lite-1x36781678.top/ar
178.253.14.166301 Moved Permanently 162 B IP 178.253.14.166:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert quad9 Sinkholed
GET /ar HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Dec 2022 09:26:28 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://lite-1x36781678.top/ar
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6451
Expires: Sat, 03 Dec 2022 11:14:00 GMT
Date: Sat, 03 Dec 2022 09:26:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 272
Cache-Control: max-age=90558
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:26:29 GMT
Etag: "6389d3f3-1d7"
Expires: Sun, 04 Dec 2022 10:35:47 GMT
Last-Modified: Fri, 02 Dec 2022 10:31:15 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2869
Expires: Sat, 03 Dec 2022 10:14:18 GMT
Date: Sat, 03 Dec 2022 09:26:29 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 09:18:15 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 494
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aXLOJBxjhhF56a2BjzemT6Y/Dbslili1ewntRsn7WNtjViAdC0z9wMExu7Rx+q75jU5xj6CzQxM=
x-amz-request-id: DPQ93JW8Y6PTVCBT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 08:47:03 GMT
age: 2366
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 002be102dd57b317506b54febc9d7113
92f2230c7d738562a77926d0545f5f38c9d00432
c283d3b81594fa9b1108275afdc01e85369d7925704bb2b9836d03cc6a70b478
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C283D3B81594FA9B1108275AFDC01E85369D7925704BB2B9836D03CC6A70B478"
Last-Modified: Thu, 01 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5675
Expires: Sat, 03 Dec 2022 11:01:04 GMT
Date: Sat, 03 Dec 2022 09:26:29 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 09:08:58 GMT
cache-control: public,max-age=3600
age: 1051
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 262
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:26:29 GMT
Last-Modified: Sat, 03 Dec 2022 09:22:07 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.214.17.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.17.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8uqTY1zt8Ej+BFMeBgBUyA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FT0/IKJXGDlTbYOwQGFI0JCGdI8=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 09:26:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 09:26:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 09:26:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 09:26:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6536
Expires: Sat, 03 Dec 2022 11:15:27 GMT
Date: Sat, 03 Dec 2022 09:26:31 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 00:57:24 GMT
age: 30547
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 41725
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash becc8cdba57494c6fe212eb67634e1eb
c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8
fbb25b88b10a818bb0c6ad385b1e5ba54b87672c73bfa8a9c1ecb17dcc689d5a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d568a89-ee21-427a-b971-0d1500164a62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11942
x-amzn-requestid: ba8a5d03-7796-4c6d-a6df-3cc71b1c5259
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: chqukGmWoAMFtLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a24c3-609dc90d769060d30a16e3df;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 16:16:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: m6j_3bDGFIAHQYzrZ1zXqUb-HbEJ8XCoGH5mgBFOWRbLzoSiuNBnhg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:59:25 GMT
age: 41226
etag: "c8bd6bd9086e0a52b83b89dfd755e7ebba222fb8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ffa12df550123f63b20f67437cd8a04
398fd2d837c73f54c4591b69cd683f29bdf9184a
fd9ac4396488098923c27531295e64475047dd008a901e59915109a73a69f305
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F652bfe35-9b09-4fba-b7b5-c6bd90cccdbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6119
x-amzn-requestid: cac5842e-2b57-4eda-9b09-27ec8a0b1bf8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMiE7Hq0oAMFzHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381b085-151f123551f999a918de8a3a;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 06:21:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mrS561ug59NStQyD3cH4ndqGvY3QiLVeMFOoC86ktj52PghNjeYa5w==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 20:55:39 GMT
age: 45052
etag: "398fd2d837c73f54c4591b69cd683f29bdf9184a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:02:08 GMT
age: 15863
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3abdcce275bb9723b4ac1d0c38cc8891
91f0d888c38db0899f106b652e3dcac062648099
ff411fc0d5abaf519d6600961ec51ad71ad9a02e23cc02ad818e27f0324b3d1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7657
x-amzn-requestid: c0dbd862-41cf-4fa8-ab6b-256763c63fbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1Fo6IAMF9EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-554ffbc83fd70c557437120f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: V_7_ohQr9ENIjOvdvy65ZpJqg2OI9gzRdiuxCTJzl4qwXe2Nmu_tAQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:49:27 GMT
etag: "91f0d888c38db0899f106b652e3dcac062648099"
content-type: image/jpeg
age: 41824
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 98fe7e5fd6b778bcdcc63028c3a49fbd
06b34160c344526fbe14ce41445b9fe76c0a878d
d45d898dfe5bf1151557bbbc3be6e6878fbadce386136d60777b4464199173a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:26:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Righteous&family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
142.250.74.106200 OK 2.2 kB URL HTTP/2 fonts.googleapis.com/css2?family=Righteous&family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP 142.250.74.106:0
Hash f46425aabc0b446c40b94f6495d0f3c7
0a55199e11abc90d702ea3a61cf7f6c763641e7c
7a4da1c64f2d3f65dfb47d4d44b098f9d73bbd05adafaf1695d021e5cce4cd96
GET /css2?family=Righteous&family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Dec 2022 09:26:32 GMT
date: Sat, 03 Dec 2022 09:26:32 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c7d147ba990ad65a2c529051e54d88eb
3869832b21954526ad8cb8dafb7797149d519230
103f0118d67ea1a692c308d9b49f842738d44b99486050602e708f03f44d2686
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 09:26:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 03:03:03 GMT
Expires: Thu, 08 Dec 2022 03:03:02 GMT
Etag: "3869832b21954526ad8cb8dafb7797149d519230"
Cache-Control: max-age=408388,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773b42e86c49b51e-OSL
v3.traincdn.com/_nuxt/desktop/default/css/fd164971.css
8.254.252.216200 OK 49 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/fd164971.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9037fc3ca903985352353cc393afdac7
17dad87b5533b63a119de29045ef18b61d46d774
c8f3a87e800627faad7ca4476b75009828243fbb152928549a00fe95b70bc444
GET /_nuxt/desktop/default/css/fd164971.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:33 GMT
content-type: text/css
content-length: 48612
cache-control: max-age=86400
content-encoding: gzip
etag: "6389a8f4-bde4"
expires: Sat, 03 Dec 2022 13:12:53 GMT
last-modified: Fri, 02 Dec 2022 07:27:48 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 72822
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg
8.254.252.216200 OK 698 B URL HTTP/2 v3.traincdn.com/genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg
IP 8.254.252.216:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1224), with no line terminators
Hash baf96800254904a05eee2ff49c94a801
847efb3449a8d7857f004192310aa2164a71d530
0ba137aa5f655e712ac40a592f366d1bd3b53b0a6b71c2cff4e7e0090f440335
GET /genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:33 GMT
content-type: image/svg+xml
content-length: 698
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"7cca3986f7a5c4c164144ff11df71073"
expires: Sat, 03 Dec 2022 09:20:15 GMT
last-modified: Thu, 13 Jan 2022 14:28:56 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 498
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/abc097e2.modern.js
8.254.252.216200 OK 661 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/abc097e2.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (65479)
Size 661 kB (661016 bytes)
Hash 91f63441980cb12df06324938deecb7e
5e4b4398a6e599b748703801ec7b5c3346301e25
9fb6d6af3487db55f3d291302c1223f6feea01b6ac23b14e851e851f2ec1bb55
GET /_nuxt/desktop/default/abc097e2.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 661016
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6842-a1618"
expires: Sat, 03 Dec 2022 21:37:50 GMT
last-modified: Fri, 02 Dec 2022 21:04:02 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42540
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/version.json
8.254.252.216200 OK 44 B URL HTTP/2 v3.traincdn.com/version.json
IP 8.254.252.216:0
Hash ed405bbf6ee4f6210a18b08ea3230870
e3a062371a066f37afcdf237fd74750b142994c3
9d49e4f31b239f57b7f518a18af5890bf1a3d81d09b7d68d0f7738837f24efae
GET /version.json HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lite-1x36781678.top
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:33 GMT
content-type: application/json
content-length: 44
cache-control: max-age=60, s-maxage=60
content-encoding: gzip
etag: "638a6964-2c"
expires: Sat, 03 Dec 2022 09:26:37 GMT
last-modified: Fri, 02 Dec 2022 21:08:52 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 56
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c7d147ba990ad65a2c529051e54d88eb
3869832b21954526ad8cb8dafb7797149d519230
103f0118d67ea1a692c308d9b49f842738d44b99486050602e708f03f44d2686
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 09:26:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 03:03:03 GMT
Expires: Thu, 08 Dec 2022 03:03:02 GMT
Etag: "3869832b21954526ad8cb8dafb7797149d519230"
Cache-Control: max-age=408388,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773b42e86cd80b69-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c7d147ba990ad65a2c529051e54d88eb
3869832b21954526ad8cb8dafb7797149d519230
103f0118d67ea1a692c308d9b49f842738d44b99486050602e708f03f44d2686
