0delay.space/cyZzmTGp
45.80.70.203301 Moved Permanently 0 B IP 45.80.70.203:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /cyZzmTGp HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 18 Jan 2023 20:01:26 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: 0
Location: https://0delay.space/cyZzmTGp
Pragma: no-cache
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 648bf42163c5d645d8a33cd0a9afebd0
9b9ac85435c4e90647e8379bca54c689058a8929
060757fb4857858d4d01a715824ea6771d0137e73a24bf75e2844d0f346380fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "060757FB4857858D4D01A715824EA6771D0137E73A24BF75E2844D0F346380FA"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2519
Expires: Wed, 18 Jan 2023 20:43:25 GMT
Date: Wed, 18 Jan 2023 20:01:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b36ef73c20dffb6bc10194bbd2d0dcfa
a67a4023dc8b4944debaeb92f3ba0f1402c079a6
05a7a4d832cf9e593ca44efea309edcbd80734583bada15fda3e740612eff991
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05A7A4D832CF9E593CA44EFEA309EDCBD80734583BADA15FDA3E740612EFF991"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13979
Expires: Wed, 18 Jan 2023 23:54:25 GMT
Date: Wed, 18 Jan 2023 20:01:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 18 Jan 2023 19:49:21 GMT
content-type: application/json
age: 726
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6c8239f3894cfba54d1f3a9ea1c85db5
a70f2b3bf79f2aa26b0cc0340dd182565c3eb946
64dc0508d3fcea1ec92fb60310e9b3f5454c0b69f61e8453fd443bc46ab9471b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "64DC0508D3FCEA1EC92FB60310E9B3F5454C0B69F61E8453FD443BC46AB9471B"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16312
Expires: Thu, 19 Jan 2023 00:33:19 GMT
Date: Wed, 18 Jan 2023 20:01:27 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3XlBAQRx18x5wMuHSSxk8C2i5dwYwepuY3W1WEy4SmtnrhOkbNSyTmzxbUoo+dwtgFJV2CnY5tM=
x-amz-request-id: TY5HVFQK2ZPKYM64
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 18 Jan 2023 19:56:48 GMT
age: 279
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 20:01:27 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85fff800dc400b004a7c5f4b84c9b241
c63e597ac827903f2fc0d748c7b3ca49aca2811a
04ec4b75e65523390d7459949c26a17c5e9b79d5731ea6829093d46536daa7c4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "04EC4B75E65523390D7459949C26A17C5E9B79D5731EA6829093D46536DAA7C4"
Last-Modified: Wed, 18 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21566
Expires: Thu, 19 Jan 2023 02:00:53 GMT
Date: Wed, 18 Jan 2023 20:01:27 GMT
Connection: keep-alive
0delay.space/cyZzmTGp
45.80.70.203200 OK 8.4 kB IP 45.80.70.203:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash fa0a8a922b6e8026fe3e6844d29ac66a
5b884a0952edbeaef7b8e0c4be69f58506b4c495
2e5bfcd66a5f645549e16b34dd240ef6031684821fa29e60246f7ec545acd28c
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /cyZzmTGp HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Content-Encoding: gzip
Expires: 0
Pragma: no-cache
Set-Cookie: _subid=s8hnpa1n6h1g; expires=Sat, 18 Feb 2023 20:01:27 GMT; path=/
7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; expires=Thu, 06 Feb 2076 16:02:54 GMT; path=/
_token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855; expires=Sat, 18 Feb 2023 20:01:27 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
0delay.space/lander/menspower-uz/1/style.css
45.80.70.203200 OK 2.7 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/style.css
IP 45.80.70.203:0
File type ASCII text, with very long lines (1033), with CRLF line terminators
Hash d41db4759bb0833b920048feb1bf5a32
bddc371a2b71b14684ce56726c81ba705448f554
b87db3fba20e747e217d9f96d3ad4363d5e51ee3d27adf00453376467b0740a7
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/style.css HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: text/css
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61d5a4ae-2877"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
0delay.space/lander/menspower-uz/1/script.js
45.80.70.203200 OK 340 B URL HTTP/1.1 0delay.space/lander/menspower-uz/1/script.js
IP 45.80.70.203:0
File type Unicode text, UTF-8 text, with very long lines (338), with no line terminators
Hash 76cd46ba55a547e68b84f876ef0db812
9d8cfd97a9b99122319cb599e27c03eaba66a7a7
e455c85a22b74dcf5c3c546f96948723d1c1e9660586846af6418154995bdc0f
