Report - pagalworld.icu/hits/rakesh-roshan/actor

Report Overview

Submitted URL
pagalworld.icu/hits/rakesh-roshan/actor
IP
104.21.1.144
ASN
#13335 CLOUDFLARENET
Submitted
2022-11-27 17:58:03
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	9.8 kB	23.36.76.226
addresseepaper.com	18169	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	277 B	471 B	34.160.73.230
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
pagalworld.icu	361111	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	769 B	43 kB	172.67.152.66
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	602 B	705 B	142.251.1.156
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
reproductiontape.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	467 B	173.233.137.44
unseenreport.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	846 B	192.243.59.20
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	44 kB	142.250.74.168
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	800 B	33 kB	104.18.11.207
simplewebanalysis.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	774 B	812 B	18.185.190.54
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.214.64.191
img.pagalworld.icu	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	15 kB	932 kB	172.67.152.66
pl16426636.alternativecpmgate.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	330 B	21 kB	192.243.59.12
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	3.0 kB	143.204.42.88
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	53 kB	34.120.237.76
cdn.creative-bars1.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	76 kB	172.64.109.13
friendshipmale.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	277 B	28 kB	104.21.234.92
banquetunarmedgrater.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	291 B	327 B	192.243.61.227
phortaub.com	136174	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	62 kB	139.45.197.250
my.rtmark.net	9054	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	472 B	742 B	139.45.195.8
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	297 B	1.2 kB	142.250.74.10
l.sharethis.com	4794	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	398 B	3.126.95.118
cdn.barscreative1.com	25648	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	441 B	386 B	45.133.44.3
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	5.9 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.3
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	32 kB	172.217.21.170
pl15832515.cpmprofitablenetwork.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	332 B	14 kB	173.233.137.60
soldierreproduceadmiration.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.7 kB	9.1 kB	173.233.137.60
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.2 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-27	medium	cdn.barscreative1.com/sb/interstitial/software/flashPlayer/mac/multi/1/index.html	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-27	medium	reproductiontape.com	Sinkholed
2022-11-27	medium	banquetunarmedgrater.com	Sinkholed
2022-11-27	medium	soldierreproduceadmiration.com	Sinkholed
2022-11-27	medium	soldierreproduceadmiration.com	Sinkholed
2022-11-27	medium	soldierreproduceadmiration.com	Sinkholed
2022-11-27	medium	soldierreproduceadmiration.com	Sinkholed
2022-11-27	medium	soldierreproduceadmiration.com	Sinkholed
2022-11-27	medium	soldierreproduceadmiration.com	Sinkholed
2022-11-27	medium	soldierreproduceadmiration.com	Sinkholed
2022-11-27	medium	soldierreproduceadmiration.com	Sinkholed
2022-11-27	medium	unseenreport.com	Sinkholed
2022-11-27	medium	unseenreport.com	Sinkholed

JavaScript (17)

	URL	Size	First Seen	Last Seen
	banquetunarmedgrater.com/advertisers.js	0 B	2023-03-07	2024-05-05
Pretty URL banquetunarmedgrater.com/advertisers.js IP 192.243.61.227 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-05 01:39:45 Times Seen37351528 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	pagalworld.icu/hits/rakesh-roshan/actor	155 B	2023-03-11	2023-03-11
Pretty URL pagalworld.icu/hits/rakesh-roshan/actor IP 172.67.152.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:28:56 Last Seen2023-03-11 21:28:56 Times Seen1 Hash 8cbf52db74c4288d4302b247cff8a1d2 e5fb9eb7228644d234f1bfd4bc120945dfbf7f03 c9f5850f8f9919a02c4f48da9f174b5dd7e90f6d3fd63809f37d6a6c20c656a7 Loading...

	pl16426636.alternativecpmgate.com/ec/08/f8/ec08f8d38647fd47cf465d93241b63d7.js	60 kB	2023-03-11	2023-03-11
Pretty URL pl16426636.alternativecpmgate.com/ec/08/f8/ec08f8d38647fd47cf465d93241b63d7.js IP 192.243.59.12 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:28:56 Last Seen2023-03-11 21:28:56 Times Seen1 Hash 77df8ba0295a5d305881e5ffa14e5011 2a5179f20dc16343df8b57990c342f83f5cfdea5 ae08115cb76261124bf7da4020ca92d6d05d0e832f9a015935e2ad3c184bfb67 Loading...

	pagalworld.icu/hits/rakesh-roshan/actor	60 kB	2023-03-11	2023-03-11
Pretty URL pagalworld.icu/hits/rakesh-roshan/actor IP 172.67.152.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:28:56 Last Seen2023-03-11 21:28:56 Times Seen1 Hash 75a5ca90eb59a592b10dcb47e6e9f2a6 f20131d1df25b2f082f396f312045592a164c74f 1d33708cabf3e1ae334286524a178c87bad72d32ad4e33348b2b5892a57f46e7 Loading...

	pagalworld.icu/hits/rakesh-roshan/actor	98 kB	2023-03-11	2023-03-11
Pretty URL pagalworld.icu/hits/rakesh-roshan/actor IP 172.67.152.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:16:59 Last Seen2023-03-11 22:16:10 Times Seen1 Hash 5f80c8eb753898d27f5fb26afe52b14d eefa351bfc41556385afaaf718da738be44f7158 1457cd0f9f509a2452e9f1ab9f0f4b5fad2f27d7d91003f122367dac9b1b8fe5 Loading...

	http:blank	10 kB	2023-03-11	2023-03-11
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:28:56 Last Seen2023-03-11 21:28:56 Times Seen1 Hash d8175effb6fc0d7bc6f8a8ae7d1bb106 9fd50cb9728be0d3b3c46e50cb4a899674a9d17e cfde90ab2905b53635bb21320ff1dd146ee8d10057163e94fc49ecfb24254958 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-05-04
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-05-04 19:13:00 Times Seen1637 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	buttons-config.sharethis.com/js/5dacb03960a0a30019a71d5d.js	424 B	2023-03-11	2023-03-11
Pretty URL buttons-config.sharethis.com/js/5dacb03960a0a30019a71d5d.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:28:56 Last Seen2023-03-11 21:28:56 Times Seen1 Hash d588e673dda17cc5c0c6fff378f4ab4e 63dca2723a79c0026eebf4a95224a4436f301aa8 fa9f4595b4805189a6d58a5060b02b69abb33e17186ebd8875989a0f3d408e8a Loading...

	maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js	38 kB	2023-03-07	2024-05-02
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-05-02 08:44:23 Times Seen1109 Hash 3d8308804264c5b751f6e54734c46897 369a832ef7f8a57e9b59b84b181fdb4fc9125050 909ae563eb34f7e4285a3a643ab5d7c21c5e6a80f3f455b949ac45f08d0389b4 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js	88 kB	2023-03-07	2024-05-05
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js IP 172.217.21.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-05-05 01:03:50 Times Seen97015 Hash 220afd743d9e9643852e31a135a9f3ae 88523924351bac0b5d560fe0c5781e2556e7693d 0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a Loading...

	pagalworld.icu/hits/rakesh-roshan/actor	26 kB	2023-03-07	2024-05-04
Pretty URL pagalworld.icu/hits/rakesh-roshan/actor IP 172.67.152.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:51 Last Seen2024-05-04 23:09:37 Times Seen2089 Hash a912e7afe74b51fdd03b28bf67e7d409 85004dfe087af5a730261c85262661d89b3d2516 706b3882753d8f81cfcf35aa2623303b1b380c8106686a4ad12a1fae23cf4650 Loading...

	cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js	84 kB	2023-03-07	2024-05-04
Pretty URL cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js IP 172.64.109.13 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:11 Last Seen2024-05-04 10:08:36 Times Seen566 Hash 6326c600df01e3bfb9b40e1aa08176f8 6b4fb754d29b297b539bf62ba9b4eaf0f33f314a df34524351c5fabc921a89183b5da5667aebd7b9e9a1c52255c76ff722935ea3 Loading...

	platform-api.sharethis.com/js/sharethis.js#property=5dacb03960a0a30019a71d5d&product=inline-share-buttons	197 kB	2023-03-08	2023-03-13
Pretty URL platform-api.sharethis.com/js/sharethis.js#property=5dacb03960a0a30019a71d5d&product=inline-share-buttons IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:38 Last Seen2023-03-13 03:12:01 Times Seen1 Hash c8bc939471ef6dab0c390710d339b448 e11ff1d6671b1d8a0df09e4bf1e3b577d36ffea6 f2543598ef1f4ead06a604ac151e0466dd405bd6fcce02c9074567066eb89085 Loading...

	www.googletagmanager.com/gtag/js?id=UA-144863886-2	112 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=UA-144863886-2 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:28:56 Last Seen2023-03-11 21:28:56 Times Seen1 Hash 3dc35fd7fb40b7bfb86035325f5339e4 b34732addc120910a5d5456b16e9586c01051f24 152416247e165753626219c0dbaa13bb2edf155874355fbc48ce0e873cfadf4c Loading...

	pl15832515.cpmprofitablenetwork.com/c6/b9/2c/c6b92c162a22d5dd2c349c5253cbe8a1.js	37 kB	2023-03-11	2023-03-11
Pretty URL pl15832515.cpmprofitablenetwork.com/c6/b9/2c/c6b92c162a22d5dd2c349c5253cbe8a1.js IP 173.233.137.60 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:28:56 Last Seen2023-03-11 21:28:56 Times Seen1 Hash 1f45505c8ad4cf481bb0d434f28c514e 1d2a6940c7344a127f6906da81b5fbf3d81c3574 55bf6dde8da8c805cc6e839ef80cb79851de53e279ea73f5ba52cb9df041de00 Loading...

	phortaub.com/ntfc.php?p=3131271	14 kB	2023-03-11	2023-03-11
Pretty URL phortaub.com/ntfc.php?p=3131271 IP 139.45.197.250 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:17:50 Last Seen2023-03-11 22:16:10 Times Seen1 Hash 7d06780fa64c43c01e7f1c677c79cf49 d8c70ece4c13ec3ed0e9f494b4cd118a993edbbf af8585de9e08996e7ed00ec39ba898764130b0ee7bf234e343b4151030aa643d Loading...

		Size	First Seen	Last Seen
	#1 Write - e245b76f30afdfdf5698815ec5e69344	51 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 21:28:56 Last Seen2023-03-11 21:28:56 Times Seen1 Hash e245b76f30afdfdf5698815ec5e69344 a96f789c111cc6b8bb1c239bcdfba03dba9c740b 3f846d2edaa9605c4220276759a83b591aa8fbce39bc402bb4b8919400226eb4 Loading...

HTTP Transactions (120)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7726
Expires: Sun, 27 Nov 2022 20:06:38 GMT
Date: Sun, 27 Nov 2022 17:57:52 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5636
Cache-Control: max-age=151637
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:52 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 12:05:09 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13343
Expires: Sun, 27 Nov 2022 21:40:15 GMT
Date: Sun, 27 Nov 2022 17:57:52 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: SNPR/5sdFOn2p7M6Ct6+6oucckHVEkWwQZwpNrwCvHrMjq5ukDd/WdzvkAfkl+0oK4Mum0KOUzI=
x-amz-request-id: EBRBQ3JTQA6XS97M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 17:44:43 GMT
age: 789
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 17:17:40 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2412
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

pagalworld.icu/hits/rakesh-roshan/actor

172.67.152.66

200 OK

27 kB

URL HTTP/1.1
pagalworld.icu/hits/rakesh-roshan/actor
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8042), with CRLF, LF line terminators
Size
27 kB (26661 bytes)
Hash
2c24083ff85d14743f5052b88fbe5c9f
9fb92627ae4d6100502cf82026f4177523e7cae5
0f7df2d7c51085c34943ac7b08c570c50eb9aac8303d4db074cef62e17dfba42

HTTP Headers

GET /hits/rakesh-roshan/actor HTTP/1.1
Host: pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 17:57:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=la9w4V6hf12GUbU%2FzIWjCspVjqnDxWi%2F0E13teiQeGpSY5FSCIa%2B0l5yzR9L0E4psM8sf2AkZnLYm1kVVtfgGYRKOV1mupvOeVTr0rhWsg7n%2FYtDKMmd%2FSPfyZCeujZnnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 770cbfaafe07b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2620cb440711056d80ec6ee6a4101116
0de0450475dd899906c36956881f9db5ecad90fd
9a84a21b1cb5e13c925b144beef55b87669a02836087e1a9cf74fa4964ef43f4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3961
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Last-Modified: Sun, 27 Nov 2022 16:51:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2620cb440711056d80ec6ee6a4101116
0de0450475dd899906c36956881f9db5ecad90fd
9a84a21b1cb5e13c925b144beef55b87669a02836087e1a9cf74fa4964ef43f4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3961
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Last-Modified: Sun, 27 Nov 2022 16:51:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js

172.217.21.170

200 OK

31 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP
172.217.21.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65451)
Size
31 kB (30774 bytes)
Hash
81182f4b684635f6bdcbdd907ee66f25
a1f2f151df72ede41397c8131bd47a3ce85575b3
be40946c98d9a78a3c7c9ad097d379ab12549a195bd7a4766919a1d3fd987396

