| t.op4u.cc/021a9a61-9007-41ae-a26d-16fde6b7983d | 3.120.230.228 | 302 | 0 B |
URL HTTP/1.1t.op4u.cc/021a9a61-9007-41ae-a26d-16fde6b7983d IP3.120.230.228:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /021a9a61-9007-41ae-a26d-16fde6b7983d HTTP/1.1
Host: t.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Tue, 06 Sep 2022 10:46:16 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Pragma: no-cache
Set-Cookie: 021a9a61-9007-41ae-a26d-16fde6b7983d-v4=1A7wgY0DHBeReNdTH1G99SYylZ75UzKOuBp0yWYvgCE; Max-Age=86400; Expires=Wed, 07-Sep-2022 10:46:16 GMT; Domain=t.op4u.cc; Path=/; HttpOnly
cc-v4=eIfKgj%2BLc%2BFsSujO9klCHcbGboN7VT1bY3e2ZZlMeBvAWuvnnOeelkm3iApyX4XWkB9eI6PPuTTJo580zl1akTnE8QhEIR8WfyqnmtCZsDsWkGgtdFrcEPkF1q8qY1GEdspxcRYo3MS%2F01upSAWSwg%3D%3D; Max-Age=31536000; Expires=Wed, 06-Sep-2023 10:46:16 GMT; Domain=t.op4u.cc; Path=/; HttpOnly
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.36 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash99b7d23c1748d0526782b9ff9ea45f09 eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 10:04:17 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: SgnLWofo3asvHZSiOKAK6ck19kHW5KP9oTlBmunObV50EMc7h6Rqwg==
Age: 2519
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd931e0142ef5ffe9cdb4c4c6bfcb9bc9 d9c4caf525e8926b042a14f38d374cc4033ed768 f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3656
Expires: Tue, 06 Sep 2022 11:47:12 GMT
Date: Tue, 06 Sep 2022 10:46:16 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain | 143.204.55.35 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain IP143.204.55.35:0
File typePEM certificate\012- , ASCII text Hash742edb4038f38bc533514982f3d2e861 cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bRYhCKZ8O9mbyXmWAGOKKp39t-kJIIOjutdiHFriuj8s9wANEfpbjA==
age: 34259
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:46:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.36 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.36:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 06 Sep 2022 10:38:18 GMT
Expires: Tue, 06 Sep 2022 11:34:52 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Hi_XkJ6zCf2Q2uR53RWZCqV8BSR_P-xjUDSVkMDGRwL6eXpZPgV9ig==
Age: 479
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash0a00e0ac272d6bd8ccf68c3aefae4498 997a282971ae54d89f1f8336286bfd5ab5280c0e b131ed93c854a6963526f22d275428ac8c9ae4c483924c9d37be4ac9cbfadbf4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B131ED93C854A6963526F22D275428AC8C9AE4C483924C9D37BE4AC9CBFADBF4"
Last-Modified: Tue, 06 Sep 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21569
Expires: Tue, 06 Sep 2022 16:45:46 GMT
Date: Tue, 06 Sep 2022 10:46:17 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe8952752ad4a452a575522a7eb737217 c5554fa2af05d7a7117032b0f99352de08988346 8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6195
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 10:46:17 GMT
Last-Modified: Tue, 06 Sep 2022 09:03:02 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 44.228.207.167 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP44.228.207.167:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uAk4Yu/XtaVSe/dtvRWoyA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Crq8WU6DdWm+Yx7sLi0/jMDjDG0=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashbcbb9bf29f1e0acaa7ac6d6566381370 dec1bea642dffbc11ebd6d65c94f87d6db95703a b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 10:46:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashbcbb9bf29f1e0acaa7ac6d6566381370 dec1bea642dffbc11ebd6d65c94f87d6db95703a b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 10:46:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=UA-168661779-2 | 142.250.74.72 | 200 OK | 42 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-168661779-2 IP142.250.74.72:0
File typeASCII text, with very long lines (1615) Hash0945527f6033729cc530de896df9532e 36d5c608aa0b5845f2a23ba357e755ad85c9ab00 a4451ced76d8e8af7f78033015bd71373ff5c6c72f4e5c6e460b85b9a3ed5eb4
GET /gtag/js?id=UA-168661779-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 10:46:17 GMT
expires: Tue, 06 Sep 2022 10:46:17 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41846
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-T66CVHK | 142.250.74.72 | 200 OK | 40 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-T66CVHK IP142.250.74.72:0
File typeUnicode text, UTF-8 text, with very long lines (5244) Hasha907e77f457d15394f0aa9e256f1edb0 29df3ae4cde9dd4818132fb07230bd2ebce3bafc 8ad1efab7f47fcc3d737c7f3f095dd1a35047b1418e5629d93b782aec60a8133
GET /gtm.js?id=GTM-T66CVHK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 10:46:17 GMT
expires: Tue, 06 Sep 2022 10:46:17 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 39910
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hashbcbb9bf29f1e0acaa7ac6d6566381370 dec1bea642dffbc11ebd6d65c94f87d6db95703a b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 10:46:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| go.op4u.cc/img/khl.jpg | 107.167.2.164 | 200 OK | 29 kB |
IP107.167.2.164:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 572x360, components 3\012- data Hashc07f46e1c8232d75ca95a994a020de2e 4d616d5ea5517cff2b455f3813e189e68a846e9a c6ac3c0d36a882b1e51bc1c34581c39b412eba22f230ab231ec29d0c8a7f5f76
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/khl.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 28630
last-modified: Wed, 08 Jun 2022 17:25:14 GMT
etag: "62a0db7a-6fd6"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/xh.jpg | 107.167.2.164 | 200 OK | 21 kB |
IP107.167.2.164:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 572x360, components 3\012- data Hash7e32d1527201742550a96c14308300f4 2ecb5cc9ede83a45ad3d57381f0eb45ff03a4a1f 48905de5b1f2413902a2b1b6efb3c38e3287be46274dabe0b1c760680b743232
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/xh.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20699
last-modified: Wed, 08 Jun 2022 17:25:16 GMT
etag: "62a0db7c-50db"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/www.jpg | 107.167.2.164 | 200 OK | 32 kB |
IP107.167.2.164:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 572x360, components 3\012- data Hashad7fa1b5f17d141f4a145ab1169f50ac 2abf644db36b2c20193d998b898cc670501384e3 4a4cec2de39081311379d10f4c4457cd8fbad60868878dcbc1cc51bfcfd43ce9
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/www.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 32390
last-modified: Wed, 08 Jun 2022 17:25:15 GMT
etag: "62a0db7b-7e86"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/template/default_pc/images/lazyload.gif | 107.167.2.164 | 200 OK | 1.6 kB |
URL HTTP/2go.op4u.cc/template/default_pc/images/lazyload.gif IP107.167.2.164:0
File typeGIF image data, version 89a, 16 x 16\012- data Hash03ce3dcc84af110e9da8699a841e5200 d2b7e4e31fe8e1c6b720e33448674102879e4246 d3e3944d4649450dee66a55c69eeced2d825b6ca1a349f72c75fd3780ae3f006
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /template/default_pc/images/lazyload.gif HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/template/default_pc/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:11 GMT
content-type: image/gif
content-length: 1553
last-modified: Sun, 10 Mar 2019 13:12:50 GMT
etag: "5c850d52-611"
expires: Thu, 06 Oct 2022 10:52:11 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4654
Expires: Tue, 06 Sep 2022 12:03:52 GMT
Date: Tue, 06 Sep 2022 10:46:18 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4654
Expires: Tue, 06 Sep 2022 12:03:52 GMT
Date: Tue, 06 Sep 2022 10:46:18 GMT
Connection: keep-alive
|
|
| go.op4u.cc/img/heyzo.jpg | 107.167.2.164 | 200 OK | 20 kB |
IP107.167.2.164:0
File typegzip compressed data, max compression\012- data Hash56f5d7f608e25d64207135f045f988cb 901eb59372ae330ae85e1384da93479b21ae1082 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/heyzo.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20568
last-modified: Mon, 30 Nov 2020 10:44:41 GMT
etag: "5fc4cd19-5058"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbc70b1691dd339e8120b92ba393ffb69 99118be3645b3182ccdc5f9da149a97c220a3929 da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4654
Expires: Tue, 06 Sep 2022 12:03:52 GMT
Date: Tue, 06 Sep 2022 10:46:18 GMT
Connection: keep-alive
|
|
| go.op4u.cc/img/smd.jpg | 107.167.2.164 | 200 OK | 13 kB |
IP107.167.2.164:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashec466c0d472e43c11d36bf6fce068205 720d3624a76d060b8e2699e9aa7a320e3efd4878 5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/smd.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 21398
last-modified: Mon, 30 Nov 2020 10:45:04 GMT
etag: "5fc4cd30-5396"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8c23179b2131543088771e3fa84ff231 ae50ae4aecd962b698c19f2863857b51cea7fcec 660900ca69b1787a734c1dbe3d6b9b19656912b4bc4715964c4325edff57f008
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7855
x-amzn-requestid: d7c8054c-d7d3-4b76-815d-36c3a2e1f6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYn6FwzoAMF40g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e32-3ededbf27f83503978e0d775;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:46:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QFEoJOq9eyhQH3KTlAB_ctOvGWRfAkPMHiZUa34wae07KaezXFodBg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:57:14 GMT
age: 46144
etag: "ae50ae4aecd962b698c19f2863857b51cea7fcec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F404ac7e7-f8ba-4b04-b736-5cab0995739f.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F404ac7e7-f8ba-4b04-b736-5cab0995739f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8a5ed2a9c430f2f02da773c400d096e0 618252c5082ccfeeb8bc92aecba4485c48ac4206 948158a29f15f5f5ab45f541b665269d43bfc1e3b444ee4ecb9ba715d5b616d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F404ac7e7-f8ba-4b04-b736-5cab0995739f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11003
x-amzn-requestid: 29b9c3bc-4b10-44ed-9bc0-111a672c1d25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqpJpGjxoAMFzSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630dbbd7-1547b64d2fc3052e510f6218;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:27:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: TGpnDyF8_8hy5bs5denuqKSMzLl98Oz7YHx4MAOMr_Ah-POktYDXSA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 09:39:22 GMT
age: 4016
etag: "618252c5082ccfeeb8bc92aecba4485c48ac4206"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc784000-5c7c-4aa9-8318-e4d0319d1a09.jpeg | 34.120.237.76 | 200 OK | 9.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc784000-5c7c-4aa9-8318-e4d0319d1a09.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0d404793e430ea237e75be9cb1e2bce4 059b34d1809abedd223f7beec75e7831673878be f180b1cdeb9a794ba3211348673783508d021aeaed419d782374be1a92a4c8dc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc784000-5c7c-4aa9-8318-e4d0319d1a09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9300
x-amzn-requestid: dc833608-6b16-4baa-af21-d3885043556c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWshHVxIAMFlGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-1710086818614ab247bcaf58;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sPkksSz3FIV3WcWpoY8E8UYKmUTE8LJ2lr5WO2JVNCGIuAvpPwYMYg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:56:40 GMT
age: 46178
etag: "059b34d1809abedd223f7beec75e7831673878be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F228f042c-3a57-45c7-84c2-4aaaa1dd2f07.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F228f042c-3a57-45c7-84c2-4aaaa1dd2f07.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash19b452d6541a6028e7d3f90529477077 1c16eb50bc2490b4ebff6775ef611fdcb282f9f9 f4763a0f464067991c2c484c384df4fe791d7df6e3d6ad15650a954db537249f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F228f042c-3a57-45c7-84c2-4aaaa1dd2f07.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10694
x-amzn-requestid: c3d2f71c-927d-41f6-93ab-bf041374a9f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsgHQOIAMFvSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-5d2efd595cdf300972f4fb79;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eikhT8BkN5e163S6QriQybdyPNTKDTf3BCsHifNwfBJfrWv7LqgL8Q==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:06:45 GMT
age: 45573
etag: "1c16eb50bc2490b4ebff6775ef611fdcb282f9f9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F803e9506-f3ea-4e09-a966-608b8dabf3b0.jpeg | 34.120.237.76 | 200 OK | 8.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F803e9506-f3ea-4e09-a966-608b8dabf3b0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5540d72831e7e7b9fc287f92c48d9f5e ec19429fa76d9ad47a0578734b011b530b79ebbf bc27a44853fd17cf51d6bba0db58a755c75a309d9b0cbcd454dfc9d62785f72f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F803e9506-f3ea-4e09-a966-608b8dabf3b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8134
x-amzn-requestid: 1b2ece5c-784c-4c14-a760-c43d697b1abf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FSEE2CIAMFvgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144f40-2243fc211a76c7e404710c7c;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:09:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f2bMA3sdC6qxijseKXb53WMncdjInfvh-lVvr0W69sgaHEHKCNvLMQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 07:25:52 GMT
age: 12026
etag: "ec19429fa76d9ad47a0578734b011b530b79ebbf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/kin8.jpg | 107.167.2.164 | 200 OK | 146 B |
IP107.167.2.164:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash8eec510e57f5f732fd2cce73df7b73ef 3c0af39ecb3753c5fee3b53d063c7286019eac3b 55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/kin8.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 28832
last-modified: Mon, 30 Nov 2020 10:44:47 GMT
etag: "5fc4cd1f-70a0"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/630c16bea60/js/twk-app.js | 172.67.38.66 | 200 OK | 119 B |
URL HTTP/2embed.tawk.to/_s/v4/app/630c16bea60/js/twk-app.js IP172.67.38.66:0
File typeASCII text, with no line terminators Hashae2c377838b77becffe1bffea6fd85f2 7047751abde47b5166d7257f31c1d24889743c76 3cda2686f445311b40dbe3568adbc545da5973b2e833fb3e2667c733094f858f
GET /_s/v4/app/630c16bea60/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.op4u.cc
Connection: keep-alive
Referer: https://go.op4u.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 10:46:19 GMT
content-type: application/javascript
age: 55537
last-modified: Mon, 29 Aug 2022 01:31:16 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74669ec10a41fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js | 151.101.85.229 | 200 OK | 66 kB |
URL HTTP/2cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js IP151.101.85.229:0
Hashdb4ad2a6c6651dcc13d0824e6d304b82 f8ae60e3421dd6f0885ee67cf17c4dbbc6668f93 295cbc59d5c10a9777eb3d9f0e33a8c117b7cb81d8f4f8c47bdda2393085b888
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 06 Sep 2022 10:46:19 GMT
age: 14607537
x-served-by: cache-fra19156-FRA, cache-bma1652-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 53889
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 | 104.18.20.226 | 200 OK | 1.5 kB |
URL HTTP/1.1ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 IP104.18.20.226:0