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /lander/menspower-uz/1/script.js HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: application/javascript
Content-Length: 340
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-154"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/jquery-3.3.1.min.js
45.80.70.203200 OK 30 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/jquery-3.3.1.min.js
IP 45.80.70.203:0
File type ASCII text, with very long lines (65451)
Hash e713186118b655f653a2076385d83dab
827db9205bbbfe60c03fdee56429e69ad24e8a95
9e4dd4a79aa648dd171a65f4b492955c47a0078c5d0b21b61a1343493a2be450
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /lander/menspower-uz/1/jquery-3.3.1.min.js HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: application/javascript
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"61d5a4ae-1538f"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
0delay.space/lander/menspower-uz/1/10.jpg
45.80.70.203200 OK 9.2 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/10.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3\012- data
Hash d737d5e9837240e6462aa0eb050c3adb
af2abd2380d4fe2c871e36e31dea99287eef7673
1563ceabc04613535d3b542e4dba4d4347b301398413e07a828a6b89b0e4a85b
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/10.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 9209
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-23f9"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/otz-10-10-25.jpg
45.80.70.203200 OK 1.0 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/otz-10-10-25.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 440f189ff24d18579e337abba242b7ed
343c3d9e0e9fa04a0478017475ffeb9003834966
062953ee63125238a09a04425c5278bb7c32748a12e693f1e54d6a2d2f62fdeb
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/otz-10-10-25.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 1003
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-3eb"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/otz-10-10-011.jpg
45.80.70.203200 OK 922 B URL HTTP/1.1 0delay.space/lander/menspower-uz/1/otz-10-10-011.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 554fdd7ef5f214ad168af14f898a8035
ab1e26575f8da50ef37c5c4a269eadbd3a63745f
d6c2b72c047f2ec0872ee1f859421b04822d42198f34cc6dde11df7fef4622ee
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/otz-10-10-011.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 922
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-39a"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 18 Jan 2023 19:48:57 GMT
age: 750
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
0delay.space/lander/menspower-uz/1/logo.png
45.80.70.203200 OK 24 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/logo.png
IP 45.80.70.203:0
File type PNG image data, 745 x 114, 8-bit colormap, non-interlaced\012- data
Hash 01b3489632e001e5bfa3f6a633cbb5e9
084f0caea46c8967faf7001536e0f4190dd11062
a9274285a3a4fecec9496444998c66b03eab8fb50c028a15130d93cc8e5ae084
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/logo.png HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/png
Content-Length: 23881
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-5d49"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/003_big.jpg
45.80.70.203200 OK 39 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/003_big.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 700x525, components 3\012- data
Hash 1a758a4fd05ba778a454c42079942ee6
005f506e5557db3bcd14762634940ff353e112ad
e5da100b65d021e35228c1b135738f849baba379795f20fb5eb3dac80665bc5d
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/003_big.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 38904
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-97f8"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/otz-10-10-27.jpg
45.80.70.203200 OK 921 B URL HTTP/1.1 0delay.space/lander/menspower-uz/1/otz-10-10-27.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash f017337e0a21309c69c61b5e28d29227
02b14b7cccce54013c0e86c74e2459e1d5a814d2
ea533ff1f580f491a86f0dbb6e98491623ae7bf5f54483c37357b724f9118065
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/otz-10-10-27.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 921
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-399"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/otz-10-10-26.jpg
45.80.70.203200 OK 784 B URL HTTP/1.1 0delay.space/lander/menspower-uz/1/otz-10-10-26.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash c2804fc234928931f2e588c182089e57
a7dea662315899f023c64f4b9b93535736831743
bf57a74be2863d0fd3ff8e62157d1b85f4dfb6624860cba632553cd8ab1e6efd
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/otz-10-10-26.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 784
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-310"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/11.jpg
45.80.70.203200 OK 7.8 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/11.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 298x298, components 3\012- data
Hash 4b1b10415e2e7cacbf536e0c0df2ade7
a03eb2c44e5629bc43a861d352d47fbc310ffc75
9a807d7ea1ab509956505f964d85b9b0787f9e16a63fa574519e01ccce3bca50
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/11.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 7765
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-1e55"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/big_yre8.png
45.80.70.203200 OK 35 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/big_yre8.png
IP 45.80.70.203:0
File type PNG image data, 300 x 63, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ed44c98ea6e64dba01305c90fb03f4e
fe2d3f35583ffa107bfbbfd1e11ed13f26f05e93
541dced6abd9d13c5d40b6b9b83de87c25441645a100d9cc2769366a32f426d4
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/big_yre8.png HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/png
Content-Length: 35061
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-88f5"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/otz-10-10-23.jpg
45.80.70.203200 OK 811 B URL HTTP/1.1 0delay.space/lander/menspower-uz/1/otz-10-10-23.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 08607f9232fb91c19a24978951e71bbd
a877f02f273cc384e9ac7d9b61fdcbe4a5f87692
ec0ba85e942d7e94eb999a88210b7875b2152557cd40160eca4896eb08b6a4c6
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/otz-10-10-23.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 811
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-32b"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/otz-10-10-22.jpg
45.80.70.203200 OK 1.0 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/otz-10-10-22.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 46b632c5db8aa77bfc2330d7ad7b9cfe
2fe4fa354019f2ef7d253d37e164afd2a37d5abe
4e8539e101c6c62a9ae1cd8c7292ded29c5cee5f68d6c2737ff8aa12847a6760
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/otz-10-10-22.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 1034
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-40a"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 79af32d8e279b4cfec147ab51cb6fcb3
d726903292bd1e08a6d9fe0719d2cd5b33dc5fe6
bfcb2d8f14d89736ac6b771f1618a8fc5e707691d60807a574fb719c8e9393ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6413
Cache-Control: max-age=139934
Content-Type: application/ocsp-response
Date: Wed, 18 Jan 2023 20:01:27 GMT
Etag: "63c7b6a8-1d7"
Expires: Fri, 20 Jan 2023 10:53:41 GMT
Last-Modified: Wed, 18 Jan 2023 09:06:48 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 315 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash cee3e4445821468f93e98eaf52d5a2c1
bf89d87abd8ee199f57c503173f1919072f33e84
724823320cc8496d1cd0cf394b2e28b4a7b7e38d40ebff37dd1f1fa9d8b14b7c
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: application/ocsp-response
Content-Length: 315
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 10:13:18 GMT
Expires: Wed, 25 Jan 2023 10:13:17 GMT
Etag: "bf89d87abd8ee199f57c503173f1919072f33e84"
Cache-Control: max-age=568909,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b9ec3438aeb50b-OSL
0delay.space/lander/menspower-uz/1/90.jpg
45.80.70.203200 OK 974 B URL HTTP/1.1 0delay.space/lander/menspower-uz/1/90.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 5d88892a99f860778f880dd0610665bb
d47a76078d777cd7e136623a20a70135a02c98b1
8d32d4eb6e845e215e7a7993a9d013909ade806525039ff758be366a5b0d3b4a
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/90.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 974
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-3ce"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/rak.jpg
45.80.70.203200 OK 31 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/rak.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 760x570, components 3\012- data
Hash c0b860d9e9b440a1c8aca454b5daa021
f16aa857660ef1b46d6395229dd2d81a4c651d5c
bf4c2fbba85180d1cda9add0298e8ffe828187ba4c3136e05dd6ff04869b35bf
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/rak.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 30866
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-7892"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/101.jpg
45.80.70.203200 OK 933 B URL HTTP/1.1 0delay.space/lander/menspower-uz/1/101.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Hash c8ac4feb6bc5fa388bf3743d68387526
43dfc1b63ed25197e9fd5660fd27bdb0a56fd936
f7665444ca7cd47109b53b634a2bb70885a224c7870f843a7e381b05ac63e8d1
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/101.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 933
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-3a5"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/MensPower.jpeg
45.80.70.203200 OK 303 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/MensPower.jpeg
IP 45.80.70.203:0
File type PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 303 kB (303317 bytes)
Hash b05962eadd9810a48311e24cc3a1725a
f9e9dd9dd28751032494c7d099d4cef913aa5143
aad1a9a24a46f28c4cd6b53500581efe0407875f300b6434659a5a7d6567eb2e
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /lander/menspower-uz/1/MensPower.jpeg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 303317
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-4a0d5"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/otz-10-10-28.jpg
45.80.70.203200 OK 943 B URL HTTP/1.1 0delay.space/lander/menspower-uz/1/otz-10-10-28.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 9ae5a10e5fbc2daf1a5dc6def2027f3d
f18a1914f9b1609506a67878148403d53ec2df64
e27644e4b5dc2948b6864b0c772225326d510b7880df9e9c6488064c1804e65f
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/otz-10-10-28.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 943
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-3af"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/otz-10-10-00.jpg
45.80.70.203200 OK 842 B URL HTTP/1.1 0delay.space/lander/menspower-uz/1/otz-10-10-00.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 49cab87536845835f36244b4ebbb242b
ee99912092de220063c09b8eb9f7ad6054b4defd
555f2e0b32910558a4497d58dbe449bf7dc30118c982a81f6415d1246690099c
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/otz-10-10-00.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 842
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-34a"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
0delay.space/lander/menspower-uz/1/otz-10-10-29.jpg
45.80.70.203200 OK 889 B URL HTTP/1.1 0delay.space/lander/menspower-uz/1/otz-10-10-29.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash d58fe788cb79e4e48e49455275d14365
cf486c6fac31308b00a216a71b1dcb724aa13d8b
0c9836360c2cf0d6e5d38a7b1cbc7fb3848b2d20c5a20218acc00bf94f248c89
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/otz-10-10-29.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 889
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-379"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
news-gevike.cc/code/https.js?uid=136888&site=8054216&banadu=0&sub1=UZMensPower
193.108.118.156200 OK 8.6 kB URL HTTP/2 news-gevike.cc/code/https.js?uid=136888&site=8054216&banadu=0&sub1=UZMensPower
IP 193.108.118.156:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (8560), with no line terminators
Hash d46eedc5bf92110971935230fb7fae06
83e6dae284dd9b9ac8238f2fa9fb6f01759f994d
7cdbadb8909e3482524a661e7593767fb49cc0db2d95bb4ac5274a660e9fcef6
Analyzer Verdict Alert quad9 Sinkholed
GET /code/https.js?uid=136888&site=8054216&banadu=0&sub1=UZMensPower HTTP/1.1
Host: news-gevike.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 20:01:27 GMT
content-type: application/javascript
content-length: 8560
last-modified: Wed, 18 Jan 2023 15:06:27 GMT
etag: "63c80af3-2170"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
0delay.space/lander/menspower-uz/1/otz-10-10-24.jpg
45.80.70.203200 OK 1.1 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/1/otz-10-10-24.jpg
IP 45.80.70.203:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 72bad933d276772d02935544a5010c07
41b45bb5ae85a5efc9ce57bc8e637df9a89eb485
9771a222f5002f4d3e1bf269bf1d2b48c81e7876b9b5508618dc0b0d0d710f97
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/1/otz-10-10-24.jpg HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: image/jpeg
Content-Length: 1054
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-41e"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2bfa07fd15066d8b77918a0c0f4197f8
cdd5f03dd1a33e51b697b3670cbb480f67262ae4
14ab883d8917c89e4268a0b8f3569e1bc329c60426bec11fa42de4872406c610
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14AB883D8917C89E4268A0B8F3569E1BC329C60426BEC11FA42DE4872406C610"
Last-Modified: Mon, 16 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9248
Expires: Wed, 18 Jan 2023 22:35:35 GMT
Date: Wed, 18 Jan 2023 20:01:27 GMT
Connection: keep-alive
0delay.space/phsw2.js
45.80.70.203200 OK 46 B IP 45.80.70.203:0
File type ASCII text, with no line terminators
Hash 9786377647369fee2941d04044d5e865
cd84a345b418f2a304b936754362e63d1082f361
0a365a524f989d13a0239c56c1b7861a70fe9815052c88ca5e4bc2eca5748781
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /phsw2.js HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: application/javascript
Content-Length: 46
Last-Modified: Sat, 22 Oct 2022 11:42:35 GMT
Connection: keep-alive
ETag: "6353d72b-2e"
Expires: Sat, 28 Jan 2023 20:01:27 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
zerossl.ocsp.sectigo.com/
172.64.155.188200 OK 315 B URL HTTP/1.1 zerossl.ocsp.sectigo.com/
IP 172.64.155.188:0
Hash cee3e4445821468f93e98eaf52d5a2c1
bf89d87abd8ee199f57c503173f1919072f33e84
724823320cc8496d1cd0cf394b2e28b4a7b7e38d40ebff37dd1f1fa9d8b14b7c
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 18 Jan 2023 20:01:27 GMT
Content-Type: application/ocsp-response
Content-Length: 315
Connection: keep-alive
Last-Modified: Wed, 18 Jan 2023 10:13:18 GMT
Expires: Wed, 25 Jan 2023 10:13:17 GMT
Etag: "bf89d87abd8ee199f57c503173f1919072f33e84"
Cache-Control: max-age=568909,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 78b9ec343ad9b4f4-OSL
news-gevike.cc/code/backbtn.js
193.108.118.156200 OK 394 B URL HTTP/2 news-gevike.cc/code/backbtn.js
IP 193.108.118.156:0
ASN #61003 GlobalTeleHost Corp.
Hash bc407fada9a52a36e5f8e260a6839502
7c31790842614adcf515d36608975556c41ad06d
a0209849109697c52a14dbc041d1d4ff61137f04b2b09531756a03cdd48509f8
Analyzer Verdict Alert quad9 Sinkholed
GET /code/backbtn.js HTTP/1.1
Host: news-gevike.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 20:01:27 GMT
content-type: application/javascript
content-length: 394
last-modified: Wed, 19 May 2021 12:34:54 GMT
etag: "60a505ee-18a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.162.79.115101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.79.115:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6jzOxygzQYZhM26jz4lpHg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EttBpyftlcCqOTD3OuhtlACbS6o=
0delay.space/lander/menspower-uz/favicon.ico
45.80.70.203200 OK 15 kB URL HTTP/1.1 0delay.space/lander/menspower-uz/favicon.ico
IP 45.80.70.203:0
File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 9c114cf0ef613b34845f86adbba242d1
fc36406a7fea75d6eb2294e8f61487d53eb14dd5
b5975e38e161d5e419e9da0970f87f9e0840487c9d6724ee63a5d92a161c52ee
Analyzer Verdict Alert quad9 Sinkholed
GET /lander/menspower-uz/favicon.ico HTTP/1.1
Host: 0delay.space
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/cyZzmTGp
Cookie: _subid=s8hnpa1n6h1g; 7b158=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjEwMzVcIjoxNjc0MDcyMDg3fSxcImNhbXBhaWduc1wiOntcIjYyMVwiOjE2NzQwNzIwODd9LFwidGltZVwiOjE2NzQwNzIwODd9In0.3s5zlpko4ugPiM6zbepmMy8EFNiss04PmymOevbSMZM; _token=uuid_s8hnpa1n6h1g_s8hnpa1n6h1g63c850175565d8.77168855
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 18 Jan 2023 20:01:28 GMT
Content-Type: image/x-icon
Content-Length: 15406
Last-Modified: Wed, 05 Jan 2022 14:01:18 GMT
Connection: keep-alive
ETag: "61d5a4ae-3c2e"
Expires: Sat, 28 Jan 2023 20:01:28 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
news-gevike.cc/sw.js
193.108.118.156200 OK 4.2 kB IP 193.108.118.156:0
ASN #61003 GlobalTeleHost Corp.
