ws	286738	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	931 B	1.4 kB	104.21.1.254
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.35
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	978 B	2.2 kB	23.36.77.32
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	76 kB	142.250.74.168
whos.amung.us	12687	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	18 kB	172.67.8.141
static.cbox.ws	161241	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	385 B	803 B	172.67.128.112
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	34.216.192.228
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	47 kB	216.58.207.195
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	510 B	694 B	142.250.74.3
selcuksportshd194.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	780 B	1.4 kB	104.21.16.39
cbox.im	193848	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	10 kB	104.21.87.96
iframeri.strmrdrfrodg.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	488 B	1.8 kB	104.21.6.254
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.115
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	11 kB	142.250.74.3
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	31 kB	69.16.175.10
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	427 B	746 B	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-04	medium	selcuksportsuygulama14.xyz	Sinkholed
2022-10-04	medium	strmrdrfrodg.xyz	Sinkholed

Files detected

URL
whos.amung.us/swidget/uu19fwdxlo.png
IP
172.67.8.141
ASN
#13335 CLOUDFLARENET

File type
gzip compressed data, max compression\012- data
Size
18 kB (17663 bytes)
Hash
90c1c4104057f348b4fc3e85b4f7c672
2f186c2a21a95b876d8b19bf27dc8ce3e33907b5
3b74119a322e1f1b668905ada09ebcc26651b816ec6796381ace220724dabc48

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (24)

	URL	Size	First Seen	Last Seen
	iframeri.strmrdrfrodg.xyz/levelselector.ee341b104a9c406b73001afe57d16f18.js	28 kB	2023-03-07	2023-03-10
Pretty URL iframeri.strmrdrfrodg.xyz/levelselector.ee341b104a9c406b73001afe57d16f18.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-03-10 22:48:33 Times Seen1 Hash ee341b104a9c406b73001afe57d16f18 e3158ab8724ee86369f58e8c10ea72a6a45d2180 19eadee526ee2f17dc7fcf8c426945cf9258462c489de75d0537637146430c40 Loading...

	static.cbox.ws/jsc/jsc_10_1662968291.js	78 kB	2023-03-07	2024-04-25
Pretty URL static.cbox.ws/jsc/jsc_10_1662968291.js IP 172.67.128.112 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:13:53 Last Seen2024-04-25 09:38:45 Times Seen265 Hash 313170096fa29b6180e803ea83b88b35 92a6a7211b5ab93f552e30a56983e6bfb4f480b7 ee9be91699ff4cf58c547b83514c18568a274bfa1a5e63726714798cf33fc4a0 Loading...

	www.selcuksportshd195.xyz/score_table.php	1.8 kB	2023-03-07	2023-11-11
Pretty URL www.selcuksportshd195.xyz/score_table.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-11-11 21:37:31 Times Seen18 Hash 7fb315d37befefd6692b5ed7ce7ad38f c9897f247e4eb44543ba1f7cee40be19f319c2ad 7ea89249c52d5e6ff3e2171104dd28923e487cc12f6aa6c901de497a89f527ad Loading...

	unpkg.com/swiper/swiper-bundle.min.js	144 kB	2023-03-07	2024-03-28
Pretty URL unpkg.com/swiper/swiper-bundle.min.js IP 104.16.123.175 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:16:05 Last Seen2024-03-28 09:53:23 Times Seen60 Hash 667a35734e82f711aa168dbc5011699b 25e89860e9aa0298a439a0bda4b3d0088c30aa10 4b371923804cb98c5b848471f8b716055d223cd8c331bc2bd21ce87a1767dfa9 Loading...

	code.jquery.com/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-04-26
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-26 06:29:14 Times Seen261559 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	iframeri.strmrdrfrodg.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd186.xyz%2Fimg%2Fmadrid-wp2.jpg	351 B	2023-03-07	2024-04-07
Pretty URL iframeri.strmrdrfrodg.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd186.xyz%2Fimg%2Fmadrid-wp2.jpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-04-07 18:56:44 Times Seen34 Hash 3278ffab81184f4040fce884245bb4a6 4cecfbee2dadddf41f31f6f23b7a7f7e0fadf548 d8052f37f7eac83641c7b45c211ed7484e615867cf9981882ac882647ba89e73 Loading...

	iframeri.strmrdrfrodg.xyz/jquery.220afd743d9e9643852e31a135a9f3ae.js	88 kB	2023-03-07	2024-04-26
Pretty URL iframeri.strmrdrfrodg.xyz/jquery.220afd743d9e9643852e31a135a9f3ae.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-26 06:27:26 Times Seen95552 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	iframeri.strmrdrfrodg.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd186.xyz%2Fimg%2Fmadrid-wp2.jpg	1.1 kB	2023-03-08	2023-03-08
Pretty URL iframeri.strmrdrfrodg.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd186.xyz%2Fimg%2Fmadrid-wp2.jpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:33:31 Last Seen2023-03-08 05:33:31 Times Seen1 Hash 2a923bfd514dc8cd33d972d02f7ae1b2 2bd292d36960d833be991c511b73c11860e180c5 86ee287a35cc863acb8a95ebe5ff4804854b4ca40eebb5f38a1bcb7629cbec8c Loading...

	iframeri.strmrdrfrodg.xyz/clappr.10a0c239c01882665a0bd2e1d8ea3493.js	525 kB	2023-03-07	2023-03-10
Pretty URL iframeri.strmrdrfrodg.xyz/clappr.10a0c239c01882665a0bd2e1d8ea3493.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:13 Last Seen2023-03-10 22:48:33 Times Seen1 Hash 10a0c239c01882665a0bd2e1d8ea3493 4a33359e3d9cdb1c72953cb135876bfe283ee8e0 15aee3d7a1994abe56af8cba69725fca340f6b0067bfe245fcb5735feb65233c Loading...

	iframeri.strmrdrfrodg.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd186.xyz%2Fimg%2Fmadrid-wp2.jpg	713 B	2023-03-07	2023-03-10
Pretty URL iframeri.strmrdrfrodg.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd186.xyz%2Fimg%2Fmadrid-wp2.jpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-03-10 10:25:31 Times Seen1 Hash 364d2309128583ee71371599b8310207 eb9b82104b8e074355217736bddf4b0bb8539198 3f545095a21006e01315df726656361b8af86423e4d1dff06c76eecbe77b415c Loading...