Hashdb446c7c979ca0fa8e4477fbc54860e0 c9d8e2183fcd6a237117cc2235c71de24aabb2ca 2ad65333cfd0338e60aeb312082b035528f140ed34953df09e14b4f29ebdb6d5
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 10:46:19 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "1656D8B95F8D3D0F593A660C2C166B7839AC20D9"
Expires: Tue, 06 Sep 2022 21:00:00 GMT
Last-Modified: Tue, 06 Sep 2022 09:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1885
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74669ec60d480b59-OSL
|
|
| embed.tawk.to/_s/v4/app/630c16bea60/js/twk-chunk-vendors.js | 172.67.38.66 | 200 OK | 62 kB |
URL HTTP/2embed.tawk.to/_s/v4/app/630c16bea60/js/twk-chunk-vendors.js IP172.67.38.66:0
File typeUnicode text, UTF-8 text, with very long lines (65464) Hashf689b978b4d3716926d486dd6d7a2e9e d706901e96a8542d51e087605096dec51b0d7f85 fa8a0fd6afd80e3448391210af1354a87fb48c551343d4670646e7d69ffd3b37
GET /_s/v4/app/630c16bea60/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.op4u.cc
Connection: keep-alive
Referer: https://go.op4u.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 10:46:19 GMT
content-type: application/javascript
age: 55537
last-modified: Mon, 29 Aug 2022 01:31:16 GMT
etag: W/"81c2642aac0b88b6b237d279f5f8ce67"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74669ec10a39fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/xvds.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/xvds.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 10125
last-modified: Wed, 20 Jan 2021 16:25:24 GMT
etag: "60085974-278d"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/babes.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/babes.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 19712
last-modified: Mon, 30 Nov 2020 10:44:18 GMT
etag: "5fc4cd02-4d00"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/Passion-HD.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/Passion-HD.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/Passion-HD.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20023
last-modified: Mon, 17 Jan 2022 06:02:28 GMT
etag: "61e50674-4e37"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/dm.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/dm.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 16413
last-modified: Wed, 15 Jun 2022 16:56:20 GMT
etag: "62aa0f34-401d"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/mt1.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/mt1.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 85273
last-modified: Mon, 17 Jan 2022 06:02:11 GMT
etag: "61e50663-14d19"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/ph.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/ph.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 14523
last-modified: Mon, 17 Jan 2022 06:17:17 GMT
etag: "61e509ed-38bb"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/xan.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/xan.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 23088
last-modified: Wed, 15 Jun 2022 16:42:57 GMT
etag: "62aa0c11-5a30"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/ohen.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/ohen.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 24404
last-modified: Wed, 15 Jun 2022 16:42:58 GMT
etag: "62aa0c12-5f54"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/GIRLSWAY.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/GIRLSWAY.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/GIRLSWAY.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 23393
last-modified: Mon, 30 Nov 2020 10:44:39 GMT
etag: "5fc4cd17-5b61"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/NewSensations.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/NewSensations.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/NewSensations.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 16350
last-modified: Mon, 30 Nov 2020 10:44:50 GMT
etag: "5fc4cd22-3fde"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/hegre.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/hegre.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 19534
last-modified: Wed, 20 Jan 2021 16:25:33 GMT
etag: "6008597d-4c4e"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/bang.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/bang.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 22319
last-modified: Wed, 20 Jan 2021 16:25:40 GMT
etag: "60085984-572f"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/zotd.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/zotd.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 19196
last-modified: Wed, 20 Jan 2021 16:25:22 GMT
etag: "60085972-4afc"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/md1.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/md1.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 31311
last-modified: Mon, 17 Jan 2022 06:01:49 GMT
etag: "61e5064d-7a4f"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/Penthouse.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/Penthouse.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/Penthouse.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 26283
last-modified: Mon, 17 Jan 2022 06:02:37 GMT
etag: "61e5067d-66ab"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/free.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/free.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 16414
last-modified: Mon, 30 Nov 2020 10:44:36 GMT
etag: "5fc4cd14-401e"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/YOUPORN.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/YOUPORN.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/YOUPORN.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 10415
last-modified: Mon, 30 Nov 2020 10:45:19 GMT
etag: "5fc4cd3f-28af"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/91.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/91.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20914
last-modified: Wed, 16 Dec 2020 12:31:00 GMT
etag: "5fd9fe04-51b2"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/630c16bea60/js/twk-vendor.js | 172.67.38.66 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/630c16bea60/js/twk-vendor.js IP172.67.38.66:0
GET /_s/v4/app/630c16bea60/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.op4u.cc
Connection: keep-alive
Referer: https://go.op4u.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 10:46:19 GMT
content-type: application/javascript
age: 55537
last-modified: Mon, 29 Aug 2022 01:31:16 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74669ec10a37fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/template/default_pc/js/jquery.base.js | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/template/default_pc/js/jquery.base.js IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /template/default_pc/js/jquery.base.js HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: application/javascript
last-modified: Sun, 10 Mar 2019 13:12:52 GMT
vary: Accept-Encoding
etag: W/"5c850d54-1917"
expires: Tue, 06 Sep 2022 22:52:10 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/TUSHY.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/TUSHY.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 18216
last-modified: Mon, 17 Jan 2022 06:03:46 GMT
etag: "61e506c2-4728"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/StasyQ.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/StasyQ.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/StasyQ.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20901
last-modified: Mon, 30 Nov 2020 10:45:07 GMT
etag: "5fc4cd33-51a5"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/redtube.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/redtube.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/redtube.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 10388
last-modified: Wed, 20 Jan 2021 16:25:19 GMT
etag: "6008596f-2894"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/static/css/home.css | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/static/css/home.css IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /static/css/home.css HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: text/css
last-modified: Tue, 24 Aug 2021 06:28:18 GMT
vary: Accept-Encoding
etag: W/"61249182-5337"
expires: Tue, 06 Sep 2022 22:52:10 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/korean.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/korean.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/korean.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20066
last-modified: Wed, 02 Dec 2020 05:30:34 GMT
etag: "5fc7267a-4e62"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/1pondo.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/1pondo.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/1pondo.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 29960
last-modified: Mon, 30 Nov 2020 10:44:12 GMT
etag: "5fc4ccfc-7508"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/xnxx.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/xnxx.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 9439
last-modified: Wed, 20 Jan 2021 16:25:18 GMT
etag: "6008596e-24df"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/ultrafilms.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/ultrafilms.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/ultrafilms.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 22760
last-modified: Mon, 17 Jan 2022 06:03:53 GMT
etag: "61e506c9-58e8"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/METART.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/METART.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/METART.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 12689
last-modified: Mon, 30 Nov 2020 10:44:48 GMT
etag: "5fc4cd20-3191"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/wickedpictures.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/wickedpictures.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/wickedpictures.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 13382
last-modified: Mon, 30 Nov 2020 10:45:18 GMT
etag: "5fc4cd3e-3446"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/TUSHY%20RAW.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/TUSHY%20RAW.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/TUSHY%20RAW.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 30584
last-modified: Mon, 17 Jan 2022 06:03:37 GMT
etag: "61e506b9-7778"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/w4b.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/w4b.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 33754
last-modified: Wed, 20 Jan 2021 16:25:28 GMT
etag: "60085978-83da"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/tm1.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/tm1.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 28843
last-modified: Mon, 17 Jan 2022 06:03:24 GMT
etag: "61e506ac-70ab"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/bj.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/bj.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20538
last-modified: Mon, 30 Nov 2020 10:44:19 GMT
etag: "5fc4cd03-503a"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/template/default_pc/js/jquery.lazyload.js | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/template/default_pc/js/jquery.lazyload.js IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /template/default_pc/js/jquery.lazyload.js HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: application/javascript
last-modified: Sun, 10 Mar 2019 13:12:52 GMT
vary: Accept-Encoding
etag: W/"5c850d54-6be"
expires: Tue, 06 Sep 2022 22:52:10 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/caribbeancom.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/caribbeancom.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/caribbeancom.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 15655
last-modified: Mon, 30 Nov 2020 10:44:25 GMT
etag: "5fc4cd09-3d27"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/EroticaX.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/EroticaX.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/EroticaX.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 17864
last-modified: Mon, 17 Jan 2022 05:53:35 GMT
etag: "61e5045f-45c8"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/th.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/th.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 15912
last-modified: Sun, 03 Apr 2022 16:25:59 GMT
etag: "6249ca97-3e28"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/630c16bea60/js/twk-runtime.js | 172.67.38.66 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/630c16bea60/js/twk-runtime.js IP172.67.38.66:0
GET /_s/v4/app/630c16bea60/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.op4u.cc
Connection: keep-alive
Referer: https://go.op4u.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 10:46:19 GMT
content-type: application/javascript
age: 55537
last-modified: Mon, 29 Aug 2022 01:31:16 GMT
etag: W/"c5ac9b5bce70724c3422e4824abf1613"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74669ec10a40fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/21s.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/21s.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20943
last-modified: Mon, 17 Jan 2022 05:47:58 GMT
etag: "61e5030e-51cf"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/21.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/21.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 24163
last-modified: Mon, 17 Jan 2022 05:47:23 GMT
etag: "61e502eb-5e63"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/34deo.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/34deo.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 24455
last-modified: Wed, 15 Jun 2022 16:46:35 GMT
etag: "62aa0ceb-5f87"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/bootstrap-4.6.1-dist/css/bootstrap.css | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/bootstrap-4.6.1-dist/css/bootstrap.css IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /bootstrap-4.6.1-dist/css/bootstrap.css HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: text/css
last-modified: Mon, 06 Jun 2022 03:57:36 GMT
vary: Accept-Encoding
etag: W/"629d7b30-30d8e"
expires: Tue, 06 Sep 2022 22:52:10 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/VIXEN.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/VIXEN.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 29112
last-modified: Mon, 17 Jan 2022 06:04:09 GMT
etag: "61e506d9-71b8"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/amta.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/amta.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 18120
last-modified: Wed, 15 Jun 2022 16:42:59 GMT
etag: "62aa0c13-46c8"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/deep.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/deep.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 28027
last-modified: Mon, 17 Jan 2022 05:53:30 GMT
etag: "61e5045a-6d7b"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/xk1.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/xk1.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 34408
last-modified: Mon, 17 Jan 2022 06:04:30 GMT
etag: "61e506ee-8668"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/kbj.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/kbj.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 23094
last-modified: Mon, 17 Jan 2022 06:01:35 GMT
etag: "61e5063f-5a36"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/tokyo-hot.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/tokyo-hot.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/tokyo-hot.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20310
last-modified: Mon, 30 Nov 2020 10:45:11 GMT
etag: "5fc4cd37-4f56"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/JAVHD.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/JAVHD.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 18531
last-modified: Mon, 30 Nov 2020 10:44:43 GMT
etag: "5fc4cd1b-4863"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/static/js/jquery.autocomplete.js | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/static/js/jquery.autocomplete.js IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /static/js/jquery.autocomplete.js HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: application/javascript
last-modified: Mon, 08 Jul 2019 02:10:00 GMT
vary: Accept-Encoding
etag: W/"5d22a5f8-6215"
expires: Tue, 06 Sep 2022 22:52:10 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/jd1.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/jd1.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 32471
last-modified: Mon, 17 Jan 2022 06:01:28 GMT
etag: "61e50638-7ed7"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/ru.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/ru.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 24187
last-modified: Mon, 17 Jan 2022 06:17:32 GMT
etag: "61e509fc-5e7b"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/vpn.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/vpn.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 10896
last-modified: Sat, 25 Jun 2022 15:00:14 GMT
etag: "62b722fe-2a90"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| embed.tawk.to/_s/v4/app/630c16bea60/js/twk-chunk-common.js | 172.67.38.66 | 200 OK | 0 B |
URL HTTP/2embed.tawk.to/_s/v4/app/630c16bea60/js/twk-chunk-common.js IP172.67.38.66:0
GET /_s/v4/app/630c16bea60/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.op4u.cc
Connection: keep-alive
Referer: https://go.op4u.cc/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 10:46:19 GMT
content-type: application/javascript
age: 55537
last-modified: Mon, 29 Aug 2022 01:31:16 GMT
etag: W/"a60e52c6e06e37e6cb034be34513f89a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 74669ec10a3efabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/static/js/jquery.js | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/static/js/jquery.js IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /static/js/jquery.js HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: application/javascript
last-modified: Fri, 08 Oct 2021 11:50:45 GMT
vary: Accept-Encoding
etag: W/"61603095-16f0f"
expires: Tue, 06 Sep 2022 22:52:10 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/LETDOEIT.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/LETDOEIT.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/LETDOEIT.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 19118
last-modified: Mon, 17 Jan 2022 06:01:39 GMT
etag: "61e50643-4aae"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/Private.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/Private.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/Private.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 17544
last-modified: Mon, 17 Jan 2022 06:02:47 GMT
etag: "61e50687-4488"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/X-ART.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/X-ART.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 26037
last-modified: Mon, 17 Jan 2022 06:04:18 GMT
etag: "61e506e2-65b5"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/colette.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/colette.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/colette.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 24647
last-modified: Wed, 20 Jan 2021 16:25:38 GMT
etag: "60085982-6047"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/bootstrap-4.6.1-dist/js/bootstrap.min.js | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/bootstrap-4.6.1-dist/js/bootstrap.min.js IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /bootstrap-4.6.1-dist/js/bootstrap.min.js HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: application/javascript
last-modified: Mon, 06 Jun 2022 03:57:24 GMT
vary: Accept-Encoding
etag: W/"629d7b24-f3e8"
expires: Tue, 06 Sep 2022 22:52:10 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/adtime.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/adtime.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/adtime.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 25488
last-modified: Mon, 17 Jan 2022 05:51:35 GMT
etag: "61e503e7-6390"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/NubileFilms1.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/NubileFilms1.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/NubileFilms1.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 23300
last-modified: Mon, 17 Jan 2022 06:02:20 GMT
etag: "61e5066c-5b04"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/dog.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/dog.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 35515
last-modified: Wed, 20 Jan 2021 16:25:35 GMT
etag: "6008597f-8abb"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/gd.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/gd.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 30185
last-modified: Mon, 17 Jan 2022 05:53:42 GMT
etag: "61e50466-75e9"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/sexart.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/sexart.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/sexart.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 23734
last-modified: Mon, 17 Jan 2022 06:03:06 GMT
etag: "61e5069a-5cb6"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/Fantasy%20Massage.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/Fantasy%20Massage.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/Fantasy%20Massage.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 21342
last-modified: Mon, 30 Nov 2020 10:44:36 GMT
etag: "5fc4cd14-535e"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/joymii.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/joymii.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/joymii.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 21957
last-modified: Mon, 17 Jan 2022 05:53:58 GMT
etag: "61e50476-55c5"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/template/default_pc/js/jquery.superslide.js | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/template/default_pc/js/jquery.superslide.js IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /template/default_pc/js/jquery.superslide.js HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: application/javascript
last-modified: Sun, 10 Mar 2019 13:12:52 GMT
vary: Accept-Encoding
etag: W/"5c850d54-24e5"
expires: Tue, 06 Sep 2022 22:52:10 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/blacked.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/blacked.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/blacked.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 18956
last-modified: Mon, 17 Jan 2022 05:51:51 GMT
etag: "61e503f7-4a0c"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/dev.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/dev.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20995
last-modified: Mon, 30 Nov 2020 10:44:29 GMT
etag: "5fc4cd0d-5203"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/static/js/home.js | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/static/js/home.js IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /static/js/home.js HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: application/javascript
last-modified: Tue, 24 Aug 2021 06:28:32 GMT
vary: Accept-Encoding
etag: W/"61249190-95a5"
expires: Tue, 06 Sep 2022 22:52:10 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/ddf.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/ddf.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 19299
last-modified: Mon, 17 Jan 2022 05:53:17 GMT
etag: "61e5044d-4b63"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/BLACKED%20RAW.jpg | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/img/BLACKED%20RAW.jpg IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/BLACKED%20RAW.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 28860
last-modified: Mon, 17 Jan 2022 05:51:44 GMT
etag: "61e503f0-70bc"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/img/swag.jpg | 107.167.2.164 | 200 OK | 0 B |
IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /img/swag.jpg HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: image/jpeg
content-length: 20429
last-modified: Sun, 09 Aug 2020 16:49:55 GMT
etag: "5f302933-4fcd"
expires: Thu, 06 Oct 2022 10:52:10 GMT
cache-control: max-age=2592000
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| go.op4u.cc/template/default_pc/css/style.css | 107.167.2.164 | 200 OK | 0 B |
URL HTTP/2go.op4u.cc/template/default_pc/css/style.css IP107.167.2.164:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /template/default_pc/css/style.css HTTP/1.1
Host: go.op4u.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.op4u.cc/?cid=wuae5eqq8na82iri2a7i9v1s&tn=Clickadu
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 10:52:10 GMT
content-type: text/css
last-modified: Sun, 10 Mar 2019 13:12:50 GMT
vary: Accept-Encoding
etag: W/"5c850d52-1c55b"
expires: Tue, 06 Sep 2022 22:52:10 GMT
cache-control: max-age=43200
content-encoding: gzip
X-Firefox-Spdy: h2
|
|