File type ASCII text, with very long lines (4168)
Hash 569090f90a522f4c62af3b9e40635957
4e6f57da49920f30777f3fe71f83f6183aeb4f3f
ee8c6af307c8d085753adb810c69c8379d1e8d01211b491409c43e9edc9f6fb5
Analyzer Verdict Alert quad9 Sinkholed
GET /sw.js HTTP/1.1
Host: news-gevike.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 20:01:28 GMT
content-type: application/javascript
content-length: 4199
last-modified: Thu, 01 Dec 2022 08:31:02 GMT
etag: "63886646-1067"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
browser.sentry-cdn.com/7.19.0/bundle.es5.min.js
151.101.194.217200 OK 20 kB URL HTTP/2 browser.sentry-cdn.com/7.19.0/bundle.es5.min.js
IP 151.101.194.217:0
File type ASCII text, with very long lines (62031)
Hash 1c6083f7ae34ed2fa3236569eec9ff56
0c1be1b5468042e65e02c8b886c50d26427c9ce7
2b1d69121eb9dc0629126ff02cf7acef2f1924b32b0bb654792ecd9101e10c44
GET /7.19.0/bundle.es5.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Sat, 11 Nov 2023 17:34:32 GMT
last-modified: Thu, 10 Nov 2022 15:50:35 GMT
etag: "1c6083f7ae34ed2fa3236569eec9ff56"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Wed, 18 Jan 2023 20:01:28 GMT
age: 5884016
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20174
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6073
Expires: Wed, 18 Jan 2023 21:42:42 GMT
Date: Wed, 18 Jan 2023 20:01:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6073
Expires: Wed, 18 Jan 2023 21:42:42 GMT
Date: Wed, 18 Jan 2023 20:01:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6073
Expires: Wed, 18 Jan 2023 21:42:42 GMT
Date: Wed, 18 Jan 2023 20:01:29 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6cfc390c95e65230e6798520be7df960
084d7efc24649c68fb6a0da6929585873796ec2a
ca8ad2a520681efa3bd19dc19b9414ae238d6ec5cf8d443103cabd16099c2117
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CA8AD2A520681EFA3BD19DC19B9414AE238D6EC5CF8D443103CABD16099C2117"
Last-Modified: Tue, 17 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6073
Expires: Wed, 18 Jan 2023 21:42:42 GMT
Date: Wed, 18 Jan 2023 20:01:29 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ec6c49f056e786896d54fe22c242391
cc6b64ff3f09853843b62e555456a1ad9f0909fb
42f0571efba18630c8deee17e98c6939a7050b04f613ad10515caf503e496b4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce2d78c9-2134-471e-bdb1-875c1b61ff8b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5663
x-amzn-requestid: 9a1c75a4-1c8d-4bd2-b6ca-7fccb8b43c12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gF5goAMFveA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-1d274e8074771db651e80979;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sAxuQECVKx0dfc2UM_E_70nKN8za1SBN4opMWr_74gT5ScurgZGVLw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:46:36 GMT
age: 80093
etag: "cc6b64ff3f09853843b62e555456a1ad9f0909fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _7YOm38n8-T2LAL-cRA7R8KvEUBhXEM0dOXjOZ6HyPRNfMu6Z0Fh3g==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:17:05 GMT
age: 78264
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d134f7ac9a5ca8ab7a9461bd20706bb7
aa47af3e7517390d10e89f0f18237cfdcc63cbed
3431c8027f09bb284fe48ef8e4458fd43d8cc961250601b3028b83a7ba19f6ce
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6543a616-79f5-4c5d-8f34-be53cb4c622d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13111
x-amzn-requestid: 7a9bb405-c68d-496f-b608-e9d295c44c50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0MStGBBIAMFXag=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4c0dd-75d87c0d763744951f13febd;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:13:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jkIL919Q7OFO6bACXTrDan0f9D9rgrN0DJMQv1DYPLeWqT1CywCAEg==
via: 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 04:00:46 GMT
age: 57643
etag: "aa47af3e7517390d10e89f0f18237cfdcc63cbed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8069887e5e81584380ef3f819bcfab6e
3794126935a3e08de469ea37d29cba7be412d408
934e0982c1d49f06c64f524698b93fb1abf3b8833785d633bad104d052dd3ef0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99a6337c-ea71-4474-ba67-803997f0f17d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7871
x-amzn-requestid: 212d220f-c590-4c72-9508-e481cd5045ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1UGmeoAMFzpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714ee-273c8bb54acc0f2b6d12b567;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zGNahizGhnMhpQxlxsexepYOI7y_40It8BrZjAd041J8Ws-jBYL0Ng==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:59:12 GMT
age: 79337
etag: "3794126935a3e08de469ea37d29cba7be412d408"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f112ea3865f38cbbcc8400b58320fa0
dacc584338546bf60f26b2a0bec48e9b584640dc
7feb3c0691f40354701d1cb0bf3c834d1eeead4a7297fac3afc0f4a7ca2c94cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a78cd6d-1eab-47b0-b5c7-f2d1f91acc3a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8853
x-amzn-requestid: ff98ec33-294a-4a13-b064-3cd4744cd2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LLKHPnIAMF0vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf14-233cbc6407c6b138144d7abb;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:05:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QZZaGtGl3Z-4G4DxO4R_gjfDdQVgJc30Ur9EyLAvbGFhv4LfaXziPQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 18 Jan 2023 04:00:29 GMT
age: 57660
etag: "dacc584338546bf60f26b2a0bec48e9b584640dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9200e43ca808b9ecec74828e03853d4c
3070340147ced46e5fdf73408272aa39391976fb
abdaedfc2da45180c463607686b20afd82113b78cfa78b0f28ab169b9858469b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d4770a8-c74a-4d56-b999-a0f191af3bf2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6454
x-amzn-requestid: 79329eb3-8d89-423f-8626-32c5e2e2831a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A0gHpeoAMF-Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714e9-5e859dc121cd322c6b684eee;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TKl5JNASQseZsuX_yJtVaUT2TCY5lKIxjJ8QvhDIXDAkC8GwIRilYg==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:01:08 GMT
age: 79221
etag: "3070340147ced46e5fdf73408272aa39391976fb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
beevakum.net/pfe/current/micro.tag.min.js?z=4634789&ymid=null&var=null&sw=/sw-check-permissions-3bc20.js
139.45.197.250200 OK 0 B URL HTTP/2 beevakum.net/pfe/current/micro.tag.min.js?z=4634789&ymid=null&var=null&sw=/sw-check-permissions-3bc20.js
IP 139.45.197.250:0
GET /pfe/current/micro.tag.min.js?z=4634789&ymid=null&var=null&sw=/sw-check-permissions-3bc20.js HTTP/1.1
Host: beevakum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://0delay.space/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 18 Jan 2023 20:01:27 GMT
content-type: application/javascript
last-modified: Wed, 21 Dec 2022 12:58:18 GMT
etag: W/"63a302ea-9a87"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2