HTTP Headers

GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:00:13 GMT
expires: Wed, 22 Nov 2023 17:00:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 435460
last-modified: Mon, 13 May 2019 14:37:17 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-144863886-2

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-144863886-2
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (43681 bytes)
Hash
f43a9009732d040c421845d527e14683
0a499d51d311b97de9d365619efc481e04f937ca
8fdbf65ebd3a4893a137eb05d83e2f739ba7faf4c0a5dfa1f457c08cfd2036c5

HTTP Headers

GET /gtag/js?id=UA-144863886-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 17:57:53 GMT
expires: Sun, 27 Nov 2022 17:57:53 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43681
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

phortaub.com/ntfc.php?p=3131271

139.45.197.250

200 OK

5.9 kB

URL HTTP/1.1
phortaub.com/ntfc.php?p=3131271
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
C source, ASCII text, with very long lines (14504), with no line terminators
Size
5.9 kB (5939 bytes)
Hash
f50cfddb50d076a1ed20e6f1f8632516
590a5fcddec52d5ce785767aeead1a3ed402f806
a1ef7f14f8ff84e29290c48043e58518b5cb7571694fc5dede0143c929bfd6b2

HTTP Headers

GET /ntfc.php?p=3131271 HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 17:57:53 GMT
Content-Type: application/javascript
Last-Modified: Thu, 24 Nov 2022 15:53:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"637f9392-38a8"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
2620cb440711056d80ec6ee6a4101116
0de0450475dd899906c36956881f9db5ecad90fd
9a84a21b1cb5e13c925b144beef55b87669a02836087e1a9cf74fa4964ef43f4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3961
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Last-Modified: Sun, 27 Nov 2022 16:51:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

img.pagalworld.icu/%20%20Morni%20Ne%20Seekha%20-17519-sd.jpg

172.67.152.66

200 OK

11 kB

URL HTTP/2
img.pagalworld.icu/%20%20Morni%20Ne%20Seekha%20-17519-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
11 kB (10763 bytes)
Hash
11455e632770ab2f61af13e65ce5ffc0
2f5b5f13e17989286f494540fc3e2de4c4626139
d99a9cb865b074f3c5527718ff4cb46d4234ba72e65a1bd179c8a20e0c46de5f

HTTP Headers

GET /%20%20Morni%20Ne%20Seekha%20-17519-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 10763
last-modified: Fri, 19 Mar 2021 01:01:54 GMT
etag: "2a0b-5bdd9430c8480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tj5xNuvhmb7%2FqNX3E5DMX%2F%2BWK60BX4IhypBXUum%2BhXeAyV%2BTcsOOcP9nMIUnkHsTgtwnwgJ9uF1qfJxBQ1oJbztP50HrNZ06c%2FwrTMhCPKdVy7CD5KmK%2BdpHkJCOvFz3BK5uwYM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf990db4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: nginx
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: nginx
Content-Length: 279

img.pagalworld.icu/%20%20Ham%20Ne%20Tum%20Ko%20Dekha%20-17151-sd.jpg

172.67.152.66

200 OK

27 kB

URL HTTP/2
img.pagalworld.icu/%20%20Ham%20Ne%20Tum%20Ko%20Dekha%20-17151-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
27 kB (26898 bytes)
Hash
a61fdbb6ddcc8d93707ebd18c34b86f5
38ac5074cff619306b6d641d8b1710967d585af6
b3bf4c64b527be70f24a136d460aa7e92b0befe6f6fd3391ca806e7d141a66b1

HTTP Headers

GET /%20%20Ham%20Ne%20Tum%20Ko%20Dekha%20-17151-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 26898
last-modified: Fri, 19 Mar 2021 00:59:22 GMT
etag: "6912-5bdd939fd2e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vCb6R1Wxp8dJw%2Bk082xh8FGxaowHGQ8uv64%2BDTt7%2BMMzWkSmUUfOousXesQvBaHV2l0JsrfWnH0Hsc%2BN%2BXEi4Qd5wLLIBqS0OkGNcZzB%2B%2FrU2yDHkr70EeS1BkwxIofltGKvPRc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9911b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/%20%20Ae%20Lo%20Pyar%20Ke%20Din%20Aaye%20-17153-sd.jpg

172.67.152.66

200 OK

28 kB

URL HTTP/2
img.pagalworld.icu/%20%20Ae%20Lo%20Pyar%20Ke%20Din%20Aaye%20-17153-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
28 kB (28264 bytes)
Hash
73a3930fdb29ca9fcde28f1d59a40533
6864ab2a7238be6fa52f8d6ef27f14eafa99fac8
816d82467bc0a3511e89a34bfcb4fc6dcf48eaff425c27659757691c4587883d

HTTP Headers

GET /%20%20Ae%20Lo%20Pyar%20Ke%20Din%20Aaye%20-17153-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 28264
last-modified: Fri, 19 Mar 2021 00:59:24 GMT
etag: "6e68-5bdd93a1bb300"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5TFOJySiL3wCBX444yLHxpbV4x9Hq9njZkTndPX%2BTeZy1emtVhlN6vw%2Bj933AOUvzAWpkSg5cM7U5St0rQnhXphq4BqnM3z3Xe5JiCTqMlpQlNKPPwMtkNR2WontwImr3OkUcvk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98fbb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279

img.pagalworld.icu/%20%20Pyar%20Ke%20Mod%20Par-17648-sd.jpg

172.67.152.66

200 OK

29 kB

URL HTTP/2
img.pagalworld.icu/%20%20Pyar%20Ke%20Mod%20Par-17648-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
29 kB (29036 bytes)
Hash
6263c8438979ff484b630f6708d94f83
a4bd171e9d5ea8067d63f3f8e39110cdb8b6c19c
6df9280e3d0b5646b4b4ee475d2b4f236fde88f0e492b1608b811fed533809e1

HTTP Headers

GET /%20%20Pyar%20Ke%20Mod%20Par-17648-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 29036
last-modified: Fri, 19 Mar 2021 01:02:58 GMT
etag: "716c-5bdd946dd1480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9aGG%2BV2y3KSyl6yEjdHn%2BMWprjfsXa15Vz42SqIqyPr534wWpvkecS7V%2Fo94FMWFarNhegeAb3o5SDBO5kaT0bkFGTbpOZV9fW5zAYLhKdYC3IVfSk4e%2BoQPgyRm2NXlcwNLm9g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98feb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Tum%20Bahar%20Kahan%20Chale%20Pyare-12243-sd.jpg

172.67.152.66

200 OK

27 kB

URL HTTP/2
img.pagalworld.icu/Tum%20Bahar%20Kahan%20Chale%20Pyare-12243-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
27 kB (26571 bytes)
Hash
8ece9a326fa8451390d565d43a297f31
daacd2d7cfa00d0b1f0615170018976936841c07
3f0c07c420a13a8a387446406f460ee330e446ef6789f475b313346c1fb3fc40

HTTP Headers

GET /Tum%20Bahar%20Kahan%20Chale%20Pyare-12243-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 26571
last-modified: Fri, 19 Mar 2021 00:17:30 GMT
etag: "67cb-5bdd8a4431a80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y%2BwSKMR8AN%2FmA7AIz5zeUlm3UZ6EGrO60cNq9PCLSjd%2FJ02USAduCqplEOl687zjSNlsoEd3QSZjyRHYMt4GVeB7VJZ9RlyLFa1P7L8GfHvJZ%2F857167NEPz84bZS2cEzoGjCbU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9907b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Ek%20Dhoondho%20Milte%20Hain%20Hazaron-12241-sd.jpg

172.67.152.66

200 OK

22 kB

URL HTTP/2
img.pagalworld.icu/Ek%20Dhoondho%20Milte%20Hain%20Hazaron-12241-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
22 kB (22545 bytes)
Hash
9be0daaff7bef8f575b51573cb053d5d
ee839ecba9cab32899a18f1ebb9cc2c1f78d151b
6bb43642dc9860191e2207f1de19d93077fd8108e8ed0625b1b29bd6f0c43b11

HTTP Headers

GET /Ek%20Dhoondho%20Milte%20Hain%20Hazaron-12241-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 22545
last-modified: Fri, 19 Mar 2021 00:17:30 GMT
etag: "5811-5bdd8a4431a80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WQLvvCGqDQQIeyTMrEWvJHRKaoeJ%2FelthoJeoc5qGjyrLP%2FX2AZwbpG41U%2FT9FtJ9ZKFkpNM0odhO0BmzfnFj5DMzfT%2BfABYPEtKwx%2F%2F274S%2BkqezpHEK9zfuRvkyBK5dwSCZ2Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9905b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Kuchh%20Log%20Mohabbat%20Ko-12322-sd.jpg

172.67.152.66

200 OK

26 kB

URL HTTP/2
img.pagalworld.icu/Kuchh%20Log%20Mohabbat%20Ko-12322-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
26 kB (25635 bytes)
Hash
bffce57394db3aba2d26f4e24bdc2b28
d3d58bd77c6f9fd9ab8e716b77a3b8449a9dfdd7
735c08fe5e1f68fc699a24e9b25d542a9e3c1c141766b6123cb098db79587a51

HTTP Headers

GET /Kuchh%20Log%20Mohabbat%20Ko-12322-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 25635
last-modified: Fri, 19 Mar 2021 00:18:12 GMT
etag: "6423-5bdd8a6c3f900"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q2iCbxJlj8k9HPo1qLceZSUuLQLGFm7Q9QoMWR5Tgdn%2FcS0C42ya9epNoETvAgZuITRJ5CQIesbJV4pIQwsFZnyLsLV%2FJJNwVXQ0KapIPauRUSWgZL0Fkc%2BmZpz565MaIC4P4fM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf990eb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/%20%20Do%20Baaten%20Pyar%20Bhari%20Kar%20Loon%20-16911-sd.jpg

172.67.152.66

200 OK

36 kB

URL HTTP/2
img.pagalworld.icu/%20%20Do%20Baaten%20Pyar%20Bhari%20Kar%20Loon%20-16911-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
36 kB (35640 bytes)
Hash
6ba68b5f8e6314865228d7ecd3030ff1
acfe550af14eea4228e4a1268ce4d66deea0bae3
c1d506cbd4dee3a8f61a3901dbcaecd173b79da71691ca5527bab0e8c44aa078

HTTP Headers

GET /%20%20Do%20Baaten%20Pyar%20Bhari%20Kar%20Loon%20-16911-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 35640
last-modified: Fri, 19 Mar 2021 00:57:42 GMT
etag: "8b38-5bdd934074d80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=18tw2%2FPaLef%2B1vCtMjEr4rTH1vvtNqY%2BT2NX8CQh3iFfXmjzUymIRh3q3MqslI75KnSdYxHsOkMwQztvFHqIbBqVxUY9PE46B6bi6GIGxbFhuY%2F91sai2dpEBTzwrD648CodhXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf990ab4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Tumko%20Hai%20Pyar%20Mana-12762-sd.jpg

172.67.152.66

200 OK

34 kB

URL HTTP/2
img.pagalworld.icu/Tumko%20Hai%20Pyar%20Mana-12762-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
34 kB (34155 bytes)
Hash
171a496355e1cc8ce48dd6ec4852af37
85117edb82cec11fe63625dcf5324949583bf209
2d15b5c8207fadefeb8b89017a3633502cd53c861e3fb5f4ea95e7925e4887b2

HTTP Headers

GET /Tumko%20Hai%20Pyar%20Mana-12762-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 34155
last-modified: Fri, 19 Mar 2021 00:22:06 GMT
etag: "856b-5bdd8b4b68780"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NMnJteBtCcgPqfxzqQzyL%2ByDyFQNfcvYlp2Hkz2%2F9Uza7ie8oDqr95xaWeYDUxQNz4CfMddplR2EK25ISkMfAIQmFVzWDfqTroa1AXgkETNYTX8S1FmCP1yx02Z4yoTSp94w5Xc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98f9b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/%20%20Tarpat%20Beete%20Din%20-17520-sd.jpg

172.67.152.66

200 OK

11 kB

URL HTTP/2
img.pagalworld.icu/%20%20Tarpat%20Beete%20Din%20-17520-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
11 kB (10708 bytes)
Hash
2fcee9ae7f4080ec87750e0a105d4def
860b6bebb466f52371dcaa56b881e290a7d26264
d5c75a3a00dbbe753434e26a34bf485a519328a44c86a5ef705cd6bd8a641b1c

HTTP Headers

GET /%20%20Tarpat%20Beete%20Din%20-17520-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 10708
last-modified: Fri, 19 Mar 2021 01:01:54 GMT
etag: "29d4-5bdd9430c8480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cGCbtl4d9%2BfoanwBbWM%2BRWdQ2pZFkVuUhammQpL3ShR6EZvpgIDQUshnaeG16y7FYFAWb6UuC93yIDFEp2juvt2cjW9h6qq113pDZMC8OXsUVbmhrmEIwEzxe0fgBQ8IY%2Fn%2BvMg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf990cb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/%20%20Sapna%20Mera%20Toot%20Gaya%20-17152-sd.jpg

172.67.152.66

200 OK

26 kB

URL HTTP/2
img.pagalworld.icu/%20%20Sapna%20Mera%20Toot%20Gaya%20-17152-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
26 kB (26027 bytes)
Hash
6d16cbd4b181fa10a7b0bc16009d50b4
1b3646bb6c9b92ec3f2a39ddf8b7bce9cf26b845
f81406598472f54380f9cfd9587ee5199de6ac9a393b253ca8b8e6e5993f780b

HTTP Headers

GET /%20%20Sapna%20Mera%20Toot%20Gaya%20-17152-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 26027
last-modified: Fri, 19 Mar 2021 00:59:22 GMT
etag: "65ab-5bdd939fd2e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pCdiRceXLbxhyNOmkOwELlXaf8Enfckn7bOO4ANYRMsKG%2BeDxv7rbEd25bVeBau3zcq%2FPpkTfIowz3z%2FqMqxmPtmujMfjouWILwO5xqUwvXKRXvp7ZQ9QHRsghp9DZAkkVGJHwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9922b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/2454220px-AankhonAankhonMein.jpg

172.67.152.66

200 OK

20 kB

URL HTTP/2
img.pagalworld.icu/2454220px-AankhonAankhonMein.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 220x296, components 3\012- data
Size
20 kB (19651 bytes)
Hash
549f2eff753977a04f6ae63cd0a25477
8a89ee6f0ce8a7af7fe1957eb13edb8de0f5a5b6
a24c69c05a20a508bf06906b3e1ae431076c1b103afe24d4d8a764c6e4cf087e

HTTP Headers

GET /2454220px-AankhonAankhonMein.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 19651
last-modified: Fri, 19 Mar 2021 00:57:44 GMT
etag: "4cc3-5bdd93425d200"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PbHxaqZl%2BZFhmc3ZbHGbjCsUUwmLSv%2BdiECVqugZm2aD8LHUidcdwHlZpGl8lqb%2BMi0DfZfiwuMNd2DveNd9xVRwHhV13mapxTmFV%2BGNueNvHKsxNFwuvdW361UaWmCOeKCLn5w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9913b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/302140px-Textdocumentwithredquestionmark.svg.png

172.67.152.66

200 OK

1.4 kB

URL HTTP/2
img.pagalworld.icu/302140px-Textdocumentwithredquestionmark.svg.png
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Size
1.4 kB (1440 bytes)
Hash
7ce373d691b801899b0ddff00592b4a1
9e38d054df54383acc51c3b8ecfec9e8ff3cd4df
59b1859159afe995ae732f1aa2f75eaa5f0667ab301df2d88c836636763e1704

HTTP Headers

GET /302140px-Textdocumentwithredquestionmark.svg.png HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/png
content-length: 1440
last-modified: Fri, 19 Mar 2021 00:24:28 GMT
etag: "5a0-5bdd8bd2d4700"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jZpQ2q3NY3hxea%2F%2FOHxOXwZT4nJGSLIaLHCkoSsx6WHPSx75F8Z2VbxDQX3Tc5hdrJ8hSg%2FLil8l%2B5X01uu9ODX8OugkE3JmAm1Z53OXg8%2BmulWMMO4dVmbwEk2HZxIAC%2F5DDyw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9925b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 17:11:12 GMT
cache-control: public,max-age=3600
age: 2801
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

pl15832515.cpmprofitablenetwork.com/c6/b9/2c/c6b92c162a22d5dd2c349c5253cbe8a1.js

173.233.137.60

200 OK

13 kB

URL HTTP/1.1
pl15832515.cpmprofitablenetwork.com/c6/b9/2c/c6b92c162a22d5dd2c349c5253cbe8a1.js
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type
ASCII text, with very long lines (37161), with no line terminators
Size
13 kB (13439 bytes)
Hash
06b02f39c43bff8b1f4abf0f0188473d
3fbc57e615f9bb79692acb88c0f11fbbbe23dfa8
dd2873ff3e3838a84dccc906f2c77b626b05dd44148b7d54e63fa159c7a929d9

HTTP Headers

GET /c6/b9/2c/c6b92c162a22d5dd2c349c5253cbe8a1.js HTTP/1.1
Host: pl15832515.cpmprofitablenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 67f5a053f0a46183fc734889c107236d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

img.pagalworld.icu/322330px-Indiafilmclapperboard28variant29.svg.png

172.67.152.66

200 OK

1.5 kB

URL HTTP/2
img.pagalworld.icu/322330px-Indiafilmclapperboard28variant29.svg.png
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 30 x 31, 8-bit colormap, non-interlaced\012- data
Size
1.5 kB (1542 bytes)
Hash
d867429d417aff49dfcbc9fa4e40e832
6f063fe616886180446e8a47bb6feac48bf59fba
a5441fd28fb0d84cde9a4913351b704e8b57c6b177611fd02a789e71e3df7e7a

HTTP Headers

GET /322330px-Indiafilmclapperboard28variant29.svg.png HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/png
content-length: 1542
last-modified: Fri, 19 Mar 2021 00:28:02 GMT
etag: "606-5bdd8c9eea880"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PoQEGMz0a2gaRkEKEQAiF40mSQke1ebPMd5fc%2BkiSTFUQAS%2FPXwf7a5n3qVIR55TKGXoAEHK9fnnT7Qk5hzOqH47BsI5eU7TJakPF0JbzimIUVZiVaB%2FeevwYa%2FBUcwYldIjmlk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf991cb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/291030px-Indiafilmclapperboard28variant29.svg.png

172.67.152.66

200 OK

1.5 kB

URL HTTP/2
img.pagalworld.icu/291030px-Indiafilmclapperboard28variant29.svg.png
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 30 x 31, 8-bit colormap, non-interlaced\012- data
Size
1.5 kB (1542 bytes)
Hash
d867429d417aff49dfcbc9fa4e40e832
6f063fe616886180446e8a47bb6feac48bf59fba
a5441fd28fb0d84cde9a4913351b704e8b57c6b177611fd02a789e71e3df7e7a

HTTP Headers

GET /291030px-Indiafilmclapperboard28variant29.svg.png HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/png
content-length: 1542
last-modified: Fri, 19 Mar 2021 00:22:08 GMT
etag: "606-5bdd8b4d50c00"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f%2FSOfcaIvug2vSvpie02N34GZ%2B8IACD6Wv9wHMNEUEd4NCvhvv%2BBLvz6i2rriBvIvz1jMZJhFlpQ%2Fj45dO%2F8o6sFeLYKC1XvuDflVPvx25zInQy5eMGrHH%2BJqRvxAHS%2By8aSQhQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9926b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Umr%20Huyi%20Tumse%20Mile-13329-sd.jpg

172.67.152.66

200 OK

10 kB

URL HTTP/2
img.pagalworld.icu/Umr%20Huyi%20Tumse%20Mile-13329-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
10 kB (10150 bytes)
Hash
e5e199b2bf27777ffae19a6aead54856
e03fa5a8f06abbfc307f803456dbbdbf65741906
776af7db6aaf9165362b8a369ca28166bf73873c332410d3a0251667b9c8aed2

HTTP Headers

GET /Umr%20Huyi%20Tumse%20Mile-13329-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 10150
last-modified: Fri, 19 Mar 2021 00:28:00 GMT
etag: "27a6-5bdd8c9d02400"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lm5%2BiRMuuD1VOHr6Tt61MIP9Vz0hU%2B%2BU%2BV87O0rsR9fxPi61XHXfrULqnTvXCi777uo1%2Ffqfj%2B%2B%2FaoRbSvYGt9GWi6%2BZ%2B%2BWzHqGBPB6%2BlvCrHUVMt58%2Fl8By8KxbtekbxC%2BUdfg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9902b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

pl16426636.alternativecpmgate.com/ec/08/f8/ec08f8d38647fd47cf465d93241b63d7.js

192.243.59.12

200 OK

21 kB

URL HTTP/1.1
pl16426636.alternativecpmgate.com/ec/08/f8/ec08f8d38647fd47cf465d93241b63d7.js
IP
192.243.59.12:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document, ASCII text, with very long lines (60145), with no line terminators
Size
21 kB (20704 bytes)
Hash
27d1284d509f8e77ca56bc845e3a9823
34acf4b92a68148dba6011499d259ac5fa907aac
61552db52826d6216075b5d6fb87a2f87d1494ce8c9f0a344747b3e380a829b5

HTTP Headers

GET /ec/08/f8/ec08f8d38647fd47cf465d93241b63d7.js HTTP/1.1
Host: pl16426636.alternativecpmgate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 27 Nov 2022 17:57:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c886fdae72c0c296637ea76f0dee2297
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

img.pagalworld.icu/%20%20Khullam%20Khulla%20Pyar%20Karenge%20-17150-sd.jpg

172.67.152.66

200 OK

28 kB

URL HTTP/2
img.pagalworld.icu/%20%20Khullam%20Khulla%20Pyar%20Karenge%20-17150-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
28 kB (27820 bytes)
Hash
3787a64ddc369050392daabae645d169
8baab38de3a0ab028f6accd28174e48346ff70a2
1b33e58accfd11185f7d1d2d9999717b2a934702137b2a8638580532d9bfa4aa

HTTP Headers

GET /%20%20Khullam%20Khulla%20Pyar%20Karenge%20-17150-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 27820
last-modified: Fri, 19 Mar 2021 00:59:22 GMT
etag: "6cac-5bdd939fd2e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bgxc1QkWiqiCr1SZipoLOxzSvzfYSvp17d7dkR4PLJNTFWhjhgEvgO2BhIz%2B0zxxMdVdoNr1viYKWK6b8QApt%2BlaDIyD2E4FlT9pfyMJyH%2Bxl2%2BxBV7UPA7CHC13vm5cZv5Yzbk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9921b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/%20%20Ram%20Kare%20Allah%20Kare%20-17329-sd.jpg

172.67.152.66

200 OK

22 kB

URL HTTP/2
img.pagalworld.icu/%20%20Ram%20Kare%20Allah%20Kare%20-17329-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
22 kB (21937 bytes)
Hash
61a5a1e0dde6bc34c46f02fb96616cf5
b1711f663c8d9a51c67dff900d7261d0e46e45b3
ada401217eaaf87dec5ff1d3515b7bf3d21825d4cbf274795aefcc1fe3b02a0d

HTTP Headers

GET /%20%20Ram%20Kare%20Allah%20Kare%20-17329-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 21937
last-modified: Fri, 19 Mar 2021 01:00:42 GMT
etag: "55b1-5bdd93ec1e280"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jD3qiLz%2B7hMb7dS7zl40IwTR7yDh17c%2BRk5K7HBRntb6nKM1wgo9O5fayWmzGoEqfKVj%2Bq8kfYeTiCqUhlPB4e5tkfJhi2O5EuSUOVaXbm2AfzDmSHWXSvW3ryW%2ByZBs5LSVZcE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98fab4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Haye%20Re%20Haye%20Tera%20Ghunghta-12086-sd.jpg

172.67.152.66

200 OK

29 kB

URL HTTP/2
img.pagalworld.icu/Haye%20Re%20Haye%20Tera%20Ghunghta-12086-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
29 kB (29384 bytes)
Hash
e70be5e883badc5f64c90cd456a60f01
22c0da203186dc0543ff0c11243983d2872a659e
0c1ce8c759556a47a6dde71b3ff74a6bc6a34dca436a793402cce76dadeacd42

HTTP Headers

GET /Haye%20Re%20Haye%20Tera%20Ghunghta-12086-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 29384
last-modified: Fri, 19 Mar 2021 00:16:06 GMT
etag: "72c8-5bdd89f415d80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PC5GkhcygMTaWm13DGCn%2FklQsDqpTlAvoTHyD0aYY%2Be%2B5hDyyQuGUEHQ3ozd15FWM8AJCyhX18Y9ZgOj7s0zhnuq4Bt8AgneK4CFs8EHbg%2FmOZxvN4me%2FjFyr8FCxOH%2FIO9IMPc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9915b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Tu%20Hai%20Meri%20Diwani-12242-sd.jpg

172.67.152.66

200 OK

28 kB

URL HTTP/2
img.pagalworld.icu/Tu%20Hai%20Meri%20Diwani-12242-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
28 kB (28070 bytes)
Hash
01f8f51924914f034f03b9e720f59ec5
b5aa6cc85bad5c0a0448f9d2c99c7636504045ae
4b9028db10728f99a08ed28d413b96f27cd4158e5eef16017007f19cadf8419c

HTTP Headers

GET /Tu%20Hai%20Meri%20Diwani-12242-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 28070
last-modified: Fri, 19 Mar 2021 00:17:30 GMT
etag: "6da6-5bdd8a4431a80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QI8ctUDowXl5YyZ7HU9kQ1eGEGc77tZ1Brn0QeLrUPmYHcUk1zzWmZAMwmmysgF9VH7QC29jtVzFiXkT3RLXFQ7G0jnoqOKUTgikDNy5qWR3XiWvLHrr%2B1pQMvfYsL9s0OWpPUw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9904b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Mohabbat%20Hamari%20Zamana%20Hamara-9606-sd.jpg

172.67.152.66

200 OK

25 kB

URL HTTP/2
img.pagalworld.icu/Mohabbat%20Hamari%20Zamana%20Hamara-9606-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
25 kB (25249 bytes)
Hash
02029cc1418bba7aac7fd64b32662326
1b59cee009018856ae3733681990c350a53053ee
6a7c3c73cdf6e0dcd98847080fac58f5aa6af64e43e89b1e5c2e6f209c643dfc

HTTP Headers

GET /Mohabbat%20Hamari%20Zamana%20Hamara-9606-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 25249
last-modified: Thu, 18 Mar 2021 23:50:06 GMT
etag: "62a1-5bdd84245a780"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ra%2BygacvCCTJovhVhzr3i1D9vVuI3VROCKTK%2FBM4GkKpZIAwU6IRnVCU9sL3xJUUr9KPdPuqcaD8goI8xAobgx8J%2Bp%2BI728sslAy43FsIiy%2FiTA15YINW2I3xMRu1iQNlyCAF%2BI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9929b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/%20%20Ek%20Main%20Aur%20Ek%20Tu%20Revival%20-17154-sd.jpg

172.67.152.66

200 OK

24 kB

URL HTTP/2
img.pagalworld.icu/%20%20Ek%20Main%20Aur%20Ek%20Tu%20Revival%20-17154-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
24 kB (24158 bytes)
Hash
b007b94dc7d836756150d19ed273f713
8207d245fd75ff6e21fb03389d62ff4696d364e6
aec29d5619d4dd471ac6fd5e72fcf0744fc18d5e6033d356b4de59a58a8421c8

HTTP Headers

GET /%20%20Ek%20Main%20Aur%20Ek%20Tu%20Revival%20-17154-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 24158
last-modified: Fri, 19 Mar 2021 00:59:24 GMT
etag: "5e5e-5bdd93a1bb300"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=40Nrj0Ik1Fhqs2M9GPvi4IEh25sKwLVAAeeG4h4aQ8NrAM%2FYNckNOdZqzy5BPhAm94Ws1zV615qbpv8EYPn%2FzMKe3IOWq58gg3l8jt9UGK1J2XRkLDyQ4oIcao25I1PQX2bT4v0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9912b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.4.0/css/bootstrap.min.css

104.18.11.207

200 OK

21 kB

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.4.0/css/bootstrap.min.css
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65369)
Size
21 kB (20806 bytes)
Hash
325e21bb3fd911187139c166922c76c0
51cf386e07816991472ffdfcd04d418031e00552
b5228f7a0b975ff14fb9ba54acb66f8bad25df91b0f3102c5b3dff1ada22718d

HTTP Headers

GET /bootstrap/3.4.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-04-23 02:09:03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 58a14c611aed8364c087bd7ac1dea21e
cdn-cache: HIT
cf-cache-status: HIT
age: 17681569
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 770cbfaebb671c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

friendshipmale.com/sfp.js

104.21.234.92

200 OK

28 kB

URL HTTP/1.1
friendshipmale.com/sfp.js
IP
104.21.234.92:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
28 kB (27574 bytes)
Hash
b1fa950e77a7db5425f9a5257af02e9c
2d5580451f34ad96218f8b97edf9708f9ee1be87
d999c4320df27dc4a1d3de5aec22bb3ef201560b47a7eff3f28f4133c1997a14

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 17:57:53 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: 76b225aba67f6b7a834c93680a2153d7
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 27 Nov 2022 17:57:53 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kaoudu7U9CwTiRaIqQUgxTeMqMVvCqYF7xqlh7FcbAzppTZIIyBGcxhYCMI9KDjEiypR4t44dn8tdBxHhUIT9X1v2K8KEnkYearC5baK%2BxxR4zpE6pBaFaTLMWOAXLkjZWD49R0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770cbfb25c0f7519-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
8781ef7b81ea378c87b9b75e52115397
df3106ed152971215d454459c4e7ad93559aa4ca
e44e3b4621bc2e63c4b7a69aee8cf240a496c5d1cdef6b26f5a6036c0e3007a1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=159581
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63836697-1d7"
Expires: Tue, 29 Nov 2022 14:17:34 GMT
Last-Modified: Sun, 27 Nov 2022 13:31:03 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2GO9XZvEbLI0bMg9LeKwFOdfwzc3w2LP7yihYbF0P01bY4-pdPDfdA==
Age: 2791

addresseepaper.com/sfp.js

34.160.73.230

429 Too Many Requests

298 B

URL HTTP/1.1
addresseepaper.com/sfp.js
IP
34.160.73.230:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
298 B (298 bytes)
Hash
2d276fc22806d34e2355196fe7bea1f3
0f2c85ecd7a43e866345fd0eafe5e0fdd4aa7acf
9e522902dee04e1345219cee056a1a291ba4eca674870853ab05f3579875ff38

HTTP Headers

GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 429 Too Many Requests
Server: openresty
Date: Sun, 27 Nov 2022 17:57:53 GMT
Content-Type: text/html
Content-Length: 298
ETag: "6382c400-12a"
Via: 1.1 google

simplewebanalysis.com/stats

18.185.190.54

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
18.185.190.54:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
14866a76e6d454766c3102a799403f02
d375250581d08a739369e5b3ae9c167ad1408df8
42c5b44ef832cbaad6b56aac9395f618bab34b7aa38e186a5e27bbca2a80b758

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
set-cookie: uid_id2=f8d67f21-c84d-4564-a5fb-273a0fd24c06:2:1; expires=Wed, 24 Nov 2032 17:57:53 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
8781ef7b81ea378c87b9b75e52115397
df3106ed152971215d454459c4e7ad93559aa4ca
e44e3b4621bc2e63c4b7a69aee8cf240a496c5d1cdef6b26f5a6036c0e3007a1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=159092
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63836697-1d7"
Expires: Tue, 29 Nov 2022 14:09:25 GMT
Last-Modified: Sun, 27 Nov 2022 13:31:03 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: T5FV4lBdUmAF2jXCG_HVfo8KB_7rECOvfI4D1hdwdxWs3HFHpojeaA==
Age: 2302

simplewebanalysis.com/stats

18.185.190.54

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
18.185.190.54:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
a1699a86d528db3652f0dc2e94c78ab6
824050c4b772d22f63aa2f4974bf3e2424d09e6d
f1360dde0730685c3bf27db585927ad037e140d83294585747ad6a6ff6339010

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
set-cookie: uid_id2=a9cf5226-06e4-429b-9cbc-4d5065a804bf:3:1; expires=Wed, 24 Nov 2032 17:57:53 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d806f8e017213ca00f9627919599c458
11cff62cd2bba8c0f1acdd7b77f3064841292a04
19a022f3f2beacae21adf6828cbdcf755a843ab28fdd98a524a23946304ca509

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "19A022F3F2BEACAE21ADF6828CBDCF755A843AB28FDD98A524A23946304CA509"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6503
Expires: Sun, 27 Nov 2022 19:46:16 GMT
Date: Sun, 27 Nov 2022 17:57:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d806f8e017213ca00f9627919599c458
11cff62cd2bba8c0f1acdd7b77f3064841292a04
19a022f3f2beacae21adf6828cbdcf755a843ab28fdd98a524a23946304ca509

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "19A022F3F2BEACAE21ADF6828CBDCF755A843AB28FDD98A524A23946304CA509"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5553
Expires: Sun, 27 Nov 2022 19:30:26 GMT
Date: Sun, 27 Nov 2022 17:57:53 GMT
Connection: keep-alive

phortaub.com/zone?pub=0&zone_id=3131271&is_mobile=false&domain=pagalworld.icu&var=&ymid=&var_3=

139.45.197.250

200 OK

705 B

URL HTTP/2
phortaub.com/zone?pub=0&zone_id=3131271&is_mobile=false&domain=pagalworld.icu&var=&ymid=&var_3=
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text, with very long lines (704)
Size
705 B (705 bytes)
Hash
fc065dda97be756d06f9eec3777e5e7a
f2d362fd1fbfb265f0247e7bf5ca606a683f799f
807afac26c18da8a6cc4582bc6d4b535a81029434bc092b526e9f61b655fbee2

HTTP Headers

GET /zone?pub=0&zone_id=3131271&is_mobile=false&domain=pagalworld.icu&var=&ymid=&var_3= HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Origin: http://pagalworld.icu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: application/json; charset=utf-8
content-length: 705
x-trace-id: 61edabbafc13321709e269d08f502745
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

img.pagalworld.icu/2785220px-Dhanwan1981filmposter.png

172.67.152.66

200 OK

138 kB

URL HTTP/2
img.pagalworld.icu/2785220px-Dhanwan1981filmposter.png
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 220 x 302, 8-bit/color RGBA, non-interlaced\012- data
Size
138 kB (138096 bytes)
Hash
16edb6aebe337d78bfc6c64889950e07
37d0b2a6e5d4c12f316c4a2d427af5d523214668
1e03ec97b8d4058741e636484ed2563c47c31c66c11319cfffb4958149279d38

HTTP Headers

GET /2785220px-Dhanwan1981filmposter.png HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:54 GMT
content-type: image/png
content-length: 138096
last-modified: Fri, 19 Mar 2021 00:18:14 GMT
etag: "21b70-5bdd8a6e27d80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u8NxgtyVE3bDI3RS3R%2Fz2v8vTOmtZtYqr0DI2oJjVK%2BLKwscES2aU5P0xKzycSMHGev%2FfGEosWv8GBQE2xhQBybmAra%2BkV3ytidyWerSEeQ8Wzirau9xUADdXDWq8ECnLMAa8G0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9924b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

push.services.mozilla.com/

34.214.64.191

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.64.191:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Balo75ADzRzNeek6tDwcWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WGwH3gToYYvyvXnRBY9i5GGJT5w=

reproductiontape.com/pixel/purst?dl=0&th=0&sc=0&rs=1227&rd=1227&fd=718&bv=22.10.v.9&tmpl=70

173.233.137.44

200 OK

0 B

URL HTTP/1.1
reproductiontape.com/pixel/purst?dl=0&th=0&sc=0&rs=1227&rd=1227&fd=718&bv=22.10.v.9&tmpl=70
IP
173.233.137.44:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=1227&rd=1227&fd=718&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: reproductiontape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:54 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

banquetunarmedgrater.com/advertisers.js

192.243.61.227

200 OK

0 B

URL HTTP/1.1
banquetunarmedgrater.com/advertisers.js
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 27 Nov 2022 17:57:54 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d40524a4ccf275eb561de179b9a7c03c
Strict-Transport-Security: max-age=0; includeSubdomains

phortaub.com/pfe/current/universal.min.js?v=3.1.405

139.45.197.250

200 OK

34 kB

URL HTTP/2
phortaub.com/pfe/current/universal.min.js?v=3.1.405
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
ASCII text, with very long lines (65536), with no line terminators
Size
34 kB (33472 bytes)
Hash
94a0282fa95d32134e9eefee3f7d3fd0
d4c14b5ecd267b0fd586ea4ecdcc30ef018296a9
07685d786f54a920bb1e2510c3a2e828b661b9079f6b7ee0f8261bca6a99506b

HTTP Headers

GET /pfe/current/universal.min.js?v=3.1.405 HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Origin: http://pagalworld.icu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 15:53:54 GMT
etag: W/"637f9392-180b9"
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

phortaub.com/custom

139.45.197.250

200 OK

39 B

URL HTTP/2
phortaub.com/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Content-Type: application/json
Origin: http://pagalworld.icu
Content-Length: 388
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:54 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: b57b9de82dbc4c5d703c1f8f91c474d0
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
43dca8ebcf06bd09eb16b5516072ec48
84fe572e189c13383dc0a805a90c07de69c48ee6
be524e069364f1231ff9f6f8a5ca6ae8aa4353ba95fa7913c30c13ed008ab8fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE524E069364F1231FF9F6F8A5CA6AE8AA4353BA95FA7913C30C13ED008AB8FD"
Last-Modified: Sat, 26 Nov 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4192
Expires: Sun, 27 Nov 2022 19:07:46 GMT
Date: Sun, 27 Nov 2022 17:57:54 GMT
Connection: keep-alive

my.rtmark.net/gid.js?pub=0&userId=32fc2c2cde0e4288ada26ebde8474313&zoneId=3131271&checkDuplicate=true&ymid=&var=

139.45.195.8

200 OK

65 B

URL HTTP/2
my.rtmark.net/gid.js?pub=0&userId=32fc2c2cde0e4288ada26ebde8474313&zoneId=3131271&checkDuplicate=true&ymid=&var=
IP
139.45.195.8:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
7234c905cd3b7546fc598f85d4692d92
7444699c5f349cccfc426990dfc8925d7b28b0fb
81a3f6eecf2a7a856c321d903f9c336abce35b627a529e6609e93ef5dbd765ee

HTTP Headers

GET /gid.js?pub=0&userId=32fc2c2cde0e4288ada26ebde8474313&zoneId=3131271&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Origin: http://pagalworld.icu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:54 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://pagalworld.icu
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=32fc2c2cde0e4288ada26ebde8474313; expires=Mon, 27 Nov 2023 17:57:54 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js

104.18.11.207

200 OK

11 kB

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js
IP
104.18.11.207:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (37481)
Size
11 kB (10857 bytes)
Hash
2e774538276207e7f42cae72ee63f7ae
12292c73bd56c7f3e5ee70b244c5564fa671ed3b
eae9aa8b0288ca410243a34f096eb29b66c85d98fbdbf155052a0c7d179d6037

HTTP Headers

GET /bootstrap/3.4.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-04-23 06:53:05
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 82949e3a4ffefb0b3980b7d96ff76a06
cdn-cache: HIT
cf-cache-status: HIT
age: 17682180
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 770cbfaeab531c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

phortaub.com/pfe/current/defaultSkin.min.js

139.45.197.250

200 OK

19 kB

URL HTTP/2
phortaub.com/pfe/current/defaultSkin.min.js
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
data
Size
19 kB (19417 bytes)
Hash
18d7f9cdf8cececa9acb9366eb878a4f
08cdcc747f5d191783dd258d060baf8e05cb6c3e
fef084b87169d9b60465bc7bf8028af6b67a2b2c8e1bd6c3cd3d3f98a378f9c9

HTTP Headers

GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Origin: http://pagalworld.icu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:54 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 15:53:54 GMT
etag: W/"637f9392-df63"
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2

soldierreproduceadmiration.com/sbar.json?key=c6b92c162a22d5dd2c349c5253cbe8a1&uuid=f8d67f21-c84d-4564-a5fb-273a0fd24c06%3A2%3A1

173.233.137.60

200 OK

4.0 kB

URL HTTP/1.1
soldierreproduceadmiration.com/sbar.json?key=c6b92c162a22d5dd2c349c5253cbe8a1&uuid=f8d67f21-c84d-4564-a5fb-273a0fd24c06%3A2%3A1
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type
JSON data\012- , ASCII text, with very long lines (5746), with no line terminators
Size
4.0 kB (4038 bytes)
Hash
6c2e6691be91c8e73183c232c91b62ad
5f4bef781c0ced0d87e52a138bf48cd5d394162b
f4271a8e6e0e64a8b8ed2f0ee839780eb3d9751e9f74b926b285838ffa9c3910

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /sbar.json?key=c6b92c162a22d5dd2c349c5253cbe8a1&uuid=f8d67f21-c84d-4564-a5fb-273a0fd24c06%3A2%3A1 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:54 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://pagalworld.icu
Access-Control-Allow-Origin: http://pagalworld.icu
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15732016; expires=Mon, 28 Nov 2022 17:57:54 GMT; secure; SameSite=None
uid_id2=f8d67f21-c84d-4564-a5fb-273a0fd24c06:2:1; expires=Sun, 04 Dec 2022 17:57:54 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 28 Nov 2022 17:57:54 GMT; secure; SameSite=None
uncs=1; expires=Mon, 28 Nov 2022 17:57:54 GMT; secure; SameSite=None
pdhtkv29=true; expires=Mon, 28 Nov 2022 17:57:54 GMT; secure; SameSite=None
uncs29=1; expires=Mon, 28 Nov 2022 17:57:54 GMT; secure; SameSite=None
slecc6b92c162a22d5dd2c349c5253cbe8a1=[3760946]; expires=Sun, 27 Nov 2022 17:57:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0dfcf6def83433fef68ddc604bef80e6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

img.pagalworld.icu/Kaam%20Krodh%20Aur%20Lobh%20Ka%20Mara%20Jagat-13332-sd.jpg

172.67.152.66

200 OK

17 kB

URL HTTP/2
img.pagalworld.icu/Kaam%20Krodh%20Aur%20Lobh%20Ka%20Mara%20Jagat-13332-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
17 kB (16557 bytes)
Hash
e307524e40140d71d4e4c001fa8208e7
9de146cf0aefed61a24ecd2fae30d3fb43a14456
9fbff5966f77d7bfee5aab61a9ac29036742934ad307ce97ceb9c3c194e5fc4c

HTTP Headers

GET /Kaam%20Krodh%20Aur%20Lobh%20Ka%20Mara%20Jagat-13332-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 16557
last-modified: Fri, 19 Mar 2021 00:28:02 GMT
etag: "40ad-5bdd8c9eea880"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SDK7eqHJOwK0d%2FJw%2FmAxhrcOMpN19dW9gK7xUna767SPGwvk7qx7tIjO9mCyP4zVbNAHr23FA%2FhQ198vzc7jWnWTQuxO0GKxRmWzQiZoAk7QyTCZ7VWioEPO0l2xBR3P48NVqKM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9916b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/2918220px-Awaaz.jpg

172.67.152.66

200 OK

20 kB

URL HTTP/2
img.pagalworld.icu/2918220px-Awaaz.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, baseline, precision 8, 220x294, components 3\012- data
Size
20 kB (20526 bytes)
Hash
ecb77140114bfde8912d367d428c240a
06d0fbda15e21d9fd3ea7166fd46b51e7616bf74
1780d8b3bc365b0887c38ff46c0e1f741fcf34e9c5d90aa612e59b71c65754bd

HTTP Headers

GET /2918220px-Awaaz.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 20526
last-modified: Fri, 19 Mar 2021 01:01:48 GMT
etag: "502e-5bdd942b0f700"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S55fQuEmvYcTSgrIXIS4DuZpd9vjA4cyyH1iPmpyd3LLQ84sXw15N2pr2uiQMR6FU4dhBYo96ZNnVx%2BgpAaQUQJKJIgHFHOU3HTSbRKrt3v%2B%2Fj2IkakyTUivEq1c5v0nOkze9Js%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9919b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

soldierreproduceadmiration.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRytjhFkxYOyF0FlEBEFM%2Bnu6Z4P97C4riuL%2BxF2V3Kur56UqelqqrqnJ7kYDMgePIx48dh5k2xQw%2BL%2BAaJM9iIBIeNBcjB3b4tizjKTgeDvUL%2BP9zu89%2Br35U5xSnwU9GTlttlUWtPluO7X3llVqTClq915UAv8un%2BltqrSZnSlNpg%2Btv9%2B4Md1%2F93ax5Kvm%2BXQD3w%2F8IPaDWVlYgbLMxQqO%2BgE9Y5fj8J6EEcY2P%2F3rvDgqAfRPyWvQInJ82u%2FPoHiY6S9H69Lt56b7L2PeoWmubHoi%2F1P0%2FXUlCl6F2ViPSTp%2Fnwbxk0I%2BXYBJt2fK4Dp704VgKkJ8f4IwNL9OU2w%2Ft45U6YhUzDxIsr%2BGFKPoegY3GxDiWMCcIE7d5H2Ht0xtqQb5yidohOyePYPVDkhi39eRtp7fE2rQe2%2B0UWuTOowSCqowRiqO0ZWHCLf9KDKQ%2FD8CyjxG1k%2Bu4W0t3vXaQMlTt5K2qLZSsJgibcjsRTFzWiJxglbClsN6icijLjfnFmk1BgqGUPLIahbQOE8FMpDkXgoMg89cVKjcSfx%2FVbCkkajHXHOGw3O43ZTxKIRtRMfBZ9qGCLPhuB6CG63kNktrKshbPEL3FoFJzy4nKAvKpSSoHQEJSUoFUGZE5T9ak9oF7rqkdCuYME8h%2FPcqEYm7%2B7QPZN3ZUp2slPy8sy4Zy%2F5WJcnNd5knZAHzZCGoYiFCHkj6vA4jBucyTYN4FQF5RZAnYdNNSEL%2F36OTB37l8DoIZw%2BBFeXQYvXQctRK%2FRB10ZR28dm%2BjijXapLY7WoK15AmApZvoh8w9vRp%2BTVGY8ODyH50dWz1w5eCN7%2BC9xWyGyFz9RTgq5%2BOLpnSrJ7z5SOPLmb5aqnNun0c%2B%2FnNJeL338iN0pjxc3rbvjdB3wKTMuDB9Llt2gqVNp15IdrSghpbxjLJfnppluVbKVwa9cKmxbZrZUPb9zsZVY6p0w6BlXHrW%2FA1YRcur01O9s3vnoKZcewRYVecUTmAWUOwbMtuOzo6t%2FzmTMEVl%2FssMxDWVQjG7KLoVYEWl70lFVw8sICJo9%2BfnaO7biH6FoPNN9G2qvQtxX6ugLVQ7jiuVGe2aOrvzdmAaa9EdPW22Xa6q%2FPrXXqpCbjxE%2BkH0qWdFjSor7oJFGH0U4gWyymAXI34dt7b%2F4HAAD%2F%2FwEAAP%2F%2FLD69wo4EAAA%3D

173.233.137.60

200 OK

7 B

URL HTTP/1.1
soldierreproduceadmiration.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRytjhFkxYOyF0FlEBEFM%2Bnu6Z4P97C4riuL%2BxF2V3Kur56UqelqqrqnJ7kYDMgePIx48dh5k2xQw%2BL%2BAaJM9iIBIeNBcjB3b4tizjKTgeDvUL%2BP9zu89%2Br35U5xSnwU9GTlttlUWtPluO7X3llVqTClq915UAv8un%2BltqrSZnSlNpg%2Btv9%2B4Md1%2F93ax5Kvm%2BXQD3w%2F8IPaDWVlYgbLMxQqO%2BgE9Y5fj8J6EEcY2P%2F3rvDgqAfRPyWvQInJ82u%2FPoHiY6S9H69Lt56b7L2PeoWmubHoi%2F1P0%2FXUlCl6F2ViPSTp%2Fnwbxk0I%2BXYBJt2fK4Dp704VgKkJ8f4IwNL9OU2w%2Ft45U6YhUzDxIsr%2BGFKPoegY3GxDiWMCcIE7d5H2Ht0xtqQb5yidohOyePYPVDkhi39eRtp7fE2rQe2%2B0UWuTOowSCqowRiqO0ZWHCLf9KDKQ%2FD8CyjxG1k%2Bu4W0t3vXaQMlTt5K2qLZSsJgibcjsRTFzWiJxglbClsN6icijLjfnFmk1BgqGUPLIahbQOE8FMpDkXgoMg89cVKjcSfx%2FVbCkkajHXHOGw3O43ZTxKIRtRMfBZ9qGCLPhuB6CG63kNktrKshbPEL3FoFJzy4nKAvKpSSoHQEJSUoFUGZE5T9ak9oF7rqkdCuYME8h%2FPcqEYm7%2B7QPZN3ZUp2slPy8sy4Zy%2F5WJcnNd5knZAHzZCGoYiFCHkj6vA4jBucyTYN4FQF5RZAnYdNNSEL%2F36OTB37l8DoIZw%2BBFeXQYvXQctRK%2FRB10ZR28dm%2BjijXapLY7WoK15AmApZvoh8w9vRp%2BTVGY8ODyH50dWz1w5eCN7%2BC9xWyGyFz9RTgq5%2BOLpnSrJ7z5SOPLmb5aqnNun0c%2B%2FnNJeL338iN0pjxc3rbvjdB3wKTMuDB9Llt2gqVNp15IdrSghpbxjLJfnppluVbKVwa9cKmxbZrZUPb9zsZVY6p0w6BlXHrW%2FA1YRcur01O9s3vnoKZcewRYVecUTmAWUOwbMtuOzo6t%2FzmTMEVl%2FssMxDWVQjG7KLoVYEWl70lFVw8sICJo9%2BfnaO7biH6FoPNN9G2qvQtxX6ugLVQ7jiuVGe2aOrvzdmAaa9EdPW22Xa6q%2FPrXXqpCbjxE%2BkH0qWdFjSor7oJFGH0U4gWyymAXI34dt7b%2F4HAAD%2F%2FwEAAP%2F%2FLD69wo4EAAA%3D
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRytjhFkxYOyF0FlEBEFM%2Bnu6Z4P97C4riuL%2BxF2V3Kur56UqelqqrqnJ7kYDMgePIx48dh5k2xQw%2BL%2BAaJM9iIBIeNBcjB3b4tizjKTgeDvUL%2BP9zu89%2Br35U5xSnwU9GTlttlUWtPluO7X3llVqTClq915UAv8un%2BltqrSZnSlNpg%2Btv9%2B4Md1%2F93ax5Kvm%2BXQD3w%2F8IPaDWVlYgbLMxQqO%2BgE9Y5fj8J6EEcY2P%2F3rvDgqAfRPyWvQInJ82u%2FPoHiY6S9H69Lt56b7L2PeoWmubHoi%2F1P0%2FXUlCl6F2ViPSTp%2Fnwbxk0I%2BXYBJt2fK4Dp704VgKkJ8f4IwNL9OU2w%2Ft45U6YhUzDxIsr%2BGFKPoegY3GxDiWMCcIE7d5H2Ht0xtqQb5yidohOyePYPVDkhi39eRtp7fE2rQe2%2B0UWuTOowSCqowRiqO0ZWHCLf9KDKQ%2FD8CyjxG1k%2Bu4W0t3vXaQMlTt5K2qLZSsJgibcjsRTFzWiJxglbClsN6icijLjfnFmk1BgqGUPLIahbQOE8FMpDkXgoMg89cVKjcSfx%2FVbCkkajHXHOGw3O43ZTxKIRtRMfBZ9qGCLPhuB6CG63kNktrKshbPEL3FoFJzy4nKAvKpSSoHQEJSUoFUGZE5T9ak9oF7rqkdCuYME8h%2FPcqEYm7%2B7QPZN3ZUp2slPy8sy4Zy%2F5WJcnNd5knZAHzZCGoYiFCHkj6vA4jBucyTYN4FQF5RZAnYdNNSEL%2F36OTB37l8DoIZw%2BBFeXQYvXQctRK%2FRB10ZR28dm%2BjijXapLY7WoK15AmApZvoh8w9vRp%2BTVGY8ODyH50dWz1w5eCN7%2BC9xWyGyFz9RTgq5%2BOLpnSrJ7z5SOPLmb5aqnNun0c%2B%2FnNJeL338iN0pjxc3rbvjdB3wKTMuDB9Llt2gqVNp15IdrSghpbxjLJfnppluVbKVwa9cKmxbZrZUPb9zsZVY6p0w6BlXHrW%2FA1YRcur01O9s3vnoKZcewRYVecUTmAWUOwbMtuOzo6t%2FzmTMEVl%2FssMxDWVQjG7KLoVYEWl70lFVw8sICJo9%2BfnaO7biH6FoPNN9G2qvQtxX6ugLVQ7jiuVGe2aOrvzdmAaa9EdPW22Xa6q%2FPrXXqpCbjxE%2BkH0qWdFjSor7oJFGH0U4gWyymAXI34dt7b%2F4HAAD%2F%2FwEAAP%2F%2FLD69wo4EAAA%3D HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Cookie: u_pl=15732016; uid_id2=f8d67f21-c84d-4564-a5fb-273a0fd24c06:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc6b92c162a22d5dd2c349c5253cbe8a1=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:55 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a895b10ffd770efb4888c5fe3f8d3a4c
Strict-Transport-Security: max-age=0; includeSubdomains

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c7afa63a2e765a5889feedb036228204
546d048429118d6ff49049b948a6d39c3706b4e1
ce33ebbd5115ffaac9721eacc50f458d369b30dbc875379c5602fe846d078207

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE33EBBD5115FFAAC9721EACC50F458D369B30DBC875379C5602FE846D078207"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13978
Expires: Sun, 27 Nov 2022 21:50:53 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10758
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10758
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10758
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10758
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10758
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8817 bytes)
Hash
741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 10:16:35 GMT
age: 27680
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

pagalworld.icu/logo%20white.png

172.67.152.66

200 OK

15 kB

URL HTTP/2
pagalworld.icu/logo%20white.png
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 100 x 69, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (14717 bytes)
Hash
369738fc64c4e0cee2f9cede60332a56
ce17745fcb536a6f7c93b6766a49e0bd415d0385
6646734084405ba8487de829f2d226dcdb5e4bb59994bd1c9445eca6d00d6bc4

HTTP Headers

GET /logo%20white.png HTTP/1.1
Host: pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/png
content-length: 14717
last-modified: Sun, 29 Sep 2019 15:20:12 GMT
etag: "397d-593b2a7c94300"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eimrTndy4Gayg7iVK%2FI2LzelyEB%2BcFk2NW5y5TDEGNIJumYZ9CTar0iVZuZsHgFUwkADCz0t10GkgA4sYIND8pV77MuYs3u5OFstlsAv0XpBfX1DFn9KxP1ttnb08tN5sQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf88eeb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13049 bytes)
Hash
1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y0ofyT6UcPjB8mfRR1VMjHSTW64Qb_EQ0rrjsOdbby1CG-xMIFJMPw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:49:19 GMT
age: 72516
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10199 bytes)
Hash
2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
age: 72941
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5099 bytes)
Hash
433875a1b1fef34e45f2d8ac344c07e3
f2129466436cbbdd58abe42a47fb7af19eba58e6
ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5099
x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4jFBvoAMFl1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6"
content-type: image/jpeg
age: 72941
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5103 bytes)
Hash
116eb5028a206e55f758f3e34887c87e
10577d9fc19028a0e0303634ec16ad8b2d41fa7a
d5d0f5518f8346e78f00a57632efe36f3363cabfa9abb30b7bea60261b29910b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5103
x-amzn-requestid: 203eadee-9375-4290-ae0a-dd48e83df697
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFGzTE90oAMFTyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637eb814-2c32253b155d5dd0283fdd07;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 00:17:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7tHm0mthR9kBsxWjBYctLA-AicheWuIxgPLw0UJtI8QhOv1oW13C3A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 14:46:13 GMT
age: 11502
etag: "10577d9fc19028a0e0303634ec16ad8b2d41fa7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
age: 72941
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
3a1eb8e3d7b5e963c21e1905e849e570
fff8193edc6218562c5612b0e02f73dbcca98c0c
12db50941a08926a1f14146c52b53cfc6acc1dcb6ac858f6fcfb421330dfb12f

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12DB50941A08926A1F14146C52B53CFC6ACC1DCB6AC858F6FCFB421330DFB12F"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13682
Expires: Sun, 27 Nov 2022 21:45:57 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
3a1eb8e3d7b5e963c21e1905e849e570
fff8193edc6218562c5612b0e02f73dbcca98c0c
12db50941a08926a1f14146c52b53cfc6acc1dcb6ac858f6fcfb421330dfb12f

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12DB50941A08926A1F14146C52B53CFC6ACC1DCB6AC858F6FCFB421330DFB12F"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13682
Expires: Sun, 27 Nov 2022 21:45:57 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive

img.pagalworld.icu/Is%20Dil%20Ne%20Socha%20Hai%20Jo-12761-sd.jpg

172.67.152.66

200 OK

34 kB

URL HTTP/2
img.pagalworld.icu/Is%20Dil%20Ne%20Socha%20Hai%20Jo-12761-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
34 kB (34414 bytes)
Hash
15048c27e9bf478b18c8ff3f9077ca87
37da7dbf256f1a7e8b06a878365b806b3aaf235b
ff1869106fcfebe5413226174cfac5d815ddf96fab69117cbc5cd3742917cfa6

HTTP Headers

GET /Is%20Dil%20Ne%20Socha%20Hai%20Jo-12761-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 34414
last-modified: Fri, 19 Mar 2021 00:22:06 GMT
etag: "866e-5bdd8b4b68780"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rY4r4I2cdoZbtAqNnj5uxhQJ0g5Qtiz%2F1UCgKbGQF%2BVnYuUL8N%2F1cJczGVKlctidMFlmxJ8oRQ4L%2BLczG11pxXbYNrv5PvMk6aLgPEk4YTPSXP7ec4ksevn3AmL4V9dhHNbU5YU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf991db4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.10

200 OK

660 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
660 B (660 bytes)
Hash
55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 27 Nov 2022 17:57:55 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/flash-logo.png

172.64.109.13

200 OK

9.4 kB

URL HTTP/2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/flash-logo.png
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 240 x 240, 8-bit colormap, non-interlaced\012- data
Size
9.4 kB (9360 bytes)
Hash
910542c04f8bf2f90ee33d17d538a006
18d5943e5d51539038f7988c34bccef2937c5545
5969cb3c5c4f573f5c05035ddf9748ee17d5c71df6fca4e484f65d30e2694e57

HTTP Headers

GET /sb/interstitial/software/flashPlayer/mac/multi/1/img/flash-logo.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/png
content-length: 9360
last-modified: Wed, 01 Sep 2021 12:22:39 GMT
etag: "612f708f-2490"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1051425
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pl9oEjRoep4W0xDVBvNWrjMl40kD7goGPuLbt6Dz0V59xzN1tzIJnUTnvX6%2BfPpIHLiC7FqBOSWGkCjnABsBjMt9z0lslz%2Fw%2BNzz8atLzLT21GhRExReqJyj7vQNlWC6g%2FSN3w7P4aZx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbd3ba3d184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/%20%20Main%20Nachoon%20Too%20Bansi%20Baja%20-17518-sd.jpg

172.67.152.66

200 OK

25 kB

URL HTTP/2
img.pagalworld.icu/%20%20Main%20Nachoon%20Too%20Bansi%20Baja%20-17518-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
25 kB (24609 bytes)
Hash
037f44c0d1c95cb05a096fa4b7afe930
831e63ea3072a0ac970617b63e0340c5ccf32b22
ef3e98e15769b2b2d08a9c012be604f67a2c25c955ae01279df72310e31fda64

HTTP Headers

GET /%20%20Main%20Nachoon%20Too%20Bansi%20Baja%20-17518-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 24609
last-modified: Fri, 19 Mar 2021 01:01:54 GMT
etag: "6021-5bdd9430c8480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ct9URUFSKQGmsvj0lDJiu1IhX8gpzU%2BBH%2Fb7KdeI%2FxzzgXVKWT867l42rB1huAuKMo1L202lMXkVTBRR3eJr1OaTb6gVntooEwb4Qsef1J%2FPhYf9SZ4G9K8xLUnXWh0K4Enk08E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9908b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/%20%20Gore%20Gore%20Galo%20Wali%20-17188-sd.jpg

172.67.152.66

200 OK

32 kB

URL HTTP/2
img.pagalworld.icu/%20%20Gore%20Gore%20Galo%20Wali%20-17188-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
32 kB (32509 bytes)
Hash
f428999b904cae599d4dc4dbbe071baa
b9fcd9bf9068f9ec4896f2e79e3cfb0048fae01e
f916e9b507d24ed0af6153863a178412f2c949268b21fe65c2b58a48d3f01b27

HTTP Headers

GET /%20%20Gore%20Gore%20Galo%20Wali%20-17188-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 32509
last-modified: Fri, 19 Mar 2021 00:59:36 GMT
etag: "7efd-5bdd93ad2ce00"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=npsk7a9MjL1y%2FY%2FF2syRfiqt15H%2BBwayLoKzZSxh90cyPSFb9q4HqjlwuPy30eSJc8446WogHtFfTnfg1W0yCcUqSWeHVMdKf2rR9VxwqJqKQ%2FkMG6swNwPp%2FHv%2BVkIh1be2WyY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9923b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
3a1eb8e3d7b5e963c21e1905e849e570
fff8193edc6218562c5612b0e02f73dbcca98c0c
12db50941a08926a1f14146c52b53cfc6acc1dcb6ac858f6fcfb421330dfb12f

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12DB50941A08926A1F14146C52B53CFC6ACC1DCB6AC858F6FCFB421330DFB12F"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13682
Expires: Sun, 27 Nov 2022 21:45:57 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive

soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Findex.html&l=3323&fd=146

173.233.137.60

200 OK

0 B

URL HTTP/1.1
soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Findex.html&l=3323&fd=146
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Findex.html&l=3323&fd=146 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:55 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

img.pagalworld.icu/Main%20Jagoon%20Sari%20Rain-13330-sd.jpg

172.67.152.66

200 OK

16 kB

URL HTTP/2
img.pagalworld.icu/Main%20Jagoon%20Sari%20Rain-13330-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
16 kB (15658 bytes)
Hash
1d4e5584db17b1b797f5dcb9bbdbf1cd
f5d8ba93fc82ca2974299ce38c4c6c8a0a8f2e88
3e538446a5de28c942dee6bfd4962bfa6601bb014134ceeb68a920dea9f669ac

HTTP Headers

GET /Main%20Jagoon%20Sari%20Rain-13330-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 15658
last-modified: Fri, 19 Mar 2021 00:28:00 GMT
etag: "3d2a-5bdd8c9d02400"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ea5kUnm2wvAOZ1yWXuDNTLwy6e%2FbiPWYAW6Bex4Y3LRNyJc84I%2BHo6FiuI5KLRm07WOdgmmHPdkkDhnJoYtQ4avRj6og17xDdohP%2BKuOBAf34yzpOk2WL5migz6ijw%2Fm9%2FOiWws%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98ffb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fanimate.css&l=79249&fd=332

173.233.137.60

200 OK

0 B

URL HTTP/1.1
soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fanimate.css&l=79249&fd=332
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fanimate.css&l=79249&fd=332 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:55 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fstyle.css&l=4522&fd=407

173.233.137.60

200 OK

0 B

URL HTTP/1.1
soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fstyle.css&l=4522&fd=407
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fstyle.css&l=4522&fd=407 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:55 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fjs%2Fscript.js&l=23003&fd=381

173.233.137.60

200 OK

0 B

URL HTTP/1.1
soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fjs%2Fscript.js&l=23003&fd=381
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fjs%2Fscript.js&l=23003&fd=381 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:55 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

img.pagalworld.icu/%20%20Ek%20Main%20Aur%20Ek%20Tu%20-17149-sd.jpg

172.67.152.66

200 OK

24 kB

URL HTTP/2
img.pagalworld.icu/%20%20Ek%20Main%20Aur%20Ek%20Tu%20-17149-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
24 kB (24158 bytes)
Hash
b007b94dc7d836756150d19ed273f713
8207d245fd75ff6e21fb03389d62ff4696d364e6
aec29d5619d4dd471ac6fd5e72fcf0744fc18d5e6033d356b4de59a58a8421c8

HTTP Headers

GET /%20%20Ek%20Main%20Aur%20Ek%20Tu%20-17149-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 24158
last-modified: Fri, 19 Mar 2021 00:59:22 GMT
etag: "5e5e-5bdd939fd2e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2l3C36OjTIz7U47hEImBiCLCRl4BkpZJit06OfBj%2BTaqfqs7Zd7YnMd9W6cmDwUJmegrrq6vIyOUzJwlUfA3yDJ5FAwAfJwJHgyJA4BAaR8W8J2FE2Vm4vaSFtVNSRs8YlFIUAI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98fcb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/logo%20black.png

172.67.152.66

200 OK

26 kB

URL HTTP/2
img.pagalworld.icu/logo%20black.png
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 326 x 225, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (26148 bytes)
Hash
816caeef212c7bb44f40d060188bf990
a8915a46eb470076263bd6e53987245c2baa66f0
21be8bc2613fc1209361c153bde7c014171c14ff6026c11163dbbdda6ab5a707

HTTP Headers

GET /logo%20black.png HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: image/png
content-length: 26148
last-modified: Sun, 29 Sep 2019 13:31:54 GMT
etag: "6624-593b12479a680"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m9WK%2FqqSQCz70i5ci30JfkUF2FtQr0jB16h6y5YCa02nlTy2jEqrtRaWh3JE2awhFvI8X5CiSmfO%2Brwn4KZ9ZFvXE%2F3OVYa34vGZhx%2F%2BJOybVn8boV%2FGK%2BUjNiosJahrT%2BlVXK0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98fdb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Meri%20Bahena%20O%20Meri%20Bahena%20-12087-sd.jpg

172.67.152.66

200 OK

34 kB

URL HTTP/2
img.pagalworld.icu/Meri%20Bahena%20O%20Meri%20Bahena%20-12087-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
34 kB (33967 bytes)
Hash
fbf7b8a3dbe48b7c491e4ab7a8d7a723
0849d78486b1e59b93aa7df847014c6eae56f03b
f4b92fa26d16f26c8992dfae846c67eb2ae70463c771e107c8febca1d705c71c

HTTP Headers

GET /Meri%20Bahena%20O%20Meri%20Bahena%20-12087-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: image/jpeg
content-length: 33967
last-modified: Fri, 19 Mar 2021 00:16:08 GMT
etag: "84af-5bdd89f5fe200"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FwvGpNvuco%2BLU2GvU4JA1ESLDnI7wsYyczXeB68%2FQCqEUAcelbguuzexZyIr3KDU6pYnbtt0vxKecp%2FeUxP2CAIlrNsiTjcnyk0KQGt4t4KsCVMrRiKdSg6T%2FCJbdKQGGE3yi3I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98f8b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Balle%20Balle%20Bhai-12320-sd.jpg

172.67.152.66

200 OK

28 kB

URL HTTP/2
img.pagalworld.icu/Balle%20Balle%20Bhai-12320-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
28 kB (28211 bytes)
Hash
35107c951abf84a69f8245ffbef95d56
f98f13279e433071026a1d5e64ccff07f6f9722d
56921b22a1efa215553ce1154ae43d40681a5a1e6292c32e0182756a1ebe89fc

HTTP Headers

GET /Balle%20Balle%20Bhai-12320-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: image/jpeg
content-length: 28211
last-modified: Fri, 19 Mar 2021 00:18:10 GMT
etag: "6e33-5bdd8a6a57480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dz3qgknLq9r9qdFUXMOiVqg511SfO1fT7qjxBBS%2FHPEt6xBBPASvIOaPLEE4ioYcYrt2rOwFoxC%2FMpkSrzPxNFTEYWuX5WGhYkppmHdfuerg1wi%2BkfExVoZxTsUCcn8Re7kRHkM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf991eb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/Peetal%20Ke%20Ghal%20Me%20Tital%20Bahar%20Acha%20Ya%20Bheetar-13328-sd.jpg

172.67.152.66

200 OK

19 kB

URL HTTP/2
img.pagalworld.icu/Peetal%20Ke%20Ghal%20Me%20Tital%20Bahar%20Acha%20Ya%20Bheetar-13328-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
19 kB (19406 bytes)
Hash
bbc59a6e222b1f21ed50a8e76ddb4c14
76f975adee122c8c99ffc0e52bf00385fa5363e8
18e7530e9ae181b415bf1715f183f3a32184fbd9a1801c3be9720eb2717016f6

HTTP Headers

GET /Peetal%20Ke%20Ghal%20Me%20Tital%20Bahar%20Acha%20Ya%20Bheetar-13328-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: image/jpeg
content-length: 19406
last-modified: Fri, 19 Mar 2021 00:28:00 GMT
etag: "4bce-5bdd8c9d02400"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gfpJ6%2FdS%2FMCJo65EsjKconVfXNrPymFTZgPEkvwqfpHtkiba%2FgA8H%2BVdm3LoQNFdmzZPmKdV9JX0I0q%2BqnHvAqeNsfctavDsGccY%2BJCLidntt3ArNo3LQf%2B%2Bd4uFxEOIpzJ%2B1Js%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf991ab4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

img.pagalworld.icu/%20%20Jai%20Matadi%20-17521-sd.jpg

172.67.152.66

200 OK

25 kB

URL HTTP/2
img.pagalworld.icu/%20%20Jai%20Matadi%20-17521-sd.jpg
IP
172.67.152.66:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
25 kB (24609 bytes)
Hash
037f44c0d1c95cb05a096fa4b7afe930
831e63ea3072a0ac970617b63e0340c5ccf32b22
ef3e98e15769b2b2d08a9c012be604f67a2c25c955ae01279df72310e31fda64

HTTP Headers

GET /%20%20Jai%20Matadi%20-17521-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: image/jpeg
content-length: 24609
last-modified: Fri, 19 Mar 2021 01:01:54 GMT
etag: "6021-5bdd9430c8480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=th9i50u5papj2YGTjDCATVJF5gS8p7QwTYu0wBfaUI8X96LaCtweuwhFh%2F9F27PIC5jznSOc4ljj2mvniECPNMYWYgraJGvp%2BIZkc9iWzjA8h6nkGG0ejEhdIYIzzQLQ15XhIIk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9928b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js

172.64.109.13

200 OK

31 kB

URL HTTP/2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text
Size
31 kB (30919 bytes)
Hash
ce7a472112025904fc8d60d184f7708d
8854b14a8c8b5a73a94b082df21ffb218c0cdee5
82dd1f7d8f26d3b941e39285fe39759b9e48eef92b6b8c854236c855f3d246ec

HTTP Headers

GET /sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: application/javascript
last-modified: Wed, 01 Sep 2021 12:22:36 GMT
etag: W/"612f708c-7082"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Wf%2FbI8DeoGjge5bLxSofMI%2FHF7kKterVKpQCytacwNExUemGpgSqyloVm%2BZUjQErn4pwN6JfVeHnngAmRNXW9p5HiVN6QUtvHVn2HEYkENYd8yu06fAGk%2BUoYhJ2Nc5UYtYJBuweXmd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbdace9d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

soldierreproduceadmiration.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitjhFkxYOyF0FlEBEFM%2Bmf88M9LK7rSjCbhN2VnKurqidlarqaqu7pSS4GA7IHDyNePHbeJBvUsLh%2FgCiTvUhAyHiQHMzd26KYs8xkIPgd6vvxvsN7r74v94pz4qKgZ2t39bZUii5Gdbf2zrpMuS5tbeVBzXPr7o3aukwb4Y1af%2FKY3vueG9Xdd2sfC7apF33Xc13P9Wp3pBGJ7i9OUcjsqO3V22499OteFKJv%2Ft%2FbwoGlDnjvnLwCycfPb%2Fz6BJKNkHZ%2FvC3sZq6z9z7qForm2qDHDz9NN1NdpuhelYlxkKSHs21oOybk2zno9HCmALq3P1GAWI6J84eHOD2c0UTcO7hkGiuIFDF%2FEWVvBKFGkHQEpnch%2BSkBGMfKKtLuoxVtSrp1idIJOibzF%2F9AlmMy%2F%2Bd1pN3Ht5Ts1%2B5rVeRSpxb9pILsjyA7I2TFMfJtB7I8Bsu%2FgOS%2FkcWLZaTd%2FVWrNCQ%2Feytp8UYz8b0F1gr5Qhg1wgUaJfGC3wyom3A%2FZG5japGUI8hkBCUGoHYOhXVQSAdF4qDIHHT5WY1G7cR1m0mcBEErZIwFAWNRq8EjHoStxEXBJhoGyLMBmBqAmR1kZgebcgBT%2FAK7UcFyBzYn6PEKpSAoLUFJCUpJUOYEZa864Mr6tnrElS1ib5b9WQ6qoc47e%2FRA5x2Rkr3snLw8Ne7ZSy42xVmNNeK2z7yGT32fR5z7LAjbLPKjgMWiRT1YWUHaOVDrYFuOydy%2FnyOTp%2B41xPQYVh2Dyeugxeug5bDpu6Abw7DlYjt9nNEOVaU2itclK8B1hSyfR77l7Klz8uqUR5v5EOzk5sVrRy94b%2F8FZipkpsJn8ilBRz0c3tMl2b%2BnS0uerGa57MptOvnc%2BznNxfz3n4itUhu%2BdNsOvvuATYBJefRA2HyZplymHUt%2BuCU5F%2BaONkyQn5bsuojXCrtxqzBpkS2vfXhnqZsZYa3U6QhUnja%2FAZNjcu3uzvRs3%2FjqKaQZwRQVusUJmQWkPgbLdmCzk5t%2Fz2ZWExh1tRNnDsqiGho%2FvhoqSaDEVU%2FjClZcWRCLk5%2BfXWJ79iE6xgHNd5F2K%2FRMhZ6qQNUAtnhumGfm5ObvwTQQK2cYK%2BPsx8qory%2BttfKsFnmhaMWtJuM8Fox7TT9oBa7rcx4228JrI7djtnvw5n8AAAD%2F%2FwEAAP%2F%2FODYzJI4EAAA%3D

173.233.137.60

200 OK

7 B

URL HTTP/1.1
soldierreproduceadmiration.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitjhFkxYOyF0FlEBEFM%2Bmf88M9LK7rSjCbhN2VnKurqidlarqaqu7pSS4GA7IHDyNePHbeJBvUsLh%2FgCiTvUhAyHiQHMzd26KYs8xkIPgd6vvxvsN7r74v94pz4qKgZ2t39bZUii5Gdbf2zrpMuS5tbeVBzXPr7o3aukwb4Y1af%2FKY3vueG9Xdd2sfC7apF33Xc13P9Wp3pBGJ7i9OUcjsqO3V22499OteFKJv%2Ft%2FbwoGlDnjvnLwCycfPb%2Fz6BJKNkHZ%2FvC3sZq6z9z7qForm2qDHDz9NN1NdpuhelYlxkKSHs21oOybk2zno9HCmALq3P1GAWI6J84eHOD2c0UTcO7hkGiuIFDF%2FEWVvBKFGkHQEpnch%2BSkBGMfKKtLuoxVtSrp1idIJOibzF%2F9AlmMy%2F%2Bd1pN3Ht5Ts1%2B5rVeRSpxb9pILsjyA7I2TFMfJtB7I8Bsu%2FgOS%2FkcWLZaTd%2FVWrNCQ%2Feytp8UYz8b0F1gr5Qhg1wgUaJfGC3wyom3A%2FZG5japGUI8hkBCUGoHYOhXVQSAdF4qDIHHT5WY1G7cR1m0mcBEErZIwFAWNRq8EjHoStxEXBJhoGyLMBmBqAmR1kZgebcgBT%2FAK7UcFyBzYn6PEKpSAoLUFJCUpJUOYEZa864Mr6tnrElS1ib5b9WQ6qoc47e%2FRA5x2Rkr3snLw8Ne7ZSy42xVmNNeK2z7yGT32fR5z7LAjbLPKjgMWiRT1YWUHaOVDrYFuOydy%2FnyOTp%2B41xPQYVh2Dyeugxeug5bDpu6Abw7DlYjt9nNEOVaU2itclK8B1hSyfR77l7Klz8uqUR5v5EOzk5sVrRy94b%2F8FZipkpsJn8ilBRz0c3tMl2b%2BnS0uerGa57MptOvnc%2BznNxfz3n4itUhu%2BdNsOvvuATYBJefRA2HyZplymHUt%2BuCU5F%2BaONkyQn5bsuojXCrtxqzBpkS2vfXhnqZsZYa3U6QhUnja%2FAZNjcu3uzvRs3%2FjqKaQZwRQVusUJmQWkPgbLdmCzk5t%2Fz2ZWExh1tRNnDsqiGho%2FvhoqSaDEVU%2FjClZcWRCLk5%2BfXWJ79iE6xgHNd5F2K%2FRMhZ6qQNUAtnhumGfm5ObvwTQQK2cYK%2BPsx8qory%2BttfKsFnmhaMWtJuM8Fox7TT9oBa7rcx4228JrI7djtnvw5n8AAAD%2F%2FwEAAP%2F%2FODYzJI4EAAA%3D
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitjhFkxYOyF0FlEBEFM%2Bmf88M9LK7rSjCbhN2VnKurqidlarqaqu7pSS4GA7IHDyNePHbeJBvUsLh%2FgCiTvUhAyHiQHMzd26KYs8xkIPgd6vvxvsN7r74v94pz4qKgZ2t39bZUii5Gdbf2zrpMuS5tbeVBzXPr7o3aukwb4Y1af%2FKY3vueG9Xdd2sfC7apF33Xc13P9Wp3pBGJ7i9OUcjsqO3V22499OteFKJv%2Ft%2FbwoGlDnjvnLwCycfPb%2Fz6BJKNkHZ%2FvC3sZq6z9z7qForm2qDHDz9NN1NdpuhelYlxkKSHs21oOybk2zno9HCmALq3P1GAWI6J84eHOD2c0UTcO7hkGiuIFDF%2FEWVvBKFGkHQEpnch%2BSkBGMfKKtLuoxVtSrp1idIJOibzF%2F9AlmMy%2F%2Bd1pN3Ht5Ts1%2B5rVeRSpxb9pILsjyA7I2TFMfJtB7I8Bsu%2FgOS%2FkcWLZaTd%2FVWrNCQ%2Feytp8UYz8b0F1gr5Qhg1wgUaJfGC3wyom3A%2FZG5japGUI8hkBCUGoHYOhXVQSAdF4qDIHHT5WY1G7cR1m0mcBEErZIwFAWNRq8EjHoStxEXBJhoGyLMBmBqAmR1kZgebcgBT%2FAK7UcFyBzYn6PEKpSAoLUFJCUpJUOYEZa864Mr6tnrElS1ib5b9WQ6qoc47e%2FRA5x2Rkr3snLw8Ne7ZSy42xVmNNeK2z7yGT32fR5z7LAjbLPKjgMWiRT1YWUHaOVDrYFuOydy%2FnyOTp%2B41xPQYVh2Dyeugxeug5bDpu6Abw7DlYjt9nNEOVaU2itclK8B1hSyfR77l7Klz8uqUR5v5EOzk5sVrRy94b%2F8FZipkpsJn8ilBRz0c3tMl2b%2BnS0uerGa57MptOvnc%2BznNxfz3n4itUhu%2BdNsOvvuATYBJefRA2HyZplymHUt%2BuCU5F%2BaONkyQn5bsuojXCrtxqzBpkS2vfXhnqZsZYa3U6QhUnja%2FAZNjcu3uzvRs3%2FjqKaQZwRQVusUJmQWkPgbLdmCzk5t%2Fz2ZWExh1tRNnDsqiGho%2FvhoqSaDEVU%2FjClZcWRCLk5%2BfXWJ79iE6xgHNd5F2K%2FRMhZ6qQNUAtnhumGfm5ObvwTQQK2cYK%2BPsx8qory%2BttfKsFnmhaMWtJuM8Fox7TT9oBa7rcx4228JrI7djtnvw5n8AAAD%2F%2FwEAAP%2F%2FODYzJI4EAAA%3D HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Cookie: u_pl=15732016; uid_id2=f8d67f21-c84d-4564-a5fb-273a0fd24c06:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc6b92c162a22d5dd2c349c5253cbe8a1=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d330f505f5a01b2310ca196f25615b69
Strict-Transport-Security: max-age=0; includeSubdomains

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
0b989e80ddfee2ec1eef9e9fa74f4b43
c69d8c8e6e36d84e83f00af097ae20f605dc1af4
3faf87636a3c10cde2cf9196d112f4d385509e3354d789a5f83cb72ee3ed8db2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93850
Date: Sun, 27 Nov 2022 17:57:56 GMT
Etag: "63825731-1d7"
Expires: Mon, 28 Nov 2022 20:02:06 GMT
Last-Modified: Sat, 26 Nov 2022 18:13:05 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: n6KFgXejmXmdF5rHvs5_WaYoJ9GTpJnCBFs9cU151P-2OFXQQ3zPlA==
Age: 6541

l.sharethis.com/pview?event=pview&hostname=pagalworld.icu&location=%2Fhits%2Frakesh-roshan%2Factor&product=inline-share-buttons&url=http%3A%2F%2Fpagalworld.icu%2Fhits%2Frakesh-roshan%2Factor&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Top%2050%20Rakesh%20Roshan%20Songs%20-%20Download%20Best%20Songs%20of%20Rakesh%20Roshan%20Free%20Mp3%20Songs%20Download&cms=unknown&publisher=5dacb03960a0a30019a71d5d&sop=true&version=st_sop.js&lang=en&description=Download%20All%20Time%20Hit%20Mp3%20Songs%20by%20Rakesh%20Roshan%20for%20free%20on%20Pagalworld.%20Rakesh%20Roshan%20Latest%20Songs%20download%20for%20free.%20Best%20of%20Rakesh%20Roshan%20Hindi%20Movie%20Songs%20List%20%26%20Download%20Links

3.126.95.118

204 No Content

0 B

URL HTTP/1.1
l.sharethis.com/pview?event=pview&hostname=pagalworld.icu&location=%2Fhits%2Frakesh-roshan%2Factor&product=inline-share-buttons&url=http%3A%2F%2Fpagalworld.icu%2Fhits%2Frakesh-roshan%2Factor&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Top%2050%20Rakesh%20Roshan%20Songs%20-%20Download%20Best%20Songs%20of%20Rakesh%20Roshan%20Free%20Mp3%20Songs%20Download&cms=unknown&publisher=5dacb03960a0a30019a71d5d&sop=true&version=st_sop.js&lang=en&description=Download%20All%20Time%20Hit%20Mp3%20Songs%20by%20Rakesh%20Roshan%20for%20free%20on%20Pagalworld.%20Rakesh%20Roshan%20Latest%20Songs%20download%20for%20free.%20Best%20of%20Rakesh%20Roshan%20Hindi%20Movie%20Songs%20List%20%26%20Download%20Links
IP
3.126.95.118:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pview?event=pview&hostname=pagalworld.icu&location=%2Fhits%2Frakesh-roshan%2Factor&product=inline-share-buttons&url=http%3A%2F%2Fpagalworld.icu%2Fhits%2Frakesh-roshan%2Factor&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Top%2050%20Rakesh%20Roshan%20Songs%20-%20Download%20Best%20Songs%20of%20Rakesh%20Roshan%20Free%20Mp3%20Songs%20Download&cms=unknown&publisher=5dacb03960a0a30019a71d5d&sop=true&version=st_sop.js&lang=en&description=Download%20All%20Time%20Hit%20Mp3%20Songs%20by%20Rakesh%20Roshan%20for%20free%20on%20Pagalworld.%20Rakesh%20Roshan%20Latest%20Songs%20download%20for%20free.%20Best%20of%20Rakesh%20Roshan%20Hindi%20Movie%20Songs%20List%20%26%20Download%20Links HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: http://pagalworld.icu
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 27 Nov 2022 17:57:56 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

soldierreproduceadmiration.com/pixel/sbs?c=1

173.233.137.60

200 OK

0 B

URL HTTP/1.1
soldierreproduceadmiration.com/pixel/sbs?c=1
IP
173.233.137.60:0
ASN
#7979 SERVERS-COM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Cookie: u_pl=15732016; uid_id2=f8d67f21-c84d-4564-a5fb-273a0fd24c06:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc6b92c162a22d5dd2c349c5253cbe8a1=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:56 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144863886-2&cid=365700920.1669571876&jid=1823401900&gjid=1189076848&_gid=1489535445.1669571876&_u=YEBAAUAAAAAAACAAI~&z=801645618

142.251.1.156

200 OK

1 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144863886-2&cid=365700920.1669571876&jid=1823401900&gjid=1189076848&_gid=1489535445.1669571876&_u=YEBAAUAAAAAAACAAI~&z=801645618
IP
142.251.1.156:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144863886-2&cid=365700920.1669571876&jid=1823401900&gjid=1189076848&_gid=1489535445.1669571876&_u=YEBAAUAAAAAAACAAI~&z=801645618 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: http://pagalworld.icu
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 27 Nov 2022 17:57:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js

172.64.109.13

200 OK

31 kB

URL HTTP/2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (32025), with CRLF line terminators
Size
31 kB (31085 bytes)
Hash
e866d5a1e18c42e0d684595812aed7a7
533a1e9f541127c416956d1399b5092ba34c5bc4
4e685b03261b8f65ccffc80c1ee5965d40bd43713b7d586511d700f3e5634048

HTTP Headers

GET /sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: application/javascript
last-modified: Wed, 01 Sep 2021 12:22:37 GMT
etag: W/"612f708d-149a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1051425
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xm9M9FvKGCaYX8unrOcI1zi8%2FPcIH1YoI5pSQv%2BeOYhbcuPkqCU054vHtptKIn1iC%2FvrIYTYcYtUt2CDHdB8mAvM29E5xVHA3TpfKIDZJfcScID6Dwl1syuyUGyXfXhUHUByZPWlSdSn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbd3ba9d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

phortaub.com/custom

139.45.197.250

200 OK

39 B

URL HTTP/2
phortaub.com/custom
IP
139.45.197.250:0
ASN
#9002 RETN Limited

File type
JSON data\012- , ASCII text
Size
39 B (39 bytes)
Hash
058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881

HTTP Headers

POST /custom HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Content-Type: application/json
Origin: http://pagalworld.icu
Content-Length: 624
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: bfcfe80f31db01009c01653fe3936fec
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2

unseenreport.com/pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=c6b92c162a22d5dd2c349c5253cbe8a1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17

192.243.59.20

200 OK

1 B

URL HTTP/1.1
unseenreport.com/pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=c6b92c162a22d5dd2c349c5253cbe8a1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17
IP
192.243.59.20:0
ASN
#39572 DataWeb Global Group B.V.

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=c6b92c162a22d5dd2c349c5253cbe8a1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 27 Nov 2022 17:57:57 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c793bfba64cfd17cb6a8b81d45d68af5
Strict-Transport-Security: max-age=0; includeSubdomains

unseenreport.com/pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=ec08f8d38647fd47cf465d93241b63d7&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17

192.243.59.20

200 OK

1 B

URL HTTP/1.1
unseenreport.com/pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=ec08f8d38647fd47cf465d93241b63d7&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17
IP
192.243.59.20:0
ASN
#39572 DataWeb Global Group B.V.

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=ec08f8d38647fd47cf465d93241b63d7&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 27 Nov 2022 17:57:57 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 08acb757c074b4847a2babb4822ade06
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css

172.64.109.13

200 OK

0 B

URL HTTP/2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: text/css
last-modified: Wed, 01 Sep 2021 12:22:34 GMT
etag: W/"612f708a-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V%2BnuqsdnbHN3gskvxt%2BICo0aZC%2B37y%2BUUoYuzCHpaI9K0R%2BpJCMDJZPqaM5F%2BErbldxG9UXCHJOY6EajGsL9VJmmYqQCs0RlQZ0ZmUVu8yH0sFSIwv7Cz6o%2FxIZxE9agSnONBDgn40Is"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbd0b07d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css

172.64.109.13

200 OK

0 B

URL HTTP/2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: text/css
last-modified: Wed, 01 Sep 2021 12:22:34 GMT
etag: W/"612f708a-11aa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZULNiHSlzHwiVaMm06Tij11FmLaj4zWHNfds%2B1oARsFKYZ0rnmjvwawIqKdswn%2FcMCYuCUXsP5dVYQWJuRWoiw70600YF15yd%2FgcE582M6w%2FK%2FtyYCI64XfdayW9zosQ%2B5NdQhd8WyCW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbd0b15d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.barscreative1.com/sb/interstitial/software/flashPlayer/mac/multi/1/index.html

45.133.44.3

200 OK

0 B

URL HTTP/2
cdn.barscreative1.com/sb/interstitial/software/flashPlayer/mac/multi/1/index.html
IP
45.133.44.3:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /sb/interstitial/software/flashPlayer/mac/multi/1/index.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Wed, 01 Sep 2021 12:22:33 GMT
etag: W/"612f7089-cfb"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sun, 27 Nov 2022 18:57:55 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/close.svg

172.64.109.13

200 OK

0 B

URL HTTP/2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/close.svg
IP
172.64.109.13:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/interstitial/software/flashPlayer/mac/multi/1/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/svg+xml
last-modified: Wed, 01 Sep 2021 12:22:39 GMT
etag: W/"612f708f-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1051425
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DkRcNIPnAsEgRREYxjYB4g%2BBjnkEQTEFaXxn2j6iMxeQFGXRCBH%2Fi9vGp49EfWar5k3el%2BGtBqEOKh8BmGIzYNxV%2FVrHht4HeXB%2FF86IAgD78X1%2BGGto4CuAvE5o2x36rYh8%2FzPnjkeY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbd3b97d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (17)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations