r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8484
Expires: Sat, 26 Nov 2022 05:21:29 GMT
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10864
Expires: Sat, 26 Nov 2022 06:01:09 GMT
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6293
Cache-Control: max-age=119762
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:00:05 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 12:16:07 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HCy3cTp1gWH1RccvwVfd9fuJYyTteIKOYkqzMhljaswmEfq0BepWdXjT7pV5QcOMvo3qQg0C6ek=
x-amz-request-id: CYXHD748Y2JY4FNT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 02:44:04 GMT
age: 961
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 02:17:29 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2556
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 03:00:05 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 02:08:53 GMT
cache-control: public,max-age=3600
age: 3072
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1287
Cache-Control: max-age=109693
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 03:00:05 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 09:28:18 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.89.20.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.20.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kp3Hotzlob+K6YtocjQVEQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +N0VTsb3o7DlDgFVRcsPzo/vuyo=
waptrick.com/en/free/music_clip/Crookers/
104.36.23.148200 OK 3.6 kB URL HTTP/1.1 waptrick.com/en/free/music_clip/Crookers/
IP 104.36.23.148:0
File type gzip compressed data, from NTFS filesystem (NT)\012- data
Hash f5bdb26c3332a3bafa564453e8712e50
b44e7bf414cf5e73f6e7a21a940197e483be81f6
370fc8ae2eeac3c3e0f19c5c983ee6a17b3d94c9d7729b812d5e57c5d0fa6cab
GET /en/free/music_clip/Crookers/ HTTP/1.1
Host: waptrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: Microsoft-IIS/7.5
Date: Sat, 26 Nov 2022 03:02:07 GMT
Content-type: text/html; charset=utf-8
Expires: 0
Pragma: no-cache
Cache-control: max-age=0, no-store, no-cache, must-revalidate
Vary: accept-encoding, user-agent
Set-cookie: uuid=0xe03ccf447ac542eb;Domain=waptrick.com;Expires=Sat, 10-Dec-2022 03:02:07 GMT;Path=/
Content-encoding: gzip
Transfer-encoding: chunked
Connection: close
a.exdynsrv.com/ad-provider.js
205.185.216.42200 OK 26 kB URL HTTP/1.1 a.exdynsrv.com/ad-provider.js
IP 205.185.216.42:0
File type ASCII text, with very long lines (51135)
Hash bef8e9b8d238059b5c788b546ea4d2aa
8bb0b900a626c0274186f5747818116c0eb19122
27c108a4c55844d2d32eb2c184efdf4c4876594ada3342fcd2d91eee7f9d69ad
GET /ad-provider.js HTTP/1.1
Host: a.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:00:06 GMT
Connection: Keep-Alive
Content-Encoding: gzip
Content-Length: 26096
Content-Type: application/javascript
Accept-Ranges: bytes
Cache-Control: max-age=10800
Server: nginx
etag: W/"08fd416be34548d344756381db6"
X-HW: 1669431606.dop223.sk1.t,1669431606.cds244.sk1.shn,1669431606.dop223.sk1.t,1669431606.cds246.sk1.c
Access-Control-Allow-Origin: *, *
samp.waptrick.org/js/jquery_scroll.js
162.251.163.98200 OK 2.0 kB URL HTTP/1.1 samp.waptrick.org/js/jquery_scroll.js
IP 162.251.163.98:0
File type ASCII text, with CRLF line terminators
Hash e183fa3c407ab5574fd031fc9dff9c82
60dcaf14911262a7312d92f5218d06c3c558cb8e
84714cc57554d33bcac659c53b181b27d590a77445ed1ca84c0876fea58dabe8
GET /js/jquery_scroll.js HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 07:58:36 GMT
Accept-Ranges: bytes
ETag: "09eddbd4adfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:04 GMT
Connection: close
Content-Length: 1995
samp.waptrick.org/js/combinedv136.js
162.251.163.98200 OK 2.3 kB URL HTTP/1.1 samp.waptrick.org/js/combinedv136.js
IP 162.251.163.98:0
File type Unicode text, UTF-8 text, with very long lines (519), with CRLF line terminators
Hash 1c780d06b80889abc2b4dc2c42da1a0d
0b2e2d8d1dddd2e1a4644c5bd40fbac1c8ea1e45
3f40410d685839a594f1d8eb6dfec0e4c8adc7664774d4a796e84e912b038e51
GET /js/combinedv136.js HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 07:56:44 GMT
Accept-Ranges: bytes
ETag: "0c61b7b4adfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:04 GMT
Connection: close
Content-Length: 2279
samp.waptrick.org/css/htmlv125_basic.css
162.251.163.98200 OK 5.8 kB URL HTTP/1.1 samp.waptrick.org/css/htmlv125_basic.css
IP 162.251.163.98:0
File type ASCII text, with very long lines (25053), with no line terminators
Hash 04fc8047a2f34f1b1d0e61e00e6ac803
777ff47e71982bfa284e04d8b63df0f203b7a6f1
0dcdc08230cb9ba8e66315ca0aff736f5543c643e07304de785631bf342d6dfa
GET /css/htmlv125_basic.css HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Thu, 31 Dec 2020 08:24:45 GMT
Accept-Ranges: bytes
ETag: "80410654edfd61:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:04 GMT
Connection: close
Content-Length: 5752
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20568
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:00:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20568
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:00:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20568
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:00:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20568
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:00:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20568
Expires: Sat, 26 Nov 2022 08:42:55 GMT
Date: Sat, 26 Nov 2022 03:00:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 801dd70f0c591086062e2a9054f78efc
6a2f4d4bfec41d16fa84b0a9b0b13f7dcff2be3d
ba28f27ea906aaa6db1fbdca53ecbd4366b99d2696fb888e47b731e21c0f82da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88ca6be9-2485-4243-a3fe-1e61449736dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6431
x-amzn-requestid: 0daa58b7-3fd8-463f-85f5-6f84fdb17661
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVOBEpEIAMF87A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381358c-3f8b9c18598ba2532518668d;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PuOd4PnHQfvwM2zDA15uprEEgoy7BfUUgjvkrf89DYmN43XfEfyJvg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:49:35 GMT
