nobartv3.icu/
104.21.28.211301 Moved Permanently 0 B IP 104.21.28.211:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: nobartv3.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 20 Dec 2022 06:08:05 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 20 Dec 2022 07:08:05 GMT
Location: https://nobartv3.icu/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zfQbkGgipubK5CVHOerMi1Dgd7IVUQqRI%2FvvIOd4yNDTLJze7xFY16hxI8Z3ffk35t41K6y5qHAUbi17lIj27oxjA4GIx654kRL%2FyfY7ZqHaSLIa5r9QlLHVnbcUapE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77c63394adf5b4ff-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9f3cf7e36f17a535e53e5213c02cf2b4
e65acbc03135ce135b9e91b4f74b3e1439faa6f6
a2317476862acd0a92fe523454c3991752b07ba14e7667f421dd9624e0233758
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2317476862ACD0A92FE523454C3991752B07BA14E7667F421DD9624E0233758"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7299
Expires: Tue, 20 Dec 2022 08:09:45 GMT
Date: Tue, 20 Dec 2022 06:08:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 460af93786e1eaa666f135e6c3fdc634
bc8aeba36225c79718f5de73d79928fe817c5490
471f4e7ae29bcf6ba1f749c0f5d4ab446cebfac5aa80c3e19c6edf21be456eb5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "471F4E7AE29BCF6BA1F749C0F5D4AB446CEBFAC5AA80C3E19C6EDF21BE456EB5"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8118
Expires: Tue, 20 Dec 2022 08:23:24 GMT
Date: Tue, 20 Dec 2022 06:08:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcade8542361774f13ecd22557ff8fb8
5e67a3753b0856c765f3b17f1742d3ed684ffb6d
647f8d9d3d1170e60a60e15fdfd9b59445feb56a6ce9d9bb2fa4720f0bfc3a14
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "647F8D9D3D1170E60A60E15FDFD9B59445FEB56A6CE9D9BB2FA4720F0BFC3A14"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15880
Expires: Tue, 20 Dec 2022 10:32:46 GMT
Date: Tue, 20 Dec 2022 06:08:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 20 Dec 2022 05:34:25 GMT
content-type: application/json
age: 2021
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: KwcAaXj02S6T7KTqixroN4G5U+4cxnZPoTWWe+VTSOyNDANdHYHQ0TrJmV5YdKFaGlt+7/yQYqSUW+rdY/ooNA==
x-amz-request-id: VGK432D2HMEQ14H3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 20 Dec 2022 05:54:52 GMT
age: 794
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 06:08:06 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 63ba9418236c7289d316d45e1b545334
937984dcadf48fdf6a03d0601e3efaadbb731a5e
07e68e28fe7d261484940817d00ca06e7b8232c47fd97c102480cf1389548c5d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "07E68E28FE7D261484940817D00CA06E7B8232C47FD97C102480CF1389548C5D"
Last-Modified: Sun, 18 Dec 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Tue, 20 Dec 2022 12:07:18 GMT
Date: Tue, 20 Dec 2022 06:08:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 20 Dec 2022 05:33:24 GMT
age: 2082
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4df678b16094ceafefdbbd55707f4dbe
39a68e051456a8ab6c782502a94e8b95ccb0a71d
00561de9683c69a89e084b685df25c6ea4d3a38654a40554f127814200aadf6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5108
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Last-Modified: Tue, 20 Dec 2022 04:43:01 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 63ba9418236c7289d316d45e1b545334
937984dcadf48fdf6a03d0601e3efaadbb731a5e
07e68e28fe7d261484940817d00ca06e7b8232c47fd97c102480cf1389548c5d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "07E68E28FE7D261484940817D00CA06E7B8232C47FD97C102480CF1389548C5D"
Last-Modified: Sun, 18 Dec 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Tue, 20 Dec 2022 12:07:18 GMT
Date: Tue, 20 Dec 2022 06:08:06 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 46b904ee071bf0600d5cb33ccc7b4f08
b4970e7532de3c3e938f94dd49d1aea214d953bd
b177decd74be736cf8b2a4ea7ed7d497d3571102dfd2d4a8d5dfa888eebb0514
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3782
Cache-Control: max-age=141601
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Etag: "63a0c8a1-116"
Expires: Wed, 21 Dec 2022 21:28:07 GMT
Last-Modified: Mon, 19 Dec 2022 20:25:05 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 46b904ee071bf0600d5cb33ccc7b4f08
b4970e7532de3c3e938f94dd49d1aea214d953bd
b177decd74be736cf8b2a4ea7ed7d497d3571102dfd2d4a8d5dfa888eebb0514
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3782
Cache-Control: max-age=141601
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Etag: "63a0c8a1-116"
Expires: Wed, 21 Dec 2022 21:28:07 GMT
Last-Modified: Mon, 19 Dec 2022 20:25:05 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 278
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css
104.17.25.14200 OK 14 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (65345)
Hash 642445b86596bdeaa98e92faa2064fc6
6c5539660bf533d34e37b917973c941d1c963374
4a5a39e9f325c5578dccd880c1d516eae190ee39f7539f4a6c6c52d2eee4cbdf
GET /ajax/libs/font-awesome/6.0.0-beta2/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:06 GMT
content-type: text/css; charset=utf-8
content-length: 14374
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "61498362-3826"
last-modified: Tue, 21 Sep 2021 07:01:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 12396404
expires: Sun, 10 Dec 2023 06:08:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SESUYXvUNAcp09bXc0%2Buy5I%2B6YInaoIYhft018n1Wr%2BhWyj%2BayZKbCWHV%2FvonCR9l5zig%2BjmCzxTC4KYmQKLITq%2FBm7bDZlp2Wk7csianqI8Pg0UQFVpJA%2BAnUsQnmYawcGLBIjh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77c6339a5a101c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/moment-timezone/0.5.34/moment-timezone-with-data-1970-2030.min.js
104.17.25.14200 OK 16 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/moment-timezone/0.5.34/moment-timezone-with-data-1970-2030.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 058f1543daeb9d6ad75a2f7ef5db313a
6bd16292c21b53957a5270d5ebacd346a04b7ebf
bbba1f2741c525ac4b575466ea0e3f7e90dd440182ce431b633e35569a32d108
GET /ajax/libs/moment-timezone/0.5.34/moment-timezone-with-data-1970-2030.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 16316
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "62fe3f34-3fbc"
last-modified: Thu, 18 Aug 2022 13:31:32 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4489800
expires: Sun, 10 Dec 2023 06:08:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KrEIpMRYqag9vF%2FT7c7wH8DcIKzAJRAHz6d5bGE7q2su2T1YIaqhnSDG4SMbbW%2BvgNQ79J7vphvinCJ9I7IkBhxMw19rXj8Fg5u%2BIVENwu1SJ098kxLl2mbw7uBALprMc11326i7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77c6339a5a111c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/moment.js/2.27.0/moment.min.js
104.17.25.14200 OK 17 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/moment.js/2.27.0/moment.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (58823)
Hash 67e6e2e02c9c3a64a0a904afb51c0448
e4e150ba0286c759848ba034d9fbb71859a529f3
9edd08457c5edd03db46044e355642c013c82307e88768ac9ba12d7b920a25a3
GET /ajax/libs/moment.js/2.27.0/moment.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 16963
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eebeaf9-e5ee"
last-modified: Thu, 18 Jun 2020 22:30:17 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2975972
expires: Sun, 10 Dec 2023 06:08:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FTbOoc8PyPKX4PJ9bM%2BfTLTH5OnPn55nJSk0ewgDXnm1z6UtGkAO%2B4xiyi8kBlJACnGTfWsXAfY6f5SGn6nrvZ8W0Iqwvrfht0LcFe2YaF85Jz0z2HacHDTdu228MkBOC9uQ6fnh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77c6339a6a121c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 46b904ee071bf0600d5cb33ccc7b4f08
b4970e7532de3c3e938f94dd49d1aea214d953bd
b177decd74be736cf8b2a4ea7ed7d497d3571102dfd2d4a8d5dfa888eebb0514
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5483
Cache-Control: max-age=143302
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Etag: "63a0c8a1-116"
Expires: Wed, 21 Dec 2022 21:56:28 GMT
Last-Modified: Mon, 19 Dec 2022 20:25:05 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
104.17.25.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65447)
Hash d900ca08873ee57d40616d39a44cc0aa
7ab3ac8b1504b7b914a6e94c979b8390bb492f6a
1eea479cc0abe04a0846f41031207f9511f12ffef017a6109d4efb6f5523465b
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1756755
expires: Sun, 10 Dec 2023 06:08:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wnwVPnBBoYJi8x0FQNj9L2BFiNesepsQPDxILivbwFD6UG4VU6BSlQFgkjN5LungE6iO1aiFcScV5XNOIAjF7GtIYGNSmM1qpo3rU%2BNUBdYViYTSpUZpzskMckdpBx%2BGmyF26xJw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77c6339a7a1d1c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash dd72c5ec07f986282b649207da2642c7
6de14a631a28eef59a612365bb84d04d7a1935da
cf2e1a5e66ce0f2730f02b30b4a76f737863f703d621b69e967b3c470abfcb80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/moment.js/2.27.0/locale/id.min.js
104.17.25.14200 OK 666 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/moment.js/2.27.0/locale/id.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (1386), with no line terminators
Hash b8e89e3d496f42b6683e85c4490bd3d6
5576d394c1bda87f9b65bfe310e98ffc1faadd7d
d8280ec34d9683e83b11bd3c50f114fc1f659f08f9a97effae40166ac6a9a42c
GET /ajax/libs/moment.js/2.27.0/locale/id.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 666
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eebeb01-56a"