	iframeri.strmrdrfrodg.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd186.xyz%2Fimg%2Fmadrid-wp2.jpg	276 B	2023-03-08	2023-03-08
Pretty URL iframeri.strmrdrfrodg.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd186.xyz%2Fimg%2Fmadrid-wp2.jpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:33:31 Last Seen2023-03-08 05:33:31 Times Seen1 Hash baa7919de56bd9c0d5b50f476080c904 fd3be4800f9da76cf957e90d64bd79ecfc557d72 5afecb7cb6985e3aa88f8a597290b6414e6c68a417b7c6b96ddc4686fe40c7f3 Loading...

	www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl	3.0 kB	2023-03-08	2023-04-05
Pretty URL www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl IP 104.21.1.254 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:33:31 Last Seen2023-04-05 02:00:59 Times Seen2 Hash f1c28eafa2ac1c766b4f74f9863912fa 68eab6a28dd95e18aa0477c69bbf7427b2d5c030 1232c942de84482d8b8479b3a6af33a1f8c00c7b377332f828f1730c7ead798a Loading...

	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL ssl.google-analytics.com/ga.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1	217 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:33:31 Last Seen2023-03-08 05:33:31 Times Seen1 Hash 524bc1d62b267e3c64dc6fc0b0d1905c c5eb05a91c7b6ef6b4b653d1b465afef57eb2191 786c27418b637a253880b07595980aa85a7230aa14807ad1045de797a6ea9930 Loading...

	www.selcuksportshd195.xyz/score_table.php	668 B	2023-03-07	2023-11-11
Pretty URL www.selcuksportshd195.xyz/score_table.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-11-11 21:37:31 Times Seen33 Hash 86ed25cb1d4d4ff8bb15140abdbb9243 37832a89643256ed66fca0bdaa489b9b9d4e72eb a014a425707ff2bb2e4e50c81bf8db1022ffa1cddb182420826744f9e771af0b Loading...

	iframeri.strmrdrfrodg.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd186.xyz%2Fimg%2Fmadrid-wp2.jpg	522 B	2023-03-07	2023-04-05
Pretty URL iframeri.strmrdrfrodg.xyz/index.php?id=601#poster=https%3A%2F%2Fwww.selcuksportshd186.xyz%2Fimg%2Fmadrid-wp2.jpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-04-05 02:00:58 Times Seen4 Hash dacc5f96cbf29799d16f783bcf6d1e90 5345e0d5ce261f9708260689e107ee22eb84e0c4 cc32bcf7343686a50e65db8265d597b4ff2d54df416aa8a172820edaebc0fd5f Loading...

	js.rfp.fout.jp/rfp-infeed.js	55 kB	2023-03-07	2023-04-26
Pretty URL js.rfp.fout.jp/rfp-infeed.js IP 23.32.107.182 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:13 Last Seen2023-04-26 20:59:24 Times Seen14 Hash c79747350e311d848933ced8269602a0 a0bd60105cca6d0be757a969b81de64d9dc2c7f0 c9ef9b71a636842dd1bca19028eaefc68e38d9c6cf566dabdbc6252012d9dfb0 Loading...

	www.trtspor.com.tr/static/js/jquery.md5.js	9.6 kB	2023-03-07	2024-01-29
Pretty URL www.trtspor.com.tr/static/js/jquery.md5.js IP 85.111.24.216 ASN #9121 Turk Telekom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-01-29 15:36:01 Times Seen123 Hash c629663d7fe3432af0760b26d4b546e7 0abc4b9564d71cf8d23b7f5b661552092c8e7d67 41f41aa3f32ea20a820c36488c40e2acb8f022c35d91c69a1d1c75e63edebf54 Loading...

	www.selcuksportshd195.xyz/score_table.php	44 B	2023-03-07	2023-11-11
Pretty URL www.selcuksportshd195.xyz/score_table.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-11-11 21:37:31 Times Seen33 Hash 9b7ce9620d11927a4b704f33cc9499c1 b6908443a4a80d46ce096435c6bfb46c35fb1f7a 69fd2b75a0f349d3363bd1dddb0a0663cbed080a536756cbcdfb415e9e44c5b0 Loading...

	www.selcuksportshd195.xyz/score_table.php	118 B	2023-03-07	2023-11-11
Pretty URL www.selcuksportshd195.xyz/score_table.php IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-11-11 21:37:31 Times Seen29 Hash c1a007396cbb4c009724961fb1cb3056 f1d81b84b3f2457fc07db734a9f60af70ef760f9 d5d1fb94e9801601b863470dd032bf887e49490ea56fd4c1c618488cc48d3eb0 Loading...

	www.selcuksportshd195.xyz/	139 B	2023-03-07	2023-11-11
Pretty URL www.selcuksportshd195.xyz/ IP 104.21.86.82 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2023-11-11 16:54:52 Times Seen30 Hash 9192ef00ea2906eb09a299ca8bd018c8 8508aef23cc21430ec4e99654f12a1af8198ace1 d814e6b0bd9e3d7e6b605040637d409b7f660090922eee154a778abc1d67cddb Loading...

	www.selcuksportshd195.xyz/js/index.js?v=4	4.2 kB	2023-03-07	2024-04-07
Pretty URL www.selcuksportshd195.xyz/js/index.js?v=4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-04-07 18:56:45 Times Seen53 Hash 289f10ed17876ef7232ebecdddfa6ab3 02cfd800378cd3bf109ab5593ed53c758fc3aa19 8cd7b6a72d014e026397b3abddb35957d642c28eec241191c9dcb2c82414a2d7 Loading...

	iframeri.strmrdrfrodg.xyz/keslanorospucocugu.648326f615c9f5639be2b6316045d329.js	9.7 kB	2023-03-08	2023-03-08
Pretty URL iframeri.strmrdrfrodg.xyz/keslanorospucocugu.648326f615c9f5639be2b6316045d329.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:33:31 Last Seen2023-03-08 05:33:31 Times Seen1 Hash 648326f615c9f5639be2b6316045d329 1b92e5d30fa4797c954c66b8b503d503cf7ce34e 336c64c54dbcd1449441817eac62ffc5dc3dd9a093af30ef5caa9f4e2efc64ef Loading...

	www.trtspor.com.tr/static/js/jquery.js	93 kB	2023-03-07	2024-01-29
Pretty URL www.trtspor.com.tr/static/js/jquery.js IP 85.111.24.216 ASN #9121 Turk Telekom Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:02 Last Seen2024-01-29 22:49:15 Times Seen79 Hash 4ec9f95ecc0911c41abb247dfff887b4 022b0ffc6dd4a825ff56d9cfaf69f75c5a7210d4 7200a2f4c45a1c5f9049777223c7361afb33b36945e97858d0ba4e49ea85cf0b Loading...

HTTP Transactions (68)

URL IP Response Size

selcuksportshd194.xyz/

104.21.16.39

301 Moved Permanently

0 B

URL HTTP/1.1
selcuksportshd194.xyz/
IP
104.21.16.39:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: selcuksportshd194.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Oct 2022 08:05:04 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 04 Oct 2022 09:05:04 GMT
Location: https://selcuksportshd194.xyz/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=33GeQ4hzNxKWtatb8hlguSjHCSzbIzyDtVbmqQkfgP3e1zvhdD4McrackFwRfgx7PIYPplN9KVSZXa9CCgikkR%2BVTvtZ1tzp69ZlnAJxwo7sHgVFv%2FnJG1LqW8X3NtMKiFApySNvxFs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 754c690d1f50b51b-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2631
Expires: Tue, 04 Oct 2022 08:48:55 GMT
Date: Tue, 04 Oct 2022 08:05:04 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

143.204.55.115

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 07:29:42 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 7KjbdjJPyW8wTQwxxTQeXJ-EZPmMvMhcxicZ_jURhtTR80YJpmX8pA==
Age: 2122

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.35

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.35:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Kk27FVW90oE7XfhlCtI9J4x3aJ1Qc783K_ZWTdpoWHivSWuVbuUhHA==
age: 9397
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 08:05:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.115

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 07:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 08:26:00 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: B-vvwmTB3hSM3M1_1u__gqInCvE-lm3X8eT6owzgXL54N_KeZ6sT8A==
Age: 2131

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
e418f268ada9b44478147ebb56887aa0
91a2298e9edbafb13cdd0abf9ac7ccc96782f04f
668b25dccb198a6aeb50632701646424ecf7793fe46ce8056cb69118a04f349a

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "668B25DCCB198A6AEB50632701646424ECF7793FE46CE8056CB69118A04F349A"
Last-Modified: Mon, 03 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 04 Oct 2022 14:05:04 GMT
Date: Tue, 04 Oct 2022 08:05:04 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
e418f268ada9b44478147ebb56887aa0
91a2298e9edbafb13cdd0abf9ac7ccc96782f04f
668b25dccb198a6aeb50632701646424ecf7793fe46ce8056cb69118a04f349a

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "668B25DCCB198A6AEB50632701646424ECF7793FE46CE8056CB69118A04F349A"
Last-Modified: Mon, 03 Oct 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 04 Oct 2022 14:05:04 GMT
Date: Tue, 04 Oct 2022 08:05:04 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

1.9 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
1.9 kB (1940 bytes)
Hash
78a1ab55cf837dc55dc2956d0f5cc2ec
8b316972c75f1d0b780d7072b3cb0216bb8428df
643150ad6b76d05bf383897740470ccbe2e37d5098217f1cceed168af0b18c15

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2153
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:05 GMT
Last-Modified: Tue, 04 Oct 2022 07:29:12 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

code.jquery.com/jquery-3.6.0.min.js

69.16.175.10

200 OK

31 kB

URL HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664870705.dop227.sk1.t,1664870705.cds259.sk1.hn,1664870705.cds210.sk1.c
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1

142.250.74.168

200 OK

76 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (21348)
Size
76 kB (75674 bytes)
Hash
21d68db982905d42334447332a4e8255
1096c5e1feba70f46d4f126cefd017014d1726aa
b466d50fd766f4859f66d38c3db9a532053ab32007731a997839e9f64adb7184

HTTP Headers

GET /gtag/js?id=G-CVN78DGZN1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 08:05:05 GMT
expires: Tue, 04 Oct 2022 08:05:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75674
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

1.9 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
1.9 kB (1940 bytes)
Hash
78a1ab55cf837dc55dc2956d0f5cc2ec
8b316972c75f1d0b780d7072b3cb0216bb8428df
643150ad6b76d05bf383897740470ccbe2e37d5098217f1cceed168af0b18c15

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

34.216.192.228

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.216.192.228:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YZThRghMaf0q7Rn3a//0bg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xgxEM4eIhYeNPK3nNuF+LddyQOU=

fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2

216.58.207.195

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12372, version 1.0\012- data
Size
12 kB (12372 bytes)
Hash
0ef99cf07a2a261ab43d5dc1937ffb27
bd39f9cd13ef2a6f912dcba8fa916fc67b4a19d9
557f6d0883db85be712c3a77baa38875ddf99ecbdfd6fec98e5c0b1f7a0e1532

HTTP Headers

GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd195.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:28:25 GMT
expires: Thu, 28 Sep 2023 19:28:25 GMT
cache-control: public, max-age=31536000
age: 477400
last-modified: Wed, 27 Apr 2022 16:19:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2

216.58.207.195

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11796, version 1.0\012- data
Size
12 kB (11796 bytes)
Hash
8d4079c3aa4f01e6d9bbd4f1bbcdf114
52ab47c062d0bfdbd34dbd31784008bd0e4c4227
d5c1172f24f4f49f780c65cf5be897527fd08f3662a2ba8db0cfe0057d92e367

HTTP Headers

GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffHjDGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd195.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11796
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:28:36 GMT
expires: Thu, 28 Sep 2023 19:28:36 GMT
cache-control: public, max-age=31536000
age: 477389
last-modified: Wed, 27 Apr 2022 15:47:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2

216.58.207.195

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12136, version 1.0\012- data
Size
12 kB (12136 bytes)
Hash
5d7c6bb8fd4fc992c54e596ab7433d5d
35fd6e4c125235cb7f9aa6e297da4b64ae45b06a
dd870101ad4e95d687a2eb734707b0dd7c20808f76d7be77a71a5d13cf99401c

HTTP Headers

GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd195.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:28:29 GMT
expires: Thu, 28 Sep 2023 19:28:29 GMT
cache-control: public, max-age=31536000
age: 477396
last-modified: Wed, 27 Apr 2022 15:39:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2

216.58.207.195

200 OK

6.8 kB

URL HTTP/2
fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 6776, version 1.0\012- data
Size
6.8 kB (6776 bytes)
Hash
ca9745459de645cbea7eb8a9f671cac2
8156e13525f20c77e0d52e1850dac48bc0dffc7c
05e415164465aa7031a976c10aeb71e4fa19bb4958104c769e32c47f9f05c1a1

HTTP Headers

GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd195.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 23:47:59 GMT
expires: Thu, 28 Sep 2023 23:47:59 GMT
cache-control: public, max-age=31536000
age: 461826
last-modified: Wed, 27 Apr 2022 16:14:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

js.rfp.fout.jp/rfp-infeed.js

23.32.107.182

200 OK

15 kB

URL HTTP/2
js.rfp.fout.jp/rfp-infeed.js
IP
23.32.107.182:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (54214)
Size
15 kB (14823 bytes)
Hash
a2a27174d303ab04fb5b1e166d0b054f
8fe315b365e69ca138eed86d86ca4795319d1b64
caed7a1742ccc02bf163bcdc499154e30d92bb555ee7d343e1d60e0b8cc10b97

HTTP Headers

GET /rfp-infeed.js HTTP/1.1
Host: js.rfp.fout.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdtLfaO18vBHFGVOTELsLYxwbSDnpmY8nJZx3pj6DGCwNguDMBQuj_YINW4ReKbMzbeeNDJbH_OzVEgKteAumTMc0A
last-modified: Mon, 05 Sep 2022 02:06:28 GMT
etag: "a2a27174d303ab04fb5b1e166d0b054f"
x-goog-generation: 1662343588239694
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 14823
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=1JnjJg==, md5=oqJxdNMDqwT7Wx4WbQsFTw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 14823
server: UploadServer
cache-control: public, max-age=1800
expires: Tue, 04 Oct 2022 08:35:05 GMT
date: Tue, 04 Oct 2022 08:05:05 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2

cbox.im/i/WUfMg.c100.jpg

104.21.87.96

200 OK

3.5 kB

URL HTTP/2
cbox.im/i/WUfMg.c100.jpg
IP
104.21.87.96:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 100x100, components 3\012- data
Size
3.5 kB (3504 bytes)
Hash
68166df8741d598c745061ea51e37ab0
09034b09dbf87f5963cf454f28ee0e8d9948556e
1002b3d3e4a7a1edd01d6a1eb0d571b6e1506225a6e40e5956465ef5c9c590f7

HTTP Headers

GET /i/WUfMg.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: image/jpg
x-cached: 1
expires: Mon, 17 Oct 2022 17:17:25 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1435660
last-modified: Sat, 17 Sep 2022 17:17:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2ZlD2GRLL3P3VvbZDbaqG6ke2CMRnabZ66joO3N%2BCdePzsV68AW5znnVioZBOwGugkBJX9l9Nj%2B4kD9gSeMrdheTVWUwptya1iIyrvCVzxPiY16%2Bay%2FVCE9a"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754c6916ea68b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c9b949cbb6307d5c53df62314e146e3a
85dc323c8f3a21615ec75043c4e51fa72e8817a4
ee6d471613665e249e8ef2d0119445ce03893e46107ed8d6fc1cf38bae652c8f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EE6D471613665E249E8EF2D0119445CE03893E46107ED8D6FC1CF38BAE652C8F"
Last-Modified: Tue, 04 Oct 2022 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16505
Expires: Tue, 04 Oct 2022 12:40:10 GMT
Date: Tue, 04 Oct 2022 08:05:05 GMT
Connection: keep-alive

www.trtspor.com.tr/static/js/jquery.js

85.111.24.216

200 OK

93 kB

URL HTTP/2
www.trtspor.com.tr/static/js/jquery.js
IP
85.111.24.216:0
ASN
#9121 Turk Telekom

File type
Unicode text, UTF-8 text, with very long lines (65479)
Size
93 kB (92794 bytes)
Hash
4ec9f95ecc0911c41abb247dfff887b4
022b0ffc6dd4a825ff56d9cfaf69f75c5a7210d4
7200a2f4c45a1c5f9049777223c7361afb33b36945e97858d0ba4e49ea85cf0b

HTTP Headers

GET /static/js/jquery.js HTTP/1.1
Host: www.trtspor.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: application/javascript
content-length: 92794
last-modified: Sat, 12 Oct 2013 15:24:23 GMT
etag: "525969a7-16a7a"
expires: Tue, 04 Oct 2022 08:35:05 GMT
cache-control: max-age=1800
x-node: script
x-worker: 11852
accept-ranges: bytes
X-Firefox-Spdy: h2

www.trtspor.com.tr/static/js/jquery.md5.js

85.111.24.216

200 OK

9.6 kB

URL HTTP/2
www.trtspor.com.tr/static/js/jquery.md5.js
IP
85.111.24.216:0
ASN
#9121 Turk Telekom

File type
ASCII text
Size
9.6 kB (9606 bytes)
Hash
c629663d7fe3432af0760b26d4b546e7
0abc4b9564d71cf8d23b7f5b661552092c8e7d67
41f41aa3f32ea20a820c36488c40e2acb8f022c35d91c69a1d1c75e63edebf54

HTTP Headers

GET /static/js/jquery.md5.js HTTP/1.1
Host: www.trtspor.com.tr
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: application/javascript
content-length: 9606
last-modified: Mon, 16 Sep 2019 09:15:34 GMT
etag: "5d7f52b6-2586"
expires: Tue, 04 Oct 2022 08:35:05 GMT
cache-control: max-age=1800
x-node: script
x-worker: 11852
accept-ranges: bytes
X-Firefox-Spdy: h2

whos.amung.us/swidget/uu19fwdxlo.png

172.67.8.141

307 Temporary Redirect

18 kB

URL HTTP/2
whos.amung.us/swidget/uu19fwdxlo.png
IP
172.67.8.141:0
ASN
#13335 CLOUDFLARENET

File type
gzip compressed data, max compression\012- data
Size
18 kB (17663 bytes)
Hash
90c1c4104057f348b4fc3e85b4f7c672
2f186c2a21a95b876d8b19bf27dc8ce3e33907b5
3b74119a322e1f1b668905ada09ebcc26651b816ec6796381ace220724dabc48

HTTP Headers

GET /swidget/uu19fwdxlo.png HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://iframeri.strmrdrfrodg.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 307 Temporary Redirect
date: Tue, 04 Oct 2022 08:05:06 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/00/93.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 754c69175b48b4ee-OSL
X-Firefox-Spdy: h2

widgets.amung.us/small/00/93.png

172.67.8.141

200 OK

321 B

URL HTTP/2
widgets.amung.us/small/00/93.png
IP
172.67.8.141:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 80 x 15, 8-bit colormap, non-interlaced\012- data
Size
321 B (321 bytes)
Hash
98d83b9ccf899281b4d5e9fdc6f472b6
ee3d8428f9d4398bc854e2aee8cbeb8069cbc062
3783b6555760ba1c6ddb1e9d604bdbd2dc02bdf19709dfc8424e10850a89101c

HTTP Headers

GET /small/00/93.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://iframeri.strmrdrfrodg.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:06 GMT
content-type: image/png
content-length: 321
last-modified: Sun, 13 Jun 2010 09:48:29 GMT
etag: "4c14a96d-141"
expires: Thu, 15 Sep 2022 18:46:36 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 1689510
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754c69198d99b4ee-OSL
X-Firefox-Spdy: h2

ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1073022327&utmhn=www.selcuksportshd195.xyz&utmcs=UTF-8&utmsr=1280x1024&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Spor%20Toto%20S%C3%BCper%20Lig%20Puan%20Durumu&utmhid=1442215368&utmr=0&utmp=%2Fscore_table.php&utmht=1664870705750&utmac=UA-26291030-6&utmcc=__utma%3D50348075.591353893.1664870705.1664870706.1664870706.1%3B%2B__utmz%3D50348075.1664870706.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=146495428&utmredir=1&utmu=qAAgAAAAAAAAAAAAAAABAAAE~

142.250.74.40

302 Found

10 kB

URL HTTP/2
ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1073022327&utmhn=www.selcuksportshd195.xyz&utmcs=UTF-8&utmsr=1280x1024&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Spor%20Toto%20S%C3%BCper%20Lig%20Puan%20Durumu&utmhid=1442215368&utmr=0&utmp=%2Fscore_table.php&utmht=1664870705750&utmac=UA-26291030-6&utmcc=__utma%3D50348075.591353893.1664870705.1664870706.1664870706.1%3B%2B__utmz%3D50348075.1664870706.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=146495428&utmredir=1&utmu=qAAgAAAAAAAAAAAAAAABAAAE~
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
data
Size
10 kB (10122 bytes)
Hash
b2836bc8678f78b4cd5f9fe4744487c0
68ac28f31e0b4221a9f5944d7451b9b6e946f64e
f211d0fae92dcbdf534976dd47d2632f46b3d1fab8306c87644c57af461fbc46

HTTP Headers

GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1073022327&utmhn=www.selcuksportshd195.xyz&utmcs=UTF-8&utmsr=1280x1024&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Spor%20Toto%20S%C3%BCper%20Lig%20Puan%20Durumu&utmhid=1442215368&utmr=0&utmp=%2Fscore_table.php&utmht=1664870705750&utmac=UA-26291030-6&utmcc=__utma%3D50348075.591353893.1664870705.1664870706.1664870706.1%3B%2B__utmz%3D50348075.1664870706.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=146495428&utmredir=1&utmu=qAAgAAAAAAAAAAAAAAABAAAE~ HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: https://stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327
access-control-allow-origin: *
date: Tue, 04 Oct 2022 08:05:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 369
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

unpkg.com/swiper@8.4.2/swiper-bundle.min.js

104.16.123.175

200 OK

73 kB

URL HTTP/2
unpkg.com/swiper@8.4.2/swiper-bundle.min.js
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65278)
Size
73 kB (72763 bytes)
Hash
047d49808254cd5802322363b071e3dc
996ad632233a010ec234fc38e69544fac5ce55f7
9afc981688b59db1be215ce4315c2c93624b3532c517fb2ceebd6fba5fb14ea8

HTTP Headers

GET /swiper@8.4.2/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd195.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"230d2-JeiYYOmqApikOaC9pLPQCIwwqhA"
via: 1.1 fly.io
fly-request-id: 01GD0KFPJM61T37QSTSFQ0TJ2D-fra
cf-cache-status: HIT
age: 1624182
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754c6912efa4b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327

74.125.131.154

302 Found

367 B

URL HTTP/2
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327
IP
74.125.131.154:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
367 B (367 bytes)
Hash
3290795afd0be38200c6759c1c3e278a
cf0557e355ecf97616fdf06edc0795b3c17e0910
184d6a040dfed11b711746727d41f2a961a65495028e84a4eff3f2aacccfad26

HTTP Headers

GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd195.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 04 Oct 2022 08:05:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 367
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-CVN78DGZN1&gtm=2oe9s0&_p=1188538086&cid=591353893.1664870705&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664870705&sct=1&seg=0&dl=https%3A%2F%2Fwww.selcuksportshd195.xyz%2F&dt=SelcukSportsHD%20%7C%20Ma%C3%A7%20Yay%C4%B1nlar%C4%B1%2C%20Belgesel%2C%20Sinema%20ve%20Daha%20Fazlas%C4%B1&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-CVN78DGZN1&gtm=2oe9s0&_p=1188538086&cid=591353893.1664870705&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664870705&sct=1&seg=0&dl=https%3A%2F%2Fwww.selcuksportshd195.xyz%2F&dt=SelcukSportsHD%20%7C%20Ma%C3%A7%20Yay%C4%B1nlar%C4%B1%2C%20Belgesel%2C%20Sinema%20ve%20Daha%20Fazlas%C4%B1&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-CVN78DGZN1&gtm=2oe9s0&_p=1188538086&cid=591353893.1664870705&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664870705&sct=1&seg=0&dl=https%3A%2F%2Fwww.selcuksportshd195.xyz%2F&dt=SelcukSportsHD%20%7C%20Ma%C3%A7%20Yay%C4%B1nlar%C4%B1%2C%20Belgesel%2C%20Sinema%20ve%20Daha%20Fazlas%C4%B1&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.selcuksportshd195.xyz
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.selcuksportshd195.xyz
date: Tue, 04 Oct 2022 08:05:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b45b15bb651cc185ea82d91a51f06b5a
44987727be72bb12b4e4fc4fac50145835512750
f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
53e0e5a2455fedae0d6308f91d41e445
237c2856f8a89ae3673ea909164557d65268c463
ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327

142.250.74.164

302 Found

0 B

URL HTTP/2
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd195.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 08:05:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327&slf_rd=1&random=4054785899
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e13df37c7a0102aa69d97512e4f3bad4
2c3019bef2f4bc34b3f3dc212b30d4fad04f8b37
cfbc8bfd83a8eb63bf5d189e398e1373222f1d1bde223fba70e3c7b560c708aa

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327&slf_rd=1&random=4054785899

142.250.74.3

200 OK

42 B

URL HTTP/2
www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327&slf_rd=1&random=4054785899
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=591353893.1664870705&jid=146495428&_v=5.7.2&z=1073022327&slf_rd=1&random=4054785899 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd195.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 08:05:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e13df37c7a0102aa69d97512e4f3bad4
2c3019bef2f4bc34b3f3dc212b30d4fad04f8b37
cfbc8bfd83a8eb63bf5d189e398e1373222f1d1bde223fba70e3c7b560c708aa

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:05:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
738d783c8406fd773b069cc90fd32306
f6ceb36424b22d2b79d95bbdd055b5fac5ce94f6
30ed576c18ba045bb140b0394316840242d387e0b16ed028696442ab32b935c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "30ED576C18BA045BB140B0394316840242D387E0B16ED028696442AB32B935C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5374
Expires: Tue, 04 Oct 2022 09:34:40 GMT
Date: Tue, 04 Oct 2022 08:05:06 GMT
Connection: keep-alive

istatistik.trthaber.com/service/api/stats/all

3.120.109.111

200 OK

15 B

URL HTTP/1.1
istatistik.trthaber.com/service/api/stats/all
IP
3.120.109.111:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
15 B (15 bytes)
Hash
0c776997933eb60833b37beaf43814c8
bff63526eb02853c6b414ccfb4d00ac9ca283930
3d23d39a30bb7323f8ccfd64c52cf286138fba4f83e78f7edcf66703b7c23aaa

HTTP Headers

POST /service/api/stats/all HTTP/1.1
Host: istatistik.trthaber.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 137
Origin: https://www.selcuksportshd195.xyz
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 04 Oct 2022 08:05:06 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 15
Connection: keep-alive
Access-Control-Allow-Origin: *

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21212
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 08:05:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21212
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 08:05:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21212
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 08:05:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21212
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 08:05:06 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9917 bytes)
Hash
d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 36552
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.8 kB (2761 bytes)
Hash
fb7d0bdcd7cf60e39ee64d92f5694384
0f0c8f45a22563c3c87ab7ec6279fabc96cdfb1f
a6dd1fade6b47e539dd42ed07d2cf58179db10fe946809f201889a1f9c4ef282

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F840ae91d-bdbe-4236-ad14-27b04e390b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2761
x-amzn-requestid: 00090151-da40-48e8-98f0-a0c579fe6d1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI_EgdIAMFc0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556c-06ceb1750213c44130848bf2;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -VI34uA9q6D2_lYs0LtkmZOKZrBKQsYX9plMuw8zwnCt_3b2ZZ1Uxg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:46 GMT
age: 36560
etag: "0f0c8f45a22563c3c87ab7ec6279fabc96cdfb1f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fcdf5f2-fb82-429f-a6f0-8f79d8aa9106.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9455 bytes)
Hash
50556325e5a38a5dd7802b1391815bcb
cf021352d993967e78552b275424ff139e4ef66c
96fd2e848a45d071e334a8d08c8b89215f80f01f947af6da2efaee72dd16914c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4fcdf5f2-fb82-429f-a6f0-8f79d8aa9106.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9455
x-amzn-requestid: c7e1aa21-0afd-4329-a886-ca52e1a30c7e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqJXHLUIAMFU1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5708-1905710834041431314b11be;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:41:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: D-2NszpZ31D2YAbZRcPdqN3zZ2ScANt6bokfSbANgnsXBoTF2d__AQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:08:09 GMT
age: 35817
etag: "cf021352d993967e78552b275424ff139e4ef66c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6315 bytes)
Hash
206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 12133
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481896f6-cdf2-442f-aea2-dfa2c7c45f77.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8738 bytes)
Hash
d5745f8e3528f481ae2acf05b4abd3d0
d830b94bea3b5698e5192a7ea05f90b25b2f9cc9
313e11915f0869a608c830637b9dfd236ff28a8fb3354c3cc8748816b0ee18b0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481896f6-cdf2-442f-aea2-dfa2c7c45f77.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8738
x-amzn-requestid: ede4db78-f2ab-4226-a855-dc7373978dfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTFrBoAMFR3w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-2776543e774f0016329ddade;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: c9bu34_KooZB6Z4d8xXGnsd9jZ7lPl3yIo9II1Dm_2YVId3l9-7n-w==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:46 GMT
age: 36560
etag: "d830b94bea3b5698e5192a7ea05f90b25b2f9cc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92f8209d-8dc3-45f5-bfb8-151edb23e30c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (4996 bytes)
Hash
126f1f4538e5e4228a4f36d3b02e9d62
16f2fe758de4ebf7d654cb9669c73f030eb1fdef
594210beaabbc35a37d5d648836277f950e46b2d4c2eab2abde2d33beafdff37

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92f8209d-8dc3-45f5-bfb8-151edb23e30c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4996
x-amzn-requestid: 2f13b6ea-4426-4b3f-81be-5d8ca0278ce7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcrokFkroAMF0XA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5969-421b4993676a68df2b43ad65;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:51:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0s9K75q7TzjbFBJ3vviHLcItPRb6CP2URJRYs2k9JmppyWHKvzv5hg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 35647
etag: "16f2fe758de4ebf7d654cb9669c73f030eb1fdef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cbox.im/i/4UrBC.c100.jpg

104.21.87.96

200 OK

3.8 kB

URL HTTP/2
cbox.im/i/4UrBC.c100.jpg
IP
104.21.87.96:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 100x100, components 3\012- data
Size
3.8 kB (3830 bytes)
Hash
e27ebbbf1e763dd36e8a50a44a3c86aa
adfefa2648bd04842307ac4cc58e76f6a19d224f
46137da45a55748530ed6c6553c841ef2617fcc54f4acb354759549791524f4c

HTTP Headers

GET /i/4UrBC.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: image/jpg
x-cached: 1
expires: Mon, 17 Oct 2022 17:17:25 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1435660
last-modified: Sat, 17 Sep 2022 17:17:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sYHPzkWntZNK5utnV%2FL9g18Z41s2%2FqKZqeu0d8NyarYlfBMzwpMC2208zjdEq%2BXF1KQAnZNyJHBwzAgOqYBAfhQs3dloW5ZwiVHzikSaJuEVYyfQgdJytGC0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754c6916ea71b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

344 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
344 B (344 bytes)
Hash
661e2aa536345bf37f7929d0ac0ddfb7
5e747e18827b74de97f6def16aede9b7a0450597
418e756f83f56c1c3e8efdfd576e43cfe0ebf93ba17dc72d8fb3382958ccdc9a

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "418E756F83F56C1C3E8EFDFD576E43CFE0EBF93BA17DC72D8FB3382958CCDC9A"
Last-Modified: Sun, 02 Oct 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 04 Oct 2022 14:05:07 GMT
Date: Tue, 04 Oct 2022 08:05:07 GMT
Connection: keep-alive

www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl&sec=css&theme=2717&v=1662968291&h=ff04eb4b

104.21.1.254

200 OK

0 B

URL HTTP/2
www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl&sec=css&theme=2717&v=1662968291&h=ff04eb4b
IP
104.21.1.254:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /box/?boxid=921687&boxtag=DX8bvl&sec=css&theme=2717&v=1662968291&h=ff04eb4b HTTP/1.1
Host: www5.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: text/css;charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
expires: Tue, 10 Jan 2023 07:44:56 GMT
cache-control: public, max-age=10368000
x-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5SOo9Tw9%2BVo%2BuEg6GCCrsGXuLR83KgY9hBwpO5aEk%2BqBC5lDYjjNOZlcBg9PLz6J96JtirZfI2mDfZP8l%2BTUMXWI7Bgp%2B9rEG5HWqWmCPy6n95yf6yfiJ3uN1YirJSI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c691689550b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cbox.im/i/qFg14.c100.jpg

104.21.87.96

200 OK

0 B

URL HTTP/2
cbox.im/i/qFg14.c100.jpg
IP
104.21.87.96:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /i/qFg14.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: image/jpg
x-cached: 1
expires: Mon, 17 Oct 2022 17:17:25 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1435660
last-modified: Sat, 17 Sep 2022 17:17:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xQBGwefaa2b%2Fn6mgAVuy%2FpzqgVeMDbn2nmgCnpilMEEc%2BeGI2ix%2FSgK743tBRn22cwOaVVcwUBFU7U2R8wCS1zVdt7lBgk%2FZqJDZe%2FxT9NolgW3vZ9QAGSCK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754c6916ea75b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.cbox.ws/jsc/jsc_10_1662968291.js

172.67.128.112

200 OK

0 B

URL HTTP/2
static.cbox.ws/jsc/jsc_10_1662968291.js
IP
172.67.128.112:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /jsc/jsc_10_1662968291.js HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Origin: https://www5.cbox.ws
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: application/x-javascript
last-modified: Mon, 12 Sep 2022 07:38:20 GMT
etag: W/"631ee1ec-64a9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 1901976
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6AdWoH1ce8Smf4v%2B4mkxv7QxIOG6s8W0tYa%2BZ6ufQSBY1lIz1W3onIHddHY3wV89rrIoOSTBlMWJjbzuSc%2BSX34ChnQsUfvtNou6lItvwGizT4y7r24%2BSVPtIxbPQ6JqVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754c69175b79fac4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.selcuksportshd195.xyz/

104.21.86.82

200 OK

0 B

URL HTTP/2
www.selcuksportshd195.xyz/
IP
104.21.86.82:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: www.selcuksportshd195.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:04 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=600
x-frame-options: sameorigin
link: <./css/index.css>; as=style; rel=preload, <./js/index.js>; as=script; rel=preload
cf-cache-status: HIT
age: 320
last-modified: Tue, 04 Oct 2022 07:59:44 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NaqEkJRYN0DKeaHNHxkfi8pKO70mn8ic9OblcnB0OxfufoeB55x7eAUUYIkZmKN6dbbAsF5J4AlN3ceL7wYxkKI8FAZGMM6apTjX1e94vjjxCd4CiOxUeQwsTvikY0qgP8TkRfZZG8bBrV%2Fr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754c69116e91b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

unpkg.com/swiper/swiper-bundle.min.js

104.16.123.175

302 Found

0 B

URL HTTP/2
unpkg.com/swiper/swiper-bundle.min.js
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /swiper/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@8.4.2/swiper-bundle.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GEGZWWK9RMN072ZDG2QNRB88-fra
cf-cache-status: HIT
age: 553
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754c69129f61b4ed-OSL
X-Firefox-Spdy: h2

unpkg.com/swiper@8.4.2/swiper-bundle.min.css

104.16.123.175

200 OK

0 B

URL HTTP/2
unpkg.com/swiper@8.4.2/swiper-bundle.min.css
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /swiper@8.4.2/swiper-bundle.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd195.xyz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"4057-0841BFE4tvBlOiIZoiqn1xlbQPM"
via: 1.1 fly.io
fly-request-id: 01GD0KFM3V430TKT672V3PDVJR-fra
cf-cache-status: HIT
age: 1624185
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754c6912ef9db4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl

104.21.1.254

200 OK

0 B

URL HTTP/2
www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl
IP
104.21.1.254:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /box/?boxid=921687&boxtag=DX8bvl HTTP/1.1
Host: www5.cbox.ws
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app.selcuksportsuygulama14.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: text/html; charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
cache-control: public, max-age=60
last-modified: Tue, 04 Oct 2022 08:05:00 GMT
x-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LLH%2BkbGNU0zSeBnsleARt76oBkcVVAzNb07YQGwTHI3bq%2F7YDc3N4PrnhS5Bd87j7Mlx76p39lc6vl2Yi3%2FPmtsFu70voYSkGRX0qJv0QLUZXeS4k1o8LcVSGnCDvEw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754c6915e8b60b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cbox.im/i/JqIX7.c100.png

104.21.87.96

200 OK

0 B

URL HTTP/2
cbox.im/i/JqIX7.c100.png
IP
104.21.87.96:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /i/JqIX7.c100.png HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: image/png
expires: Sat, 29 Oct 2022 06:47:46 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 436639
last-modified: Thu, 29 Sep 2022 06:47:46 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vUmN%2Bq2BGAW79Oxu%2BDqwZpsfxbR84hWp91XbyYE8Li8arIuFoXTU7U%2FP9mCCRltLgU9H1B9zBERjA%2BLPPBWA3T9lBh4UDaa45JRnQ1jJXLQszdgIfzbHfdVw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754c6916ea6db4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

unpkg.com/swiper/swiper-bundle.min.css

104.16.123.175

302 Found

0 B

URL HTTP/2
unpkg.com/swiper/swiper-bundle.min.css
IP
104.16.123.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /swiper/swiper-bundle.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@8.4.2/swiper-bundle.min.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GEGZZKVBGPPB7M4PYX1DWJRM-fra
cf-cache-status: HIT
age: 465
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754c69129f5ab4ed-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Titillium+Web:wght@300;400;600;700&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Titillium+Web:wght@300;400;600;700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Titillium+Web:wght@300;400;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 08:05:05 GMT
date: Tue, 04 Oct 2022 08:05:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

app.selcuksportsuygulama14.xyz/app/sohbet.php?8348478324

172.67.186.81

200 OK

0 B

URL HTTP/2
app.selcuksportsuygulama14.xyz/app/sohbet.php?8348478324
IP
172.67.186.81:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /app/sohbet.php?8348478324 HTTP/1.1
Host: app.selcuksportsuygulama14.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=600
cf-cache-status: HIT
age: 528
last-modified: Tue, 04 Oct 2022 07:56:17 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qf0DQGIjZ8%2FkOiJ2zfZcZO%2BO9YnikF6PvhpBHPibU6OLVlAOl5q7mcn%2FiuBqNzFoYslWbTuCh0L9fg3rkgw7aTZuEyX84Dy%2BReWE0IqvlxJFKyGbBuDzu3iQwm7YPM99RUFMIKOM47xowcy4KBeXB0I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754c6914bc7ab512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

iframeri.strmrdrfrodg.xyz/index.php?id=601

104.21.6.254

200 OK

0 B

URL HTTP/2
iframeri.strmrdrfrodg.xyz/index.php?id=601
IP
104.21.6.254:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /index.php?id=601 HTTP/1.1
Host: iframeri.strmrdrfrodg.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd195.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:05:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-store
access-control-allow-origin: *
link: </streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css>; rel=preload; as=style, </jquery.220afd743d9e9643852e31a135a9f3ae.js>; rel=preload; rel=preload; as=script, </clappr.10a0c239c01882665a0bd2e1d8ea3493.js>; rel=preload; as=script, </levelselector.ee341b104a9c406b73001afe57d16f18.js>; rel=preload; as=script, </keslanorospucocugu.648326f615c9f5639be2b6316045d329.js>; rel=preload; as=script
x-htz-md: Md eq fullversion
x-htz-rs: Rs eq slck
x-htz-rx: Rx eq https://www.selcuksportshd195.xyz
x-htz-st: St eq MISS
x-htz-ky: Ky eq Rh https://www.selcuksportshd195.xyz Md fullversion Rs slck Rm GET Hs iframeri.strmrdrfrodg.xyz Hts iframeri.strmrdrfrodg.xyz Ur /index.php Ru /index.php?id=601 Qs id=601 rruri /index.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GqLVAv4CNkz4qjplD7hVI5%2FbYPZspOeE%2B4ytXgZVyrJOZFRusnltZvmyOoAhNbF59IIRI5WmARDfIpqZD1jhipvPtVhemKX5lF%2Fjo%2BhrmcNsA4NC%2BLIkrZTAsbctwZn8xOYhIhKEO3WL%2BlFT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754c6914be7ab505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-h2-pushed: </streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css>,</jquery.220afd743d9e9643852e31a135a9f3ae.js>,</clappr.10a0c239c01882665a0bd2e1d8ea3493.js>,</levelselector.ee341b104a9c406b73001afe57d16f18.js>,</keslanorospucocugu.648326f615c9f5639be2b6316045d329.js>
X-Firefox-Spdy: h2

selcuksportshd194.xyz/

104.21.16.39

301 Moved Permanently

0 B

URL HTTP/2
selcuksportshd194.xyz/
IP
104.21.16.39:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: selcuksportshd194.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
date: Tue, 04 Oct 2022 08:05:04 GMT
content-type: text/html
location: https://www.selcuksportshd195.xyz/
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=brFbSQehotDO1lX%2F63k227PSSUCwzRT6hVTP8L2kvmmcBGVRgaeXKKRFRDX1WyxiwKMcC3e2bIYT6IQoEidZCJjeMfpjG3Xiu4vfRmSL5E3Hu9lfNxTyay4xCfgUuzCxgnbWpKRLJms%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754c690eb936b4e8-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (24)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML