r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7726
Expires: Sun, 27 Nov 2022 20:06:38 GMT
Date: Sun, 27 Nov 2022 17:57:52 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5636
Cache-Control: max-age=151637
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:52 GMT
Etag: "63833c71-1d7"
Expires: Tue, 29 Nov 2022 12:05:09 GMT
Last-Modified: Sun, 27 Nov 2022 10:31:13 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71f9c681a82440fd55e76c780a20e55d
3147768cfbcdd06e0c6e69684292e68e99917a80
5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13343
Expires: Sun, 27 Nov 2022 21:40:15 GMT
Date: Sun, 27 Nov 2022 17:57:52 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SNPR/5sdFOn2p7M6Ct6+6oucckHVEkWwQZwpNrwCvHrMjq5ukDd/WdzvkAfkl+0oK4Mum0KOUzI=
x-amz-request-id: EBRBQ3JTQA6XS97M
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 17:44:43 GMT
age: 789
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 17:17:40 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2412
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
pagalworld.icu/hits/rakesh-roshan/actor
172.67.152.66200 OK 27 kB URL HTTP/1.1 pagalworld.icu/hits/rakesh-roshan/actor
IP 172.67.152.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8042), with CRLF, LF line terminators
Hash 2c24083ff85d14743f5052b88fbe5c9f
9fb92627ae4d6100502cf82026f4177523e7cae5
0f7df2d7c51085c34943ac7b08c570c50eb9aac8303d4db074cef62e17dfba42
GET /hits/rakesh-roshan/actor HTTP/1.1
Host: pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 17:57:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=la9w4V6hf12GUbU%2FzIWjCspVjqnDxWi%2F0E13teiQeGpSY5FSCIa%2B0l5yzR9L0E4psM8sf2AkZnLYm1kVVtfgGYRKOV1mupvOeVTr0rhWsg7n%2FYtDKMmd%2FSPfyZCeujZnnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 770cbfaafe07b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2620cb440711056d80ec6ee6a4101116
0de0450475dd899906c36956881f9db5ecad90fd
9a84a21b1cb5e13c925b144beef55b87669a02836087e1a9cf74fa4964ef43f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3961
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Last-Modified: Sun, 27 Nov 2022 16:51:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2620cb440711056d80ec6ee6a4101116
0de0450475dd899906c36956881f9db5ecad90fd
9a84a21b1cb5e13c925b144beef55b87669a02836087e1a9cf74fa4964ef43f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3961
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Last-Modified: Sun, 27 Nov 2022 16:51:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
172.217.21.170200 OK 31 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP 172.217.21.170:0
File type ASCII text, with very long lines (65451)
Hash 81182f4b684635f6bdcbdd907ee66f25
a1f2f151df72ede41397c8131bd47a3ce85575b3
be40946c98d9a78a3c7c9ad097d379ab12549a195bd7a4766919a1d3fd987396
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:00:13 GMT
expires: Wed, 22 Nov 2023 17:00:13 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 435460
last-modified: Mon, 13 May 2019 14:37:17 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-144863886-2
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-144863886-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash f43a9009732d040c421845d527e14683
0a499d51d311b97de9d365619efc481e04f937ca
8fdbf65ebd3a4893a137eb05d83e2f739ba7faf4c0a5dfa1f457c08cfd2036c5
GET /gtag/js?id=UA-144863886-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 27 Nov 2022 17:57:53 GMT
expires: Sun, 27 Nov 2022 17:57:53 GMT
cache-control: private, max-age=900
last-modified: Sun, 27 Nov 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43681
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
phortaub.com/ntfc.php?p=3131271
139.45.197.250200 OK 5.9 kB URL HTTP/1.1 phortaub.com/ntfc.php?p=3131271
IP 139.45.197.250:0
File type C source, ASCII text, with very long lines (14504), with no line terminators
Hash f50cfddb50d076a1ed20e6f1f8632516
590a5fcddec52d5ce785767aeead1a3ed402f806
a1ef7f14f8ff84e29290c48043e58518b5cb7571694fc5dede0143c929bfd6b2
GET /ntfc.php?p=3131271 HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 27 Nov 2022 17:57:53 GMT
Content-Type: application/javascript
Last-Modified: Thu, 24 Nov 2022 15:53:54 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"637f9392-38a8"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2620cb440711056d80ec6ee6a4101116
0de0450475dd899906c36956881f9db5ecad90fd
9a84a21b1cb5e13c925b144beef55b87669a02836087e1a9cf74fa4964ef43f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3961
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Last-Modified: Sun, 27 Nov 2022 16:51:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0ee1d1a60ec1770ec3e880a25c257f5d
015b05feff63bdcf8fae4d1a8c0c83c923a2ca67
b6845619444a37f322c044933a44cf3fd283a18a54d03bad4f76a2ed8c2cbaf6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img.pagalworld.icu/%20%20Morni%20Ne%20Seekha%20-17519-sd.jpg
172.67.152.66200 OK 11 kB URL HTTP/2 img.pagalworld.icu/%20%20Morni%20Ne%20Seekha%20-17519-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 11455e632770ab2f61af13e65ce5ffc0
2f5b5f13e17989286f494540fc3e2de4c4626139
d99a9cb865b074f3c5527718ff4cb46d4234ba72e65a1bd179c8a20e0c46de5f
GET /%20%20Morni%20Ne%20Seekha%20-17519-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 10763
last-modified: Fri, 19 Mar 2021 01:01:54 GMT
etag: "2a0b-5bdd9430c8480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tj5xNuvhmb7%2FqNX3E5DMX%2F%2BWK60BX4IhypBXUum%2BhXeAyV%2BTcsOOcP9nMIUnkHsTgtwnwgJ9uF1qfJxBQ1oJbztP50HrNZ06c%2FwrTMhCPKdVy7CD5KmK%2BdpHkJCOvFz3BK5uwYM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf990db4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: nginx
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: nginx
Content-Length: 279
img.pagalworld.icu/%20%20Ham%20Ne%20Tum%20Ko%20Dekha%20-17151-sd.jpg
172.67.152.66200 OK 27 kB URL HTTP/2 img.pagalworld.icu/%20%20Ham%20Ne%20Tum%20Ko%20Dekha%20-17151-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash a61fdbb6ddcc8d93707ebd18c34b86f5
38ac5074cff619306b6d641d8b1710967d585af6
b3bf4c64b527be70f24a136d460aa7e92b0befe6f6fd3391ca806e7d141a66b1
GET /%20%20Ham%20Ne%20Tum%20Ko%20Dekha%20-17151-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 26898
last-modified: Fri, 19 Mar 2021 00:59:22 GMT
etag: "6912-5bdd939fd2e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vCb6R1Wxp8dJw%2Bk082xh8FGxaowHGQ8uv64%2BDTt7%2BMMzWkSmUUfOousXesQvBaHV2l0JsrfWnH0Hsc%2BN%2BXEi4Qd5wLLIBqS0OkGNcZzB%2B%2FrU2yDHkr70EeS1BkwxIofltGKvPRc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9911b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/%20%20Ae%20Lo%20Pyar%20Ke%20Din%20Aaye%20-17153-sd.jpg
172.67.152.66200 OK 28 kB URL HTTP/2 img.pagalworld.icu/%20%20Ae%20Lo%20Pyar%20Ke%20Din%20Aaye%20-17153-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 73a3930fdb29ca9fcde28f1d59a40533
6864ab2a7238be6fa52f8d6ef27f14eafa99fac8
816d82467bc0a3511e89a34bfcb4fc6dcf48eaff425c27659757691c4587883d
GET /%20%20Ae%20Lo%20Pyar%20Ke%20Din%20Aaye%20-17153-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 28264
last-modified: Fri, 19 Mar 2021 00:59:24 GMT
etag: "6e68-5bdd93a1bb300"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5TFOJySiL3wCBX444yLHxpbV4x9Hq9njZkTndPX%2BTeZy1emtVhlN6vw%2Bj933AOUvzAWpkSg5cM7U5St0rQnhXphq4BqnM3z3Xe5JiCTqMlpQlNKPPwMtkNR2WontwImr3OkUcvk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98fbb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 426baebf85a0b8482ef98014381d7bdf
583351b6fa180fd622152cc0aaa44067e35d993a
3b0e4c732776a184de211bc096a4b5dd5c34d761a89e5399c00e27a1b7048c33
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=159301
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63837066-117"
Expires: Tue, 29 Nov 2022 14:12:54 GMT
Last-Modified: Sun, 27 Nov 2022 14:12:54 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
img.pagalworld.icu/%20%20Pyar%20Ke%20Mod%20Par-17648-sd.jpg
172.67.152.66200 OK 29 kB URL HTTP/2 img.pagalworld.icu/%20%20Pyar%20Ke%20Mod%20Par-17648-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 6263c8438979ff484b630f6708d94f83
a4bd171e9d5ea8067d63f3f8e39110cdb8b6c19c
6df9280e3d0b5646b4b4ee475d2b4f236fde88f0e492b1608b811fed533809e1
GET /%20%20Pyar%20Ke%20Mod%20Par-17648-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 29036
last-modified: Fri, 19 Mar 2021 01:02:58 GMT
etag: "716c-5bdd946dd1480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9aGG%2BV2y3KSyl6yEjdHn%2BMWprjfsXa15Vz42SqIqyPr534wWpvkecS7V%2Fo94FMWFarNhegeAb3o5SDBO5kaT0bkFGTbpOZV9fW5zAYLhKdYC3IVfSk4e%2BoQPgyRm2NXlcwNLm9g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98feb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Tum%20Bahar%20Kahan%20Chale%20Pyare-12243-sd.jpg
172.67.152.66200 OK 27 kB URL HTTP/2 img.pagalworld.icu/Tum%20Bahar%20Kahan%20Chale%20Pyare-12243-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 8ece9a326fa8451390d565d43a297f31
daacd2d7cfa00d0b1f0615170018976936841c07
3f0c07c420a13a8a387446406f460ee330e446ef6789f475b313346c1fb3fc40
GET /Tum%20Bahar%20Kahan%20Chale%20Pyare-12243-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 26571
last-modified: Fri, 19 Mar 2021 00:17:30 GMT
etag: "67cb-5bdd8a4431a80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y%2BwSKMR8AN%2FmA7AIz5zeUlm3UZ6EGrO60cNq9PCLSjd%2FJ02USAduCqplEOl687zjSNlsoEd3QSZjyRHYMt4GVeB7VJZ9RlyLFa1P7L8GfHvJZ%2F857167NEPz84bZS2cEzoGjCbU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9907b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Ek%20Dhoondho%20Milte%20Hain%20Hazaron-12241-sd.jpg
