Overview

URLjoin-grup56803.pft.lol/
IP 172.67.142.115 (United States)
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-29 16:16:34 UTC
StatusLoading report..
IDS alerts0
Blocklist alert8
urlquery alerts No alerts detected
Tags None

Domain Summary (25)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
cdnjs.cloudflare.com (3) 235 2015-04-17 20:46:33 UTC 2022-11-29 07:25:31 UTC 104.17.25.14
unpkg.com (2) 11693 2016-01-07 23:26:01 UTC 2022-11-29 06:09:35 UTC 104.16.122.175
ocsp.digicert.com (10) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-29 05:48:55 UTC 34.102.187.140
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.202.70.174
cdn.statically.io (1) 10364 2019-07-19 06:39:35 UTC 2021-03-08 01:32:51 UTC 151.101.1.91
ocsp.trust-provider.cn (2) 0 No data No data 47.246.44.205 Domain (trust-provider.cn) ranked at: 847612
z-p3-static.xx.fbcdn.net (1) 79582 2018-06-25 03:01:12 UTC 2019-03-11 06:03:32 UTC 31.13.72.54
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-29 05:51:44 UTC 34.117.237.239
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-29 07:36:52 UTC 216.58.207.227 Domain (gstatic.com) ranked at: 540
ocsp.globalsign.com (1) 2075 2012-07-20 17:46:16 UTC 2020-05-02 20:58:10 UTC 104.18.20.226
na.apps.amsoveasea.com (1) 100788 2020-07-11 12:48:08 UTC 2022-11-29 03:46:42 UTC 129.226.2.89
r3.o.lencr.org (6) 344 No data No data 23.36.76.226
code.jquery.com (1) 634 2012-05-21 17:28:02 UTC 2020-04-21 12:46:20 UTC 69.16.175.10
stackpath.bootstrapcdn.com (1) 2467 2018-06-15 20:36:43 UTC 2022-11-29 08:01:27 UTC 104.18.11.207
img.icons8.com (2) 28959 2017-05-26 09:10:54 UTC 2018-01-03 13:36:54 UTC 185.76.9.21
rawcdn.githack.com (1) 72170 2019-01-11 12:00:35 UTC 2022-11-29 08:53:07 UTC 104.21.234.230
site-assets.fontawesome.com (4) 299062 No data No data 104.18.23.52
i.ibb.co (15) 13485 2018-11-25 10:13:48 UTC 2022-11-29 10:29:28 UTC 162.19.58.160
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
join-grup56803.pft.lol (4) 0 2022-11-28 16:12:57 UTC 2022-11-29 15:37:02 UTC 104.21.95.2 Unknown ranking
ocsp.pki.goog (5) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.131
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-29 09:35:58 UTC 142.250.74.106
raw.githubusercontent.com (1) 35802 2014-03-01 07:08:08 UTC 2022-11-29 06:11:21 UTC 185.199.110.133

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-11-29 2 join-grup56803.pft.lol/ WhatsApp
2022-11-29 2 join-grup56803.pft.lol/ WhatsApp
2022-11-29 2 join-grup56803.pft.lol/ WhatsApp
2022-11-29 2 join-grup56803.pft.lol/ WhatsApp

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-29 2 join-grup56803.pft.lol/ Phishing
2022-11-29 2 join-grup56803.pft.lol/ Phishing
2022-11-29 2 join-grup56803.pft.lol/whatsapp/ Phishing
2022-11-29 2 join-grup56803.pft.lol/whatsapp Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 172.67.142.115
Date UQ / IDS / BL URL IP
2023-01-23 04:17:40 +0000 0 - 0 - 10 ultimoporn.com/porno/peliculas-porno-gratis-p (...) 172.67.142.115
2022-11-29 21:21:03 +0000 0 - 0 - 6 join-grup56803.pft.lol/ 172.67.142.115
2022-11-29 16:16:34 +0000 0 - 0 - 8 join-grup56803.pft.lol/ 172.67.142.115


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-02-04 21:40:30 +0000 0 - 0 - 7 www.dragonballsuperssuperheromovie.com/ 104.21.16.188
2023-02-04 21:39:57 +0000 0 - 4 - 0 www.gamesviatorrent.top/2020/11/the-sims-3-co (...) 188.114.97.1
2023-02-04 21:39:36 +0000 0 - 3 - 0 www.prosportsextra.com/legendary-tournaments- (...) 104.26.6.45
2023-02-04 21:37:59 +0000 0 - 0 - 2 surl.li/eschf 188.114.96.1
2023-02-04 21:37:04 +0000 0 - 0 - 1 4g.gfgf-66.shop/?s=1675544192 188.114.96.1


Last 5 reports on domain: pft.lol
Date UQ / IDS / BL URL IP
2022-12-04 11:54:04 +0000 0 - 0 - 2 join-grup56803.pft.lol/ 104.21.95.2
2022-11-30 10:52:22 +0000 0 - 0 - 2 join-grup56803.pft.lol/whatsapp/ 104.21.95.2
2022-11-29 21:21:03 +0000 0 - 0 - 6 join-grup56803.pft.lol/ 172.67.142.115
2022-11-29 18:34:25 +0000 0 - 0 - 6 join-grup56803.pft.lol/ 104.21.95.2
2022-11-29 16:16:34 +0000 0 - 0 - 8 join-grup56803.pft.lol/ 172.67.142.115


