topclasslearner.com/
89.163.208.34200 OK 28 kB IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (304), with CRLF line terminators
Hash be0da4082d5ff69f873e950930cc684a
61adaf8abbb383349ff3219ffe92a9bec6fde853
739287f0709f66564000a3797768bfe668951608e9e12e52485881292676ba98
GET / HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Set-Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv; path=/; HttpOnly; SameSite=Lax
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 27560
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7289
Expires: Sat, 03 Dec 2022 05:48:37 GMT
Date: Sat, 03 Dec 2022 03:47:08 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6299
Cache-Control: max-age=116946
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:08 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 12:16:14 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2179
Expires: Sat, 03 Dec 2022 04:23:27 GMT
Date: Sat, 03 Dec 2022 03:47:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 03:19:58 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1630
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YEhVgwVi86mLj/2Aj147VXKqLQmDAH0yqvkEKsxA/NBjR13Nx7TA2igZZSZiZz535bky/sasTtqpseEClI0mHQ==
x-amz-request-id: RHY7WWE3TB2E9AG7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 03:46:25 GMT
age: 43
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
topclasslearner.com/LoginStyleSheet.css
89.163.208.34200 OK 158 B URL HTTP/1.1 topclasslearner.com/LoginStyleSheet.css
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 9a807d0362b32f5763452873ad0608e7
c6d9807d08303ec47ac57110524c0bd6752acfbc
651fd0323c505e599ebefe48a8e0f464053332db67a5f44bc75794e796c3ec3e
GET /LoginStyleSheet.css HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 15 Jun 2016 10:23:08 GMT
Accept-Ranges: bytes
ETag: "cb626ee9efc6d11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 158
fonts.googleapis.com/css?family=Source+Sans+Pro:200,300,400,600,700,900
142.250.74.106200 OK 805 B URL HTTP/1.1 fonts.googleapis.com/css?family=Source+Sans+Pro:200,300,400,600,700,900
IP 142.250.74.106:0
Hash 5f97f45e925e4197d9a20a0ab261ed75
25c4697b9d1209e42c1953a5b5961fa1aa66857c
b13fae65baeb4f9b3908e671bafbe3c2ab81c847e4ad6d677588a3a5636dc137
GET /css?family=Source+Sans+Pro:200,300,400,600,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 03 Dec 2022 03:47:08 GMT
Date: Sat, 03 Dec 2022 03:47:08 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
topclasslearner.com/fonts.css
89.163.208.34404 Not Found 1.2 kB URL HTTP/1.1 topclasslearner.com/fonts.css
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /fonts.css HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 1245
topclasslearner.com/js/jquery.hislider.js
89.163.208.34200 OK 4.9 kB URL HTTP/1.1 topclasslearner.com/js/jquery.hislider.js
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
Hash 57278736bbde579a084c9fda434f8348
fc90182c7abf0ed81eab93f0bcbf2e4ba04860c6
745625b0ce6893d3633b90e5fc754f4992af783566ea0f01fb04f68c212b5db0
GET /js/jquery.hislider.js HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 22 Feb 2016 13:02:06 GMT
Accept-Ranges: bytes
ETag: "65d8953b716dd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 4889
topclasslearner.com/WebResource.axd?d=ASYE39wKqWZ5ZTw1nVATC68nvPtdK2Cab0yycqUJ2L0FIo2Aby9dVufAO9VtG-A-5ELylPX1K2HqQFPKnZVG6pHRc-72dPX7QXxrUHIoUFo1&t=637823563837077270
89.163.208.34200 OK 23 kB URL HTTP/1.1 topclasslearner.com/WebResource.axd?d=ASYE39wKqWZ5ZTw1nVATC68nvPtdK2Cab0yycqUJ2L0FIo2Aby9dVufAO9VtG-A-5ELylPX1K2HqQFPKnZVG6pHRc-72dPX7QXxrUHIoUFo1&t=637823563837077270
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type ASCII text, with CRLF line terminators
Hash 20180537e2ac64e5c60143ac90c84998
82d03de61c4dededbc9fd79d8c3a8e18d3b43744
0999cb5dfb2dcd76a944ef880be49f8e2d66fc60d00817e2b251ba0a67090cbf
GET /WebResource.axd?d=ASYE39wKqWZ5ZTw1nVATC68nvPtdK2Cab0yycqUJ2L0FIo2Aby9dVufAO9VtG-A-5ELylPX1K2HqQFPKnZVG6pHRc-72dPX7QXxrUHIoUFo1&t=637823563837077270 HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sun, 03 Dec 2023 03:47:08 GMT
Last-Modified: Tue, 08 Mar 2022 11:43:03 GMT
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 23086
topclasslearner.com/StyleSheet2.css
89.163.208.34200 OK 9.3 kB URL HTTP/1.1 topclasslearner.com/StyleSheet2.css
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 6556d443da734f667ce12babd7e0e885
016ec79b073908104916cc1c23f1031c16184850
898082402869afa9fa1ac960f8c3cb4fb6a5dda82a1cfa56527dd653754a9887
GET /StyleSheet2.css HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Sat, 17 Jun 2017 10:40:55 GMT
Accept-Ranges: bytes
ETag: "e930bd3256e7d21:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 9312
www.counter12.com/ad.js?id=3BZZ4Cbz
172.67.139.159301 Moved Permanently 0 B URL HTTP/1.1 www.counter12.com/ad.js?id=3BZZ4Cbz
IP 172.67.139.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ad.js?id=3BZZ4Cbz HTTP/1.1
Host: www.counter12.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 03:47:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 03 Dec 2022 04:47:08 GMT
Location: https://www.counter12.com/ad.js?id=3BZZ4Cbz
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MNQwm4CGW1VOen5SkOL070neYmq8HXhR2m6cOkmD9eva8ZiR0CnD78H4zwAmehJFWStpHm%2BAw%2FYb%2FX9VC1R%2FRtZXL1D0ly5QHmCFY1KibNt9CFMw9TIZRw2OAAc88nBGoYqBhg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773951b96ee80b41-OSL
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 03:47:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
topclasslearner.com/index_files/mbjsmbmcp.js
89.163.208.34404 Not Found 1.2 kB URL HTTP/1.1 topclasslearner.com/index_files/mbjsmbmcp.js
