televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
200 OK 3.1 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
IP
ASN #212531 UAB Interneto vizija
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 11e5129d24e8c5e74a6e333d8b5d2bf2
1ce82d4a0c9b956d3064351b87aa89e33ccf4699
ba7a0b7b70f1c62c6643d18db8e34adf726868a8df0354fdefa3d66e2d57cf23
GET /bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:53 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=2, max=100
Transfer-Encoding: chunked
Content-Type: text/html
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3c0c53379f331e934f61070074d41035
420f6e542cbf741838566f22e475a80e2f600d21
4b7213ec107cdf1c2cd61a124453fb682ec291af0004d071105c87e2fe7528f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B7213EC107CDF1C2CD61A124453FB682EC291AF0004D071105C87E2FE7528F5"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17547
Expires: Wed, 14 Dec 2022 14:09:20 GMT
Date: Wed, 14 Dec 2022 09:16:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 555d8608594803d49eeb9581c6b70702
d01e0201e0ba0cf751ef97226620338a853bc635
2885cdac311a30161a8ac9ef8e54c788afafd4f86ed197a651fc6d8bda077908
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2885CDAC311A30161A8AC9EF8E54C788AFAFD4F86ED197A651FC6D8BDA077908"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10666
Expires: Wed, 14 Dec 2022 12:14:39 GMT
Date: Wed, 14 Dec 2022 09:16:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 14 Dec 2022 09:08:52 GMT
content-type: application/json
age: 481
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d29881eeb0456eff8cf415ad2ce64ba0
e3cfdd5f56ff88066257ec8f4726f53e3a733bd3
2cd90072f113163f976ddb8bc7017884efd3f764e7e8961b04e3ba5ec0a17d85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CD90072F113163F976DDB8BC7017884EFD3F764E7E8961B04E3BA5EC0A17D85"
Last-Modified: Mon, 12 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19456
Expires: Wed, 14 Dec 2022 14:41:09 GMT
Date: Wed, 14 Dec 2022 09:16:53 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 14 Dec 2022 09:16:53 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: H3QqdnCcXBhDD8N08/a+oT5iLMPG9/FI5O7uzQiPn3gIBqAshKYyXeHQiOF153l28iC5XTf4QPs=
x-amz-request-id: 92VS2TTFH54RTZ81
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 14 Dec 2022 08:50:26 GMT
age: 1587
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
televegas.site/bd/lot2/nl/6/css/app.css?id=2fbe2d9a9a40ca9b2489
200 OK 87 B URL HTTP/1.1 televegas.site/bd/lot2/nl/6/css/app.css?id=2fbe2d9a9a40ca9b2489
IP
ASN #212531 UAB Interneto vizija
Hash cec18c42b1b37f854c56172f839813b0
3c086f3238cc7973fd302379ad2f3e6cb7c1ed49
0d209be74734590bb522ca2c9de62f4da0fcbac457d44ed8105be57c1e04233f
Analyzer Verdict Alert fortinet Phishing
GET /bd/lot2/nl/6/css/app.css?id=2fbe2d9a9a40ca9b2489 HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:53 GMT
Server: Apache
Last-Modified: Fri, 09 Dec 2022 21:56:01 GMT
ETag: "45-5ef6c3827316f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:53 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 87
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: text/css
televegas.site/bd/lot2/nl/6/css/landers/survey-social/app.css?id=76580cf3445997fe0963
200 OK 1.5 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/css/landers/survey-social/app.css?id=76580cf3445997fe0963
IP
ASN #212531 UAB Interneto vizija
File type ASCII text, with very long lines (5616)
Hash 357eb4b0d3d0ed4b7c7719f0da32736a
6bda462baff8fd4bc08ade54ac4bee9525d26bdf
40c4715c63db6ef9a4e0bb58a10859c2a1c994b2d082104c9d93f894f43188c4
Analyzer Verdict Alert fortinet Phishing
GET /bd/lot2/nl/6/css/landers/survey-social/app.css?id=76580cf3445997fe0963 HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 09 Dec 2022 21:56:16 GMT
ETag: "1614-5ef6c390c07e0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1513
Keep-Alive: timeout=2, max=100
Content-Type: text/css
televegas.site/bd/lot2/nl/6/js/app.js?id=d75b4cfe9b4f0f2f3a56
200 OK 7.0 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/js/app.js?id=d75b4cfe9b4f0f2f3a56
IP
ASN #212531 UAB Interneto vizija
File type Unicode text, UTF-8 text, with very long lines (18544)
Hash 67f0b88bcf2295ca7a8851fadded10b9
ba81977aa07a74ac86afa064ea17cd52bcd94931
359e80373d6f825c2fa37fe51255b8c936d8e39fffc487ac5fae1e3eda1d2ed9
Analyzer Verdict Alert fortinet Phishing
GET /bd/lot2/nl/6/js/app.js?id=d75b4cfe9b4f0f2f3a56 HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 09 Dec 2022 21:56:01 GMT
ETag: "4891-5ef6c38297b60-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6990
Keep-Alive: timeout=2, max=100
Content-Type: application/javascript
televegas.site/bd/lot2/nl/6/js/landers/survey-social/app.js?id=44deb02799dd191e5122
200 OK 46 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/js/landers/survey-social/app.js?id=44deb02799dd191e5122
IP
ASN #212531 UAB Interneto vizija
File type Unicode text, UTF-8 text, with very long lines (65441)
Hash 9e999765f0181e1bdfd2320410df636a
654f0a5f31bc66dd57682aacfe64531a2af90cf0
fb664256c858d1eace1514470fec749dac8ac876ae53e2946174ca2a4bce2658
GET /bd/lot2/nl/6/js/landers/survey-social/app.js?id=44deb02799dd191e5122 HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 09 Dec 2022 21:56:16 GMT
ETag: "1fcf3-5ef6c39139963-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 46058
Keep-Alive: timeout=2, max=100
Content-Type: application/javascript
televegas.site/bd/lot2/nl/6/prize.jpg
200 OK 72 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/prize.jpg
IP
ASN #212531 UAB Interneto vizija
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 600x450, components 3\012- data
Hash 65719599ed827bfd42b75163e52c934a
489698cd4f9c751de8be82b7e2c222c277fea364
d708954c1cce0b2516aef75fa247e94dd9482ef2abadb5050f57970be9b9e83b
GET /bd/lot2/nl/6/prize.jpg HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 09 Dec 2022 21:55:27 GMT
ETag: "119b5-5ef6c362c6a21"
Accept-Ranges: bytes
Content-Length: 72117
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=100
Content-Type: image/jpeg
televegas.site/bd/lot2/nl/6/logo.png
200 OK 189 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/logo.png
IP
ASN #212531 UAB Interneto vizija
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 189 kB (188944 bytes)
Hash fb76c6c29cb4495b35816c467ca7b2a0
1bb3ac6c8a59555bc33e09dd38977ddf3b99f6e6
3b1b8780884132cc2199f5b3f48027aebc82bf1598a245ac4a45d22bc8e64660
GET /bd/lot2/nl/6/logo.png HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 09 Dec 2022 21:55:27 GMT
ETag: "2e210-5ef6c362c3759"
Accept-Ranges: bytes
Content-Length: 188944
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=100
Content-Type: image/png
televegas.site/bd/lot2/nl/6/img/profiles/african/female/3@0.25x.jpg
200 OK 2.7 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/img/profiles/african/female/3@0.25x.jpg
IP
ASN #212531 UAB Interneto vizija
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 2790f79b7e764407ae4b87a9dc30734b
30f0a1e4d30ac25108f2d0487f49944fbe630b72
8970ba9af5b39727ac25d42ab540c42ae7f58de4011fadb8efd2f5f317a8d575
GET /bd/lot2/nl/6/img/profiles/african/female/3@0.25x.jpg HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Last-Modified: Fri, 09 Dec 2022 21:56:39 GMT
ETag: "aa7-5ef6c3a69853e"
Accept-Ranges: bytes
Content-Length: 2727
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
televegas.site/bd/lot2/nl/6/img/profiles/african/male/9@0.25x.jpg
200 OK 3.1 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/img/profiles/african/male/9@0.25x.jpg
IP
ASN #212531 UAB Interneto vizija
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 4c30d4f61201b822adcfa58dbe32389c
9d9edd23a3b074135d9e043b5d1e52d8dbe29c91
19d491c137daf159170ed6d6340c33b11806347b18b2e89840989b914346d9f4
GET /bd/lot2/nl/6/img/profiles/african/male/9@0.25x.jpg HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Last-Modified: Fri, 09 Dec 2022 21:56:39 GMT
ETag: "c4a-5ef6c3a6bd317"
Accept-Ranges: bytes
Content-Length: 3146
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
televegas.site/bd/lot2/nl/6/img/profiles/african/female/6@0.25x.jpg
200 OK 2.8 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/img/profiles/african/female/6@0.25x.jpg
IP
ASN #212531 UAB Interneto vizija
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash af242991b9a56424739c63a6bd4090a7
7b41b3b2cfbbe69a865efa8863883bf029738b6e
c53bda952fa4ca1869dfb4fd7db948ef87f1a8c8f2e6633e2320465f01f0829f
GET /bd/lot2/nl/6/img/profiles/african/female/6@0.25x.jpg HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Last-Modified: Fri, 09 Dec 2022 21:56:39 GMT
ETag: "ace-5ef6c3a69d746"
Accept-Ranges: bytes
Content-Length: 2766
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
televegas.site/bd/lot2/nl/6/img/profiles/african/male/3@0.25x.jpg
200 OK 2.5 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/img/profiles/african/male/3@0.25x.jpg
IP
ASN #212531 UAB Interneto vizija
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 2c188d082f97b0a5b29c92dbaf7a9787
f2a3828b68ba4d06d450832a977c48a22360d5eb
afc758b894177d4003b5d02d80cd023429c99cfc3cd880804570d237cf6a96f0
GET /bd/lot2/nl/6/img/profiles/african/male/3@0.25x.jpg HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Last-Modified: Fri, 09 Dec 2022 21:56:39 GMT
ETag: "9d6-5ef6c3a6b65b7"
Accept-Ranges: bytes
Content-Length: 2518
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
televegas.site/bd/lot2/nl/6/img/profiles/african/female/5@0.25x.jpg
200 OK 2.0 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/img/profiles/african/female/5@0.25x.jpg
IP
ASN #212531 UAB Interneto vizija
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 732da0e5f3968ec3d9014a6bbb62c04a
5d306c8778fdcac19f03542fccaf31df1cb8a783
d3eefd5709b25e1bb1129cccb1da22e54816cb2d15a2ed4cfa045b57579a7ef8
GET /bd/lot2/nl/6/img/profiles/african/female/5@0.25x.jpg HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Last-Modified: Fri, 09 Dec 2022 21:56:39 GMT
ETag: "7a8-5ef6c3a69853e"
Accept-Ranges: bytes
Content-Length: 1960
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
televegas.site/bd/lot2/nl/6/img/prizes/iphone-13-pro-max/proof.jpg
200 OK 11 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/img/prizes/iphone-13-pro-max/proof.jpg
IP
ASN #212531 UAB Interneto vizija
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 339x450, components 3\012- data
Hash 7b6d25111cac703c404217e5181fc0de
fe3af81606435e5e126e892dbf0cd2f9a22682d3
9fcc09d45877ae7af8f5e23e9b987e7aca5fb7f40252131c0c9b0e7fb51f9283
GET /bd/lot2/nl/6/img/prizes/iphone-13-pro-max/proof.jpg HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Last-Modified: Fri, 09 Dec 2022 21:56:16 GMT
ETag: "2aad-5ef6c390fad79"
Accept-Ranges: bytes
Content-Length: 10925
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
televegas.site/bd/lot2/nl/6/img/profiles/african/male/6@0.25x.jpg
200 OK 2.2 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/img/profiles/african/male/6@0.25x.jpg
IP
ASN #212531 UAB Interneto vizija
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash d6f7b34738ae2d7bb6bb0d974edc6dcc
319d82ee7a0cf393e10a59403a0aa450518f7cd9
d6083b99e2ac26ebf0cdb2ebc474898eb4da00fda7bb6fb671faae6038ae7a27
GET /bd/lot2/nl/6/img/profiles/african/male/6@0.25x.jpg HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Last-Modified: Fri, 09 Dec 2022 21:56:39 GMT
ETag: "896-5ef6c3a6bc377"
Accept-Ranges: bytes
Content-Length: 2198
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
televegas.site/bd/lot2/nl/6/img/profiles/african/male/2@0.25x.jpg
200 OK 2.1 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/img/profiles/african/male/2@0.25x.jpg
IP
ASN #212531 UAB Interneto vizija
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 0f15632c24d4646c58f30feaa3baaa8a
a7f319366432f5a63d7f11d30b0a6c9cb6398b64
4118d09fb21a7f34160f470078f6dcba042e8a07e2b4e32de12a4dcd9c5e7da8
GET /bd/lot2/nl/6/img/profiles/african/male/2@0.25x.jpg HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Last-Modified: Fri, 09 Dec 2022 21:56:39 GMT
ETag: "805-5ef6c3a6b61cf"
Accept-Ranges: bytes
Content-Length: 2053
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
televegas.site/bd/lot2/nl/6/img/profiles/african/female/1@0.25x.jpg
200 OK 2.8 kB URL HTTP/1.1 televegas.site/bd/lot2/nl/6/img/profiles/african/female/1@0.25x.jpg
IP
ASN #212531 UAB Interneto vizija
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 128x128, components 3\012- data
Hash 9ef452251daa9ff9fbdc5fe827a35061
2cb40a02efce5fd8772f57b8e9737018fed3f9ba
355126576c7a0bdbbe771a2b039d093c855efe6805941a36456324a2076e2ce1
GET /bd/lot2/nl/6/img/profiles/african/female/1@0.25x.jpg HTTP/1.1
Host: televegas.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/bd/lot2/nl/6/?key=eyJ0aW1lc3RhbXAiOiIxNjcxMDA5MzkwIiwiaGFzaCI6Ijg0MjIxYmYxYTZiMzEwYzRhNDE0M2FmN2QwNGY0ZTk1NWU5OTE0OGMifQ==&ccc=US&ppp=PropellerAds:%20Push%20Notifications&tdom=www.mediacdnc.com&bemobdata=c=4a1999ba-d036-4861-9d36-3bdb917fee52..l=3a991add-d054-4077-a9cf-393235a218fd..a=0..b=0..r=www.mediacdnc.com
HTTP/1.1 200 OK
Date: Wed, 14 Dec 2022 09:16:54 GMT
Server: Apache
Last-Modified: Fri, 09 Dec 2022 21:56:39 GMT
ETag: "add-5ef6c3a692396"
Accept-Ranges: bytes
Content-Length: 2781
Cache-Control: max-age=604800
Expires: Wed, 21 Dec 2022 09:16:54 GMT
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.digicert.com/
200 OK 471 B IP
Hash de9e80c3bbe25e8623562110be8b8c9c
013f87db47c4ce3daf3380bc5e0ac3b1b496fe6f
792d587777c03d661a39a0593b71b3ec7611cb6e9d7a834bc79f28e6ace19692
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6259
Cache-Control: max-age=92057
Content-Type: application/ocsp-response
Date: Wed, 14 Dec 2022 09:16:54 GMT
Etag: "639840ac-1d7"
Expires: Thu, 15 Dec 2022 10:51:11 GMT
Last-Modified: Tue, 13 Dec 2022 09:06:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 14 Dec 2022 08:33:20 GMT
age: 2614
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eyCn2AgYO0bB7pKhP374Rw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Av8bRoZi0londu65SnNz9WX3hMA=
deehalig.net/pfe/current/micro.tag.min.js?z=5225827&sw=/sw-check-permissions-f820d.js
200 OK 14 kB URL HTTP/1.1 deehalig.net/pfe/current/micro.tag.min.js?z=5225827&sw=/sw-check-permissions-f820d.js
IP
File type C source, ASCII text, with very long lines (39559), with no line terminators
Hash ed458848fd37b63d91f524403eed8bb7
9579161f6ad0fddaf197720e88fa9a429decb52d
6a495f7d39bf0b46d79a9ab8022bc9edbbdb5a61b41b27e38f65ad9c5ad02345
GET /pfe/current/micro.tag.min.js?z=5225827&sw=/sw-check-permissions-f820d.js HTTP/1.1
Host: deehalig.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://televegas.site/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 14 Dec 2022 09:16:56 GMT
Content-Type: application/javascript
Last-Modified: Tue, 13 Dec 2022 09:06:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63984082-9a87"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7055
Expires: Wed, 14 Dec 2022 11:14:31 GMT
Date: Wed, 14 Dec 2022 09:16:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7055
Expires: Wed, 14 Dec 2022 11:14:31 GMT
Date: Wed, 14 Dec 2022 09:16:56 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 26c6025b12d33a0674edeef8c1491ff6
084f3e27246d3f10c36f8251034a32f71e4905be
a3b48719537321a85667771544ce54728ebdb8d3145a8db154997b6376dba12f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B48719537321A85667771544CE54728EBDB8D3145A8DB154997B6376DBA12F"
Last-Modified: Mon, 12 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7055
Expires: Wed, 14 Dec 2022 11:14:31 GMT
Date: Wed, 14 Dec 2022 09:16:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb64315e8-d453-4b08-ba2e-ae9d16e0e991.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb64315e8-d453-4b08-ba2e-ae9d16e0e991.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6b168e3824e827bcdd7932346821e4a
beb28749fbc51a517fcfb253087e7e0ceea2a597
865d7135c7149a1e22525c43e2a0e3a9ca16b5ee6e34b8fcc08996b7e925edfd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb64315e8-d453-4b08-ba2e-ae9d16e0e991.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8294
x-amzn-requestid: 6c180dda-e035-4def-9c1f-3a4b865576ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dA16hF26oAMFalg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63969d0f-135c3332652c079b78439261;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 03:16:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tMl7N0yRk6Rspr_2zhjbUiwNbHVigNBGLtvJQY0mwbiM-yH-BCyJmQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 05:19:29 GMT
age: 14247
etag: "beb28749fbc51a517fcfb253087e7e0ceea2a597"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93bcca38-7c2d-411f-bd36-ee26cd918273.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93bcca38-7c2d-411f-bd36-ee26cd918273.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 66558e752ec27c5528fa1b50f7692840
e2fe03a05d3912da484543fc1b06f5ace7df890b
06391670bf28e4d9dda9a9c271916db17642cee9460999c376c48086d7740591
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93bcca38-7c2d-411f-bd36-ee26cd918273.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8280
x-amzn-requestid: d5e45ab4-efab-4667-b05b-a9d5cd9c78af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dDipCHO_oAMFxMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6397b16c-6056a0b71f7158195b569aec;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 22:55:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BL2FpI5GvIWPrKfuc_HyUgJqD7iPg3jN9g52DsfsyodT9m20hmuLiw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 05:28:11 GMT
age: 13725
etag: "e2fe03a05d3912da484543fc1b06f5ace7df890b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5ac05cf-7e4b-4370-90d7-5f74f4ea19eb.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5ac05cf-7e4b-4370-90d7-5f74f4ea19eb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9490447f39b844fda99fe94641731a1d
2102208725565acc44c83b679307c5c760f966a4
6a4576b5b9e9813a1d30e0576f320d4a5f42fe24c8c617063b04a77f0c01a4f0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa5ac05cf-7e4b-4370-90d7-5f74f4ea19eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6356