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-24 20:15:25 +0000 0 - 0 - 4 groupviralyklcinw.36terrbaru1.my.id/vhsfhqpdhdsih6 104.21.84.80
2023-01-03 17:04:41 +0000 0 - 0 - 4 chat-whatsapp1933.baru.lol/ 104.21.63.61
2022-12-20 06:16:43 +0000 0 - 2 - 1 chat-whatsapp585.nih.icu/id/ 104.21.35.14
2022-12-18 12:25:14 +0000 0 - 0 - 2 grupwa11143094.zr-bq.my.id/vhsfhqpdhdsih6/ 104.21.86.195
2022-11-18 15:26:59 +0000 0 - 0 - 2 www.joln-chatz7gm1f5.mediafire-newlink.my.id/ (...) 172.67.138.49

JavaScript

Executed Scripts (5)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (74)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: join-grup56803.pft.lol
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         104.21.95.2
HTTP/1.1 301 Moved Permanently
                                        
Date: Tue, 29 Nov 2022 16:16:22 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 29 Nov 2022 17:16:22 GMT
Location: https://join-grup56803.pft.lol/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BZcZfM0W041%2F4PpF%2F81JiJKRZ%2BN0W50L5wQKIx%2B7HFZ%2B%2FkCNDTFCKJ31hRYye%2Ff%2FMmMBcn2Nkkp9%2BEUVCrV7%2F%2BHs5VAvKuLEroquE1vad5bvZ9Cru%2B47bGVblKRWP0lfDW47XDWjEHRl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771ca5bd4963fac0-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - openphish: WhatsApp
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9358
Expires: Tue, 29 Nov 2022 18:52:20 GMT
Date: Tue, 29 Nov 2022 16:16:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4926
Cache-Control: max-age=157015
Date: Tue, 29 Nov 2022 16:16:22 GMT
Etag: "6385df6f-1d7"
Expires: Thu, 01 Dec 2022 11:53:17 GMT
Last-Modified: Tue, 29 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3907
Expires: Tue, 29 Nov 2022 17:21:29 GMT
Date: Tue, 29 Nov 2022 16:16:22 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 15:19:38 GMT
cache-control: public,max-age=3600
age: 3404
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    14cd9a0afb6ba9a763651d5112760d1e
Sha1:   75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 4PpuUIaO06hPiXCWS61qCbTLwapbsirHZgGXhDmyYbznimZ/cV9ihVlFLoBIsK3KA0HHIE/4CrQ=
x-amz-request-id: RP5ANQG4G1ZPD2Y9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 15:45:31 GMT
age: 1851
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:22 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST /s/gts1p5/9jWP-3SqKKU HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 29 Nov 2022 16:16:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 16:11:13 GMT
cache-control: public,max-age=3600
age: 310
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5469
Cache-Control: 'max-age=158059'
Date: Tue, 29 Nov 2022 16:16:23 GMT
Last-Modified: Tue, 29 Nov 2022 14:45:14 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: join-grup56803.pft.lol
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         104.21.95.2
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 29 Nov 2022 16:16:23 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FbSLQTAbydNzdphfYMGVr3Eapv1UPXQ5WfkFpvum4I0Yeo5VDt5QnH4Yg0Bt7I2Tvl%2BhcocIV5ZT373%2FDify7taXQZDlaL%2Bcm7H%2F3sQpgPt59rgTf1OiiBOV4KLm8EBXE%2B0DrsJn2UvR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771ca5c06843b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text
Size:   559
Md5:    bee7f0c237bfc1d5efe961748c95523a
Sha1:   e87b7702943d2de57edfa1b7149c01774c1b54bf
Sha256: 8e4b786433fd62d3632c254cc7df870aef65fa73e676cbc5bd1b1bb0f45d09f2

Alerts:
  Blocklists:
    - openphish: WhatsApp
    - fortinet: Phishing
                                        
                                            GET /whatsapp/ HTTP/1.1 
Host: join-grup56803.pft.lol
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         104.21.95.2
HTTP/1.1 301 Moved Permanently
                                        
Date: Tue, 29 Nov 2022 16:16:23 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 29 Nov 2022 17:16:23 GMT
Location: https://join-grup56803.pft.lol/whatsapp/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cdlE0uRPgcES6%2BijwvP3SL2YZjmQHpxw0FtjQNb5Po2mCj9jEB4kOtstQ7TIY484M4LtIpwL02Ws2cix1rdnkFPmswsm17oZc1xFERUx1AfxOwDGeLEcwQMpGTyHQ2%2F9GrxQSHVnttfB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771ca5c53823fac0-OSL
alt-svc: h2=":443"; ma=60


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - openphish: WhatsApp
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: T5jq6R70+RupYjxtHPn3Gw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.202.70.174
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jDXKVLyvRzhXJBoA/zeN4d0Bo18=

                                        
                                            GET /ajax/libs/font-awesome/5.15.2/css/all.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 10472
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fff7431-e7d0"
last-modified: Wed, 13 Jan 2021 22:29:05 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 585412
expires: Sun, 19 Nov 2023 16:16:24 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xe%2BCLDBoENGIGrtla1wydx0cwYt3WRfefTvqZM1sO8ilPk5zqEVCj3Nxs6cl63IKKT334vwdR8M2GlUqsFDlCZRGmycXxgrcC84SUGBJKFnpu7FSthIpxTO%2BlJLwd4q0e450I0OR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 771ca5c86907fac4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59158)
Size:   10472
Md5:    3e4019642322c3e0f1db17e4411b7d49
Sha1:   4481a79c38f6ff4651621e30fc05f4b6f4e2c98c
Sha256: abfa1d2f03f268a7ac776f6a9c22f53ef759a6110b3a61eb0f7dce9bd446c8d8
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1324
Cache-Control: max-age=169244
Date: Tue, 29 Nov 2022 16:16:24 GMT
Etag: "63861d48-117"
Expires: Thu, 01 Dec 2022 15:17:08 GMT
Last-Modified: Tue, 29 Nov 2022 14:55:04 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 583893
expires: Sun, 19 Nov 2023 16:16:24 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bu2NQWRPzQSvZzNarVf%2FSnX2B4GwJXNRy64a49EmsFNtn%2Bzmxvlv9KEEoVMPF%2FPMZzgJsDktYJs8pH9x9dTXUR7KodepSPsgiPTJowVmoxnKhtyHsbDy60e7lNsA3EO25Ic0T91S"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 771ca5c86908fac4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   5631
Md5:    109d1ed85cd01f9cdab73a4cac5bf80d
Sha1:   d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
Sha256: 8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
                                        
                                            GET /ajax/libs/material-design-iconic-font/2.2.0/css/material-design-iconic-font.min.css HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 5845
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1149f"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 486772
expires: Sun, 19 Nov 2023 16:16:24 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Rwn%2BgPdgqmQOMhWLZpoOWQ7OOh19P5FNVMVWNo3g%2BIksGQSQMESC4ACUlosWyMS9UrBEwUy2pkZvOp6dL1wbYoo5t5y7xwsRCS5NBiUIRN3QwCJpiNso5ElyFgTm%2FRlHOEQStuAt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 771ca5c8690dfac4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   5845
Md5:    a7e25a22602a2b2ed35f90fd5210cff1
Sha1:   148c4f275b60e6cf6253d6b4c7bdc486515b2202
Sha256: 312d94bafa68e11e3a4a8d7c06bc25ee161d1d965afb1fa99db79815a272d0bf
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4844
Cache-Control: max-age=144337
Date: Tue, 29 Nov 2022 16:16:24 GMT
Etag: "6385ae3d-117"
Expires: Thu, 01 Dec 2022 08:22:01 GMT
Last-Modified: Tue, 29 Nov 2022 07:01:17 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2461
Cache-Control: max-age=160291
Date: Tue, 29 Nov 2022 16:16:24 GMT
Etag: "6385f5de-1d7"
Expires: Thu, 01 Dec 2022 12:47:55 GMT
Last-Modified: Tue, 29 Nov 2022 12:06:54 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 29 Nov 2022 16:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /jquery-3.6.0.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         69.16.175.10
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
content-encoding: gzip
content-length: 84714
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-46744"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669738584.dop214.sk1.t,1669738584.cds258.sk1.hn,1669738584.cds214.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   84714
Md5:    416559bad4fc1149eba631e644a23a6e
Sha1:   20f8f18f94c74dbc1bde934719cbfa87d51828cf
Sha256: 37508a443be057a2fab1c4eee8d03632f406eaed15d09a26ac8dabe7877616e2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4844
Cache-Control: max-age=144337
Date: Tue, 29 Nov 2022 16:16:24 GMT
Etag: "6385ae3d-117"
Expires: Thu, 01 Dec 2022 08:22:01 GMT
Last-Modified: Tue, 29 Nov 2022 07:01:17 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /css2?family=Inter:wght@100;200;300;400;500;600;700;800;900&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 16:16:24 GMT
date: Tue, 29 Nov 2022 16:16:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1322
Md5:    d4bf0d1f99fba786c59e4b35d3c331c4
Sha1:   2ca9e5ec3d02227914aa8405552401f0205b5cca
Sha256: 6454667468912f3492a25552afa073052d9f9706b9021bca64a3a9db9d390dad
                                        
                                            GET /material/48/undefined/audio-wave--v1.png HTTP/1.1 
Host: img.icons8.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.76.9.21
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 200
x-dns-prefetch-control: off
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-expose-headers: Content-Disposition
from-cache: false
memory-cache: false
from-svg-cache: true
memory-svg-cache: false
icon-id: 5732
icon-format: png
icon-size: 48
last-modified: Mon, 28 Nov 2022 04:28:15 GMT
cache-control: public, max-age=302400
not-found-platform: false
version: 0.1.0-SNAPSHOT.20221127211430846
x-accel-expires: @1669935468
server: CDN77-Turbo
x-77-nzt: AblMCRScASjvLJwBAA
x-77-nzt-ray: af5856301d9403ad5830866346433f23
x-cache: HIT
x-age: 105516
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   200
Md5:    fd3a5e8df2c7dedbfcaf9adb8031c8aa
Sha1:   21a5f4ab45caa20fa9c8309dee5ad0ee7733d92f
Sha256: 9a3da7d37807a536ee21bbc574f582d5592a7b250484348d9da286c764b3cb0c
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2911
Cache-Control: max-age=133759
Date: Tue, 29 Nov 2022 16:16:24 GMT
Etag: "63858c78-117"
Expires: Thu, 01 Dec 2022 05:25:43 GMT
Last-Modified: Tue, 29 Nov 2022 04:37:12 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /AlexHostX/logAlex/391a0879c14c7ba91729a2271cfc42f3f874c190/facebook_text.png HTTP/1.1 
Host: rawcdn.githack.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.21.234.230
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 191
location: https://raw.githubusercontent.com/AlexHostX/logAlex/391a0879c14c7ba91729a2271cfc42f3f874c190/facebook_text.png
expires: Wed, 30 Nov 2022 10:01:22 GMT
cache-control: max-age=86400
access-control-allow-origin: *
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UF1kmG4%2F5wVBQ6XGrdkcuLRP66c5P65QuFA7dXnW5YXa%2BWZEQj29XQCDgi59s4pUOY8w5bjI5oyyxlKb3gna62u52S4ck1K4jLrcM9G51mfwuiHGnbMtYeZFzV8IPFUKPiI4nTc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771ca5c9f90e4065-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   191
Md5:    071fd8ecafea25912fcd3ac36da047f8
Sha1:   1df9fbcde3170de426d4ca7fa23870e69ac7f5a7
Sha256: 6a0441175769a66b712c9e317a0c46df05120400370b4f9fc9828d30e9338b08
                                        