172.67.152.66200 OK 22 kB URL HTTP/2 img.pagalworld.icu/Ek%20Dhoondho%20Milte%20Hain%20Hazaron-12241-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 9be0daaff7bef8f575b51573cb053d5d
ee839ecba9cab32899a18f1ebb9cc2c1f78d151b
6bb43642dc9860191e2207f1de19d93077fd8108e8ed0625b1b29bd6f0c43b11
GET /Ek%20Dhoondho%20Milte%20Hain%20Hazaron-12241-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 22545
last-modified: Fri, 19 Mar 2021 00:17:30 GMT
etag: "5811-5bdd8a4431a80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WQLvvCGqDQQIeyTMrEWvJHRKaoeJ%2FelthoJeoc5qGjyrLP%2FX2AZwbpG41U%2FT9FtJ9ZKFkpNM0odhO0BmzfnFj5DMzfT%2BfABYPEtKwx%2F%2F274S%2BkqezpHEK9zfuRvkyBK5dwSCZ2Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9905b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Kuchh%20Log%20Mohabbat%20Ko-12322-sd.jpg
172.67.152.66200 OK 26 kB URL HTTP/2 img.pagalworld.icu/Kuchh%20Log%20Mohabbat%20Ko-12322-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash bffce57394db3aba2d26f4e24bdc2b28
d3d58bd77c6f9fd9ab8e716b77a3b8449a9dfdd7
735c08fe5e1f68fc699a24e9b25d542a9e3c1c141766b6123cb098db79587a51
GET /Kuchh%20Log%20Mohabbat%20Ko-12322-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 25635
last-modified: Fri, 19 Mar 2021 00:18:12 GMT
etag: "6423-5bdd8a6c3f900"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q2iCbxJlj8k9HPo1qLceZSUuLQLGFm7Q9QoMWR5Tgdn%2FcS0C42ya9epNoETvAgZuITRJ5CQIesbJV4pIQwsFZnyLsLV%2FJJNwVXQ0KapIPauRUSWgZL0Fkc%2BmZpz565MaIC4P4fM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf990eb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/%20%20Do%20Baaten%20Pyar%20Bhari%20Kar%20Loon%20-16911-sd.jpg
172.67.152.66200 OK 36 kB URL HTTP/2 img.pagalworld.icu/%20%20Do%20Baaten%20Pyar%20Bhari%20Kar%20Loon%20-16911-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 6ba68b5f8e6314865228d7ecd3030ff1
acfe550af14eea4228e4a1268ce4d66deea0bae3
c1d506cbd4dee3a8f61a3901dbcaecd173b79da71691ca5527bab0e8c44aa078
GET /%20%20Do%20Baaten%20Pyar%20Bhari%20Kar%20Loon%20-16911-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 35640
last-modified: Fri, 19 Mar 2021 00:57:42 GMT
etag: "8b38-5bdd934074d80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=18tw2%2FPaLef%2B1vCtMjEr4rTH1vvtNqY%2BT2NX8CQh3iFfXmjzUymIRh3q3MqslI75KnSdYxHsOkMwQztvFHqIbBqVxUY9PE46B6bi6GIGxbFhuY%2F91sai2dpEBTzwrD648CodhXs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf990ab4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Tumko%20Hai%20Pyar%20Mana-12762-sd.jpg
172.67.152.66200 OK 34 kB URL HTTP/2 img.pagalworld.icu/Tumko%20Hai%20Pyar%20Mana-12762-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 171a496355e1cc8ce48dd6ec4852af37
85117edb82cec11fe63625dcf5324949583bf209
2d15b5c8207fadefeb8b89017a3633502cd53c861e3fb5f4ea95e7925e4887b2
GET /Tumko%20Hai%20Pyar%20Mana-12762-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 34155
last-modified: Fri, 19 Mar 2021 00:22:06 GMT
etag: "856b-5bdd8b4b68780"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NMnJteBtCcgPqfxzqQzyL%2ByDyFQNfcvYlp2Hkz2%2F9Uza7ie8oDqr95xaWeYDUxQNz4CfMddplR2EK25ISkMfAIQmFVzWDfqTroa1AXgkETNYTX8S1FmCP1yx02Z4yoTSp94w5Xc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98f9b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/%20%20Tarpat%20Beete%20Din%20-17520-sd.jpg
172.67.152.66200 OK 11 kB URL HTTP/2 img.pagalworld.icu/%20%20Tarpat%20Beete%20Din%20-17520-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 2fcee9ae7f4080ec87750e0a105d4def
860b6bebb466f52371dcaa56b881e290a7d26264
d5c75a3a00dbbe753434e26a34bf485a519328a44c86a5ef705cd6bd8a641b1c
GET /%20%20Tarpat%20Beete%20Din%20-17520-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 10708
last-modified: Fri, 19 Mar 2021 01:01:54 GMT
etag: "29d4-5bdd9430c8480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cGCbtl4d9%2BfoanwBbWM%2BRWdQ2pZFkVuUhammQpL3ShR6EZvpgIDQUshnaeG16y7FYFAWb6UuC93yIDFEp2juvt2cjW9h6qq113pDZMC8OXsUVbmhrmEIwEzxe0fgBQ8IY%2Fn%2BvMg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf990cb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/%20%20Sapna%20Mera%20Toot%20Gaya%20-17152-sd.jpg
172.67.152.66200 OK 26 kB URL HTTP/2 img.pagalworld.icu/%20%20Sapna%20Mera%20Toot%20Gaya%20-17152-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 6d16cbd4b181fa10a7b0bc16009d50b4
1b3646bb6c9b92ec3f2a39ddf8b7bce9cf26b845
f81406598472f54380f9cfd9587ee5199de6ac9a393b253ca8b8e6e5993f780b
GET /%20%20Sapna%20Mera%20Toot%20Gaya%20-17152-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 26027
last-modified: Fri, 19 Mar 2021 00:59:22 GMT
etag: "65ab-5bdd939fd2e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pCdiRceXLbxhyNOmkOwELlXaf8Enfckn7bOO4ANYRMsKG%2BeDxv7rbEd25bVeBau3zcq%2FPpkTfIowz3z%2FqMqxmPtmujMfjouWILwO5xqUwvXKRXvp7ZQ9QHRsghp9DZAkkVGJHwg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9922b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/2454220px-AankhonAankhonMein.jpg
172.67.152.66200 OK 20 kB URL HTTP/2 img.pagalworld.icu/2454220px-AankhonAankhonMein.jpg
IP 172.67.152.66:0
File type JPEG image data, baseline, precision 8, 220x296, components 3\012- data
Hash 549f2eff753977a04f6ae63cd0a25477
8a89ee6f0ce8a7af7fe1957eb13edb8de0f5a5b6
a24c69c05a20a508bf06906b3e1ae431076c1b103afe24d4d8a764c6e4cf087e
GET /2454220px-AankhonAankhonMein.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 19651
last-modified: Fri, 19 Mar 2021 00:57:44 GMT
etag: "4cc3-5bdd93425d200"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PbHxaqZl%2BZFhmc3ZbHGbjCsUUwmLSv%2BdiECVqugZm2aD8LHUidcdwHlZpGl8lqb%2BMi0DfZfiwuMNd2DveNd9xVRwHhV13mapxTmFV%2BGNueNvHKsxNFwuvdW361UaWmCOeKCLn5w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9913b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/302140px-Textdocumentwithredquestionmark.svg.png
172.67.152.66200 OK 1.4 kB URL HTTP/2 img.pagalworld.icu/302140px-Textdocumentwithredquestionmark.svg.png
IP 172.67.152.66:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ce373d691b801899b0ddff00592b4a1
9e38d054df54383acc51c3b8ecfec9e8ff3cd4df
59b1859159afe995ae732f1aa2f75eaa5f0667ab301df2d88c836636763e1704
GET /302140px-Textdocumentwithredquestionmark.svg.png HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/png
content-length: 1440
last-modified: Fri, 19 Mar 2021 00:24:28 GMT
etag: "5a0-5bdd8bd2d4700"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jZpQ2q3NY3hxea%2F%2FOHxOXwZT4nJGSLIaLHCkoSsx6WHPSx75F8Z2VbxDQX3Tc5hdrJ8hSg%2FLil8l%2B5X01uu9ODX8OugkE3JmAm1Z53OXg8%2BmulWMMO4dVmbwEk2HZxIAC%2F5DDyw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9925b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 17:11:12 GMT
cache-control: public,max-age=3600
age: 2801
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
pl15832515.cpmprofitablenetwork.com/c6/b9/2c/c6b92c162a22d5dd2c349c5253cbe8a1.js
173.233.137.60200 OK 13 kB URL HTTP/1.1 pl15832515.cpmprofitablenetwork.com/c6/b9/2c/c6b92c162a22d5dd2c349c5253cbe8a1.js
IP 173.233.137.60:0
File type ASCII text, with very long lines (37161), with no line terminators
Hash 06b02f39c43bff8b1f4abf0f0188473d
3fbc57e615f9bb79692acb88c0f11fbbbe23dfa8
dd2873ff3e3838a84dccc906f2c77b626b05dd44148b7d54e63fa159c7a929d9
GET /c6/b9/2c/c6b92c162a22d5dd2c349c5253cbe8a1.js HTTP/1.1
Host: pl15832515.cpmprofitablenetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 67f5a053f0a46183fc734889c107236d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
img.pagalworld.icu/322330px-Indiafilmclapperboard28variant29.svg.png
172.67.152.66200 OK 1.5 kB URL HTTP/2 img.pagalworld.icu/322330px-Indiafilmclapperboard28variant29.svg.png
IP 172.67.152.66:0
File type PNG image data, 30 x 31, 8-bit colormap, non-interlaced\012- data
Hash d867429d417aff49dfcbc9fa4e40e832
6f063fe616886180446e8a47bb6feac48bf59fba
a5441fd28fb0d84cde9a4913351b704e8b57c6b177611fd02a789e71e3df7e7a
GET /322330px-Indiafilmclapperboard28variant29.svg.png HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/png
content-length: 1542
last-modified: Fri, 19 Mar 2021 00:28:02 GMT
etag: "606-5bdd8c9eea880"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PoQEGMz0a2gaRkEKEQAiF40mSQke1ebPMd5fc%2BkiSTFUQAS%2FPXwf7a5n3qVIR55TKGXoAEHK9fnnT7Qk5hzOqH47BsI5eU7TJakPF0JbzimIUVZiVaB%2FeevwYa%2FBUcwYldIjmlk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf991cb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/291030px-Indiafilmclapperboard28variant29.svg.png
172.67.152.66200 OK 1.5 kB URL HTTP/2 img.pagalworld.icu/291030px-Indiafilmclapperboard28variant29.svg.png
IP 172.67.152.66:0
File type PNG image data, 30 x 31, 8-bit colormap, non-interlaced\012- data
Hash d867429d417aff49dfcbc9fa4e40e832
6f063fe616886180446e8a47bb6feac48bf59fba
a5441fd28fb0d84cde9a4913351b704e8b57c6b177611fd02a789e71e3df7e7a
GET /291030px-Indiafilmclapperboard28variant29.svg.png HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/png
content-length: 1542
last-modified: Fri, 19 Mar 2021 00:22:08 GMT
etag: "606-5bdd8b4d50c00"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f%2FSOfcaIvug2vSvpie02N34GZ%2B8IACD6Wv9wHMNEUEd4NCvhvv%2BBLvz6i2rriBvIvz1jMZJhFlpQ%2Fj45dO%2F8o6sFeLYKC1XvuDflVPvx25zInQy5eMGrHH%2BJqRvxAHS%2By8aSQhQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9926b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Umr%20Huyi%20Tumse%20Mile-13329-sd.jpg
172.67.152.66200 OK 10 kB URL HTTP/2 img.pagalworld.icu/Umr%20Huyi%20Tumse%20Mile-13329-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash e5e199b2bf27777ffae19a6aead54856
e03fa5a8f06abbfc307f803456dbbdbf65741906
776af7db6aaf9165362b8a369ca28166bf73873c332410d3a0251667b9c8aed2
GET /Umr%20Huyi%20Tumse%20Mile-13329-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 10150
last-modified: Fri, 19 Mar 2021 00:28:00 GMT
etag: "27a6-5bdd8c9d02400"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Lm5%2BiRMuuD1VOHr6Tt61MIP9Vz0hU%2B%2BU%2BV87O0rsR9fxPi61XHXfrULqnTvXCi777uo1%2Ffqfj%2B%2B%2FaoRbSvYGt9GWi6%2BZ%2B%2BWzHqGBPB6%2BlvCrHUVMt58%2Fl8By8KxbtekbxC%2BUdfg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9902b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pl16426636.alternativecpmgate.com/ec/08/f8/ec08f8d38647fd47cf465d93241b63d7.js
192.243.59.12200 OK 21 kB URL HTTP/1.1 pl16426636.alternativecpmgate.com/ec/08/f8/ec08f8d38647fd47cf465d93241b63d7.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (60145), with no line terminators
Hash 27d1284d509f8e77ca56bc845e3a9823
34acf4b92a68148dba6011499d259ac5fa907aac
61552db52826d6216075b5d6fb87a2f87d1494ce8c9f0a344747b3e380a829b5
GET /ec/08/f8/ec08f8d38647fd47cf465d93241b63d7.js HTTP/1.1
Host: pl16426636.alternativecpmgate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sun, 27 Nov 2022 17:57:53 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c886fdae72c0c296637ea76f0dee2297
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
img.pagalworld.icu/%20%20Khullam%20Khulla%20Pyar%20Karenge%20-17150-sd.jpg
172.67.152.66200 OK 28 kB URL HTTP/2 img.pagalworld.icu/%20%20Khullam%20Khulla%20Pyar%20Karenge%20-17150-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 3787a64ddc369050392daabae645d169
8baab38de3a0ab028f6accd28174e48346ff70a2
1b33e58accfd11185f7d1d2d9999717b2a934702137b2a8638580532d9bfa4aa
GET /%20%20Khullam%20Khulla%20Pyar%20Karenge%20-17150-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 27820
last-modified: Fri, 19 Mar 2021 00:59:22 GMT
etag: "6cac-5bdd939fd2e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bgxc1QkWiqiCr1SZipoLOxzSvzfYSvp17d7dkR4PLJNTFWhjhgEvgO2BhIz%2B0zxxMdVdoNr1viYKWK6b8QApt%2BlaDIyD2E4FlT9pfyMJyH%2Bxl2%2BxBV7UPA7CHC13vm5cZv5Yzbk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9921b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/%20%20Ram%20Kare%20Allah%20Kare%20-17329-sd.jpg
172.67.152.66200 OK 22 kB URL HTTP/2 img.pagalworld.icu/%20%20Ram%20Kare%20Allah%20Kare%20-17329-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 61a5a1e0dde6bc34c46f02fb96616cf5
b1711f663c8d9a51c67dff900d7261d0e46e45b3
ada401217eaaf87dec5ff1d3515b7bf3d21825d4cbf274795aefcc1fe3b02a0d
GET /%20%20Ram%20Kare%20Allah%20Kare%20-17329-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 21937
last-modified: Fri, 19 Mar 2021 01:00:42 GMT
etag: "55b1-5bdd93ec1e280"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jD3qiLz%2B7hMb7dS7zl40IwTR7yDh17c%2BRk5K7HBRntb6nKM1wgo9O5fayWmzGoEqfKVj%2Bq8kfYeTiCqUhlPB4e5tkfJhi2O5EuSUOVaXbm2AfzDmSHWXSvW3ryW%2ByZBs5LSVZcE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98fab4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Haye%20Re%20Haye%20Tera%20Ghunghta-12086-sd.jpg
172.67.152.66200 OK 29 kB URL HTTP/2 img.pagalworld.icu/Haye%20Re%20Haye%20Tera%20Ghunghta-12086-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash e70be5e883badc5f64c90cd456a60f01
22c0da203186dc0543ff0c11243983d2872a659e
0c1ce8c759556a47a6dde71b3ff74a6bc6a34dca436a793402cce76dadeacd42
GET /Haye%20Re%20Haye%20Tera%20Ghunghta-12086-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 29384
last-modified: Fri, 19 Mar 2021 00:16:06 GMT
etag: "72c8-5bdd89f415d80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PC5GkhcygMTaWm13DGCn%2FklQsDqpTlAvoTHyD0aYY%2Be%2B5hDyyQuGUEHQ3ozd15FWM8AJCyhX18Y9ZgOj7s0zhnuq4Bt8AgneK4CFs8EHbg%2FmOZxvN4me%2FjFyr8FCxOH%2FIO9IMPc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9915b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Tu%20Hai%20Meri%20Diwani-12242-sd.jpg
172.67.152.66200 OK 28 kB URL HTTP/2 img.pagalworld.icu/Tu%20Hai%20Meri%20Diwani-12242-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 01f8f51924914f034f03b9e720f59ec5
b5aa6cc85bad5c0a0448f9d2c99c7636504045ae
4b9028db10728f99a08ed28d413b96f27cd4158e5eef16017007f19cadf8419c
GET /Tu%20Hai%20Meri%20Diwani-12242-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 28070
last-modified: Fri, 19 Mar 2021 00:17:30 GMT
etag: "6da6-5bdd8a4431a80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QI8ctUDowXl5YyZ7HU9kQ1eGEGc77tZ1Brn0QeLrUPmYHcUk1zzWmZAMwmmysgF9VH7QC29jtVzFiXkT3RLXFQ7G0jnoqOKUTgikDNy5qWR3XiWvLHrr%2B1pQMvfYsL9s0OWpPUw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9904b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Mohabbat%20Hamari%20Zamana%20Hamara-9606-sd.jpg
172.67.152.66200 OK 25 kB URL HTTP/2 img.pagalworld.icu/Mohabbat%20Hamari%20Zamana%20Hamara-9606-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 02029cc1418bba7aac7fd64b32662326
1b59cee009018856ae3733681990c350a53053ee
6a7c3c73cdf6e0dcd98847080fac58f5aa6af64e43e89b1e5c2e6f209c643dfc
GET /Mohabbat%20Hamari%20Zamana%20Hamara-9606-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 25249
last-modified: Thu, 18 Mar 2021 23:50:06 GMT
etag: "62a1-5bdd84245a780"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ra%2BygacvCCTJovhVhzr3i1D9vVuI3VROCKTK%2FBM4GkKpZIAwU6IRnVCU9sL3xJUUr9KPdPuqcaD8goI8xAobgx8J%2Bp%2BI728sslAy43FsIiy%2FiTA15YINW2I3xMRu1iQNlyCAF%2BI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9929b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/%20%20Ek%20Main%20Aur%20Ek%20Tu%20Revival%20-17154-sd.jpg
172.67.152.66200 OK 24 kB URL HTTP/2 img.pagalworld.icu/%20%20Ek%20Main%20Aur%20Ek%20Tu%20Revival%20-17154-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash b007b94dc7d836756150d19ed273f713
8207d245fd75ff6e21fb03389d62ff4696d364e6
aec29d5619d4dd471ac6fd5e72fcf0744fc18d5e6033d356b4de59a58a8421c8
GET /%20%20Ek%20Main%20Aur%20Ek%20Tu%20Revival%20-17154-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: image/jpeg
content-length: 24158
last-modified: Fri, 19 Mar 2021 00:59:24 GMT
etag: "5e5e-5bdd93a1bb300"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=40Nrj0Ik1Fhqs2M9GPvi4IEh25sKwLVAAeeG4h4aQ8NrAM%2FYNckNOdZqzy5BPhAm94Ws1zV615qbpv8EYPn%2FzMKe3IOWq58gg3l8jt9UGK1J2XRkLDyQ4oIcao25I1PQX2bT4v0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9912b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.4.0/css/bootstrap.min.css
104.18.11.207200 OK 21 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.0/css/bootstrap.min.css
IP 104.18.11.207:0
File type ASCII text, with very long lines (65369)
Hash 325e21bb3fd911187139c166922c76c0
51cf386e07816991472ffdfcd04d418031e00552
b5228f7a0b975ff14fb9ba54acb66f8bad25df91b0f3102c5b3dff1ada22718d
GET /bootstrap/3.4.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-04-23 02:09:03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 58a14c611aed8364c087bd7ac1dea21e
cdn-cache: HIT
cf-cache-status: HIT
age: 17681569
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 770cbfaebb671c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
104.21.234.92200 OK 28 kB URL HTTP/1.1 friendshipmale.com/sfp.js
IP 104.21.234.92:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash b1fa950e77a7db5425f9a5257af02e9c
2d5580451f34ad96218f8b97edf9708f9ee1be87
d999c4320df27dc4a1d3de5aec22bb3ef201560b47a7eff3f28f4133c1997a14
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 17:57:53 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: max-age=14400
X-Request-ID: 76b225aba67f6b7a834c93680a2153d7
Strict-Transport-Security: max-age=0; includeSubdomains
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 27 Nov 2022 17:57:53 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kaoudu7U9CwTiRaIqQUgxTeMqMVvCqYF7xqlh7FcbAzppTZIIyBGcxhYCMI9KDjEiypR4t44dn8tdBxHhUIT9X1v2K8KEnkYearC5baK%2BxxR4zpE6pBaFaTLMWOAXLkjZWD49R0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770cbfb25c0f7519-LHR
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 8781ef7b81ea378c87b9b75e52115397
df3106ed152971215d454459c4e7ad93559aa4ca
e44e3b4621bc2e63c4b7a69aee8cf240a496c5d1cdef6b26f5a6036c0e3007a1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=159581
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63836697-1d7"
Expires: Tue, 29 Nov 2022 14:17:34 GMT
Last-Modified: Sun, 27 Nov 2022 13:31:03 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2GO9XZvEbLI0bMg9LeKwFOdfwzc3w2LP7yihYbF0P01bY4-pdPDfdA==
Age: 2791
addresseepaper.com/sfp.js
34.160.73.230429 Too Many Requests 298 B URL HTTP/1.1 addresseepaper.com/sfp.js
IP 34.160.73.230:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2d276fc22806d34e2355196fe7bea1f3
0f2c85ecd7a43e866345fd0eafe5e0fdd4aa7acf
9e522902dee04e1345219cee056a1a291ba4eca674870853ab05f3579875ff38
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 429 Too Many Requests
Server: openresty
Date: Sun, 27 Nov 2022 17:57:53 GMT
Content-Type: text/html
Content-Length: 298
ETag: "6382c400-12a"
Via: 1.1 google
simplewebanalysis.com/stats
18.185.190.54200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.185.190.54:0
File type ASCII text, with no line terminators
Hash 14866a76e6d454766c3102a799403f02
d375250581d08a739369e5b3ae9c167ad1408df8
42c5b44ef832cbaad6b56aac9395f618bab34b7aa38e186a5e27bbca2a80b758
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