age: 18632
etag: "6a2f4d4bfec41d16fa84b0a9b0b13f7dcff2be3d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LDrq5UcFhG63XFZhmeS5Z_mEkwrvuQ2bLfT8hV9I3E1s1lJLZF5Dww==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
age: 18823
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 08:20:28 GMT
age: 67179
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 05:04:28 GMT
age: 78939
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 926df9839ec3d924b563b55d8bccace8
c47a3884465fc02b5c57faa5ffbd986ba29c64c2
a97cd625959aa81bc516024628315b2c6e2ce94f76cd579751a686a6611cc4d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18e649ab-6d56-47c9-ab7e-c65d9bdfcffd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6789
x-amzn-requestid: eede6332-5376-4f9c-83fc-f894430c1f4b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWYFFgoAMFhaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-66d7ffc70f7d901420a503da;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -6kE-HDfLIQMtzuaOuArCjtxgpQUgxMrpjcT7pDIdY7CDlJNK1GZWA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
etag: "c47a3884465fc02b5c57faa5ffbd986ba29c64c2"
content-type: image/jpeg
age: 18823
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash abd79421a3c44a8df11ad2cc50083309
8665e5f3026f2c2b9505eb139c478f4d359851c3
3a66b00498fa1322730705b1c4502614b5a520ac3f884f494d65e27a5bb62c3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4366
x-amzn-requestid: ce25f5ab-0c92-431e-ae4e-618829594a74
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNZFjHoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-6a3a8dff70e717011e3a0606;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 75AMMfa7oq0Y51YPEC_FEDOoNVc9cgfjg9bOSOXwikONPdhW7OG3uQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:48:10 GMT
age: 18717
etag: "8665e5f3026f2c2b9505eb139c478f4d359851c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
waptrick.one/en/free/music_clip/crookers
104.36.23.146301 Moved Permanently 31 kB URL HTTP/1.1 waptrick.one/en/free/music_clip/crookers
IP 104.36.23.146:0
File type gzip compressed data, from NTFS filesystem (NT)\012- data
Hash 2d44eb31876d3e86fccdf13a6be7dc3b
71287745c94bb9abd6856ca0a3a6becaa24f8435
467e02813b0c6f552a6a273a720c759c3b4a59e3a9a17f260eb28e6805d0ccac
GET /en/free/music_clip/crookers HTTP/1.1
Host: waptrick.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Microsoft-IIS/7.5
Date: Sat, 26 Nov 2022 03:02:06 GMT
Content-type: text/html
Pragma: no-cache
Cache-control: max-age=0, no-store, no-cache, must-revalidate
Vary: accept-encoding, user-agent
Location: http://waptrick.com/en/free/music_clip/Crookers/
Connection: close
Content-encoding: gzip
samp.waptrick.org/imgs/htmlcssv11/more_content_icon32x32.png
162.251.163.98200 OK 778 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/more_content_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash baec56d8e9b034c2849690fa5897ad47
d2ac9cce0eabd87eb375969970cc0647c03ec881
67c48950a529b391622aaddeaea1fe85fbb53c68557ecef82dbfc2c955171e2c
GET /imgs/htmlcssv11/more_content_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Wed, 09 Apr 2014 12:11:00 GMT
Accept-Ranges: bytes
ETag: "0227c5ec53cf1:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 778
samp.waptrick.org/imgs/htmlcssv11/clear_icon.png
162.251.163.98200 OK 294 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/clear_icon.png
IP 162.251.163.98:0
File type PNG image data, 21 x 15, 8-bit colormap, non-interlaced\012- data
Hash e7932d617d61ef466439d3379e29c5b4
5ffb19024492dc19a6108d0b6f0487f2193aadf7
ddec118279ef42ab6c7170391e8422ab7d647a85875cfd12b9ea4d55ea8cc7d6
GET /imgs/htmlcssv11/clear_icon.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 05 Oct 2012 15:59:42 GMT
Accept-Ranges: bytes
ETag: "0eb5d6e12a3cd1:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 294
samp.waptrick.org/imgs/htmlcssv11/back_change_language_icon32x32.png
162.251.163.98200 OK 3.0 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/back_change_language_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 9879e97102aaacacf42f1257a5afb761
e523a42312b049a9aadb51a0f0a62833ec1fca96
209d59d004a87671c892d53fffc966ec01aa511ba5cd5bef59c16b5455f24102
GET /imgs/htmlcssv11/back_change_language_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Wed, 09 Apr 2014 09:02:34 GMT
Accept-Ranges: bytes
ETag: "0712072d253cf1:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 3042
samp.waptrick.org/special/imgs/arrow2.gif
162.251.163.98200 OK 12 kB URL HTTP/1.1 samp.waptrick.org/special/imgs/arrow2.gif
IP 162.251.163.98:0
File type GIF image data, version 89a, 41 x 43\012- data
Hash f8189d98cbf1b8071b0df6ab8e637d97
b50d92ab9ff465669c3fdc3eae879c68b7561ff2
199258e3d406ba3d92ea0d3286a3fb6b482c53719d30ada80fdf225854ed8575
GET /special/imgs/arrow2.gif HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/gif
Last-Modified: Tue, 26 Mar 2019 06:53:24 GMT
Accept-Ranges: bytes
ETag: "264949ba0e3d41:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 11840
samp.waptrick.org/imgs/htmlcssv11/back_home_icon32x32.png
162.251.163.98200 OK 459 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/back_home_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 208c830c05cacb548355849c1dd3bd81
087981869aa8e1ed51b7a5d36f74bad3ca24dc08
64253536f1c9ed9b084061ac08f0f80f068dab87302fa8114821a08d7d7fc483
GET /imgs/htmlcssv11/back_home_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Wed, 09 Apr 2014 08:31:00 GMT
Accept-Ranges: bytes
ETag: "0fa369ce53cf1:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 459
samp.waptrick.org/imgs/waptrick_html_flag.png
162.251.163.98200 OK 2.2 kB URL HTTP/1.1 samp.waptrick.org/imgs/waptrick_html_flag.png
IP 162.251.163.98:0
File type PNG image data, 155 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 8dabbade5c7050e85ed02fd7ffea93db
efaf45364e8d6041a27e1246a07591b002a67b2e