last-modified: Thu, 18 Jun 2020 22:30:25 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 558062
expires: Sun, 10 Dec 2023 06:08:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mgp9Re6gHshWEY%2B%2FfKYBc9PJ6BHBJCEMIqnOcZP%2F6437JitsfL7iincfVrJgUBbtXWJc0apeOh9KaOD9ahmLqp4urWjETmRfQLvo38F0Ld5OL7fLX3t6m9ZIgOAnC8nkD%2BWC6ze3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77c6339a7a1e1c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js
104.17.25.14200 OK 1.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (4266)
Hash 39c569b6780863bce4bef578a8c0071e
68c1088d800229030735293cd50a152d08949ff8
51d392bd15c11ffbf782eade5b6600be3095d1728732f6f2ed47da7e75fd4c7b
GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.plugins.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 1296
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-113c"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 648325
expires: Sun, 10 Dec 2023 06:08:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U%2FRsMPbCFV6Ee5NI%2Fc5SrnQUNclmGaEVi1VcTH8ZzHEVpzkBagY9U7RJP3BW5m0DkroOJfyBHmFZPJDzJbZHz0yxwiA7jIlxnpRb9fd9yCxNhaRcRCZgi1riAF8HdZig6%2FQe%2BsT7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77c6339a7a1b1c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 625 B IP 142.250.74.131:0
Hash 024ce48fe9dbb237d0932273ed6b6079
666220562242f25ff4aa171890c01ce5e421894f
a39cdbfa5b8069f890403e9aa13460424a665464e605e9486edf1a21fb759cf5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
104.17.25.14200 OK 2.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (4890)
Hash aca27ab03077eaec0530b45d4e57f9e2
8d1f2ef2258f2b9d3784ed3e6129fa7afbe30339
5692cd7d56e70b8de0be31e0584f03712e85fa2734ec21b54138aedd6a4871a6
GET /ajax/libs/jquery.lazy/1.7.9/jquery.lazy.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:06 GMT
content-type: application/javascript; charset=utf-8
content-length: 2090
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-139e"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 389209
expires: Sun, 10 Dec 2023 06:08:06 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xQuL7BYDVSl7%2FCI%2FYUy%2BJ32vS0%2B8f2ukslvifqSXwW1W6Tm09LIQNt38vc1uJt%2F%2B736bvt%2FXc8JjQR5MUSuuqhnwkGyKjVkc998wGRuK43VKzObnivg%2BDsLjdl70bMLp7mEQDo4W"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77c6339aca3f1c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 46b904ee071bf0600d5cb33ccc7b4f08
b4970e7532de3c3e938f94dd49d1aea214d953bd
b177decd74be736cf8b2a4ea7ed7d497d3571102dfd2d4a8d5dfa888eebb0514
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3782
Cache-Control: max-age=141601
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Etag: "63a0c8a1-116"
Expires: Wed, 21 Dec 2022 21:28:07 GMT
Last-Modified: Mon, 19 Dec 2022 20:25:05 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 278
1.bp.blogspot.com/-c2iPF5bNarQ/YDPrT9Lt8iI/AAAAAAAANao/Q5vNjSvw2v8g5S-MlvHrmpG1SCQT2GkkQCLcBGAsYHQ/s0/Logo%2BNobarTV.png
142.250.74.65200 OK 24 kB URL HTTP/2 1.bp.blogspot.com/-c2iPF5bNarQ/YDPrT9Lt8iI/AAAAAAAANao/Q5vNjSvw2v8g5S-MlvHrmpG1SCQT2GkkQCLcBGAsYHQ/s0/Logo%2BNobarTV.png
IP 142.250.74.65:0
File type PNG image data, 878 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash dafabefd6e4d0e006c698eb49b318046
5993c4f2332cb17f2ce45ef3f1736f147e0a637b
402274029447fe3e139af17f936c9be2be7a9e0ce586e372a7e08f9afe34a177
GET /-c2iPF5bNarQ/YDPrT9Lt8iI/AAAAAAAANao/Q5vNjSvw2v8g5S-MlvHrmpG1SCQT2GkkQCLcBGAsYHQ/s0/Logo%2BNobarTV.png HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="Logo NobarTV.png"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 24450
x-xss-protection: 0
date: Tue, 20 Dec 2022 06:08:06 GMT
expires: Wed, 14 Dec 2022 19:12:32 GMT
cache-control: public, max-age=86400, no-transform
etag: "v35ab"
content-type: image/png
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-100565739-29
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-100565739-29
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 2741503c885c3fd7a696365acf8bcb53
431b2e95fd7ff7528ed4327dd0b9ce0951fbe708
c251c09fd2175fcf00d383431cdf3b1938b42aac35c7613f129c42f68919e936
GET /gtag/js?id=UA-100565739-29 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Dec 2022 06:08:06 GMT
expires: Tue, 20 Dec 2022 06:08:06 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43580
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.38.139.17101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.139.17:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: EYceicOJ0J8/FbXDbnUATw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZDVej9rvwKmB8byHuXU+oz3v2Ug=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0dc23a845daadd984dd46924d80efb81
8b6ac466ee633c3a3a2eff65bd60dcb6097e5c75
3f3ebc1214709374a862beef3041aec51861f5fa7377f12710853bf31c772c58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash dd72c5ec07f986282b649207da2642c7
6de14a631a28eef59a612365bb84d04d7a1935da
cf2e1a5e66ce0f2730f02b30b4a76f737863f703d621b69e967b3c470abfcb80
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 33b3e9caf6728c5b916ec1ffee5ce0b3
06dccffaf379bc6709ca42d408ae530d8a14ef83
2ed45ebc478006d7657cd42f5779635c871a5919efa7a6d7ed3a3fa344089360
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 384a2b2f97397ee2741922068da5bdcd
256bcaf0f153a739623feb917ad1c8745b7a3651
541c129fcb8391e0516ad5f1ee19da5c060ce54cabedfdc7cb65d2af2b4410e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 384a2b2f97397ee2741922068da5bdcd
256bcaf0f153a739623feb917ad1c8745b7a3651
541c129fcb8391e0516ad5f1ee19da5c060ce54cabedfdc7cb65d2af2b4410e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.227200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nobartv3.icu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:11 GMT
expires: Sat, 16 Dec 2023 13:33:11 GMT
cache-control: public, max-age=31536000
age: 318895
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 384a2b2f97397ee2741922068da5bdcd
256bcaf0f153a739623feb917ad1c8745b7a3651
541c129fcb8391e0516ad5f1ee19da5c060ce54cabedfdc7cb65d2af2b4410e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
216.58.207.227200 OK 8.0 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v15/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7988, version 1.0\012- data
Hash 087457026965f98466618a478c4b1b07
00b024ccb35e3694de662d180d6ea7f56de6d654
b93b9165269362989e2855d0bf0ae232d7193a45c43627b2d03b26d7eb98263b
GET /s/poppins/v15/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nobartv3.icu
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7988
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:28 GMT
expires: Sat, 16 Dec 2023 13:33:28 GMT
cache-control: public, max-age=31536000
age: 318878
last-modified: Thu, 05 Nov 2020 22:02:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nobartv3.icu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:11 GMT
expires: Sat, 16 Dec 2023 13:33:11 GMT
cache-control: public, max-age=31536000
age: 318896
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 384a2b2f97397ee2741922068da5bdcd
256bcaf0f153a739623feb917ad1c8745b7a3651
541c129fcb8391e0516ad5f1ee19da5c060ce54cabedfdc7cb65d2af2b4410e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 56149e8e7a9d1ca40f21e20cf3bdef44
ead8337c4d19c27dca459df1b30723e8470fafd3
166dbbead849eca8f68c77207f8791677efc99c892c58159b204e3d309bd1ca1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=168413
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:07 GMT
Etag: "63a14024-118"
Expires: Thu, 22 Dec 2022 04:55:00 GMT
Last-Modified: Tue, 20 Dec 2022 04:55:00 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 56149e8e7a9d1ca40f21e20cf3bdef44
ead8337c4d19c27dca459df1b30723e8470fafd3
166dbbead849eca8f68c77207f8791677efc99c892c58159b204e3d309bd1ca1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=168413
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:07 GMT
Etag: "63a14024-118"
Expires: Thu, 22 Dec 2022 04:55:00 GMT
Last-Modified: Tue, 20 Dec 2022 04:55:00 GMT
Server: nginx
Content-Length: 280
cdn.mooncricket.xyz/wp-content/uploads/2021/10/TUTUP.png
104.21.234.90200 OK 3.4 kB URL HTTP/2 cdn.mooncricket.xyz/wp-content/uploads/2021/10/TUTUP.png
IP 104.21.234.90:0
File type PNG image data, 500 x 40, 8-bit/color RGB, non-interlaced\012- data
Hash eb63231c3c58b34eca54733cf4761fcf
1f9824eacf6181fa274463e2ce4a7d48f4071f61
6414270289b098685a6675b7f0a6aa90c41b51ef584d26070642d47fe7891937
GET /wp-content/uploads/2021/10/TUTUP.png HTTP/1.1
Host: cdn.mooncricket.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: image/png
content-length: 3392
last-modified: Fri, 08 Oct 2021 23:27:14 GMT
etag: "6160d3d2-d40"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000, no-transform
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 135477
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PyLrzUtLlL5qjuZOFGrz5tYabTRLsHwMYshV%2FZx6zg57FxoOvxc6p%2BxxBYhF2vjFK%2FBSpKs8SkHuJD%2F%2FS1Wim0aQHhg6ab3v20FPrX5LzsZ7kofmfoICBWjCnPEpl2QdF1KA7irw"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77c6339cd877750d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2022/06/mposport.gif
104.21.233.191301 Moved Permanently 471 B URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/06/mposport.gif
IP 104.21.233.191:0
Hash 5e727497d62f5e57ce01028febe6afcb
5e6c6b28423c3705302f0f1a252d57e1b19b6d8c
be1d151386df12d7813a5c4fd47a8c6d98f9e91ef6ac46b9436dca0261a73cfa
GET /wp-content/uploads/2022/06/mposport.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/06/mposport.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Uw45UTJyKL4QaZYP5wgr74Mwtv%2Fb9zyDht%2FPNop7COGPMTd1iSZ8Nn09i9Jg0ATpKZ8fNDziYfir4jglSAfpM%2FJIrkrEQyeggXnapt%2Fw52V4%2Bb5%2FXJ0A%2F%2BWQ7zbfk046FldE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339aff9323ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 56149e8e7a9d1ca40f21e20cf3bdef44
ead8337c4d19c27dca459df1b30723e8470fafd3
166dbbead849eca8f68c77207f8791677efc99c892c58159b204e3d309bd1ca1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=168413
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:07 GMT
Etag: "63a14024-118"
Expires: Thu, 22 Dec 2022 04:55:00 GMT
Last-Modified: Tue, 20 Dec 2022 04:55:00 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
cdn.infohalu.xyz/wp-content/uploads/2022/11/WarungVegas-inline.gif
104.21.233.191301 Moved Permanently 184 kB URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/11/WarungVegas-inline.gif
IP 104.21.233.191:0
File type GIF image data, version 89a, 576 x 70\012- data
Size 184 kB (184187 bytes)
Hash fa29f2875120fb780e4d4743aacf4f87
988b1b74394cbcf77a2960c2bd3008dcd852e4ac
f035e6030ad4a3b16d5114a23215538ce7085ae3520b1a239dc188c97a08b131
GET /wp-content/uploads/2022/11/WarungVegas-inline.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/11/WarungVegas-inline.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y2B9pD6Xh6Lu2%2FGso2Sdv%2Br4rRguzdeOpxWrad725yEgmB9sTl%2F72ri50FIEcsP3lYF6%2BNV0ecmu0IRB92NsgWhR3r343sfVTbJdVYIasJ3vJOPHy89qHGf4Jfm6OtBNCYgR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339b0fab23ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 56149e8e7a9d1ca40f21e20cf3bdef44
ead8337c4d19c27dca459df1b30723e8470fafd3
166dbbead849eca8f68c77207f8791677efc99c892c58159b204e3d309bd1ca1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:07 GMT
Etag: "639e9d25-118"
Server: ECS (amb/6B76)
Content-Length: 280
cdn.mooncricket.xyz/wp-content/uploads/2022/06/qqslot-gif-500x300-1.gif
104.21.234.90200 OK 421 kB URL HTTP/2 cdn.mooncricket.xyz/wp-content/uploads/2022/06/qqslot-gif-500x300-1.gif
IP 104.21.234.90:0
File type GIF image data, version 89a, 500 x 300\012- data
Size 421 kB (421447 bytes)
Hash ef65f81238b94f3bae1efb28d9c7274d
251ec2204f20c4f60d89f338c87b7f79b7299d26
755d93b2fd711f7e260e69a9c5c243259b9e9b2558edcacf5ffa054885f2d1b4
GET /wp-content/uploads/2022/06/qqslot-gif-500x300-1.gif HTTP/1.1
Host: cdn.mooncricket.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: image/gif
content-length: 421447
last-modified: Wed, 08 Jun 2022 05:36:41 GMT
etag: "62a03569-66e47"
expires: Tue, 17 Jan 2023 16:29:54 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 135477
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l3mazRZ4UHsT7q1co3Ye0v04T9GnNHXfmecbdnYx2uVXjp8uW6IsYhCP7GRj1w8ratJJJX4gFPGFWwIrl8%2BhLQg3B2Z1tgFSXrAk8MWygXQtqBF8yE1VEv6N7vkscOj051%2Fg9dWz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339cd878750d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2022/06/mpo777.gif
104.21.233.191301 Moved Permanently 395 kB URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/06/mpo777.gif
IP 104.21.233.191:0
File type GIF image data, version 89a, 500 x 300\012- data
Size 395 kB (394770 bytes)
Hash c0babaf86c2162ab3b233b3d350fd6ad
41fc562f2a4b269346102fad01c6eadec62e589d
deaf13b15f9cc37f43f755d22f8f37381a38c10d6ecd41cf7863235147af1387
GET /wp-content/uploads/2022/06/mpo777.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/06/mpo777.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sdxK%2FQiLGkeStowAFUBy%2FKBKkMeJP9xum02qwcZ%2F0ojWgeVoraq47%2Fj8eL9o2%2BGZFuqs%2FrlWQKKWSeJjAKO5OqdinSiWv6h5%2FT4HD4j9GHYpVakCdo2x2zhit9DciT%2BU6FBh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339b0fad23ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
v2l.cdnsfree.com/sfiles/logo_teams/defaultlogo.png
8.254.252.216200 OK 2.7 kB URL HTTP/2 v2l.cdnsfree.com/sfiles/logo_teams/defaultlogo.png
IP 8.254.252.216:0
File type PNG image data, 55 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 72c91e676105dc1628e8a636554bfcfd
c0162ae779e4000be14b99e96981ff309a41b0ee
d10053f91feb4cd1a54f46fdcb8eb5193e4396a09e6341458edcf2f38ada718b
GET /sfiles/logo_teams/defaultlogo.png HTTP/1.1
Host: v2l.cdnsfree.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: image/png
content-length: 2713
etag: "72c91e676105dc1628e8a636554bfcfd"
last-modified: Tue, 13 Aug 2019 15:13:43 GMT
server: nginx
access-control-allow-origin: *
x-amz-version-id: ygHOXyYx_9gTcW50FeqErA8BsSDNEhuz
age: 11741652
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 56149e8e7a9d1ca40f21e20cf3bdef44
ead8337c4d19c27dca459df1b30723e8470fafd3
166dbbead849eca8f68c77207f8791677efc99c892c58159b204e3d309bd1ca1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=168413
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:07 GMT
Etag: "63a14024-118"
Expires: Thu, 22 Dec 2022 04:55:00 GMT
Last-Modified: Tue, 20 Dec 2022 04:55:00 GMT
Server: nginx
Content-Length: 280
cdn.infohalu.xyz/wp-content/uploads/2022/11/RAMAIBET-BANNER-614X70.gif
104.21.233.191301 Moved Permanently 46 kB URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/11/RAMAIBET-BANNER-614X70.gif
IP 104.21.233.191:0
File type GIF image data, version 89a, 600 x 70\012- data
Hash 6037fc606964f429af764c2e3e029cae
1c9a7b48f694a8b24df9c75da414067ba6088162
e57e1881a3f66e4f0684d7593c1aa151099158a60e25871b5f2c64ca997b9ad4
GET /wp-content/uploads/2022/11/RAMAIBET-BANNER-614X70.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/11/RAMAIBET-BANNER-614X70.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DYTjEpE2H1haKfrMrGagb1znCAiNK2OrkE%2BNVV0RfwvAkok6%2F5km2OkheS2Bl8oYMel4slkafirdrFQaH0Po%2BFJPsCLcu2tgKwekSN9FsaR6jxkSUin3sQxUXe%2BqzWWHH%2Fuj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339aff9823ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
104.207.142.129/Logo%20NobarTV%20Footer.png
104.207.142.129301 Moved Permanently 258 B URL HTTP/2 104.207.142.129/Logo%20NobarTV%20Footer.png
IP 104.207.142.129:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4b69511bb54fb2e2a6de042d0fba75a1
f16f9d63e7a266ebef1b3572d6beca4cf163501f
7efcb8c871801c8e8bdc98785ff0bd854fd59ea456275fd5309753690f04d376
Analyzer Verdict Alert quad9 Sinkholed
GET /Logo%20NobarTV%20Footer.png HTTP/1.1
Host: 104.207.142.129
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx-rc
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: text/html; charset=iso-8859-1
content-length: 258
location: https://185.209.22.142/Logo%20NobarTV%20Footer.png
X-Firefox-Spdy: h2
cdn.mooncricket.xyz/wp-content/uploads/2022/11/WarungVegas-inline.gif
104.21.234.90200 OK 383 kB URL HTTP/2 cdn.mooncricket.xyz/wp-content/uploads/2022/11/WarungVegas-inline.gif
IP 104.21.234.90:0
File type GIF image data, version 89a, 778 x 50\012- data
Size 383 kB (383149 bytes)
Hash 5df9833a5b301ad0f663d42063da2a09
5467ced04d06fa7bb0bebd51fb99300d816b8e2e
29b77e73efe4d718b1f9830e1b4a78dc8fd6822921d393a4087f612e5171d61c
GET /wp-content/uploads/2022/11/WarungVegas-inline.gif HTTP/1.1
Host: cdn.mooncricket.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: image/gif
content-length: 383149
last-modified: Fri, 25 Nov 2022 16:00:15 GMT
etag: "6380e68f-5d8ad"
expires: Tue, 17 Jan 2023 16:29:54 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BqxsqKxmEUUVCXnoBDs1dvJYCoohhnVDIeEroUHyyTxIpgP5ENXmcmt1%2BwMIZAbviA9ThrFD3hPNR2CYsh6Gz3LU0uzn%2BuEOWiO1%2FLtVPGj5EmoOMhNwdRK9F5G4w%2FfKZfg0nrBZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339cb869750d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.mooncricket.xyz/wp-content/uploads/2022/10/Visitorbet-614x70-1.gif
104.21.234.90200 OK 180 kB URL HTTP/2 cdn.mooncricket.xyz/wp-content/uploads/2022/10/Visitorbet-614x70-1.gif
IP 104.21.234.90:0
File type GIF image data, version 89a, 614 x 70\012- data
Size 180 kB (180056 bytes)
Hash febb8bf9dc7568641b4ce91207194621
e945d3801b79aade1eb5b6c9b44ce069fa8ce393
b1a33ca5cd957e053d5b7e2aa77a052891305ea1f07ae63ac2d7f3ab12df8908
GET /wp-content/uploads/2022/10/Visitorbet-614x70-1.gif HTTP/1.1
Host: cdn.mooncricket.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: image/gif
content-length: 180056
last-modified: Fri, 14 Oct 2022 08:08:52 GMT
etag: "63491914-2bf58"
expires: Tue, 17 Jan 2023 16:29:54 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6IZzw4aSX4gy4h2QAXwovGzqUiqvR1uMtqVGbg1iljKm3I0xEeR9WfsFsl5BLBNkdmrZ7O5XxcRQVev3Pzl3dPPQLp0HJHJbq7rLWq503WzeM10nFahMgv5owQfmR3g0SVGIjhaW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339cd87b750d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.mooncricket.xyz/wp-content/uploads/2022/12/usernesia_gif_614x70.gif
104.21.234.90200 OK 443 kB URL HTTP/2 cdn.mooncricket.xyz/wp-content/uploads/2022/12/usernesia_gif_614x70.gif
IP 104.21.234.90:0
File type GIF image data, version 89a, 614 x 70\012- data
Size 443 kB (443373 bytes)
Hash 05acefc3e11f47992878b2480222ac2d
7947695c7007d4a123056e8852a95b2f24f49c77
c96a9eb59c98f93bd10ccb5b1b46ec82a11fbd326bd186a0931f567da0b2b56c
GET /wp-content/uploads/2022/12/usernesia_gif_614x70.gif HTTP/1.1
Host: cdn.mooncricket.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: image/gif
content-length: 443373
last-modified: Fri, 02 Dec 2022 05:43:17 GMT
etag: "63899075-6c3ed"