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /index_files/mbjsmbmcp.js HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 1245
topclasslearner.com/ScriptResource.axd?d=R3-6fInlCch0nDX6sqpVP6KRWCaPHFhs25m7m7z_E4QfhT54jixWQi3lo_JFu3471vSSq5792K2NH6k4FUtA9HzTJGHVE-igelA6O9uQJnPPtI3_HZK3pTZU60HDDICQihWSPp_2H27MGWu5dHdYhuaUejx5XSbURw0WDwt35QhoCNNGB1RED18gIhnAXxJN0&t=ffffffffaa493ab8
89.163.208.34200 OK 15 kB URL HTTP/1.1 topclasslearner.com/ScriptResource.axd?d=R3-6fInlCch0nDX6sqpVP6KRWCaPHFhs25m7m7z_E4QfhT54jixWQi3lo_JFu3471vSSq5792K2NH6k4FUtA9HzTJGHVE-igelA6O9uQJnPPtI3_HZK3pTZU60HDDICQihWSPp_2H27MGWu5dHdYhuaUejx5XSbURw0WDwt35QhoCNNGB1RED18gIhnAXxJN0&t=ffffffffaa493ab8
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 374ef9e86f0bbf33bdbe2d87d8cbebbb
c7d0b595f202e32c531a4a458a7f9f841c7eb4d0
12c805872a8ab48bf4647541d81c88350b4ef4653a3d93f31341a6feea214454
GET /ScriptResource.axd?d=R3-6fInlCch0nDX6sqpVP6KRWCaPHFhs25m7m7z_E4QfhT54jixWQi3lo_JFu3471vSSq5792K2NH6k4FUtA9HzTJGHVE-igelA6O9uQJnPPtI3_HZK3pTZU60HDDICQihWSPp_2H27MGWu5dHdYhuaUejx5XSbURw0WDwt35QhoCNNGB1RED18gIhnAXxJN0&t=ffffffffaa493ab8 HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sun, 03 Dec 2023 03:47:08 GMT
Last-Modified: Sat, 03 Dec 2022 03:47:08 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 15430
topclasslearner.com/ScriptResource.axd?d=DKhejgJdWWRHcDZ7f99O_eHFvpiWPunoEIdCI44O3CL6mBCosvSFhytSDCw5d3j0TDGx8Se_H6vqiCp5SUOgGEGBQbeRwDd1eY96CSnaqvYkORsM8TKRC6mznW04oxi7_xVELjp7COUT0-fcJ2RNlExqZn4KngQYBvJZQERaAn17VaUmKVtoTcLNIcvJ3pKg0&t=ffffffffaa493ab8
89.163.208.34200 OK 48 kB URL HTTP/1.1 topclasslearner.com/ScriptResource.axd?d=DKhejgJdWWRHcDZ7f99O_eHFvpiWPunoEIdCI44O3CL6mBCosvSFhytSDCw5d3j0TDGx8Se_H6vqiCp5SUOgGEGBQbeRwDd1eY96CSnaqvYkORsM8TKRC6mznW04oxi7_xVELjp7COUT0-fcJ2RNlExqZn4KngQYBvJZQERaAn17VaUmKVtoTcLNIcvJ3pKg0&t=ffffffffaa493ab8
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 5211ef500d0be7364cbc6d4d41078158
4513e36a3ffdf92890e390d43729a2e794e64605
af4d579954f8480155e7fd2354fd5c782af347ea12acd3a26fb854ae4ef01ac6
GET /ScriptResource.axd?d=DKhejgJdWWRHcDZ7f99O_eHFvpiWPunoEIdCI44O3CL6mBCosvSFhytSDCw5d3j0TDGx8Se_H6vqiCp5SUOgGEGBQbeRwDd1eY96CSnaqvYkORsM8TKRC6mznW04oxi7_xVELjp7COUT0-fcJ2RNlExqZn4KngQYBvJZQERaAn17VaUmKVtoTcLNIcvJ3pKg0&t=ffffffffaa493ab8 HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sun, 03 Dec 2023 03:47:08 GMT
Last-Modified: Sat, 03 Dec 2022 03:47:08 GMT
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 47751
www.counter12.com/img-3BZZ4Cbz-77.gif
172.67.139.159301 Moved Permanently 0 B URL HTTP/1.1 www.counter12.com/img-3BZZ4Cbz-77.gif
IP 172.67.139.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img-3BZZ4Cbz-77.gif HTTP/1.1
Host: www.counter12.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
HTTP/1.1 301 Moved Permanently
Date: Sat, 03 Dec 2022 03:47:08 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 03 Dec 2022 04:47:08 GMT
Location: https://www.counter12.com/img-3BZZ4Cbz-77.gif
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fk5QGWuiETcCwCHz2GiobKpQXflLhhRBi0FX0fwlGSbR8JE2LNtYSyzeAnfGUByLtYoTV2OHfnfEg2fihzLlauYvBPujAK02zDbHBqEM0VJPgAPmT2vPJ%2FkTC31btQW2HR8fnw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 773951b9ff260b41-OSL
alt-svc: h2=":443"; ma=60
topclasslearner.com/images/join.png
89.163.208.34200 OK 986 B URL HTTP/1.1 topclasslearner.com/images/join.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 182 x 58, 8-bit/color RGB, non-interlaced\012- data
Hash 3d83e980f66c16e2eeb6b4dfdb40c4cd
3e9ec1b027ed7e20359cec5bc2336d571fe33346
20774fbe2606433e72803ecf142921eeaad1ac1141065ba8a91a470be92fab62
GET /images/join.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Mon, 07 Mar 2016 11:36:05 GMT
Accept-Ranges: bytes
ETag: "7cfeb5886578d11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 986
topclasslearner.com/images/cart1.png
89.163.208.34200 OK 5.6 kB URL HTTP/1.1 topclasslearner.com/images/cart1.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 93 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash af650197f024603eb26de59118faaf05
ee434a488a5873f3961bb6c2179bcf84e00d5ac0
4770c8a9d6b1f8ceb2af9cdeca851b58435e67b52abd256a67bec98031219158
GET /images/cart1.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sat, 18 Jun 2016 11:59:32 GMT
Accept-Ranges: bytes
ETag: "a67139e058c9d11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 5557
topclasslearner.com/js/jquery.js
89.163.208.34200 OK 1.2 kB URL HTTP/1.1 topclasslearner.com/js/jquery.js
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /js/jquery.js HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Transfer-Encoding: chunked
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 22 Feb 2016 13:02:10 GMT
Accept-Ranges: bytes
ETag: "f0cd23d716dd11:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
topclasslearner.com/fonts.css
89.163.208.34404 Not Found 1.2 kB URL HTTP/1.1 topclasslearner.com/fonts.css
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /fonts.css HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 1245
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2f1d65d6caaf7593775663149b61cb5d
cf83893ea9af20811c9e783146aaa9a92f30cfb7
212850f712e4edc9c6ca565ea464ea752596a6dd42ac36f3f25bb49f9b536ff4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=120008
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:08 GMT
Etag: "6389f884-118"
Expires: Sun, 04 Dec 2022 13:07:16 GMT
Last-Modified: Fri, 02 Dec 2022 13:07:16 GMT
Server: nginx
Content-Length: 280
topclasslearner.com/tcl/topclass/C.png
89.163.208.34200 OK 25 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/C.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 258, 8-bit/color RGBA, non-interlaced\012- data
Hash c1f4ccaa0b66209150e350aa415741e6