106ebe3072f58bb44727eb4d1700f1a8f7ca3b106282a36227245873fbbb3e46
GET /imgs/waptrick_html_flag.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 12 Dec 2019 07:05:11 GMT
Accept-Ranges: bytes
ETag: "fae0a77ebab0d51:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 2230
samp.waptrick.org/imgs/flags/NORWAY.png
162.251.163.98200 OK 2.2 kB URL HTTP/1.1 samp.waptrick.org/imgs/flags/NORWAY.png
IP 162.251.163.98:0
File type PNG image data, 25 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d63618403a5116c6f67652c052780939
76a973780634b8753544f896c10c07cf1d308cb6
a2afdc332e5e773e12aae4ac22807a41b982c338398e103b5d46aa28ef5728c7
GET /imgs/flags/NORWAY.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 12 Dec 2019 08:10:42 GMT
Accept-Ranges: bytes
ETag: "0ad8ea5c3b0d51:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 2214
syndication.exdynsrv.com/v1/api.php
95.211.229.245200 OK 2.0 kB URL HTTP/1.1 syndication.exdynsrv.com/v1/api.php
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with very long lines (2628), with no line terminators
Hash c7b5dbac9685443e3f24c34f9e9d1ae5
7686a3343cdc99b44f352c6b8671aa6765b2a4a7
c05128024ec3364d9d2cdd6792cd863dafc0261415a99f418a74edcbfceb1b5f
POST /v1/api.php HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain
Content-Length: 298
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 03:00:07 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Headers: Authorization, Content-Type
Access-Control-Request-Method: POST
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A33%3A%2263818137a8ccd2.522430274127045819%22%3B%7D; expires=Mon, 25-Nov-2024 03:00:07 GMT; Max-Age=63072000; path=/; domain=exdynsrv.com
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2PUU4DMQxEr8IFuho7drLpN/yCVNQDbDdbCSFaBEgUaQ6Ps4hNPuJ4XsYThepOZKd+p7oH9iisMlQMpoO48fHpQBN+T+9fHy/z63C9LBxRqma6jgpjQXZHQCNQjS5CTyVnDSkLTMcQwUTEVk9mvRpS2PD4fM+H44EyIGnZjqCBmwCUNQBHo/ZXt+5Rl9yWdtJWMeVyOi+CPKPOrcGlBSoBbYHn69s6uc+MiB6q/jeYxJKactebfxdjLHCVp8+fy0xueHxEc/XUK19tEsWsx2RNjiYZuZzbUqbIIzgVlPmcS/WafgFsxMZ6agEAAA==
95.211.229.245200 OK 20 B URL HTTP/1.1 syndication.exdynsrv.com/cimp.php?t=api&data=H4sIAAAAAAAAAz2PUU4DMQxEr8IFuho7drLpN/yCVNQDbDdbCSFaBEgUaQ6Ps4hNPuJ4XsYThepOZKd+p7oH9iisMlQMpoO48fHpQBN+T+9fHy/z63C9LBxRqma6jgpjQXZHQCNQjS5CTyVnDSkLTMcQwUTEVk9mvRpS2PD4fM+H44EyIGnZjqCBmwCUNQBHo/ZXt+5Rl9yWdtJWMeVyOi+CPKPOrcGlBSoBbYHn69s6uc+MiB6q/jeYxJKactebfxdjLHCVp8+fy0xueHxEc/XUK19tEsWsx2RNjiYZuZzbUqbIIzgVlPmcS/WafgFsxMZ6agEAAA==
IP 95.211.229.245:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash a4745abc5e7fdb89cc6df3069f3c6e69
74789f7ddbebd5b7323f6f8174005b4bf8c1f1ed
d1111b245f685176180e6f1631e6dc49badf6672368e9ce260c71355165effdf
GET /cimp.php?t=api&data=H4sIAAAAAAAAAz2PUU4DMQxEr8IFuho7drLpN/yCVNQDbDdbCSFaBEgUaQ6Ps4hNPuJ4XsYThepOZKd+p7oH9iisMlQMpoO48fHpQBN+T+9fHy/z63C9LBxRqma6jgpjQXZHQCNQjS5CTyVnDSkLTMcQwUTEVk9mvRpS2PD4fM+H44EyIGnZjqCBmwCUNQBHo/ZXt+5Rl9yWdtJWMeVyOi+CPKPOrcGlBSoBbYHn69s6uc+MiB6q/jeYxJKactebfxdjLHCVp8+fy0xueHxEc/XUK19tEsWsx2RNjiYZuZzbUqbIIzgVlPmcS/WafgFsxMZ6agEAAA== HTTP/1.1
Host: syndication.exdynsrv.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 26 Nov 2022 03:00:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: __uvt=a%3A1%3A%7Bi%3A0%3Bs%3A32%3A%2263818137ef2f06.03885273671228144%22%3B%7D; expires=Mon, 25 Nov 2024 03:00:07 GMT; path=; domain=.exdynsrv.com;
__upt=%7B%22v%22%3A1%2C%22id%22%3A%2263818137ef2f06.03885273671228144%22%2C%22pcma%22%3A%22%22%2C%22acma%22%3A%22511.0199%22%7D; expires=Mon, 25 Nov 2024 03:00:07 GMT; path=/; domain=.exdynsrv.com;
X-Robots-Tag: noindex, follow
Content-Encoding: gzip
cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
173.233.139.164200 OK 1.1 kB URL HTTP/1.1 cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
IP 173.233.139.164:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4540a4970fd23f7d96b52be97de5b2f2
cd7a0345b1c5154eb0ffacefcbc2a2c1321e33bf
7707f71a575ff95aecc021a66198a1d392ca96433b898cda928717bf115fe4a6
Analyzer Verdict Alert quad9 Sinkholed
GET /watchnew?key=0d90779d5172c783ebd7800dad489a3d HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Nov 2022 03:00:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=14457359; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNDQ1NzM1OSwiayI6IjBkOTA3NzlkNTE3MmM3ODNlYmQ3ODAwZGFkNDg5YTNkIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMDI2NzEsInBpZCI6ODI0NDIsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MjEsImFpZCI6NSwicHQiOjQsInBrIjoic3NraDN5a2YiLCJjcGtzIjp7ICI0NiI6ImRmNTk1MWYyM2IxYjQ1N2U2OTllNWExZThlODE4Nzc0IiwiMjgiOiIxYWRmM2RiYjUyZTc2ZTliNTU5ZTczNjJlM2I5ZTg2YiJ9LCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOmZhbHNlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHA6Ly93YXB0cmljay5jb20vIn19.HTcWWqLgrtXhlCbJXWs3kzZuiHuugrWOXD6IkGKqUFk; expires=Sat, 26 Nov 2022 03:01:08 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f7243635fb77e269d0dfa313a523e6df
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cudgelridge.com/afb7804ee029376b83ceab32b25aeb89/invoke.js
173.233.139.164200 OK 9.8 kB URL HTTP/1.1 cudgelridge.com/afb7804ee029376b83ceab32b25aeb89/invoke.js
IP 173.233.139.164:0
File type exported SGML document, ASCII text, with very long lines (26969), with no line terminators
Hash 20349d98ca22a84f5aff723756d3a7b1
985d9b07fbc2bed7d0527c6a92886507bb733b12
41fe769c74bed7d4dad0e071cfaad2fd6fd93108c0dabba96d8c45c8fa16d2b0
Analyzer Verdict Alert quad9 Sinkholed
GET /afb7804ee029376b83ceab32b25aeb89/invoke.js HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Nov 2022 03:00:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d2e9126a7c5db19240c32c4b2b8ff62e
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
samp.waptrick.org/samp/mc/200x160/43192.jpg
162.251.163.98200 OK 8.5 kB URL HTTP/1.1 samp.waptrick.org/samp/mc/200x160/43192.jpg
IP 162.251.163.98:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 64x45, segment length 16, comment: "Lavc55.47.100", baseline, precision 8, 200x160, components 3\012- data