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 09:26:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 03:03:03 GMT
Expires: Thu, 08 Dec 2022 03:03:02 GMT
Etag: "3869832b21954526ad8cb8dafb7797149d519230"
Cache-Control: max-age=408388,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773b42e86b6c0b51-OSL
v3.traincdn.com/_nuxt/desktop/default/css/004b31a6.css
8.254.252.216200 OK 85 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/004b31a6.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash bb4b44dbbd682acfdbd3f81901a18463
70dd14195194f23184e1e248b5c6ada95d76e8b7
016c93e57b040d693db2bc17eb2bd5a97a81332f3510a19f2a46a6c75c2eacd7
GET /_nuxt/desktop/default/css/004b31a6.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:33 GMT
content-type: text/css
content-length: 84782
cache-control: max-age=86400
content-encoding: gzip
etag: "638a4e5d-14b2e"
expires: Sat, 03 Dec 2022 19:56:01 GMT
last-modified: Fri, 02 Dec 2022 19:13:33 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 48632
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/f3792112.modern.js
8.254.252.216200 OK 93 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/f3792112.modern.js
IP 8.254.252.216:0
File type Algol 68 source text\012- Pascal source, Unicode text, UTF-8 text, with very long lines (65466)
Hash 1c242f1216e4a5867872909457c381cf
a474f3517f3c456cd27215ecc4d4240e301b5964
e62846731ef883bef79a99c90f70c46bd2584d38f1c29f95fa4ebc752ff7168a
GET /_nuxt/desktop/default/f3792112.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 93423
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-16cef"
expires: Sat, 03 Dec 2022 21:37:56 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42540
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c7d147ba990ad65a2c529051e54d88eb
3869832b21954526ad8cb8dafb7797149d519230
103f0118d67ea1a692c308d9b49f842738d44b99486050602e708f03f44d2686
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 09:26:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 03:03:03 GMT
Expires: Thu, 08 Dec 2022 03:03:02 GMT
Etag: "3869832b21954526ad8cb8dafb7797149d519230"
Cache-Control: max-age=408388,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773b42e86cf9b50f-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c7d147ba990ad65a2c529051e54d88eb
3869832b21954526ad8cb8dafb7797149d519230
103f0118d67ea1a692c308d9b49f842738d44b99486050602e708f03f44d2686
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 09:26:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 03:03:03 GMT
Expires: Thu, 08 Dec 2022 03:03:02 GMT
Etag: "3869832b21954526ad8cb8dafb7797149d519230"
Cache-Control: max-age=408388,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 773b42e86cc8b523-OSL
v3.traincdn.com/_nuxt/desktop/default/44d57e53.modern.js
8.254.252.216200 OK 6.9 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/44d57e53.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (18205), with no line terminators
Hash 8185f954c5f73d6c942c9b269e7b2340
81d999441d22cea048ff685620a5474327774980
3c44397f3204eb3648c2427907f3653517aa3bc4a3f12aafa39b886f111dbbef
GET /_nuxt/desktop/default/44d57e53.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 6932
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6842-1b14"
expires: Sat, 03 Dec 2022 21:38:06 GMT
last-modified: Fri, 02 Dec 2022 21:04:02 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42540
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/c65cdfde.modern.js
8.254.252.216200 OK 537 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/c65cdfde.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 537 kB (537406 bytes)
Hash d885418e5feb49703219f8b090c8b385
ffc033b3b9b9972ecc056092ff45ea86b4cc2998
4c8e45e7fdce30f116b665548c628de7fb8e6dcc9c23de90b3a82936c64a4cb7
GET /_nuxt/desktop/default/c65cdfde.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:33 GMT
content-type: application/javascript; charset=utf-8
content-length: 537406
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-8333e"
expires: Sat, 03 Dec 2022 21:37:50 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42540
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x36781678.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:54 GMT
expires: Thu, 30 Nov 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 222759
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x36781678.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 222738
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x36781678.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:33:56 GMT
expires: Thu, 30 Nov 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 222757
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash baaba92c2ccd740f080a25a9ea5cb3ad
3322d5a9fb0b3a2ec83247eac9865234cbcefece
5150dcbc7293378fff4a337fd0f61bdbbf6b4f64bddba6d0fd270be37e81fe07
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:26:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lite-1x36781678.top/genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png
178.253.14.166200 OK 352 B URL HTTP/2 lite-1x36781678.top/genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png
IP 178.253.14.166:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 7dff72d4146e35a8262e6845d13a8df0
a291af970d3955b35c314e85712ceea3aca25d54
a467e6a3d8e443bbbade9f04324268de101625412c1135b4cec0864a55101a78
Analyzer Verdict Alert quad9 Sinkholed
GET /genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:33 GMT
content-type: image/png
content-length: 352
last-modified: Wed, 10 Aug 2022 11:26:08 GMT
x-rgw-object-type: Normal
etag: "7dff72d4146e35a8262e6845d13a8df0"
x-amz-storage-class: STANDARD
access-control-allow-origin: *
cache-control: public,max-age=120,s-maxage=600
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1670059592175
178.253.14.166200 OK 145 B URL HTTP/2 lite-1x36781678.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1670059592175
IP 178.253.14.166:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 55385fdddab661013ad8f678cd75ac88
bd36ac4197e34b4d5022498bc319e6f51dff2329
d5af3be5580e1f59ebf83be6961804f2a1f09732719085c04ace46c76df2106b
Analyzer Verdict Alert quad9 Sinkholed
GET /genfiles/cms/maintenance_mode/settings.json?timestamp=1670059592175 HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:34 GMT
content-type: application/json
content-length: 145
last-modified: Thu, 17 Nov 2022 07:57:48 GMT
x-rgw-object-type: Normal
etag: "55385fdddab661013ad8f678cd75ac88"
cache-control: public,max-age=60,s-maxage=60
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/pwa
178.253.14.166200 OK 15 B IP 178.253.14.166:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 0e4766fd1b2ba2e236fd9364587f99ab
eb98dec7af065d80a1a3ddb99cb3e3c0919aa852
4612305c0c6077857c88e831688c8bb34594e16c567ed45a3a330c14fa7c627b
Analyzer Verdict Alert quad9 Sinkholed
GET /pwa HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://lite-1x36781678.top/ar
Connection: keep-alive
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:34 GMT
content-type: application/json; charset=utf-8
content-length: 15
etag: W/"f-65jex68GXYCho925nLPjwJGaqFI"
server-timing: dt_285;dur=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/2def7320.modern.js
8.254.252.216200 OK 1.1 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/2def7320.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (2510), with no line terminators
Hash 650c4387c576a49c8e72233a905ee153
8a74f319540212c618be068e1884552e4d052589
3eef49989597d040e2e026e4586a4471f9e3144c86787931df3a1eefddf76fbf
GET /_nuxt/desktop/default/2def7320.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:34 GMT
content-type: application/javascript; charset=utf-8
content-length: 1082
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-43a"
expires: Sat, 03 Dec 2022 21:38:09 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42533
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:26:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lite-1x36781678.top/version.json?timestamp=1670059592319
178.253.14.166200 OK 44 B URL HTTP/2 lite-1x36781678.top/version.json?timestamp=1670059592319
IP 178.253.14.166:0
Hash ed405bbf6ee4f6210a18b08ea3230870
e3a062371a066f37afcdf237fd74750b142994c3
9d49e4f31b239f57b7f518a18af5890bf1a3d81d09b7d68d0f7738837f24efae
Analyzer Verdict Alert quad9 Sinkholed
GET /version.json?timestamp=1670059592319 HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:34 GMT
content-type: application/json
content-length: 44
last-modified: Fri, 02 Dec 2022 21:08:52 GMT
vary: Accept-Encoding
etag: "638a6964-2c"
content-encoding: gzip
expires: Sat, 03 Dec 2022 09:27:34 GMT
access-control-allow-origin: *
cache-control: max-age=60, max-age=60, s-maxage=60
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-178408567-1
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-178408567-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash c5dd649df24befe18cce2a1b8d1b0f6f
593a851547d915300e9afbb0254c01a93e7dc9b9
399df8b5514f3813e2f9a0ed78467129238e1dde663fd6f81e3392176da32edc
GET /gtag/js?id=UA-178408567-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Dec 2022 09:26:34 GMT
expires: Sat, 03 Dec 2022 09:26:34 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44647
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e63a3fb1ef1a4ebbbd126969d6ee68ca
8bc9c26950b3899087e25ddea159c28f57b47200
f2ec30377e239f64286ae7dde8032e4e332b6c123f7decc07126fbbcff460a69
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:26:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
radar.cedexis.com/1593429750/radar.js
45.54.49.5200 OK 19 kB URL HTTP/1.1 radar.cedexis.com/1593429750/radar.js
IP 45.54.49.5:0
ASN #63911 NetActuate, Inc
File type ASCII text, with very long lines (1782)
Hash 2acb3c3179b2646943d1a8f5166743cc
56aa31a4027fec3dd8cc78114c6b0f3604716c14
0ac8b27ab0fd5f6440f4fc51e98694a417ae1402a3ca4feb224643327c079595
GET /1593429750/radar.js HTTP/1.1
Host: radar.cedexis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Dec 2022 09:26:34 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 29 Jun 2020 11:30:33 GMT
Vary: Accept-Encoding
ETag: W/"5ef9d0d9-af5c"