x-amzn-requestid: 91e07aa7-0786-4711-82e1-7e0bfd865a58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpbJFUOoAMFoGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef7a-52a1b7351db3947e4e781234;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:32:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JOFlyVi4cKxuhg5xWzL2s491nTN_pT5xlKQPYOKWCpNCQsOzWVNbeg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:59:24 GMT
etag: "2102208725565acc44c83b679307c5c760f966a4"
content-type: image/jpeg
age: 40652
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88d6f0a9-7f6f-4650-8d61-2ed3133aaf86.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88d6f0a9-7f6f-4650-8d61-2ed3133aaf86.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ddda117cee658be4cfe3a5d04a88c46
a167e2211732837cf07b3b9a0b33610492ab8a47
bc5fae9d44914c804f82d1e0f90a01fe14d86063da59292bf78100f539b3f7a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88d6f0a9-7f6f-4650-8d61-2ed3133aaf86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13205
x-amzn-requestid: 23929642-4b48-40f4-8847-854dfca772b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dGpKoH_4oAMF_8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6398ef10-19ad3c327c190b9227d232a2;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 21:30:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Vx7sZ090BsrHPpf5WTWPKYaCNlYvuh5chiNxw2anH2Kd1WovN9Dc4w==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 13 Dec 2022 21:53:03 GMT
age: 41033
etag: "a167e2211732837cf07b3b9a0b33610492ab8a47"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc382005-a626-4501-bbc4-dd292a018cd1.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc382005-a626-4501-bbc4-dd292a018cd1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0af3d170e1aabf9c790605c13ca1859b
a4e84853e7f600d113ad5027c5ef240c9aa4756b
4933ac8f5a581588974240bb192ef7d1798b7e67428c98acd454ec0948848b29
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc382005-a626-4501-bbc4-dd292a018cd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9036
x-amzn-requestid: 24df0710-a186-4d2d-9957-ff0ff45ff945
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dDWfdGQpoAMFqeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63979dfc-6b5ffd0173b00d7b29cc81b6;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 21:32:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9HUYD9Q85FWi8dlsr56ayZLsp9kqzqU8OhQIkYvK3N1XVW4a8kZRSg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 07:07:24 GMT
age: 7772
etag: "a4e84853e7f600d113ad5027c5ef240c9aa4756b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F622bf755-def0-4e51-bb28-27d9da812817.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F622bf755-def0-4e51-bb28-27d9da812817.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1cbf03520fcaf4f7e4d67ae4c5e9121c
16ad8a3292a2c80e13c934811b8741299dfcf7b1
9d4e37db254468ea92b877c709952ccff1d0397b7b46697e495512039ee435f8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F622bf755-def0-4e51-bb28-27d9da812817.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11657
x-amzn-requestid: f0eb41e2-34c3-4635-b6ce-c5197fa044f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw5BgGX0IAMFhTg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903ba3-4db2921576de578c300b3237;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:07:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ioG_mlTK5oYKIc_4-xzoKbue431FT4BbogsicgwkH1mnwIr98Tcz2Q==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 14 Dec 2022 06:04:31 GMT
age: 11545
etag: "16ad8a3292a2c80e13c934811b8741299dfcf7b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
194.135.87.58
23.36.76.226
34.117.237.239
139.45.197.251