set-cookie: uid_id2=f8d67f21-c84d-4564-a5fb-273a0fd24c06:2:1; expires=Wed, 24 Nov 2032 17:57:53 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 8781ef7b81ea378c87b9b75e52115397
df3106ed152971215d454459c4e7ad93559aa4ca
e44e3b4621bc2e63c4b7a69aee8cf240a496c5d1cdef6b26f5a6036c0e3007a1
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=159092
Date: Sun, 27 Nov 2022 17:57:53 GMT
Etag: "63836697-1d7"
Expires: Tue, 29 Nov 2022 14:09:25 GMT
Last-Modified: Sun, 27 Nov 2022 13:31:03 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: T5FV4lBdUmAF2jXCG_HVfo8KB_7rECOvfI4D1hdwdxWs3HFHpojeaA==
Age: 2302
simplewebanalysis.com/stats
18.185.190.54200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.185.190.54:0
File type ASCII text, with no line terminators
Hash a1699a86d528db3652f0dc2e94c78ab6
824050c4b772d22f63aa2f4974bf3e2424d09e6d
f1360dde0730685c3bf27db585927ad037e140d83294585747ad6a6ff6339010
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
set-cookie: uid_id2=a9cf5226-06e4-429b-9cbc-4d5065a804bf:3:1; expires=Wed, 24 Nov 2032 17:57:53 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d806f8e017213ca00f9627919599c458
11cff62cd2bba8c0f1acdd7b77f3064841292a04
19a022f3f2beacae21adf6828cbdcf755a843ab28fdd98a524a23946304ca509
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "19A022F3F2BEACAE21ADF6828CBDCF755A843AB28FDD98A524A23946304CA509"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6503
Expires: Sun, 27 Nov 2022 19:46:16 GMT
Date: Sun, 27 Nov 2022 17:57:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d806f8e017213ca00f9627919599c458
11cff62cd2bba8c0f1acdd7b77f3064841292a04
19a022f3f2beacae21adf6828cbdcf755a843ab28fdd98a524a23946304ca509
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "19A022F3F2BEACAE21ADF6828CBDCF755A843AB28FDD98A524A23946304CA509"
Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5553
Expires: Sun, 27 Nov 2022 19:30:26 GMT
Date: Sun, 27 Nov 2022 17:57:53 GMT
Connection: keep-alive
phortaub.com/zone?pub=0&zone_id=3131271&is_mobile=false&domain=pagalworld.icu&var=&ymid=&var_3=
139.45.197.250200 OK 705 B URL HTTP/2 phortaub.com/zone?pub=0&zone_id=3131271&is_mobile=false&domain=pagalworld.icu&var=&ymid=&var_3=
IP 139.45.197.250:0
File type JSON data\012- , ASCII text, with very long lines (704)
Hash fc065dda97be756d06f9eec3777e5e7a
f2d362fd1fbfb265f0247e7bf5ca606a683f799f
807afac26c18da8a6cc4582bc6d4b535a81029434bc092b526e9f61b655fbee2
GET /zone?pub=0&zone_id=3131271&is_mobile=false&domain=pagalworld.icu&var=&ymid=&var_3= HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Origin: http://pagalworld.icu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: application/json; charset=utf-8
content-length: 705
x-trace-id: 61edabbafc13321709e269d08f502745
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
img.pagalworld.icu/2785220px-Dhanwan1981filmposter.png
172.67.152.66200 OK 138 kB URL HTTP/2 img.pagalworld.icu/2785220px-Dhanwan1981filmposter.png
IP 172.67.152.66:0
File type PNG image data, 220 x 302, 8-bit/color RGBA, non-interlaced\012- data
Size 138 kB (138096 bytes)
Hash 16edb6aebe337d78bfc6c64889950e07
37d0b2a6e5d4c12f316c4a2d427af5d523214668
1e03ec97b8d4058741e636484ed2563c47c31c66c11319cfffb4958149279d38
GET /2785220px-Dhanwan1981filmposter.png HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:54 GMT
content-type: image/png
content-length: 138096
last-modified: Fri, 19 Mar 2021 00:18:14 GMT
etag: "21b70-5bdd8a6e27d80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u8NxgtyVE3bDI3RS3R%2Fz2v8vTOmtZtYqr0DI2oJjVK%2BLKwscES2aU5P0xKzycSMHGev%2FfGEosWv8GBQE2xhQBybmAra%2BkV3ytidyWerSEeQ8Wzirau9xUADdXDWq8ECnLMAa8G0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9924b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.214.64.191101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.64.191:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Balo75ADzRzNeek6tDwcWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WGwH3gToYYvyvXnRBY9i5GGJT5w=
reproductiontape.com/pixel/purst?dl=0&th=0&sc=0&rs=1227&rd=1227&fd=718&bv=22.10.v.9&tmpl=70
173.233.137.44200 OK 0 B URL HTTP/1.1 reproductiontape.com/pixel/purst?dl=0&th=0&sc=0&rs=1227&rd=1227&fd=718&bv=22.10.v.9&tmpl=70
IP 173.233.137.44:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=1227&rd=1227&fd=718&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: reproductiontape.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:54 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
banquetunarmedgrater.com/advertisers.js
192.243.61.227200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sun, 27 Nov 2022 17:57:54 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d40524a4ccf275eb561de179b9a7c03c
Strict-Transport-Security: max-age=0; includeSubdomains
phortaub.com/pfe/current/universal.min.js?v=3.1.405
139.45.197.250200 OK 34 kB URL HTTP/2 phortaub.com/pfe/current/universal.min.js?v=3.1.405
IP 139.45.197.250:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 94a0282fa95d32134e9eefee3f7d3fd0
d4c14b5ecd267b0fd586ea4ecdcc30ef018296a9
07685d786f54a920bb1e2510c3a2e828b661b9079f6b7ee0f8261bca6a99506b
GET /pfe/current/universal.min.js?v=3.1.405 HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Origin: http://pagalworld.icu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 15:53:54 GMT
etag: W/"637f9392-180b9"
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
phortaub.com/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Content-Type: application/json
Origin: http://pagalworld.icu
Content-Length: 388
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:54 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: b57b9de82dbc4c5d703c1f8f91c474d0
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43dca8ebcf06bd09eb16b5516072ec48
84fe572e189c13383dc0a805a90c07de69c48ee6
be524e069364f1231ff9f6f8a5ca6ae8aa4353ba95fa7913c30c13ed008ab8fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE524E069364F1231FF9F6F8A5CA6AE8AA4353BA95FA7913C30C13ED008AB8FD"
Last-Modified: Sat, 26 Nov 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4192
Expires: Sun, 27 Nov 2022 19:07:46 GMT
Date: Sun, 27 Nov 2022 17:57:54 GMT
Connection: keep-alive
my.rtmark.net/gid.js?pub=0&userId=32fc2c2cde0e4288ada26ebde8474313&zoneId=3131271&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?pub=0&userId=32fc2c2cde0e4288ada26ebde8474313&zoneId=3131271&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 7234c905cd3b7546fc598f85d4692d92
7444699c5f349cccfc426990dfc8925d7b28b0fb
81a3f6eecf2a7a856c321d903f9c336abce35b627a529e6609e93ef5dbd765ee
GET /gid.js?pub=0&userId=32fc2c2cde0e4288ada26ebde8474313&zoneId=3131271&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Origin: http://pagalworld.icu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:54 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: http://pagalworld.icu
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=32fc2c2cde0e4288ada26ebde8474313; expires=Mon, 27 Nov 2023 17:57:54 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js
104.18.11.207200 OK 11 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.4.0/js/bootstrap.min.js
IP 104.18.11.207:0
File type ASCII text, with very long lines (37481)
Hash 2e774538276207e7f42cae72ee63f7ae
12292c73bd56c7f3e5ee70b244c5564fa671ed3b
eae9aa8b0288ca410243a34f096eb29b66c85d98fbdbf155052a0c7d179d6037
GET /bootstrap/3.4.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:53 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 565, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 2021-04-23 06:53:05
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 82949e3a4ffefb0b3980b7d96ff76a06
cdn-cache: HIT
cf-cache-status: HIT
age: 17682180
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 770cbfaeab531c06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
phortaub.com/pfe/current/defaultSkin.min.js
139.45.197.250200 OK 19 kB URL HTTP/2 phortaub.com/pfe/current/defaultSkin.min.js
IP 139.45.197.250:0
Hash 18d7f9cdf8cececa9acb9366eb878a4f
08cdcc747f5d191783dd258d060baf8e05cb6c3e
fef084b87169d9b60465bc7bf8028af6b67a2b2c8e1bd6c3cd3d3f98a378f9c9
GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Origin: http://pagalworld.icu
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:54 GMT
content-type: application/javascript
last-modified: Thu, 24 Nov 2022 15:53:54 GMT
etag: W/"637f9392-df63"
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
soldierreproduceadmiration.com/sbar.json?key=c6b92c162a22d5dd2c349c5253cbe8a1&uuid=f8d67f21-c84d-4564-a5fb-273a0fd24c06%3A2%3A1
173.233.137.60200 OK 4.0 kB URL HTTP/1.1 soldierreproduceadmiration.com/sbar.json?key=c6b92c162a22d5dd2c349c5253cbe8a1&uuid=f8d67f21-c84d-4564-a5fb-273a0fd24c06%3A2%3A1
IP 173.233.137.60:0
File type JSON data\012- , ASCII text, with very long lines (5746), with no line terminators
Hash 6c2e6691be91c8e73183c232c91b62ad
5f4bef781c0ced0d87e52a138bf48cd5d394162b
f4271a8e6e0e64a8b8ed2f0ee839780eb3d9751e9f74b926b285838ffa9c3910
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=c6b92c162a22d5dd2c349c5253cbe8a1&uuid=f8d67f21-c84d-4564-a5fb-273a0fd24c06%3A2%3A1 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:54 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://pagalworld.icu
Access-Control-Allow-Origin: http://pagalworld.icu
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15732016; expires=Mon, 28 Nov 2022 17:57:54 GMT; secure; SameSite=None
uid_id2=f8d67f21-c84d-4564-a5fb-273a0fd24c06:2:1; expires=Sun, 04 Dec 2022 17:57:54 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 28 Nov 2022 17:57:54 GMT; secure; SameSite=None
uncs=1; expires=Mon, 28 Nov 2022 17:57:54 GMT; secure; SameSite=None
pdhtkv29=true; expires=Mon, 28 Nov 2022 17:57:54 GMT; secure; SameSite=None
uncs29=1; expires=Mon, 28 Nov 2022 17:57:54 GMT; secure; SameSite=None
slecc6b92c162a22d5dd2c349c5253cbe8a1=[3760946]; expires=Sun, 27 Nov 2022 17:57:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0dfcf6def83433fef68ddc604bef80e6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
img.pagalworld.icu/Kaam%20Krodh%20Aur%20Lobh%20Ka%20Mara%20Jagat-13332-sd.jpg
172.67.152.66200 OK 17 kB URL HTTP/2 img.pagalworld.icu/Kaam%20Krodh%20Aur%20Lobh%20Ka%20Mara%20Jagat-13332-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash e307524e40140d71d4e4c001fa8208e7
9de146cf0aefed61a24ecd2fae30d3fb43a14456
9fbff5966f77d7bfee5aab61a9ac29036742934ad307ce97ceb9c3c194e5fc4c
GET /Kaam%20Krodh%20Aur%20Lobh%20Ka%20Mara%20Jagat-13332-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 16557
last-modified: Fri, 19 Mar 2021 00:28:02 GMT
etag: "40ad-5bdd8c9eea880"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SDK7eqHJOwK0d%2FJw%2FmAxhrcOMpN19dW9gK7xUna767SPGwvk7qx7tIjO9mCyP4zVbNAHr23FA%2FhQ198vzc7jWnWTQuxO0GKxRmWzQiZoAk7QyTCZ7VWioEPO0l2xBR3P48NVqKM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9916b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/2918220px-Awaaz.jpg
172.67.152.66200 OK 20 kB URL HTTP/2 img.pagalworld.icu/2918220px-Awaaz.jpg
IP 172.67.152.66:0
File type JPEG image data, baseline, precision 8, 220x294, components 3\012- data
Hash ecb77140114bfde8912d367d428c240a
06d0fbda15e21d9fd3ea7166fd46b51e7616bf74
1780d8b3bc365b0887c38ff46c0e1f741fcf34e9c5d90aa612e59b71c65754bd
GET /2918220px-Awaaz.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 20526
last-modified: Fri, 19 Mar 2021 01:01:48 GMT
etag: "502e-5bdd942b0f700"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S55fQuEmvYcTSgrIXIS4DuZpd9vjA4cyyH1iPmpyd3LLQ84sXw15N2pr2uiQMR6FU4dhBYo96ZNnVx%2BgpAaQUQJKJIgHFHOU3HTSbRKrt3v%2B%2Fj2IkakyTUivEq1c5v0nOkze9Js%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9919b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
soldierreproduceadmiration.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRytjhFkxYOyF0FlEBEFM%2Bnu6Z4P97C4riuL%2BxF2V3Kur56UqelqqrqnJ7kYDMgePIx48dh5k2xQw%2BL%2BAaJM9iIBIeNBcjB3b4tizjKTgeDvUL%2BP9zu89%2Br35U5xSnwU9GTlttlUWtPluO7X3llVqTClq915UAv8un%2BltqrSZnSlNpg%2Btv9%2B4Md1%2F93ax5Kvm%2BXQD3w%2F8IPaDWVlYgbLMxQqO%2BgE9Y5fj8J6EEcY2P%2F3rvDgqAfRPyWvQInJ82u%2FPoHiY6S9H69Lt56b7L2PeoWmubHoi%2F1P0%2FXUlCl6F2ViPSTp%2Fnwbxk0I%2BXYBJt2fK4Dp704VgKkJ8f4IwNL9OU2w%2Ft45U6YhUzDxIsr%2BGFKPoegY3GxDiWMCcIE7d5H2Ht0xtqQb5yidohOyePYPVDkhi39eRtp7fE2rQe2%2B0UWuTOowSCqowRiqO0ZWHCLf9KDKQ%2FD8CyjxG1k%2Bu4W0t3vXaQMlTt5K2qLZSsJgibcjsRTFzWiJxglbClsN6icijLjfnFmk1BgqGUPLIahbQOE8FMpDkXgoMg89cVKjcSfx%2FVbCkkajHXHOGw3O43ZTxKIRtRMfBZ9qGCLPhuB6CG63kNktrKshbPEL3FoFJzy4nKAvKpSSoHQEJSUoFUGZE5T9ak9oF7rqkdCuYME8h%2FPcqEYm7%2B7QPZN3ZUp2slPy8sy4Zy%2F5WJcnNd5knZAHzZCGoYiFCHkj6vA4jBucyTYN4FQF5RZAnYdNNSEL%2F36OTB37l8DoIZw%2BBFeXQYvXQctRK%2FRB10ZR28dm%2BjijXapLY7WoK15AmApZvoh8w9vRp%2BTVGY8ODyH50dWz1w5eCN7%2BC9xWyGyFz9RTgq5%2BOLpnSrJ7z5SOPLmb5aqnNun0c%2B%2FnNJeL338iN0pjxc3rbvjdB3wKTMuDB9Llt2gqVNp15IdrSghpbxjLJfnppluVbKVwa9cKmxbZrZUPb9zsZVY6p0w6BlXHrW%2FA1YRcur01O9s3vnoKZcewRYVecUTmAWUOwbMtuOzo6t%2FzmTMEVl%2FssMxDWVQjG7KLoVYEWl70lFVw8sICJo9%2BfnaO7biH6FoPNN9G2qvQtxX6ugLVQ7jiuVGe2aOrvzdmAaa9EdPW22Xa6q%2FPrXXqpCbjxE%2BkH0qWdFjSor7oJFGH0U4gWyymAXI34dt7b%2F4HAAD%2F%2FwEAAP%2F%2FLD69wo4EAAA%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 soldierreproduceadmiration.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRytjhFkxYOyF0FlEBEFM%2Bnu6Z4P97C4riuL%2BxF2V3Kur56UqelqqrqnJ7kYDMgePIx48dh5k2xQw%2BL%2BAaJM9iIBIeNBcjB3b4tizjKTgeDvUL%2BP9zu89%2Br35U5xSnwU9GTlttlUWtPluO7X3llVqTClq915UAv8un%2BltqrSZnSlNpg%2Btv9%2B4Md1%2F93ax5Kvm%2BXQD3w%2F8IPaDWVlYgbLMxQqO%2BgE9Y5fj8J6EEcY2P%2F3rvDgqAfRPyWvQInJ82u%2FPoHiY6S9H69Lt56b7L2PeoWmubHoi%2F1P0%2FXUlCl6F2ViPSTp%2Fnwbxk0I%2BXYBJt2fK4Dp704VgKkJ8f4IwNL9OU2w%2Ft45U6YhUzDxIsr%2BGFKPoegY3GxDiWMCcIE7d5H2Ht0xtqQb5yidohOyePYPVDkhi39eRtp7fE2rQe2%2B0UWuTOowSCqowRiqO0ZWHCLf9KDKQ%2FD8CyjxG1k%2Bu4W0t3vXaQMlTt5K2qLZSsJgibcjsRTFzWiJxglbClsN6icijLjfnFmk1BgqGUPLIahbQOE8FMpDkXgoMg89cVKjcSfx%2FVbCkkajHXHOGw3O43ZTxKIRtRMfBZ9qGCLPhuB6CG63kNktrKshbPEL3FoFJzy4nKAvKpSSoHQEJSUoFUGZE5T9ak9oF7rqkdCuYME8h%2FPcqEYm7%2B7QPZN3ZUp2slPy8sy4Zy%2F5WJcnNd5knZAHzZCGoYiFCHkj6vA4jBucyTYN4FQF5RZAnYdNNSEL%2F36OTB37l8DoIZw%2BBFeXQYvXQctRK%2FRB10ZR28dm%2BjijXapLY7WoK15AmApZvoh8w9vRp%2BTVGY8ODyH50dWz1w5eCN7%2BC9xWyGyFz9RTgq5%2BOLpnSrJ7z5SOPLmb5aqnNun0c%2B%2FnNJeL338iN0pjxc3rbvjdB3wKTMuDB9Llt2gqVNp15IdrSghpbxjLJfnppluVbKVwa9cKmxbZrZUPb9zsZVY6p0w6BlXHrW%2FA1YRcur01O9s3vnoKZcewRYVecUTmAWUOwbMtuOzo6t%2FzmTMEVl%2FssMxDWVQjG7KLoVYEWl70lFVw8sICJo9%2BfnaO7biH6FoPNN9G2qvQtxX6ugLVQ7jiuVGe2aOrvzdmAaa9EdPW22Xa6q%2FPrXXqpCbjxE%2BkH0qWdFjSor7oJFGH0U4gWyymAXI34dt7b%2F4HAAD%2F%2FwEAAP%2F%2FLD69wo4EAAA%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRytjhFkxYOyF0FlEBEFM%2Bnu6Z4P97C4riuL%2BxF2V3Kur56UqelqqrqnJ7kYDMgePIx48dh5k2xQw%2BL%2BAaJM9iIBIeNBcjB3b4tizjKTgeDvUL%2BP9zu89%2Br35U5xSnwU9GTlttlUWtPluO7X3llVqTClq915UAv8un%2BltqrSZnSlNpg%2Btv9%2B4Md1%2F93ax5Kvm%2BXQD3w%2F8IPaDWVlYgbLMxQqO%2BgE9Y5fj8J6EEcY2P%2F3rvDgqAfRPyWvQInJ82u%2FPoHiY6S9H69Lt56b7L2PeoWmubHoi%2F1P0%2FXUlCl6F2ViPSTp%2Fnwbxk0I%2BXYBJt2fK4Dp704VgKkJ8f4IwNL9OU2w%2Ft45U6YhUzDxIsr%2BGFKPoegY3GxDiWMCcIE7d5H2Ht0xtqQb5yidohOyePYPVDkhi39eRtp7fE2rQe2%2B0UWuTOowSCqowRiqO0ZWHCLf9KDKQ%2FD8CyjxG1k%2Bu4W0t3vXaQMlTt5K2qLZSsJgibcjsRTFzWiJxglbClsN6icijLjfnFmk1BgqGUPLIahbQOE8FMpDkXgoMg89cVKjcSfx%2FVbCkkajHXHOGw3O43ZTxKIRtRMfBZ9qGCLPhuB6CG63kNktrKshbPEL3FoFJzy4nKAvKpSSoHQEJSUoFUGZE5T9ak9oF7rqkdCuYME8h%2FPcqEYm7%2B7QPZN3ZUp2slPy8sy4Zy%2F5WJcnNd5knZAHzZCGoYiFCHkj6vA4jBucyTYN4FQF5RZAnYdNNSEL%2F36OTB37l8DoIZw%2BBFeXQYvXQctRK%2FRB10ZR28dm%2BjijXapLY7WoK15AmApZvoh8w9vRp%2BTVGY8ODyH50dWz1w5eCN7%2BC9xWyGyFz9RTgq5%2BOLpnSrJ7z5SOPLmb5aqnNun0c%2B%2FnNJeL338iN0pjxc3rbvjdB3wKTMuDB9Llt2gqVNp15IdrSghpbxjLJfnppluVbKVwa9cKmxbZrZUPb9zsZVY6p0w6BlXHrW%2FA1YRcur01O9s3vnoKZcewRYVecUTmAWUOwbMtuOzo6t%2FzmTMEVl%2FssMxDWVQjG7KLoVYEWl70lFVw8sICJo9%2BfnaO7biH6FoPNN9G2qvQtxX6ugLVQ7jiuVGe2aOrvzdmAaa9EdPW22Xa6q%2FPrXXqpCbjxE%2BkH0qWdFjSor7oJFGH0U4gWyymAXI34dt7b%2F4HAAD%2F%2FwEAAP%2F%2FLD69wo4EAAA%3D HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Cookie: u_pl=15732016; uid_id2=f8d67f21-c84d-4564-a5fb-273a0fd24c06:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc6b92c162a22d5dd2c349c5253cbe8a1=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:55 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a895b10ffd770efb4888c5fe3f8d3a4c
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c7afa63a2e765a5889feedb036228204
546d048429118d6ff49049b948a6d39c3706b4e1
ce33ebbd5115ffaac9721eacc50f458d369b30dbc875379c5602fe846d078207
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE33EBBD5115FFAAC9721EACC50F458D369B30DBC875379C5602FE846D078207"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13978
Expires: Sun, 27 Nov 2022 21:50:53 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10758
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10758
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10758
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10758
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10758
Expires: Sun, 27 Nov 2022 20:57:13 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 10:16:35 GMT
age: 27680
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pagalworld.icu/logo%20white.png
172.67.152.66200 OK 15 kB URL HTTP/2 pagalworld.icu/logo%20white.png
IP 172.67.152.66:0
File type PNG image data, 100 x 69, 8-bit/color RGBA, non-interlaced\012- data
Hash 369738fc64c4e0cee2f9cede60332a56
ce17745fcb536a6f7c93b6766a49e0bd415d0385
6646734084405ba8487de829f2d226dcdb5e4bb59994bd1c9445eca6d00d6bc4
GET /logo%20white.png HTTP/1.1
Host: pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/png
content-length: 14717
last-modified: Sun, 29 Sep 2019 15:20:12 GMT
etag: "397d-593b2a7c94300"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eimrTndy4Gayg7iVK%2FI2LzelyEB%2BcFk2NW5y5TDEGNIJumYZ9CTar0iVZuZsHgFUwkADCz0t10GkgA4sYIND8pV77MuYs3u5OFstlsAv0XpBfX1DFn9KxP1ttnb08tN5sQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf88eeb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y0ofyT6UcPjB8mfRR1VMjHSTW64Qb_EQ0rrjsOdbby1CG-xMIFJMPw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:49:19 GMT
age: 72516
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
age: 72941
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 433875a1b1fef34e45f2d8ac344c07e3
f2129466436cbbdd58abe42a47fb7af19eba58e6
ab1e7b46f3804640c7dd94d70c8c31ec2dfc3e2f0f015a8556d04d9d9089c450
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F297e7532-86f8-4631-9062-cdd6a291b40b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5099
x-amzn-requestid: 57648043-7820-453d-9549-0f743b6c2557
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4jFBvoAMFl1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-53b59d607b82c264180f469d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsdLWuh4rCawI5V0YYGaHxEMl2YEVNgsbjfCwzDsrnCZhRK2FkCkVw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "f2129466436cbbdd58abe42a47fb7af19eba58e6"
content-type: image/jpeg
age: 72941
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 116eb5028a206e55f758f3e34887c87e
10577d9fc19028a0e0303634ec16ad8b2d41fa7a
d5d0f5518f8346e78f00a57632efe36f3363cabfa9abb30b7bea60261b29910b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5103
x-amzn-requestid: 203eadee-9375-4290-ae0a-dd48e83df697
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFGzTE90oAMFTyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637eb814-2c32253b155d5dd0283fdd07;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 00:17:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7tHm0mthR9kBsxWjBYctLA-AicheWuIxgPLw0UJtI8QhOv1oW13C3A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 14:46:13 GMT
age: 11502
etag: "10577d9fc19028a0e0303634ec16ad8b2d41fa7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
age: 72941
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3a1eb8e3d7b5e963c21e1905e849e570
fff8193edc6218562c5612b0e02f73dbcca98c0c
12db50941a08926a1f14146c52b53cfc6acc1dcb6ac858f6fcfb421330dfb12f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12DB50941A08926A1F14146C52B53CFC6ACC1DCB6AC858F6FCFB421330DFB12F"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13682
Expires: Sun, 27 Nov 2022 21:45:57 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3a1eb8e3d7b5e963c21e1905e849e570
fff8193edc6218562c5612b0e02f73dbcca98c0c
12db50941a08926a1f14146c52b53cfc6acc1dcb6ac858f6fcfb421330dfb12f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12DB50941A08926A1F14146C52B53CFC6ACC1DCB6AC858F6FCFB421330DFB12F"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13682
Expires: Sun, 27 Nov 2022 21:45:57 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive
img.pagalworld.icu/Is%20Dil%20Ne%20Socha%20Hai%20Jo-12761-sd.jpg
172.67.152.66200 OK 34 kB URL HTTP/2 img.pagalworld.icu/Is%20Dil%20Ne%20Socha%20Hai%20Jo-12761-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 15048c27e9bf478b18c8ff3f9077ca87
37da7dbf256f1a7e8b06a878365b806b3aaf235b
ff1869106fcfebe5413226174cfac5d815ddf96fab69117cbc5cd3742917cfa6
GET /Is%20Dil%20Ne%20Socha%20Hai%20Jo-12761-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 34414
last-modified: Fri, 19 Mar 2021 00:22:06 GMT
etag: "866e-5bdd8b4b68780"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rY4r4I2cdoZbtAqNnj5uxhQJ0g5Qtiz%2F1UCgKbGQF%2BVnYuUL8N%2F1cJczGVKlctidMFlmxJ8oRQ4L%2BLczG11pxXbYNrv5PvMk6aLgPEk4YTPSXP7ec4ksevn3AmL4V9dhHNbU5YU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf991db4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.10200 OK 660 B URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.10:0
Hash 55130bf120bd75a4bba7d678be617cdf
77b172c0cc1d15e60ab95edccf3ac1e640d16812
262b9e8c2eeba18bdc3dd53ac7bbacdbbec713a9443ff5dc34e359de56ea040d
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 27 Nov 2022 17:57:55 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/flash-logo.png
172.64.109.13200 OK 9.4 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/flash-logo.png
IP 172.64.109.13:0
File type PNG image data, 240 x 240, 8-bit colormap, non-interlaced\012- data
Hash 910542c04f8bf2f90ee33d17d538a006
18d5943e5d51539038f7988c34bccef2937c5545
5969cb3c5c4f573f5c05035ddf9748ee17d5c71df6fca4e484f65d30e2694e57
GET /sb/interstitial/software/flashPlayer/mac/multi/1/img/flash-logo.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/png
content-length: 9360
last-modified: Wed, 01 Sep 2021 12:22:39 GMT
etag: "612f708f-2490"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1051425
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pl9oEjRoep4W0xDVBvNWrjMl40kD7goGPuLbt6Dz0V59xzN1tzIJnUTnvX6%2BfPpIHLiC7FqBOSWGkCjnABsBjMt9z0lslz%2Fw%2BNzz8atLzLT21GhRExReqJyj7vQNlWC6g%2FSN3w7P4aZx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbd3ba3d184-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/%20%20Main%20Nachoon%20Too%20Bansi%20Baja%20-17518-sd.jpg
172.67.152.66200 OK 25 kB URL HTTP/2 img.pagalworld.icu/%20%20Main%20Nachoon%20Too%20Bansi%20Baja%20-17518-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 037f44c0d1c95cb05a096fa4b7afe930
831e63ea3072a0ac970617b63e0340c5ccf32b22
ef3e98e15769b2b2d08a9c012be604f67a2c25c955ae01279df72310e31fda64
GET /%20%20Main%20Nachoon%20Too%20Bansi%20Baja%20-17518-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 24609
last-modified: Fri, 19 Mar 2021 01:01:54 GMT
etag: "6021-5bdd9430c8480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ct9URUFSKQGmsvj0lDJiu1IhX8gpzU%2BBH%2Fb7KdeI%2FxzzgXVKWT867l42rB1huAuKMo1L202lMXkVTBRR3eJr1OaTb6gVntooEwb4Qsef1J%2FPhYf9SZ4G9K8xLUnXWh0K4Enk08E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9908b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/%20%20Gore%20Gore%20Galo%20Wali%20-17188-sd.jpg
172.67.152.66200 OK 32 kB URL HTTP/2 img.pagalworld.icu/%20%20Gore%20Gore%20Galo%20Wali%20-17188-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash f428999b904cae599d4dc4dbbe071baa
b9fcd9bf9068f9ec4896f2e79e3cfb0048fae01e
f916e9b507d24ed0af6153863a178412f2c949268b21fe65c2b58a48d3f01b27
GET /%20%20Gore%20Gore%20Galo%20Wali%20-17188-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 32509
last-modified: Fri, 19 Mar 2021 00:59:36 GMT
etag: "7efd-5bdd93ad2ce00"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=npsk7a9MjL1y%2FY%2FF2syRfiqt15H%2BBwayLoKzZSxh90cyPSFb9q4HqjlwuPy30eSJc8446WogHtFfTnfg1W0yCcUqSWeHVMdKf2rR9VxwqJqKQ%2FkMG6swNwPp%2FHv%2BVkIh1be2WyY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9923b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3a1eb8e3d7b5e963c21e1905e849e570
fff8193edc6218562c5612b0e02f73dbcca98c0c
12db50941a08926a1f14146c52b53cfc6acc1dcb6ac858f6fcfb421330dfb12f
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12DB50941A08926A1F14146C52B53CFC6ACC1DCB6AC858F6FCFB421330DFB12F"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13682
Expires: Sun, 27 Nov 2022 21:45:57 GMT
Date: Sun, 27 Nov 2022 17:57:55 GMT
Connection: keep-alive
soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Findex.html&l=3323&fd=146
173.233.137.60200 OK 0 B URL HTTP/1.1 soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Findex.html&l=3323&fd=146
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Findex.html&l=3323&fd=146 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:55 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
img.pagalworld.icu/Main%20Jagoon%20Sari%20Rain-13330-sd.jpg
172.67.152.66200 OK 16 kB URL HTTP/2 img.pagalworld.icu/Main%20Jagoon%20Sari%20Rain-13330-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 1d4e5584db17b1b797f5dcb9bbdbf1cd
f5d8ba93fc82ca2974299ce38c4c6c8a0a8f2e88
3e538446a5de28c942dee6bfd4962bfa6601bb014134ceeb68a920dea9f669ac
GET /Main%20Jagoon%20Sari%20Rain-13330-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 15658
last-modified: Fri, 19 Mar 2021 00:28:00 GMT
etag: "3d2a-5bdd8c9d02400"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ea5kUnm2wvAOZ1yWXuDNTLwy6e%2FbiPWYAW6Bex4Y3LRNyJc84I%2BHo6FiuI5KLRm07WOdgmmHPdkkDhnJoYtQ4avRj6og17xDdohP%2BKuOBAf34yzpOk2WL5migz6ijw%2Fm9%2FOiWws%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98ffb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fanimate.css&l=79249&fd=332
173.233.137.60200 OK 0 B URL HTTP/1.1 soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fanimate.css&l=79249&fd=332
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fanimate.css&l=79249&fd=332 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:55 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fstyle.css&l=4522&fd=407
173.233.137.60200 OK 0 B URL HTTP/1.1 soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fstyle.css&l=4522&fd=407
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fcss%2Fstyle.css&l=4522&fd=407 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:55 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fjs%2Fscript.js&l=23003&fd=381
173.233.137.60200 OK 0 B URL HTTP/1.1 soldierreproduceadmiration.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fjs%2Fscript.js&l=23003&fd=381
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsoftware%2FflashPlayer%2Fmac%2Fmulti%2F1%2Fjs%2Fscript.js&l=23003&fd=381 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:55 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
img.pagalworld.icu/%20%20Ek%20Main%20Aur%20Ek%20Tu%20-17149-sd.jpg
172.67.152.66200 OK 24 kB URL HTTP/2 img.pagalworld.icu/%20%20Ek%20Main%20Aur%20Ek%20Tu%20-17149-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash b007b94dc7d836756150d19ed273f713
8207d245fd75ff6e21fb03389d62ff4696d364e6
aec29d5619d4dd471ac6fd5e72fcf0744fc18d5e6033d356b4de59a58a8421c8
GET /%20%20Ek%20Main%20Aur%20Ek%20Tu%20-17149-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/jpeg
content-length: 24158
last-modified: Fri, 19 Mar 2021 00:59:22 GMT
etag: "5e5e-5bdd939fd2e80"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2l3C36OjTIz7U47hEImBiCLCRl4BkpZJit06OfBj%2BTaqfqs7Zd7YnMd9W6cmDwUJmegrrq6vIyOUzJwlUfA3yDJ5FAwAfJwJHgyJA4BAaR8W8J2FE2Vm4vaSFtVNSRs8YlFIUAI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98fcb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/logo%20black.png
172.67.152.66200 OK 26 kB URL HTTP/2 img.pagalworld.icu/logo%20black.png
IP 172.67.152.66:0
File type PNG image data, 326 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash 816caeef212c7bb44f40d060188bf990
a8915a46eb470076263bd6e53987245c2baa66f0
21be8bc2613fc1209361c153bde7c014171c14ff6026c11163dbbdda6ab5a707
GET /logo%20black.png HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: image/png
content-length: 26148