Expires: Sat, 17 Dec 2022 09:26:34 GMT
Cache-Control: max-age=1209600, public
Content-Encoding: gzip
lite-1x36781678.top/_nuxt/Desktop/Default/svg-sprites/sports-200061.svg
178.253.14.166200 OK 133 kB URL HTTP/2 lite-1x36781678.top/_nuxt/Desktop/Default/svg-sprites/sports-200061.svg
IP 178.253.14.166:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Size 133 kB (132665 bytes)
Hash 8a348468d7828664fb30f76c564a5727
a6afbcba023a2b3ecac0369d5d54c046ecaab63f
a3e862d0d16cca72ec869b6c278621febe88fb70bfbb539dc28e7399533b1f90
Analyzer Verdict Alert quad9 Sinkholed
GET /_nuxt/Desktop/Default/svg-sprites/sports-200061.svg HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:34 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 02 Dec 2022 21:04:02 GMT
etag: W/"638a6842-52ce3"
expires: Sun, 04 Dec 2022 08:43:40 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/2521913.png
178.253.14.166200 OK 10 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/2521913.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8a329f21130bed71f33733b98193088f
0a185e2302138a8da26d37b7b59cc508c1f3260f
7ddeefda6612f73ecfbab058dd36a17188b57ce2edda3f1616089ca5f401e587
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2521913.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 10200
x-amz-id-2: hfHN1gLU7OxcY3pN/m7a0vL1iFCKVQbS6gAHP1UGrRsGuM1t5bXYAx6A59/Tfa9L2MW7RgwkImnQl5BA6Ebx3g==
x-amz-request-id: V23HHPH6K4FP39PP
last-modified: Tue, 13 Aug 2019 15:01:07 GMT
etag: "8a329f21130bed71f33733b98193088f"
x-amz-version-id: FYCAYAbK2ntUZTK0yW7tPOCLXp1nfONi
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/web-api/api/converslon/load
178.253.14.166200 OK 20 kB URL HTTP/2 lite-1x36781678.top/web-api/api/converslon/load
IP 178.253.14.166:0
Hash 1c64b1af01af47a943406322159c6858
0da5044e7694d03542143ff41674d7e8e3ec701b
594f0f37d1deb04d9088baf2bb623b61bb9d8679092cf915f72bcf6041760bfb
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/api/converslon/load HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:34 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=19, dt_285;dur=63
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/39195.png
178.253.14.166200 OK 22 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/39195.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 21074128dae79628237687916c625139
d41bedb406e8070b666c373aa6b4521d9d0ed10b
db033632123c77ff2290ef5e74bc2a7f3312769ea6bbc76bcc292535746d31ff
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/39195.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 21490
x-amz-id-2: l08bwIrz+ycC6oKRnZ7PID1UKRrpih5hRLYs9ccvjxjOOhaXG74P+A95X2NHqLmcw4teho9KkT31mXEOLiYVNA==
x-amz-request-id: DCZXZC4QQPWR4AS5
last-modified: Tue, 13 Aug 2019 15:05:37 GMT
etag: "21074128dae79628237687916c625139"
x-amz-version-id: yqr4Y1tb.qgXfjggX3H3.9M.oBVJ_iqB
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/_nuxt/Desktop/Default/svg-sprites/country-200061.svg
178.253.14.166200 OK 61 kB URL HTTP/2 lite-1x36781678.top/_nuxt/Desktop/Default/svg-sprites/country-200061.svg
IP 178.253.14.166:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 60fcd26422c4178811dfbdc93b541ca5
b047b9c8a7abcad00733386da4ab17625f99206e
2d080db201eb5e3504a4e5df89db5cdfe4b5c037f1c8d9eac9fef39e3a6141fa
Analyzer Verdict Alert quad9 Sinkholed
GET /_nuxt/Desktop/Default/svg-sprites/country-200061.svg HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:34 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 02 Dec 2022 21:04:02 GMT
etag: W/"638a6842-26132"
expires: Sun, 04 Dec 2022 04:16:37 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/aa860e6c8c707d3f98c15261e3383524.png
178.253.14.166200 OK 11 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/aa860e6c8c707d3f98c15261e3383524.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash bd6e084cdf15400e5c54816c6def7df1
789afbbad022ef65c4e1c334def66cf2c0eed381
5a7c848cb242cdbc7fb9ecdd810f75f9186d01c816d3c80c71a7719e3c131942
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/aa860e6c8c707d3f98c15261e3383524.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 11093
x-amz-id-2: zjbC6q/CvZr5CbLDNWCFyGGQ3iWUlGfnpmRLldSpWgk6yxKRXtfaExHaONRfutdOqzMqwPRQq1Y3pkx6reQzpg==
x-amz-request-id: JZRQRVK9A8H8Y6G8
last-modified: Fri, 27 Nov 2020 12:36:12 GMT
etag: "bd6e084cdf15400e5c54816c6def7df1"
x-amz-version-id: tDiNHuS0dymmTdQbxuAS9LH_aEfWUTil
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/d91e39403e323f2bbd8ee259adb37905.png
178.253.14.166200 OK 12 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/d91e39403e323f2bbd8ee259adb37905.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 78ac5b65b5c8084cc8d067ab856fb5db
5c2f46ea14a8f19293bc62caa803d1af11d2d895
4ce6e27f334f6b038076d0e738dccc155e9e0b75444cdbffe3b3dd6c6c5a2222
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d91e39403e323f2bbd8ee259adb37905.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 11698
x-amz-id-2: YreqqgTLUy7s6IgPDoa3DzmIT4DGz/xePaJylizQXSqOwOnmDZoK+wfVF/Xn34d0pk9oM8pgaSZDMhkN6grB0Q==
x-amz-request-id: JZRJHC4CDZWZGY1A
last-modified: Sat, 20 Nov 2021 09:31:35 GMT
etag: "78ac5b65b5c8084cc8d067ab856fb5db"
x-amz-version-id: .HgxO0XqET7GoRZrCTOhdW37dOybCm_U
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/72bdda18fbbc5f9e298321b21146f1c4.png
178.253.14.166200 OK 33 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/72bdda18fbbc5f9e298321b21146f1c4.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 151a95ebd9db510cfab582f7c514eb1f
45402159cff31628d221af954640fec986e23188
4d91cc032b6098a9aef029858051ed7690405ba1b3e322dad268995dfc177e1b
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/72bdda18fbbc5f9e298321b21146f1c4.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png, image/jpeg
content-length: 32889
x-amz-id-2: f0vtRGHB0TGFLrkTfryNWNxK8JX5yotBLum6RVEqUtP6WwpQ56ft/6NZjKm3oAvaG4+A0u/OeEutkQZ1UhIn6w==
x-amz-request-id: N3CXXC5SYFTTFJGB
last-modified: Sat, 18 Jan 2020 20:53:43 GMT
etag: "151a95ebd9db510cfab582f7c514eb1f"
x-amz-version-id: goKvhIqMe3y_1VtM_e2TKv48GWmVzLxg
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/76b4f1b22c728facd8a8dcd85c92050b.png
178.253.14.166200 OK 11 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/76b4f1b22c728facd8a8dcd85c92050b.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f0ce395b3187ee422231821cf474dd75
cee0238deef3d43b9772bc2dd86ffa1ffb24b487
258c7e2af41e226d7925f6db81fb5b8477a668e9692a5ef8c7984e141e26063b
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/76b4f1b22c728facd8a8dcd85c92050b.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 11355
x-amz-id-2: Sa0O8YJ1xYynsdKOdYseeH6XKD7d4L/NY08kr1HFKyUlmjU5v2s62LxbFFG4bEowPm4QVr+iIO4kPC4DcJlf4A==
x-amz-request-id: N3CGHYTJJNNA25EV
last-modified: Wed, 27 Oct 2021 10:13:17 GMT
etag: "f0ce395b3187ee422231821cf474dd75"
x-amz-version-id: hU8_LdITcXfuh44BcnjvtewYXyt9CbiB
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/7904.png
178.253.14.166200 OK 8.6 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/7904.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e652c6f7755c7565fbe9c7ae48b82721
31fb98486c80785a5a030650f4e0688efcca16eb
8007aa5c0c9db8f45fb770d94fca4210319c4d94f1b0287537b02ce492611eb2
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/7904.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 8588
x-amz-id-2: YEmxeioK961bvIRtNU4ywF1EgP1QJI7RGoW0G76vqSSNdcNkIzXX+Wok0SOn6kRYXEf9fMNetgZAk2S6Q7Ujlg==
x-amz-request-id: 998KAQWB6DAG4T03
last-modified: Tue, 13 Aug 2019 15:11:31 GMT
etag: "e652c6f7755c7565fbe9c7ae48b82721"
x-amz-version-id: 8i7TvQ9n08fdPx.884I2BhdbLTXNQ7Lx
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/362b24cf88fcf5d07d4199e9c346ab2b.png
178.253.14.166200 OK 17 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/362b24cf88fcf5d07d4199e9c346ab2b.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 362b24cf88fcf5d07d4199e9c346ab2b
0cf4a3454a6b9f4baf7749b6714cce4895366a1e
ee027d558494ca9c782f2f04d519858cae45c29db7ce3ff5db1a01de88567c57
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/362b24cf88fcf5d07d4199e9c346ab2b.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png, image/jpeg
content-length: 16961
x-amz-id-2: flBbrDul5K2LloLcvIG7E87bP368i6pgDTKQRP/BD9O0aA9V7erNY88m2wRXPMB0Sh/WuW1FDdmT1tTiI7Fcrw==
x-amz-request-id: 998HZCGREFWE8KWD
last-modified: Sun, 03 Nov 2019 20:40:49 GMT
etag: "362b24cf88fcf5d07d4199e9c346ab2b"
x-amz-version-id: RKune8SHagcown2DCwRNCfKHQ_DcABGG
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/7936.png
178.253.14.166200 OK 15 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/7936.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 3446368b58f39da8c19e7c431ec4b4aa
a6e7bd90bb1e3f79e64d35fd4b1d31d74fc7ddac
c27e9df09ee11ed1e75789422ad65efb8a5268019b32eca09c65cad13689c565
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/7936.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 14676
x-amz-id-2: +5vrWqAIa20gvlr3GJXNhNtviBEO32xYUgyY8WTJR6pL9z9GYVJY+snKqlA0S0QwYf6A7giFfXKAeRvjCTMP+A==
x-amz-request-id: N3CQ5JC8D6JKBAAK
last-modified: Tue, 13 Aug 2019 15:11:32 GMT
etag: "3446368b58f39da8c19e7c431ec4b4aa"
x-amz-version-id: jhgKO_js_.HPiLTDaQqWjK.DdMQIW8Yr
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/ff9dcd892717b2166ba546b24f919c5f.png
178.253.14.166200 OK 4.7 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/ff9dcd892717b2166ba546b24f919c5f.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f4476479a5e4669bd63d348a5a7c4300
ef2a90546c442e1e14df71db693cae321a579aa9
1b2dd2c586838bbdfa1ce7d6aa819a4e2b05675d4eddfa83c1c3a3eb832187f3
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/ff9dcd892717b2166ba546b24f919c5f.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 4686
x-amz-id-2: bxxF1ICRIgWjuPJlFOmOudKR1dR7m75HzPqNdQmw+wJedrHlIsiDuLmwuQF5fWgXPaRtGjSdn5Fy8OZYKFXiAg==
x-amz-request-id: N3CS7MBGX90A72RB
last-modified: Sat, 22 Oct 2022 07:00:50 GMT
etag: "f4476479a5e4669bd63d348a5a7c4300"
x-amz-version-id: 8HfPZuWF_oWAH2sHdYLmgTVeTNPOfP3E
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/4cb08c2f2d304f7c05fac225ba0980de.png
178.253.14.166200 OK 11 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/4cb08c2f2d304f7c05fac225ba0980de.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ccea42e0473e3f1c3a3359e9270c5530
ff64668f8e1bc847dab4e92ae55ddbc39e6d139d
7a599d81412a064e172f86f73a4ba8272bd3ede5ea9327fc23e2db50d629bc74
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/4cb08c2f2d304f7c05fac225ba0980de.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 10825
x-amz-id-2: KbM3TjS+5QBZHg556MdNsZnUZ0Flx+Ensh8hCp52BFsEzFdCpHjpA5Eja0AKhe5hfGTMk3Nb0iRZF2xU+fxAYw==
x-amz-request-id: 9S9HPGQM2120KQVN
last-modified: Sat, 16 Oct 2021 08:06:33 GMT
etag: "ccea42e0473e3f1c3a3359e9270c5530"
x-amz-version-id: .Df0lEWiAuTNi0lznXw1jn122Bkwprih
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/1e6b8161c6567f567177b76b3d91f574.png
178.253.14.166200 OK 15 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/1e6b8161c6567f567177b76b3d91f574.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 063f6d25e41beba49a382192a7518e3b
dbbf73d7d6c6f79f57ae4b494da9cfe339837fa7
36e2d4436033c30774a614425206ed2e948443655866a39ba8be5db0fcc9d1df
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/1e6b8161c6567f567177b76b3d91f574.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 14770
x-amz-id-2: UqdtktLhKmhD71IlaJE20So11Mxxdmlz+RSs1s/NZ5yMeBukEfpuYh5R3WHD2IjTsqRJ7CllxNC1KWEf0O+Ywg==
x-amz-request-id: 9S9Q4WF90VH9KFR9
last-modified: Fri, 07 Oct 2022 12:23:14 GMT
etag: "063f6d25e41beba49a382192a7518e3b"
x-amz-version-id: twR6cO8e2MoBQoJFza.kv1oA_kx8FLai
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/6ee9a13df49dce1dcda02c2b48865be5.png
178.253.14.166200 OK 14 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/6ee9a13df49dce1dcda02c2b48865be5.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b41069d13d353b09dcfc47bc17d25510
0f3a04e1a2477407fa7a4499dd4072cf38fcf499
e38a190919e819adbe6c6d41eb9a11396ae7887a8fe5df90ac87da56bf0ffb23
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6ee9a13df49dce1dcda02c2b48865be5.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 13955
x-amz-id-2: F3wlPEVavwwkaRnD4DCZj/+rtaHDJo2JFEddaznhlWmUfXdu7osiLMAHYOkOqGElYX6OHUl8ly3EVmhIaR4BIg==
x-amz-request-id: 0A4WS0CHYNAJ6R75
last-modified: Fri, 07 Oct 2022 12:30:19 GMT
etag: "b41069d13d353b09dcfc47bc17d25510"
x-amz-version-id: My.NiaJbQ1um.YkjW17JhGyZv8wi_RQy
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/48195.png
178.253.14.166200 OK 16 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/48195.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a632293d9807c0c677e5188269edfcd
109d41ae3acc19e781793d38f367883018c00aea
2a6b48cfffe47a998bcffb0efd79e1354d4cd5a0b7d7049042f1861bbf3733fe
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/48195.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 16174
x-amz-id-2: r5eoNrVmYmJBXiDwTrteCnutAyhPjvYvVT5pKCcDHCS13zmg9PNp5ZqegrbwuoE+C/wvpCVC8QDl42dyOJ8Zyw==
x-amz-request-id: 0A4GYSZKS7ESBFX0
last-modified: Tue, 13 Aug 2019 15:07:11 GMT
etag: "0a632293d9807c0c677e5188269edfcd"
x-amz-version-id: VWkpNmA6G6atwYbDM29n85XDMJupmJy9
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/a3aa801ea1342c06aca0bd3ee194446b.png
178.253.14.166200 OK 12 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/a3aa801ea1342c06aca0bd3ee194446b.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash bc4bb674731841b6988efecb86007dc2
0eecec105e789cdcbed5d5bd1bed1837a1502ebb
68b26b9abba9987a58c84a254ac64218d1e4c07875051b37a769bd64e858f283
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/a3aa801ea1342c06aca0bd3ee194446b.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 12031
x-amz-id-2: gS8tZyw6Gjp/UbHsmBBf/gHsCX46Wyu7t5X9dXFDkVhIPPT1wD4qTCHi0Yv0ocL/K4gf4fvJ8Gr0UtIEiuD8vw==
x-amz-request-id: C9P7HAYVBAFN9SRG
last-modified: Fri, 07 Oct 2022 12:21:13 GMT
etag: "bc4bb674731841b6988efecb86007dc2"
x-amz-version-id: F3ZF43OsSiZ.9TcYLM9s8rP2LbUbZKYz
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/ebb9f1e0b76ac4942f889db13317f461.png
178.253.14.166200 OK 13 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/ebb9f1e0b76ac4942f889db13317f461.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e32c01b87f4a67c203d94e0dd63e7dd2
d84de33b6c7dd955083abf8f2295ff6849cebe4d
1465c322713f18148e4990304940a2e134f4d3687a8fb4dbf02a1a56eb09954c
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/ebb9f1e0b76ac4942f889db13317f461.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 13160
x-amz-id-2: 3Ym7aT7XI0kA5okcI7OEa/Ge+ikVHzaEOoin117+c9T7QtnmHItBg/6lqu7GhjsBcPRZ3EZQNJ/ZBwND9GYnFA==
x-amz-request-id: C9P3V3312ATZ429Y
last-modified: Sat, 24 Apr 2021 08:03:14 GMT
etag: "e32c01b87f4a67c203d94e0dd63e7dd2"
x-amz-version-id: Khs9Tn45L3XF.FjAftEKM60ZdOJSODC.
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/6a82e95c22f2e8f3865efb1789d65389.png
178.253.14.166200 OK 11 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/6a82e95c22f2e8f3865efb1789d65389.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 6a82e95c22f2e8f3865efb1789d65389
0d2e38ea761109d9bb8333761c5924b6427d2a6d
04602f3346cc7856b02fbeb9fa601cfea1c97bcd0cd931a77932909652ac5e25
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6a82e95c22f2e8f3865efb1789d65389.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 10588
x-amz-id-2: GmH+n75tz5gdL+sI4I2Wjja5fcZc92FLABB/MbRQEOJpZDQrcPdxjUFfsaNq6+zD18jA+rHDqYkdK2ZY/iKMuQ==
x-amz-request-id: DMX82DQZJ74V7M6K
last-modified: Tue, 13 Aug 2019 15:10:33 GMT
etag: "6a82e95c22f2e8f3865efb1789d65389"
x-amz-version-id: MsE9bwBLyJRCF4Csf8CADyXJWHdxNv.W
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/113755.png
178.253.14.166200 OK 13 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/113755.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b43b261c078acb8452e2ca3bdb2a4daa
9aafc87145f1d80ed6ffbb68147fd229229420e7
41fbc23d4ff1866ea27cb1959faae979e901f7a853c0aa2e78ee5b31dd2f3f8f
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/113755.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 12775
x-amz-id-2: q9wYYGsZ/BFrg5qiPlbImtTeyWvcUi3EkONDr8TJN/R6ZXuNeNd4OP/ImjxkEggXOLz0eSrRPhNtMBtGo7+/1A==
x-amz-request-id: DMX84ATE78QXXD8B
last-modified: Tue, 13 Aug 2019 14:51:54 GMT
etag: "b43b261c078acb8452e2ca3bdb2a4daa"
x-amz-version-id: TtkhUe_Nqqq_ZPkpAjKaCBoibzgyMlL6
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo-champ/c223517fcf9c5dab03747c3e0d78c581.png
178.253.14.166200 OK 20 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo-champ/c223517fcf9c5dab03747c3e0d78c581.png
IP 178.253.14.166:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 97b2806ac7b36e55677f0160e9874173
7ff9b27d1b07f84e5f3c76bffc3b75d67edd326a
a43e120f28ed038c7a5325de2021da2ba5262dfe89973475e99538e6badeedfa
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo-champ/c223517fcf9c5dab03747c3e0d78c581.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 19917
x-amz-id-2: eEvqY9FLmesEd/64wXIlIz66BcSCKNFq9c0ZDhUrN4R8BOlELwxdhOCYUMbk7AN90xM8SP1gK/5pUG7Es4xtsw==
x-amz-request-id: SEMYH99FB8EHBJRV
last-modified: Tue, 03 May 2022 12:14:47 GMT
etag: "97b2806ac7b36e55677f0160e9874173"
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/13189.png
178.253.14.166200 OK 8.5 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/13189.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ca1cee37350b938de1cea205ea2afc80
baaaf9d36a816544e76091ea4972d95a8085bf37
0a33309960f474e15d06b11b42748edaadb050c6eaa0082e3c198e2db5558074
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/13189.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 8473
x-amz-id-2: APuLqVYCibJ3OKdH++oibzSN6KgSudiyVe6OPOOkeWX/AHbtPkWzZWkcuQr390aO05szpU3FuS4T3eeaveaOfw==
x-amz-request-id: N3CJNGV9CSS57MN3
last-modified: Tue, 13 Aug 2019 14:52:59 GMT
etag: "ca1cee37350b938de1cea205ea2afc80"
x-amz-version-id: DFA67Gxap.29i5.OipceI.ZQUnbC2bd1
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/5babdac793c016d303db8c90fa6925f5.png
178.253.14.166200 OK 12 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/5babdac793c016d303db8c90fa6925f5.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 67b32fa4c7b3f0465ab74d987e5b370f
ee105f0e4fc2305d6bb3befff140634bb4c0fc4c
b7e6adef1e32937122a63ceb3cfc85beff4729b0f75c18f510f4e72fa8a349e4
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/5babdac793c016d303db8c90fa6925f5.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png, image/jpeg
content-length: 11883
x-amz-id-2: z2TMsSfRuDuiTiHelrOruX25Z9RWRSK1VXcygBOycYlr7MBwIJSaw+LclFK+z01ivAKjMGI+ZHijoXmbksISLQ==
x-amz-request-id: N3CM3MERM9P6FT3V
last-modified: Fri, 01 May 2020 14:24:22 GMT
etag: "67b32fa4c7b3f0465ab74d987e5b370f"
x-amz-version-id: I8TmmM1q4YHb6EMkH2z_qUgnw6k_Vuco
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/12601.png
178.253.14.166200 OK 10 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/12601.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash cf0f619dd7329e71629341b471df0d70
22ea5772d8aa07884ec1ac1f2e24766392b07a6f
0725586b42b307c9d910d342414285b71df9391009d650b4302613323f73f6e4
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/12601.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 10248
x-amz-id-2: 0TX19WMi2WgZshlGlYPLMX0rQISSeSPE5Xd9o4c8Qg2obzloRSfMb+Yij1Kc0i62Ud23HD4v5hVGHIZusy04AA==
x-amz-request-id: N3CW0NK7PF5AZPJ3
last-modified: Tue, 13 Aug 2019 14:52:37 GMT
etag: "cf0f619dd7329e71629341b471df0d70"
x-amz-version-id: bH4DUdwtrpD0R2GZ1NhSnA1AxTpq7U7R
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/12759.png
178.253.14.166200 OK 13 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/12759.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e9c33ff3cb0f246e67cd0ce669b6c153
93ffc0086a3bbcc577302ca0ed16b4a305018ee7
268bb3752bc873f4a26c4c13380b8ed2bab575ecffe2525385171dae177956ed
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/12759.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 12817
x-amz-id-2: WM2R8hq3cK8VuecujXbRjF8E7WOu4XK8aeq+tKP+KarGd58XeFFpkWzCuUkw8/+KQAa1l6zDk9MsQMpdDvj2wg==
x-amz-request-id: N3CJD9BT6Y2PWVGP
last-modified: Tue, 13 Aug 2019 14:52:42 GMT
etag: "e9c33ff3cb0f246e67cd0ce669b6c153"
x-amz-version-id: pJWehdpggqBOeIKGR0FMKXUgNQv.lqnN
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/defaultlogo.png
178.253.14.166200 OK 2.7 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/defaultlogo.png
IP 178.253.14.166:0
File type PNG image data, 55 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 72c91e676105dc1628e8a636554bfcfd
c0162ae779e4000be14b99e96981ff309a41b0ee
d10053f91feb4cd1a54f46fdcb8eb5193e4396a09e6341458edcf2f38ada718b
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/defaultlogo.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 2713
x-amz-id-2: 2wtjbK/tFCn4ysz19CpvlY/gOdIGzN4of7HootzKx12VnoMc2LG0ORNd66LmepeL1XxA3CIWBWl6mw34ReOM+Q==
x-amz-request-id: N3CQS43P06W6JQJ5
last-modified: Tue, 13 Aug 2019 15:13:43 GMT
etag: "72c91e676105dc1628e8a636554bfcfd"
x-amz-version-id: ygHOXyYx_9gTcW50FeqErA8BsSDNEhuz
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/b258474167af382a206b7dcea58a6ca4.png
178.253.14.166200 OK 9.3 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/b258474167af382a206b7dcea58a6ca4.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 5485d3d456c67692f232d09ee2b7174e
fc044ce84c6c35519b35d2ddffafacfef03b77d3
039e59f716be6ff54f92df46ecdf8612b5a57414645a3127566dca04d2a7f045
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/b258474167af382a206b7dcea58a6ca4.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 9272
x-amz-id-2: r/rc/zAeVGZDxDDnHf9Oll0kT/51lx3HcGlH9JPp1U/ffK649kdtxO/aS0l178zfMQRAa5SDuJn97Wf3dhZbFA==
x-amz-request-id: N3CQZYG2PTHXC5WT
last-modified: Sun, 20 Dec 2020 20:37:10 GMT
etag: "5485d3d456c67692f232d09ee2b7174e"
x-amz-version-id: vCvUyrafL3Jc9uiN4uH_3QHQwiQNqehQ
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/4498.png
178.253.14.166200 OK 13 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/4498.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash eb37238a6dbf2020fbb70524ba9f715b
7539c57d4b8ee88d900b79a5a0ec84022911c0c1
5cfcbc6eefb356bf897ec73e9528656e234bb525ce1fd5f56a480d1eab2ec6f2
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/4498.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 13143
x-amz-id-2: A03bsx9gPREvbuwb0pFZqCr5acuumLusu8OVs/Bkg802TTBEqqC3/vRm3xIb2ZOD9iPxhWDWO0MJazVq72VXCQ==
x-amz-request-id: N3CWAJ8NWD35JFGD
last-modified: Tue, 13 Aug 2019 15:06:35 GMT
etag: "eb37238a6dbf2020fbb70524ba9f715b"
x-amz-version-id: 3itmjxQ.63FcDRUvVqWQCrA4Ii3VkoUV
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/baf4e51de8fcc71567bab023c955cf7a.png
178.253.14.166200 OK 14 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/baf4e51de8fcc71567bab023c955cf7a.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 45871f2cb4156b1689a46a438dc000ad
ca1c5ee172108bb6c5f3adc4d102c8cab803e4a8
4172f9ea650b24727dbae42c1675f44527651647a8a12262f1f835ab9fbdde60
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/baf4e51de8fcc71567bab023c955cf7a.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 14409
x-amz-id-2: iUghMPtI8/XBNmWooCrQVqHhJ94QvYTMkwmyFuZzfUnt9BbpE1Kpb+DXiQITTpVq12FY590d5bQedM+o8+//cQ==
x-amz-request-id: BD1AK6ZT9VKPP4PR
last-modified: Thu, 13 Oct 2022 12:40:42 GMT
etag: "45871f2cb4156b1689a46a438dc000ad"
x-amz-version-id: _mtpoqV8pKUujlkPreiED6tPZkTvWyvZ
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/4496.png
178.253.14.166200 OK 9.2 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/4496.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b2e5cca786c945ac7f3c5583f74b177f
48d1835f189398c33d0c3a944366db9d3f9ca35f
a05482a22d4cbd7cb4a6caed9cba9187cc4fc0da7fe79897cab16800d39b7f45
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/4496.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 9185
x-amz-id-2: 6iwZq0cbHqN5dDxKQdBOPUB6vL/uc3oYKeNE0L5dlezV9spB2APOHEHhZFiOGRyXbmGRXL0QXBhjqQy9aBxpXw==
x-amz-request-id: BD18DDNCDP28Z0KF
last-modified: Tue, 13 Aug 2019 15:06:35 GMT
etag: "b2e5cca786c945ac7f3c5583f74b177f"
x-amz-version-id: WNSAs9pSINesbs2x9dxJLs5pg8B.NQ6k
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/2004.png
178.253.14.166200 OK 11 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/2004.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2035a825e77f7f315449070415e9fb5d
41c9b42db39041c47be8fa43ae35607ef376b3b6
f83dc4adbfbd6228bcf4a25916064acbb61ee83fe976bbec492f3c05e88c1aea
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2004.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 10717
x-amz-id-2: WxqRkNP9IbxQ/fTatjhH4sZKVKOaotjYbELZk3bxswQ2VG4kXL98wtFhaoUmfTGzS/ahKtrffxJ/VWRnbCgc8A==
x-amz-request-id: N3CSW852KXXC5RY6
last-modified: Tue, 13 Aug 2019 14:57:51 GMT
etag: "2035a825e77f7f315449070415e9fb5d"
x-amz-version-id: Tad3e3NR5CYVudhdRnSlijJl1jBqVvCu
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/e65f1e0866170fc8fa00fe6d07ff2411.png
178.253.14.166200 OK 9.9 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/e65f1e0866170fc8fa00fe6d07ff2411.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f3d5883dabf21f44915373f76e66baae
11082e17e50b8d075bee400630901c195f7da70f
2ccdf946a70c73052c2290df10c4969d29363145b5f0e852371a89a4ab309cfc
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/e65f1e0866170fc8fa00fe6d07ff2411.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png, image/jpeg
content-length: 9895
x-amz-id-2: Jk/LuLxacAraSmGR50Na4641HaIoYvJyS4bMGcW9LFMaUUdBqr+IASf1zjfRaW19GYBAoQrIVapRp2Naud2atA==
x-amz-request-id: N3CTCMEYDHTE2AJC
last-modified: Mon, 23 Mar 2020 12:02:26 GMT
etag: "f3d5883dabf21f44915373f76e66baae"
x-amz-version-id: KA37Uu4RWjKftITCI3HWFtvVtmXtQ5RQ
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/8e8d3577f29263c4b081ec72664f025d.png
178.253.14.166200 OK 12 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/8e8d3577f29263c4b081ec72664f025d.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8e8d3577f29263c4b081ec72664f025d
a062e14205c3f2146841d775b7da1c7b2d4fd9a7
59859bc14a8eee9cebc0affbb857e5757b7e962b9ffef3c7c8e21912aa825f86
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8e8d3577f29263c4b081ec72664f025d.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 12048
x-amz-id-2: 4rp49X9uqfYtSO/IobVkXIzWbxvjt380ZxVog7hlfuqv1Lgvn4atGsMUmGr/P7Hb53rw5NYkGXblmFlNyajpBQ==
x-amz-request-id: N3CVCQD7HC9S13YQ
last-modified: Tue, 13 Aug 2019 15:12:29 GMT
etag: "8e8d3577f29263c4b081ec72664f025d"
x-amz-version-id: KGBCve1kQP0llmq9x5fOINficAfv2QrL
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/1534941.png
178.253.14.166200 OK 14 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/1534941.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 022b48206fce7e8605554cd522342b56
9cd144b6f28d9fe5a199551e2aa398305573c1f7
6280d60a41eb60b47216f863b5e22553ec8664554f5218464fe100b719760307
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/1534941.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 14032
x-amz-id-2: LAPpwVTUCL1WdyBwRF3WlgrTSIMH5WS4M8pwx2FcMzetbZd6k1HM/PJ3SL/BadAoWDo42NQJtzHqn6aQ0PmWOg==
x-amz-request-id: N3CWZM5AW8ZCHFM1
last-modified: Tue, 13 Aug 2019 14:54:24 GMT
etag: "022b48206fce7e8605554cd522342b56"
x-amz-version-id: srEB3jTXomduaDbcWqQbJsRZb7AZ1r5j
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/11847.png
178.253.14.166200 OK 4.9 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/11847.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash cdb663bb634488b4fc94d575fde2ed57
c4e74a35177b8390d8462079d9d907b3663cce7f
f2482d8a48a84b3f81751234540289704e60a8f60de2e945fb46c72a75979477
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/11847.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 4922
x-amz-id-2: 0KJEZracCFAUFhEAhCwk06Ky3Iz3Wy1pol8sftTVlosT3SNKXN5HQzTnSF/jzjN2ra+9kOeeFP31GVLUsyVIgQ==
x-amz-request-id: N3CSF0W0Y9TRF8ZJ
last-modified: Tue, 13 Aug 2019 14:52:14 GMT
etag: "cdb663bb634488b4fc94d575fde2ed57"
x-amz-version-id: Vl9uO5HSh5ELbrASIKHZgPuIh0xUdHSs
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/3492.png
178.253.14.166200 OK 13 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/3492.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e7a20e3b98c8d56f42ffca973bb32401
8cd71d473c55f85af7c82d47c1b28ff9b49b8fca
57f19e44e00b2c5df991b5db1953dd2655559a91c9a3ca9dcc9598eba9e7e4ff
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3492.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:35 GMT
content-type: image/png
content-length: 12873
x-amz-id-2: RT8LxM4gLUMFchjdj+rZuHnTLrNTWpr9HapCF9P6Y4P94/LC4qhMCVZXC14E0M4ZZgphV0P1vndR2x1hmXm29g==
x-amz-request-id: N3CKEDNJ67V9K9XY
last-modified: Tue, 13 Aug 2019 15:04:53 GMT
etag: "e7a20e3b98c8d56f42ffca973bb32401"
x-amz-version-id: sYDQq_D04C4E_JXGR6NCLbio2VOnTjdf
expires: Sun, 04 Dec 2022 09:26:35 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/3516.png
178.253.14.166200 OK 7.5 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/3516.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 04a468b469dd980b8b7fc95f9d4829a9
3d7441884885973443110d5f8350796866873b7a
6f33506581fbcafc0bf02d08bce17fe3e08c6d05965c989d3b9288410fec2768
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3516.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: image/png
content-length: 7464
x-amz-id-2: zy4KiDGvP+ffaI9y3dIPh4R8Tk1Z2eAkVZnKOcVq2DjxU4dIoPjgSNSkCEW2wU85942juhBKV2gIQAOxmFPNcA==
x-amz-request-id: N3CGJ5RZRAV03F64
last-modified: Tue, 13 Aug 2019 15:04:56 GMT
etag: "04a468b469dd980b8b7fc95f9d4829a9"
x-amz-version-id: rnEnSGtrYqLXujLVmNIeGbjsUzkTqQLD
expires: Sun, 04 Dec 2022 09:26:36 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/11869.png
178.253.14.166200 OK 6.6 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/11869.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f5f565bceba098ef06b6dc95dda47f8
6fcea9353aa1b914b5df1cd6e278ebc08766db9b
798409a983560cc962f6954d0dbbfb9ead2f68e53719d785afe9b9b2d90c12c0
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/11869.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: image/png
content-length: 6578
x-amz-id-2: yUds0rb/bXCztxn0J8uz8NRiY7hwCE4lQbUwNCb5uRaxfRjIw5AWBkf2GFszV5+NsMoknp4NJeTTo6WQbFNHRQ==
x-amz-request-id: N3CHWSE9JJ0DS6GJ
last-modified: Tue, 13 Aug 2019 14:52:14 GMT
etag: "6f5f565bceba098ef06b6dc95dda47f8"
x-amz-version-id: kmwx8UFGtLWdV0Fo7ClsA94RB.Eob87D
