| selcuksportshd260.xyz/ | 104.21.73.147 | 301 Moved Permanently | 0 B |
IP104.21.73.147:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: selcuksportshd260.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 02 Nov 2022 01:43:28 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 02 Nov 2022 02:43:28 GMT
Location: https://selcuksportshd260.xyz/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GIKYTUj%2FGq32z0eKOQgUZV%2BmIJo8gdTIxtg0%2B3CQTpXw1BMo9j0hJCcAusZMm0%2FugkIZKwRvGaBkQjgiDg5zTDab576NVK58AWHNVrvauUIGMPTdZ2LZF665XOfoXP8cXHbETEcMyuM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 76392df43a84b51e-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash33c3dea45eaabae3557235f002dda989 38a1903e09bff723af30fe5080f79646247b9254 b00022c599d7a74bd264b90a1ca9f935eb8a7bc6e63a9751dddc8acfbafe58da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B00022C599D7A74BD264B90A1CA9F935EB8A7BC6E63A9751DDDC8ACFBAFE58DA"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7506
Expires: Wed, 02 Nov 2022 03:48:34 GMT
Date: Wed, 02 Nov 2022 01:43:28 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash8d024a7496f85cabcc9adc118bd9fbec a1146d4bf5c3e21619777259206bec6cad36e7ea 247b9761f543b4d13fabf86390a1580f92b2b271e1801d99b11bbb1980eefe84
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5254
Cache-Control: max-age=119707
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:28 GMT
Etag: "6360e755-1d7"
Expires: Thu, 03 Nov 2022 10:58:35 GMT
Last-Modified: Tue, 01 Nov 2022 09:31:01 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash8d024a7496f85cabcc9adc118bd9fbec a1146d4bf5c3e21619777259206bec6cad36e7ea 247b9761f543b4d13fabf86390a1580f92b2b271e1801d99b11bbb1980eefe84
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3829
Cache-Control: max-age=118282
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:28 GMT
Etag: "6360e755-1d7"
Expires: Thu, 03 Nov 2022 10:34:50 GMT
Last-Modified: Tue, 01 Nov 2022 09:31:01 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash44ee7bbc64b0396b20a28944ea4ec4d2 dbb18d4238fa3a980e5c254ff25d3b39590b0159 2cc72ff87dcdabcb0a67d8dda7a7c440f8650ffe77f71602954a3076762be50a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC72FF87DCDABCB0A67D8DDA7A7C440F8650FFE77F71602954A3076762BE50A"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4432
Expires: Wed, 02 Nov 2022 02:57:20 GMT
Date: Wed, 02 Nov 2022 01:43:28 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: OlbT3vohKReKVuQ+bbRCZWNw5T1cK6SZF11wRLuKo5/k9xVOAVnKWnn9MwkFj/nVStmURep1B54=
x-amz-request-id: MAB98R0SXPG22VDP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 02 Nov 2022 01:08:34 GMT
age: 2095
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 01:43:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 344 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe9f97f5b933f903238eedce4841ee301 c26d7be415613c697c0bc0273f6891fb8ffc30be 1dc538998cfa316b756adbc53bc659faed588a6cb4fc7797c39f32ae7e89547d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1DC538998CFA316B756ADBC53BC659FAED588A6CB4FC7797C39F32AE7E89547D"
Last-Modified: Tue, 01 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Wed, 02 Nov 2022 07:42:47 GMT
Date: Wed, 02 Nov 2022 01:43:29 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 344 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe9f97f5b933f903238eedce4841ee301 c26d7be415613c697c0bc0273f6891fb8ffc30be 1dc538998cfa316b756adbc53bc659faed588a6cb4fc7797c39f32ae7e89547d
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1DC538998CFA316B756ADBC53BC659FAED588A6CB4FC7797C39F32AE7E89547D"
Last-Modified: Tue, 01 Nov 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21558
Expires: Wed, 02 Nov 2022 07:42:47 GMT
Date: Wed, 02 Nov 2022 01:43:29 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hashb309d82f11d7b5b962709c1f92250aa1 005fde0633ca56d55788d246267fa016ddf0e679 1b8af87e472ba6e621b2d4bb6260da3501cf92e41d62ece06cf0c820754b4803
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3923
Cache-Control: max-age=134211
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:29 GMT
Etag: "63612531-116"
Expires: Thu, 03 Nov 2022 15:00:20 GMT
Last-Modified: Tue, 01 Nov 2022 13:54:57 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 1.7 kB |
IP93.184.220.29:0
Hash3ce97917bdd0fe50cb07c9ebf538ce0e f4d6d80b53482a8b8435e319e62ae596b9eb2113 af9d4afe4b9e99e0ead921cde9f44281aa12db5c0d3c4331ac5d0abe7519082f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6149
Cache-Control: max-age=136437
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:29 GMT
Etag: "63612531-116"
Expires: Thu, 03 Nov 2022 15:37:26 GMT
Last-Modified: Tue, 01 Nov 2022 13:54:57 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashf9303161ce04577a7bcd56ce42831a56 690bf1468d25898db3ab46e03639946854ab25f0 40c380dba92d637574e7699ae184a089c090bab6f7215dc0178dadd8b23da43c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2335
Cache-Control: max-age=111732
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:29 GMT
Etag: "6360d396-1d7"
Expires: Thu, 03 Nov 2022 08:45:41 GMT
Last-Modified: Tue, 01 Nov 2022 08:06:46 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
|
|
| code.jquery.com/jquery-3.6.0.min.js | 69.16.175.42 | 200 OK | 31 kB |
URL HTTP/2code.jquery.com/jquery-3.6.0.min.js IP69.16.175.42:0
File typeASCII text, with very long lines (65447) Hash899f0189aaf034bbba5340f724d91dfa 210ea9de03968edb9d839ba4a0ce2d48666a8ab8 949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:29 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1667353409.dop229.sk1.t,1667353409.cds231.sk1.hn,1667353409.cds210.sk1.c
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 5.6 kB |
IP142.250.74.3:0
Hash626e380c786b8c4c410960e6f01ff502 858e6e72e232bb58a83a183ee2010033214c122d aedf3c0c2847090292b1e04e508ee3c9bf79c85dfb3797d056a53b1adb3ccb68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash8fcb8c8bfc18b00470f0bc43683c9709 a322f84088d14cb7de1e104171fc998a591291b6 4084b5ccaf95ff4f5da421cb5b101d20f4f2f87959698a5d1cc19d4e2afe7016
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1 | 142.250.74.168 | 200 OK | 77 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=G-CVN78DGZN1 IP142.250.74.168:0
File typeASCII text, with very long lines (21373) Hashad1c1c199f38c853c0428fe6b844b008 2e8238a5f063361d5ce9197c7c24a0c88ea87d33 bae330f3d0b6581ff023e28a614d998f9338e2e38fca5dfcb34b586d6b29b10f
GET /gtag/js?id=G-CVN78DGZN1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 02 Nov 2022 01:43:29 GMT
expires: Wed, 02 Nov 2022 01:43:29 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76574
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashabae2de07c673b4a8f7eb0b8b0e182e5 e17d882cd933b135c27b4d7619d227a5728e00ec 0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash8fcb8c8bfc18b00470f0bc43683c9709 a322f84088d14cb7de1e104171fc998a591291b6 4084b5ccaf95ff4f5da421cb5b101d20f4f2f87959698a5d1cc19d4e2afe7016
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 52.39.126.109 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.39.126.109:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pIyydpfGMD/c0jNfS0rKgQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: tnCgGXb1+jTeKM1G6q/VAqpIN64=
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash51ea4c6ce99628e73ce1986e90074398 cb245ac5b490a4997b1785111a6179ab60a2242c 7d1a56a6161c75a84838c65a78977b9d44736870cc9ccedc9a6737e393ea738a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 | 172.217.21.163 | 200 OK | 12 kB |
URL HTTP/2fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 IP172.217.21.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 12372, version 1.0\012- data Hash0ef99cf07a2a261ab43d5dc1937ffb27 bd39f9cd13ef2a6f912dcba8fa916fc67b4a19d9 557f6d0883db85be712c3a77baa38875ddf99ecbdfd6fec98e5c0b1f7a0e1532
GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd266.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Nov 2022 01:09:11 GMT
expires: Wed, 01 Nov 2023 01:09:11 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:19:22 GMT
content-type: font/woff2
age: 88459
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 | 172.217.21.163 | 200 OK | 12 kB |
URL HTTP/2fonts.gstatic.com/s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 IP172.217.21.163:0
File typeWeb Open Font Format (Version 2), TrueType, length 12136, version 1.0\012- data Hash5d7c6bb8fd4fc992c54e596ab7433d5d 35fd6e4c125235cb7f9aa6e297da4b64ae45b06a dd870101ad4e95d687a2eb734707b0dd7c20808f76d7be77a71a5d13cf99401c
GET /s/titilliumweb/v15/NaPDcZTIAOhVxoMyOr9n_E7ffBzCGItzYw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd266.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12136
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 01 Nov 2022 15:25:40 GMT
expires: Wed, 01 Nov 2023 15:25:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 15:39:24 GMT
content-type: font/woff2
age: 37070
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Titillium+Web:wght@300;400;600;700&display=swap | 142.250.74.10 | 200 OK | 12 kB |
URL HTTP/2fonts.googleapis.com/css2?family=Titillium+Web:wght@300;400;600;700&display=swap IP142.250.74.10:0
Hash2877c9e21263f54969c8264131c1eebd 90defbcff76c48ebf66f14e7209fce56b22a1068 d78095d2cdc5134f5c441a0060e99f68356cf6568ffc7ef63a041495fcb75737
GET /css2?family=Titillium+Web:wght@300;400;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 02 Nov 2022 01:43:29 GMT
date: Wed, 02 Nov 2022 01:43:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2 | 172.217.21.163 | 200 OK | 8.2 kB |
URL HTTP/2fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2 IP172.217.21.163:0
Hashc83ce9ce97c02de0b0cbdeac226bd722 6b712f48121c2d2217b758ade7170868590625f4 efe9154c5c201c4f89b530c461c70c89db4fdff1efb5fb31fc9ffacb7b91aed4
GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdM3mDbRS.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.selcuksportshd266.xyz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 6776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 23:51:04 GMT
expires: Thu, 26 Oct 2023 23:51:04 GMT
cache-control: public, max-age=31536000
age: 525146
last-modified: Wed, 27 Apr 2022 16:14:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 344 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashcb0453e3add51b71ace2226e2cd2b92f 6c411c6e52c48be51ab646fd8da596449c55668e 96a447dadade10637fa9ec93a62fe2ca7b2cb4147f57b25c2223c2c4201f4760
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "96A447DADADE10637FA9EC93A62FE2CA7B2CB4147F57B25C2223C2C4201F4760"
Last-Modified: Sun, 30 Oct 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12867
Expires: Wed, 02 Nov 2022 05:17:57 GMT
Date: Wed, 02 Nov 2022 01:43:30 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash51ea4c6ce99628e73ce1986e90074398 cb245ac5b490a4997b1785111a6179ab60a2242c 7d1a56a6161c75a84838c65a78977b9d44736870cc9ccedc9a6737e393ea738a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 344 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe378319d8aea2eebb72eb07405a2d24d aa03559d038a9f13e1f81cd21d6a8e5630374bb5 08482615c3dd02fefdb02bea9069e7fabe2fc595d6146c106aaee61ba0cc3acc
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "08482615C3DD02FEFDB02BEA9069E7FABE2FC595D6146C106AAEE61BA0CC3ACC"
Last-Modified: Sun, 30 Oct 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 02 Nov 2022 07:43:30 GMT
Date: Wed, 02 Nov 2022 01:43:30 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 344 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashcb0453e3add51b71ace2226e2cd2b92f 6c411c6e52c48be51ab646fd8da596449c55668e 96a447dadade10637fa9ec93a62fe2ca7b2cb4147f57b25c2223c2c4201f4760
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "96A447DADADE10637FA9EC93A62FE2CA7B2CB4147F57B25C2223C2C4201F4760"
Last-Modified: Sun, 30 Oct 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12867
Expires: Wed, 02 Nov 2022 05:17:57 GMT
Date: Wed, 02 Nov 2022 01:43:30 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashcda96e08ecbba0a65cb4943a55f71c47 f98e65adf08e7df7f5998a8a85a8e06694f35590 320554bc4323b545e2d7d2117769da532bdbf2cb3bb44e1f24f79bc930e563a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6476
Cache-Control: max-age=129186
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:30 GMT
Etag: "63610798-117"
Expires: Thu, 03 Nov 2022 13:36:36 GMT
Last-Modified: Tue, 01 Nov 2022 11:48:40 GMT
Server: ECS (amb/6B90)
X-Cache: HIT
Content-Length: 279
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 344 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe378319d8aea2eebb72eb07405a2d24d aa03559d038a9f13e1f81cd21d6a8e5630374bb5 08482615c3dd02fefdb02bea9069e7fabe2fc595d6146c106aaee61ba0cc3acc
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "08482615C3DD02FEFDB02BEA9069E7FABE2FC595D6146C106AAEE61BA0CC3ACC"
Last-Modified: Sun, 30 Oct 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 02 Nov 2022 07:43:30 GMT
Date: Wed, 02 Nov 2022 01:43:30 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashcda96e08ecbba0a65cb4943a55f71c47 f98e65adf08e7df7f5998a8a85a8e06694f35590 320554bc4323b545e2d7d2117769da532bdbf2cb3bb44e1f24f79bc930e563a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5152
Cache-Control: max-age=127862
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:30 GMT
Etag: "63610798-117"
Expires: Thu, 03 Nov 2022 13:14:32 GMT
Last-Modified: Tue, 01 Nov 2022 11:48:40 GMT
Server: ECS (amb/6B7B)
X-Cache: HIT
Content-Length: 279
|
|
| js.rfp.fout.jp/rfp-infeed.js | 23.32.107.182 | 200 OK | 15 kB |
URL HTTP/2js.rfp.fout.jp/rfp-infeed.js IP23.32.107.182:0
File typeASCII text, with very long lines (54214) Hasha2a27174d303ab04fb5b1e166d0b054f 8fe315b365e69ca138eed86d86ca4795319d1b64 caed7a1742ccc02bf163bcdc499154e30d92bb555ee7d343e1d60e0b8cc10b97
GET /rfp-infeed.js HTTP/1.1
Host: js.rfp.fout.jp
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtLfaO18vBHFGVOTELsLYxwbSDnpmY8nJZx3pj6DGCwNguDMBQuj_YINW4ReKbMzbeeNDJbH_OzVEgKteAumTMc0A
last-modified: Mon, 05 Sep 2022 02:06:28 GMT
etag: "a2a27174d303ab04fb5b1e166d0b054f"
x-goog-generation: 1662343588239694
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 14823
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=1JnjJg==, md5=oqJxdNMDqwT7Wx4WbQsFTw==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 14823
server: UploadServer
cache-control: public, max-age=1800
expires: Wed, 02 Nov 2022 02:13:30 GMT
date: Wed, 02 Nov 2022 01:43:30 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashb1ccc954578caa50ea6ab0096b95d578 b63bc1654c5ecfbc854d76a151fded8506cc3219 18ea308af255bfba9cd789917e4cce8701436ceca8c99a3fb983cb5961833698
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4092
Cache-Control: max-age=153093
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:30 GMT
Etag: "63616e4b-117"
Expires: Thu, 03 Nov 2022 20:15:03 GMT
Last-Modified: Tue, 01 Nov 2022 19:06:51 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
|
|
| ib.strmrdrfrofc.site/jquery.220afd743d9e9643852e31a135a9f3ae.js | 104.21.234.84 | 200 OK | 32 kB |
URL HTTP/2ib.strmrdrfrofc.site/jquery.220afd743d9e9643852e31a135a9f3ae.js IP104.21.234.84:0
File typeASCII text, with very long lines (65451) Hash8f315dacbfa278ab1fe21bb1e51620dd 6d0806d473d6704602c66527d50e807027aff1f0 d567afd7ccf90928ba45cd51030365c6653403625b845d98dc2692f80255978f
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /jquery.220afd743d9e9643852e31a135a9f3ae.js HTTP/1.1
Host: ib.strmrdrfrofc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ib.strmrdrfrofc.site/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 27 Sep 2020 13:19:40 GMT
vary: Accept-Encoding
expires: Wed, 01 Nov 2023 14:31:58 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 40292
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ku7kJT3HladgGmAf6at9HuJ7Lvy26jJv%2Ffa5o6jkBgdU7BCLUYMjaD1vCA7FSpSSNWICtvnE1G4y4muDg%2BN%2FyZNb55eRTsC9R4CBYARB5HD0x%2BBNkZCJjNPB91WrgnZDiXoSianmWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392dff1c8b7780-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashb1ccc954578caa50ea6ab0096b95d578 b63bc1654c5ecfbc854d76a151fded8506cc3219 18ea308af255bfba9cd789917e4cce8701436ceca8c99a3fb983cb5961833698
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4092
Cache-Control: max-age=153093
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:30 GMT
Etag: "63616e4b-117"
Expires: Thu, 03 Nov 2022 20:15:03 GMT
Last-Modified: Tue, 01 Nov 2022 19:06:51 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
|
|
| www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl&sec=css&theme=2717&v=1662968291&h=ff04eb4b | 104.21.1.254 | 200 OK | 5.4 kB |
URL HTTP/2www5.cbox.ws/box/?boxid=921687&boxtag=DX8bvl&sec=css&theme=2717&v=1662968291&h=ff04eb4b IP104.21.1.254:0
File typeUnicode text, UTF-8 text, with very long lines (442) Hashbf4144cdd1600bb00a7f7be29e4406cf a691eed6f83253951e376af27d84db56f6b870df e6f37f533a947da12e8739d0d5db1b26feef4392cf2e99da9dc3f2e0d2bced7e
GET /box/?boxid=921687&boxtag=DX8bvl&sec=css&theme=2717&v=1662968291&h=ff04eb4b HTTP/1.1
Host: www5.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: text/css;charset=UTF-8
p3p: CP="NOI DSP COR NID CURa OUR NOR"
expires: Tue, 10 Jan 2023 07:44:56 GMT
cache-control: public, max-age=10368000
x-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yt3T0%2FGc%2Fc4DIQ68U9NOw8qYpg8nsh6vF%2FHPpn7tMSS9%2F8i%2Bf8LHVq4z%2Fba1Cxtcl0e4AOauwkY3S6HZtMlYNsZ3IE8ItLid7iAS0Mt1iMzjHuiyt8wn2eULShfyH0I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76392e003feb1bfe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash660c3175dd9c364b89d6324d8e781164 014cb4b95d712ebcccefd20d7ab29bbad25ec901 66731576cc1f800ce2b36b1dfbb8949b93b485684a4f88d74524770ca1ae98c0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66731576CC1F800CE2B36B1DFBB8949B93B485684A4F88D74524770CA1AE98C0"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=851
Expires: Wed, 02 Nov 2022 01:57:41 GMT
Date: Wed, 02 Nov 2022 01:43:30 GMT
Connection: keep-alive
|
|
| cbox.im/i/qFg14.c100.jpg | 104.21.87.96 | 200 OK | 3.3 kB |
IP104.21.87.96:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 100x100, components 3\012- data Hash4aae911b8255e804519b86a5ac053e9c b5e99686a84b5eca50b30926640abf1e81b5d03b 19ffaf311b2e831d01b3b5fbdaddb806a04ea53f1e255718641f9518d0a18dbf
GET /i/qFg14.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: image/jpg
x-cached: 1
expires: Wed, 16 Nov 2022 17:17:47 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1326343
last-modified: Mon, 17 Oct 2022 17:17:47 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tGS5D3SHy6eY5w3O5KiyUYySkhPx2rXNKt9FKm%2FE6Yccz9OACSSsflABgrDA9fpqy7QiAtgTtX5Xzr1FnramJimQ6QBjvXcEP1XOrBLSBCsn7Un1vM8dBu%2F8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76392e00d85ab4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashb1ccc954578caa50ea6ab0096b95d578 b63bc1654c5ecfbc854d76a151fded8506cc3219 18ea308af255bfba9cd789917e4cce8701436ceca8c99a3fb983cb5961833698
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=149001
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:30 GMT
Etag: "63616e4b-117"
Expires: Thu, 03 Nov 2022 19:06:51 GMT
Last-Modified: Tue, 01 Nov 2022 19:06:51 GMT
Server: nginx
Content-Length: 279
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 472 B |
IP172.64.155.188:0
Hashe2beb18074e117543e78201268032cde 44aea3efc7f773c2e7829ac9307bf09501d71e73 495c73aafcc0aac0666308548b6f0f08b5480cc3d86cdc5a04bcf80adde12b81
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 02 Nov 2022 01:43:30 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 01 Nov 2022 17:29:14 GMT
Expires: Tue, 08 Nov 2022 17:29:13 GMT
Etag: "44aea3efc7f773c2e7829ac9307bf09501d71e73"
Cache-Control: max-age=574542,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76392e01ca200afe-OSL
|
|
| www.trtspor.com.tr/static/js/jquery.js | 85.111.24.216 | 200 OK | 96 kB |
URL HTTP/2www.trtspor.com.tr/static/js/jquery.js IP85.111.24.216:0
Hash67df23693d066871e7920b6d1ffcf860 6677def270c7a19295ddc05e65f9718f7a84f043 86d6620c387c899e27cf2f7b47cfc6f07946edaf8d318f298f9b07d1ffa842a1
GET /static/js/jquery.js HTTP/1.1
Host: www.trtspor.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: application/javascript
content-length: 92794
last-modified: Sat, 12 Oct 2013 15:24:23 GMT
etag: "525969a7-16a7a"
expires: Wed, 02 Nov 2022 02:13:30 GMT
cache-control: max-age=1800
x-node: script
x-worker: 11854
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-CVN78DGZN1>m=2oeav0&_p=1204655134&cid=715237260.1667353410&ul=en-us&sr=1280x1024&_s=1&sid=1667353409&sct=1&seg=0&dl=https%3A%2F%2Fwww.selcuksportshd266.xyz%2F&dt=SelcukSportsHD%20%7C%20Ma%C3%A7%20Yay%C4%B1nlar%C4%B1%2C%20Belgesel%2C%20Sinema%20ve%20Daha%20Fazlas%C4%B1&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 | 216.239.34.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-CVN78DGZN1>m=2oeav0&_p=1204655134&cid=715237260.1667353410&ul=en-us&sr=1280x1024&_s=1&sid=1667353409&sct=1&seg=0&dl=https%3A%2F%2Fwww.selcuksportshd266.xyz%2F&dt=SelcukSportsHD%20%7C%20Ma%C3%A7%20Yay%C4%B1nlar%C4%B1%2C%20Belgesel%2C%20Sinema%20ve%20Daha%20Fazlas%C4%B1&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP216.239.34.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-CVN78DGZN1>m=2oeav0&_p=1204655134&cid=715237260.1667353410&ul=en-us&sr=1280x1024&_s=1&sid=1667353409&sct=1&seg=0&dl=https%3A%2F%2Fwww.selcuksportshd266.xyz%2F&dt=SelcukSportsHD%20%7C%20Ma%C3%A7%20Yay%C4%B1nlar%C4%B1%2C%20Belgesel%2C%20Sinema%20ve%20Daha%20Fazlas%C4%B1&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.selcuksportshd266.xyz
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.selcuksportshd266.xyz
date: Wed, 02 Nov 2022 01:43:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.trtspor.com.tr/static/js/jquery.md5.js | 85.111.24.216 | 200 OK | 9.6 kB |
URL HTTP/2www.trtspor.com.tr/static/js/jquery.md5.js IP85.111.24.216:0
Hashc629663d7fe3432af0760b26d4b546e7 0abc4b9564d71cf8d23b7f5b661552092c8e7d67 41f41aa3f32ea20a820c36488c40e2acb8f022c35d91c69a1d1c75e63edebf54
GET /static/js/jquery.md5.js HTTP/1.1
Host: www.trtspor.com.tr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: application/javascript
content-length: 9606
last-modified: Mon, 16 Sep 2019 09:15:34 GMT
etag: "5d7f52b6-2586"
expires: Wed, 02 Nov 2022 02:13:30 GMT
cache-control: max-age=1800
x-node: script
x-worker: 11854
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash4578e854bb4cc62254e756b160a46966 805e4245fa623fc7aaadeda063375a313d386476 75a51dcf9424e705bfbd71235dd587e9189455bf5fda0dfdbe70595d37fd567a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "75A51DCF9424E705BFBD71235DD587E9189455BF5FDA0DFDBE70595D37FD567A"
Last-Modified: Tue, 01 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21542
Expires: Wed, 02 Nov 2022 07:42:33 GMT
Date: Wed, 02 Nov 2022 01:43:31 GMT
Connection: keep-alive
|
|
| widgets.amung.us/small/06/680.png | 104.22.75.171 | 200 OK | 329 B |
URL HTTP/2widgets.amung.us/small/06/680.png IP104.22.75.171:0
File typePNG image data, 80 x 15, 8-bit colormap, non-interlaced\012- data Hash3e67be2a27530fe1f1fa83b9aebd553b 94faa62d2fa86e541bcf0eb85a7eaba460cfd88d 5a43838d308e5eddf921b6ec197c8b69a0cdbac427abb6fd99dbb1720419127a
GET /small/06/680.png HTTP/1.1
Host: widgets.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://ib.strmrdrfrofc.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:31 GMT
content-type: image/png
content-length: 329
last-modified: Sun, 13 Jun 2010 09:48:29 GMT
etag: "4c14a96d-149"
expires: Sat, 29 Oct 2022 20:06:47 GMT
cache-control: max-age=2678400
access-control-allow-origin: *
cf-cache-status: HIT
age: 365804
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76392e03aaf40a25-ARN
X-Firefox-Spdy: h2
|
|
| ssl.google-analytics.com/ga.js | 142.250.74.72 | 200 OK | 17 kB |
URL HTTP/2ssl.google-analytics.com/ga.js IP142.250.74.72:0
File typeASCII text, with very long lines (1305) Hash01d5892e6e243b52998310c2925b9f3a 58180151b6a6ee4af73583a214b68efb9e8844d4 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Wed, 02 Nov 2022 00:32:37 GMT
expires: Wed, 02 Nov 2022 02:32:37 GMT
cache-control: public, max-age=7200
age: 4254
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7d1a90c0cbeaa4e8379f5f77b916013b fbbe002d592a8c20646066c57d8c2bcfaa8af96c 44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ib.strmrdrfrofc.site/keslanorospucocugu.1dedd3fdaa305e390a866da13cc31735.js | 104.21.234.84 | 200 OK | 3.9 kB |
URL HTTP/2ib.strmrdrfrofc.site/keslanorospucocugu.1dedd3fdaa305e390a866da13cc31735.js IP104.21.234.84:0
File typeUnicode text, UTF-8 text, with very long lines (10865) Hash72aaf37157871dc70d20bf0e47ca3257 c188c83270ccf656149556a0df6ec2c3960f04ca af28a50722857e9f380515c56e86ce359b9b8d27794c66c9179b2a655e0e413b
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /keslanorospucocugu.1dedd3fdaa305e390a866da13cc31735.js HTTP/1.1
Host: ib.strmrdrfrofc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ib.strmrdrfrofc.site/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: text/javascript; charset=utf-8
last-modified: Mon, 31 Oct 2022 18:47:24 GMT
vary: Accept-Encoding
expires: Tue, 31 Oct 2023 18:50:56 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 111154
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rG1ai7nlMayaWt1w0bVpI9TMDD3E7V3V5zE79QrHV7y0UW6VM7%2B7L6kxA0KXtEPOXwlHO0cBn0Ui2IJkrQeNaKH0%2BIiJZZiHyMkZVRvKFcNDefgEPuHfga51I8jf99BYuY9%2Bd6bYfg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392dff1c8f7780-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562 | 173.194.221.154 | 302 Found | 366 B |
URL HTTP/2stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562 IP173.194.221.154:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators Hasha968b97d4e1ec066c1f7f0ce039bcf32 822b871c7c264ed4849b3e2b50dc30acd9f53edb 541fdba86703c06c1ceaf26725dc4570fdd09fa272055bdddb715baddc70f797
GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd266.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 02 Nov 2022 01:43:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 366
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash7d1a90c0cbeaa4e8379f5f77b916013b fbbe002d592a8c20646066c57d8c2bcfaa8af96c 44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 471 B |
IP142.250.74.3:0
Hash9e22dfe51ab9c940bb579430ed3b78a4 ccae561eb9b63619ffe425b9f869cbbbc3ee7c0b 0a2184c28a4c739add7ff59ff6e4a124d93505fc75b185199f60d0348b881e6e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashc18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12845
Expires: Wed, 02 Nov 2022 05:17:36 GMT
Date: Wed, 02 Nov 2022 01:43:31 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashc18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12845
Expires: Wed, 02 Nov 2022 05:17:36 GMT
Date: Wed, 02 Nov 2022 01:43:31 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashc18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12845
Expires: Wed, 02 Nov 2022 05:17:36 GMT
Date: Wed, 02 Nov 2022 01:43:31 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashc18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12845
Expires: Wed, 02 Nov 2022 05:17:36 GMT
Date: Wed, 02 Nov 2022 01:43:31 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashc18aead96956fc8de41d067a99071c73 29b784835d23ec09a11f91dda1f3ac9f9550c129 106617c550459147e0e38e15d84305ed944cbc259b78291ad0c9fc01083c182d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "106617C550459147E0E38E15D84305ED944CBC259B78291AD0C9FC01083C182D"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12845
Expires: Wed, 02 Nov 2022 05:17:36 GMT
Date: Wed, 02 Nov 2022 01:43:31 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe709d9e-d554-4b14-8122-bb089954897f.jpeg | 34.120.237.76 | 200 OK | 4.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe709d9e-d554-4b14-8122-bb089954897f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc8a59be5ed6ef593415005b9826daef6 457a1e3fc0e275eff74f4e067a766beebb6d4fd6 978deee7964f7fd633c89fe55c55af1c5fd24d31614af2815a39c1b0ac7491b8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe709d9e-d554-4b14-8122-bb089954897f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4234
x-amzn-requestid: aa9f90d3-5461-44ab-b3f6-7ea9f502394a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: azHeVFxhIAMF5mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635dec5b-1443a2d430081dfd19a1a65c;Sampled=0
x-amzn-remapped-date: Sun, 30 Oct 2022 03:15:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: oTUURE4zG6DBGvy0VohGnwfDbyjM-s0UP-evEHETwaXv-Yo5mHXsBw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 06:11:30 GMT
age: 70321
etag: "457a1e3fc0e275eff74f4e067a766beebb6d4fd6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562 | 142.250.74.164 | 302 Found | 0 B |
URL HTTP/2www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562 IP142.250.74.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd266.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 01:43:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562&slf_rd=1&random=1469335082
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashab331970f5e4f7f2e0ff0c042095ec4e 2b72b9df83cc12db944f6d079d91d6362be036d0 35dd7f4cc581389be9e90be3e7a8663831eeeb89c261cb3eb3fcc66cb9e56f24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabfa0ff8-fada-4af4-ab5f-529906656572.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7026
x-amzn-requestid: f5a992f1-beb7-463c-8125-e0f74009f272
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8N75GyioAMFsEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6361904b-648797425d1d3d485d17d773;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:31:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ct2UyXUhCL58M5_X1nCM5LhPGWDxuZgav0SiSsm99PUF_ergMz34tw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:40:58 GMT
age: 14553
etag: "2b72b9df83cc12db944f6d079d91d6362be036d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9d889392defc575d85e26321730c2722 28177e0094cb108a96751ba23830134e1d4b8e15 758b77490f2f67d8d4297e0060b0a310be6f03dcda4808969147e1610879e836
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12840
x-amzn-requestid: c6424625-a000-41be-8043-4ac408d25086
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OHAG5QIAMFodA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619093-2d8d7616088723ab392f74ff;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _nhbB7wn_tje5pEJa66ub53DJMk6pvkjSfpKsruWEuzYPDoUlm_icg==
via: 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:52:39 GMT
age: 13852
etag: "28177e0094cb108a96751ba23830134e1d4b8e15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfb3964a844616e8156299a91f6068d3b dc8a6f2b451b87f4b8f4573daf9f3587d801e1ed 014216665e0feb6a3f64460d8dd50023d4621e10fd31180d6807c9eda8f57364
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07876b5-faa6-4aa0-a431-a5353c5e0126.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7616
x-amzn-requestid: 6e204386-945d-4c9b-9932-d6c62788dc99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: amd4tGnZoAMFdHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358dd04-67dfd6165942ee403b822eea;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 07:08:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: t2EoETrdqnEObMgs82RYRytqyFHo_yxOLwAFdYMNsF6-_PxZKnG8SA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 15:38:16 GMT
age: 36315
etag: "dc8a6f2b451b87f4b8f4573daf9f3587d801e1ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcda9c9a6-efde-4be4-90f2-d402b5c3eb5b.jpeg | 34.120.237.76 | 200 OK | 6.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcda9c9a6-efde-4be4-90f2-d402b5c3eb5b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashabdbe8d0b2f2d73c434c57683dcb4f64 a006da95ca18c1f410760945047201ef428e9896 79a11385ef1cf4be1c7f738e8e76799b227a4edc238c01105adea807bbff9f28
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcda9c9a6-efde-4be4-90f2-d402b5c3eb5b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6043
x-amzn-requestid: 135775d2-6599-4aae-9416-4ebf4319ff34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OkuFo8IAMFXeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619151-0a9840941063190d7c880cbd;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:36:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DgI6DzPN4H0KRJtC2aotjfg3GxFEhAa56RVHyECPynZhGhzP8gsAYA==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:15:05 GMT
age: 12506
etag: "a006da95ca18c1f410760945047201ef428e9896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3967a449-cc2c-47e5-a525-db22577b447a.jpeg | 34.120.237.76 | 200 OK | 8.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3967a449-cc2c-47e5-a525-db22577b447a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4db0f40c06e12369aaf0515df2b74169 721ef9633a8fddc55573f5f3ccc5ade5b87f04ee eff2844e094ea52cf691c78b8c830a0b7edbe8f9fa9a81970deb8b14c39c9fae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3967a449-cc2c-47e5-a525-db22577b447a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8425
x-amzn-requestid: 35aced7c-3b03-4306-ab3f-003743aa438d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OkuGiKIAMFkjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619151-5205b303263a9c5764ecdb2e;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:36:17 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: N125DKVZKJbOAUEH0wfnhHj3OpbfxWKW5JACxjUzUSZ1sfEyPIbryQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:01:51 GMT
etag: "721ef9633a8fddc55573f5f3ccc5ade5b87f04ee"
content-type: image/jpeg
age: 13300
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hashc1af38ec0609b645477f3a9fe1054f30 590be080fbdea4626418c10472ffaada28f2d50a 6802d3acb54cf6d879d8eb65435dd9748ac2dcfda9eacc430df1b6fdd0bb7c67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4d26604d5bad5609f13349fd3c33906d 2e520385b866cdd0e646cfe81d7eaa019ed42fab dd67edcee5d3b6b315f4c062fcd3c8eaed3d093e835f28a90ee2b540a38f10c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562&slf_rd=1&random=1469335082 | 142.250.74.3 | 200 OK | 42 B |
URL HTTP/2www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562&slf_rd=1&random=1469335082 IP142.250.74.3:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-26291030-6&cid=715237260.1667353410&jid=345685361&_v=5.7.2&z=405921562&slf_rd=1&random=1469335082 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd266.xyz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 01:43:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.3 | 200 OK | 472 B |
IP142.250.74.3:0
Hash4d26604d5bad5609f13349fd3c33906d 2e520385b866cdd0e646cfe81d7eaa019ed42fab dd67edcee5d3b6b315f4c062fcd3c8eaed3d093e835f28a90ee2b540a38f10c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 01:43:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash41099e049a353fdbf325934757de9b21 f5253a2840ccecca24bf8513d02010b106fa4a30 42021810e547e9ead8d14b057681b141b151bad5c26d29544cfe72b4c01c0387
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "42021810E547E9EAD8D14B057681B141B151BAD5C26D29544CFE72B4C01C0387"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15632
Expires: Wed, 02 Nov 2022 06:04:03 GMT
Date: Wed, 02 Nov 2022 01:43:31 GMT
Connection: keep-alive
|
|
| istatistik.trthaber.com/service/api/stats/all | 3.120.109.111 | 200 OK | 15 B |
URL HTTP/1.1istatistik.trthaber.com/service/api/stats/all IP3.120.109.111:0
File typeJSON data\012- , ASCII text, with no line terminators Hash0c776997933eb60833b37beaf43814c8 bff63526eb02853c6b414ccfb4d00ac9ca283930 3d23d39a30bb7323f8ccfd64c52cf286138fba4f83e78f7edcf66703b7c23aaa
POST /service/api/stats/all HTTP/1.1
Host: istatistik.trthaber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 137
Origin: https://www.selcuksportshd266.xyz
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 02 Nov 2022 01:43:31 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 15
Connection: keep-alive
Access-Control-Allow-Origin: *
|
|
| www.selcuksportshd266.xyz/ | 104.21.56.113 | 200 OK | 0 B |
URL HTTP/2www.selcuksportshd266.xyz/ IP104.21.56.113:0
GET / HTTP/1.1
Host: www.selcuksportshd266.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:29 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=60
x-frame-options: sameorigin
link: <./css/index.css>; as=style; rel=preload, <./js/index.js>; as=script; rel=preload, <./js/dt.js>; as=script; rel=preload
cf-cache-status: EXPIRED
last-modified: Wed, 02 Nov 2022 00:56:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cj1EOAAbdWizj0x9fSni7oMJtRb%2BnQJOzAJ8FD52vGzYJH%2FdZqePpDPpY7X3mZsAMC2Etpo0Xt7a7m%2F0fvYqRia0JHPOKlP0vfh7scqswtxbZS60JZfgGi1CEX3G997DJiDnTM56%2BTGQlgHe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392df84cb40b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| unpkg.com/swiper/swiper-bundle.min.js | 104.16.124.175 | 302 Found | 0 B |
URL HTTP/2unpkg.com/swiper/swiper-bundle.min.js IP104.16.124.175:0
GET /swiper/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 02 Nov 2022 01:43:29 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@8.4.4/swiper-bundle.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GGTZKQ7H63SKKHT6PAZM1Y6W-ams
cf-cache-status: HIT
age: 531
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392dfb19a9b4f9-OSL
X-Firefox-Spdy: h2
|
|
| unpkg.com/swiper/swiper-bundle.min.css | 104.16.124.175 | 302 Found | 0 B |
URL HTTP/2unpkg.com/swiper/swiper-bundle.min.css IP104.16.124.175:0
GET /swiper/swiper-bundle.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Wed, 02 Nov 2022 01:43:29 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@8.4.4/swiper-bundle.min.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GGTZXY74XSWKVYXMS09A7NTT-ams
cf-cache-status: HIT
age: 196
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392dfb19a6b4f9-OSL
X-Firefox-Spdy: h2
|
|
| www.selcuksportshd186.xyz/img/madrid-wp2.jpg | 104.21.11.141 | 301 Moved Permanently | 0 B |
URL HTTP/2www.selcuksportshd186.xyz/img/madrid-wp2.jpg IP104.21.11.141:0
GET /img/madrid-wp2.jpg HTTP/1.1
Host: www.selcuksportshd186.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ib.strmrdrfrofc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Wed, 02 Nov 2022 01:43:31 GMT
content-type: text/html
location: https://www.selcuksportshd266.xyz/
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mXbv6ZHnSwTPIxgDK9IP1I36PBdTfxuDyvPCj3PeNkM95hckouvxIQya8G5XoZz3%2BGjFKElmxVrZfnhyXTwqNninr7yYYHO6pZ5eO2WwIOCSY5hSf9BRhxAWL0NOz1RFXP1YsW%2Fa45i3fqot"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392e03ae481c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| selcuksportshd260.xyz/ | 172.67.145.167 | 301 Moved Permanently | 0 B |
IP172.67.145.167:0
GET / HTTP/1.1
Host: selcuksportshd260.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Wed, 02 Nov 2022 01:43:29 GMT
content-type: text/html
location: https://www.selcuksportshd266.xyz/
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GJ9qV8WZrGWJSq%2BpKm1rXhpoy%2FZ2zJ%2BYdOxsXzf1uyPHS74iJqioxPjdJXmYjl6tuma7K7QwV0muuqWAjXNXOhdnGYaD3c9nUUiJxq1XyxO903PTM4z0302KVbzi%2F%2BKGyvg%2BsXUrU7k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392df5cdedb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| app.selcuksportsuygulama19.xyz/app/sohbet.php?8348478324 | 172.67.177.118 | 200 OK | 0 B |
URL HTTP/2app.selcuksportsuygulama19.xyz/app/sohbet.php?8348478324 IP172.67.177.118:0
GET /app/sohbet.php?8348478324 HTTP/1.1
Host: app.selcuksportsuygulama19.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=600
cf-cache-status: EXPIRED
last-modified: Wed, 02 Nov 2022 00:31:07 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=h51%2FzyMjcLD2cENkmu%2FpaGVTNo6GOqKEps%2B1vjwXkvowMHeeYVDyByTe3CeRPd4XcsLp4rsgdmKrPTld6o5YVyeXwzVyWl4Uzoe4J4B8NO4vI1LJtbzYywTz8WurWQxZFGb%2B0I%2BU8hiaul98cv7sKYc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392dfe0ca9b509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cbox.im/i/WUfMg.c100.jpg | 104.21.87.96 | 200 OK | 0 B |
IP104.21.87.96:0
GET /i/WUfMg.c100.jpg HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: image/jpg
x-cached: 1
expires: Wed, 16 Nov 2022 17:17:47 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 1326343
last-modified: Mon, 17 Oct 2022 17:17:47 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NFB%2BwRuR3WPXuWEEbgCbExJGlVe%2Fiflw0wXkgl20gE5XuXdc%2BfU1RMKwDh1nNvPcShYQZ%2FCXsjMoGx1NSEC93oSBPsS4%2FBgAmgD8J%2B8F%2BOEZOZF%2B6owqEPLB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76392e00e863b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ib.strmrdrfrofc.site/index.php?id=601 | 104.21.234.84 | 200 OK | 0 B |
URL HTTP/2ib.strmrdrfrofc.site/index.php?id=601 IP104.21.234.84:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /index.php?id=601 HTTP/1.1
Host: ib.strmrdrfrofc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.selcuksportshd266.xyz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-store
access-control-allow-origin: *
link: </streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css>; rel=preload; as=style, </jquery.220afd743d9e9643852e31a135a9f3ae.js>; rel=preload; rel=preload; as=script, </clappr.10a0c239c01882665a0bd2e1d8ea3493.js>; rel=preload; as=script, </levelselector.ee341b104a9c406b73001afe57d16f18.js>; rel=preload; as=script, </keslanorospucocugu.1dedd3fdaa305e390a866da13cc31735.js>; rel=preload; as=script
x-htz-md: Md eq fullversion
x-htz-rs: Rs eq slck
x-htz-rx: Rx eq https://www.selcuksportshd266.xyz
x-htz-st: St eq HIT
x-htz-ky: Ky eq Rh https://www.selcuksportshd266.xyz Md fullversion Rs slck Rm GET Hs ib.strmrdrfrofc.site Hts ib.strmrdrfrofc.site Ur /index.php Ru /index.php?id=601 Qs id=601 rruri /index.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LU1pBEXYrxfgzzKeDr2HGwT0GPqpRaVTs2ljAmqiczuwdWAiR4aIiuaSBGeVnFwYyPKKv0aufvwVAqNimtjiiTN7CqxKdzeBFHb0AcvyusIwJ83f3ZMpUPG3p9wbzZ2DtGQkn1XqwQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392dfedc547780-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-h2-pushed: </streamradarking.1787e6ac6ef4f3cafdae068c5b321b1a.css>,</jquery.220afd743d9e9643852e31a135a9f3ae.js>,</clappr.10a0c239c01882665a0bd2e1d8ea3493.js>,</levelselector.ee341b104a9c406b73001afe57d16f18.js>,</keslanorospucocugu.1dedd3fdaa305e390a866da13cc31735.js>
X-Firefox-Spdy: h2
|
|
| ib.strmrdrfrofc.site/levelselector.ee341b104a9c406b73001afe57d16f18.js | 104.21.234.84 | 200 OK | 0 B |
URL HTTP/2ib.strmrdrfrofc.site/levelselector.ee341b104a9c406b73001afe57d16f18.js IP104.21.234.84:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /levelselector.ee341b104a9c406b73001afe57d16f18.js HTTP/1.1
Host: ib.strmrdrfrofc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ib.strmrdrfrofc.site/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 28 Nov 2021 15:49:55 GMT
vary: Accept-Encoding
expires: Mon, 30 Oct 2023 18:02:36 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 200453
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PdWKQXCulomUnGXInLeoNPoLj2OniCYN%2BTUnrYl1Pqk9h1ExBKFNKRIH8Z1PrY8V7XuEBcmIIBaMg3ezV48jaq9KXSkF8QbnMAvAQoaxXS40nX7dCjp46u24m5fXyJVvTUIbwzC8sA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392dff1c8d7780-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.cbox.ws/jsc/jsc_10_1662968291.js | 104.21.1.254 | 200 OK | 0 B |
URL HTTP/2static.cbox.ws/jsc/jsc_10_1662968291.js IP104.21.1.254:0
GET /jsc/jsc_10_1662968291.js HTTP/1.1
Host: static.cbox.ws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Origin: https://www5.cbox.ws
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: application/x-javascript
last-modified: Mon, 12 Sep 2022 07:38:20 GMT
etag: W/"631ee1ec-64a9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
cf-cache-status: HIT
age: 4384681
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=C3LamIVNlidkFujYSL6g51TLWOlyFWO3Z2Ne8WNyaIPLQ6%2B%2FhA0MD%2FCNX%2FQGtKfUFvpY8Rw7%2BOghqIVKIDNi9FreToUkzGUuQwHq2gdPvKgdxs7MtRfnEuBr8FCn1AHThg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76392e01bf87b523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| whos.amung.us/swidget/uu19fwdxlo.png?6973955263950817 | 104.22.75.171 | 307 Temporary Redirect | 0 B |
URL HTTP/2whos.amung.us/swidget/uu19fwdxlo.png?6973955263950817 IP104.22.75.171:0
GET /swidget/uu19fwdxlo.png?6973955263950817 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ib.strmrdrfrofc.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 307 Temporary Redirect
date: Wed, 02 Nov 2022 01:43:31 GMT
content-type: text/html; charset=UTF-8
location: https://widgets.amung.us/small/06/680.png
cache-control: no-cache, no-store, must-revalidate
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76392e021a190a25-ARN
X-Firefox-Spdy: h2
|
|
| unpkg.com/swiper@8.4.4/swiper-bundle.min.js | 104.16.124.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/swiper@8.4.4/swiper-bundle.min.js IP104.16.124.175:0
GET /swiper@8.4.4/swiper-bundle.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd266.xyz/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:29 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"2310e-YgoXHzBgFVHspCsWstmF72fEP1g"
via: 1.1 fly.io
fly-request-id: 01GF628NY753Q8RK73VNG8BVJF-fra
cf-cache-status: HIT
age: 1776130
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392dfb59c0b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| unpkg.com/swiper@8.4.4/swiper-bundle.min.css | 104.16.124.175 | 200 OK | 0 B |
URL HTTP/2unpkg.com/swiper@8.4.4/swiper-bundle.min.css IP104.16.124.175:0
GET /swiper@8.4.4/swiper-bundle.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.selcuksportshd266.xyz/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:29 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"4055-NO0aJFyY09PDjggrGHtjGhONWC4"
via: 1.1 fly.io
fly-request-id: 01GF623P1B57KQ27AZ04YBEAGK-fra
cf-cache-status: HIT
age: 1776294
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392dfb69c3b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cbox.im/i/JqIX7.c100.png | 104.21.87.96 | 200 OK | 0 B |
IP104.21.87.96:0
GET /i/JqIX7.c100.png HTTP/1.1
Host: cbox.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www5.cbox.ws/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: image/jpg
x-cached: 1
expires: Mon, 28 Nov 2022 07:40:30 GMT
cache-control: public, max-age=2592000
pragma: public
access-control-allow-origin: *
cf-cache-status: HIT
age: 324180
last-modified: Sat, 29 Oct 2022 07:40:30 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ukIokD1Ui1hA8crmrSMUOQ582OLntF%2FXBHxyIn%2BZxOQxVY5Xp%2FtqTkft3NPlyhOo3vApG9uPWDbL1Fffg79hZ1JzReJOM00ennj4Yk6xw7kAj0l84u%2B2i8wK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76392e00c851b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ib.strmrdrfrofc.site/clappr.10a0c239c01882665a0bd2e1d8ea3493.js | 104.21.234.84 | 200 OK | 0 B |
URL HTTP/2ib.strmrdrfrofc.site/clappr.10a0c239c01882665a0bd2e1d8ea3493.js IP104.21.234.84:0
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /clappr.10a0c239c01882665a0bd2e1d8ea3493.js HTTP/1.1
Host: ib.strmrdrfrofc.site
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ib.strmrdrfrofc.site/index.php?id=601
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 01:43:30 GMT
content-type: text/javascript; charset=utf-8
last-modified: Sun, 28 Nov 2021 15:52:12 GMT
vary: Accept-Encoding
expires: Mon, 30 Oct 2023 18:02:36 GMT
cache-control: max-age=31536000
x-robots-tag: none
cf-cache-status: HIT
age: 200454
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FGSO8YafLO6QcLioj2B5GJjXFnmzpFJa1OFTGX1NKVTGiZW1jTDslR6ppCU8f7bDWsv7RnB4OwM7VeDTRcRpdrPoclB0cx8aLV5JFqxeViRIxbI0YZmIudVI4NTU7K0RmpKejvuW6A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76392dff1c8c7780-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|