8a37db4db9fd5a2351b6fc8d02abe645c8836044
1aea551b6a7db9cc1bdc62d045bb246cbc5182927ccd6270b6b39cb3bde24084
GET /tcl/topclass/C.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:39 GMT
Accept-Ranges: bytes
ETag: "8545133f1ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 25032
topclasslearner.com/tcl/topclass/CPP.png
89.163.208.34200 OK 22 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/CPP.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 258, 8-bit/color RGBA, non-interlaced\012- data
Hash 320c6de5efa249fe222d0dda1a00e7e3
e9b34dc9a9119a8af063553f5b0aeba9a78cb440
2d0c87dafa3a87255fbcc7144fce7bd0b7ef7a6b8710035daed2dd26837d19f5
GET /tcl/topclass/CPP.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:40 GMT
Accept-Ranges: bytes
ETag: "538cbc3f1ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 21755
topclasslearner.com/tcl/topclass/Php.png
89.163.208.34200 OK 22 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/Php.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 258, 8-bit/color RGBA, non-interlaced\012- data
Hash 4e3708db0fe853f517776a4ce6fbf2ab
cdcb82c061ff8b07a9a15c32f280e3f5e1580631
c3b4a9da17e89b3972566eba9839b7f2cb7d8b59dbb50dec7f7eb1c01adb9423
GET /tcl/topclass/Php.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:49 GMT
Accept-Ranges: bytes
ETag: "7b8468451ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 22455
topclasslearner.com/tcl/topclass/fundamental.png
89.163.208.34200 OK 22 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/fundamental.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash e42cfc3abddf605c284a73dafa7e3c90
657287c2945d5688b56cc06019bf67d77a6509e5
3ba29af96ebfc7a3aaeed9f58624ce444369e7d1e2219b0e84023fc411d39d95
GET /tcl/topclass/fundamental.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:42 GMT
Accept-Ranges: bytes
ETag: "bfa318411ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 21952
topclasslearner.com/tcl/topclass/HCJ.png
89.163.208.34200 OK 22 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/HCJ.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash 0884ccbd87e2fcc85164c6e176d11647
5b8c10b9d4e7f14ddec3e850dfc7ec3c3a80b6cc
01d42b5c5234d94949c6ea37b7791664545505922ba1352aa6140d1649f6a6d4
GET /tcl/topclass/HCJ.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:45 GMT
Accept-Ranges: bytes
ETag: "39bb74421ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 22440
topclasslearner.com/tcl/topclass/DS.png
89.163.208.34200 OK 23 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/DS.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash 15a0cc636c619b726eff2b7f51671e11
0f56ed22bbf65b4708c1c83271dc0dde82248bc1
241c0b16ae916fa6a175abf4f34aae2b5270292001c13c2664b505962ae89fa0
GET /tcl/topclass/DS.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:41 GMT
Accept-Ranges: bytes
ETag: "30986a401ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 22740
topclasslearner.com/tcl/topclass/office.png
89.163.208.34200 OK 21 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/office.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash 2f1b17f3c4b02204e66db7ce6c7040ad
f741c25a35a3d776f8e2267fbcb2a9d2c0fe8cd7
70cf58c0d0a2528a5982412b97ef21a4bdc83500e45a3721834dafb003d3a57b
GET /tcl/topclass/office.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:48 GMT
Accept-Ranges: bytes
ETag: "f6f091441ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 21313
topclasslearner.com/tcl/topclass/Asp.png
89.163.208.34200 OK 22 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/Asp.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash 27699f13c45f593dbe14ecef7b410b30
5b9192e8c8f5b17274b361bdc327a8956b477731
6f082c39b3aa714bd8c87f51a47c731e0ef3d4b4b5c0994905ef6af476087e4a
GET /tcl/topclass/Asp.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:37 GMT
Accept-Ranges: bytes
ETag: "514f3a3e1ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 22523
topclasslearner.com/tcl/topclass/VB.png
89.163.208.34200 OK 22 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/VB.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash 05ae86b16930f236484981097e1804ea
0ff1db05ad29a0be21d9350b0923feb515ed0f16
610a4663661ca86d21775fb306cec72f4a06971987cfdd59fcf584426f39bfb4
GET /tcl/topclass/VB.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:23:00 GMT
Accept-Ranges: bytes
ETag: "534ea84b1ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 22094
topclasslearner.com/tcl/topclass/Tally.png
89.163.208.34200 OK 22 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/Tally.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash d7602fcf59d408afc1d4359ea0abbaaf
9d901041371acbb2a7f4b5f496e2658d5458937b
be96bb221e6fdcaef4b849f84c88285cd530afe4ac34f9b3ed033045629b4ea8
GET /tcl/topclass/Tally.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:58 GMT
Accept-Ranges: bytes
ETag: "89a99f4a1ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 21490
topclasslearner.com/tcl/topclass/Spoken.png
89.163.208.34200 OK 21 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/Spoken.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash 496103846b2657c9b770aa752d84e97a
d1b4e4aa41f463e65cd76218f0d9a5978ce03920
535d782b3e208dec82ebeb2b4c472ddc0e227c90f35593d66d61fb6d161192e2
GET /tcl/topclass/Spoken.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:52 GMT
Accept-Ranges: bytes
ETag: "da202b471ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 21169
topclasslearner.com/tcl/topclass/java.png
89.163.208.34200 OK 24 kB URL HTTP/1.1 topclasslearner.com/tcl/topclass/java.png
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type PNG image data, 330 x 257, 8-bit/color RGBA, non-interlaced\012- data
Hash fab43dd42a3e0f319f31051fd801f02c
8cdce2123b5b4c9322ad5c016b2fdde1082c56c2
27b42e6eb0be3e535fb974db40480e1a6de186319fb347903ba3c0b3ce66f425
GET /tcl/topclass/java.png HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 13 Jul 2016 12:22:46 GMT
Accept-Ranges: bytes
ETag: "cbaf6c431ddd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 24010
topclasslearner.com/images/bck.jpg
89.163.208.34200 OK 738 kB URL HTTP/1.1 topclasslearner.com/images/bck.jpg
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=9, orientation=upper-left, xresolution=122, yresolution=130, resolutionunit=2, software=ACD Systems Digital Imaging, datetime=2008:01:06 02:18:19], baseline, precision 8, 1920x1080, components 3\012- data
Size 738 kB (737894 bytes)
Hash 191c1a75eb7b9d42e96b5032bffe2b67
8b8e72e38485899b08bdac424d0114aebda939da
3d77907ed4dbfba23e22f0f25f0dbe1e83a4da3eda81cf170fac1751ba0c677c
GET /images/bck.jpg HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sat, 17 Jun 2017 12:06:40 GMT
Accept-Ranges: bytes
ETag: "ab24592d62e7d21:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 737894
topclasslearner.com/images/bck_footer.jpg
89.163.208.34200 OK 114 kB URL HTTP/1.1 topclasslearner.com/images/bck_footer.jpg
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 114 kB (113902 bytes)
Hash 1e11db06e4a91a91f3f85dc9cc73bdcd
1f5a78da80821546ffad1cdbd0d217d9fd430ac4
33703e45dc4d376ec2f0280c36e806f665c9032374c2d035d5300d87fc8b5fe4
GET /images/bck_footer.jpg HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/StyleSheet2.css
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Sat, 17 Jun 2017 12:06:29 GMT
Accept-Ranges: bytes
ETag: "399d62662e7d21:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:07 GMT
Content-Length: 113902
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 03:11:16 GMT
cache-control: public,max-age=3600
age: 2152
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2f1d65d6caaf7593775663149b61cb5d
cf83893ea9af20811c9e783146aaa9a92f30cfb7
212850f712e4edc9c6ca565ea464ea752596a6dd42ac36f3f25bb49f9b536ff4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=120008
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:08 GMT
Etag: "6389f884-118"
Expires: Sun, 04 Dec 2022 13:07:16 GMT
Last-Modified: Fri, 02 Dec 2022 13:07:16 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 98c7cbe55ef2c03504de9a1c11c48448
5490eee01dd5cd3cdb1605e6fcf58bdb811a6197
dd553c506497567a0992dac8bd754285147008a0db2fae3a0fd94c3718ca06f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5906
Cache-Control: max-age=169847
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:08 GMT
Etag: "638aa421-1d7"
Expires: Mon, 05 Dec 2022 02:57:55 GMT
Last-Modified: Sat, 03 Dec 2022 01:19:29 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f787fe0b633f54a5e3282b55db13a330
5c994716e95fed301dcb4ddb58702546e15c5e08
7e5c9e38909e7c36bae0609bb5df1a5531dfb6348f4c62bc7f08773105087369
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6490
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:08 GMT
Last-Modified: Sat, 03 Dec 2022 01:58:58 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6304
Cache-Control: max-age=111889
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:09 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:51:58 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 2f1d65d6caaf7593775663149b61cb5d
cf83893ea9af20811c9e783146aaa9a92f30cfb7
212850f712e4edc9c6ca565ea464ea752596a6dd42ac36f3f25bb49f9b536ff4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=120008
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:08 GMT
Etag: "6389f884-118"
Expires: Sun, 04 Dec 2022 13:07:16 GMT
Last-Modified: Fri, 02 Dec 2022 13:07:16 GMT
Server: nginx
Content-Length: 280
topclasslearner.com/favicon.ico
89.163.208.34404 Not Found 1.2 kB URL HTTP/1.1 topclasslearner.com/favicon.ico
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /favicon.ico HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv; showed=ok
HTTP/1.1 404 Not Found
Content-Type: text/html
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:09 GMT
Content-Length: 1245
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.5 kB URL HTTP/1.1 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash 2b153cb2287eac49566b32fce9c385f8
206074b038daff8bc66d86bca0c5ff35f9f72655
7398435bd3f0dae8206173dd66954ae029dc8787962d5f089bcb548f53409869
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
HTTP/1.1 200 OK
date: Sat, 03 Dec 2022 03:42:37 GMT
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 496798141
etag: W/"-375139978"
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4547
x-iplb-request-id: 5B5A2A9A:4AA6_2E69C9F0:0050_638AC6BD_1B7F:29687
x-iplb-instance: 40744
bit.ly/3zzKlOA
67.199.248.11301 Moved Permanently 114 B IP 67.199.248.11:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 988c249f56442504aa4f0c3d48acc7d9
0f259c7688c84f8bd89946df9aefdf948fe2d1ad
6078c9ebacd41bd894115c096436f290aeb54b6689a894c362501ff5babfdd4d
GET /3zzKlOA HTTP/1.1
Host: bit.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://topclasslearner.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 03 Dec 2022 03:47:09 GMT
content-type: text/html; charset=utf-8
content-length: 114
cache-control: private, max-age=90
location: https://meuip.page/ads5.php
set-cookie: _bit=mb33L9-18f15793de96c88158-00Y; Domain=bit.ly; Expires=Thu, 01 Jun 2023 03:47:09 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 98c7cbe55ef2c03504de9a1c11c48448
5490eee01dd5cd3cdb1605e6fcf58bdb811a6197
dd553c506497567a0992dac8bd754285147008a0db2fae3a0fd94c3718ca06f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5907
Cache-Control: max-age=169847
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:09 GMT
Etag: "638aa421-1d7"
Expires: Mon, 05 Dec 2022 02:57:56 GMT
Last-Modified: Sat, 03 Dec 2022 01:19:29 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f787fe0b633f54a5e3282b55db13a330
5c994716e95fed301dcb4ddb58702546e15c5e08
7e5c9e38909e7c36bae0609bb5df1a5531dfb6348f4c62bc7f08773105087369
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6491
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:09 GMT
Last-Modified: Sat, 03 Dec 2022 01:58:58 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash ea606ce58ea999fe4e815347f807826e
b0b73dd81601f8b0a124acb15e7aebe44efeabc9
a162d72b6ca1c7154a98064b9eaf53e3aa18090b50e36c81a422753aff390679
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=151654
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:09 GMT
Etag: "638a7423-116"
Expires: Sun, 04 Dec 2022 21:54:43 GMT
Last-Modified: Fri, 02 Dec 2022 21:54:43 GMT
Server: nginx
Content-Length: 278
push.services.mozilla.com/
54.148.213.75101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.213.75:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: HKgXFfSBbsxOehH4EH5fkw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EcichxXm6NlWG6CM5CA1bZmz5Ts=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash eac21c018b331c380a594610bc4d25ad
6b3a72c908edc11e5e389bbc0bb768fb2757adbe
8315de5b82f2596de9c7f2d790853d2026f842d1c024647e71e64b4b00973256
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8315DE5B82F2596DE9C7F2D790853D2026F842D1C024647E71E64B4B00973256"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11373
Expires: Sat, 03 Dec 2022 06:56:42 GMT
Date: Sat, 03 Dec 2022 03:47:09 GMT
Connection: keep-alive
s4.histats.com/stats/0.php?3908301&@f16&@g1&@h1&@i1&@j1670039227176&@k0&@l1&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-74465823&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w
54.39.156.32200 OK 51 B URL HTTP/1.1 s4.histats.com/stats/0.php?3908301&@f16&@g1&@h1&@i1&@j1670039227176&@k0&@l1&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-74465823&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w
IP 54.39.156.32:0
File type ASCII text, with no line terminators
Hash b646df06d31c71bd5bc7e4528d012989
e7fa8f3a4a2e494bbf4f70f3c0d51b72f03c5174
e80c81bae5031f6a5d6ab18e8cfe4f31127f6d43a4352ab2f7a39908669a7faa
GET /stats/0.php?3908301&@f16&@g1&@h1&@i1&@j1670039227176&@k0&@l1&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-74465823&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://topclasslearner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 03:47:09 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close
s4.histats.com/stats/0.php?3908301&@f16&@g0&@h2&@i1&@j1670039227181&@k5&@l2&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-112331551&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w
54.39.156.32200 OK 51 B URL HTTP/1.1 s4.histats.com/stats/0.php?3908301&@f16&@g0&@h2&@i1&@j1670039227181&@k5&@l2&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-112331551&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w
IP 54.39.156.32:0
File type ASCII text, with no line terminators
Hash b646df06d31c71bd5bc7e4528d012989
e7fa8f3a4a2e494bbf4f70f3c0d51b72f03c5174
e80c81bae5031f6a5d6ab18e8cfe4f31127f6d43a4352ab2f7a39908669a7faa
GET /stats/0.php?3908301&@f16&@g0&@h2&@i1&@j1670039227181&@k5&@l2&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-112331551&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://topclasslearner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 03:47:09 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close
s4.histats.com/stats/0.php?2998001&@f16&@g1&@h1&@i1&@j1670039227176&@k0&@l1&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-42173828&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w
54.39.156.32200 OK 51 B URL HTTP/1.1 s4.histats.com/stats/0.php?2998001&@f16&@g1&@h1&@i1&@j1670039227176&@k0&@l1&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-42173828&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w
IP 54.39.156.32:0
File type ASCII text, with no line terminators
Hash 8fc4642d7036acd9f4ed39e4bbdc7301
4a24ae1cdcd997353e002e00aa1737c67db17ec1
01b7439ee9f9c7129219885ac45e1cc45572521d78743a31e2bd2c36ed80ed5b
GET /stats/0.php?2998001&@f16&@g1&@h1&@i1&@j1670039227176&@k0&@l1&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-42173828&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://topclasslearner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 03:47:09 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close
s4.histats.com/stats/0.php?2998001&@f16&@g0&@h2&@i1&@j1670039227181&@k5&@l2&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-186753791&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w
54.39.156.32200 OK 51 B URL HTTP/1.1 s4.histats.com/stats/0.php?2998001&@f16&@g0&@h2&@i1&@j1670039227181&@k5&@l2&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-186753791&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w
IP 54.39.156.32:0
File type ASCII text, with no line terminators
Hash 8fc4642d7036acd9f4ed39e4bbdc7301
4a24ae1cdcd997353e002e00aa1737c67db17ec1
01b7439ee9f9c7129219885ac45e1cc45572521d78743a31e2bd2c36ed80ed5b
GET /stats/0.php?2998001&@f16&@g0&@h2&@i1&@j1670039227181&@k5&@l2&@m&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:-186753791&@b3:1670039227&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttp%3A%2F%2Ftopclasslearner.com%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://topclasslearner.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 03:47:09 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash ea606ce58ea999fe4e815347f807826e
b0b73dd81601f8b0a124acb15e7aebe44efeabc9
a162d72b6ca1c7154a98064b9eaf53e3aa18090b50e36c81a422753aff390679
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=151654
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:09 GMT
Etag: "638a7423-116"
Expires: Sun, 04 Dec 2022 21:54:43 GMT
Last-Modified: Fri, 02 Dec 2022 21:54:43 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 885f29d77a68c83a63163a2c6035d1ae
792392fc7e7d68a2a0c70e208028471b6385a55a
91e6427c8b37707ace43cea81e91acbaba621bae3432afcbf70a22ef646a4336
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "91E6427C8B37707ACE43CEA81E91ACBABA621BAE3432AFCBF70A22EF646A4336"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7597
Expires: Sat, 03 Dec 2022 05:53:47 GMT
Date: Sat, 03 Dec 2022 03:47:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 885f29d77a68c83a63163a2c6035d1ae
792392fc7e7d68a2a0c70e208028471b6385a55a
91e6427c8b37707ace43cea81e91acbaba621bae3432afcbf70a22ef646a4336
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "91E6427C8B37707ACE43CEA81E91ACBABA621BAE3432AFCBF70A22EF646A4336"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7597
Expires: Sat, 03 Dec 2022 05:53:47 GMT
Date: Sat, 03 Dec 2022 03:47:10 GMT
Connection: keep-alive
ashoupsu.com/tag.min.js
139.45.197.238200 OK 23 kB IP 139.45.197.238:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 391a9fe961c74a035ed5ac424bfc5fb2
65bf15f254531c80c76212bb6d3c5f33d6a501ee
73f16b3e042c5e5f34570279688fb08577d95105d0707d1a21b11c0c1524dcfb
Analyzer Verdict Alert quad9 Sinkholed
GET /tag.min.js HTTP/1.1
Host: ashoupsu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 03:47:10 GMT
content-type: text/javascript; charset=utf-8
content-length: 23393
content-encoding: br
x-trace-id: fc85496841ec122c80b5679eb1f7cc8f
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Fri, 02 Dec 2022 10:20:03 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ashoupsu.com/5/3398217/?oo=1&aab=1
139.45.197.238200 OK 1.6 kB URL HTTP/2 ashoupsu.com/5/3398217/?oo=1&aab=1
IP 139.45.197.238:0
Hash d9d57533618a847dbb300287821d5b44
33ede1c9c8ccf930ed34aa76028d45379e4cde8c
32b1ea50b65c1f3f3f2f7ce8ed828b6bd66d2fb5f9838b966483cdc0be7118bf
Analyzer Verdict Alert quad9 Sinkholed
GET /5/3398217/?oo=1&aab=1 HTTP/1.1
Host: ashoupsu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://meuip.page
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 03:47:10 GMT
content-type: application/json
x-trace-id: 12ea940d5b64532f281670ffa0cacc04
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://meuip.page
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=5dfe19516ff3464aacb54a74dd3b663a; expires=Sun, 03 Dec 2023 03:47:10 GMT; path=/; secure; SameSite=None
oaidts=1670039230; expires=Sun, 03 Dec 2023 03:47:10 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash ae362dcfc36c65824b06b3a446b76018
80f0c3404430a097f1c013ca2691d93db7da3dc9
23af03564e7b0e00f5136a553591440f4dfe606515e0c8929f6f895f89e22273
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3140
Cache-Control: max-age=105849
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 03:47:10 GMT
Etag: "6389b4f3-116"
Expires: Sun, 04 Dec 2022 09:11:19 GMT
Last-Modified: Fri, 02 Dec 2022 08:18:59 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 278
tzegilo.com/stattag.js
172.67.194.45200 OK 5.7 kB IP 172.67.194.45:0
File type ASCII text, with very long lines (12966), with no line terminators
Hash 8195d4b1d5509f7db9cbc29f8aefb6d2
0aa70e11edc0d17572e5a342228fe3a7a2d9a181
4c65ca77790bf0747fbf69b34597e16fcb9868a501adae41642250c5a832fa4d
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 03:47:10 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 5356
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YMVo0EHwDBFfMZjZFspbWZjd2M%2ByQdBZZeptXwBMzBEGlKncePSngG3V8kedXx03wtvlTnhbMUpw8Pdn6pDhXlWuuCICXO0CWM454ykbbAUa8eZw%2BgdXSfa705YF%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 773951c4ea73b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=5dfe19516ff3464aacb54a74dd3b663a
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=5dfe19516ff3464aacb54a74dd3b663a
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 4f873f76506067d2131d76eeb2f53866
08281bcf921155f7578f3dc025a13c824d72e19d
abd0aebe073eff2151a6c35ec46aa878a09f79f3b229134feb9728eb3bab07e3
GET /gid.js?userId=5dfe19516ff3464aacb54a74dd3b663a HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://meuip.page
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 03:47:10 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://meuip.page
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=5dfe19516ff3464aacb54a74dd3b663a; expires=Sun, 03 Dec 2023 03:47:10 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 2a3e9c9270d5d1402700343b567d8e21
4348655937347ff19881acafd04b1277e017f19c
905ee9517e8597ac86e76b99b970f77a4fbb2500de30ef6efea97a4bbcea51d4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 03:47:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 02 Dec 2022 13:33:18 GMT
Expires: Fri, 09 Dec 2022 13:33:17 GMT
Etag: "4348655937347ff19881acafd04b1277e017f19c"
Cache-Control: max-age=552966,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773951c5da9c0b45-OSL
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.253200 OK 12 B URL HTTP/1.1 datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.253:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 916
Origin: https://meuip.page
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sat, 03 Dec 2022 03:47:10 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://meuip.page
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Sat, 03 Dec 2022 04:39:42 GMT
Date: Sat, 03 Dec 2022 03:47:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Sat, 03 Dec 2022 04:39:42 GMT
Date: Sat, 03 Dec 2022 03:47:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3152
Expires: Sat, 03 Dec 2022 04:39:42 GMT
Date: Sat, 03 Dec 2022 03:47:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dbee75c6c314655f738b57b828bef016
bb36d39c7adf764e8a7dcf7f91125001623975b4
fd40949b9711db01be746d1723f78c2bb04d356063c6249b8b5ae1470532367a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57219d7e-330b-4d3f-a472-55cd262c7dc1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10877
x-amzn-requestid: bebc4f7f-7349-4973-99f5-d6c3b8a27072
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1G2uIAMFryg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-0637a1a946db78074bc19dc3;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WKEeqfEv-NjZr_39K27vuE9FrqYcJCI5oQk0_JIl_HuO3iA0f57_vw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:49:27 GMT
etag: "bb36d39c7adf764e8a7dcf7f91125001623975b4"
content-type: image/jpeg
age: 21463
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash becc8cdba57494c6fe212eb67634e1eb
c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8
fbb25b88b10a818bb0c6ad385b1e5ba54b87672c73bfa8a9c1ecb17dcc689d5a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11942
x-amzn-requestid: ba8a5d03-7796-4c6d-a6df-3cc71b1c5259
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: chqukGmWoAMFtLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a24c3-609dc90d769060d30a16e3df;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 16:16:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: m6j_3bDGFIAHQYzrZ1zXqUb-HbEJ8XCoGH5mgBFOWRbLzoSiuNBnhg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:59:25 GMT
age: 20865
etag: "c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jM-fTqLsmU3c_gc9Wle-lvCwXelA9Sid9axtzJQDsfOHv23yUbKsBw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 23:43:28 GMT
age: 14622
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ffa12df550123f63b20f67437cd8a04
398fd2d837c73f54c4591b69cd683f29bdf9184a
fd9ac4396488098923c27531295e64475047dd008a901e59915109a73a69f305
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6119
x-amzn-requestid: cac5842e-2b57-4eda-9b09-27ec8a0b1bf8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMiE7Hq0oAMFzHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381b085-151f123551f999a918de8a3a;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 06:21:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mrS561ug59NStQyD3cH4ndqGvY3QiLVeMFOoC86ktj52PghNjeYa5w==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 20:55:39 GMT
age: 24691
etag: "398fd2d837c73f54c4591b69cd683f29bdf9184a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49fea74a471d9b45d94402298988d827
11dbe272c75ad8dda9fe66062f761ad0a978c350
ddcf2de56e0fa45e50b45bb021a7b212ddf1ba5a108a849df04ad109809913bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b481c9e-a8af-468b-b839-a5948a749564.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4996
x-amzn-requestid: ac93701b-5591-447b-abcd-6dd7c8236d63
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1EmIoAMFUyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-62984f247ab5233275eefc7f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vGYoBLRpnjjxEKkZe8ZJKTn-fPpiKwyvQqUUujW3Ro0cO2R__q-OAg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:49:27 GMT
age: 21463
etag: "11dbe272c75ad8dda9fe66062f761ad0a978c350"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 436b46a2eea584bd8ec1dba5603c8659
fed437d1919af63f9d58396f318568aadae3d868
fff21dd129f35807bfc29c6582661a79e764238076e540968b57fcad18811566
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59297fb7-bcb3-48eb-83b5-7d264b21c3db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8016
x-amzn-requestid: bfb5f288-4467-467a-9b30-1055a4e6bc54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZPeE4nIAMFvnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2f-53a5a66704157f4e003ecfa4;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:35 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lUqXgbpEaZh9DO_rv0K5pzHUAF1DsASkKYNTU6t5AUWZjHNV9LRojA==
via: 1.1 aabd01c4a20dae837d162bd972422efc.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:05 GMT
age: 20765
etag: "fed437d1919af63f9d58396f318568aadae3d868"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
s10.histats.com/js15_as.js
46.105.201.240200 OK 4.4 kB URL HTTP/2 s10.histats.com/js15_as.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (11440), with no line terminators
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /js15_as.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 03:40:23 GMT
etag: "-375139978"
last-modified: Thu, 16 Apr 2020 10:44:16 GMT
x-request-id: 411207211
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 4364
X-Firefox-Spdy: h2
s4.histats.com/stats/0.php?4267674&@f16&@g1&@h0&@i0&@j0&@k0&@l0&@mADS&@n0&@ohttp%3A%2F%2Ftopclasslearner.com%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-54044328&@b3:1670039229&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fmeuip.page%2Fads5.php&@w
54.39.156.32200 OK 51 B URL HTTP/1.1 s4.histats.com/stats/0.php?4267674&@f16&@g1&@h0&@i0&@j0&@k0&@l0&@mADS&@n0&@ohttp%3A%2F%2Ftopclasslearner.com%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-54044328&@b3:1670039229&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fmeuip.page%2Fads5.php&@w
IP 54.39.156.32:0
File type ASCII text, with no line terminators
Hash 51d50856a70a430ecaf6487c422e641e
43f4866f59e493b51f9f028ec48c0ad4c74313c0
a34fca103cf82aabc7177c514576fb76fb16ee29f1c8afe05c924a51044c7951