last-modified: Sun, 29 Sep 2019 13:31:54 GMT
etag: "6624-593b12479a680"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m9WK%2FqqSQCz70i5ci30JfkUF2FtQr0jB16h6y5YCa02nlTy2jEqrtRaWh3JE2awhFvI8X5CiSmfO%2Brwn4KZ9ZFvXE%2F3OVYa34vGZhx%2F%2BJOybVn8boV%2FGK%2BUjNiosJahrT%2BlVXK0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98fdb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Meri%20Bahena%20O%20Meri%20Bahena%20-12087-sd.jpg
172.67.152.66200 OK 34 kB URL HTTP/2 img.pagalworld.icu/Meri%20Bahena%20O%20Meri%20Bahena%20-12087-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash fbf7b8a3dbe48b7c491e4ab7a8d7a723
0849d78486b1e59b93aa7df847014c6eae56f03b
f4b92fa26d16f26c8992dfae846c67eb2ae70463c771e107c8febca1d705c71c
GET /Meri%20Bahena%20O%20Meri%20Bahena%20-12087-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: image/jpeg
content-length: 33967
last-modified: Fri, 19 Mar 2021 00:16:08 GMT
etag: "84af-5bdd89f5fe200"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FwvGpNvuco%2BLU2GvU4JA1ESLDnI7wsYyczXeB68%2FQCqEUAcelbguuzexZyIr3KDU6pYnbtt0vxKecp%2FeUxP2CAIlrNsiTjcnyk0KQGt4t4KsCVMrRiKdSg6T%2FCJbdKQGGE3yi3I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf98f8b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Balle%20Balle%20Bhai-12320-sd.jpg
172.67.152.66200 OK 28 kB URL HTTP/2 img.pagalworld.icu/Balle%20Balle%20Bhai-12320-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 35107c951abf84a69f8245ffbef95d56
f98f13279e433071026a1d5e64ccff07f6f9722d
56921b22a1efa215553ce1154ae43d40681a5a1e6292c32e0182756a1ebe89fc
GET /Balle%20Balle%20Bhai-12320-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: image/jpeg
content-length: 28211
last-modified: Fri, 19 Mar 2021 00:18:10 GMT
etag: "6e33-5bdd8a6a57480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dz3qgknLq9r9qdFUXMOiVqg511SfO1fT7qjxBBS%2FHPEt6xBBPASvIOaPLEE4ioYcYrt2rOwFoxC%2FMpkSrzPxNFTEYWuX5WGhYkppmHdfuerg1wi%2BkfExVoZxTsUCcn8Re7kRHkM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf991eb4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/Peetal%20Ke%20Ghal%20Me%20Tital%20Bahar%20Acha%20Ya%20Bheetar-13328-sd.jpg
172.67.152.66200 OK 19 kB URL HTTP/2 img.pagalworld.icu/Peetal%20Ke%20Ghal%20Me%20Tital%20Bahar%20Acha%20Ya%20Bheetar-13328-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash bbc59a6e222b1f21ed50a8e76ddb4c14
76f975adee122c8c99ffc0e52bf00385fa5363e8
18e7530e9ae181b415bf1715f183f3a32184fbd9a1801c3be9720eb2717016f6
GET /Peetal%20Ke%20Ghal%20Me%20Tital%20Bahar%20Acha%20Ya%20Bheetar-13328-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: image/jpeg
content-length: 19406
last-modified: Fri, 19 Mar 2021 00:28:00 GMT
etag: "4bce-5bdd8c9d02400"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gfpJ6%2FdS%2FMCJo65EsjKconVfXNrPymFTZgPEkvwqfpHtkiba%2FgA8H%2BVdm3LoQNFdmzZPmKdV9JX0I0q%2BqnHvAqeNsfctavDsGccY%2BJCLidntt3ArNo3LQf%2B%2Bd4uFxEOIpzJ%2B1Js%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf991ab4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img.pagalworld.icu/%20%20Jai%20Matadi%20-17521-sd.jpg
172.67.152.66200 OK 25 kB URL HTTP/2 img.pagalworld.icu/%20%20Jai%20Matadi%20-17521-sd.jpg
IP 172.67.152.66:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Hash 037f44c0d1c95cb05a096fa4b7afe930
831e63ea3072a0ac970617b63e0340c5ccf32b22
ef3e98e15769b2b2d08a9c012be604f67a2c25c955ae01279df72310e31fda64
GET /%20%20Jai%20Matadi%20-17521-sd.jpg HTTP/1.1
Host: img.pagalworld.icu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: image/jpeg
content-length: 24609
last-modified: Fri, 19 Mar 2021 01:01:54 GMT
etag: "6021-5bdd9430c8480"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=th9i50u5papj2YGTjDCATVJF5gS8p7QwTYu0wBfaUI8X96LaCtweuwhFh%2F9F27PIC5jznSOc4ljj2mvniECPNMYWYgraJGvp%2BIZkc9iWzjA8h6nkGG0ejEhdIYIzzQLQ15XhIIk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfaf9928b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js
172.64.109.13200 OK 31 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js
IP 172.64.109.13:0
Hash ce7a472112025904fc8d60d184f7708d
8854b14a8c8b5a73a94b082df21ffb218c0cdee5
82dd1f7d8f26d3b941e39285fe39759b9e48eef92b6b8c854236c855f3d246ec
GET /sb/interstitial/software/flashPlayer/mac/multi/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: application/javascript
last-modified: Wed, 01 Sep 2021 12:22:36 GMT
etag: W/"612f708c-7082"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5Wf%2FbI8DeoGjge5bLxSofMI%2FHF7kKterVKpQCytacwNExUemGpgSqyloVm%2BZUjQErn4pwN6JfVeHnngAmRNXW9p5HiVN6QUtvHVn2HEYkENYd8yu06fAGk%2BUoYhJ2Nc5UYtYJBuweXmd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbdace9d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
soldierreproduceadmiration.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitjhFkxYOyF0FlEBEFM%2Bmf88M9LK7rSjCbhN2VnKurqidlarqaqu7pSS4GA7IHDyNePHbeJBvUsLh%2FgCiTvUhAyHiQHMzd26KYs8xkIPgd6vvxvsN7r74v94pz4qKgZ2t39bZUii5Gdbf2zrpMuS5tbeVBzXPr7o3aukwb4Y1af%2FKY3vueG9Xdd2sfC7apF33Xc13P9Wp3pBGJ7i9OUcjsqO3V22499OteFKJv%2Ft%2FbwoGlDnjvnLwCycfPb%2Fz6BJKNkHZ%2FvC3sZq6z9z7qForm2qDHDz9NN1NdpuhelYlxkKSHs21oOybk2zno9HCmALq3P1GAWI6J84eHOD2c0UTcO7hkGiuIFDF%2FEWVvBKFGkHQEpnch%2BSkBGMfKKtLuoxVtSrp1idIJOibzF%2F9AlmMy%2F%2Bd1pN3Ht5Ts1%2B5rVeRSpxb9pILsjyA7I2TFMfJtB7I8Bsu%2FgOS%2FkcWLZaTd%2FVWrNCQ%2Feytp8UYz8b0F1gr5Qhg1wgUaJfGC3wyom3A%2FZG5japGUI8hkBCUGoHYOhXVQSAdF4qDIHHT5WY1G7cR1m0mcBEErZIwFAWNRq8EjHoStxEXBJhoGyLMBmBqAmR1kZgebcgBT%2FAK7UcFyBzYn6PEKpSAoLUFJCUpJUOYEZa864Mr6tnrElS1ib5b9WQ6qoc47e%2FRA5x2Rkr3snLw8Ne7ZSy42xVmNNeK2z7yGT32fR5z7LAjbLPKjgMWiRT1YWUHaOVDrYFuOydy%2FnyOTp%2B41xPQYVh2Dyeugxeug5bDpu6Abw7DlYjt9nNEOVaU2itclK8B1hSyfR77l7Klz8uqUR5v5EOzk5sVrRy94b%2F8FZipkpsJn8ilBRz0c3tMl2b%2BnS0uerGa57MptOvnc%2BznNxfz3n4itUhu%2BdNsOvvuATYBJefRA2HyZplymHUt%2BuCU5F%2BaONkyQn5bsuojXCrtxqzBpkS2vfXhnqZsZYa3U6QhUnja%2FAZNjcu3uzvRs3%2FjqKaQZwRQVusUJmQWkPgbLdmCzk5t%2Fz2ZWExh1tRNnDsqiGho%2FvhoqSaDEVU%2FjClZcWRCLk5%2BfXWJ79iE6xgHNd5F2K%2FRMhZ6qQNUAtnhumGfm5ObvwTQQK2cYK%2BPsx8qory%2BttfKsFnmhaMWtJuM8Fox7TT9oBa7rcx4228JrI7djtnvw5n8AAAD%2F%2FwEAAP%2F%2FODYzJI4EAAA%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 soldierreproduceadmiration.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitjhFkxYOyF0FlEBEFM%2Bmf88M9LK7rSjCbhN2VnKurqidlarqaqu7pSS4GA7IHDyNePHbeJBvUsLh%2FgCiTvUhAyHiQHMzd26KYs8xkIPgd6vvxvsN7r74v94pz4qKgZ2t39bZUii5Gdbf2zrpMuS5tbeVBzXPr7o3aukwb4Y1af%2FKY3vueG9Xdd2sfC7apF33Xc13P9Wp3pBGJ7i9OUcjsqO3V22499OteFKJv%2Ft%2FbwoGlDnjvnLwCycfPb%2Fz6BJKNkHZ%2FvC3sZq6z9z7qForm2qDHDz9NN1NdpuhelYlxkKSHs21oOybk2zno9HCmALq3P1GAWI6J84eHOD2c0UTcO7hkGiuIFDF%2FEWVvBKFGkHQEpnch%2BSkBGMfKKtLuoxVtSrp1idIJOibzF%2F9AlmMy%2F%2Bd1pN3Ht5Ts1%2B5rVeRSpxb9pILsjyA7I2TFMfJtB7I8Bsu%2FgOS%2FkcWLZaTd%2FVWrNCQ%2Feytp8UYz8b0F1gr5Qhg1wgUaJfGC3wyom3A%2FZG5japGUI8hkBCUGoHYOhXVQSAdF4qDIHHT5WY1G7cR1m0mcBEErZIwFAWNRq8EjHoStxEXBJhoGyLMBmBqAmR1kZgebcgBT%2FAK7UcFyBzYn6PEKpSAoLUFJCUpJUOYEZa864Mr6tnrElS1ib5b9WQ6qoc47e%2FRA5x2Rkr3snLw8Ne7ZSy42xVmNNeK2z7yGT32fR5z7LAjbLPKjgMWiRT1YWUHaOVDrYFuOydy%2FnyOTp%2B41xPQYVh2Dyeugxeug5bDpu6Abw7DlYjt9nNEOVaU2itclK8B1hSyfR77l7Klz8uqUR5v5EOzk5sVrRy94b%2F8FZipkpsJn8ilBRz0c3tMl2b%2BnS0uerGa57MptOvnc%2BznNxfz3n4itUhu%2BdNsOvvuATYBJefRA2HyZplymHUt%2BuCU5F%2BaONkyQn5bsuojXCrtxqzBpkS2vfXhnqZsZYa3U6QhUnja%2FAZNjcu3uzvRs3%2FjqKaQZwRQVusUJmQWkPgbLdmCzk5t%2Fz2ZWExh1tRNnDsqiGho%2FvhoqSaDEVU%2FjClZcWRCLk5%2BfXWJ79iE6xgHNd5F2K%2FRMhZ6qQNUAtnhumGfm5ObvwTQQK2cYK%2BPsx8qory%2BttfKsFnmhaMWtJuM8Fox7TT9oBa7rcx4228JrI7djtnvw5n8AAAD%2F%2FwEAAP%2F%2FODYzJI4EAAA%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRitjhFkxYOyF0FlEBEFM%2Bmf88M9LK7rSjCbhN2VnKurqidlarqaqu7pSS4GA7IHDyNePHbeJBvUsLh%2FgCiTvUhAyHiQHMzd26KYs8xkIPgd6vvxvsN7r74v94pz4qKgZ2t39bZUii5Gdbf2zrpMuS5tbeVBzXPr7o3aukwb4Y1af%2FKY3vueG9Xdd2sfC7apF33Xc13P9Wp3pBGJ7i9OUcjsqO3V22499OteFKJv%2Ft%2FbwoGlDnjvnLwCycfPb%2Fz6BJKNkHZ%2FvC3sZq6z9z7qForm2qDHDz9NN1NdpuhelYlxkKSHs21oOybk2zno9HCmALq3P1GAWI6J84eHOD2c0UTcO7hkGiuIFDF%2FEWVvBKFGkHQEpnch%2BSkBGMfKKtLuoxVtSrp1idIJOibzF%2F9AlmMy%2F%2Bd1pN3Ht5Ts1%2B5rVeRSpxb9pILsjyA7I2TFMfJtB7I8Bsu%2FgOS%2FkcWLZaTd%2FVWrNCQ%2Feytp8UYz8b0F1gr5Qhg1wgUaJfGC3wyom3A%2FZG5japGUI8hkBCUGoHYOhXVQSAdF4qDIHHT5WY1G7cR1m0mcBEErZIwFAWNRq8EjHoStxEXBJhoGyLMBmBqAmR1kZgebcgBT%2FAK7UcFyBzYn6PEKpSAoLUFJCUpJUOYEZa864Mr6tnrElS1ib5b9WQ6qoc47e%2FRA5x2Rkr3snLw8Ne7ZSy42xVmNNeK2z7yGT32fR5z7LAjbLPKjgMWiRT1YWUHaOVDrYFuOydy%2FnyOTp%2B41xPQYVh2Dyeugxeug5bDpu6Abw7DlYjt9nNEOVaU2itclK8B1hSyfR77l7Klz8uqUR5v5EOzk5sVrRy94b%2F8FZipkpsJn8ilBRz0c3tMl2b%2BnS0uerGa57MptOvnc%2BznNxfz3n4itUhu%2BdNsOvvuATYBJefRA2HyZplymHUt%2BuCU5F%2BaONkyQn5bsuojXCrtxqzBpkS2vfXhnqZsZYa3U6QhUnja%2FAZNjcu3uzvRs3%2FjqKaQZwRQVusUJmQWkPgbLdmCzk5t%2Fz2ZWExh1tRNnDsqiGho%2FvhoqSaDEVU%2FjClZcWRCLk5%2BfXWJ79iE6xgHNd5F2K%2FRMhZ6qQNUAtnhumGfm5ObvwTQQK2cYK%2BPsx8qory%2BttfKsFnmhaMWtJuM8Fox7TT9oBa7rcx4228JrI7djtnvw5n8AAAD%2F%2FwEAAP%2F%2FODYzJI4EAAA%3D HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Cookie: u_pl=15732016; uid_id2=f8d67f21-c84d-4564-a5fb-273a0fd24c06:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc6b92c162a22d5dd2c349c5253cbe8a1=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:56 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d330f505f5a01b2310ca196f25615b69
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.sca1b.amazontrust.com/
143.204.42.88200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.88:0
Hash 0b989e80ddfee2ec1eef9e9fa74f4b43
c69d8c8e6e36d84e83f00af097ae20f605dc1af4
3faf87636a3c10cde2cf9196d112f4d385509e3354d789a5f83cb72ee3ed8db2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93850
Date: Sun, 27 Nov 2022 17:57:56 GMT
Etag: "63825731-1d7"
Expires: Mon, 28 Nov 2022 20:02:06 GMT
Last-Modified: Sat, 26 Nov 2022 18:13:05 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: n6KFgXejmXmdF5rHvs5_WaYoJ9GTpJnCBFs9cU151P-2OFXQQ3zPlA==
Age: 6541
l.sharethis.com/pview?event=pview&hostname=pagalworld.icu&location=%2Fhits%2Frakesh-roshan%2Factor&product=inline-share-buttons&url=http%3A%2F%2Fpagalworld.icu%2Fhits%2Frakesh-roshan%2Factor&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Top%2050%20Rakesh%20Roshan%20Songs%20-%20Download%20Best%20Songs%20of%20Rakesh%20Roshan%20Free%20Mp3%20Songs%20Download&cms=unknown&publisher=5dacb03960a0a30019a71d5d&sop=true&version=st_sop.js&lang=en&description=Download%20All%20Time%20Hit%20Mp3%20Songs%20by%20Rakesh%20Roshan%20for%20free%20on%20Pagalworld.%20Rakesh%20Roshan%20Latest%20Songs%20download%20for%20free.%20Best%20of%20Rakesh%20Roshan%20Hindi%20Movie%20Songs%20List%20%26%20Download%20Links
3.126.95.118204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&hostname=pagalworld.icu&location=%2Fhits%2Frakesh-roshan%2Factor&product=inline-share-buttons&url=http%3A%2F%2Fpagalworld.icu%2Fhits%2Frakesh-roshan%2Factor&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Top%2050%20Rakesh%20Roshan%20Songs%20-%20Download%20Best%20Songs%20of%20Rakesh%20Roshan%20Free%20Mp3%20Songs%20Download&cms=unknown&publisher=5dacb03960a0a30019a71d5d&sop=true&version=st_sop.js&lang=en&description=Download%20All%20Time%20Hit%20Mp3%20Songs%20by%20Rakesh%20Roshan%20for%20free%20on%20Pagalworld.%20Rakesh%20Roshan%20Latest%20Songs%20download%20for%20free.%20Best%20of%20Rakesh%20Roshan%20Hindi%20Movie%20Songs%20List%20%26%20Download%20Links
IP 3.126.95.118:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&hostname=pagalworld.icu&location=%2Fhits%2Frakesh-roshan%2Factor&product=inline-share-buttons&url=http%3A%2F%2Fpagalworld.icu%2Fhits%2Frakesh-roshan%2Factor&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Top%2050%20Rakesh%20Roshan%20Songs%20-%20Download%20Best%20Songs%20of%20Rakesh%20Roshan%20Free%20Mp3%20Songs%20Download&cms=unknown&publisher=5dacb03960a0a30019a71d5d&sop=true&version=st_sop.js&lang=en&description=Download%20All%20Time%20Hit%20Mp3%20Songs%20by%20Rakesh%20Roshan%20for%20free%20on%20Pagalworld.%20Rakesh%20Roshan%20Latest%20Songs%20download%20for%20free.%20Best%20of%20Rakesh%20Roshan%20Hindi%20Movie%20Songs%20List%20%26%20Download%20Links HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: http://pagalworld.icu
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Sun, 27 Nov 2022 17:57:56 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
soldierreproduceadmiration.com/pixel/sbs?c=1
173.233.137.60200 OK 0 B URL HTTP/1.1 soldierreproduceadmiration.com/pixel/sbs?c=1
IP 173.233.137.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://pagalworld.icu/
Cookie: u_pl=15732016; uid_id2=f8d67f21-c84d-4564-a5fb-273a0fd24c06:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc6b92c162a22d5dd2c349c5253cbe8a1=[3760946]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 27 Nov 2022 17:57:56 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144863886-2&cid=365700920.1669571876&jid=1823401900&gjid=1189076848&_gid=1489535445.1669571876&_u=YEBAAUAAAAAAACAAI~&z=801645618
142.251.1.156200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144863886-2&cid=365700920.1669571876&jid=1823401900&gjid=1189076848&_gid=1489535445.1669571876&_u=YEBAAUAAAAAAACAAI~&z=801645618
IP 142.251.1.156:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144863886-2&cid=365700920.1669571876&jid=1823401900&gjid=1189076848&_gid=1489535445.1669571876&_u=YEBAAUAAAAAAACAAI~&z=801645618 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://pagalworld.icu
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 27 Nov 2022 17:57:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 770555aa8a0a52c611bafb289ca8a650
62504cadc49747f328e3c31ad3aa7a740043072c
6317c8530220392b1339be640b8c1181c468ff8e3f3d1d5692b39cb32404216f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 17:57:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js
172.64.109.13200 OK 31 kB URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js
IP 172.64.109.13:0
File type ASCII text, with very long lines (32025), with CRLF line terminators
Hash e866d5a1e18c42e0d684595812aed7a7
533a1e9f541127c416956d1399b5092ba34c5bc4
4e685b03261b8f65ccffc80c1ee5965d40bd43713b7d586511d700f3e5634048
GET /sb/interstitial/software/flashPlayer/mac/multi/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: application/javascript
last-modified: Wed, 01 Sep 2021 12:22:37 GMT
etag: W/"612f708d-149a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1051425
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xm9M9FvKGCaYX8unrOcI1zi8%2FPcIH1YoI5pSQv%2BeOYhbcuPkqCU054vHtptKIn1iC%2FvrIYTYcYtUt2CDHdB8mAvM29E5xVHA3TpfKIDZJfcScID6Dwl1syuyUGyXfXhUHUByZPWlSdSn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbd3ba9d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
phortaub.com/custom
139.45.197.250200 OK 39 B IP 139.45.197.250:0
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: phortaub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://pagalworld.icu/
Content-Type: application/json
Origin: http://pagalworld.icu
Content-Length: 624
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 17:57:56 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: bfcfe80f31db01009c01653fe3936fec
access-control-allow-origin: http://pagalworld.icu
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=c6b92c162a22d5dd2c349c5253cbe8a1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17
192.243.59.20200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=c6b92c162a22d5dd2c349c5253cbe8a1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=c6b92c162a22d5dd2c349c5253cbe8a1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 27 Nov 2022 17:57:57 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c793bfba64cfd17cb6a8b81d45d68af5
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=ec08f8d38647fd47cf465d93241b63d7&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17
192.243.59.20200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=ec08f8d38647fd47cf465d93241b63d7&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17
IP 192.243.59.20:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=a9cf5226-06e4-429b-9cbc-4d5065a804bf&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1053&b_frame=0&pk=ec08f8d38647fd47cf465d93241b63d7&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://pagalworld.icu/
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Sun, 27 Nov 2022 17:57:57 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 08acb757c074b4847a2babb4822ade06
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css
172.64.109.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css
IP 172.64.109.13:0
GET /sb/interstitial/software/flashPlayer/mac/multi/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: text/css
last-modified: Wed, 01 Sep 2021 12:22:34 GMT
etag: W/"612f708a-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V%2BnuqsdnbHN3gskvxt%2BICo0aZC%2B37y%2BUUoYuzCHpaI9K0R%2BpJCMDJZPqaM5F%2BErbldxG9UXCHJOY6EajGsL9VJmmYqQCs0RlQZ0ZmUVu8yH0sFSIwv7Cz6o%2FxIZxE9agSnONBDgn40Is"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbd0b07d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css
172.64.109.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css
IP 172.64.109.13:0
GET /sb/interstitial/software/flashPlayer/mac/multi/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: text/css
last-modified: Wed, 01 Sep 2021 12:22:34 GMT
etag: W/"612f708a-11aa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZULNiHSlzHwiVaMm06Tij11FmLaj4zWHNfds%2B1oARsFKYZ0rnmjvwawIqKdswn%2FcMCYuCUXsP5dVYQWJuRWoiw70600YF15yd%2FgcE582M6w%2FK%2FtyYCI64XfdayW9zosQ%2B5NdQhd8WyCW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbd0b15d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/interstitial/software/flashPlayer/mac/multi/1/index.html
45.133.44.3200 OK 0 B URL HTTP/2 cdn.barscreative1.com/sb/interstitial/software/flashPlayer/mac/multi/1/index.html
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
Analyzer Verdict Alert fortinet Phishing
GET /sb/interstitial/software/flashPlayer/mac/multi/1/index.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://pagalworld.icu
Connection: keep-alive
Referer: http://pagalworld.icu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Wed, 01 Sep 2021 12:22:33 GMT
etag: W/"612f7089-cfb"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sun, 27 Nov 2022 18:57:55 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/close.svg
172.64.109.13200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/interstitial/software/flashPlayer/mac/multi/1/img/close.svg
IP 172.64.109.13:0
GET /sb/interstitial/software/flashPlayer/mac/multi/1/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 27 Nov 2022 17:57:55 GMT
content-type: image/svg+xml
last-modified: Wed, 01 Sep 2021 12:22:39 GMT
etag: W/"612f708f-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1051425
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DkRcNIPnAsEgRREYxjYB4g%2BBjnkEQTEFaXxn2j6iMxeQFGXRCBH%2Fi9vGp49EfWar5k3el%2BGtBqEOKh8BmGIzYNxV%2FVrHht4HeXB%2FF86IAgD78X1%2BGGto4CuAvE5o2x36rYh8%2FzPnjkeY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 770cbfbd3b97d184-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2