expires: Tue, 17 Jan 2023 16:29:54 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N2nYhfhfycB9OpLzZ%2FC%2BIw6y2SPEAJdQ3qV%2BnfaHtSZqI6ENqF0Rf3KyDF%2B7vEkBMtLOBds621kKyAj9t0m9hu8MVnR%2BN%2ByIiu3bBN7ozvL4pYjPUSZ9y9MwAy01seez9c16bzFx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339cd87a750d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.mooncricket.xyz/wp-content/uploads/2022/11/RAMAIBET-BANNER-614X70.gif
104.21.234.90200 OK 213 kB URL HTTP/2 cdn.mooncricket.xyz/wp-content/uploads/2022/11/RAMAIBET-BANNER-614X70.gif
IP 104.21.234.90:0
File type GIF image data, version 89a, 614 x 70\012- data
Size 213 kB (213284 bytes)
Hash c2a64836f8cff7b86717907673ae41ea
515fbb2064671722651609db44fcea48fc185585
42008467befc2ba0ba935959f81011c105f4e62d2837a478bca7def6c80d3ab5
GET /wp-content/uploads/2022/11/RAMAIBET-BANNER-614X70.gif HTTP/1.1
Host: cdn.mooncricket.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: image/gif
content-length: 213284
last-modified: Tue, 29 Nov 2022 10:42:58 GMT
etag: "6385e232-34124"
expires: Tue, 17 Jan 2023 16:29:54 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kzcvs9UJNeCp3sUvapp8hFZ84riAUQzNrI1HQFgiS2jyBT%2F5iMTHgZwyw%2BA1MiQl89eWOHjdrVBLa1m4m36JHnoDEeEpZHnXsoijE02uMNUcvl%2BhDPwS74iZNnF8XU4qRw688HfN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339cd879750d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.mooncricket.xyz/wp-content/uploads/2022/12/slot168.gif
104.21.234.90200 OK 508 kB URL HTTP/2 cdn.mooncricket.xyz/wp-content/uploads/2022/12/slot168.gif
IP 104.21.234.90:0
File type GIF image data, version 89a, 600 x 70\012- data
Size 508 kB (508488 bytes)
Hash db98af2b635ca41da08705932903107d
6c339d3eb3f3ccff31b582045359e73aeca6fc08
3c140e63041aa51785f86c6821a861e18c30d91f6f86e15233c2cab09252945f
GET /wp-content/uploads/2022/12/slot168.gif HTTP/1.1
Host: cdn.mooncricket.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: image/gif
content-length: 508488
last-modified: Wed, 07 Dec 2022 12:12:53 GMT
etag: "63908345-7c248"
expires: Tue, 17 Jan 2023 16:29:54 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EUMngI7%2B1CVn0hzbIrDahOR42ITYixAOoFOUQ6yr2LJad%2FDgbDmNblCwxGWOfBYzwwtH0Jqkvoxr%2FbW6f6nGquKZY6mEDjgyAXe03twPFzux37G03qK7lrt%2B83yfwnaQJxUqPQ8P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339cb866750d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
185.209.22.142/Logo%20NobarTV%20Footer.png
185.209.22.142301 Moved Permanently 166 B URL HTTP/2 185.209.22.142/Logo%20NobarTV%20Footer.png
IP 185.209.22.142:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
Analyzer Verdict Alert quad9 Sinkholed
GET /Logo%20NobarTV%20Footer.png HTTP/1.1
Host: 185.209.22.142
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx-rc
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: text/html
content-length: 166
location: https://nobartv1.xyz/Logo%20NobarTV%20Footer.png
X-Firefox-Spdy: h2
cdn.mooncricket.xyz/wp-content/uploads/2022/11/Banner-ITC-2.gif
104.21.234.90200 OK 156 kB URL HTTP/2 cdn.mooncricket.xyz/wp-content/uploads/2022/11/Banner-ITC-2.gif
IP 104.21.234.90:0
File type GIF image data, version 89a, 614 x 70\012- data
Size 156 kB (155939 bytes)
Hash 29e4e769940e0f4ee960da38be72a57e
858b5a71c30e30242c0da711ebe4590e3fc79f54
8f984190d25d2c4327d4d19e2eb4cf4927c6f5bbd5130f31517a4dbde23b29db
GET /wp-content/uploads/2022/11/Banner-ITC-2.gif HTTP/1.1
Host: cdn.mooncricket.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:07 GMT
content-type: image/gif
content-length: 155939
last-modified: Sun, 13 Nov 2022 05:14:59 GMT
etag: "63707d53-26123"
expires: Tue, 17 Jan 2023 16:29:54 GMT
cache-control: public, max-age=2592000
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tOY84uLB92jOnaRLvNNYkq9ZSQHQqV2J3aSF9fZ49J8jENkqfg1Fdyq%2BrJ2TFmyK7MHas0wF1KmEEraJZ%2FcDxF1BKbdz%2BK9Be5W8%2BtJxES%2BtmIzH6DzrN0ozsJbD7gLVL5BSt3XU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339cb864750d-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2022/11/Banner-ITC-2.gif
104.21.233.191301 Moved Permanently 640 kB URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/11/Banner-ITC-2.gif
IP 104.21.233.191:0
File type GIF image data, version 89a, 614 x 70\012- data
Size 640 kB (639725 bytes)
Hash c1b1ef1ebc5403c8c50786c95728d0be
deb6e497bbb2947c873c45af01dd8d5899e2cfae
7f0943da9525afadf26173ee9bd4ca5312b8ea4cf2aae853039ae0d3c48d7693
GET /wp-content/uploads/2022/11/Banner-ITC-2.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/11/Banner-ITC-2.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LhhqK0qpVZSEz5Ef6NlZUY49TQXich68Eqs9Y2s1LW0E86IgDUgYSyJh0pP5CAX2RvBcHZAiYDIMjcuZ9KxPJ8eYm1eaR2LYWT5%2Fm%2BCD6VZjmvh2NmlmW9mrmh9QSVkwFGOc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339b0fb123ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2022/11/sinarvegas-inline.gif
104.21.233.191301 Moved Permanently 398 kB URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/11/sinarvegas-inline.gif
IP 104.21.233.191:0
File type GIF image data, version 89a, 778 x 50\012- data
Size 398 kB (398013 bytes)
Hash e2370d8afe5eefad334b3c0d1080f467
5e1c3ea0b329cc3ffc68b6a4a866979f142940b5
c8ed3e026e2e8a8693e09b21ec246bf2d4560717c2be40762a444efa3aa420a9
GET /wp-content/uploads/2022/11/sinarvegas-inline.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/11/sinarvegas-inline.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hlQQRGmbkJaGuNtfe2V04lN8ZSpfwnhAhPxHX%2FuonY4i3e8xT6GrjQAcfZYV0ZF%2BAgFJGHiqA1jsTHFmVtzeIyfIWuVSsUfL%2Fi7Q3TEY5HKkwSskbmUJppbp19gZVVc%2FEdTm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339aff9a23ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/LWlPZC6sMUk
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/LWlPZC6sMUk
IP 142.250.74.131:0
Hash 78a90a9eb7429c100b15c9ae64d1a0c8
da0e73ae0a96505899ffc7eb8b4278f7ebe01e79
2a9b65fd44821ddbfa2e69df2103e15bdfa267284195a9c84d65a239335ba6c4
POST /s/gts1p5/LWlPZC6sMUk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/LWlPZC6sMUk
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/LWlPZC6sMUk
IP 142.250.74.131:0
Hash 78a90a9eb7429c100b15c9ae64d1a0c8
da0e73ae0a96505899ffc7eb8b4278f7ebe01e79
2a9b65fd44821ddbfa2e69df2103e15bdfa267284195a9c84d65a239335ba6c4
POST /s/gts1p5/LWlPZC6sMUk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.infohalu.xyz/wp-content/uploads/2022/12/usernesia_gif_614x70.gif
104.21.233.191301 Moved Permanently 525 kB URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/12/usernesia_gif_614x70.gif
IP 104.21.233.191:0
File type GIF image data, version 89a, 614 x 70\012- data
Size 525 kB (524849 bytes)
Hash 460765a80a902a9ae1f76c8adabba8ab
f4812000bf3302d04ab93338f13a892d82fce7c2
724faf50ec3103c566657683e89b8ecef5e14f2915b1017a3ed7336bf31343c7
GET /wp-content/uploads/2022/12/usernesia_gif_614x70.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/12/usernesia_gif_614x70.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=met1b2kngUt%2Bt0UFbgGs2xLtXA4RaPLpEzUmK%2FrDUx97wJExIhUwJ6bAMj4pWt%2F4DNCOqnw7aU6LDIcROVaUo8I2cXRmmNW%2BWFaid4yfNTYc1Z%2FPhl7MZMs2xWaSgtD1Y%2FLJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339aff9923ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e4237556372761d8d0752bf9ec2cc77c
652b821aad4b5c78acbcfe32273d129a7bd4762b
e65377a50f8e707838d1019d5409a51bd748e771f86a4057a4a0949992ac03e4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E65377A50F8E707838D1019D5409A51BD748E771F86A4057A4A0949992AC03E4"
Last-Modified: Sun, 18 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21531
Expires: Tue, 20 Dec 2022 12:06:59 GMT
Date: Tue, 20 Dec 2022 06:08:08 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e4237556372761d8d0752bf9ec2cc77c
652b821aad4b5c78acbcfe32273d129a7bd4762b
e65377a50f8e707838d1019d5409a51bd748e771f86a4057a4a0949992ac03e4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "E65377A50F8E707838D1019D5409A51BD748E771F86A4057A4A0949992AC03E4"
Last-Modified: Sun, 18 Dec 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21531
Expires: Tue, 20 Dec 2022 12:06:59 GMT
Date: Tue, 20 Dec 2022 06:08:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5379
Expires: Tue, 20 Dec 2022 07:37:47 GMT
Date: Tue, 20 Dec 2022 06:08:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5379
Expires: Tue, 20 Dec 2022 07:37:47 GMT
Date: Tue, 20 Dec 2022 06:08:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5379
Expires: Tue, 20 Dec 2022 07:37:47 GMT
Date: Tue, 20 Dec 2022 06:08:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5379
Expires: Tue, 20 Dec 2022 07:37:47 GMT
Date: Tue, 20 Dec 2022 06:08:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 74619c8a7d32d46fc91cc86f793f107c
3f2b1390ef4f7cd385f513d57297fa482f7dd43c
6aa1fbfb532fc85b041684e259bbeecf53c7e7f711c8d414fc0775c4c1404457
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6AA1FBFB532FC85B041684E259BBEECF53C7E7F711C8D414FC0775C4C1404457"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5379
Expires: Tue, 20 Dec 2022 07:37:47 GMT
Date: Tue, 20 Dec 2022 06:08:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8218fde73bff9978e07b0e06e1f7f0fb
ab15f8d74ea032d89f65603b4eef2377dc97e358
134d5a1046ea50f37f0234a4d1d167130b2950a1d61e93e2340dccbc922b4844
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa02d8232-1c91-401a-912a-46f6c668862e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9493