                                            GET /releases/v6.1.1/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: site-assets.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join-grup56803.pft.lol
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         104.18.23.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 329204
x-amz-id-2: zA9b1gXLOE/XfKUsK+aYDL09EXPpuzftrNgVgrw5m++UhMkrF+azcjaROk+tavm48BgZa4zRyY4=
x-amz-request-id: 2GW1D5KBHWF68XCT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 22 Mar 2022 15:42:55 GMT
etag: "6ebcf9f18ded9c54f71ec1198c32aa52"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 34982
accept-ranges: bytes
server: cloudflare
cf-ray: 771ca5ca497a1c0e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 329204, version 769.768\012- data
Size:   329204
Md5:    6ebcf9f18ded9c54f71ec1198c32aa52
Sha1:   06695b645047b29c333edac0c78a97922a135ad9
Sha256: f350c708b5e7748a452b4b98600fa49127166d995686e260ccafb58d51a4ea62
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 29 Nov 2022 16:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /releases/v6.1.1/webfonts/fa-light-300.woff2 HTTP/1.1 
Host: site-assets.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join-grup56803.pft.lol
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.23.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 424536
x-amz-id-2: NY9rLXu63Y/d74o2hxBopOnvSl7g3e1uS66tBJx+YPju66Ph5dIUkjiB0TY2T78rJvPMJm4+QorwzfqYQNEa9A==
x-amz-request-id: 2GW4D3CWVY4YG0X0
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 22 Mar 2022 15:42:55 GMT
etag: "b7412eb0b0d0a37deffbb70250b4011d"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 34982
accept-ranges: bytes
server: cloudflare
cf-ray: 771ca5ca89c71c0e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 424536, version 769.768\012- data
Size:   424536
Md5:    b7412eb0b0d0a37deffbb70250b4011d
Sha1:   b89ad9dfe0720d47eb134b6a32806f185cc12ee3
Sha256: 515954fe1dc163277d36b51f79fe56265f6b6cf79f99e307bbf6e52b477b9c87
                                        
                                            GET /releases/v6.1.1/webfonts/fa-regular-400.woff2 HTTP/1.1 
Host: site-assets.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join-grup56803.pft.lol
Connection: keep-alive
Referer: https://site-assets.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.18.23.52
HTTP/2 200 OK
content-type: font/woff2
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 388900
x-amz-id-2: jLSThVD5SnuRK3xS64tDOKyEbhgX+2cSkD/GK5xjZaBritkVjcUcXRRCPtVNYiKvmYx1xeGXnNc=
x-amz-request-id: 2GWAZJTQ4Q02QW00
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Tue, 22 Mar 2022 15:42:55 GMT
etag: "a927362a975051e5d7361d860d8ffba7"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 34982
accept-ranges: bytes
server: cloudflare
cf-ray: 771ca5ca99d81c0e-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 388900, version 769.768\012- data
Size:   388900
Md5:    a927362a975051e5d7361d860d8ffba7
Sha1:   6b97f2ea63d6e7e04006d0366b87697fb4a594d0
Sha256: 121b176974226dbc9b1ab227becb657d40b88d2bb7010a746c2360c31d7c373e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 29 Nov 2022 16:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /zPGxWr0/46534653647534676.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 91891
last-modified: Thu, 02 Jun 2022 16:46:06 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 303 x 303, 8-bit/color RGBA, non-interlaced\012- data
Size:   91891
Md5:    57d5740d17ec9379776eaf99558558fe
Sha1:   926662fec0f40fa13f394240def72bbb5106dbb5
Sha256: 5a574efb77e8690faf8f57000749456bb7e466dad430f46f64c497f86fd7f06a
                                        
                                            GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join-grup56803.pft.lol
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.227
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 01:47:01 GMT
expires: Mon, 27 Nov 2023 01:47:01 GMT
cache-control: public, max-age=31536000
age: 224963
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size:   37924
Md5:    e08be6d5d433944f7ad52902e4d24db5
Sha1:   e2600c1d60d12d397b3ee44411a021231d71e974
Sha256: 450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2911
Cache-Control: max-age=133759
Date: Tue, 29 Nov 2022 16:16:24 GMT
Etag: "63858c78-117"
Expires: Thu, 01 Dec 2022 05:25:43 GMT
Last-Modified: Tue, 29 Nov 2022 04:37:12 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /fluency-systems-filled/48/undefined/audio-wave.png HTTP/1.1 
Host: img.icons8.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.76.9.21
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 359
x-dns-prefetch-control: off
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
access-control-expose-headers: Content-Disposition
from-cache: false
memory-cache: false
from-svg-cache: true
memory-svg-cache: false
icon-id: Y7C0l9BrAqaE
icon-format: png
icon-size: 48
last-modified: Tue, 29 Nov 2022 02:12:05 GMT
cache-control: public, max-age=302400
not-found-platform: false
version: 0.1.0-SNAPSHOT.20221127210159775
x-accel-expires: @1670040984
server: CDN77-Turbo
x-77-nzt: AblMCRSib7+h
x-77-nzt-ray: af5856301d9403ad5830866391248024
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   359
Md5:    e98aa0ed84836085b8405e3412db1bf9
Sha1:   6586fd580b786baba92c3d040f6e5688bcff58d1
Sha256: e99f47a31f1787ea1e92693ee50fbeac9c1ac9147fef0bc4d7adf8aca8f63e9e
                                        
                                            GET /gT6K7YD/Screenshot-482.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 130973
last-modified: Thu, 02 Jun 2022 18:27:48 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 362 x 362, 8-bit/color RGBA, non-interlaced\012- data
Size:   130973
Md5:    41145905f6c93983fc655f123e3698df
Sha1:   e302bd96002cea7502817fa4bb03d34b1cd0a9f9
Sha256: 16b6cd19f7d749d71547c232906e000c3bca337bf148a237fde81726371eb129
                                        
                                            GET /gRDdQ9b/9429795792947.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 158442
last-modified: Thu, 02 Jun 2022 17:00:14 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 388 x 388, 8-bit/color RGBA, non-interlaced\012- data
Size:   158442
Md5:    fa7067501d90776a919c124c86c3f885
Sha1:   006d2b42a0aaf675847aaea80e1ff0cea4b10a20
Sha256: 4256e8caf9b1ec39378834c37f8ce7c3d277bf3c9838890f2f506bb9396f6a1a
                                        
                                            GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 
Host: stackpath.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.18.11.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 15185338
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 771ca5c8bf310b39-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   176320
Md5:    8579c0c2dd57863e817451853b894099
Sha1:   4ebbaa9bb3c922d2106681ee8b7fcd26b3f9d834
Sha256: 32bc1143e7b0052d875a10f9c38ffafd1d9ad83eb52080b52a2b8d120b80aa1f
                                        
                                            GET /Pw9y89b/Screenshot-479.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 316853
last-modified: Thu, 02 Jun 2022 18:22:42 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 359 x 359, 8-bit/color RGBA, non-interlaced\012- data
Size:   316853
Md5:    816caaa89266a87a166c71203be0aeca
Sha1:   416e2d3c3168a36440e9b9fe00791a8f278f80b1
Sha256: ef914d3876c501446748c2caa5cfba5079fc416a4f35d8d01222aadd5d3e6118
                                        
                                            GET /0Vz10jH/Screenshot-475.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 352537
last-modified: Thu, 02 Jun 2022 18:17:08 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 549 x 549, 8-bit/color RGBA, non-interlaced\012- data
Size:   352537
Md5:    7025f2241087a4e0c826f672bb25ec8c
Sha1:   0127c0e084508d781f00bc36b126399379450619
Sha256: 80393fad0b6330323706e86ff41d366557ed3bece39bec9337df002c407ed752
                                        
                                            GET /61VRwgD/Screenshot-476.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 346845
last-modified: Thu, 02 Jun 2022 18:18:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 362 x 362, 8-bit/color RGBA, non-interlaced\012- data
Size:   346845
Md5:    7e692b666df4b7f2f08f9bee65d0676c
Sha1:   e4c76999565ecd52e15d5fbcccb312ec9b07caf6
Sha256: 82d77c0d54019406adff7b06fb6c158531075f561973188c308697e4cb8b8504
                                        
                                            GET /TrgcCx9/Screenshot-478.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 523432
last-modified: Thu, 02 Jun 2022 18:21:31 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 480 x 480, 8-bit/color RGBA, non-interlaced\012- data
Size:   523432
Md5:    93be89ac4a6cdb36cde20170b788c4f6
Sha1:   39c73b798199f2875d9fcb69e0c3dc9493a3bc0f
Sha256: 510fc318e93da57f63a9208392ab58848e2075f8e7d7193bfb57da0e95fcfafe
                                        
                                            GET /WcYTKm4/Screenshot-470.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 537292
last-modified: Thu, 02 Jun 2022 18:10:02 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 528 x 528, 8-bit/color RGBA, non-interlaced\012- data
Size:   537292
Md5:    e0db2e91159abe16a1469969146719d6
Sha1:   0b4168c6aece6be5c2b16cbbe823769bd03611e0
Sha256: 86b100a2e35dfff7bb41a95d489bf2f54f90467320cb839e9652747177935892
                                        
                                            GET /gh/AlexHostX/another/main/walxa/wbga.png HTTP/1.1 
Host: cdn.statically.io
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.1.91
HTTP/2 404 Not Found
content-type: text/html
                                        
content-encoding: gzip
access-control-allow-origin: *
access-control-expose-headers: *
cache-control: public, max-age=300
date: Tue, 29 Nov 2022 16:16:26 GMT
etag: W/"9a05d7a49a6900332d6ed1f6b873def68de1e3d2c890afb097ce2a54a903d73f"
server: statically
strict-transport-security: max-age=31536000; includeSubDomains; preload
timing-allow-origin: *
vary: Accept-Encoding
x-cache: MISS
x-content-type-options: nosniff
x-served-by: cache-bma1637-BMA
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 392
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   392
Md5:    b8bc4541631c2cb83db3296dcdd76708
Sha1:   cadc7c1a19a8a75471aae4c37459b3de96dc7f22
Sha256: 57e98935914766060dd7f3911b82a3379da6caba348b86cdc2ae39fd62c5849a
                                        
                                            GET /Y3CY8nS/Screenshot-471.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 549996
last-modified: Thu, 02 Jun 2022 18:11:26 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 553 x 553, 8-bit/color RGBA, non-interlaced\012- data
Size:   549996
Md5:    7aa4290e69248d7a3f04dce52f48597d
Sha1:   efe4283d1b050111996e4cb022db32a76184c1db
Sha256: 6b1738cf08b1ddb76e92b521f3e70016ce0ea28e6a561abcf190b4c7f752c5d8
                                        
                                            GET /crNShLW/Screenshot-473.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 533677
last-modified: Thu, 02 Jun 2022 18:14:22 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 577 x 557, 8-bit/color RGBA, non-interlaced\012- data
Size:   533677
Md5:    6e626984b94a7007cc77346570c8f5d6
Sha1:   28fc8e74cd288e84784cb5267ec620644501d172
Sha256: 8df6dc3a07990bf5407fb04ce3a8ecb77d4f554dd59dd45206b319b20964a529
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19169
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 16:16:26 GMT
Connection: keep-alive

                                        
                                            GET /Y01W8HN/Screenshot-484.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 596505
last-modified: Thu, 02 Jun 2022 18:35:56 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 638 x 638, 8-bit/color RGBA, non-interlaced\012- data
Size:   596505
Md5:    a9cd240433adc116f9ef32b5d8a42a73
Sha1:   c82b87bed4dde45f3c3829a8a1c9efabac646e8a
Sha256: 8eadd8e2189c9248a2a3c124c234ab7a11fb5a28f212a98a2dddc4d51315382d
                                        
                                            GET /n0kwJLx/Screenshot-474.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 560832
last-modified: Thu, 02 Jun 2022 18:15:28 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 535 x 535, 8-bit/color RGBA, non-interlaced\012- data
Size:   560832
Md5:    5755f306e29c7596dba86d03012600e8
Sha1:   6c168841bd5630fe8ed15c5fd374fc941be303f8
Sha256: 43c7a700d61cc82470e948a6df1ff13d1227592a5ace2362e8bdd7aa67d48f4b
                                        
                                            GET /pdydfWp/Screenshot-481.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 591927
last-modified: Thu, 02 Jun 2022 18:26:15 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 605 x 605, 8-bit/color RGBA, non-interlaced\012- data
Size:   591927
Md5:    0693e8dd8a17c45fa451d5934dafef1f
Sha1:   7501394b74d91365d2423af32572956a9225c913
Sha256: 7f7b7112145ba0eeaa8586b9d48cf3c1f1a1a7c047b2dd4acbfd5dab9e7bd224
                                        
                                            GET /ssNMFTh/Screenshot-483.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 729896
last-modified: Thu, 02 Jun 2022 18:29:19 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 521 x 521, 8-bit/color RGBA, non-interlaced\012- data
Size:   729896
Md5:    5a0599d5a271c17f2ad52990fdd868b4
Sha1:   84822bc909c56e265cc015003037408b546a65fc
Sha256: 754a78e912ba7d714a7513e696d8ae7570d09ef28f441c6359de8362ff06452b
                                        
                                            GET /tMLh5DC/Screenshot-477.png HTTP/1.1 
Host: i.ibb.co
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         162.19.58.160
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx
date: Tue, 29 Nov 2022 16:16:24 GMT
content-length: 746985
last-modified: Thu, 02 Jun 2022 18:20:09 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 639 x 639, 8-bit/color RGBA, non-interlaced\012- data
Size:   746985
Md5:    c0749382dbfdf57bda8abf002ad60f74
Sha1:   627b0eaed380e943929e1b4c97b6df64dde53f68
Sha256: 4b8659e04e0f0347ee89026eb3595b10a7221d2d2d15d0cbcc95bc4eaf1c68d2
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19169
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 16:16:26 GMT
Connection: keep-alive

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.131
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 29 Nov 2022 16:16:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19169
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 16:16:26 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:52:21 GMT
age: 41045
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10176
Md5:    03014221d7f49b50ffc2d1b0a0e75457
Sha1:   772d86ad983042a728ee3490630a9cf1134ad0dd
Sha256: 81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8921
x-amzn-requestid: 98baf100-c007-4c44-89aa-b9cf55fa3f94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnwFYToAMFoWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852964-1227b5a9100c206e0c64f4b2;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: awi49MMMlK51wHPbyBrBkL4N4g9lX3ea40LxyrYbYxe_FsfqelTcTQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:57:05 GMT
etag: "c501de9eaa581a10b0b5fce40b54bb10f57f7c29"
age: 65961
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8921
Md5:    823e92f62ff7b3c2093828817d7f2866
Sha1:   c501de9eaa581a10b0b5fce40b54bb10f57f7c29
Sha256: 7d89669e23682f167b2fe1eff9edc5939112ec66b6b4e6389ef8aec78ccbdfe5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jb1eLyzn88lV_UTId-Fl3OnftDn8c7o5j8d16_nzHCNST_68MZ1pvA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:50:08 GMT
age: 66378
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4417
Md5:    a2a5c8d4113d282600462749315f2c4f
Sha1:   e2b4d2e15bb7c086333c0da438873e4c139ba931
Sha256: 9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19169
Expires: Tue, 29 Nov 2022 21:35:55 GMT
Date: Tue, 29 Nov 2022 16:16:26 GMT
Connection: keep-alive

                                        
                                            GET /AlexHostX/logAlex/391a0879c14c7ba91729a2271cfc42f3f874c190/facebook_text.png HTTP/1.1 
Host: raw.githubusercontent.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://join-grup56803.pft.lol/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         185.199.110.133
HTTP/2 404 Not Found
content-type: text/plain; charset=utf-8
                                        
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 6D32:97B6:96F73:F7B05:6386305A
accept-ranges: bytes
date: Tue, 29 Nov 2022 16:16:26 GMT
via: 1.1 varnish
x-served-by: cache-bma1646-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669738586.082717,VS0,VE93
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: 45b8748186e75382ea0a51542f3d93a7ceb5b902
expires: Tue, 29 Nov 2022 16:21:26 GMT
source-age: 0
content-length: 14
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   14
Md5:    3be7b8b182ccd96e48989b4e57311193
Sha1:   78fb38f212fa49029aff24c669a39648d9b4e68b
Sha256: d5558cd419c8d46bdc958064cb97f963d1ea793866414c025906ec15033512ed
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:01:17 GMT
age: 47709
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4916
Md5:    83c1fedec73299637cc7dc47c48af758
Sha1:   2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
Sha256: 1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:55:32 GMT
age: 48054
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9430
Md5:    1f434933b5bd6377d299ada22d1ae7ef
Sha1:   075531f525e625b117b2497f31139c9824d0e9c5
Sha256: b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.20.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 29 Nov 2022 16:16:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "5EAA8723A31800D65D4AAAB1BD98C5D04AB759CD"
Expires: Wed, 30 Nov 2022 03:00:00 GMT
Last-Modified: Tue, 29 Nov 2022 15:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2714
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 771ca5d3acf0b527-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    f02fec06a2df171ceaff60e870b5bd10
Sha1:   98dc9910df0aaf189c97b6b2acf33098eff32e3b
Sha256: 7427c2de921f2ad9d50c2ae08e61c343b3d4961485e25b50d5935ce9eddd9e70
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc326607e-c0fa-4e9d-b8d4-1c9173793bed.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9376
x-amzn-requestid: c52b3092-90d2-4289-b6e0-ab99c9d4710a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPmz3EVUoAMFWUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382eb4b-39f46c89238eff696e9f2dba;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 04:44:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ofQEhaEiX1vE25a_1xHeab9Px9zgGpk8omlX_aHmLE1oN1aZTPzWxQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:58:57 GMT
age: 65849
etag: "28c165bac8cf68cd1b0763c311aece00672cb3a5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9376
Md5:    cce27a1fe8c0222811a5ce0e7f89e1cb
Sha1:   28c165bac8cf68cd1b0763c311aece00672cb3a5
Sha256: 4530e34a47ef78c2c2b0d34a0511253a61f1927b192ab42f82361002ff10819e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.trust-provider.cn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         47.246.44.205
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Tengine
Transfer-Encoding: chunked
Connection: keep-alive
date: Tue, 29 Nov 2022 16:04:27 GMT
last-modified: Sat, 26 Nov 2022 16:17:47 GMT
expires: Sat, 03 Dec 2022 16:17:46 GMT
etag: "d1074235f8821d4a2a5d54a07c89e65ce5b0b2a7"
cache-control: max-age=374582,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 771c9447dd686927-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669737867
via: cache14.l2de2[0,0,304-0,H], cache8.l2de2[1,0], cache3.se1[21,20,200-0,H], cache3.se1[22,0], cache8.se1[24,0]
age: 719
x-cache: HIT TCP_REFRESH_HIT dirn:2:146978009
x-swift-savetime: Tue, 29 Nov 2022 16:16:26 GMT
x-swift-cachetime: 1081
timing-allow-origin: *, *
eagleid: 2ff62c9c16697385869293410e, 2ff62c9c16697385869293410e

                                        
                                            POST / HTTP/1.1 
Host: ocsp.trust-provider.cn
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         47.246.44.205
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Tengine
Transfer-Encoding: chunked
Connection: keep-alive
date: Tue, 29 Nov 2022 16:04:27 GMT
last-modified: Sat, 26 Nov 2022 16:17:47 GMT
expires: Sat, 03 Dec 2022 16:17:46 GMT
etag: "d1074235f8821d4a2a5d54a07c89e65ce5b0b2a7"
cache-control: max-age=374582,s-maxage=1800,public,no-transform,must-revalidate
x-ccacdn-proxy-id: mcdpinlb6
x-frame-options: SAMEORIGIN
cf-cache-status: REVALIDATED
cf-ray: 771c9447dd686927-FRA
accept-ranges: bytes
ali-swift-global-savetime: 1669737867
via: cache14.l2de2[0,0,304-0,H], cache8.l2de2[1,0], cache3.se1[21,19,200-0,C], cache3.se1[22,0], cache4.se1[24,0]
age: 719
x-cache: HIT TCP_MEM_HIT dirn:2:146978009
x-swift-savetime: Tue, 29 Nov 2022 16:16:26 GMT
x-swift-cachetime: 1081
timing-allow-origin: *, *
eagleid: 2ff62c9816697385869373191e, 2ff62c9816697385869373191e

                                        
                                            GET /swoole/?actid=2020&r=index/getCountry&_only_service_response_=1 HTTP/1.1 
Host: na.apps.amsoveasea.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://join-grup56803.pft.lol
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         129.226.2.89
HTTP/2 200 OK
content-type: text/html
                                        
date: Tue, 29 Nov 2022 16:16:27 GMT
content-length: 55
server: nginx
access-control-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   55
Md5:    282321d0e634380516dc9b071d902b0e
Sha1:   946b6642e5920c21249381cdff0539a340076401
Sha256: 8558e2e54a70e405fcf4291549fbdcfdd9e045cf6fc45b06247dc92a45127ac3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5917
Cache-Control: max-age=160873
Date: Tue, 29 Nov 2022 16:16:27 GMT
Etag: "6385eaa7-1d7"
Expires: Thu, 01 Dec 2022 12:57:40 GMT
Last-Modified: Tue, 29 Nov 2022 11:19:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /rsrc.php/yz/r/lOol7j-zq4u.svg HTTP/1.1 
Host: z-p3-static.xx.fbcdn.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         31.13.72.54
HTTP/2 200 OK
content-type: image/svg+xml
                                        
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 15 Nov 2023 17:52:39 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: vQiA34i6I9zhuN5oMyk4pQ==
x-fb-debug: JirHgD6XBQNjQitS38g7ZnJm497q2+fj63jpgXPoJ08tMgDX3gTIrBRC+vEQANDkiFwevtEpAlzGncXk9PCB5g==
content-length: 1145
date: Tue, 29 Nov 2022 16:16:27 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2647)
Size:   1145
Md5:    bd0880df88ba23dce1b8de68332938a5
Sha1:   8be9792babd149d9a4bedb0562845f90c853022d
Sha256: 512f22d9e403f73d98088432549f970e937655bcddf73ac64c5ff4ebe1ef6b8b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5917
Cache-Control: max-age=160873
Date: Tue, 29 Nov 2022 16:16:27 GMT
Etag: "6385eaa7-1d7"
Expires: Thu, 01 Dec 2022 12:57:40 GMT
Last-Modified: Tue, 29 Nov 2022 11:19:03 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /whatsapp HTTP/1.1 
Host: join-grup56803.pft.lol
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         104.21.95.2
HTTP/2 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
                                        
date: Tue, 29 Nov 2022 16:16:23 GMT
location: http://join-grup56803.pft.lol/whatsapp/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N%2FWCpD0zP7zfUX98CdMG79LqjENqh3SPcqmSsE%2BVhflVvG7nnGaIbyjeLROxIEtHoNVmCRxMRotQvpjsiySq4Olwmp1dfO2LKWrY2PwhNO3QXjivDstYOXo1gCTYsJ%2FMRmSTEbWQAJzV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 771ca5c3fd35b4f9-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - openphish: WhatsApp
    - fortinet: Phishing
                                        
                                            GET /releases/v6.1.1/css/all.css HTTP/1.1 
Host: site-assets.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.18.23.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
x-amz-id-2: 332zxxLyeOA0bVHaDihkoNN8z15TpqoPHwlgSqo0+JYF9Eb1EbFs+dM6zZXyMDQJzxobqXmUSog=
x-amz-request-id: DBBNDRR8JR1BQ6BC
last-modified: Tue, 22 Mar 2022 15:39:41 GMT
etag: W/"325672b036bab9b57f6873aed5eccc43"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 21756509
vary: Accept-Encoding
server: cloudflare
cf-ray: 771ca5c8dc78b503-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /footericon@3.7.0/icon.map.js HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         104.16.122.175
HTTP/2 404 Not Found
content-type: text/plain; charset=utf-8
                                        
date: Tue, 29 Nov 2022 16:16:25 GMT
access-control-allow-origin: *
etag: W/"24-ldjmCDfHyO1f+TJpmBNz8R4FL5M"
via: 1.1 fly.io
fly-request-id: 01GK22SPDXQWAXMCE8HCS17X4Y-ams
cf-cache-status: EXPIRED
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771ca5c90ef8b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /boxicons@2.0.9/css/boxicons.min.css HTTP/1.1 
Host: unpkg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://join-grup56803.pft.lol/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.16.122.175
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Tue, 29 Nov 2022 16:16:24 GMT
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"f925-BeqWOuFeYgoFGuw/jd5Lb4VJnJY"
via: 1.1 fly.io
fly-request-id: 01FZVE9XVWJMBTMXMQTG7BWXWH-ams
cf-cache-status: HIT
age: 20623909
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 771ca5c88e55b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---