GET /stats/0.php?4267674&@f16&@g1&@h0&@i0&@j0&@k0&@l0&@mADS&@n0&@ohttp%3A%2F%2Ftopclasslearner.com%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-54044328&@b3:1670039229&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fmeuip.page%2Fads5.php&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://meuip.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 03:47:10 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 51
Connection: close
topclasslearner.com/HGimg/i1.jpg
89.163.208.34200 OK 14 kB URL HTTP/1.1 topclasslearner.com/HGimg/i1.jpg
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 306x165, components 3\012- data
Hash 30479e51584b5e0723b37f6a61236331
d68ad8b9638ef3b2a8d70bb626f3a1f95878e53b
681e0684337c1a4c92289f4cae49358e7d43b3a5d9dae1cf74f9f1a681c69d78
GET /HGimg/i1.jpg HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv; showed=ok; HstCfa3908301=1670039227176; HstCla3908301=1670039227181; HstCmu3908301=1670039227176; HstPn3908301=2; HstPt3908301=2; HstCnv3908301=1; HstCns3908301=1
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 22 Feb 2016 13:01:04 GMT
Accept-Ranges: bytes
ETag: "b8757616716dd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:10 GMT
Content-Length: 14341
topclasslearner.com/HGimg/i2.jpg
89.163.208.34200 OK 15 kB URL HTTP/1.1 topclasslearner.com/HGimg/i2.jpg
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 348x145, components 3\012- data
Hash 8f42bad780a41e6b5e34ff480516ae50
6117f6356283a9bd31dad392ba38dc0cd40f0b97
c43c1913c6de3d300d7257af957bc0e58bfc38ae10ceb810747bc28b0a9e32b1
GET /HGimg/i2.jpg HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv; showed=ok; HstCfa3908301=1670039227176; HstCla3908301=1670039227181; HstCmu3908301=1670039227176; HstPn3908301=2; HstPt3908301=2; HstCnv3908301=1; HstCns3908301=1
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 22 Feb 2016 13:01:04 GMT
Accept-Ranges: bytes
ETag: "47749516716dd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:12 GMT
Content-Length: 14636
topclasslearner.com/HGimg/i3.jpg
89.163.208.34200 OK 20 kB URL HTTP/1.1 topclasslearner.com/HGimg/i3.jpg
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 330x153, components 3\012- data
Hash 4bdb20c032b606c5b4de7e971577d7f5
0e99b02632bdc385f016b7ae3cd42660da6b116d
806831451bc343e3278d0fe641e95d6c80ffd49be5c710d79e0eae0673c42230
GET /HGimg/i3.jpg HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv; showed=ok; HstCfa3908301=1670039227176; HstCla3908301=1670039227181; HstCmu3908301=1670039227176; HstPn3908301=2; HstPt3908301=2; HstCnv3908301=1; HstCns3908301=1
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 22 Feb 2016 13:01:06 GMT
Accept-Ranges: bytes
ETag: "c02ad017716dd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:14 GMT
Content-Length: 19489
topclasslearner.com/HGimg/i4.jpg
89.163.208.34200 OK 18 kB URL HTTP/1.1 topclasslearner.com/HGimg/i4.jpg
IP 89.163.208.34:0
ASN #24961 myLoc managed IT AG
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 300x152, components 3\012- data
Hash d6bf2840810570e53e4b32ed9d39e0f5
f981d58053f5f457ba2e6ae110c9675677beb83f
97bf2d0f1d8f52030ff1190d7e0e974c69d7e8e278dc107329202ccb2c3aa1ab
GET /HGimg/i4.jpg HTTP/1.1
Host: topclasslearner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://topclasslearner.com/
Cookie: ASP.NET_SessionId=o1vf5fkthnvz1ct1m2vltgvv; showed=ok; HstCfa3908301=1670039227176; HstCla3908301=1670039227181; HstCmu3908301=1670039227176; HstPn3908301=2; HstPt3908301=2; HstCnv3908301=1; HstCns3908301=1
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Mon, 22 Feb 2016 13:01:07 GMT
Accept-Ranges: bytes
ETag: "d9c6ec17716dd11:0"
Server: Microsoft-IIS/10.0
X-Powered-By: ASP.NET
X-Powered-By-Plesk: PleskWin
Date: Sat, 03 Dec 2022 03:47:16 GMT
Content-Length: 17485
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcdb77a21f91a4a280ac9a8efbc48bbd
74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d
5ee7c45f21b38c653d03a24b10a190a9e9266226d221b006e787cd3719088d7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11233
x-amzn-requestid: 89afb72e-6967-47d0-a0ad-48cad8cd08e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIpgOEi0oAMFstg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638022ce-1e8087e734e71d611df75830;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 02:05:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d9wLy3xAxK6RiYf25v_GFT1gdezT8IzMxaFyGRuGm2nxOBh6uEOg3w==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:29 GMT
age: 20748
etag: "74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.counter12.com/ad.js?id=3BZZ4Cbz
172.67.139.159200 OK 0 B URL HTTP/2 www.counter12.com/ad.js?id=3BZZ4Cbz
IP 172.67.139.159:0
GET /ad.js?id=3BZZ4Cbz HTTP/1.1
Host: www.counter12.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://topclasslearner.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 03:47:08 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/5.3.3
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q1d%2FHWj4IovCM2i2WL5ziGZtoaDZ72MCHP0pdsCVAu0ONiOS4B8pHkioJPxmQxmN9gy2lCUpgTKhwePgdrF1t%2F4LQLlyriyJSLXHlboZBJYyrC%2FDhNGnN1V1teAqTGWQzbqAIQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773951bb1a44b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
meuip.page/ads5.php
188.114.97.1200 OK 0 B IP 188.114.97.1:0
GET /ads5.php HTTP/1.1
Host: meuip.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://topclasslearner.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 03:47:09 GMT
content-type: text/html; charset=UTF-8
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=75bQDBZ7%2FtdTewYajrNsN82PToXQfzRrFFrP8tzkYXRGRvh8SEdzHTLDTU2mN6PoRrM1qEW%2BQNV8jTLVjAg%2BnefB663K1A1GRRVRgKmQfO6gBFtmjPpqAZVMOcHO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 773951bf7be6b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2