www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m=1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m=1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html
142.250.74.179301 Moved Permanently 326 B URL HTTP/1.1 www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m=1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m=1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (467)
Hash f4fba7a5e98b697cdedd4be893e54ab5
27f570c37ea8c17e1a2ce80992287d0e67f80835
93e732f8279292f05dfaaa2f8ba5477848b7cdcb89f22b1104b7d23df94fdc05
GET /2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m=1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m=1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 22 Jan 2023 22:51:43 GMT
Expires: Sun, 22 Jan 2023 22:51:43 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 326
Server: GSE
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4714c95a0c854e38f9be444f9343bf14
07ce5eb635448f2b3bafbe51e4dfeef47cdf4f7b
4d47e08c9afb704096e93a51f6e95c0dc7c7bc31e67ded39998ff37ed56e0965
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D47E08C9AFB704096E93A51F6E95C0DC7C7BC31E67DED39998FF37ED56E0965"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13255
Expires: Mon, 23 Jan 2023 02:32:38 GMT
Date: Sun, 22 Jan 2023 22:51:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8997fa58a7262e8fd559d64b40511a1b
0aa1c4365c28f45e4d7a8a234fbcf51cd009e083
1580d1145f125c765e40e5983cb4bb4e2424010d2920a25ea7da992485da0dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1580D1145F125C765E40E5983CB4BB4E2424010D2920A25EA7DA992485DA0DEA"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14337
Expires: Mon, 23 Jan 2023 02:50:40 GMT
Date: Sun, 22 Jan 2023 22:51:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 17094b856fde02b2c8c2d3845ad325cf
26dc3f2ebf81faf5ab96eb75ffcbead6085528b8
6547376c41dcaa352cc4e747291916902bcddc0032b750bd84c5e3b2fe6f7d16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6547376C41DCAA352CC4E747291916902BCDDC0032B750BD84C5E3B2FE6F7D16"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7193
Expires: Mon, 23 Jan 2023 00:51:36 GMT
Date: Sun, 22 Jan 2023 22:51:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 22 Jan 2023 22:34:53 GMT
content-type: application/json
age: 1010
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: evF75sDFjt+JJxIQgy2I7O44XRMeYCrntnAWMgzkIGPy1IS+Pft3JUndQG4nl+iTDBglKDayNcw=
x-amz-request-id: GZH7P39MB18F48Z8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 22 Jan 2023 22:47:28 GMT
age: 256
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 22 Jan 2023 22:51:44 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/Iwa-0MGng7Y
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/Iwa-0MGng7Y
IP 142.250.74.131:0
Hash 45a5897a8c53e955a364d9cef841fda5
4dd019c69043f0db4de32cc8ac7ae8483b539aa2
e66eacbded63d03bcd19199cd04de40d06878541bf0e1fc86e8f0962a8aa04af
POST /s/gts1d4/Iwa-0MGng7Y HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:44 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 22 Jan 2023 22:17:30 GMT
age: 2054
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c74880fa99032b5c3831c179d702419
0020b368309735c94d8053d3781a7efb7283cfc5
437e2d4e2bbfb33b0ff696172378ce55a0a5ed005a1b8c4005eab4a6995a3042
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5814
Cache-Control: max-age=129117
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:44 GMT
Etag: "63ccfca7-1d7"
Expires: Tue, 24 Jan 2023 10:43:41 GMT
Last-Modified: Sun, 22 Jan 2023 09:06:47 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.200.117.177101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.117.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0vVvrkucX2dzzgSNvrPFWw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DdRWZX3+EqEijzoXBBA9JZaui5M=
www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html
142.250.74.179200 OK 50 kB URL HTTP/2 www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1352)
Hash e19f5d143427d9520dd552cb72f58cd3
1cf39c15f997db1745335e729821fe8465f6243a
8a30bde23ca9ffade41bd4f35588b8ab3998350361e5737afa6c121723edb5b0
GET /2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 22 Jan 2023 22:51:45 GMT
date: Sun, 22 Jan 2023 22:51:45 GMT
cache-control: private, max-age=0
last-modified: Sun, 22 Jan 2023 21:51:16 GMT
etag: W/"7985a1d29baac0bfcbe1dd6b3ea0fa2d61d1e55804a090c89346243e1f8ccfd6"
x-robots-tag: all
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 50421
server: GSE
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js
104.17.24.14200 OK 27 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (32065)
Hash 63827323c175768ccb0e8ed54589a3e5
9760e238d6ecced66396798559f70593793d801e
196f9479a27db836a2a7454e222f0cb52d4eeb162e0a50e69401ba1a8d81b564
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:45 GMT
content-type: application/javascript; charset=utf-8
content-length: 26909
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-14e4a"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 153351
expires: Fri, 12 Jan 2024 22:51:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m005feag0uNE7opmmMuOEw492jl0sgxXEqFMsh7%2F43XbiD5kAKEccEcScfaRdv5qhxkSRo%2FMKBYVKN4Y1PcuOSb4tf3srBreCUZpVn9jWwgVQbB0Y0FFlpDdZ2r1%2B4ObQgiPTNnf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78dbdb288b8a0b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (56656)
Hash 5c32368e2726220885c82f35b6fb4e78
bb3909d2aaca84d895296187aeaea024c76f46ec
53ceda316a9da4b956909214bb1bdaf76d2b2e3d2037614a13b6749e1e5c9e17
GET /ajax/libs/font-awesome/5.11.2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:45 GMT
content-type: text/css; charset=utf-8
content-length: 10022
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e60-de0a"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 322505
expires: Fri, 12 Jan 2024 22:51:45 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=huOGHAOrnq7%2Bskba06vZDrBRaD7YisX32IKQyymN6HG4h2yjWdXVTMj7iv87OB58puIuC0MFqllCeK0iL9z4tJYmgJtqPRcAKp8dwKQNA1Fz8%2FmZaabCJvSrZeuwkp46IppmmAi6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78dbdb288b880b55-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.dzgurus.com/js/cookienotice.js
142.250.74.179200 OK 2.0 kB URL HTTP/2 www.dzgurus.com/js/cookienotice.js
IP 142.250.74.179:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Sun, 22 Jan 2023 22:51:45 GMT
expires: Sun, 29 Jan 2023 22:51:45 GMT
cache-control: public, max-age=604800
last-modified: Sun, 22 Jan 2023 21:51:10 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
www.dzgurus.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=showrecentpostswiththumbs
142.250.74.179200 OK 43 kB URL HTTP/2 www.dzgurus.com/feeds/posts/default?orderby=published&alt=json-in-script&callback=showrecentpostswiththumbs
IP 142.250.74.179:0
File type Unicode text, UTF-8 text, with very long lines (65514)
Hash 8b136b9dcf7f2f20038c38094f12ef23
e75b32bee83c63c62192963080a1cb9508b347d3
a982f21b51ce9632f4acd3fb4ee40362593488d4b32e18b3f061d8de77831470
GET /feeds/posts/default?orderby=published&alt=json-in-script&callback=showrecentpostswiththumbs HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
content-encoding: gzip
etag: W/"db0b902955b1cba3724cc235997eaae3f1bfd7366d963444ac74eef20c2ac43f"
date: Sun, 22 Jan 2023 22:51:45 GMT
content-type: text/javascript; charset=UTF-8
server: blogger-renderd
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
vary: Accept-Encoding
expires: Sun, 22 Jan 2023 22:51:46 GMT
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 22 Jan 2023 21:51:16 GMT
content-length: 43046
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
216.58.207.233200 OK 6.6 kB URL HTTP/2 www.blogger.com/static/v1/jsbin/3469866930-comment_from_post_iframe.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (1441)
Hash f60e5037324bf7fd2256c16929886f09
aae4b1aea3737e0268e3578dd1d0e7cfe6c6d66b
71846da8d45274b77549b110389ab3dbcb8ce042051b5c39547909c1c343dfde
GET /static/v1/jsbin/3469866930-comment_from_post_iframe.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 6573
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 15:34:31 GMT
expires: Wed, 17 Jan 2024 15:34:31 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Jan 2023 22:50:27 GMT
content-type: text/javascript
age: 458234
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 698b6ba9ccaa05fe77921f60c658d465
4bf1c2824672d0545f2538e41d5d046028ba74c9
24c1e9f42f1c5d74cd0407d7706c865d2d2b01b01f62f3072a050602c15ce2a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24C1E9F42F1C5D74CD0407D7706C865D2D2B01B01F62F3072A050602C15CE2A6"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10370
Expires: Mon, 23 Jan 2023 01:44:35 GMT
Date: Sun, 22 Jan 2023 22:51:45 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2182bcd522c31d3b880961c8c82e5789
e5caa39d2aa22d6d5f9f4cecc26ec61d244a4be9
25d37caaa7bb1a0e464d7bbf1495839e70f06c1cb4ad0ad5abe42e8ab0e1676e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/platform.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/platform.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1429)
Hash 1cc36f699291ba29dab9ec0f885b281b
d536f8bda7d333c21eae8e3d816d690402adb90c
6b20ce0ec6b6c57b33e8118f8d5d3c501ede61b8589ebab71d411b81d0fae994
GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20933
date: Sun, 22 Jan 2023 22:51:45 GMT
expires: Sun, 22 Jan 2023 22:51:45 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "4fcbc207c89b8c6c"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 78340979b1b3f5dbe63bfc88075b94e3
ffbe099dbcb99393a304805a3a80bedf3728d1e8
3b6e3c30064cd15c9abacd73b373f165702545351a93f1707f70e732904ad39a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/4196832948-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/4196832948-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 24f533b2cc89b4264c224d433a37718a
fc4848c3b411e8fdc97831e20c7ebcbf735e636a
aa805bed551a6ac1fa4886b1ee634633bdec1de952fbf94cd81a805ef702a395
GET /static/v1/widgets/4196832948-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56454
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 02:15:20 GMT
expires: Thu, 18 Jan 2024 02:15:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 17 Jan 2023 17:54:44 GMT
content-type: text/javascript
age: 419785
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bb5fac1f289cb91381d3d1a07094b179
df6f8fe7a21efb35290d24f2b8b0fe809cae8d33
34472778a647b2db33e669d8582b510d94d9e0d355d77c73d643b7495b0f6997
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-LVweTayC9NU/YLfpgOFr7GI/AAAAAAAAE0w/mSvxklVRDGkeY56gqc1OZ27q210KhEz8wCLcBGAsYHQ/s320/PicsArt_06-02-08.20.13.jpg
142.250.74.161200 OK 26 kB URL HTTP/2 1.bp.blogspot.com/-LVweTayC9NU/YLfpgOFr7GI/AAAAAAAAE0w/mSvxklVRDGkeY56gqc1OZ27q210KhEz8wCLcBGAsYHQ/s320/PicsArt_06-02-08.20.13.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x213, components 3\012- data
Hash 915ccd36cd033d0620a12f6954e37859
cad14f145308fddc74e1bf83d599d3de8feae97c
4d068152d2bb5df8d04ca5d077429e7e6fa5f2dfbebcbd07a54e851f77ddbc03
GET /-LVweTayC9NU/YLfpgOFr7GI/AAAAAAAAE0w/mSvxklVRDGkeY56gqc1OZ27q210KhEz8wCLcBGAsYHQ/s320/PicsArt_06-02-08.20.13.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1350"
expires: Mon, 23 Jan 2023 22:51:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_06-02-08.20.13.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:51:45 GMT
server: fife
content-length: 26047
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-C7GTCGUrWl4/YLfpu-tuJtI/AAAAAAAAE08/cGt6om4vC2MU4XLU3YLsE-61Dqsmlq-IwCLcBGAsYHQ/s320/PicsArt_06-02-08.19.32.jpg
142.250.74.161200 OK 22 kB URL HTTP/2 1.bp.blogspot.com/-C7GTCGUrWl4/YLfpu-tuJtI/AAAAAAAAE08/cGt6om4vC2MU4XLU3YLsE-61Dqsmlq-IwCLcBGAsYHQ/s320/PicsArt_06-02-08.19.32.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x162, components 3\012- data
Hash 195fb0f90cf62af4b074dbd60046c07f
ec40bc8b6c34292b57eee7b70ea65593d2a07089
eef7b800308fc19533d23056d0a6dd1abfbfd03213ee894e7fd9f70f44420e7d
GET /-C7GTCGUrWl4/YLfpu-tuJtI/AAAAAAAAE08/cGt6om4vC2MU4XLU3YLsE-61Dqsmlq-IwCLcBGAsYHQ/s320/PicsArt_06-02-08.19.32.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1353"
expires: Mon, 23 Jan 2023 22:51:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_06-02-08.19.32.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:51:45 GMT
server: fife
content-length: 21625
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-RkPcKyZt3Lk/YLfpgK1G6mI/AAAAAAAAE04/L1gzONHRWeEAyc2UCcDhhuHtFjt31girwCLcBGAsYHQ/s320/PicsArt_06-02-08.20.45.jpg
142.250.74.161200 OK 22 kB URL HTTP/2 1.bp.blogspot.com/-RkPcKyZt3Lk/YLfpgK1G6mI/AAAAAAAAE04/L1gzONHRWeEAyc2UCcDhhuHtFjt31girwCLcBGAsYHQ/s320/PicsArt_06-02-08.20.45.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x180, components 3\012- data
Hash 111f0bd3c39f054eeccc28a1f7f153ea
7e42ca5ad394783564dc7affb29bc93a95adb062
61212e195b017e37edaefbd9da855fb998e977c72c2b043e906e353ba36fe49f
GET /-RkPcKyZt3Lk/YLfpgK1G6mI/AAAAAAAAE04/L1gzONHRWeEAyc2UCcDhhuHtFjt31girwCLcBGAsYHQ/s320/PicsArt_06-02-08.20.45.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1352"
expires: Mon, 23 Jan 2023 22:51:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_06-02-08.20.45.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:51:45 GMT
server: fife
content-length: 21606
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1.bp.blogspot.com/-Z-JnzS_9qCk/YLfpgOcBAwI/AAAAAAAAE00/o5pAPFz3Ywo2Fzvxy6B-u8KH30SpWj95QCLcBGAsYHQ/s320/PicsArt_06-02-08.20.31.jpg
142.250.74.161200 OK 24 kB URL HTTP/2 1.bp.blogspot.com/-Z-JnzS_9qCk/YLfpgOcBAwI/AAAAAAAAE00/o5pAPFz3Ywo2Fzvxy6B-u8KH30SpWj95QCLcBGAsYHQ/s320/PicsArt_06-02-08.20.31.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x192, components 3\012- data
Hash 6a8e5d270044f09ab6204d8b0bcc523d
a0de9b6a88e6ca74d18962628cf620fa3c318d5d
062b908c1c1c47d0887f9ac8bbb8588a0bf466facfd785525a0c2f8344b8979f
GET /-Z-JnzS_9qCk/YLfpgOcBAwI/AAAAAAAAE00/o5pAPFz3Ywo2Fzvxy6B-u8KH30SpWj95QCLcBGAsYHQ/s320/PicsArt_06-02-08.20.31.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1351"
expires: Mon, 23 Jan 2023 22:51:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_06-02-08.20.31.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:51:45 GMT
server: fife
content-length: 23988
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pl15872466.highcpmrevenuenetwork.com/f7/c2/f2/f7c2f218a71324f49eac3f7733565c8b.js
173.233.137.52200 OK 13 kB URL HTTP/1.1 pl15872466.highcpmrevenuenetwork.com/f7/c2/f2/f7c2f218a71324f49eac3f7733565c8b.js
IP 173.233.137.52:0
File type ASCII text, with very long lines (37131), with no line terminators
Hash 37d0f216d4211c2c42e3fa246a49f7bc
e9e68ea6eae4ea32af77dca78fe7427c2f9b0e8d
c55c418d183be8081624fbb4d87c8c2e09179fec5bf577f6b48bea6718d7fee6
Analyzer Verdict Alert quad9 Sinkholed
GET /f7/c2/f2/f7c2f218a71324f49eac3f7733565c8b.js HTTP/1.1
Host: pl15872466.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9b250fc1cb1ed3de8957cbff9478adba
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3942f67e2cc00fdf75e15cbc0f7d95ba
73b1e73fa54fd6fec8a2391729a624704ae8107f
fdb6616cb8ada5de76b30070a5f5fb4a919f9115e0a3cf61f08f924b16fe28f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-Oxd9IkfmJ2o/YLfpRRk4iYI/AAAAAAAAE0s/N7dMwWFEbiQfZHSiuW16XcpdKrYelbQIgCLcBGAsYHQ/s320/PicsArt_03-25-10.16.52.jpg
142.250.74.161200 OK 8.4 kB URL HTTP/2 1.bp.blogspot.com/-Oxd9IkfmJ2o/YLfpRRk4iYI/AAAAAAAAE0s/N7dMwWFEbiQfZHSiuW16XcpdKrYelbQIgCLcBGAsYHQ/s320/PicsArt_03-25-10.16.52.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 320x73, components 3\012- data
Hash 73fd64c44a4b3aa6da43890adcb73b2a
ce5d6cc764667f9c0861eede441d6937e1ddcedb
b09e31b91a097b6a57ebd30443599bc8385e3f58be25e7e7429ef0173b3c984e
GET /-Oxd9IkfmJ2o/YLfpRRk4iYI/AAAAAAAAE0s/N7dMwWFEbiQfZHSiuW16XcpdKrYelbQIgCLcBGAsYHQ/s320/PicsArt_03-25-10.16.52.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1352"
expires: Mon, 23 Jan 2023 22:51:45 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_03-25-10.16.52.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:51:45 GMT
server: fife
content-length: 8446
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pl15872141.highcpmrevenuenetwork.com/07/0f/10/070f1088c9802792a1aea00839b47afe.js
192.243.61.225200 OK 21 kB URL HTTP/1.1 pl15872141.highcpmrevenuenetwork.com/07/0f/10/070f1088c9802792a1aea00839b47afe.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (60146), with no line terminators
Hash 8629459e6e2fdb6c4662c9e4a82317b5
d8bc9d00679bf550fe513c8e191ee72d7f3720b2
d281a9909d1f59872c1b574c5cde7069017da4a5dc9873e41b03b03376a4c4ad
Analyzer Verdict Alert quad9 Sinkholed
GET /07/0f/10/070f1088c9802792a1aea00839b47afe.js HTTP/1.1
Host: pl15872141.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9ee0dca9214b4d35cc909925d34a7634
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/webfonts/fa-regular-400.woff2
104.17.24.14200 OK 14 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/webfonts/fa-regular-400.woff2
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 13584, version 330.32636\012- data
Hash f5f2566b93e89391da4db79462b8078b
be142af0f56062f6e864de121b98054c7b5954fd
0fc0a22e5e67c95d02c389a1454acc67df53e2f6a46af739f3eac7e352644751
GET /ajax/libs/font-awesome/5.11.2/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:46 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 13584
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-3510"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 6316600
expires: Fri, 12 Jan 2024 22:51:46 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N2IG%2BriyAcqNnhFs7rC5zdNU7f9cWXhNRUVDlIYwmrqbTjMRcrMEilfvmEEoFVc%2FQFVACyYGysYNdA7LkJ%2BrrZtWebzeU0DUMLowUF7mD0nBWnT%2Bwg6UdZVa0%2BuOxCfBaEzZMUR6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78dbdb3269f1b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16455
Expires: Mon, 23 Jan 2023 03:26:01 GMT
Date: Sun, 22 Jan 2023 22:51:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d5528af26e629a9bfbf0c421146b921f
1e4f99245d551384bedfe9b59b5f9905127d87bf
989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16455
Expires: Mon, 23 Jan 2023 03:26:01 GMT
Date: Sun, 22 Jan 2023 22:51:46 GMT
Connection: keep-alive
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/webfonts/fa-solid-900.woff2
104.17.24.14200 OK 76 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/webfonts/fa-solid-900.woff2
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 75728, version 330.32636\012- data
Hash 44d537ab79f921fde5a28b2c1636f397
b2879f9e1d0985a96842bf7f55a2b2cc4c636d04
3d1080625d3030e88357b3ac9aa377dcec23f1b529c4ad03f7a9a435ccae04be
GET /ajax/libs/font-awesome/5.11.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:46 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 75728
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-127d0"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 229356
expires: Fri, 12 Jan 2024 22:51:46 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xPv0vthIPgwF%2FPvrftybW4%2BijlYTp1w2nHlQOAjoSS4dDISA2%2FQCx1yNU8s6Gsz6TtA5q3%2BpYMV84qKXIxgDbWZWYgHmUGGcbtNeAzieGS%2FSdAgTgKYBTvwFiS7%2B9tBcM4OXHw59"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78dbdb327a01b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash dec1960c15b7b32835eece7cb397c51f
ddaf303a58c2f336530c55a9ca29d5731e5f7da6
f2d6ba10803cb182fe6bac4e417ce57f3d712c836ed1d8950829bd29cbb35f48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash dec1960c15b7b32835eece7cb397c51f
ddaf303a58c2f336530c55a9ca29d5731e5f7da6
f2d6ba10803cb182fe6bac4e417ce57f3d712c836ed1d8950829bd29cbb35f48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/webfonts/fa-brands-400.woff2
104.17.24.14200 OK 75 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.11.2/webfonts/fa-brands-400.woff2
IP 104.17.24.14:0
File type Web Open Font Format (Version 2), TrueType, length 75336, version 330.32636\012- data
Hash cccc9d29470e879e40eb70249d9a2705
5fe986cda635681b4b6bbd6111df2f26d7fca286
d3caf12591d194712facd10bca14f0a924edb59c24447a3fd994a48286db8843
GET /ajax/libs/font-awesome/5.11.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:46 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 75336
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e60-12648"
last-modified: Mon, 04 May 2020 16:10:08 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2650646
expires: Fri, 12 Jan 2024 22:51:46 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZHhxR%2BtgzUEGvqjttlYR%2BVPe2vY7TdVi9KoGsRzlxrYJYZXbIiw22TWUxl4r%2F57UquVw9iWjbkmt35BZhG9g68vKe3a8%2BuzA9djogurSMW88HzfrBQqdNn7deA4MBXN9JxFPIZSG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78dbdb328a07b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash dec1960c15b7b32835eece7cb397c51f
ddaf303a58c2f336530c55a9ca29d5731e5f7da6
f2d6ba10803cb182fe6bac4e417ce57f3d712c836ed1d8950829bd29cbb35f48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0247217-9730-4fdb-8be7-667f0568ffc2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0247217-9730-4fdb-8be7-667f0568ffc2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d95b4a29d3337c5c2ca7e4d31fa3a0b6
4c6d22bdc48d7011e2c875ee18876da6a8401669
23421c7f67582c927dacf52c25779e43f5196a40fb1b70467ed737c2417ba39e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0247217-9730-4fdb-8be7-667f0568ffc2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 60a33a3f-36b1-4f6e-a17b-964118a9da31
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3AcMGeNoAMFs7A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c5e11a-7673a87f26759a1a64e4aab2;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 23:43:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JqvCEzxKP39gLHZjcr7R303XMAlfQz2nAtz-Wv_9W0rsAYJ3ODczPg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:58:40 GMT
age: 3187
etag: "4c6d22bdc48d7011e2c875ee18876da6a8401669"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F776639f2-eb42-4725-b2a7-00e94fc28d19.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F776639f2-eb42-4725-b2a7-00e94fc28d19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b3bb461e2e4e28de0ad024cd421d4b1a
9c67f7af385f0999feb27ab02bb96fb86f74d93d
f430b4b3d325f51ce516a4ab3abae723daffe011f1b1246146a75aedd58c70a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F776639f2-eb42-4725-b2a7-00e94fc28d19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8440
x-amzn-requestid: e39ab13e-8072-4c5b-8c3c-5cf627252fdb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKezKFq-IAMFkdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdab47-3cdf64b20b43bdd705acb62f;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 21:31:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EmlBzMrxN8Ah3VQJ05pUy7_4PoX8gIkhxyvHPdmMb8jTEsydjgN_lw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:47:46 GMT
etag: "9c67f7af385f0999feb27ab02bb96fb86f74d93d"
content-type: image/jpeg
age: 3841
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.67200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v19/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3
GET /s/roboto/v19/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15736
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 13:09:12 GMT
expires: Wed, 17 Jan 2024 13:09:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Mar 2019 20:12:01 GMT
content-type: font/woff2
age: 466955
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf2abec1-a455-47b9-9aaf-69794032330f.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf2abec1-a455-47b9-9aaf-69794032330f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ec35d753b6b816abcd14030255a7b76
a67bd0fa5beb10935442bef246bf4f52ec6e74bd
9adfddc8877a8ea9f1c3bcc0af99548cb11dc4e1d62a706bf9b2a5cc6d72e82f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf2abec1-a455-47b9-9aaf-69794032330f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7982
x-amzn-requestid: 59d91715-b444-445e-bd6b-268fc630024b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fKezLExAIAMFSeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cdab47-1e12e8f335ea162532ce6aca;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 21:31:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0BgrMQG0-OHmZipKTgnHTs3HxYGBqKowIS37tg_QooT4JPlqHBPFvw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 21:47:46 GMT
age: 3841
etag: "a67bd0fa5beb10935442bef246bf4f52ec6e74bd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ed6afa7-c805-4ddd-a71c-bc9bde7aee5a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ed6afa7-c805-4ddd-a71c-bc9bde7aee5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e42f475b1e14cb9d0939ef39db8e1f91
dda57d67c7b5f32123d3c9956dec8f805138b3bf
ace1e5843457dc5493432ea113059e67827e6c95d6998a7465dea1eb0e723a1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ed6afa7-c805-4ddd-a71c-bc9bde7aee5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11818
x-amzn-requestid: e80dab53-5137-4776-a105-b1933e9bda6b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fEqu6GhZIAMFWSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb57f8-696c3a7f103b96a23ed4abec;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 03:11:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5bEvPaVPmareEYTNHUoTIEtCn0EKpBBafR11mjrvwPFVS_DLFKgm3w==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 05:42:33 GMT
age: 61754
etag: "dda57d67c7b5f32123d3c9956dec8f805138b3bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.dzgurus.com/feeds/comments/summary?alt=json&max-results=3
142.250.74.179200 OK 1.7 kB URL HTTP/2 www.dzgurus.com/feeds/comments/summary?alt=json&max-results=3
IP 142.250.74.179:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6908), with no line terminators
Hash e9dd7659e93e336391b1b906b6d9d313
f0c52004bc757c3a34a952d6e900512618c19614
b8ce88a2aea1c95046f22f240988bcf3ce36189f2be14cd44ec75cc74f6fb4a1
GET /feeds/comments/summary?alt=json&max-results=3 HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
content-encoding: gzip
etag: W/"f992b400b1f02bad78597071e91966c6769f692caf720b6b00151d87d85f2419"
date: Sun, 22 Jan 2023 22:51:46 GMT
content-type: application/json; charset=UTF-8
server: blogger-renderd
cache-control: public, must-revalidate, proxy-revalidate, max-age=1
vary: Accept-Encoding
expires: Sun, 22 Jan 2023 22:51:47 GMT
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Sun, 22 Jan 2023 00:45:31 GMT
content-length: 1705
x-frame-options: SAMEORIGIN
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4b994-3774-4962-a9e1-b5806a10d003.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4b994-3774-4962-a9e1-b5806a10d003.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95b95060778eca8d5323002d4afe406f
d91109d98c607bd3a0eb56784ed91fbcfc89bd5f
d549664c9a2abc859b3fe4f0144b18095d8c4b63552385224ff9d77f8b57b297
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4b994-3774-4962-a9e1-b5806a10d003.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12886
x-amzn-requestid: 60d7f7b0-742a-4485-9db9-8457791b59e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exbSWEAfoAMFVow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a5a8-528cc2b371f663ce2e11b779;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:05:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: fgRIVO_dWCOoXcMQf4n2c9FUDKj7V5cYeBWr_GwNaQp5MHOGus_7KA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 05:28:10 GMT
age: 62617
etag: "d91109d98c607bd3a0eb56784ed91fbcfc89bd5f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v19/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.67200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v19/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 15872, version 1.0\012- data
Hash 020c97dc8e0463259c2f9df929bb0c69
8f956a31154047d1b6527b63db2ecf0f3a463f24
24369e1b2461af9dcefecaf9cc93d64cf22a4c5bac32506100b9e21014507bcf
GET /s/roboto/v19/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 21 Jan 2023 13:51:43 GMT
expires: Sun, 21 Jan 2024 13:51:43 GMT
cache-control: public, max-age=31536000
age: 118804
last-modified: Mon, 25 Mar 2019 20:14:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 805711aaab303931f8966bbf73aeda52
2bd02a45c8b407e36a41a482b121ea3e14f7c722
66268668c1a970268d75beb1b57f66a759bedac76958a3359cb23104de40fbeb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602ef184-7161-4092-91b7-61e14eef28a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3411
x-amzn-requestid: 62afd364-e94f-45ff-ba6c-9b589fc53e5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e-EyCEzrIAMFb8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c8b4d9-203f51040f82f12d535446c4;Sampled=0
x-amzn-remapped-date: Thu, 19 Jan 2023 03:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K73B093GBbsf85ny_o8fc9oE417nJBFlH0eEdhiifeQk3KG5Q-HHdg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 22 Jan 2023 08:48:14 GMT
age: 50613
etag: "2bd02a45c8b407e36a41a482b121ea3e14f7c722"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v19/KFOkCnqEu92Fr1Mu51xIIzI.woff2
142.250.74.67200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v19/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 17324, version 1.0\012- data
Hash 51521a2a8da71e50d871ac6fd2187e87
f94000b9ce048908c52269b3705e251a50c6979e
401e6c25801ba2d59795d05a6dd973f95566b41070d3939ba9307d65860ae50e
GET /s/roboto/v19/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 10:08:24 GMT
expires: Thu, 18 Jan 2024 10:08:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Mar 2019 20:12:42 GMT
content-type: font/woff2
age: 391403
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.33.119.27200 OK 346 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 23f4b01a430ac3cd131f4b0afadbc101
f523c41c49e2fa293046770278341bf9e85b02b3
d89e48ee244a88b167102bbd865e00b0407715100cb9f8b94595270869abd926
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "D89E48EE244A88B167102BBD865E00B0407715100CB9F8B94595270869ABD926"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7027
Expires: Mon, 23 Jan 2023 00:48:54 GMT
Date: Sun, 22 Jan 2023 22:51:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d243b3fc0cecc95a397dce1a53ea771f
524b6a1584b6c22d28545ab16937f3658842eede
1c018a8aca6ba174dad6ee11261b2520756f782d6b70a01f18533059ae5c852c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1C018A8ACA6BA174DAD6EE11261B2520756F782D6B70A01F18533059AE5C852C"
Last-Modified: Fri, 20 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15846
Expires: Mon, 23 Jan 2023 03:15:53 GMT
Date: Sun, 22 Jan 2023 22:51:47 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash dec1960c15b7b32835eece7cb397c51f
ddaf303a58c2f336530c55a9ca29d5731e5f7da6
f2d6ba10803cb182fe6bac4e417ce57f3d712c836ed1d8950829bd29cbb35f48
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 4dab8a11f6f832896613d012233bf6ba
05fb1e721b40793fc921c840b2b89d732868184a
04948e2b6ac1e964c58eb5cdee1bbb5adc6d5a80edb63bf96e62426d19c2f5ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142299
Date: Sun, 22 Jan 2023 22:51:47 GMT
Etag: "63cd3a95-1d7"
Expires: Tue, 24 Jan 2023 14:23:26 GMT
Last-Modified: Sun, 22 Jan 2023 13:31:01 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vcx5ePFoV5knReqxO1g59HvsrBtedKGpy-nQdUgMW283Sm4pESFKLQ==
Age: 3145
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 4dab8a11f6f832896613d012233bf6ba
05fb1e721b40793fc921c840b2b89d732868184a
04948e2b6ac1e964c58eb5cdee1bbb5adc6d5a80edb63bf96e62426d19c2f5ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=142681
Date: Sun, 22 Jan 2023 22:51:47 GMT
Etag: "63cd3a95-1d7"
Expires: Tue, 24 Jan 2023 14:29:48 GMT
Last-Modified: Sun, 22 Jan 2023 13:31:01 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2WDFemTnlkkMo0NQ9Qf-W-t4qDO4Kd8qT8O8seY68cXfAnXfoEwlRg==
Age: 3527
dimreproofjumped.com/sbar.json?key=f7c2f218a71324f49eac3f7733565c8b
173.233.137.44200 OK 4.2 kB URL HTTP/1.1 dimreproofjumped.com/sbar.json?key=f7c2f218a71324f49eac3f7733565c8b
IP 173.233.137.44:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6080), with no line terminators
Hash 2af4cab294178b59b3fdf295f8611e46
94d180460ef2b846db44f26eca56bf36655d908b
4fce5a2679481601455208ea0743381fe43d7893689f2c066833975ec430fdeb
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=f7c2f218a71324f49eac3f7733565c8b HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:47 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.dzgurus.com
Access-Control-Allow-Origin: https://www.dzgurus.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15771967; expires=Mon, 23 Jan 2023 22:51:47 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 23 Jan 2023 22:51:47 GMT; secure; SameSite=None
uncs=1; expires=Mon, 23 Jan 2023 22:51:47 GMT; secure; SameSite=None
pdhtkv29=true; expires=Mon, 23 Jan 2023 22:51:47 GMT; secure; SameSite=None
uncs29=1; expires=Mon, 23 Jan 2023 22:51:47 GMT; secure; SameSite=None
slecf7c2f218a71324f49eac3f7733565c8b=[3952979]; expires=Sun, 22 Jan 2023 22:51:52 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 88c7c1baeb14cd9f8704e2d7dbb969c6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
dimreproofjumped.com/pixel/purst?dl=0&th=0&sc=0&rs=2480&rd=2480&fd=904&bv=22.10.v.9&tmpl=70
173.233.137.44200 OK 0 B URL HTTP/1.1 dimreproofjumped.com/pixel/purst?dl=0&th=0&sc=0&rs=2480&rd=2480&fd=904&bv=22.10.v.9&tmpl=70
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=2480&rd=2480&fd=904&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:47 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
e1.o.lencr.org/
23.33.119.27200 OK 346 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 23f4b01a430ac3cd131f4b0afadbc101
f523c41c49e2fa293046770278341bf9e85b02b3
d89e48ee244a88b167102bbd865e00b0407715100cb9f8b94595270869abd926
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "D89E48EE244A88B167102BBD865E00B0407715100CB9F8B94595270869ABD926"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7027
Expires: Mon, 23 Jan 2023 00:48:54 GMT
Date: Sun, 22 Jan 2023 22:51:47 GMT
Connection: keep-alive
dimreproofjumped.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3uR32svPxT14EPqoIJPu%2BcjMGCEY10hwTbKblYgHobqqelKmpqup6pqeDB6iC7oXYfakx84zyYZ1F9kFr34w8aAED9seJAfjv7AgeJaZDARfqHrft5738DxvPZ8fuHMSwNGzzff0QCpFFxqVwH9lWyZc59Zfv%2BOHQSVY8rdlslhf8vuTy%2FReD4NGJXjVf0ewXb1QDcIgCIPQX5VGxLq%2FMEUh08ftsNIOKvVqJWzU0Tf%2F7a3zYKkH3jsn1yB5%2Bb%2BdX59CsjGS7pMbwu5mOn3t7a5TNNMGPX78frKb6DxB97KMjYc4OZ5NQ9uSkK%2BvQCfHMwXQvcOJAkSyJN4fIaLkeEYTUe%2FogmmkIBJE%2FCry3hhCjSHpGEzfheTPCMA41jeQdB%2Bsa5PTvQuUTtCSzP%2FzN2Rekvk%2FX0TS%2FXZFyb6%2FpZXLpE4s%2BnEB2R9DdsZI3QmygQeZn4Bln0FygqRbQPJiqlrKMWQ8hhJDUOvBTY704GIPLvXQ5Wc%2BbbTjIGjGUVyrteqMsVqNsUZrkTd4rd6KAzg2oTVElg7B1BDM7CM1%2B9iV9581rsG4n2B3CljuwWYl8W7to8cL5IIgtwQ5JcglQZ4R5L3iiCtbtcUDrqyLwlmuznKtGOmsc0CPdNYRCTlIz8kL05U8f7iMXXHmx01WjathizbDWrUe19uCslrcbNZqjcUGa0WwsoC0V6ZqB7Ik1z96glSWZO76F4joCaw6AZNzoO5l0HzUrAagO6N6K8AgecQHHWecrTDdBdcF0mwe2Z53oM7JS1Mab9zagmCnZBZgpkBqCnwsfyboqHuj2zonh7d1bsnTjTSTXTmgk1%2FbymgmvG%2FeFXu5Nnzthh0%2BfJNNgEn5%2BI6w2U2acJl0LHm0IjkXZlUbJsj3a3ZbRJvO7qw4k7j05uZbq2vd1AhrpU7GoLIk5NNPwGRJrnrJ1JF%2B%2FxzSjGFcga675Cr1CVi6D5ueLn%2F15cZfS%2FxDWE1g1OVMlHrIXTEy1ejyUUkCJS57GhWw4nT5l%2B%2FaH%2Fw%2FWkckTn98foEd2HvoGA80uzv1Yc8U6KkCVA1h3dwoS83p8u%2B1aSBS3ihSxjuMlFH3L5Zr5ZkvGnEQi6AqorgdxU0a8HZcb0e0HYpm1KAhMluy336Y%2BxcAAP%2F%2FAQAA%2F%2F8OzKSUaQQAAA%3D%3D
173.233.137.44200 OK 7 B URL HTTP/1.1 dimreproofjumped.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3uR32svPxT14EPqoIJPu%2BcjMGCEY10hwTbKblYgHobqqelKmpqup6pqeDB6iC7oXYfakx84zyYZ1F9kFr34w8aAED9seJAfjv7AgeJaZDARfqHrft5738DxvPZ8fuHMSwNGzzff0QCpFFxqVwH9lWyZc59Zfv%2BOHQSVY8rdlslhf8vuTy%2FReD4NGJXjVf0ewXb1QDcIgCIPQX5VGxLq%2FMEUh08ftsNIOKvVqJWzU0Tf%2F7a3zYKkH3jsn1yB5%2Bb%2BdX59CsjGS7pMbwu5mOn3t7a5TNNMGPX78frKb6DxB97KMjYc4OZ5NQ9uSkK%2BvQCfHMwXQvcOJAkSyJN4fIaLkeEYTUe%2FogmmkIBJE%2FCry3hhCjSHpGEzfheTPCMA41jeQdB%2Bsa5PTvQuUTtCSzP%2FzN2Rekvk%2FX0TS%2FXZFyb6%2FpZXLpE4s%2BnEB2R9DdsZI3QmygQeZn4Bln0FygqRbQPJiqlrKMWQ8hhJDUOvBTY704GIPLvXQ5Wc%2BbbTjIGjGUVyrteqMsVqNsUZrkTd4rd6KAzg2oTVElg7B1BDM7CM1%2B9iV9581rsG4n2B3CljuwWYl8W7to8cL5IIgtwQ5JcglQZ4R5L3iiCtbtcUDrqyLwlmuznKtGOmsc0CPdNYRCTlIz8kL05U8f7iMXXHmx01WjathizbDWrUe19uCslrcbNZqjcUGa0WwsoC0V6ZqB7Ik1z96glSWZO76F4joCaw6AZNzoO5l0HzUrAagO6N6K8AgecQHHWecrTDdBdcF0mwe2Z53oM7JS1Mab9zagmCnZBZgpkBqCnwsfyboqHuj2zonh7d1bsnTjTSTXTmgk1%2FbymgmvG%2FeFXu5Nnzthh0%2BfJNNgEn5%2BI6w2U2acJl0LHm0IjkXZlUbJsj3a3ZbRJvO7qw4k7j05uZbq2vd1AhrpU7GoLIk5NNPwGRJrnrJ1JF%2B%2FxzSjGFcga675Cr1CVi6D5ueLn%2F15cZfS%2FxDWE1g1OVMlHrIXTEy1ejyUUkCJS57GhWw4nT5l%2B%2FaH%2Fw%2FWkckTn98foEd2HvoGA80uzv1Yc8U6KkCVA1h3dwoS83p8u%2B1aSBS3ihSxjuMlFH3L5Zr5ZkvGnEQi6AqorgdxU0a8HZcb0e0HYpm1KAhMluy336Y%2BxcAAP%2F%2FAQAA%2F%2F8OzKSUaQQAAA%3D%3D
IP 173.233.137.44:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3uR32svPxT14EPqoIJPu%2BcjMGCEY10hwTbKblYgHobqqelKmpqup6pqeDB6iC7oXYfakx84zyYZ1F9kFr34w8aAED9seJAfjv7AgeJaZDARfqHrft5738DxvPZ8fuHMSwNGzzff0QCpFFxqVwH9lWyZc59Zfv%2BOHQSVY8rdlslhf8vuTy%2FReD4NGJXjVf0ewXb1QDcIgCIPQX5VGxLq%2FMEUh08ftsNIOKvVqJWzU0Tf%2F7a3zYKkH3jsn1yB5%2Bb%2BdX59CsjGS7pMbwu5mOn3t7a5TNNMGPX78frKb6DxB97KMjYc4OZ5NQ9uSkK%2BvQCfHMwXQvcOJAkSyJN4fIaLkeEYTUe%2FogmmkIBJE%2FCry3hhCjSHpGEzfheTPCMA41jeQdB%2Bsa5PTvQuUTtCSzP%2FzN2Rekvk%2FX0TS%2FXZFyb6%2FpZXLpE4s%2BnEB2R9DdsZI3QmygQeZn4Bln0FygqRbQPJiqlrKMWQ8hhJDUOvBTY704GIPLvXQ5Wc%2BbbTjIGjGUVyrteqMsVqNsUZrkTd4rd6KAzg2oTVElg7B1BDM7CM1%2B9iV9581rsG4n2B3CljuwWYl8W7to8cL5IIgtwQ5JcglQZ4R5L3iiCtbtcUDrqyLwlmuznKtGOmsc0CPdNYRCTlIz8kL05U8f7iMXXHmx01WjathizbDWrUe19uCslrcbNZqjcUGa0WwsoC0V6ZqB7Ik1z96glSWZO76F4joCaw6AZNzoO5l0HzUrAagO6N6K8AgecQHHWecrTDdBdcF0mwe2Z53oM7JS1Mab9zagmCnZBZgpkBqCnwsfyboqHuj2zonh7d1bsnTjTSTXTmgk1%2FbymgmvG%2FeFXu5Nnzthh0%2BfJNNgEn5%2BI6w2U2acJl0LHm0IjkXZlUbJsj3a3ZbRJvO7qw4k7j05uZbq2vd1AhrpU7GoLIk5NNPwGRJrnrJ1JF%2B%2FxzSjGFcga675Cr1CVi6D5ueLn%2F15cZfS%2FxDWE1g1OVMlHrIXTEy1ejyUUkCJS57GhWw4nT5l%2B%2FaH%2Fw%2FWkckTn98foEd2HvoGA80uzv1Yc8U6KkCVA1h3dwoS83p8u%2B1aSBS3ihSxjuMlFH3L5Zr5ZkvGnEQi6AqorgdxU0a8HZcb0e0HYpm1KAhMluy336Y%2BxcAAP%2F%2FAQAA%2F%2F8OzKSUaQQAAA%3D%3D HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:47 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b95da9061c47a63802670e2c8aaa31e2
Strict-Transport-Security: max-age=0; includeSubdomains
dimreproofjumped.com/pixel/pure
173.233.137.44204 No Content 0 B URL HTTP/1.1 dimreproofjumped.com/pixel/pure
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /pixel/pure HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.dzgurus.com/
Origin: https://www.dzgurus.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:47 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 36f69c576be6f781f131e89d144916b2
a96a0a7bad1198b6265756eb6dd79d444199dbaf
b1fa2795c057042627ad607c3a2bce695c3c564803d938373cd8243478d3d0d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 36f69c576be6f781f131e89d144916b2
a96a0a7bad1198b6265756eb6dd79d444199dbaf
b1fa2795c057042627ad607c3a2bce695c3c564803d938373cd8243478d3d0d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dimreproofjumped.com/pixel/pure
173.233.137.44200 OK 0 B URL HTTP/1.1 dimreproofjumped.com/pixel/pure
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /pixel/pure HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 73
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:48 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash fa8a13e70570700654b112eb06029bd8
58de515ebe29aab1e5932eed2fbe5d802eb1707c
59253e9d3bc1a2319f2e05163644da0445077741392d78d996cc8394d13a8bc8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59253E9D3BC1A2319F2E05163644DA0445077741392D78D996CC8394D13A8BC8"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3082
Expires: Sun, 22 Jan 2023 23:43:10 GMT
Date: Sun, 22 Jan 2023 22:51:48 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 36f69c576be6f781f131e89d144916b2
a96a0a7bad1198b6265756eb6dd79d444199dbaf
b1fa2795c057042627ad607c3a2bce695c3c564803d938373cd8243478d3d0d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2719765140359855&host=ca-host-pub-1556223355139109
142.250.74.162200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2719765140359855&host=ca-host-pub-1556223355139109
IP 142.250.74.162:0
File type ASCII text, with very long lines (4879)
Hash 10658d3bffb685d08cdb0f6aa0467f78
97edbea1443765f069ea0a1df3334ec5ec55ff3e
1b8db13d53b42d12ee1b38dbb590e8fded605cee901e217249beea751cb98ff0
GET /pagead/js/adsbygoogle.js?client=ca-pub-2719765140359855&host=ca-host-pub-1556223355139109 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 22 Jan 2023 22:51:48 GMT
expires: Sun, 22 Jan 2023 22:51:48 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 5727285403038420880
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49560
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/google_top_exp.js
142.250.74.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/google_top_exp.js
IP 142.250.74.162:0
Hash d0360ff032091f5b24fb22cdc84a6890
76140dbc7eb007f3ec7995d88e7491ebebcf159c
29ea95cbc925c4afd08a2d36d812406c2a0172e0bb2703fce7a76749667472d7
GET /pagead/js/google_top_exp.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 42
x-xss-protection: 0
date: Sun, 22 Jan 2023 03:23:16 GMT
expires: Sun, 05 Feb 2023 03:23:16 GMT
cache-control: public, max-age=1209600
etag: 13036835877489095579
content-type: text/javascript; charset=UTF-8
age: 70112
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.dzgurus.com/favicon.ico
142.250.74.179200 OK 844 B URL HTTP/2 www.dzgurus.com/favicon.ico
IP 142.250.74.179:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 3fcd8d2e0d2b5b727d004ef158a7288e
5c4a6b4921d164307a984d426fe801cb56a1a0b0
7287976c13b0d3998f0a8c7f8d140736773b57c65d12b795b751ef1ec5abc9de
GET /favicon.ico HTTP/1.1
Host: www.dzgurus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m=1https://www.dzgurus.com/2022/05/deus-ex-fall-apkobb-for-android.htmlhttps://www.dzgurus.com/2021/06/dead-space-apk-v120.html?m%3D1https://www.dzgurus.com/2021/05/max-payne-mobile-apk-obb-download.html?m%3D1https://www.dzgurus.com/2021/04/grand-theft-auto-vice-city-apk-obb-v109.html?m%3D1https://www.dzgurus.com/2022/11/gta-san-andreas-apkobb-for-all-versions.html
Cookie: sb_main_f7c2f218a71324f49eac3f7733565c8b=1; sb_count_f7c2f218a71324f49eac3f7733565c8b=1; ppu_main_070f1088c9802792a1aea00839b47afe=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=dimreproofjumped.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
expires: Sun, 22 Jan 2023 22:51:48 GMT
date: Sun, 22 Jan 2023 22:51:48 GMT
cache-control: private, max-age=86400
last-modified: Sun, 22 Jan 2023 21:51:16 GMT
etag: W/"7985a1d29baac0bfcbe1dd6b3ea0fa2d61d1e55804a090c89346243e1f8ccfd6"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 844
server: GSE
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html
45.133.44.3200 OK 955 B URL HTTP/2 cdn.barscreative1.com/sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text
Hash 3311b451b6e90781dab5ae61a1e4f65d
940e4700d9c5fbf74f8c15dcf10c28661e34cf2c
3def788280ca0f9ba09e050e3f3bfba82e5268fe2104f1c02a8f265c12774023
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:48 GMT
content-type: text/html; charset=utf-8
content-length: 955
server: nginx/1.17.6
last-modified: Wed, 18 May 2022 11:09:59 GMT
etag: "6284d407-3bb"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
expires: Sun, 22 Jan 2023 23:51:48 GMT
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3bbec64cde333b8c3068e63b2adbf2bb
e1fad0f09db1e1b01c9d36d7dbc8163682dcc533
850bdbc33df9ee9c938ed81f35ee0a6782fe99f49f65359e1a66ff21e282ffc9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dimreproofjumped.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F5e%2F2f%2Fd4%2F5e2fd4b3d4c51bdf7b2952c27a9795ef%2F1652872195.html&l=955&fd=1367
173.233.137.44200 OK 0 B URL HTTP/1.1 dimreproofjumped.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F5e%2F2f%2Fd4%2F5e2fd4b3d4c51bdf7b2952c27a9795ef%2F1652872195.html&l=955&fd=1367
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2F5e%2F2f%2Fd4%2F5e2fd4b3d4c51bdf7b2952c27a9795ef%2F1652872195.html&l=955&fd=1367 HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:48 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh3xmj6sSVzflZZ8u3gEr_4EhDk5vPVCKvUZyHMZkTu3U-aFjH0n1KIK-hkcS5Z75cDgrUMNFeDjSQR5aZIrel_QtPG0sFNdlsLpUi-ge7tNeZpfnhSGX_X4zgeqV7DrmF8UaONP8DGEO881uvKzMDMRuXttS73Yx1gK3AVJU6OkFqNiYEIQyVjYA4AbQ/w80-h65-p-k-no-nu/IMG_20230121_003822_147.jpg
142.250.74.97200 OK 4.7 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh3xmj6sSVzflZZ8u3gEr_4EhDk5vPVCKvUZyHMZkTu3U-aFjH0n1KIK-hkcS5Z75cDgrUMNFeDjSQR5aZIrel_QtPG0sFNdlsLpUi-ge7tNeZpfnhSGX_X4zgeqV7DrmF8UaONP8DGEO881uvKzMDMRuXttS73Yx1gK3AVJU6OkFqNiYEIQyVjYA4AbQ/w80-h65-p-k-no-nu/IMG_20230121_003822_147.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 80x65, components 3\012- data
Hash 5518b7e6ebbfc4b07821b20609059e99
a20d203f1c9121437684fd9b06acde5b91343d49
5dab2491564401f9eb8bb23b2520229e49378258b36bc958ebbf7a8c10d0201c
GET /img/b/R29vZ2xl/AVvXsEh3xmj6sSVzflZZ8u3gEr_4EhDk5vPVCKvUZyHMZkTu3U-aFjH0n1KIK-hkcS5Z75cDgrUMNFeDjSQR5aZIrel_QtPG0sFNdlsLpUi-ge7tNeZpfnhSGX_X4zgeqV7DrmF8UaONP8DGEO881uvKzMDMRuXttS73Yx1gK3AVJU6OkFqNiYEIQyVjYA4AbQ/w80-h65-p-k-no-nu/IMG_20230121_003822_147.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v273f"
expires: Mon, 23 Jan 2023 22:51:49 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="IMG_20230121_003822_147.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:51:49 GMT
server: fife
content-length: 4743
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiWjm1753aaZWZg9nINMfTZsyD9y3J_DhEIWTMY6rm1m665JubJKStwwf6mi5P6QwuVbkHq5hs7C4qTX5YXlB-R7FLt96lwT9Mgna0DCm00-mXWY5mlTYF790fJMw7yIovx6VFEH_36zgpygHjlMIqzuj1DjwC_Z6E8tcbio-QormTcftNKfRDxVpcVJQ/w80-h65-p-k-no-nu/PicsArt_08-18-12.22.08.jpg
142.250.74.97200 OK 4.1 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiWjm1753aaZWZg9nINMfTZsyD9y3J_DhEIWTMY6rm1m665JubJKStwwf6mi5P6QwuVbkHq5hs7C4qTX5YXlB-R7FLt96lwT9Mgna0DCm00-mXWY5mlTYF790fJMw7yIovx6VFEH_36zgpygHjlMIqzuj1DjwC_Z6E8tcbio-QormTcftNKfRDxVpcVJQ/w80-h65-p-k-no-nu/PicsArt_08-18-12.22.08.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 80x65, components 3\012- data
Hash 45013417b6b49e5f5c51902458fe2668
090caf9e40e57a604d07f2bd8275879459826ded
a2be8941b9b14e165d6be277e3b3d3570f5ba1a9da7e1d35abe68c8cd485a860
GET /img/b/R29vZ2xl/AVvXsEiWjm1753aaZWZg9nINMfTZsyD9y3J_DhEIWTMY6rm1m665JubJKStwwf6mi5P6QwuVbkHq5hs7C4qTX5YXlB-R7FLt96lwT9Mgna0DCm00-mXWY5mlTYF790fJMw7yIovx6VFEH_36zgpygHjlMIqzuj1DjwC_Z6E8tcbio-QormTcftNKfRDxVpcVJQ/w80-h65-p-k-no-nu/PicsArt_08-18-12.22.08.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2273"
expires: Mon, 23 Jan 2023 22:51:49 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_08-18-12.22.08.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:51:49 GMT
server: fife
content-length: 4085
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgHddadROY03a81RPDFBXPKYn60b_OsDV_YFllOMzi3rRVE9JOcb-lr9sYCkt69Kz_TyA-egtR8vNJLbLqbXlcPmtuifzroDqGjPfl0GeOknsYwf42MCE-fJSCAK_2VOQq9S9VA9I6McWW85TEaTf6vCA3vNCZ8xi4nUhjKYDBARG8Pdk3CNxkz-YKtCQ/w80-h65-p-k-no-nu/PicsArt_08-23-05.37.53.jpg
142.250.74.97200 OK 4.1 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgHddadROY03a81RPDFBXPKYn60b_OsDV_YFllOMzi3rRVE9JOcb-lr9sYCkt69Kz_TyA-egtR8vNJLbLqbXlcPmtuifzroDqGjPfl0GeOknsYwf42MCE-fJSCAK_2VOQq9S9VA9I6McWW85TEaTf6vCA3vNCZ8xi4nUhjKYDBARG8Pdk3CNxkz-YKtCQ/w80-h65-p-k-no-nu/PicsArt_08-23-05.37.53.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 80x65, components 3\012- data
Hash ce2b296cd0f36d337f7e264f0894c708
e82f9c84337b9f6da07070b9ecaa26085328cba5
7a220cd452a5729b1c57384ad43c83ac782bff63fed4bfd1bac38046ebb6794d
GET /img/b/R29vZ2xl/AVvXsEgHddadROY03a81RPDFBXPKYn60b_OsDV_YFllOMzi3rRVE9JOcb-lr9sYCkt69Kz_TyA-egtR8vNJLbLqbXlcPmtuifzroDqGjPfl0GeOknsYwf42MCE-fJSCAK_2VOQq9S9VA9I6McWW85TEaTf6vCA3vNCZ8xi4nUhjKYDBARG8Pdk3CNxkz-YKtCQ/w80-h65-p-k-no-nu/PicsArt_08-23-05.37.53.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2290"
expires: Mon, 23 Jan 2023 22:51:49 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_08-23-05.37.53.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:51:49 GMT
server: fife
content-length: 4067
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh2NtpCcJVfUaTFKDEgdAcziYTdLFan_7yGWYHeAj0R_LSixmYIwZRoWTnbmk3h4A_HXKk45Fz_OAkwnOCO3ZIOAvhSlSXSg091-UrGixl13ZvOdZSAFZrBt7OqQy1N8z5JVo2vfUvkJlX1CPzsFzfEJyTJIeqA5QvSH01HlsHQ2Ehw3Mqe-sf6ZmewBg/w80-h65-p-k-no-nu/PicsArt_09-20-09.31.38.jpg
142.250.74.97200 OK 4.7 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEh2NtpCcJVfUaTFKDEgdAcziYTdLFan_7yGWYHeAj0R_LSixmYIwZRoWTnbmk3h4A_HXKk45Fz_OAkwnOCO3ZIOAvhSlSXSg091-UrGixl13ZvOdZSAFZrBt7OqQy1N8z5JVo2vfUvkJlX1CPzsFzfEJyTJIeqA5QvSH01HlsHQ2Ehw3Mqe-sf6ZmewBg/w80-h65-p-k-no-nu/PicsArt_09-20-09.31.38.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 80x65, components 3\012- data
Hash 88c127bf820a8d437252794ed9bd45cc
85b2ddb8f302d42c797edbc30640eb26505a3f12
073c9e4da230b2e3e37a1367e160ba67bd989ef72e70a70c55e21d80e15ed3f7
GET /img/b/R29vZ2xl/AVvXsEh2NtpCcJVfUaTFKDEgdAcziYTdLFan_7yGWYHeAj0R_LSixmYIwZRoWTnbmk3h4A_HXKk45Fz_OAkwnOCO3ZIOAvhSlSXSg091-UrGixl13ZvOdZSAFZrBt7OqQy1N8z5JVo2vfUvkJlX1CPzsFzfEJyTJIeqA5QvSH01HlsHQ2Ehw3Mqe-sf6ZmewBg/w80-h65-p-k-no-nu/PicsArt_09-20-09.31.38.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v246d"
expires: Mon, 23 Jan 2023 22:51:49 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_09-20-09.31.38.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:51:49 GMT
server: fife
content-length: 4739
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiwLCDz6jG0iKOahPL51jTrfSKxA8my-TFxJZVJu3ahniSI806H2_Q-ZuxX8CeMBdeA1WOvl8izge7PNiiGLqkwVo5Dj-vveVV2pjVsrblwqcGywuau4nNuv0JVFjyQjjW_EijylQpBko8JyksWapMy-K41FWW1J3KigchaJjuFkp9QjctandfhpQwcqg/w80-h65-p-k-no-nu/PicsArt_08-07-07.44.17.jpg
142.250.74.97200 OK 4.3 kB URL HTTP/2 blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiwLCDz6jG0iKOahPL51jTrfSKxA8my-TFxJZVJu3ahniSI806H2_Q-ZuxX8CeMBdeA1WOvl8izge7PNiiGLqkwVo5Dj-vveVV2pjVsrblwqcGywuau4nNuv0JVFjyQjjW_EijylQpBko8JyksWapMy-K41FWW1J3KigchaJjuFkp9QjctandfhpQwcqg/w80-h65-p-k-no-nu/PicsArt_08-07-07.44.17.jpg
IP 142.250.74.97:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 80x65, components 3\012- data
Hash 4a1617affc26a30facf849eb26b5938e
3cc6e9c8be73039c286e94f3b42c0739be4b3fc9