expires: Sun, 04 Dec 2022 09:26:36 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/33421.png
178.253.14.166200 OK 11 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/33421.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2d8f1289246627583edd18ab6f409e47
00b8cd65e503158a9246b718222a259eaa0267d2
8102d15f631d817da05e9767e384cb29ee44d79f9582742b51966c4b88a8fb3b
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/33421.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: image/png
content-length: 10981
x-amz-id-2: hDNfbQra+lgI1tzkfvfaPtrkK0xU+eurfPU71fa49dTOQfFGtb949eyU3uVDQp96DJCBT9fo4rCwQ4sNqhywww==
x-amz-request-id: NFYW2TDWYJ0MH9A3
last-modified: Tue, 13 Aug 2019 15:04:36 GMT
etag: "2d8f1289246627583edd18ab6f409e47"
x-amz-version-id: vsbJ3RTmuBgIXRcRBczfGdO5sA3az.kd
expires: Sun, 04 Dec 2022 09:26:36 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/11863.png
178.253.14.166200 OK 18 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/11863.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c34435ae849a7dc1751080f135901449
5df948ed267f9db3f4b5502a0f95218d1b17f1ae
7567a31a51ecd340de58489530e8a64caad07f0104aedec4f2305ae961c25111
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/11863.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: image/png
content-length: 18134
x-amz-id-2: yF2cmIeHVs0lGUoKuwOju7Q/0budx2sMtjw9NBnox+RMmeJnwoq0n9WBpY7d5jusdLp4+asBPMAWYminWZQKBw==
x-amz-request-id: NFYJBFQ910B55HBX
last-modified: Tue, 13 Aug 2019 14:52:14 GMT
etag: "c34435ae849a7dc1751080f135901449"
x-amz-version-id: KVDkuACZdhy6y40eD9XCHkHI9xisglWi
expires: Sun, 04 Dec 2022 09:26:36 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/9b8abd5c.css
8.254.252.216200 OK 1.1 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/9b8abd5c.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (6523), with no line terminators
Hash 4f5e039c3fca8784e758f52f65a571c2
3819b34cdc360e27cf360deab04f1e0762482610
33712de5b3ae67ccebbe547fcbb6ba6a8ea399d35e9994142abc7ef7d5cdc502
GET /_nuxt/desktop/default/css/9b8abd5c.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: text/css
content-length: 1111
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-457"
expires: Sun, 04 Dec 2022 08:29:12 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3445
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/4b3b02e4.modern.js
8.254.252.216200 OK 8.4 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/4b3b02e4.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (35397), with no line terminators
Hash cd490d3c8bb2bcc71aee69710735cd40
76d4fad06e341911bf5942bb8c312384b105b8de
b60d9c35195d6ea7535afcd759f44b52ac0a14352568cdb6c93d798e500acded
GET /_nuxt/desktop/default/4b3b02e4.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 8438
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-20f6"
expires: Sat, 03 Dec 2022 21:38:01 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42520
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/2c231180.css
8.254.252.216200 OK 1.2 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/2c231180.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (4693), with no line terminators
Hash e2dd8ba86790ec6ee2d17db0378a4a0d
abc56372e11001323446f6c4e497fba43ae0313d
6889ee03cfee10d2c23b60c3277274c40e04c78d4b3401434aee6ca50cf11965
GET /_nuxt/desktop/default/css/2c231180.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: text/css
content-length: 1205
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-4b5"
expires: Sun, 04 Dec 2022 08:29:13 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3444
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/c42ea890.css
8.254.252.216200 OK 1.0 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/c42ea890.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (4394), with no line terminators
Hash 4a4d7eee11d2390f419b8718f928d10c
a4b3f529651602ae1156404a329917406dde3bd9
79a2e48343abaedca2867da8ef45610e41ae517ce2b2376037aafc21a7ae040c
GET /_nuxt/desktop/default/css/c42ea890.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: text/css
content-length: 1004
cache-control: max-age=86400
content-encoding: gzip
etag: "6389a8f3-3ec"
expires: Sat, 03 Dec 2022 13:38:03 GMT
last-modified: Fri, 02 Dec 2022 07:27:47 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 71325
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/14f509f8.modern.js
8.254.252.216200 OK 5.6 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/14f509f8.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (17989), with no line terminators
Hash 660a06fd0ab25a872182e37207c5859e
015b1e9f67ebe3db151e1c34f5c10e5c736fedea
aa5d7c483b1ccf732f58f6b7d8719b46a20d4072e033738b25dd6208cbd4eb40
GET /_nuxt/desktop/default/14f509f8.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 5574
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-15c6"
expires: Sat, 03 Dec 2022 21:38:48 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42520
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/_nuxt/Desktop/Default/svg-sprites/common-200061.svg
178.253.14.166200 OK 46 kB URL HTTP/2 lite-1x36781678.top/_nuxt/Desktop/Default/svg-sprites/common-200061.svg
IP 178.253.14.166:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 2198460b0c9fe7a48da1361153c2cf21
d3139dd5c1e564ff6c055b0b541e29a08508459a
acb0f07fb8c233c7f97eff94c6c9251a3cc7909cbae26333ff0bb68cb50947c6
Analyzer Verdict Alert quad9 Sinkholed
GET /_nuxt/Desktop/Default/svg-sprites/common-200061.svg HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:34 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 02 Dec 2022 21:04:02 GMT
etag: W/"638a6842-19794"
expires: Sat, 03 Dec 2022 23:50:41 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/bd52bd99.css
8.254.252.216200 OK 869 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/bd52bd99.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (3419), with no line terminators
Hash 8802fad000749cd92762f672c89d357d
761043d4bcc6d825128385e3c28b2abfadff9b69
a25ca7008fe67ee25dfc3d77275c12793358b3b6126a44d6778dfa7f8ec13d2f
GET /_nuxt/desktop/default/css/bd52bd99.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: text/css
content-length: 869
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-365"
expires: Sun, 04 Dec 2022 08:29:13 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3443
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/79414b12.modern.js
8.254.252.216200 OK 7.2 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/79414b12.modern.js
IP 8.254.252.216:0
File type Unicode text, UTF-8 text, with very long lines (27019), with no line terminators
Hash 35823b84ed69d2ffcd549eb49b278660
f84da9576c4049512f1c828c83f7173d9abe0c73
70a5294be01c263f48b659c156ba05fa51097d0e31ca1856046984d8592d5258
GET /_nuxt/desktop/default/79414b12.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 7249
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-1c51"
expires: Sat, 03 Dec 2022 21:38:34 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42520
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/9ecbbc89.modern.js
8.254.252.216200 OK 17 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/9ecbbc89.modern.js
IP 8.254.252.216:0
File type Unicode text, UTF-8 text, with very long lines (41008), with NEL line terminators
Hash c7059ba25931abab08e0f4f9dd191e96
97dcbbd4701ae7c292e2c99d3c49d0baf71b979a
f11d846f156c06957ba0ad491aaf8ac495a13fb25b6d43a62bd81edb24afffb7
GET /_nuxt/desktop/default/9ecbbc89.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 16805
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6842-41a5"
expires: Sat, 03 Dec 2022 21:38:00 GMT
last-modified: Fri, 02 Dec 2022 21:04:02 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42520
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/88c23522.modern.js
8.254.252.216200 OK 3.9 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/88c23522.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (17802), with no line terminators
Hash 36b3b62c1430470b288c527d538d5035
ef564c48bc363ed4db80f4e13bc95a4446eadef0
afe41cb99d8bdfd8e4d8ad554854a0ae68191305a56ae47c3116fbe951080775
GET /_nuxt/desktop/default/88c23522.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 3904
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-f40"
expires: Sat, 03 Dec 2022 21:38:09 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42520
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/c2b74bc7.css
8.254.252.216200 OK 454 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/c2b74bc7.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (1429), with no line terminators
Hash 3ef2b8ba6a3526a39954a0a10aba35b7
048a604c003e56843f7223d68486a13f7bc02943
f75cfb56d6719c69a3999875215398d444a8a5c73d5000098198c6452acbb80b
GET /_nuxt/desktop/default/css/c2b74bc7.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: text/css
content-length: 454
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6842-1c6"
expires: Sun, 04 Dec 2022 08:29:13 GMT
last-modified: Fri, 02 Dec 2022 21:04:02 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3443
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/d9c7b704.modern.js
8.254.252.216200 OK 11 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/d9c7b704.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (40008), with no line terminators
Hash 32d575d6db8c28d2652e33a4d5659d95
bbb8fa13574947bfe5b4bd2033f68029d77fe9ca
8b1e4643ace7110eb7ee5df74d37af0e69ba3cd47b429e1a53e775efca5b8cda
GET /_nuxt/desktop/default/d9c7b704.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 10723
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-29e3"
expires: Sat, 03 Dec 2022 21:39:03 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42520
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/d35090cc.modern.js
8.254.252.216200 OK 1.8 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/d35090cc.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (4822), with no line terminators
Hash a6333531a7f0b6150bddc6f2ae24a19a
feb02665cf3780a4908d62c7c0502536e861aa66
d8ef3e75416a07f637fc72af6549e7bb9966f04a4f5fbedad145ca3705efaa6b
GET /_nuxt/desktop/default/d35090cc.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 1810
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-712"
expires: Sat, 03 Dec 2022 21:38:34 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42520
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/7ac812ef.css
8.254.252.216200 OK 1.2 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/7ac812ef.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (5224), with no line terminators
Hash f00b03e099a232bc5f08fcb1042ae13d
51fa0abddb8ccd8806efcf1872db16a46defd6c4
4a23a179f01d554e11064d32419cfb999b7529f83ca213bba8eda7c55011bb76
GET /_nuxt/desktop/default/css/7ac812ef.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: text/css
content-length: 1232
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-4d0"
expires: Sun, 04 Dec 2022 08:29:18 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3441
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/36c9343a.css
8.254.252.216200 OK 912 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/36c9343a.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (3693), with no line terminators
Hash 1b7cc7024ef238173e96baf5dc448d32
a082b995c9ff91d8329b69f7f6fd917470b131d8
8eb90f00e3a2beefd31f5df844497b4e60988655f68946d865251c7feff4b778
GET /_nuxt/desktop/default/css/36c9343a.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: text/css
content-length: 912
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-390"
expires: Sun, 04 Dec 2022 08:29:27 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3431
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/fef63bc3.modern.js
8.254.252.216200 OK 330 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/fef63bc3.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (397), with no line terminators
Hash 7c8969aa8fa77c71341607e3751088a9
00d5a6606f36487851cef92082acbf6476b12cbf
f12ce251827d7cd21bba6a99469f61538bb9ab6e68d2429b04f9df52560c9e96
GET /_nuxt/desktop/default/fef63bc3.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 330
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-14a"
expires: Sat, 03 Dec 2022 21:38:51 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42520
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/17f2a34f.css
8.254.252.216200 OK 3.8 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/17f2a34f.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (21596), with no line terminators
Hash 0841c54eacc0863802d73b3c0772bc5f
eb7d893ef1032beeef9e61028a8603fd53a2f04e
cddb70033b8f6d204de3fd9373c908c5d67bec1484e238a7aeee8ea18eb245d7
GET /_nuxt/desktop/default/css/17f2a34f.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: text/css
content-length: 3810
cache-control: max-age=86400
content-encoding: gzip
etag: "6389a8f3-ee2"
expires: Sat, 03 Dec 2022 11:38:06 GMT
last-modified: Fri, 02 Dec 2022 07:27:47 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 78514
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/6816f815.modern.js
8.254.252.216200 OK 14 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/6816f815.modern.js
IP 8.254.252.216:0
File type Unicode text, UTF-8 text, with very long lines (65532), with no line terminators
Hash 51adfb86ab8c00c2b97cfb190d76e01f
63f973a21ef912f04768dc52e522f2c1000e5958
1ef821e9d29ebfe811ccad3069e896ec7e4fb5de777db8a7cafbf756708c6b33
GET /_nuxt/desktop/default/6816f815.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 13454
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-348e"
expires: Sat, 03 Dec 2022 21:38:51 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42520
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/b0e615fc.css
8.254.252.216200 OK 2.0 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/b0e615fc.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (18717), with no line terminators
Hash c7e379c6dd6ad0cea02bbd481745213e
2e29ba4e194ce2a75d0040f9cae47aa1c1093ce8
e6458342af05bbfd3a550bc95e4e1a28805a497c4805eeb92f5fc2ad9d16a768
GET /_nuxt/desktop/default/css/b0e615fc.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: text/css
content-length: 1999
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-7cf"
expires: Sun, 04 Dec 2022 08:29:18 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3441
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/css/cefdc903.css
8.254.252.216200 OK 508 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/css/cefdc903.css
IP 8.254.252.216:0
File type ASCII text, with very long lines (1570), with no line terminators
Hash 407282b72b766ff8bb504e6c6111c2f2
2f187937e2a5b0b8876b2815b77b2389d5b62a98
0571d1ff3828485f8d28670419fb8e7cea41d0c55396d07d5d22997cfbe3abb0
GET /_nuxt/desktop/default/css/cefdc903.css HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: text/css
content-length: 508
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-1fc"
expires: Sun, 04 Dec 2022 08:29:27 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 3431
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/24b85293.modern.js
8.254.252.216200 OK 879 B URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/24b85293.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (3162), with no line terminators
Hash ec1512326c91dacf9f8b44aa233bbc58
b62391d7da29e4bf2cb993407275562652baf775
662c452ac9eaa230611c0774b4cc3c9a089c2279c41e72bf37ce19a0e4071a00
GET /_nuxt/desktop/default/24b85293.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 879
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-36f"
expires: Sat, 03 Dec 2022 21:38:34 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42520
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/2ec0835f.modern.js
8.254.252.216200 OK 1.1 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/2ec0835f.modern.js
IP 8.254.252.216:0
File type Unicode text, UTF-8 text, with very long lines (2452), with no line terminators
Hash a459a847f703668ae65bccf0688d4425
91042e4ba34dadb89fa84556c6e597b852429285
544703d999d773746720ec3cc866ba87184e19f54de39b6b6b8e790145ec117a
GET /_nuxt/desktop/default/2ec0835f.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/javascript; charset=utf-8
content-length: 1061
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-425"
expires: Sat, 03 Dec 2022 21:38:54 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42523
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=ar
178.253.14.166200 OK 956 B URL HTTP/2 lite-1x36781678.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=ar
IP 178.253.14.166:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1808), with no line terminators
Hash 4aaecc50dfe583f4696117bc5f22c189
97c8a41be398a5e6c861ce1a9a3c750b91d5004c
352b8ad0c75d94487c7953c56f6718b37b9de3f092512209fc1fe1d493c46921
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/GetExpressDayExtendedZip?lng=ar HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json; charset=utf-8
content-length: 956
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/domain-api/api/v1/domains/lite-1x36781678.top
178.253.14.166200 OK 86 B URL HTTP/2 lite-1x36781678.top/domain-api/api/v1/domains/lite-1x36781678.top
IP 178.253.14.166:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d6ce170df0fd95ce1ace683582698106
54337307d42777444d983f580ae04db2811b2c1c
bf25f0e6d9bc1fa43c30596d7292607f8bbf2222f38b9104106731b0a73b02ae
Analyzer Verdict Alert quad9 Sinkholed
GET /domain-api/api/v1/domains/lite-1x36781678.top HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/vnd.api+json
content-length: 86
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/service-api/LiveFeed/GetLiveExpressExtendedZip?lng=ar
178.253.14.166200 OK 695 B URL HTTP/2 lite-1x36781678.top/service-api/LiveFeed/GetLiveExpressExtendedZip?lng=ar
IP 178.253.14.166:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1612), with no line terminators
Hash a84f753f9ebd5d927e462141b324fda7
8f12c6d2cfb559152f727a82faaf849bc0d31afa
4e29dd51e54a2190b2113d4eda56ef495a114679b0b6e6898529d2b287a28757
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/GetLiveExpressExtendedZip?lng=ar HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json; charset=utf-8
content-length: 695
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/service-api/LiveFeed/GetTopGamesStatZip?lng=ar
178.253.14.166200 OK 1.9 kB URL HTTP/2 lite-1x36781678.top/service-api/LiveFeed/GetTopGamesStatZip?lng=ar
IP 178.253.14.166:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5589), with no line terminators
Hash f77c1a4dac372623c8fe5e74c47f6a88
bb4f6b03efa5e6929d9e05c2dd666a954aab1c89
c4fddae8fb969c185314f99525edff41bfd518281f591e5539668994f8833959
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/GetTopGamesStatZip?lng=ar HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json; charset=utf-8
content-length: 1878
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/service-api/LiveFeed/Get1x2_VZip?champs=1938952&count=100&lng=ar&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
178.253.14.166200 OK 88 B URL HTTP/2 lite-1x36781678.top/service-api/LiveFeed/Get1x2_VZip?champs=1938952&count=100&lng=ar&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
IP 178.253.14.166:0
File type JSON data\012- , ASCII text, with no line terminators
Hash cb41a88ff43bbf14302fe7266a35d76d
4c0c7d1c22c7a6c4c661df8966d9154536fa4313
2de5c51dc3d129eb5567c2f67ea3afb49535ea570887202c1ab058570fec4270
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/Get1x2_VZip?champs=1938952&count=100&lng=ar&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json; charset=utf-8
content-length: 88
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/service-api/LiveFeed/WebGetTopChampsZip?lng=ar&gr=285&country=137
178.253.14.166200 OK 88 B URL HTTP/2 lite-1x36781678.top/service-api/LiveFeed/WebGetTopChampsZip?lng=ar&gr=285&country=137
IP 178.253.14.166:0
File type JSON data\012- , ASCII text, with no line terminators
Hash cb41a88ff43bbf14302fe7266a35d76d
4c0c7d1c22c7a6c4c661df8966d9154536fa4313
2de5c51dc3d129eb5567c2f67ea3afb49535ea570887202c1ab058570fec4270