x-amzn-requestid: 54028261-e98d-4bb6-98da-51d41edc6d2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da61jElIIAMFl8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10b56-7eeb3b142dd3d0f92e9fa9ba;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 01:09:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: NV7wb_J_aKldDosXJ61RJzSrk0PsE4iUe7bdjS1L9ZirnOIelFKHlw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 219e8f088c8c2a564bdacafe44be620a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:44:09 GMT
age: 15839
etag: "ab15f8d74ea032d89f65603b4eef2377dc97e358"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee1dbf08-d046-4d26-8221-af352c7c7eba.jpeg
34.120.237.76200 OK 2.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee1dbf08-d046-4d26-8221-af352c7c7eba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac396f580b50a626abbeb37c0ec5f005
626262a7313aeb54bcdbcaf682f73d9ff4a4cfcb
3546f7a2be3f578ad9d8b8f57b89a69b6ece9b08da63fb9448e5e6dde4d3332c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee1dbf08-d046-4d26-8221-af352c7c7eba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2054
x-amzn-requestid: 5072b75c-7455-45cc-a35e-be7e0ed77496
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabqhHE6IAMFrxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d976-026c95822615b2550edb00e7;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: XxmrTTAq667e3H9thY8MDXLqO2QWJXuLKm0YvmyNm96fd8DTs8tvwQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 2c6b5dd77f1abe60653ce0454f344b64.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:45:54 GMT
age: 30134
etag: "626262a7313aeb54bcdbcaf682f73d9ff4a4cfcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F490428b7-92b8-4e1f-be45-cf0a340d19c3.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F490428b7-92b8-4e1f-be45-cf0a340d19c3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 84e85f3a4daeb77e25284f4de2b00256
b35012945ac389811096ebfc33eb40ba49e847ce
35a3249554b7c5de0c6353588bcd10b2959c0a747ce9b68e9cfe10c2a4a4a3da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F490428b7-92b8-4e1f-be45-cf0a340d19c3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7611
x-amzn-requestid: 08a2a94d-c9f8-4361-8f6d-034507884738
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da2JtFUsIAMFWSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a103d7-26ee95b76a432f2668376037;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:37:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: svxqyV4nSQ-WUEplxPsCo9dmQbSUOQL60hUaXpzbtdf1DYglsC5zdA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 00:44:27 GMT
age: 19421
etag: "b35012945ac389811096ebfc33eb40ba49e847ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5da803c751be159f0f5b3c2f65bd2b6
39139480cfc2ed0781b51745bfaabed4490aa0db
920ee464843101c638327866fbfcc9c7f00fc19b7cdbc8948fbe53d2b6fb4ed3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7876
x-amzn-requestid: 668c95f2-a1b1-4abd-9f4e-23d05c4998a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da270EFlIAMFR5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10518-56d6db4f4cff1b4e08b87046;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:43:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: U9cES2VDr79vF5gBfhG-5ZyHa8WVqEti4ZGHsBerkxIkeSWsPhC-jA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 ea699166e6ec77aa410ff505b0a8ce18.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:06:15 GMT
age: 18113
etag: "39139480cfc2ed0781b51745bfaabed4490aa0db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7ac0b5738bab6b4ed770c26ca922250
e56fd4ee2f5354a54a6271db2be528f98eecd3d7
5997d5be6bbeb189ef08af2f6c6dd5bb0cfa70ad7b40daab8712efe5adc2c6e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8450
x-amzn-requestid: a9f11c68-8327-46ba-9075-e316a2f9fdbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FoSIAMFdtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-61b788f5675fe0e815e1e967;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _nupdrdRDG-S085FRNoJgzDQVg9Ngb_nYDR5C1AkkterWy8vlXBxGw==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ac463f3377446e4c603deca30feb744a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:45:54 GMT
age: 30134
etag: "e56fd4ee2f5354a54a6271db2be528f98eecd3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68622eb4-6e6a-4d7c-a1e2-e6ad245ebc59.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68622eb4-6e6a-4d7c-a1e2-e6ad245ebc59.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c0b328a68846a842022c81d3cc08fa08
d400aa9d94ed7bad420b7dd83a618a538713d86e
76479b700a2ce9b43031a388ecd0d3d321d18c7076127bcdca520c92fa4fefdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68622eb4-6e6a-4d7c-a1e2-e6ad245ebc59.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5274
x-amzn-requestid: 9a59baed-48d7-4bd2-ab1f-df0a1be17188
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da4QDFqnoAMFytg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10733-704bd1ae555c406e541bd6ae;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:52:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Lsxk9LBqlL9VUpdwu3JFjH2XWt5OdMdK5QUf50ogikAgvAyXb7a6xw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:14:29 GMT
age: 17619
etag: "d400aa9d94ed7bad420b7dd83a618a538713d86e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 20 Dec 2022 05:34:02 GMT
expires: Tue, 20 Dec 2022 07:34:02 GMT
cache-control: public, max-age=7200
age: 2046
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash befd062b8a905e33761ed743294a27a1
098e0a2abc228968d32e6801a22a113a3d70c00f
b4180edf937a83c11293edead8512906c164d61608e7e2859f263d51f50885d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B4180EDF937A83C11293EDEAD8512906C164D61608E7E2859F263D51F50885D2"
Last-Modified: Tue, 20 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17631
Expires: Tue, 20 Dec 2022 11:01:59 GMT
Date: Tue, 20 Dec 2022 06:08:08 GMT
Connection: keep-alive
cdn.infohalu.xyz/wp-content/uploads/2022/11/Asik77-614x70-1.gif
104.21.233.191301 Moved Permanently 4.4 kB URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/11/Asik77-614x70-1.gif
IP 104.21.233.191:0
Hash ed192092c129db6123a3397855f42619
067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e
998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
GET /wp-content/uploads/2022/11/Asik77-614x70-1.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/11/Asik77-614x70-1.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8LcK6RYv36z6iS36fBGD6VGul4V5XmLqxEtyVJLdJvkzq9yfiwX6fLebsMGSwarQ485uYAHlKMYg8ohMH%2F3lIH80asDhZj2KEYQJ8an8g54CqvDt6vXluz5KkTHawMfq8p83"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339aff9423ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/XCGrXqwwb5s
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/XCGrXqwwb5s
IP 142.250.74.131:0
Hash 981b11fee7cbe86112a76c80ba197eb3
a67352986f9faba62ed3c616f5f4365e5c124511
d8636f084fee85f48e4a566c4469e3d36be83e2af054dadbaf2631039b7f7903
POST /s/gts1p5/XCGrXqwwb5s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:08 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/XCGrXqwwb5s
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/XCGrXqwwb5s
IP 142.250.74.131:0
Hash 981b11fee7cbe86112a76c80ba197eb3
a67352986f9faba62ed3c616f5f4365e5c124511
d8636f084fee85f48e4a566c4469e3d36be83e2af054dadbaf2631039b7f7903
POST /s/gts1p5/XCGrXqwwb5s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:08 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 794d95a6053a19e7afb873084d5087eb
e0f8b1d01c8694101774c43bacc47e7a15b6c3ff
b311b0a2936128e729d517d893adc9acfef294b28b2c7bc80bcdb27f416a364d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B311B0A2936128E729D517D893ADC9ACFEF294B28B2C7BC80BCDB27F416A364D"
Last-Modified: Sun, 18 Dec 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4063
Expires: Tue, 20 Dec 2022 07:15:51 GMT
Date: Tue, 20 Dec 2022 06:08:08 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 794d95a6053a19e7afb873084d5087eb
e0f8b1d01c8694101774c43bacc47e7a15b6c3ff
b311b0a2936128e729d517d893adc9acfef294b28b2c7bc80bcdb27f416a364d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B311B0A2936128E729D517D893ADC9ACFEF294B28B2C7BC80BCDB27F416A364D"
Last-Modified: Sun, 18 Dec 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4063
Expires: Tue, 20 Dec 2022 07:15:51 GMT
Date: Tue, 20 Dec 2022 06:08:08 GMT
Connection: keep-alive
s4.histats.com/stats/4517892.php?4517892&@f16&@g1&@h1&@i1&@j1671516496457&@k0&@l1&@mSitus%20Live%20Streaming%20Nonton%20Bola%20Gratis%20%7C%20NobarTV&@n0&@o1000&@q0&@r0&@s242&@ten-US&@u1280&@b1:52888059&@b3:1671516496&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fnobartv3.icu%2F&@w
149.56.240.127200 OK 111 B URL HTTP/1.1 s4.histats.com/stats/4517892.php?4517892&@f16&@g1&@h1&@i1&@j1671516496457&@k0&@l1&@mSitus%20Live%20Streaming%20Nonton%20Bola%20Gratis%20%7C%20NobarTV&@n0&@o1000&@q0&@r0&@s242&@ten-US&@u1280&@b1:52888059&@b3:1671516496&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fnobartv3.icu%2F&@w
IP 149.56.240.127:0
File type ASCII text, with no line terminators
Hash 7b840c2c91a733c3fb14347ceb1cc454
1f3e9733da33e16e88ba1fdd86de1794983fb4e3
c8fceb0070001fb897bb964f7fd24f725f699da9319140991536d34e55fac794
GET /stats/4517892.php?4517892&@f16&@g1&@h1&@i1&@j1671516496457&@k0&@l1&@mSitus%20Live%20Streaming%20Nonton%20Bola%20Gratis%20%7C%20NobarTV&@n0&@o1000&@q0&@r0&@s242&@ten-US&@u1280&@b1:52888059&@b3:1671516496&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fnobartv3.icu%2F&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 06:08:08 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 111
Connection: close
s10.histats.com/counters/cc_242.js
46.105.201.240200 OK 5.7 kB URL HTTP/2 s10.histats.com/counters/cc_242.js
IP 46.105.201.240:0
File type HTML document, ASCII text, with very long lines (16136), with no line terminators
Hash db5b8b0ba61215d1370b1cf3b6973113
3bb49126395f938b0cd54ff58d4bb807109cb3a0
e67410e651cc5cd0dc5f5a01053e029bed5cfb692cdeab92249eea6c40ba27cc
GET /counters/cc_242.js HTTP/1.1
Host: s10.histats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:03:15 GMT
etag: "-1202808086"
last-modified: Thu, 16 Apr 2020 10:45:32 GMT
x-request-id: 579932233
content-type: application/javascript; charset=UTF-8
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 5732
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/GIqeHfZVjjk
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/GIqeHfZVjjk
IP 142.250.74.131:0
Hash 7137a2db312c9e12c58510ded5911140
f7a8d7917d1c921a4c1544be19d02b431c3e802b
d43b3b002d2751d5f4959ac6e8d514659f7febcf4ad57161a911bda48c20472f
POST /s/gts1p5/GIqeHfZVjjk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/GIqeHfZVjjk
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/GIqeHfZVjjk
IP 142.250.74.131:0
Hash 7137a2db312c9e12c58510ded5911140
f7a8d7917d1c921a4c1544be19d02b431c3e802b
d43b3b002d2751d5f4959ac6e8d514659f7febcf4ad57161a911bda48c20472f
POST /s/gts1p5/GIqeHfZVjjk HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nobartv1.fun/Logo%20NobarTV%20Footer.png
104.21.48.108301 Moved Permanently 471 B URL HTTP/2 nobartv1.fun/Logo%20NobarTV%20Footer.png
IP 104.21.48.108:0
Hash 44f83a91a92d2710968eebf5660b1776
39504c6b4428104ae7e4339720f3f385a02cec60
c0f7921cc988d815557a4b3eb8b9d84de75cef4999e8d885d1e22ca3a880b3dd
GET /Logo%20NobarTV%20Footer.png HTTP/1.1
Host: nobartv1.fun
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:08 GMT
location: https://nobartv1.sbs/Logo%20NobarTV%20Footer.png
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:08 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HRj7PrPVlFWuEr8SKGwzEUs2ZXJY25fkrAigU181v4R1%2BOc81kKI9OnN1edOYjdZmTUG9UVwDIhs7uqSkN4PthRj5vbqtyN8%2BQ6Dm2nzvYR5M5wPRzERpikpdyDHcvY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c633a3de510afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/oWnhKcZJRuc
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/oWnhKcZJRuc
IP 142.250.74.131:0
Hash 44f83a91a92d2710968eebf5660b1776
39504c6b4428104ae7e4339720f3f385a02cec60
c0f7921cc988d815557a4b3eb8b9d84de75cef4999e8d885d1e22ca3a880b3dd
POST /s/gts1p5/oWnhKcZJRuc HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:09 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/iCQGWfoNcpQ
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/iCQGWfoNcpQ
IP 142.250.74.131:0
Hash 9dcb662f09202542e5f994821c6ed11e
07506c75ec7550a284bdfbc0890e579392114e86
2e3485709efdcaf174f791ed05860ab5669bb37170a07529c7f8dddc8058fd51
POST /s/gts1p5/iCQGWfoNcpQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/iCQGWfoNcpQ
142.250.74.131200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/iCQGWfoNcpQ
IP 142.250.74.131:0
Hash 9dcb662f09202542e5f994821c6ed11e
07506c75ec7550a284bdfbc0890e579392114e86
2e3485709efdcaf174f791ed05860ab5669bb37170a07529c7f8dddc8058fd51
POST /s/gts1p5/iCQGWfoNcpQ HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf20a9bc2befa066c5411fa14fccad5a
2f4fd4c302566019d391cae77ea423a3f9c1b856
9127d9b0c507ba076b5e35e94d6b13210ae678109820bcb8d42cba5ac1a13f29
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "9127D9B0C507BA076B5E35E94D6B13210AE678109820BCB8D42CBA5AC1A13F29"
Last-Modified: Mon, 19 Dec 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Tue, 20 Dec 2022 12:08:05 GMT
Date: Tue, 20 Dec 2022 06:08:10 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf20a9bc2befa066c5411fa14fccad5a
2f4fd4c302566019d391cae77ea423a3f9c1b856
9127d9b0c507ba076b5e35e94d6b13210ae678109820bcb8d42cba5ac1a13f29
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "9127D9B0C507BA076B5E35E94D6B13210AE678109820BCB8D42CBA5AC1A13F29"
Last-Modified: Mon, 19 Dec 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21595
Expires: Tue, 20 Dec 2022 12:08:05 GMT
Date: Tue, 20 Dec 2022 06:08:10 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/p_nU9OKqi6U
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/p_nU9OKqi6U
IP 142.250.74.131:0
Hash 2ebe4b2213fa3bdf3216c7827e6f755f
4d57cd7e4ed353787a3ffd09197d251a1bb71fe5
d109b5dee9a1655c497860a8cd6311f072dbc8cb90ee5c3cebdef0a0829f81d6
POST /s/gts1p5/p_nU9OKqi6U HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1p5/p_nU9OKqi6U
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/p_nU9OKqi6U
IP 142.250.74.131:0
Hash 2ebe4b2213fa3bdf3216c7827e6f755f
4d57cd7e4ed353787a3ffd09197d251a1bb71fe5
d109b5dee9a1655c497860a8cd6311f072dbc8cb90ee5c3cebdef0a0829f81d6
POST /s/gts1p5/p_nU9OKqi6U HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 06:08:10 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 570946bd89c2bad58cdca176c5871716
23dd4499594dff2cdf601b211c3815be7bba13a0
db495b9760dfa10194baee49ae8dc63f6210eccd960f66c6cb940897fd9abfee
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "DB495B9760DFA10194BAEE49AE8DC63F6210ECCD960F66C6CB940897FD9ABFEE"
Last-Modified: Tue, 20 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21064
Expires: Tue, 20 Dec 2022 11:59:15 GMT
Date: Tue, 20 Dec 2022 06:08:11 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ed8e719a28687b3821031d8814dfb755
5d2f2c1472daa390c682aaba6cad8c8ada20d12c
3a48612d8504bfda13d42a7fd13338e5ae507cbaedcbe7671338441a8773b7f6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3A48612D8504BFDA13D42A7FD13338E5AE507CBAEDCBE7671338441A8773B7F6"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15489
Expires: Tue, 20 Dec 2022 10:26:20 GMT
Date: Tue, 20 Dec 2022 06:08:11 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ed8e719a28687b3821031d8814dfb755
5d2f2c1472daa390c682aaba6cad8c8ada20d12c
3a48612d8504bfda13d42a7fd13338e5ae507cbaedcbe7671338441a8773b7f6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3A48612D8504BFDA13D42A7FD13338E5AE507CBAEDCBE7671338441A8773B7F6"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11903
Expires: Tue, 20 Dec 2022 09:26:34 GMT
Date: Tue, 20 Dec 2022 06:08:11 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ed8e719a28687b3821031d8814dfb755
5d2f2c1472daa390c682aaba6cad8c8ada20d12c
3a48612d8504bfda13d42a7fd13338e5ae507cbaedcbe7671338441a8773b7f6
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "3A48612D8504BFDA13D42A7FD13338E5AE507CBAEDCBE7671338441A8773B7F6"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11939
Expires: Tue, 20 Dec 2022 09:27:10 GMT
Date: Tue, 20 Dec 2022 06:08:11 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 570946bd89c2bad58cdca176c5871716
23dd4499594dff2cdf601b211c3815be7bba13a0
db495b9760dfa10194baee49ae8dc63f6210eccd960f66c6cb940897fd9abfee
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "DB495B9760DFA10194BAEE49AE8DC63F6210ECCD960F66C6CB940897FD9ABFEE"
Last-Modified: Tue, 20 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21111
Expires: Tue, 20 Dec 2022 12:00:02 GMT
Date: Tue, 20 Dec 2022 06:08:11 GMT
Connection: keep-alive
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20130404170407.jpg
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20130404170407.jpg
IP 104.18.23.50:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zqwin007/Image/team/images/20130404170407.jpg HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: text/html
content-length: 0
x-cache: zqwin007:/Image/team/images/20130404170407.jpg|30d|HIT
cache-control: public, max-age=2592000
last-modified: Mon, 19 Dec 2022 14:10:50 GMT
cf-cache-status: HIT
age: 18432
accept-ranges: bytes
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad93b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 570946bd89c2bad58cdca176c5871716
23dd4499594dff2cdf601b211c3815be7bba13a0
db495b9760dfa10194baee49ae8dc63f6210eccd960f66c6cb940897fd9abfee
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "DB495B9760DFA10194BAEE49AE8DC63F6210ECCD960F66C6CB940897FD9ABFEE"
Last-Modified: Tue, 20 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21111
Expires: Tue, 20 Dec 2022 12:00:02 GMT
Date: Tue, 20 Dec 2022 06:08:11 GMT
Connection: keep-alive
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140514012640.jpg
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140514012640.jpg
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20140514012640.jpg HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
etag: W/"537255d0-db7"
expires: Wed, 07 Dec 2022 11:41:08 GMT
last-modified: Tue, 13 May 2014 17:26:40 GMT
referrer-policy: unsafe-url
vary: Accept-Encoding, Accept-Encoding
x-cache: zqwin007:/Image/team/images/20140514012640.jpg|30d|HIT
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 18437
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ddbdb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nobartv3.icu/
172.67.147.152200 OK 0 B IP 172.67.147.152:0
GET / HTTP/1.1
Host: nobartv3.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:06 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3Zx%2FcX80N0SDUv%2F68u6yvAza6t97uq9%2BTMyGGP7TgYi7B8oAym7rKZ1f26eEP8jEoIPBRxTuQLDDx3i%2B0iI67kgDlq9dbMrXsYoN40ql3VGgkhtFTjCBHTdJE5U%2BXwE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77c633971c83b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nobartv3.sbs/Logo%20NobarTV%20Footer.png
104.21.44.49301 Moved Permanently 0 B URL HTTP/2 nobartv3.sbs/Logo%20NobarTV%20Footer.png
IP 104.21.44.49:0
GET /Logo%20NobarTV%20Footer.png HTTP/1.1
Host: nobartv3.sbs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:10 GMT
location: https://nobartv3.icu/Logo%20NobarTV%20Footer.png
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:10 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3MXcxEbBcUz8rSOUw%2FhKwrB84IpNIGvH0sUgZb6c2Q3uJX8TdZyNEdX68BP%2FyQuS6zXj9R3mnPxXRCe0jOmr%2BMZbLH5lsScb%2Bd1agoc5v7bba34yEHR5ialUsUarLeE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c633b35bbf1c02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140521164602.jpg
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140521164602.jpg
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20140521164602.jpg HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
etag: W/"537c67ca-1583"
expires: Sat, 26 Nov 2022 17:27:43 GMT
last-modified: Wed, 21 May 2014 08:46:02 GMT
vary: Accept-Encoding
x-cache: zqwin007:/Image/team/images/20140521164602.jpg|30d|HIT
cf-cache-status: HIT
age: 18433
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad91b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2021/10/TUTUP.png
104.21.233.191301 Moved Permanently 0 B URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2021/10/TUTUP.png
IP 104.21.233.191:0
GET /wp-content/uploads/2021/10/TUTUP.png HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2021/10/TUTUP.png
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WZrWQqndQLwGX3g73OPDaZ630awxXyj27ue3VeVntjqZaQDiAZ%2BTjSKqUcoolyWlTdPVxJASyCAtvfD36MBxacVf4t3zGvkB2YJU66jSbyotE1gCaYAoorGB5NtHK02ClJiC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339b0fb323ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2022/06/qqslot-gif-500x300-1.gif
104.21.233.191301 Moved Permanently 0 B URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/06/qqslot-gif-500x300-1.gif
IP 104.21.233.191:0
GET /wp-content/uploads/2022/06/qqslot-gif-500x300-1.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/06/qqslot-gif-500x300-1.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YltGOemKhc2H3m%2FUd7VhDAUxahBmLOlanhy8Cbb%2F7v3ouDw84K8NnHDomkvqQaGi%2FXVcwxSZ2Z3K91rLL%2FMDNEMv%2FshWa1qPocSBzXXZ9TuKAXqcDoxJTIq%2BsmUuLdKSQN7o"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339b1fb723ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2022/06/LODE777-Gif-500x300-1.gif
104.21.233.191301 Moved Permanently 0 B URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/06/LODE777-Gif-500x300-1.gif
IP 104.21.233.191:0
GET /wp-content/uploads/2022/06/LODE777-Gif-500x300-1.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/06/LODE777-Gif-500x300-1.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KLTjnGkQAgi5ZlbGZFylyI%2FfTt2KYkn5bstcJ8tWJKSEXi5Wc3IEvCYwQQLHnrjwJzdEh5c9oRVQXUQ9vLZpHSSAwYxWj1jCy9SeLrYgwpW4dM3tyi0XZDCaEUjnXmv4MITm"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339b0fb523ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121221813.png
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121221813.png
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/2013121221813.png HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/png
last-modified: Wed, 03 Apr 2013 07:01:46 GMT
vary: Accept-Encoding
etag: W/"515bd3da-1e56"
expires: Sun, 20 Nov 2022 17:44:46 GMT
x-cache: zqwin007:/Image/team/images/2013121221813.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18426
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad9fb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121185437.jpg
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121185437.jpg
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/2013121185437.jpg HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
etag: W/"515bd3d8-1dba"
expires: Wed, 21 Dec 2022 00:37:33 GMT
last-modified: Wed, 03 Apr 2013 07:01:44 GMT
vary: Accept-Encoding
x-cache: zqwin007:/Image/team/images/2013121185437.jpg|30d|EXPIRED
cf-cache-status: HIT
age: 18428
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad95b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20181012134821.png
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20181012134821.png
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20181012134821.png HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/png
last-modified: Tue, 29 Oct 2019 03:45:57 GMT
vary: Accept-Encoding
etag: W/"5db7b5f5-22f2"
expires: Tue, 13 Dec 2022 22:54:58 GMT
x-cache: zqwin007:/Image/team/images/20181012134821.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18433
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad92b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121193336.png
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121193336.png
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/2013121193336.png HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/png
last-modified: Wed, 03 Apr 2013 07:01:44 GMT
vary: Accept-Encoding
etag: W/"515bd3d8-1a86"
expires: Wed, 21 Dec 2022 00:36:32 GMT
x-cache: zqwin007:/Image/team/images/2013121193336.png|30d|EXPIRED
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18427
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad99b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20181012125010.png
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20181012125010.png
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20181012125010.png HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/png
last-modified: Fri, 12 Oct 2018 04:50:10 GMT
vary: Accept-Encoding
etag: W/"5bc02802-f87"
expires: Sat, 03 Dec 2022 08:55:39 GMT
x-cache: zqwin007:/Image/team/images/20181012125010.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18426
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ada0b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121221531.png
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121221531.png
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/2013121221531.png HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/png
last-modified: Wed, 03 Apr 2013 07:01:46 GMT
vary: Accept-Encoding
etag: W/"515bd3da-2339"
expires: Tue, 13 Dec 2022 21:15:35 GMT
x-cache: zqwin007:/Image/team/images/2013121221531.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18427
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad9db515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20160916114658.jpg
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20160916114658.jpg
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20160916114658.jpg HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
etag: W/"57db6b32-1331"
expires: Mon, 12 Dec 2022 16:14:30 GMT
last-modified: Fri, 16 Sep 2016 03:46:58 GMT
vary: Accept-Encoding
x-cache: zqwin007:/Image/team/images/20160916114658.jpg|30d|HIT
cf-cache-status: HIT
age: 102769
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5cdb6b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140521165359.jpg
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140521165359.jpg
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20140521165359.jpg HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
etag: W/"537c69a7-10be"
expires: Sun, 04 Dec 2022 15:22:44 GMT
last-modified: Wed, 21 May 2014 08:53:59 GMT
referrer-policy: unsafe-url
vary: Accept-Encoding, Accept-Encoding
x-cache: zqwin007:/Image/team/images/20140521165359.jpg|30d|HIT
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 18433
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ddb8b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140516014816.gif
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140516014816.gif
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20140516014816.gif HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/gif
last-modified: Thu, 15 May 2014 17:48:16 GMT
vary: Accept-Encoding
etag: W/"5374fde0-17e6"
expires: Thu, 15 Dec 2022 00:48:15 GMT
x-cache: zqwin007:/Image/team/images/20140516014816.gif|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18437
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5edc5b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins:wght@400;600&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Poppins:wght@400;600&display=swap
IP 142.250.74.106:0
GET /css2?family=Poppins:wght@400;600&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Dec 2022 06:08:06 GMT
date: Tue, 20 Dec 2022 06:08:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2022/12/slot168.gif
104.21.233.191301 Moved Permanently 0 B URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/12/slot168.gif
IP 104.21.233.191:0
GET /wp-content/uploads/2022/12/slot168.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/12/slot168.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vyYfGsHmYOkcILF77iSCHAZY8MvZa9PkKgvARYMpS7R1DI5jiknoPf2KqAEas5B1k5DYzm7Tnepq%2FlDt86pEo2HjKxyhZ3X2DoyVnnLkLq551RqAob%2B2of3L%2BGjOr2Pz%2FNGy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339aff9223ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2022/11/Play365-600x70-1.gif
104.21.233.191301 Moved Permanently 0 B URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/11/Play365-600x70-1.gif
IP 104.21.233.191:0
GET /wp-content/uploads/2022/11/Play365-600x70-1.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/11/Play365-600x70-1.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ajDZYJT1mwpDcJQVC%2BmZIqIIpY9ghCVe7Yg3EkugjQlr1geJR8yjAjYhAqiR8P25P%2F0A62amUUzghCMPtMtC2tLzuRzZ8r6wUWvTDzzI%2F%2FQUKSVBCVD5r%2F4OcrcflJUqmFiH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339aff9123ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140818185717.png
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140818185717.png
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20140818185717.png HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/png
last-modified: Wed, 30 Oct 2019 09:27:10 GMT
vary: Accept-Encoding
etag: W/"5db9576e-3585"
expires: Wed, 14 Dec 2022 13:18:18 GMT
x-cache: zqwin007:/Image/team/images/20140818185717.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18432
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad94b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121232355.png
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121232355.png
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/2013121232355.png HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/png
last-modified: Wed, 03 Apr 2013 07:01:48 GMT
vary: Accept-Encoding
etag: W/"515bd3dc-297b"
expires: Sun, 11 Dec 2022 11:46:00 GMT
x-cache: zqwin007:/Image/team/images/2013121232355.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18428
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad9cb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2022/11/Ketua77-614x70-1.gif
104.21.233.191301 Moved Permanently 0 B URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/11/Ketua77-614x70-1.gif
IP 104.21.233.191:0
GET /wp-content/uploads/2022/11/Ketua77-614x70-1.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/11/Ketua77-614x70-1.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ynuZj%2FUuNYzwAXLRj%2FlyZ33n9sC0FCqUW67iwUpRSZk5nkQu%2F2jLwymkzJCCBoznyqTtDCZMyGciUsl9jctYbWE%2FgmFfMIuHy2ulYz75xFp7mJcjvhHZhDBH9K3efgB80V9n"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339aff9623ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20180921111942.png
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20180921111942.png
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20180921111942.png HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/png
last-modified: Tue, 05 Nov 2019 08:54:06 GMT
vary: Accept-Encoding
etag: W/"5dc138ae-358c"
expires: Sun, 04 Dec 2022 08:17:38 GMT
x-cache: zqwin007:/Image/team/images/20180921111942.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18433
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad8db515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121182612.jpg
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121182612.jpg
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/2013121182612.jpg HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
etag: W/"5db958c4-17a9"
expires: Fri, 25 Nov 2022 15:54:29 GMT
last-modified: Wed, 30 Oct 2019 09:32:52 GMT
vary: Accept-Encoding
x-cache: zqwin007:/Image/team/images/2013121182612.jpg|30d|HIT
cf-cache-status: HIT
age: 1037
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad97b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nobartv1.xyz/Logo%20NobarTV%20Footer.png
188.114.97.1301 Moved Permanently 0 B URL HTTP/2 nobartv1.xyz/Logo%20NobarTV%20Footer.png
IP 188.114.97.1:0
GET /Logo%20NobarTV%20Footer.png HTTP/1.1
Host: nobartv1.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:07 GMT
location: https://nobartv1.pro/Logo%20NobarTV%20Footer.png
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FolFSWJVMvNLleaF1osigd%2FNSiNS6d2SFiP1%2FWQqipqEOVGFpYjE48aHYZLS5ZUJO3YA2xvbOztM71tVrdo2l7s4Q6deGXoagEhEKwJ7GoMawxIXhMarSTfz%2F966Ckg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c633a10e85fac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140521165654.jpg
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140521165654.jpg
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20140521165654.jpg HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
etag: W/"537c6a56-1b6e"
expires: Wed, 14 Dec 2022 13:14:08 GMT
last-modified: Wed, 21 May 2014 08:56:54 GMT
vary: Accept-Encoding
x-cache: zqwin007:/Image/team/images/20140521165654.jpg|30d|HIT
cf-cache-status: HIT
age: 18438
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b59d88b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/2012110185029.jpg
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/2012110185029.jpg
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/2012110185029.jpg HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
etag: W/"6078ed99-28cd"
expires: Tue, 29 Nov 2022 10:42:26 GMT
last-modified: Fri, 16 Apr 2021 01:51:21 GMT
referrer-policy: unsafe-url
vary: Accept-Encoding, Accept-Encoding
x-cache: zqwin007:/Image/team/images/2012110185029.jpg|30d|HIT
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 18433
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b59d8cb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nobartv3.xyz/Logo%20NobarTV%20Footer.png
172.67.152.90301 Moved Permanently 0 B URL HTTP/2 nobartv3.xyz/Logo%20NobarTV%20Footer.png
IP 172.67.152.90:0
GET /Logo%20NobarTV%20Footer.png HTTP/1.1
Host: nobartv3.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:10 GMT
location: https://nobartv3.sbs/Logo%20NobarTV%20Footer.png
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:10 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TtHSFicMKAgHaL%2FHKLnHiNZlsTw%2BC4WowDUT9zgViJwx1gWwG73NDnknQ2AVwYVkM095LoIjeSXwZ1VDjTzCO0%2BuC%2BbJi9m3d9Tt%2Fq%2Buwd27uDS%2FQHUMpcEvMxEZTz0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c633b0cf6cb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.infohalu.xyz/wp-content/uploads/2022/10/Visitorbet-614x70-1.gif
104.21.233.191301 Moved Permanently 0 B URL HTTP/2 cdn.infohalu.xyz/wp-content/uploads/2022/10/Visitorbet-614x70-1.gif
IP 104.21.233.191:0
GET /wp-content/uploads/2022/10/Visitorbet-614x70-1.gif HTTP/1.1
Host: cdn.infohalu.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:06 GMT
location: https://cdn.mooncricket.xyz/wp-content/uploads/2022/10/Visitorbet-614x70-1.gif
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:06 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5S2h3P1XDgF4JCoYpLRj6CuEvMoH9vvQsTyRp3Lyr4O7O%2FVs8Q43Dy1bjJyKGt0zXuHLLNnmchsh7ZnptQi2uHVTGettXe2MuYw93Yob14%2FdKBLqMMHdAIosNeKSuTRDYyrl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c6339b0faf23ed-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121180614.jpg
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/2013121180614.jpg
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/2013121180614.jpg HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/jpeg
cache-control: public, max-age=2592000
cf-bgj: h2pri
etag: W/"5db958c4-211f"
expires: Thu, 15 Dec 2022 11:39:46 GMT
last-modified: Wed, 30 Oct 2019 09:32:52 GMT
vary: Accept-Encoding
x-cache: zqwin007:/Image/team/images/2013121180614.jpg|30d|HIT
cf-cache-status: HIT
age: 18428
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad96b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
nobartv1.pro/Logo%20NobarTV%20Footer.png
188.114.97.1301 Moved Permanently 0 B URL HTTP/2 nobartv1.pro/Logo%20NobarTV%20Footer.png
IP 188.114.97.1:0
GET /Logo%20NobarTV%20Footer.png HTTP/1.1
Host: nobartv1.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nobartv3.icu/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Tue, 20 Dec 2022 06:08:08 GMT
location: https://nobartv1.live/Logo%20NobarTV%20Footer.png
cache-control: max-age=3600
expires: Tue, 20 Dec 2022 07:08:08 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MqHyjQnuDq2F%2BuKVwljYnNuSAvqjgpXi%2FQVyEZEV29Hh%2FcDG1o9GQ5WXtAfxKYwDjGPdiVyRmPygww5bLzDyzg7QR6zleb0gy23RvULiUUjOTGWT6GhFJsvglZwuNh8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77c633a28a6bb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140516015036.gif
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20140516015036.gif
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20140516015036.gif HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/gif
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 15 May 2014 17:50:36 GMT
etag: W/"5374fe6c-141f"
x-frame-options: SAMEORIGIN
referrer-policy: unsafe-url
expires: Sat, 10 Dec 2022 11:37:56 GMT
x-cache: zqwin007:/Image/team/images/20140516015036.gif|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18432
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad8fb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cfcdn.livesportstv.cc/zqwin007/Image/team/images/20180921143123.png
104.18.23.50200 OK 0 B URL HTTP/2 cfcdn.livesportstv.cc/zqwin007/Image/team/images/20180921143123.png
IP 104.18.23.50:0
GET /zqwin007/Image/team/images/20180921143123.png HTTP/1.1
Host: cfcdn.livesportstv.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nobartv3.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Dec 2022 06:08:11 GMT
content-type: image/png
last-modified: Fri, 21 Sep 2018 06:31:23 GMT
vary: Accept-Encoding
etag: W/"5ba4903b-1149"
expires: Tue, 20 Dec 2022 08:17:25 GMT
x-cache: zqwin007:/Image/team/images/20180921143123.png|30d|HIT
cache-control: public, max-age=2592000
cf-cache-status: HIT
age: 18426
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: *
access-control-allow-origin: *
server: cloudflare
cf-ray: 77c633b5ad9eb515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2