154095abadadccaa67479adf89c98237b9e9b3c6c1ff869469dc9e2bf8f92f4b
GET /img/b/R29vZ2xl/AVvXsEiwLCDz6jG0iKOahPL51jTrfSKxA8my-TFxJZVJu3ahniSI806H2_Q-ZuxX8CeMBdeA1WOvl8izge7PNiiGLqkwVo5Dj-vveVV2pjVsrblwqcGywuau4nNuv0JVFjyQjjW_EijylQpBko8JyksWapMy-K41FWW1J3KigchaJjuFkp9QjctandfhpQwcqg/w80-h65-p-k-no-nu/PicsArt_08-07-07.44.17.jpg HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2212"
expires: Mon, 23 Jan 2023 22:51:49 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="PicsArt_08-07-07.44.17.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Sun, 22 Jan 2023 22:51:49 GMT
server: fife
content-length: 4319
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f82a4633fe57b496fb5cd05288b04145
ac0346f5dcb9cf3e1a2cc701848f95ee57b0bfd2
a081933eef2483a8b7fe00e421b35ea57db032bbdae36b45d520935df4006425
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A081933EEF2483A8B7FE00E421B35EA57DB032BBDAE36B45D520935DF4006425"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7815
Expires: Mon, 23 Jan 2023 01:02:04 GMT
Date: Sun, 22 Jan 2023 22:51:49 GMT
Connection: keep-alive
googleads.g.doubleclick.net/pagead/html/r20230118/r20190131/zrt_lookup.html
142.250.74.130200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230118/r20190131/zrt_lookup.html
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230118/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Sun, 22 Jan 2023 20:36:16 GMT
expires: Sun, 05 Feb 2023 20:36:16 GMT
cache-control: public, max-age=1209600
age: 8133
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f82a4633fe57b496fb5cd05288b04145
ac0346f5dcb9cf3e1a2cc701848f95ee57b0bfd2
a081933eef2483a8b7fe00e421b35ea57db032bbdae36b45d520935df4006425
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A081933EEF2483A8B7FE00E421B35EA57DB032BBDAE36B45D520935DF4006425"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7815
Expires: Mon, 23 Jan 2023 01:02:04 GMT
Date: Sun, 22 Jan 2023 22:51:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 65ef6cd7b306a14db6bae32b6e53cb21
f075625519666495b65144b86440c3b912ff4975
d2587fc268e36bd7e808e250b4c85412520e25c0232d7f7bc564b04331f70d1b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2587FC268E36BD7E808E250B4C85412520E25C0232D7F7BC564B04331F70D1B"
Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7206
Expires: Mon, 23 Jan 2023 00:51:55 GMT
Date: Sun, 22 Jan 2023 22:51:49 GMT
Connection: keep-alive
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f82a4633fe57b496fb5cd05288b04145
ac0346f5dcb9cf3e1a2cc701848f95ee57b0bfd2
a081933eef2483a8b7fe00e421b35ea57db032bbdae36b45d520935df4006425
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A081933EEF2483A8B7FE00E421B35EA57DB032BBDAE36B45D520935DF4006425"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7815
Expires: Mon, 23 Jan 2023 01:02:04 GMT
Date: Sun, 22 Jan 2023 22:51:49 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 36f69c576be6f781f131e89d144916b2
a96a0a7bad1198b6265756eb6dd79d444199dbaf
b1fa2795c057042627ad607c3a2bce695c3c564803d938373cd8243478d3d0d2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cloudimagesb.com/si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png
45.133.44.10200 OK 12 kB URL HTTP/2 cdn.cloudimagesb.com/si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash c07f1baac701b672939b359081f813c7
d38ffbae259aae1e8ad3b38959339bb29da9b69f
85bc8e3de3651f6f03dc381ea4bbaff350d8973c37f598582838677817bf1826
GET /si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:49 GMT
content-type: image/png
content-length: 12186
server: nginx/1.17.6
last-modified: Sun, 22 Jan 2023 04:25:10 GMT
etag: "63ccbaa6-2f9a"
expires: Tue, 24 Jan 2023 22:51:49 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.33.119.27200 OK 344 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f82a4633fe57b496fb5cd05288b04145
ac0346f5dcb9cf3e1a2cc701848f95ee57b0bfd2
a081933eef2483a8b7fe00e421b35ea57db032bbdae36b45d520935df4006425
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "A081933EEF2483A8B7FE00E421B35EA57DB032BBDAE36B45D520935DF4006425"
Last-Modified: Sat, 21 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7815
Expires: Mon, 23 Jan 2023 01:02:04 GMT
Date: Sun, 22 Jan 2023 22:51:49 GMT
Connection: keep-alive
dimreproofjumped.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fanimate.css&l=79245&fd=720
173.233.137.44200 OK 0 B URL HTTP/1.1 dimreproofjumped.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fanimate.css&l=79245&fd=720
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fanimate.css&l=79245&fd=720 HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:49 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
dimreproofjumped.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fjs%2Fscript.js&l=387&fd=699
173.233.137.44200 OK 0 B URL HTTP/1.1 dimreproofjumped.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fjs%2Fscript.js&l=387&fd=699
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fjs%2Fscript.js&l=387&fd=699 HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:49 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
dimreproofjumped.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fstyle.css&l=5214&fd=758
173.233.137.44200 OK 0 B URL HTTP/1.1 dimreproofjumped.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fstyle.css&l=5214&fd=758
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Fnotifications%2Fsoftware%2Fus%2Fios%2Fdesk-new-big%2Fcss%2Fstyle.css&l=5214&fd=758 HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
dimreproofjumped.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3uQ77eVzcQ8ehD4qyKR7eiYzY4RgXCPBNcluViIehOqq6kmZmq6mqmt6MniILuhehNmTHjvPJBvWXWQXvPqDiQcleNjxIDkY%2F4UFwbPMZCD4QtX7vvW8h%2Bd56%2Fn8wJ2TAI6ebb6n%2B1IpulCvBP4r2zLlurD%2B%2Bh0%2FDCrBkr8t08Xakt%2BbXKb7ehjUK8Gr%2FjuC7eqFahAGQRiE%2Fqo0ItG9hSkKmT1uhZVWUKlVK2G9hp75b2%2BdB0s98O45uQbJx%2F%2Fb%2BfUpJBsh7Ty5IexurrPX3u44RXNt0OXH76e7qS5SdC7LxHhI0uPZNLQdE%2FL1Fej0eKYAuns4UYBYjon3R4g4PZ7RRNw9umAaK4gUMb%2BKojuCUCNIOgLTdyH5MwIwjvUNpJ0H69oUdO8CpRN0TOb%2F%2BRuyGJP5P19E2vl2Rcmev6WVy6VOLXpJCdkbQbZHyNwJ8r4HWZyA5Z9BcoK0U0LycqpayhFkMoISA1DrwU2O9OASDy7z0OFnPq23kiBoJHESRc0aYyyKGKs3F3mdR7VmEsCxCa0B8mwApgZgZh%2BZ2ceuvP%2Bsfg3G%2FQS7U8JyDzYfE%2B%2FWPrq8RCEICktQUIJCEhQ5QdEtj7iyVVs%2B4Mq6OJzl6ixH5VDn7QN6pPO2SMlBdk5emK7k%2BcNl7IozP2mwalINm7QRRtVaUmsJyqKk0Yii%2BmKdNWNYWULaK1O1fTkm1z96gkyOydz1LxDTE1h1AibnQN3LoMWwUQ1Ad4a1ZoB%2B%2Boj32844W2G6A65LZPk88j3vQJ2Tl6Y03ri1BcFOySzATInMlPhY%2FkzQVveGt3VBDm%2FrwpKnG1kuO7JPJ7%2B2ldNceN%2B8K%2FYKbfjaDTt4%2BCabAJPy8R1h85s05TJtW%2FJoRXIuzKo2TJDv1%2By2iDed3VlxJnXZzc23Vtc6mRHWSp2OQOWYkE8%2FAZNjctVLp470e%2BeQZgTjSnTcJVepT8CyfdjsdPmrLzf%2BWuIfwmoCoy5n4sxD4cqhqcaXj0oSKHHZ07iEFafLv3zX%2BuD%2F8Tpicfrj8wvswN5D23ig%2Bd2pD7umRFeVoGoA6%2BaGeWZOl3%2BPpoFYecNYGe8wVkbdv1iulWd%2BPayJZtxsMM5jwXjYqEbNKAiqnNcaLRG2kNsx%2B%2B2HuX8BAAD%2F%2FwEAAP%2F%2FGsQqcmkEAAA%3D
173.233.137.44200 OK 7 B URL HTTP/1.1 dimreproofjumped.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3uQ77eVzcQ8ehD4qyKR7eiYzY4RgXCPBNcluViIehOqq6kmZmq6mqmt6MniILuhehNmTHjvPJBvWXWQXvPqDiQcleNjxIDkY%2F4UFwbPMZCD4QtX7vvW8h%2Bd56%2Fn8wJ2TAI6ebb6n%2B1IpulCvBP4r2zLlurD%2B%2Bh0%2FDCrBkr8t08Xakt%2BbXKb7ehjUK8Gr%2FjuC7eqFahAGQRiE%2Fqo0ItG9hSkKmT1uhZVWUKlVK2G9hp75b2%2BdB0s98O45uQbJx%2F%2Fb%2BfUpJBsh7Ty5IexurrPX3u44RXNt0OXH76e7qS5SdC7LxHhI0uPZNLQdE%2FL1Fej0eKYAuns4UYBYjon3R4g4PZ7RRNw9umAaK4gUMb%2BKojuCUCNIOgLTdyH5MwIwjvUNpJ0H69oUdO8CpRN0TOb%2F%2BRuyGJP5P19E2vl2Rcmev6WVy6VOLXpJCdkbQbZHyNwJ8r4HWZyA5Z9BcoK0U0LycqpayhFkMoISA1DrwU2O9OASDy7z0OFnPq23kiBoJHESRc0aYyyKGKs3F3mdR7VmEsCxCa0B8mwApgZgZh%2BZ2ceuvP%2Bsfg3G%2FQS7U8JyDzYfE%2B%2FWPrq8RCEICktQUIJCEhQ5QdEtj7iyVVs%2B4Mq6OJzl6ixH5VDn7QN6pPO2SMlBdk5emK7k%2BcNl7IozP2mwalINm7QRRtVaUmsJyqKk0Yii%2BmKdNWNYWULaK1O1fTkm1z96gkyOydz1LxDTE1h1AibnQN3LoMWwUQ1Ad4a1ZoB%2B%2Boj32844W2G6A65LZPk88j3vQJ2Tl6Y03ri1BcFOySzATInMlPhY%2FkzQVveGt3VBDm%2FrwpKnG1kuO7JPJ7%2B2ldNceN%2B8K%2FYKbfjaDTt4%2BCabAJPy8R1h85s05TJtW%2FJoRXIuzKo2TJDv1%2By2iDed3VlxJnXZzc23Vtc6mRHWSp2OQOWYkE8%2FAZNjctVLp470e%2BeQZgTjSnTcJVepT8CyfdjsdPmrLzf%2BWuIfwmoCoy5n4sxD4cqhqcaXj0oSKHHZ07iEFafLv3zX%2BuD%2F8Tpicfrj8wvswN5D23ig%2Bd2pD7umRFeVoGoA6%2BaGeWZOl3%2BPpoFYecNYGe8wVkbdv1iulWd%2BPayJZtxsMM5jwXjYqEbNKAiqnNcaLRG2kNsx%2B%2B2HuX8BAAD%2F%2FwEAAP%2F%2FGsQqcmkEAAA%3D
IP 173.233.137.44:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3uQ77eVzcQ8ehD4qyKR7eiYzY4RgXCPBNcluViIehOqq6kmZmq6mqmt6MniILuhehNmTHjvPJBvWXWQXvPqDiQcleNjxIDkY%2F4UFwbPMZCD4QtX7vvW8h%2Bd56%2Fn8wJ2TAI6ebb6n%2B1IpulCvBP4r2zLlurD%2B%2Bh0%2FDCrBkr8t08Xakt%2BbXKb7ehjUK8Gr%2FjuC7eqFahAGQRiE%2Fqo0ItG9hSkKmT1uhZVWUKlVK2G9hp75b2%2BdB0s98O45uQbJx%2F%2Fb%2BfUpJBsh7Ty5IexurrPX3u44RXNt0OXH76e7qS5SdC7LxHhI0uPZNLQdE%2FL1Fej0eKYAuns4UYBYjon3R4g4PZ7RRNw9umAaK4gUMb%2BKojuCUCNIOgLTdyH5MwIwjvUNpJ0H69oUdO8CpRN0TOb%2F%2BRuyGJP5P19E2vl2Rcmev6WVy6VOLXpJCdkbQbZHyNwJ8r4HWZyA5Z9BcoK0U0LycqpayhFkMoISA1DrwU2O9OASDy7z0OFnPq23kiBoJHESRc0aYyyKGKs3F3mdR7VmEsCxCa0B8mwApgZgZh%2BZ2ceuvP%2Bsfg3G%2FQS7U8JyDzYfE%2B%2FWPrq8RCEICktQUIJCEhQ5QdEtj7iyVVs%2B4Mq6OJzl6ixH5VDn7QN6pPO2SMlBdk5emK7k%2BcNl7IozP2mwalINm7QRRtVaUmsJyqKk0Yii%2BmKdNWNYWULaK1O1fTkm1z96gkyOydz1LxDTE1h1AibnQN3LoMWwUQ1Ad4a1ZoB%2B%2Boj32844W2G6A65LZPk88j3vQJ2Tl6Y03ri1BcFOySzATInMlPhY%2FkzQVveGt3VBDm%2FrwpKnG1kuO7JPJ7%2B2ldNceN%2B8K%2FYKbfjaDTt4%2BCabAJPy8R1h85s05TJtW%2FJoRXIuzKo2TJDv1%2By2iDed3VlxJnXZzc23Vtc6mRHWSp2OQOWYkE8%2FAZNjctVLp470e%2BeQZgTjSnTcJVepT8CyfdjsdPmrLzf%2BWuIfwmoCoy5n4sxD4cqhqcaXj0oSKHHZ07iEFafLv3zX%2BuD%2F8Tpicfrj8wvswN5D23ig%2Bd2pD7umRFeVoGoA6%2BaGeWZOl3%2BPpoFYecNYGe8wVkbdv1iulWd%2BPayJZtxsMM5jwXjYqEbNKAiqnNcaLRG2kNsx%2B%2B2HuX8BAAD%2F%2FwEAAP%2F%2FGsQqcmkEAAA%3D HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:51 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ebb44715ab7b49b0adae34101fd12479
Strict-Transport-Security: max-age=0; includeSubdomains
dimreproofjumped.com/pixel/sbs?c=1
173.233.137.44200 OK 0 B URL HTTP/1.1 dimreproofjumped.com/pixel/sbs?c=1
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: dimreproofjumped.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Cookie: u_pl=15771967; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecf7c2f218a71324f49eac3f7733565c8b=[3952979]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 22 Jan 2023 22:51:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/animate.css
172.64.167.9200 OK 78 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/animate.css
IP 172.64.167.9:0
Hash 6e67940432b7819a4bec51f6c0ef670b
30a1df78c2edde47da027d08333e6f25735729a2
1eb41d59360632a9173855c8f536c99bb010da047bf3c70c2a74875ff84d3756
GET /sb/notifications/software/us/ios/desk-new-big/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:49 GMT
content-type: text/css
last-modified: Wed, 17 Feb 2021 11:44:02 GMT
etag: W/"602d0182-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3w5dJgMqWMNulT%2BxxifA4MRdibNJI%2B81odCRu9%2B%2BdhWIHKpv6LTRLdKDVZ79nGS3bCvHiTv5ArmdtOMsBfQYVyA1ojiPkIdvZ9cGe%2B9xD5YkM90BebT8KFwlLDcxiP%2FuRVW%2Fy8TjCQ2z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dbdb41eb3e23c9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bb5fac1f289cb91381d3d1a07094b179
df6f8fe7a21efb35290d24f2b8b0fe809cae8d33
34472778a647b2db33e669d8582b510d94d9e0d355d77c73d643b7495b0f6997
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cc298ded3fc0f058105ddd7b442f5b55
38d43fe921b0b34e4a762598c3ad003956592c04
61a166c11ee3bc04f5be109d262b7f69525e428b1a85f68e00a58de4ff26b4c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=www.dzgurus.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.dzgurus.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.dzgurus.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 22 Jan 2023 22:51:51 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.dzgurus.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.dzgurus.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.dzgurus.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 22 Jan 2023 22:51:52 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash cc298ded3fc0f058105ddd7b442f5b55
38d43fe921b0b34e4a762598c3ad003956592c04
61a166c11ee3bc04f5be109d262b7f69525e428b1a85f68e00a58de4ff26b4c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 31a96aea31b9bde911c809b90b4b2340
67ac2a598c4d19de11e6a81eabb7af7aeec45dcb
22eb898eb4c8aafb440456924cb0a74529b3f18dbc9e0fa11fdfeeef4ac37908
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.dzgurus.com&callback=_gfp_s_&client=ca-pub-2719765140359855
216.58.207.226200 OK 253 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.dzgurus.com&callback=_gfp_s_&client=ca-pub-2719765140359855
IP 216.58.207.226:0
File type ASCII text, with very long lines (389), with no line terminators
Hash ce5bfdadafbdeceda6d91b4d0c7ca444
2b8007ad83239827c9c5bc3c7d26734f0f9c38ff
9de5d09b502551945a55344cb3365ac71f4e018b1060bc661d93ebb1973adaa1
GET /gampad/cookie.js?domain=www.dzgurus.com&callback=_gfp_s_&client=ca-pub-2719765140359855 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 22 Jan 2023 22:51:52 GMT
server: cafe
cache-control: private
content-length: 253
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 31a96aea31b9bde911c809b90b4b2340
67ac2a598c4d19de11e6a81eabb7af7aeec45dcb
22eb898eb4c8aafb440456924cb0a74529b3f18dbc9e0fa11fdfeeef4ac37908
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 22 Jan 2023 22:51:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/style.css
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/style.css
IP 172.64.167.9:0
GET /sb/notifications/software/us/ios/desk-new-big/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:49 GMT
content-type: text/css
last-modified: Thu, 23 Sep 2021 12:16:53 GMT
etag: W/"614c7035-145e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h9IsREIHOjI7vooRDKBlDUsNkgDzd0rkRjjzx72kIypQm4SpU3ioZbGJMoYw05jBOYUM8UY6qSQ4BYvp86jNhmQbF%2BXvx12bxYFPTmjV2yfVALCINl9v7QIryXSoupnqVeHql4GbCo%2Bx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dbdb422ba723c9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn1.ashampoo.net/ashampoo/0849/ashampoo_anti-virus_2021.3.0_sm.exe
143.204.55.84200 OK 0 B URL HTTP/1.1 cdn1.ashampoo.net/ashampoo/0849/ashampoo_anti-virus_2021.3.0_sm.exe
IP 143.204.55.84:0
GET /ashampoo/0849/ashampoo_anti-virus_2021.3.0_sm.exe HTTP/1.1
Host: cdn1.ashampoo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 357663400
Connection: keep-alive
Date: Sun, 22 Jan 2023 22:48:52 GMT
Last-Modified: Tue, 25 May 2021 06:30:08 GMT
ETag: "92b7f6a473f8bf4d703992ba485cebe9"
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pbnupTv2KXdNH9XWavXPhm0Hs6mBIjoe2QZ4BeRg2DhQftwa1ki_tw==
Age: 173
fonts.gstatic.com/s/roboto/v19/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.67200 OK 0 B URL HTTP/2 fonts.gstatic.com/s/roboto/v19/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.67:0
GET /s/roboto/v19/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 16 Jan 2023 16:07:50 GMT
expires: Tue, 16 Jan 2024 16:07:50 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 25 Mar 2019 20:13:46 GMT
content-type: font/woff2
age: 542637
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
172.64.141.24200 OK 0 B URL HTTP/2 friendshipmale.com/sfp.js
IP 172.64.141.24:0
Analyzer Verdict Alert fortinet Malware
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:47 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: aebb175fa9791bafe50c36610a025d06
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 22 Jan 2023 22:51:47 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pWpOm%2FIDZdbUSyl7XefGwHI90fy7ZlPPE4Wj7aMKVUEHG6rpOyEmVz5EB7XRkLwsxTd5tT9k7AD39ekDPA3T6xM77aIa0DyDSz2agd6lyBJ%2B7Ki4O0PdVET0gK61PdLGmQ%2FTS90%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dbdb337dd424ae-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 22 Jan 2023 22:51:48 GMT
expires: Sun, 22 Jan 2023 22:51:48 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 6751553148698283249
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49721
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/js/script.js
172.64.167.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/js/script.js
IP 172.64.167.9:0
GET /sb/notifications/software/us/ios/desk-new-big/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dzgurus.com
Connection: keep-alive
Referer: https://www.dzgurus.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 22 Jan 2023 22:51:49 GMT
content-type: application/javascript
last-modified: Wed, 17 Feb 2021 11:44:05 GMT
etag: W/"602d0185-183"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LYWZFr6kbun0mfc7vxnfbSVttZPCjK%2BfUlgRQhIi7orxqVptP%2BtcD7nTGcCeU4D0YJzQrk%2B2maZnGosZZ17AqYRkrE1a2oSvrHAbinotM%2BsZQQAowjldnGmkW0QLxKqv3bxlSSS3zMXv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 78dbdb41badf23c9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2