Hash 96e8a1b4045278b0911cf7521eda7796
ede4a2540314b465cd154ba295ead87de5593df4
b1113ea69f7991fc22b5c3a45e055bce1480f8dfd48d7a5e770f2a7045770c45
GET /samp/mc/200x160/43192.jpg HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Fri, 18 Jul 2014 16:43:44 GMT
Accept-Ranges: bytes
ETag: "060a70a7a2cf1:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 8533
samp.waptrick.org/samp/mc/200x160/5838.jpg
162.251.163.98200 OK 7.2 kB URL HTTP/1.1 samp.waptrick.org/samp/mc/200x160/5838.jpg
IP 162.251.163.98:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 319x225, segment length 16, comment: "Lavc55.47.100", baseline, precision 8, 200x160, components 3\012- data
Hash d027eafba36763f4acbeb242544490e8
87d807ce62c98e014574689f7e4880a5878b5a8f
6bfcd69be5ad9d5fee91868b4d0e6e4cf48ba74a7531212d408ec812bf66babf
GET /samp/mc/200x160/5838.jpg HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/jpeg
Last-Modified: Fri, 18 Jul 2014 17:51:48 GMT
Accept-Ranges: bytes
ETag: "0524bf2b0a2cf1:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 7223
samp.waptrick.org/imgs/htmlcssv11/golge_10px.png
162.251.163.98200 OK 91 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/golge_10px.png
IP 162.251.163.98:0
File type PNG image data, 2 x 10, 8-bit gray+alpha, non-interlaced\012- data
Hash 3adcffb90087422d4d7cfeb880a49597
4462b6a9ecf51133959b333e8014b9b3c9927031
ea5c7819f351e03a6adbb3957c73e8f1b516039869c2667da27b188c92121a65
GET /imgs/htmlcssv11/golge_10px.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 31 Aug 2012 07:13:58 GMT
Accept-Ranges: bytes
ETag: "03f38304887cd1:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 91
cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
173.233.139.164200 OK 1.1 kB URL HTTP/1.1 cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
IP 173.233.139.164:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash d4ca967e522ca09cbab28b707970a0b7
e35fef2b2d69efbcce8073f17bb71cc735c36e85
d3b1f7e7927fea8e2d56a16505e9210385907d76239880b8bad84db405bce940
Analyzer Verdict Alert quad9 Sinkholed
GET /watchnew?key=0d90779d5172c783ebd7800dad489a3d HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Nov 2022 03:00:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: u_pl=14457359; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.dTNZ6PLxm4xZI6iA6QDuRO1bNgE8ayvUIbRfn4Es39U; expires=Sat, 26 Nov 2022 03:01:08 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2005c30050cdc13e36f614e5d906515f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
samp.waptrick.org/imgs/htmlcssv11/whatsapp_icon32x32.png
162.251.163.98200 OK 3.1 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/whatsapp_icon32x32.png
IP 162.251.163.98:0
File type PNG image data, 36 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash af1b134ddf468446228d0fb5f69c62d0
9ffd6a9d6d624e3ca00a6c49df8c0762aefeba30
f9f611dc16257617b61ba4b01892a5eeda564ed9430c14e0edf86d872d729097
GET /imgs/htmlcssv11/whatsapp_icon32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 09 May 2019 10:03:17 GMT
Accept-Ranges: bytes
ETag: "89cf366c4e6d51:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 3057
samp.waptrick.org/imgs/htmlcssv11/white_transparent_bg.png
162.251.163.98200 OK 156 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/white_transparent_bg.png
IP 162.251.163.98:0
File type PNG image data, 50 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash 393837b5c8fb68fcb4d40762f47409ad
78a9a294025c862052fe164d785b2687cbdbdc7b
2bfe590cdd9bc99659992219cc6ece86327ffcb6e66ab95cd0e04098708467a8
GET /imgs/htmlcssv11/white_transparent_bg.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 13 Jul 2012 08:36:56 GMT
Accept-Ranges: bytes
ETag: "0419a9d260cd1:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 156
cudgelridge.com/ffc936317264ab8e9967899385f72ed6/invoke.js
173.233.139.164200 OK 9.8 kB URL HTTP/1.1 cudgelridge.com/ffc936317264ab8e9967899385f72ed6/invoke.js
IP 173.233.139.164:0
File type exported SGML document, ASCII text, with very long lines (26973), with no line terminators
Hash fadb00e5aa36a46e0b426474cdda98b6
3935662c64da605b5d5e2f58b2bd4d495c5e404c
6269ef5a7ec9515215225a2fc7dac9e6b6d5ede41f517ff989710daaaebf3f91
Analyzer Verdict Alert quad9 Sinkholed
GET /ffc936317264ab8e9967899385f72ed6/invoke.js HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Nov 2022 03:00:08 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 393273df831f9ab41fa6dea97dc374fa
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash e691756a7eaad68b37a05d81052d4625
51ae79d1a300529013b576ed5f30fd7eeb93f57d
b4057cce093dbc0c5928df15ca2dfa39a93ae1e9b9c0a2824a4bd09b8c356e75
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=125644
Date: Sat, 26 Nov 2022 03:00:08 GMT
Etag: "6380c395-1d7"
Expires: Sun, 27 Nov 2022 13:54:12 GMT
Last-Modified: Fri, 25 Nov 2022 13:31:01 GMT
Server: ECS (dcb/7F38)
X-Cache: Miss from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KEz_iTRcq-SXs6NcX9qDf0HQ5VgMprC-cpCMjw3C3z6_uBij1YhGyA==
Age: 1391
cudgelridge.com/watchnew?shu=9a52b9eee5b8e890b6ff2d1d43078e68deaf0056970f54241366d53542a3d17b4ce3ac12e3e6a2e37d661428b59f5edde0090a0dd63f142185adfd683feb2ce6e72c050dc200d5586ee5d3333b24f3f398ed479cbdbb0e77a3d5ce7329e265&pst=1669431668&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F
173.233.139.164200 OK 1.7 kB URL HTTP/1.1 cudgelridge.com/watchnew?shu=9a52b9eee5b8e890b6ff2d1d43078e68deaf0056970f54241366d53542a3d17b4ce3ac12e3e6a2e37d661428b59f5edde0090a0dd63f142185adfd683feb2ce6e72c050dc200d5586ee5d3333b24f3f398ed479cbdbb0e77a3d5ce7329e265&pst=1669431668&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F
IP 173.233.139.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2356)
Hash 9870d93fb5678cce3405357026bf8e87
b73aaafdb0c8e1a4bca44fbc8cc9414a4cae5f3c
1346be96d1ed61093d7c3d7073b2655b14dcf9920de44cb31f11d4656d52c765
Analyzer Verdict Alert quad9 Sinkholed
GET /watchnew?shu=9a52b9eee5b8e890b6ff2d1d43078e68deaf0056970f54241366d53542a3d17b4ce3ac12e3e6a2e37d661428b59f5edde0090a0dd63f142185adfd683feb2ce6e72c050dc200d5586ee5d3333b24f3f398ed479cbdbb0e77a3d5ce7329e265&pst=1669431668&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Nov 2022 03:00:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://waptrick.com/
Access-Control-Allow-Origin: http://waptrick.com/
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=14457359; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
uncs=1; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
uncs5=1; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c60de04f72a634854d13476c1bf816ee
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
samp.waptrick.org/imgs/htmlcssv11/newheader_sprite.png
162.251.163.98200 OK 7.7 kB URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/newheader_sprite.png
IP 162.251.163.98:0
File type PNG image data, 132 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash c69713a312d1b997f56a3cb735d20c18
e5cf3bfddfe63e46bae6878a3822b60df05708ac
1283d6887d31cbf075e56f03e88b9300ef4a5a1504203880046b7189b4e2dcef
GET /imgs/htmlcssv11/newheader_sprite.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://samp.waptrick.org/css/htmlv125_basic.css
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Thu, 18 Apr 2013 10:39:32 GMT
Accept-Ranges: bytes
ETag: "0cadd2213cce1:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:05 GMT
Connection: close
Content-Length: 7735
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash e691756a7eaad68b37a05d81052d4625
51ae79d1a300529013b576ed5f30fd7eeb93f57d
b4057cce093dbc0c5928df15ca2dfa39a93ae1e9b9c0a2824a4bd09b8c356e75
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=126591
Date: Sat, 26 Nov 2022 03:00:08 GMT
Etag: "6380c395-1d7"
Expires: Sun, 27 Nov 2022 14:09:59 GMT
Last-Modified: Fri, 25 Nov 2022 13:31:01 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8Sx0Y8DkJGO_uOlOKVZWjcQRvpLW0ZdTmroniGHq8G9D4CWeeZNVzQ==
Age: 2339
cudgelridge.com/watchnew?shu=6fbdaac9eefcc79a53d5813c7e674ad27a0a1e4ae99e7b1f50ed0f41cee54393f9311ef5b875fc0c5b3d29fbe7f2794e987482c3108fdbf59e0bec038fa94fb85950b56c36735e55041c30014d49a414b3f6da20f15628a9ee46ff8f3b5c578355&pst=1669431668&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F
173.233.139.164200 OK 1.7 kB URL HTTP/1.1 cudgelridge.com/watchnew?shu=6fbdaac9eefcc79a53d5813c7e674ad27a0a1e4ae99e7b1f50ed0f41cee54393f9311ef5b875fc0c5b3d29fbe7f2794e987482c3108fdbf59e0bec038fa94fb85950b56c36735e55041c30014d49a414b3f6da20f15628a9ee46ff8f3b5c578355&pst=1669431668&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F
IP 173.233.139.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2378)
Hash d335991f8f38e4b0afe4c0b033feb954
f3750b0f4d16815e458902f3e74dd480bd8a2371
e209cc3df067ea757115b2425fccbbf70149c515010a2d13b895e160501420d0
Analyzer Verdict Alert quad9 Sinkholed
GET /watchnew?shu=6fbdaac9eefcc79a53d5813c7e674ad27a0a1e4ae99e7b1f50ed0f41cee54393f9311ef5b875fc0c5b3d29fbe7f2794e987482c3108fdbf59e0bec038fa94fb85950b56c36735e55041c30014d49a414b3f6da20f15628a9ee46ff8f3b5c578355&pst=1669431668&rmtc=t&uuid=&pii=&in=false&key=0d90779d5172c783ebd7800dad489a3d&refer=http%3A%2F%2Fwaptrick.com%2F HTTP/1.1
Host: cudgelridge.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cudgelridge.com/watchnew?key=0d90779d5172c783ebd7800dad489a3d
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Nov 2022 03:00:08 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://waptrick.com/
Access-Control-Allow-Origin: http://waptrick.com/
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=14457359; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
uncs=1; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
uncs5=1; expires=Sun, 27 Nov 2022 03:00:08 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ca2812dc4ac86eceaf554af291abadcb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d544e647515cb189a384f9c20ec9bd24
b7b52713f8f4c02a47192ef56456e16d0ca408a9
375fc9ebeb579498db5f3df773f4a94debbab4b0f809abc2fa414e9c2bea052c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "375FC9EBEB579498DB5F3DF773F4A94DEBBAB4B0F809ABC2FA414E9C2BEA052C"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10470
Expires: Sat, 26 Nov 2022 05:54:38 GMT
Date: Sat, 26 Nov 2022 03:00:08 GMT
Connection: keep-alive
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash f02327f26b4e26af92dbb69a54693b12
a139d937768dbfad5f539ece33b14130e5a3aa2b
21c3bef0a035332800bee7ddf5f1a8cb4d524a9e11e25cd2c303fb70fe461037
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:00:08 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://waptrick.com
access-control-allow-credentials: true
set-cookie: uid_id2=3f4c5063-6151-4c28-9963-3b80a5252319:3:1; expires=Tue, 23 Nov 2032 03:00:08 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
52.28.211.11200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 52.28.211.11:0
File type ASCII text, with no line terminators
Hash 143300dfb868511b1de34cb98d981eeb
39d4b1f954909faaafc07c4de7ea338e59377e56
100293c6c1047a37c84f8aea09edea43b6f62a6de7d880ec079650826ddefa81
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:00:08 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: http://waptrick.com
access-control-allow-credentials: true
set-cookie: uid_id2=8cfa3a71-c574-4957-bfe0-21c17f1689cd:1:1; expires=Tue, 23 Nov 2032 03:00:08 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 3fdb8701697897bc402455396bbe4811
1449f497691068f072fe7cfa979e2849173e0e60
1e770a8a9b1e1a2ac41fce3fb06e605c3a96528e0fa21468efb3fb82820760a8
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 03:00:08 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 00:04:37 GMT
Expires: Thu, 01 Dec 2022 00:04:36 GMT
Etag: "1449f497691068f072fe7cfa979e2849173e0e60"
Cache-Control: max-age=420867,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76ff5f3f99fcb523-OSL
cdn.cloudimagesb.com/cti/bb/59/ee/bb59ee37dc1dd0489ac3b5ab7eeb3863/1627915891.png
45.133.44.9200 OK 111 kB URL HTTP/2 cdn.cloudimagesb.com/cti/bb/59/ee/bb59ee37dc1dd0489ac3b5ab7eeb3863/1627915891.png
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Size 111 kB (111057 bytes)
Hash 1da8cd55f8d6f2f83002d45575b7499d
b7fb60c04d04cb55259c92cc184662aebabb3f32
c818c1651508b4817d15851e5a688f70551f10dbec541782757b9e4a9dc2280e
GET /cti/bb/59/ee/bb59ee37dc1dd0489ac3b5ab7eeb3863/1627915891.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cudgelridge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:00:08 GMT
content-type: image/png
content-length: 111057
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:51:41 GMT
etag: "6108067d-1b1d1"
expires: Mon, 28 Nov 2022 03:00:08 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/ca/d5/ff/cad5ff5ee56b0b817c852d2e2919c85f/1663166228.png
45.133.44.9200 OK 36 kB URL HTTP/2 cdn.cloudimagesb.com/cti/ca/d5/ff/cad5ff5ee56b0b817c852d2e2919c85f/1663166228.png
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced\012- data
Hash 6134c2b7018b8aa9ec82a5ff91f8f654
3f1704143c465cdb6b27ca6d19571d5e6b1037c7
c79880303087a3c146452f3aa0c0c085b844f4e8bda615320878be6a562f206d
GET /cti/ca/d5/ff/cad5ff5ee56b0b817c852d2e2919c85f/1663166228.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cudgelridge.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:00:08 GMT
content-type: image/png
content-length: 36239
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:37:16 GMT
etag: "6321e71c-8d8f"
expires: Mon, 28 Nov 2022 03:00:08 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
samp.waptrick.org/imgs/htmlcssv11/music_list_icon_bg32x32.png
162.251.163.98200 OK 603 B URL HTTP/1.1 samp.waptrick.org/imgs/htmlcssv11/music_list_icon_bg32x32.png
IP 162.251.163.98:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash cd7594e51ea159bb5fec6e12206045c0
964a2e86e61fcfe3e6655daa2e4c17f61cb14ccd
062f5e101bfb711622a77b3859f7f7a24ba4ccec4562d5b36e3c4875ea841a36
GET /imgs/htmlcssv11/music_list_icon_bg32x32.png HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/png
Last-Modified: Fri, 30 Jan 2015 15:31:08 GMT
Accept-Ranges: bytes
ETag: "086a0c4a13cd01:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:06 GMT
Connection: close
Content-Length: 603
track.trackingtraffo.com/banner/imp?auth=4mz3uw&price=${AUCTION_PRICE}&c=UOjJyrk2U-uYw-9LTxb4xR86kpR4kDmQSU5Gk90PolSpZITa9CPD-623PATR5JuxZiY1AcWt0jOIpEpAFkVr-xvND1QexDwf1ee3Mo_8QXd9aPSLcpWsOrcAs_oip9FV4m34wGvZ0zwKUdWZKMhvh8EwwgkxcQ4TGn6CwHeVEZnpj459dJxaw7yXgLRFK5PbHId9WKXozNCXrBwx_ZJx9NgZJr0CGGYmxZ1mLuse7g-KSCqMUaKA0k4_3Nnkb48OBZwJYaTt6GO545eG3yH7NOxj3x0I0n0k-D4I7OX9bwMZvG5IJtI89ww4k-fXxY23Iz7CXYVjljG8IQqEB1PAgWdLvlCG_ilu9UWz_Ao1aWXICdsdpyVC6Ve54xg8CyY0ERzMEZPVnlxDm2fVhSTRXjyctAl5cHCM1GX9_G1Wz7FY96MJE5f2AuZfO3L5bdYT7-E0qf78NbCgFHbWyfGXRhuFaJv6a85hQ908lG7lHKJb-4yqFm0xr_b_8mA77Pm9ky1uWw
88.214.195.156302 Found 0 B URL HTTP/1.1 track.trackingtraffo.com/banner/imp?auth=4mz3uw&price=${AUCTION_PRICE}&c=UOjJyrk2U-uYw-9LTxb4xR86kpR4kDmQSU5Gk90PolSpZITa9CPD-623PATR5JuxZiY1AcWt0jOIpEpAFkVr-xvND1QexDwf1ee3Mo_8QXd9aPSLcpWsOrcAs_oip9FV4m34wGvZ0zwKUdWZKMhvh8EwwgkxcQ4TGn6CwHeVEZnpj459dJxaw7yXgLRFK5PbHId9WKXozNCXrBwx_ZJx9NgZJr0CGGYmxZ1mLuse7g-KSCqMUaKA0k4_3Nnkb48OBZwJYaTt6GO545eG3yH7NOxj3x0I0n0k-D4I7OX9bwMZvG5IJtI89ww4k-fXxY23Iz7CXYVjljG8IQqEB1PAgWdLvlCG_ilu9UWz_Ao1aWXICdsdpyVC6Ve54xg8CyY0ERzMEZPVnlxDm2fVhSTRXjyctAl5cHCM1GX9_G1Wz7FY96MJE5f2AuZfO3L5bdYT7-E0qf78NbCgFHbWyfGXRhuFaJv6a85hQ908lG7lHKJb-4yqFm0xr_b_8mA77Pm9ky1uWw
IP 88.214.195.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/imp?auth=4mz3uw&price=${AUCTION_PRICE}&c=UOjJyrk2U-uYw-9LTxb4xR86kpR4kDmQSU5Gk90PolSpZITa9CPD-623PATR5JuxZiY1AcWt0jOIpEpAFkVr-xvND1QexDwf1ee3Mo_8QXd9aPSLcpWsOrcAs_oip9FV4m34wGvZ0zwKUdWZKMhvh8EwwgkxcQ4TGn6CwHeVEZnpj459dJxaw7yXgLRFK5PbHId9WKXozNCXrBwx_ZJx9NgZJr0CGGYmxZ1mLuse7g-KSCqMUaKA0k4_3Nnkb48OBZwJYaTt6GO545eG3yH7NOxj3x0I0n0k-D4I7OX9bwMZvG5IJtI89ww4k-fXxY23Iz7CXYVjljG8IQqEB1PAgWdLvlCG_ilu9UWz_Ao1aWXICdsdpyVC6Ve54xg8CyY0ERzMEZPVnlxDm2fVhSTRXjyctAl5cHCM1GX9_G1Wz7FY96MJE5f2AuZfO3L5bdYT7-E0qf78NbCgFHbWyfGXRhuFaJv6a85hQ908lG7lHKJb-4yqFm0xr_b_8mA77Pm9ky1uWw HTTP/1.1
Host: track.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 26 Nov 2022 03:00:08 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, max-age=0, must-revalidate, proxy-revalidate, no-store
Pragma: no-cache
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1657719813428-20BET_First_300x250_NO.gif
ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1657719813428-20BET_First_300x250_NO.gif
142.132.194.196200 OK 72 kB URL HTTP/1.1 ads.trackingtraffo.com/creatives/k1qy286gxmd5g3dpr397nw5v/1657719813428-20BET_First_300x250_NO.gif
IP 142.132.194.196:0
ASN #24940 Hetzner Online GmbH
File type GIF image data, version 89a, 300 x 250\012- data
Hash 65b724494cf4b18678dcb8c017fb551d
6111cfeae10d3ad110a38e21336890f6be2a6ace
614636de086b9b380dc1cf45be301822b00f5fac32a0cdc99519d5b7a2da25c7
GET /creatives/k1qy286gxmd5g3dpr397nw5v/1657719813428-20BET_First_300x250_NO.gif HTTP/1.1
Host: ads.trackingtraffo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://waptrick.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sat, 26 Nov 2022 03:00:08 GMT
Content-Type: image/gif
Content-Length: 71915
Last-Modified: Wed, 13 Jul 2022 13:43:33 GMT
Connection: keep-alive
ETag: "62cecc05-118eb"
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 18af55c57152ea62a8634a65a327a18d
937a29ede9687ad898120813a369ffa3c8729199
00ae8fb6299c1013936f0dd16d3344d96df076f062e1642da56dd99f5b361fc0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "00AE8FB6299C1013936F0DD16D3344D96DF076F062E1642DA56DD99F5B361FC0"
Last-Modified: Wed, 23 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11086
Expires: Sat, 26 Nov 2022 06:04:54 GMT
Date: Sat, 26 Nov 2022 03:00:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d97cdb16e28e6a5bfcc5e460d938c8c5
066d8d86e4b353ce76714e64a65cc8ccfcace81e
250bd4353257a085f6f33bf4fdb5b197459030bd4ee1c5dd904e60e721c3edd0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "250BD4353257A085F6F33BF4FDB5B197459030BD4EE1C5DD904E60E721C3EDD0"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12626
Expires: Sat, 26 Nov 2022 06:30:34 GMT
Date: Sat, 26 Nov 2022 03:00:08 GMT
Connection: keep-alive
soldierreproduceadmiration.com/watch.150743770059.js?key=afb7804ee029376b83ceab32b25aeb89&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=3f4c5063-6151-4c28-9963-3b80a5252319%3A3%3A1
173.233.137.36307 Temporary Redirect 0 B URL HTTP/1.1 soldierreproduceadmiration.com/watch.150743770059.js?key=afb7804ee029376b83ceab32b25aeb89&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=3f4c5063-6151-4c28-9963-3b80a5252319%3A3%3A1
IP 173.233.137.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.150743770059.js?key=afb7804ee029376b83ceab32b25aeb89&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=3f4c5063-6151-4c28-9963-3b80a5252319%3A3%3A1 HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sat, 26 Nov 2022 03:00:09 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://waptrick.com
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Location: https://soldierreproduceadmiration.com/watch.150743770059.js?key=afb7804ee029376b83ceab32b25aeb89&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=3f4c5063-6151-4c28-9963-3b80a5252319%3A3%3A1&shu=7751103161d9c87092f8a2bb391d027495647fbf226d26a7a1f7a0f3fb7e6ea09e4ed29ea22b1be67e692b88adcaae2916752c81ec38da0d9f2f0b74497b043dd13f4cdd0b8490fa4c59049afc9a8804c7581d56324c37827f23753bb5476f44&pst=1669431669&rmtc=t
Set-Cookie: u_pl=17623287; expires=Sun, 27 Nov 2022 03:00:09 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.QYMLGPyRr6NX4MEvJFnSYqQG1tv9n_Xz1ZdQDvm8xJI; expires=Sat, 26 Nov 2022 03:01:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a7f693a88944933a0c4615a071fac454
Strict-Transport-Security: max-age=0; includeSubdomains
www.profitabledisplaycontent.com/watch.1069350830589.js?key=ffc936317264ab8e9967899385f72ed6&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=8cfa3a71-c574-4957-bfe0-21c17f1689cd%3A1%3A1
173.233.137.52307 Temporary Redirect 0 B URL HTTP/1.1 www.profitabledisplaycontent.com/watch.1069350830589.js?key=ffc936317264ab8e9967899385f72ed6&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=8cfa3a71-c574-4957-bfe0-21c17f1689cd%3A1%3A1
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1069350830589.js?key=ffc936317264ab8e9967899385f72ed6&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=8cfa3a71-c574-4957-bfe0-21c17f1689cd%3A1%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Connection: keep-alive
Referer: http://waptrick.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sat, 26 Nov 2022 03:00:09 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://waptrick.com
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Location: https://www.profitabledisplaycontent.com/watch.1069350830589.js?key=ffc936317264ab8e9967899385f72ed6&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=8cfa3a71-c574-4957-bfe0-21c17f1689cd%3A1%3A1&shu=c750cd94e61e63d57d40c982f5aa9590b919d104562fcb62904bd6079048bf83daadc1ab28a7ead3f27e5b0d8c7b18b4c2d2f9b6cba6dcb325cd941ec5d0dac43f14561b4d0a0393bb0a55d3c5aa4fdef079e4d78716c2339d756104c5c15d&pst=1669431669&rmtc=t
Set-Cookie: u_pl=14936043; expires=Sun, 27 Nov 2022 03:00:09 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.Rk7an-FOxKONhZdO06h0gYB3j10IF3cE2bVFITBGD0k; expires=Sat, 26 Nov 2022 03:01:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: af22f925edbbaced965388a0c1f4d4f8
Strict-Transport-Security: max-age=0; includeSubdomains
soldierreproduceadmiration.com/watch.150743770059.js?key=afb7804ee029376b83ceab32b25aeb89&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=3f4c5063-6151-4c28-9963-3b80a5252319%3A3%3A1&shu=7751103161d9c87092f8a2bb391d027495647fbf226d26a7a1f7a0f3fb7e6ea09e4ed29ea22b1be67e692b88adcaae2916752c81ec38da0d9f2f0b74497b043dd13f4cdd0b8490fa4c59049afc9a8804c7581d56324c37827f23753bb5476f44&pst=1669431669&rmtc=t
173.233.137.36200 OK 2.1 kB URL HTTP/1.1 soldierreproduceadmiration.com/watch.150743770059.js?key=afb7804ee029376b83ceab32b25aeb89&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=3f4c5063-6151-4c28-9963-3b80a5252319%3A3%3A1&shu=7751103161d9c87092f8a2bb391d027495647fbf226d26a7a1f7a0f3fb7e6ea09e4ed29ea22b1be67e692b88adcaae2916752c81ec38da0d9f2f0b74497b043dd13f4cdd0b8490fa4c59049afc9a8804c7581d56324c37827f23753bb5476f44&pst=1669431669&rmtc=t
IP 173.233.137.36:0
File type HTML document, ASCII text, with very long lines (2541)
Hash 3829d23b6466c9c95cd3bf46f59c6206
77e4975b6a38102d55a56f862f706cb487b76805
a551f0d81b4dfa9d9a09c6f85152453b6a69287278e7d5cbefcb5327913a7ca9
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.150743770059.js?key=afb7804ee029376b83ceab32b25aeb89&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=3f4c5063-6151-4c28-9963-3b80a5252319%3A3%3A1&shu=7751103161d9c87092f8a2bb391d027495647fbf226d26a7a1f7a0f3fb7e6ea09e4ed29ea22b1be67e692b88adcaae2916752c81ec38da0d9f2f0b74497b043dd13f4cdd0b8490fa4c59049afc9a8804c7581d56324c37827f23753bb5476f44&pst=1669431669&rmtc=t HTTP/1.1
Host: soldierreproduceadmiration.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Referer: http://waptrick.com/
Connection: keep-alive
Cookie: u_pl=17623287; ain=eyJhbGciOiJIUzI1NiJ9.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.QYMLGPyRr6NX4MEvJFnSYqQG1tv9n_Xz1ZdQDvm8xJI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Nov 2022 03:00:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://waptrick.com
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=3f4c5063-6151-4c28-9963-3b80a5252319:3:1; expires=Sat, 03 Dec 2022 03:00:09 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 27 Nov 2022 03:00:09 GMT; secure; SameSite=None
uncs=1; expires=Sun, 27 Nov 2022 03:00:09 GMT; secure; SameSite=None
pdhtkv25=true; expires=Sun, 27 Nov 2022 03:00:09 GMT; secure; SameSite=None
uncs25=1; expires=Sun, 27 Nov 2022 03:00:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 78d28bf7d4e764b07462bf8d7e2b3d0a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/bi/87/a6/81/87a681e5332a40d72fe9c20d1f693eef/1647610027.jpg
45.133.44.9200 OK 90 kB URL HTTP/2 cdn.cloudimagesb.com/bi/87/a6/81/87a681e5332a40d72fe9c20d1f693eef/1647610027.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:03:14 15:43:45], baseline, precision 8, 160x600, components 3\012- data
Hash e2cb97855cddcfd7ec20fba4d365e66c
bcbb6e9d454f82f654d3b13ac8f400de9dc6761a
f94a2d7e8f4e97c487699fbde1553dfb057e7a13c24749e49a18799d7cc939cd
GET /bi/87/a6/81/87a681e5332a40d72fe9c20d1f693eef/1647610027.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:00:09 GMT
content-type: image/jpeg
content-length: 90458
server: nginx/1.17.6
last-modified: Fri, 18 Mar 2022 13:27:14 GMT
etag: "623488b2-1615a"
expires: Mon, 28 Nov 2022 03:00:09 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.profitabledisplaycontent.com/watch.1069350830589.js?key=ffc936317264ab8e9967899385f72ed6&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=8cfa3a71-c574-4957-bfe0-21c17f1689cd%3A1%3A1&shu=c750cd94e61e63d57d40c982f5aa9590b919d104562fcb62904bd6079048bf83daadc1ab28a7ead3f27e5b0d8c7b18b4c2d2f9b6cba6dcb325cd941ec5d0dac43f14561b4d0a0393bb0a55d3c5aa4fdef079e4d78716c2339d756104c5c15d&pst=1669431669&rmtc=t
173.233.137.52200 OK 2.0 kB URL HTTP/1.1 www.profitabledisplaycontent.com/watch.1069350830589.js?key=ffc936317264ab8e9967899385f72ed6&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=8cfa3a71-c574-4957-bfe0-21c17f1689cd%3A1%3A1&shu=c750cd94e61e63d57d40c982f5aa9590b919d104562fcb62904bd6079048bf83daadc1ab28a7ead3f27e5b0d8c7b18b4c2d2f9b6cba6dcb325cd941ec5d0dac43f14561b4d0a0393bb0a55d3c5aa4fdef079e4d78716c2339d756104c5c15d&pst=1669431669&rmtc=t
IP 173.233.137.52:0
File type HTML document, ASCII text, with very long lines (2433)
Hash 9a01cd2e8ca4091462c1d916684d5297
d24c2cba4e7c978bcc2c3038beefa1abbd83706f
5467b1f6b92c9d56eca9a35fde14820f2db67da2f70e2666502da42bada5e09b
GET /watch.1069350830589.js?key=ffc936317264ab8e9967899385f72ed6&kw=%5B%22waptrick%22%2C%22crookers%22%2C%22free%22%2C%22music%22%2C%22clips%22%2C%22crookers%22%2C%22music%22%2C%22clips%22%2C%22page%22%2C%221%22%5D&refer=http%3A%2F%2Fwaptrick.com%2Fen%2Ffree%2Fmusic_clip%2FCrookers%2F&tz=0&dev=e&res=12.1053&uuid=8cfa3a71-c574-4957-bfe0-21c17f1689cd%3A1%3A1&shu=c750cd94e61e63d57d40c982f5aa9590b919d104562fcb62904bd6079048bf83daadc1ab28a7ead3f27e5b0d8c7b18b4c2d2f9b6cba6dcb325cd941ec5d0dac43f14561b4d0a0393bb0a55d3c5aa4fdef079e4d78716c2339d756104c5c15d&pst=1669431669&rmtc=t HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://waptrick.com
Referer: http://waptrick.com/
Connection: keep-alive
Cookie: u_pl=14936043; ain=eyJhbGciOiJIUzI1NiJ9.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.Rk7an-FOxKONhZdO06h0gYB3j10IF3cE2bVFITBGD0k
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 26 Nov 2022 03:00:09 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: http://waptrick.com
Access-Control-Allow-Origin: http://waptrick.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=8cfa3a71-c574-4957-bfe0-21c17f1689cd:1:1; expires=Sat, 03 Dec 2022 03:00:09 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 27 Nov 2022 03:00:09 GMT; secure; SameSite=None
uncs=1; expires=Sun, 27 Nov 2022 03:00:09 GMT; secure; SameSite=None
pdhtkv25=true; expires=Sun, 27 Nov 2022 03:00:09 GMT; secure; SameSite=None
uncs25=1; expires=Sun, 27 Nov 2022 03:00:09 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 17560d03e0dfaa20a0630e1566b63100
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/ef/06/31/ef0631ed0253c5a713569fa28086ba82/1627915747.png
45.133.44.9200 OK 100 kB URL HTTP/2 cdn.cloudimagesb.com/cti/ef/06/31/ef0631ed0253c5a713569fa28086ba82/1627915747.png
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 160 x 600, 8-bit/color RGB, non-interlaced\012- data
Size 100 kB (100017 bytes)
Hash a2f3ad70558731363cc9e4c236b85164
31dead0c8bb32efa2870e3bdbc5b35a77a963735
0aa6cf6ed34931123c4d6a58f015ac928725fc7174a0ab61b734410dd27e142f
GET /cti/ef/06/31/ef0631ed0253c5a713569fa28086ba82/1627915747.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 03:00:09 GMT
content-type: image/png
content-length: 100017
server: nginx/1.17.6
last-modified: Mon, 02 Aug 2021 14:49:16 GMT
etag: "610805ec-186b1"
expires: Mon, 28 Nov 2022 03:00:09 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
samp.waptrick.org/favicon.ico
162.251.163.98200 OK 1.4 kB URL HTTP/1.1 samp.waptrick.org/favicon.ico
IP 162.251.163.98:0
File type MS Windows icon resource - 1 icon, 16x16, 8 bits/pixel\012- data
Hash 01c48056c54361fc88232188a273080f
d1db6c8e4f35ea841075d02824c8fa515e97970e
8f3c321adcc2766d5c40e55891bc9abf03818968b94423534c6034c5b9d90cf5
GET /favicon.ico HTTP/1.1
Host: samp.waptrick.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://waptrick.com/
Connection: keep-alive
HTTP/1.1 200 OK
Cache-Control: max-age=2592000
Content-Type: image/x-icon
Last-Modified: Wed, 26 Mar 2014 09:40:24 GMT
Accept-Ranges: bytes
ETag: "0745e69d748cf1:0"
Server: Microsoft-IIS/8.5
Date: Sat, 26 Nov 2022 03:00:07 GMT
Connection: close
Content-Length: 1406
cocawap.com/en/free/music_clip/Crookers
104.36.23.145301 Moved Permanently 0 B URL HTTP/1.1 cocawap.com/en/free/music_clip/Crookers
IP 104.36.23.145:0
Analyzer Verdict Alert fortinet Phishing
GET /en/free/music_clip/Crookers HTTP/1.1
Host: cocawap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Microsoft-IIS/7.5
Date: Sat, 26 Nov 2022 03:02:05 GMT
Content-type: text/html
Location: http://waptrick.one/en/free/music_clip/crookers
Connection: close
Content-encoding: gzip
waptrick.com/favicon.ico
104.36.23.148301 Moved Permanently 0 B IP 104.36.23.148:0
GET /favicon.ico HTTP/1.1
Host: waptrick.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://waptrick.com/en/free/music_clip/Crookers/
Cookie: uuid=0xe03ccf447ac542eb; dom3ic8zudi28v8lr6fgphwffqoz0j6c=8cfa3a71-c574-4957-bfe0-21c17f1689cd%3A1%3A1
HTTP/1.1 301 Moved Permanently
Server: Microsoft-IIS/7.5
Date: Sat, 26 Nov 2022 03:02:09 GMT
Content-type: text/html
Location: http://samp.waptrick.org/favicon.ico
Connection: close
Content-encoding: gzip