azkcqs.com/rpe?a=1&s=1&act=17&src=2&p=1146743&st=1218198&wd=454642&d=szqxvo.com&tpl=1&rnd=0.339523943692675&sbid=ec5ffb2a-11a5-4c0f-bc2b-9c7ee08d&sbid2=
185.162.85.2 0 B URL azkcqs.com/rpe?a=1&s=1&act=17&src=2&p=1146743&st=1218198&wd=454642&d=szqxvo.com&tpl=1&rnd=0.339523943692675&sbid=ec5ffb2a-11a5-4c0f-bc2b-9c7ee08d&sbid2=
IP 185.162.85.2:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rpe?a=1&s=1&act=17&src=2&p=1146743&st=1218198&wd=454642&d=szqxvo.com&tpl=1&rnd=0.339523943692675&sbid=ec5ffb2a-11a5-4c0f-bc2b-9c7ee08d&sbid2= HTTP/1.1
Host: azkcqs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://m8bxk.szqxvo.com
DNT: 1
Connection: keep-alive
Referer: https://m8bxk.szqxvo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0
date: Fri, 26 May 2023 22:24:23 GMT
content-length: 0
accept-ch: Sec-CH-UA-Platform-Version
access-control-allow-origin: *
X-Firefox-Spdy: h2
ecrwqu.com/cuclc?aid=5584915934741089404&t=1685139863&s=198
185.162.85.20 1.2 kB URL ecrwqu.com/cuclc?aid=5584915934741089404&t=1685139863&s=198
IP 185.162.85.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1163), with no line terminators
Hash 1b983ff3f2b642336275a21f41fc8ee3
7bd4c648c51cdcb5cea72ca49af306de074f413b
97bc9339731c3cfa1d4539890aee405dba559e6ca1bfa3182a5f0092b1e3db91
Analyzer Verdict Alert quad9 Sinkholed
GET /cuclc?aid=5584915934741089404&t=1685139863&s=198 HTTP/1.1
Host: ecrwqu.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://m8bxk.szqxvo.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx/1.18.0
date: Fri, 26 May 2023 22:24:23 GMT
content-type: text/html; charset=utf-8
content-length: 1163
location: https://s.viiyblva.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====?u=
X-Firefox-Spdy: h2
s.viiyblva.com/cnt/api/index
31.220.27.134 0 B URL s.viiyblva.com/cnt/api/index
IP 31.220.27.134:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cnt/api/index HTTP/1.1
Host: s.viiyblva.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3157
Origin: https://s.viiyblva.com
DNT: 1
Connection: keep-alive
Referer: https://s.viiyblva.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====?u=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.23.2
date: Fri, 26 May 2023 22:24:24 GMT
content-type: application/json
content-length: 0
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://s.viiyblva.com
X-Firefox-Spdy: h2
s.viiyblva.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====?u=
31.220.27.134 20 kB URL s.viiyblva.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====?u=
IP 31.220.27.134:0
ASN #39572 DataWeb Global Group B.V.
File type gzip compressed data, from Unix\012- data
Hash 8f75626a9876a8199afb349288a87747
f6423251c79a58ae1d75a1a9ab166207810f5a55
efb5f2ccd322bb1cda915f517dfe90c0fc7098fd0fd36073693b90292d32e2d8
GET /h/1524/m2nuuqm24v4vvnu34ddhm46iqdymbyxmwn3uuwsconaeamdvezctzr5irxbhcbjg2bl3yso3kl5mwuhuk2n4u562gpzpf6gqsck6paz4tbfcnclw36l6f7slwjzod27h6bd5oqnuvshlg5pcpjjnusdmbar6aslbvr2w2ssingmea4vdgrgkarswynzltdunop5hxgu46vxym34nyxxmo5n7jfff4sm2oc7ozdwfjw3ubxlxriyxh4t4y6jy5tkazzkfc6cxj5mhw63pob2eayadorqho3trjbbvib2aizggsqp2njdy4vcj2fwy62k2ybjututwkismuwsm7p4iw53stcgfiycrkbrdmtamwzbsdcdqyvfz5jsa6jzj7mcfwbcydm3zr5rrcei4bzqrml24pyhgo7lyaajvk7d3mrycisrxan6tuj3bpmkuovqfcrdedudsjptejqhlwff7s5lz65fed74tjoldjtxqx5xzm43c2xruvat2xtqyldpsyp4yxqlasvxmksj6hq3ag2izmi7swizml4arauyrdeecggbnaezag7r4eahvqxd7b4bc4j2mgblsakdzmfyesqsuabkacejecv3v64s5m5zxsukgl55hyz3zpnbwceboheydeja6a4nq6q2hjzqfmkibgumg263hkfdvy6dogmydmfrblawdigz6e5gbmdceimkb2ysifbmxaxjrf5yvorc7oixg6ldximyvk63aebsxorqtkyfwqq3sljbxevtsljthg4kzin6yrq5rvwq7nrplq5mwzv4xtgxwoyxw7g35c5ys53wolhkafhwoz4hzj47ewyccloxecqtnh43qkbkydvorodrrcqvrqgi4h45tupquduus4cjjeydd6qqsnf3gm62ajrnbyei5cvqjstkgirompkenyjyvoycak5ijja23c2a54td2ce4orwah6wysu2sjjjxemld24inn4nu3miklsoa2hfwh4wiika======?u= HTTP/1.1
Host: s.viiyblva.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://m8bxk.szqxvo.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.23.2
date: Fri, 26 May 2023 22:24:24 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
accept-ch: Width, Viewport-Width, DPR, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
content-encoding: gzip
X-Firefox-Spdy: h2
goto.trackpshgoto.win/15GTfe?camp=638762&site=1417800120411902&category=1560&cost=0.0012&external_id=cnv1fe28b761ad86328f9d50bc68d247f49
20.113.67.50 320 B URL goto.trackpshgoto.win/15GTfe?camp=638762&site=1417800120411902&category=1560&cost=0.0012&external_id=cnv1fe28b761ad86328f9d50bc68d247f49
IP 20.113.67.50:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (320), with no line terminators
Hash 19ea1bb402e351614837602c56d6ff26
53d648be97073f3a8ba4aca4dbe517976c4c9220
3ab08af77002e9d4a122ea8e51dd8213443a53817c29ca9ab19fb4281bb1862f
GET /15GTfe?camp=638762&site=1417800120411902&category=1560&cost=0.0012&external_id=cnv1fe28b761ad86328f9d50bc68d247f49 HTTP/1.1
Host: goto.trackpshgoto.win
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.23.0
Date: Fri, 26 May 2023 22:24:24 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 320
Connection: keep-alive
X-Powered-By: Express
Set-Cookie: 15GTfeo=20230527011685140529935; domain=.goto.trackpshgoto.win; path=/;expires=Sat, 27 May 2023 22:24:24 GMT; httpOnly=true;SameSite=None; Secure;
_pc_lc_id=15GTfe; domain=.goto.trackpshgoto.win; path=/;expires=Sat, 27 May 2023 22:24:24 GMT; httpOnly=true;SameSite=None; Secure;
peerclickcid=fda795b4284d58a10eae850403733001-42510-0527; domain=.goto.trackpshgoto.win; path=/;expires=Sat, 27 May 2023 22:24:24 GMT; httpOnly=true;SameSite=None; Secure;
_norg=1; domain=.goto.trackpshgoto.win; path=/;expires=Sat, 27 May 2023 22:24:24 GMT; httpOnly=true;SameSite=None; Secure;
Location: https://alvsx.cloudpsh.top/?pl=ilQCmFnYrkuT1vv7YSUY4Q&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902
Vary: Accept
alvsx.cloudpsh.top/?pl=ilQCmFnYrkuT1vv7YSUY4Q&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902
5.75.133.219 0 B URL alvsx.cloudpsh.top/?pl=ilQCmFnYrkuT1vv7YSUY4Q&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902
IP 5.75.133.219:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?pl=ilQCmFnYrkuT1vv7YSUY4Q&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902 HTTP/1.1
Host: alvsx.cloudpsh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
server: nginx
date: Fri, 26 May 2023 22:24:25 GMT
content-length: 0
location: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
set-cookie: ilQCmFnYrkuT1vv7YSUY4Q=19; max-age=345600; path=/; samesite=lax
__pl=bbc9bf69-d095-42e9-8122-4da996f5a247; expires=Mon, 26 May 2025 22:24:25 GMT; path=/; samesite=lax
__cap=1; max-age=3600; path=/; samesite=lax
cache-control: max-age=0, no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
alvsx.crystalcrafter.top/ph-new/assets/thumb-big.jpg
104.21.7.3 83 kB URL alvsx.crystalcrafter.top/ph-new/assets/thumb-big.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1237x691, components 3\012- data
Hash cb5cedbae6d67e62dc9fde274b7f7dbe
f31d7811c4b6e50ae053f315152366501a8b6002
deaddba93625d2c7610076927fcd37afadad9324ca3210a2bb12784d313dd788
GET /ph-new/assets/thumb-big.jpg HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:25 GMT
content-type: image/jpeg
content-length: 82623
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-142bf"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NHEHw5AdqlPdrF8tpyAqDe4PfJ0Z1i4B%2BOTX1KFCkAmyhmB3KBlKFdysXZu0bDrZfu%2BkEpHRIW01ZKO%2Be1Y3juxhuLs9GlL6ML28BxF3wyj%2BhKUHJMR9jufUn2Xen1wqcZvmS9Ofg2AOZrM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96d9f3a191c12-OSL
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/favicon.ico
104.21.7.3 0 B URL alvsx.crystalcrafter.top/favicon.ico
IP 104.21.7.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 26 May 2023 22:24:25 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 146
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BWv0vrZO3rIqoMHJo5uWmiE51juX8gvkz18dgxZGUkBVkYB5swbbssacs1AoaxC%2FVZBPSKxC1QWzNRxdK55807gm8AM8Rm%2FdRQ4ofdsfrJQt63QCR%2FuDFYWxDvsNRGo5ErBGOvfBaErpoqY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da0baf91c12-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 22:24:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/firebasejs/8.4.1/firebase-app.js
142.250.74.35 6.8 kB URL www.gstatic.com/firebasejs/8.4.1/firebase-app.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (21158)
Hash e20da9cfaabf0b23d89c2335c06e2b03
b1af5616825acaba44bd714bd2685327abe896fd
d4d5669220045e130b79770e93dc7dca5fdfa00c9d7047639dbb15c4f28eb2e2
GET /firebasejs/8.4.1/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 6763
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 06:18:59 GMT
expires: Fri, 24 May 2024 06:18:59 GMT
cache-control: public, max-age=31536000
age: 144326
last-modified: Tue, 13 Apr 2021 06:56:11 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 22:24:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.streampsh.top/ps/ps.js?edg=true&fullscreen=true&pl=true&id=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&appspot=
104.21.27.231 20 kB URL js.streampsh.top/ps/ps.js?edg=true&fullscreen=true&pl=true&id=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&appspot=
IP 104.21.27.231:0
File type Unicode text, UTF-8 text, with very long lines (23337), with no line terminators
Hash e963e29628291e80529b84cb42580d78
562ec5335a31c4ff1e710b86075b744cd98e29e5
14b8a16c9d28817e667df6b5ad1a143b086d3fabaeba064b03b14894d2319237
GET /ps/ps.js?edg=true&fullscreen=true&pl=true&id=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&appspot= HTTP/1.1
Host: js.streampsh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:25 GMT
content-type: application/javascript
cache-control: max-age=0, no-cache, no-store, must-revalidate
cf-cache-status: BYPASS
set-cookie: __psu=3e2c75ca-6359-4fe8-b315-6508eb2442d1; expires=Mon, 26 May 2025 22:24:25 GMT; path=/; secure; samesite=none
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tCnCdgucrtKluMj%2F1qQQJDXcHFaxBLxBQgSSTHuvcp1jAp15FyEsUG9bL4qQcRy%2FN3FDcoTat0zea4Thl5LE9MRdUQMX0pnmKQoNLUILwkLX6TKIaEGH%2BAkUMCZiuaMlDRyV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da01ee10b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/ph-new/assets/rec-1.jpg
104.21.7.3 14 kB URL alvsx.crystalcrafter.top/ph-new/assets/rec-1.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash b2abcc52b7bf315893f6751d5fc7875e
5997c599c5e6c408b9019159f4608026a78223cf
098b2a4c2b05fc238c6eae8654ea2a3bc9d5fac7c59cb420242d405fcc83ed47
GET /ph-new/assets/rec-1.jpg HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 14404
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-3844"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IZZDJzAf8v%2B9JiSQcIVElXCDCRy0jISXUD0KxLI88U0x1oiSOgzt0AOEhV%2BpY3t9NgUy%2BjexevzwR9I3THoYai828rVPXJ9eoK1i9J9kMtxHJkP9sjbWu9HsCTOJb%2BMY6WvTGWfjF5Dabjs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da30c971c12-OSL
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/ph-new/assets/rec-2.jpg
104.21.7.3 11 kB URL alvsx.crystalcrafter.top/ph-new/assets/rec-2.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash dbe1dba764a2ef20cf6760ad30539988
e14dca406d4f5932a9a4683635bbdf87def79eba
b0fe8ace388ec8556bcdd46cd30a03ddaadcf80d124e9052f2a19a27061829f7
GET /ph-new/assets/rec-2.jpg HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 10890
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-2a8a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lDvr15AiGjmq0j%2FrRedGvrZe9fMUGJdbpylPnm4pSdsa%2BDL3F25fTHGFmCiE9S6v5BoydEgnKm2N7rppY0L07wsWKX4lDj5Yw6OhxzyyoEuWG1BzVpjijDF29xMVeq22WcsY4XnrVtBHu58%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da30c981c12-OSL
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/ph-new/assets/rec-4.jpg
104.21.7.3 8.9 kB URL alvsx.crystalcrafter.top/ph-new/assets/rec-4.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash 8375f2a1249ce00f118c5b616ab71492
4e2d3bc095c01632578b0b39afbfc03f43e3fa42
f71320d61eb339fdb7b5d20249d4f6aa6e37e22e618dc83e8459da1db3f79483
GET /ph-new/assets/rec-4.jpg HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 8900
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-22c4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oFimxmkJpm14gsObozcvO%2Fo7eivFBmqrtFk%2BFTl3eP8G1BnTn3CeC8s5vi69evuK99JLeQrgvRg9DwyKs6Kbt6WLSLas4fqnZQgjqITe5MVY69IQzmh8zA%2FIxZi0pH5VMbzJzo2nwnzAetE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da30c9c1c12-OSL
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
104.21.7.3 31 kB URL alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
IP 104.21.7.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4233), with CRLF line terminators
Hash c916b0032230dc45461448a9d5191da9
cca43f6ac66a63721abbfe3382eeef1638621175
247b5e37452e79fe61fd06fb5c1448b2ae4a13b12128851dd8cdb0c7b71c236a
GET /ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165 HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 22:24:25 GMT
content-type: text/html
last-modified: Mon, 01 May 2023 15:50:37 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J1m5phiHHTbGaLN7%2BJRUJd1ERY14u69Ohn3R%2BJrHR9iMhvxXKgNJt7M71kmiZGFbvXp%2FaZPZbWU%2F5X1d9aEYz8LNsJLdbajWfHsf1B2wVlNlAbcjtWdKY4ro6%2ByaCyEOsMWizD9fH5P%2F%2BM8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd96d9d6c931bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
alvsx.crystalcrafter.top/ph-new/assets/style.css
104.21.7.3 17 kB URL alvsx.crystalcrafter.top/ph-new/assets/style.css
IP 104.21.7.3:0
File type ASCII text, with CRLF line terminators
Hash 807d696b86114245f8eda3dce43f61ff
6d65ffaf8ec2107db8f1d29c410f152a8b809a56
7524af6d5f36df3e5d5c8148bc63e3956de050fa262fc0589e2a58dc606977bc
GET /ph-new/assets/style.css HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:25 GMT
content-type: text/css
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: W/"643e420e-5f33"
cache-control: max-age=14400
cf-cache-status: HIT
age: 7049
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QvrPQVmeGVkKGK2z%2FBQ5FNyOS8zX32%2Fdzf3td5Q6424Qzak9VllAW7s0%2BzzUrZ5WyTMlbl6zM4q1jCWlMK7J%2FjgvzWOz40%2BNwlyXu23cVvb7mK56%2BMEbEEk9%2FBiF%2BARV8G1MRcPF4Oes1%2FI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96d9f3a171c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/ph-new/assets/rec-6.jpg
104.21.7.3 16 kB URL alvsx.crystalcrafter.top/ph-new/assets/rec-6.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash 4887925f773d2ba9caea39686f764c7f
98c9abb09854fee425dbd78ad623af053cec6721
6e1e474a8fc326cd06593e0c1a55d0e73126ada3bf169713b847e82d28646773
GET /ph-new/assets/rec-6.jpg HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 15988
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-3e74"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qZinEuc3KX94JuWHvdGbp3OixGr4ZdyjzLQhtFvSSdpb3EBFmWnVmZFm1%2BClu2AuwaBjJXCy8KXz87MjkbgtMJmST3BBvo0G%2BkOUOc3G79Jo3zT3c1pjcaRyLdtaLfbYGLRt6FuyLv8HWfM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da30ca11c12-OSL
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/ph-new/assets/rec-8.jpg
104.21.7.3 13 kB URL alvsx.crystalcrafter.top/ph-new/assets/rec-8.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash eb826882457e1589d8a7d3b3499c4556
91284882dec199a9cc02ffa3ef3c86505159ce12
4fad6c5d1cd5bdb7eea1b216774e831a6e59a11ddcc8b0881747a4d278d86940
GET /ph-new/assets/rec-8.jpg HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 12992
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-32c0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GnuYuvnM7tIN6MQamB%2BwVmpmCQXdaRbVzfUj0xCwKCvhmdr3BgwewQyjYK1VYj8ZpDHIiB1RlMZiz7zFo4s5S0hXviJg8xcl3k5f%2BVC9x4UuvyBK3B9pChdKdowlR0KPhm%2B5YvQjZ2VtD8s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da31cb31c12-OSL
alt-svc: h3=":443"; ma=86400
js.streampsh.top/ps/pl.js?edg=true&fullscreen=true
104.21.27.231 16 kB URL js.streampsh.top/ps/pl.js?edg=true&fullscreen=true
IP 104.21.27.231:0
File type ASCII text, with very long lines (2763), with no line terminators
Hash c8409dd7d34d07dcb58bcc964fb674da
09110579eed1a3a7cedf79aa258bd337a74bd644
daa69a5e86f32de4ab6cdac3ee241b8a3b7a30d60ecb335bfc20236fb675cbdb
GET /ps/pl.js?edg=true&fullscreen=true HTTP/1.1
Host: js.streampsh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 22:24:25 GMT
content-type: application/javascript
cache-control: max-age=0, no-cache, no-store, must-revalidate
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IdQ80T8JP3lC%2Bx18V7WjO7IAOuNLuFoEOQ8%2FGRB2z9wPh0%2FcoQItRwQGBCuIYSODC1mbbHdEM1x5g6R5zhdikvJrPxdTCFopoVTsNYzDWD%2BpjUHaqSUSN5H%2BMfSyEPULmuzF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96d9f8868b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
104.21.7.3 26 kB URL alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
IP 104.21.7.3:0
Hash 07637924d44ab1abc0414af4aaffa931
1e3e85f3f8a7d7dca3795d1c51232bf6fe19dcf2
83fc541016d1e674538b9ee37c4754252a8a164d6124ec2b83db9bfc2fe610c6
GET /ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165 HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:25 GMT
content-type: text/html
last-modified: Mon, 01 May 2023 15:50:37 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gfshFAsQwAHhjXtSF%2FXODGZWT7zo0ual6bW66AbUHZbeBbcrUD2akZFDKWHJjj6chiA2NzrOwIAvnVT8BN115kK0xI1JISGQCkCtIe0e3kj4d72ls3DlbGbmRMcWTFafVj3unldJPjBbEjU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd96d9f3a1d1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/ph-new/assets/2.jpg
104.21.7.3 21 kB URL alvsx.crystalcrafter.top/ph-new/assets/2.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash c3f3eb5d00c73ac19828309a4cde4e96
be66f4e10a00d90a0f8fdc0a5a4dbd19c143d97d
626b570f2ffdf83add77f51246ccb195fec4c15e4289173b8183cd47e7cfd763
GET /ph-new/assets/2.jpg HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 21253
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-5305"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FBcFR0BHzwgAceVzz285lYw71ul%2BRfzGaDnBtXdfpjzTDKspAnznQQ7NtrPTjeeHE24W%2BsRFYKeyv2mRPAFiBbBTGNaS58HLQAJlU6D%2BxyWYpxqfy%2BMj7NVCKVkQHR9QQw%2BTSV6CkmGQXRw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da33cc51c12-OSL
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/ph-new/assets/3.jpg
104.21.7.3 11 kB URL alvsx.crystalcrafter.top/ph-new/assets/3.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash 3f9b232e4a112a89dedcae34ff319dda
5c633886ceeaf3b1185e24253df6be39378c8e85
55fddecdb3ed8e536018523555d995f39f85304bbc00f65ab96472236b57a49a
GET /ph-new/assets/3.jpg HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 11094
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-2b56"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sBy4GPpoOccM6oDRjoY2y0gEuRlAUoPc3diNSCa1jc8ofJEUm%2BojexoTNspK1eyMecBdEktAOuI9N2fxkwDZlVOyieVwAJTLPKVhUp9gnD08EwlHGBziGCSxbEp3bgXcZV%2B7RZSO3KJKzhI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da33cc71c12-OSL
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/ph-new/assets/4.jpg
104.21.7.3 14 kB URL alvsx.crystalcrafter.top/ph-new/assets/4.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash a4bef91e21afc13fed7f0bebcc6c4495
5dd2288d13e016a66fbe1f5605b2ed0fc3ad6326
44d3bf237a20f5d36a663aedd4a909a6118e6e35d6fe84971861f5638c070ecd
GET /ph-new/assets/4.jpg HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 13611
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-352b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BIDSOrY7439bSnPWKo8gGVALAhF256%2BWoQnRWsm6qQOYrqc%2FJYMyRn3F7Nmygo8pCcrtfBkxCv%2B%2FzwFNzoEdu0BMV5KHF1CN8tjzaJiz40PN%2BcHQczUGDBzhT1vUYAam47rmB66S3UlcqrE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da33ccc1c12-OSL
alt-svc: h3=":443"; ma=86400
alvsx.crystalcrafter.top/ph-new/assets/5.jpg
104.21.7.3 12 kB URL alvsx.crystalcrafter.top/ph-new/assets/5.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash 113d196991f086fe21f82ee35286eddc
093b74a20c8902f13be1ee735f90a93e397227f9
34a3bc9a7aee67e35d57d4bb0bdccf08c3639da85d2421c58f6c4a92f5eee5e1
GET /ph-new/assets/5.jpg HTTP/1.1
Host: alvsx.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://alvsx.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 11713
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-2dc1"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6966
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rMz1x%2FEU0ZqM7ERNqv7kr39BOfS%2FcN0HLDzoWxUMN00LGdafkYrgojMR1P0eOBfd7YyzT3584akc6LXwkktP7gZqnSudXXnvIisqM%2BriwH6%2BYQ7IunrE2AeR7plJX1f5iYnHF04gjESNN84%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da33ccf1c12-OSL
alt-svc: h3=":443"; ma=86400
a.crystalcrafter.top/ph-new/assets/thumb-big.jpg
104.21.7.3 83 kB URL a.crystalcrafter.top/ph-new/assets/thumb-big.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1237x691, components 3\012- data
Hash cb5cedbae6d67e62dc9fde274b7f7dbe
f31d7811c4b6e50ae053f315152366501a8b6002
deaddba93625d2c7610076927fcd37afadad9324ca3210a2bb12784d313dd788
GET /ph-new/assets/thumb-big.jpg HTTP/1.1
Host: a.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 82623
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-142bf"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6838
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FvxhxmB%2FnPfs%2Br1c949IOq4%2Bgw3CKQY12Z0keQZUbwWYWyNw38Ra53vBG9V5Je4G1swgcY0oxaKx7Hi0uihRwppYq1JdjO3vkFUCjQ7LPKJSJF1Albw7WhAvbwdiQAGsLS2p5%2FHRXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da3dd461c12-OSL
alt-svc: h3=":443"; ma=86400
a.crystalcrafter.top/favicon.ico
104.21.7.3 0 B URL a.crystalcrafter.top/favicon.ico
IP 104.21.7.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: a.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 26 May 2023 22:24:26 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 7093
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H1JFnDNGUQfHWYed6urlKBUmBD3eV39GZfTU%2Bl0pSUw%2BPj%2F1KA%2Fp0h22HA54ncYo78CC4O5Er09GiqvTjs15Ua7uH99yZVDSYfTz9s4yFiXgWG1oSItpKwF0b1v%2FEUqWSBC25uXNBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da49dc91c12-OSL
alt-svc: h3=":443"; ma=86400
feed.streampsh.top/ps/config.js?id=ilQCmFnYrkuT1vv7YSUY4Q
104.21.27.231 7.0 kB URL feed.streampsh.top/ps/config.js?id=ilQCmFnYrkuT1vv7YSUY4Q
IP 104.21.27.231:0
File type ASCII text, with CRLF line terminators
Hash 7b9735de10e6d0a2ffe8e42f8986c659
38a544a3f6c7d28319cd944b2ae755c7d192cf1a
bc8f01c22a60dbb9098f8be9baa7e484bce7ec5335a6dcf02fee212202fb2045
GET /ps/config.js?id=ilQCmFnYrkuT1vv7YSUY4Q HTTP/1.1
Host: feed.streampsh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.crystalcrafter.top/
Cookie: __psu=35e5131e-7ecb-4778-a3ec-e4d31730b010
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: application/javascript
cache-control: max-age=0, no-cache, no-store, must-revalidate
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VX6I2NymeBfj77Km5luGjqKuDlpqlt%2B%2FT%2BvLzwSI5dJYhZrYFc7rZ1Q0PQ9EXb3HexVstJzosgpJrLwi6TNOWmvHYo6mdJ1Eb56izWvbW4cs%2FJxJ%2F9Gl%2F7T3SpT6YWglVtshi%2FQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da57c730b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js
142.250.74.35 11 kB URL www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (40976)
Hash a498cb0f91ef52cc08969e1737b34638
c0e12b338ca7adea31b105546fde021edecbfc3c
a8d6389e6811b9fea7ff683cb31a57a6e0b29781407d7f5d45994aae1b5725b7
GET /firebasejs/8.4.1/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.crystalcrafter.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 18:53:40 GMT
expires: Wed, 22 May 2024 18:53:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Apr 2021 06:56:17 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 271846
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
b.crystalcrafter.top/ph-new/assets/thumb-big.jpg
104.21.7.3 83 kB URL b.crystalcrafter.top/ph-new/assets/thumb-big.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1237x691, components 3\012- data
Hash cb5cedbae6d67e62dc9fde274b7f7dbe
f31d7811c4b6e50ae053f315152366501a8b6002
deaddba93625d2c7610076927fcd37afadad9324ca3210a2bb12784d313dd788
GET /ph-new/assets/thumb-big.jpg HTTP/1.1
Host: b.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://b.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: image/jpeg
content-length: 82623
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-142bf"
cache-control: max-age=14400
cf-cache-status: HIT
age: 5371
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ANh5zC%2B1BFXtu7GDbaRU0uACylj8MPeSfx%2BVIIqw%2BUi7F%2BppxkAyRI%2FugwfaKGRMjZVLrJv1IIzlPA1ZPzTGX2DMX8dgd4GikY3LFSK49n9XHudmNhcwePaWlgpgi4R71LU27MMD9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da6ef5b1c12-OSL
alt-svc: h3=":443"; ma=86400
b.crystalcrafter.top/favicon.ico
104.21.7.3 0 B URL b.crystalcrafter.top/favicon.ico
IP 104.21.7.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: b.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://b.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Fri, 26 May 2023 22:24:26 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 6771
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=byvURXJS0PaGRBPolZUf2UD6tvC27oJnV7ITU8HYpXrm%2BZyvV36t8MzxcTQAZgoAmPtEYFmOFnbRqmcahlLWRq5OF2t8gLQ9a7D652%2BfTGFbsi9MhJYbjca8xwSPvTLfdrArOoE%2FQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da8182e1c12-OSL
alt-svc: h3=":443"; ma=86400
www.gstatic.com/firebasejs/8.4.1/firebase-app.js
142.250.74.35 6.8 kB URL www.gstatic.com/firebasejs/8.4.1/firebase-app.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (21158)
Hash e20da9cfaabf0b23d89c2335c06e2b03
b1af5616825acaba44bd714bd2685327abe896fd
d4d5669220045e130b79770e93dc7dca5fdfa00c9d7047639dbb15c4f28eb2e2
GET /firebasejs/8.4.1/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://b.crystalcrafter.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 6763
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 06:18:59 GMT
expires: Fri, 24 May 2024 06:18:59 GMT
cache-control: public, max-age=31536000
age: 144327
last-modified: Tue, 13 Apr 2021 06:56:11 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js
142.250.74.35 11 kB URL www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (40976)
Hash a498cb0f91ef52cc08969e1737b34638
c0e12b338ca7adea31b105546fde021edecbfc3c
a8d6389e6811b9fea7ff683cb31a57a6e0b29781407d7f5d45994aae1b5725b7
GET /firebasejs/8.4.1/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://b.crystalcrafter.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 18:53:40 GMT
expires: Wed, 22 May 2024 18:53:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Apr 2021 06:56:17 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 271847
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
c.crystalcrafter.top/ph-new/assets/thumb-big.jpg
104.21.7.3 83 kB URL c.crystalcrafter.top/ph-new/assets/thumb-big.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1237x691, components 3\012- data
Hash cb5cedbae6d67e62dc9fde274b7f7dbe
f31d7811c4b6e50ae053f315152366501a8b6002
deaddba93625d2c7610076927fcd37afadad9324ca3210a2bb12784d313dd788
GET /ph-new/assets/thumb-big.jpg HTTP/1.1
Host: c.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:27 GMT
content-type: image/jpeg
content-length: 82623
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-142bf"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4894
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TjSZSUWyoux7B1PHaSyT9L16SBys4SIDhxm2qabQee0jz3ZdXijjJM3RDrtIVDuSQPCOriIDuqAkvsm3DYFk2az%2BkQPmMAHRoEv46lD3uaFsEzxL9Ir5OkS8qPwpFENOl8%2F%2FXasM0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da9a9371c12-OSL
alt-svc: h3=":443"; ma=86400
a.crystalcrafter.top/ph-new/assets/trls.js
104.21.7.3 7.0 kB URL a.crystalcrafter.top/ph-new/assets/trls.js
IP 104.21.7.3:0
File type Unicode text, UTF-8 text, with very long lines (362), with CRLF line terminators
Hash 2d452480e0a1246e5ed7e13278b99eee
dc1115b9c20884a07335bdf5abea5c399f5293d6
19b0897b045b6f67abdae0b9f6ca5987202456aa0d7bfc3b17128e94d2cf761d
GET /ph-new/assets/trls.js HTTP/1.1
Host: a.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: application/javascript
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: W/"643e420e-1e3f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 6839
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DaZOnmd8%2FslU0kamSkHd3vCVy7WgobpOO%2B%2BkLOZY4cZAEDfk5EQVnsVK2jD5zoMKRE49Jp73Nib0E46u3urcTAEtY6eRKchjuPBsa3%2FCgfzvcA%2BLkmgsSKGYrEj0AW90pgCIMT0rqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da3cd441c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
js.streampsh.top/ps/ps.js?edg=true&fullscreen=true&pl=true&id=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&appspot=
104.21.27.231 15 kB URL js.streampsh.top/ps/ps.js?edg=true&fullscreen=true&pl=true&id=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&appspot=
IP 104.21.27.231:0
File type Unicode text, UTF-8 text, with very long lines (23337), with no line terminators
Hash e963e29628291e80529b84cb42580d78
562ec5335a31c4ff1e710b86075b744cd98e29e5
14b8a16c9d28817e667df6b5ad1a143b086d3fabaeba064b03b14894d2319237
GET /ps/ps.js?edg=true&fullscreen=true&pl=true&id=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&appspot= HTTP/1.1
Host: js.streampsh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.crystalcrafter.top/
Cookie: __psu=3e2c75ca-6359-4fe8-b315-6508eb2442d1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:27 GMT
content-type: application/javascript
cache-control: max-age=0, no-cache, no-store, must-revalidate
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HtN8uuHS46ESFeMysxAkXx4cpa%2BTsERYH97HZd66WDkk%2BSrcan8Ym3hgBzRNdiEN6NaoMJ9Ea6upShbvuVV1Xmk8sgr8ApTmBGRBhbAPBQvX9SaOsW%2F0DBsoS9rJfcxA3R9v"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96daa49020b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js
142.250.74.35 11 kB URL www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (40976)
Hash a498cb0f91ef52cc08969e1737b34638
c0e12b338ca7adea31b105546fde021edecbfc3c
a8d6389e6811b9fea7ff683cb31a57a6e0b29781407d7f5d45994aae1b5725b7
GET /firebasejs/8.4.1/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.crystalcrafter.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 18:53:40 GMT
expires: Wed, 22 May 2024 18:53:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Apr 2021 06:56:17 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 271847
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
b.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
104.21.7.3 110 kB URL b.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
IP 104.21.7.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4233), with CRLF line terminators
Size 110 kB (110502 bytes)
Hash c916b0032230dc45461448a9d5191da9
cca43f6ac66a63721abbfe3382eeef1638621175
247b5e37452e79fe61fd06fb5c1448b2ae4a13b12128851dd8cdb0c7b71c236a
GET /ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165 HTTP/1.1
Host: b.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.crystalcrafter.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: text/html
last-modified: Mon, 01 May 2023 15:50:37 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cmnFJjiXO%2Fat61g7%2FxObDvTIzAVqsIiNsFHEth689iUEAty3Mp1tCo4f1r0bvTbtqWEfewtHNOMBoMZmz8tnKcLsIMLFyzfT646l90q61acfg7qYIY9gYWHLcU2G5B4EtSLiT%2B2q0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd96da65f051c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
js.streampsh.top/ps/ps.js?edg=true&fullscreen=true&pl=true&id=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&appspot=
104.21.27.231 9.7 kB URL js.streampsh.top/ps/ps.js?edg=true&fullscreen=true&pl=true&id=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&appspot=
IP 104.21.27.231:0
File type Unicode text, UTF-8 text, with very long lines (23337), with no line terminators
Hash e963e29628291e80529b84cb42580d78
562ec5335a31c4ff1e710b86075b744cd98e29e5
14b8a16c9d28817e667df6b5ad1a143b086d3fabaeba064b03b14894d2319237
GET /ps/ps.js?edg=true&fullscreen=true&pl=true&id=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&appspot= HTTP/1.1
Host: js.streampsh.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://a.crystalcrafter.top/
Cookie: __psu=3e2c75ca-6359-4fe8-b315-6508eb2442d1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: application/javascript
cache-control: max-age=0, no-cache, no-store, must-revalidate
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tnbO2NddGl3LLSa7XborrNCkwIkfwTs4jQ62RhMyqV%2FHEVSxS23L4aj7lcyFnSpLZ8YZ1K9wPKz%2FG6mQRz4IxAEICHc2jogsqKvYV4wEyDBoc0BmCvNpjEkfJp2f%2FyrKLuqa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da4bbe50b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
c.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
104.21.7.3 31 kB URL c.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
IP 104.21.7.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4233), with CRLF line terminators
Hash c916b0032230dc45461448a9d5191da9
cca43f6ac66a63721abbfe3382eeef1638621175
247b5e37452e79fe61fd06fb5c1448b2ae4a13b12128851dd8cdb0c7b71c236a
GET /ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165 HTTP/1.1
Host: c.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://b.crystalcrafter.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:27 GMT
content-type: text/html
last-modified: Mon, 01 May 2023 15:50:37 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DJw62rOqLvyc1iQ74y%2Fx3bZGa5TUWNKtQH9Qx2EUSWoUmmvrLBt2bH8Rm6rsmjd99zjL1nUIkanxYlWH2KdKWWKOqEwejXBpZ2ASFrUYJX0GS12UxhAowQmize9HWg6cZoScKhjlHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd96da928e61c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js
142.250.74.35 11 kB URL www.gstatic.com/firebasejs/8.4.1/firebase-messaging.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (40976)
Hash a498cb0f91ef52cc08969e1737b34638
c0e12b338ca7adea31b105546fde021edecbfc3c
a8d6389e6811b9fea7ff683cb31a57a6e0b29781407d7f5d45994aae1b5725b7
GET /firebasejs/8.4.1/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 18:53:40 GMT
expires: Wed, 22 May 2024 18:53:40 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 13 Apr 2021 06:56:17 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 271847
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
c.crystalcrafter.top/ph-new/assets/style.css
104.21.7.3 18 kB URL c.crystalcrafter.top/ph-new/assets/style.css
IP 104.21.7.3:0
File type ASCII text, with CRLF line terminators
Hash 807d696b86114245f8eda3dce43f61ff
6d65ffaf8ec2107db8f1d29c410f152a8b809a56
7524af6d5f36df3e5d5c8148bc63e3956de050fa262fc0589e2a58dc606977bc
GET /ph-new/assets/style.css HTTP/1.1
Host: c.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:27 GMT
content-type: text/css
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: W/"643e420e-5f33"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4078
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6GY%2B4EilHtcTksvhF3BHDbx9L%2FVBOrcSslGxcCiqu%2FuZ4LcZMuDGPN%2F9%2FTcBDDiuvbp8WCKHHszBqh15gxq7qmn8X3jY2bJXYY4dW2RmV5xVLxYxMB7Tckaon0Fr1zyPm3Go3QAvRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da9a9351c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/assets/rec-2.jpg
104.21.7.3 11 kB URL d.crystalcrafter.top/ph-new/assets/rec-2.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash dbe1dba764a2ef20cf6760ad30539988
e14dca406d4f5932a9a4683635bbdf87def79eba
b0fe8ace388ec8556bcdd46cd30a03ddaadcf80d124e9052f2a19a27061829f7
GET /ph-new/assets/rec-2.jpg HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:28 GMT
content-type: image/jpeg
content-length: 10890
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-2a8a"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3874
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=do%2FoGxpGq%2Fd9qRi9NcsrbAsfKGMQ3r8igllN8G6Kb%2F03yD9%2FWmcEYW%2FRl1%2FWODAUBLTemBznMA944M66i0BXi6ijeScpOwfAibRzTV5XFQLNDyqlsJcy%2Ff0zVjkYmACwNOJX%2Bc1zMg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96db02ce41c12-OSL
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/assets/rec-3.jpg
104.21.7.3 15 kB URL d.crystalcrafter.top/ph-new/assets/rec-3.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash 4d58cecaa4f40c979917c8e4d907033f
f0c6d616bcc3f4bd5a1dadbca8254d9f34f2921c
9ee7f1aecdeb64f4ce54c5d0b7ea3d92b2e9d06a7f9cb7b793e39262cda05996
GET /ph-new/assets/rec-3.jpg HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:28 GMT
content-type: image/jpeg
content-length: 15217
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-3b71"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3874
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0sElA5JYTIrzWgna1Z8Co%2FYw6ylse%2Bex6S9CfEZcbHRBEg8SYBJ0uB%2FfM7IhWuMcsYHKJpDliVd6HVrDdqskCEupbwpjYQBxDSrf28IeZIWMHiquu2FA6WMgvCBQr%2FePUmiayxQcTA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96db02ce51c12-OSL
alt-svc: h3=":443"; ma=86400
b.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
104.21.7.3 25 kB URL b.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
IP 104.21.7.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (4233), with CRLF line terminators
Hash c916b0032230dc45461448a9d5191da9
cca43f6ac66a63721abbfe3382eeef1638621175
247b5e37452e79fe61fd06fb5c1448b2ae4a13b12128851dd8cdb0c7b71c236a
GET /ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165 HTTP/1.1
Host: b.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://b.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:26 GMT
content-type: text/html
last-modified: Mon, 01 May 2023 15:50:37 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FJPRhtO4ApMRVI44IRfZv18g%2FD80mR5LfJtjcVV0YpAXsKGdGEstADr4frSM7q0j%2Bs7egMBAhW0TFPgJtNYxhgTsZ84i%2Fu1cqH7BpYe87T2l8LEO4RYdcIQUk3XOYa3aBn6dO8v8Zw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd96da6ef5d1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/assets/rec-7.jpg
104.21.7.3 14 kB URL d.crystalcrafter.top/ph-new/assets/rec-7.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash f8af6bb4bdbbf2788da61a614e2f214e
d4a22a315356fcbc5f4a6af2d8a15e96721abddc
edb8c2bdc0f5612a5bf789af233ccaa63dd3751fbfaffb01be48e6e43e78b0bc
GET /ph-new/assets/rec-7.jpg HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:28 GMT
content-type: image/jpeg
content-length: 13963
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-368b"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3874
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uELdZpDqCnLNfl7Bbt%2BeuFrNksuCqeqaGYQTHqwNyIU4u8mY0WipVseLKyh8sgFZxBZhXc7wazkD1xFHPVQsJRT7PujqT%2B0K8QFyZjRInoorRwMg%2B8%2B4fVP%2FPN0ql85oiQ42qSl%2F1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96db03d001c12-OSL
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/assets/rec-6.jpg
104.21.7.3 16 kB URL d.crystalcrafter.top/ph-new/assets/rec-6.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash 4887925f773d2ba9caea39686f764c7f
98c9abb09854fee425dbd78ad623af053cec6721
6e1e474a8fc326cd06593e0c1a55d0e73126ada3bf169713b847e82d28646773
GET /ph-new/assets/rec-6.jpg HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:28 GMT
content-type: image/jpeg
content-length: 15988
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-3e74"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3874
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2Frf4EMKFMAt0fm%2F%2Bq%2Br44E8p0gVAQzQptUNfayAxzmt%2F1zrleMIcJScO0F%2FMq%2BQhH9wf83QzZeBmM49LaPRhIWtbepLcXw1WJ37U4YYENEyz8MH3c2z%2BX9%2FXM672572e8dF6auYLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96db03cff1c12-OSL
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/assets/rec-5.jpg
104.21.7.3 13 kB URL d.crystalcrafter.top/ph-new/assets/rec-5.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash f9ec603fbe19b12e8a8c1874eea3e5f2
0e24410f618ffa17dc6a9380a5b9a4c06dfba4a9
a77b6918c2799981aa1a09fc5f787ff109883093f2efd28beaf79031f5a8ac02
GET /ph-new/assets/rec-5.jpg HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:28 GMT
content-type: image/jpeg
content-length: 13149
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-335d"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3874
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O%2BQtKlqHPwaP0q2uPkY%2FDDMe9FNkAxULWkzqroaoczffLTxDkxUxm9biAm94oI%2FHfwi%2BHQIHE60DDMRO63g2G3S2of2yVwfw438%2FZvB1uoGrbzq9WKxKdsIyBw7cmlyq%2FRRYhww4nA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96db03cf71c12-OSL
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/assets/2.jpg
104.21.7.3 21 kB URL d.crystalcrafter.top/ph-new/assets/2.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash c3f3eb5d00c73ac19828309a4cde4e96
be66f4e10a00d90a0f8fdc0a5a4dbd19c143d97d
626b570f2ffdf83add77f51246ccb195fec4c15e4289173b8183cd47e7cfd763
GET /ph-new/assets/2.jpg HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:28 GMT
content-type: image/jpeg
content-length: 21253
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-5305"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3874
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e8bjTDXuI8cDKCBxnaGGNpDtOaYdFuHZCE5wV83x3sSD83%2B8SZtUUOg2n9%2BAYrEl%2BsJ63bduhDbWV8NJucByNg39%2BsPhOn0YGQJJ4690WCFuEzOseQL2kk9Ck8waeZV6lbJONcYPjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96db04d081c12-OSL
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/assets/rec-8.jpg
104.21.7.3 13 kB URL d.crystalcrafter.top/ph-new/assets/rec-8.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash eb826882457e1589d8a7d3b3499c4556
91284882dec199a9cc02ffa3ef3c86505159ce12
4fad6c5d1cd5bdb7eea1b216774e831a6e59a11ddcc8b0881747a4d278d86940
GET /ph-new/assets/rec-8.jpg HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:28 GMT
content-type: image/jpeg
content-length: 12992
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-32c0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3874
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U50T%2BnYfcSdA8HQgsgv1iSGKk%2By4gXfIULFCklzRD8DAZbQF633cn2B%2B7e4qOuI009bdFbqG%2BwiMQRJSwEzOrDpBp6sWVhoumsD%2FY55tDCx3OYxdmtVwYk0MPjAYbfQvidS7inpdmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96db04d0a1c12-OSL
alt-svc: h3=":443"; ma=86400
c.crystalcrafter.top/ph-new/assets/trls.js
104.21.7.3 19 kB URL c.crystalcrafter.top/ph-new/assets/trls.js
IP 104.21.7.3:0
File type Unicode text, UTF-8 text, with very long lines (362), with CRLF line terminators
Hash 2d452480e0a1246e5ed7e13278b99eee
dc1115b9c20884a07335bdf5abea5c399f5293d6
19b0897b045b6f67abdae0b9f6ca5987202456aa0d7bfc3b17128e94d2cf761d
GET /ph-new/assets/trls.js HTTP/1.1
Host: c.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://c.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:27 GMT
content-type: application/javascript
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: W/"643e420e-1e3f"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3urjtO8rm7ZVGfJYEn1cc758O2Js7BdrkWDdzUn%2B56m0TBeMPWIg561uKrV1ufe%2FDLdk7wnvNoh04m7ss0nFMplvuWSPg%2Bke39v%2B5bdmwDOkKLiCN1xj%2BC1zbiDoHm%2Fy1xjyqAiXkA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96da9a9331c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/assets/5.jpg
104.21.7.3 12 kB URL d.crystalcrafter.top/ph-new/assets/5.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash 113d196991f086fe21f82ee35286eddc
093b74a20c8902f13be1ee735f90a93e397227f9
34a3bc9a7aee67e35d57d4bb0bdccf08c3639da85d2421c58f6c4a92f5eee5e1
GET /ph-new/assets/5.jpg HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:28 GMT
content-type: image/jpeg
content-length: 11713
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-2dc1"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3874
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mpW04KE5n2GVsQ0dSj6qlEkucGWI237wyDbrOvyt4cxShJOfrZ%2BjuXKPs87p1c5cJ5qRXd9jwCQA8LqBQv3lbWEdpzejUqc%2BzXqM2o%2Bif0yHrCbS7us232XPIj8MAhvjx8%2Fl26BXxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96db04d0f1c12-OSL
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/assets/3.jpg
104.21.7.3 11 kB URL d.crystalcrafter.top/ph-new/assets/3.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash 3f9b232e4a112a89dedcae34ff319dda
5c633886ceeaf3b1185e24253df6be39378c8e85
55fddecdb3ed8e536018523555d995f39f85304bbc00f65ab96472236b57a49a
GET /ph-new/assets/3.jpg HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:28 GMT
content-type: image/jpeg
content-length: 11094
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-2b56"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3874
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pd51D5u90EVo5Te%2Fu3YJk9RUj5V3KQHW6Hs5S7TWNaV4UwPXhk8EMo%2F9z31WSHOf8UG9T16kxXsFlf1xR2Y2LqLf17RNFDu8K1AD69gC0NaYtP56wTyeiVMnY2eNQvgGxmlfarbfog%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96db04d0d1c12-OSL
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/assets/1.jpg
104.21.7.3 14 kB URL d.crystalcrafter.top/ph-new/assets/1.jpg
IP 104.21.7.3:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x180, components 3\012- data
Hash b2abcc52b7bf315893f6751d5fc7875e
5997c599c5e6c408b9019159f4608026a78223cf
098b2a4c2b05fc238c6eae8654ea2a3bc9d5fac7c59cb420242d405fcc83ed47
GET /ph-new/assets/1.jpg HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:28 GMT
content-type: image/jpeg
content-length: 14404
last-modified: Tue, 18 Apr 2023 07:09:02 GMT
etag: "643e420e-3844"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3874
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OEp%2Fzg4OHQ%2BdNhM1Ts7AE%2Bv8DgJ88Hhl1tI5XrmSxAB4KUlqgjo68OhcjRdK4COajwaIU5Y5BEGhJxj%2FdENcUMuHDmoevOHQ4EzFbj3Sx8XS%2BZwI7FAPoY1mzmP%2BUbuvGRxPj%2BIbpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd96db04d0b1c12-OSL
alt-svc: h3=":443"; ma=86400
d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
104.21.7.3 13 kB URL d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
IP 104.21.7.3:0
Hash c0018fe261eadc65a60b695bc2c0a72b
45bbb451b558daa905b05b293512781f34bb1e03
ab9450fea28cbbd456fddc359476f00a83d639f847676393c4fe369a0a959b4a
GET /ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165 HTTP/1.1
Host: d.crystalcrafter.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/ph-new/?pl=ilQCmFnYrkuT1vv7YSUY4Q&sm=ph-new&click_id=fda795b4284d58a10eae850403733001-42510-0527&sub_id=1417800120411902&hash=bRXRoS9wVG6S-pTJihh1bQ&exp=1685140165
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 22:24:27 GMT
content-type: text/html
last-modified: Mon, 01 May 2023 15:50:37 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CZQsEi0hmbxJSWuvRjLqoqRUL%2F%2FYSYV7C5D7zzLYeMxdaPYZcYqPRxD%2Bs35wtI9fRg6w7BDsM3A0bCZxjZddJiHRVClb51dOvoxCNF7ml%2BdEHNOe6NlQdx2PZOSmFiaGILTb%2FN1qlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd96daccb0f1c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.highcpmrevenuenetwork.com/n78fnnif?key=1f14d464e54c81b0291dd5fcaa1f098f
192.243.59.12200 OK 115 B URL User Request GET HTTP/1.1 www.highcpmrevenuenetwork.com/n78fnnif?key=1f14d464e54c81b0291dd5fcaa1f098f
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjecthighcpmrevenuenetwork.com
Fingerprint4A:B9:EF:7A:95:F5:EB:F1:0F:44:6B:99:79:4A:95:32:BE:12:C7:AB
ValiditySat, 22 Apr 2023 06:23:55 GMT - Fri, 21 Jul 2023 06:23:54 GMT
File type ASCII text, with no line terminators
Hash 16579cc322e9e105427ecfa57890ef69
8bb47ec30cf894ab49032d7271a45f0c778baa05
f28ce5befe08ed90a2e12b6b2a5e9fdafaa6ad173503079155260aa480c66590
GET /n78fnnif?key=1f14d464e54c81b0291dd5fcaa1f098f HTTP/1.1
Host: www.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d.crystalcrafter.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 May 2023 22:24:28 GMT
Content-Type: text/html
Content-Length: 115
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=17984642; expires=Sat, 27 May 2023 22:24:28 GMT
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c8eecb9d71b74f7db940e202787c286d
Strict-Transport-Security: max-age=0; includeSubdomains
www.highcpmrevenuenetwork.com/favicon.ico
192.243.59.12200 OK 0 B URL GET HTTP/1.1 www.highcpmrevenuenetwork.com/favicon.ico
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.highcpmrevenuenetwork.com/n78fnnif?key=1f14d464e54c81b0291dd5fcaa1f098f
Certificate IssuerLet's Encrypt
Subjecthighcpmrevenuenetwork.com
Fingerprint4A:B9:EF:7A:95:F5:EB:F1:0F:44:6B:99:79:4A:95:32:BE:12:C7:AB
ValiditySat, 22 Apr 2023 06:23:55 GMT - Fri, 21 Jul 2023 06:23:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.highcpmrevenuenetwork.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.highcpmrevenuenetwork.com/n78fnnif?key=1f14d464e54c81b0291dd5fcaa1f098f
Cookie: u_pl=17984642
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 May 2023 22:24:28 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2c72542085f018202ab54b515ee6ad97
Strict-Transport-Security: max-age=0; includeSubdomains