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/WebGetTopChampsZip?lng=ar&gr=285&country=137 HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json; charset=utf-8
content-length: 88
cache-control: no-cache
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/web-api/user/secure
178.253.14.166200 OK 58 B URL HTTP/2 lite-1x36781678.top/web-api/user/secure
IP 178.253.14.166:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2313fc38814477ef88e19607449a92d1
a397c8aba75166b31447be3b3ddff112fa0a5dc6
b5b2615ffc9e179f2d75951164e0ffa326386cedb92a1226a9c224b3dc6e009e
Analyzer Verdict Alert quad9 Sinkholed
POST /web-api/user/secure HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Origin: https://lite-1x36781678.top
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json; charset=utf-8
content-length: 58
server-timing: dt_285;dur=48
set-cookie: is_rtl=2; expires=Sun, 03-Dec-2023 09:26:36 GMT; Max-Age=31536000; path=/; HttpOnly
tzo=3; expires=Sun, 03-Dec-2023 09:26:36 GMT; Max-Age=31536000; path=/
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
fast_coupon=true; expires=Sat, 10-Dec-2022 09:26:36 GMT; Max-Age=604800; path=/
v3fr=1; expires=Tue, 06-Dec-2022 09:26:36 GMT; Max-Age=259200; path=/; HttpOnly; SameSite=lax
_glhf=1670077372; expires=Sat, 03-Dec-2022 10:26:36 GMT; Max-Age=3600; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=ar&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
178.253.14.166200 OK 12 kB URL HTTP/2 lite-1x36781678.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=ar&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
IP 178.253.14.166:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (54064), with no line terminators
Hash 14b783ee4f0f97d21da550ec555b7b93
205744bd69c62581a5e555f8578c9bb2abbab2c6
d1cc2204a7f18b70284d59c0ce46188d8f2f9bb343c92d1df8ee4ff395e433bb
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/Get1x2_VZip?count=20&lng=ar&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json; charset=utf-8
content-length: 11823
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/service-api/LineFeed/Get1x2_VZip?champs=1938952&count=100&lng=ar&tz=3&mode=4&country=137&virtualSports=true
178.253.14.166200 OK 5.4 kB URL HTTP/2 lite-1x36781678.top/service-api/LineFeed/Get1x2_VZip?champs=1938952&count=100&lng=ar&tz=3&mode=4&country=137&virtualSports=true
IP 178.253.14.166:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (30137), with no line terminators
Hash 2a17a449e9fb85fb25dec3976298bbbe
78f2bd7d62656abed68567e91ecb751141bdf551
f808d19fd5c261d8ef372d7034acd821f101de5ef7fb1cd9eed3a6e4e361185d
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/Get1x2_VZip?champs=1938952&count=100&lng=ar&tz=3&mode=4&country=137&virtualSports=true HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json; charset=utf-8
content-length: 5428
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/service-api/LineFeed/Get1x2_VZip?count=20&lng=ar&tz=3&mode=4&country=137&virtualSports=true
178.253.14.166200 OK 11 kB URL HTTP/2 lite-1x36781678.top/service-api/LineFeed/Get1x2_VZip?count=20&lng=ar&tz=3&mode=4&country=137&virtualSports=true
IP 178.253.14.166:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (49495), with no line terminators
Hash 737753c0403193e586ca01e468887130
cadaa04aee5661041eab5f2c9e48f859487458e5
badaa85950a02188ff87061ae2904e6afe570f4a5eb52d60476636cdcb76d026
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/Get1x2_VZip?count=20&lng=ar&tz=3&mode=4&country=137&virtualSports=true HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json; charset=utf-8
content-length: 10605
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/6e3b5baa.modern.js
8.254.252.216200 OK 5.4 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/6e3b5baa.modern.js
IP 8.254.252.216:0
File type ASCII text, with very long lines (13517), with no line terminators
Hash 41f4f326e58b686799064710861612ab
1cb54821c1a9eedd935791e2dfd0a59d85446940
6886a6936273adfb2abffd62645021d187ffa9b9f1a6e6f268240fa9ca081a5b
GET /_nuxt/desktop/default/6e3b5baa.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 5364
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6841-14f4"
expires: Sat, 03 Dec 2022 21:38:10 GMT
last-modified: Fri, 02 Dec 2022 21:04:01 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42535
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/_nuxt/desktop/default/e84b596b.modern.js
8.254.252.216200 OK 26 kB URL HTTP/2 v3.traincdn.com/_nuxt/desktop/default/e84b596b.modern.js
IP 8.254.252.216:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash d2cc4fc9aff3e5afe275cf510a5a6266
421759816514b190b77674acc654dfa097a05bff
84bc321ea174cfb371ac0ac32ab756f7add517af4266a322d7c8ccac31398505
GET /_nuxt/desktop/default/e84b596b.modern.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 26120
cache-control: max-age=86400
content-encoding: gzip
etag: "638a6842-6608"
expires: Sat, 03 Dec 2022 21:38:10 GMT
last-modified: Fri, 02 Dec 2022 21:04:02 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 42535
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/checker/redirect/stat/run/
178.253.14.166200 OK 49 B URL HTTP/2 lite-1x36781678.top/checker/redirect/stat/run/
IP 178.253.14.166:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b7a9075de81cdb1a9fa74fa71b5126dd
9d651f649e1c5eab95d3b0ca7cc9b02dec41df61
86877f86c7d18d59e54d73c43e6709a91a7f0a6a86980cada7f4b7e69c13cf20
Analyzer Verdict Alert quad9 Sinkholed
GET /checker/redirect/stat/run/ HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: application/json; charset=utf-8
content-length: 49
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/frontend-api/seo/seoList?lng=ar&gr=285&virtualSports=true&groupChamps=true
178.253.14.166200 OK 12 kB URL HTTP/2 lite-1x36781678.top/frontend-api/seo/seoList?lng=ar&gr=285&virtualSports=true&groupChamps=true
IP 178.253.14.166:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (22224)
Hash 6481c7a112f31899594dec1fc608f405
654ebf0a39d005dfe403b51349097e5e9aec6a7b
0a086c7054d6be37cfb1b4bbf19d15d58ab74287f095d0a6074017d59e127552
Analyzer Verdict Alert quad9 Sinkholed
GET /frontend-api/seo/seoList?lng=ar&gr=285&virtualSports=true&groupChamps=true HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-origin: *
etag: W/"1546-W53RwUbfIYwfvc7dcCzud8+xcJg"
server-timing: total; dur=1.1947809999999999; desc="Total Response Time"
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/web-api/external-api/getFirstDepositBonus
178.253.14.166200 OK 657 B URL HTTP/2 lite-1x36781678.top/web-api/external-api/getFirstDepositBonus
IP 178.253.14.166:0
File type JSON data\012- , ASCII text, with very long lines (1320), with no line terminators
Hash 84ee004d5dc081e596d970a6afb3aac0
e3284084053ecd4dc9b8a8519592fce2b150f923
2cbbccb6226ed9ec35fffa061ed961875c9b374e712f9786d07ac40e6a4bc51a
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/external-api/getFirstDepositBonus HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=32, dt_285;dur=33
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/56f351cc827ae02b5cd99041d5aa04ae.png
178.253.14.166200 OK 19 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/56f351cc827ae02b5cd99041d5aa04ae.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 51a207368396ad997049178a83e37977
b5a2b045fdce9d2cf164ed7bfdeaa74f531c1a73
14ba9db320f60f481c77cb773cde9ab3ef272d8fd1780d370165c452211344a9
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/56f351cc827ae02b5cd99041d5aa04ae.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: image/png
content-length: 18931
x-amz-id-2: DuJvmveWjI6XSbtRiyYS2nem6J6FwI0d9rp7nWpDjRwFjzajqcq2SHEvrSywWJNeQsE26em3YoaNmd+eSyZCJA==
x-amz-request-id: WSVADSH4HW5TZQNY
last-modified: Sun, 25 Jul 2021 09:20:23 GMT
etag: "51a207368396ad997049178a83e37977"
x-amz-version-id: swbzdVvyjJ5rNtQEej9wGDw7rdJGFZ5m
expires: Sun, 04 Dec 2022 09:26:37 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/b2149289de28547500570ee22bf71136.png
178.253.14.166200 OK 15 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/b2149289de28547500570ee22bf71136.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 3ded5c88a47a26597cdafc5a1018f587
a82197892b63a35f1acb1b3084fcfd23b851f718
d93438fac392301c2899a17e6a8b761f193e83feeabe32e554c2b82bc5e1f8de
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/b2149289de28547500570ee22bf71136.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: image/png
content-length: 15348
x-amz-id-2: QO4FaexwrVN6hb1Xd9lRHwR3NTlP/5IkmCQ9UDWp1rH/YMq+EcIRb3ps1xjaJEAK0pZJmKzhzz9B59/maOPHvw==
x-amz-request-id: WSV6ESTCK18ZQHJM
last-modified: Thu, 15 Apr 2021 10:31:58 GMT
etag: "3ded5c88a47a26597cdafc5a1018f587"
x-amz-version-id: px8iVAKbrHcgLr3vo_rd15qXkrgpecSk
expires: Sun, 04 Dec 2022 09:26:37 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/betstemplates/bets_model_short_ar_0.js
8.254.252.216200 OK 4.1 kB URL HTTP/2 v3.traincdn.com/genfiles/cms/betstemplates/bets_model_short_ar_0.js
IP 8.254.252.216:0
File type Unicode text, UTF-8 text, with very long lines (12840), with no line terminators
Hash 3323a2517e4e35352a6dfd4849cdd4a8
8867927017f16b0338723eacc7c68eab9afaa37a
ff4b65680263d6a398ddca1dbf388ac722604ada6cc63e5d988d4f2372c42f97
GET /genfiles/cms/betstemplates/bets_model_short_ar_0.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: text/javascript
content-length: 4098
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"dd41654a521ab7e782d4e0f4c085dfa6"
expires: Sat, 03 Dec 2022 09:28:37 GMT
last-modified: Thu, 01 Dec 2022 14:46:27 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 0
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.traincdn.com/genfiles/cms/betstemplates/bets_model_full_ar_0.js
8.254.252.216200 OK 5.0 kB URL HTTP/2 v3.traincdn.com/genfiles/cms/betstemplates/bets_model_full_ar_0.js
IP 8.254.252.216:0
File type Unicode text, UTF-8 text, with very long lines (19981), with no line terminators
Hash 3c6605805e59def448c7140f61f5e7d0
d32e503de4561a89cfcde8cfda212c7c1e293851
34e5e57fbb7ad4c68f8c05d0c03072ef3bfcf8584e675ba3c37078795362e608
GET /genfiles/cms/betstemplates/bets_model_full_ar_0.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: text/javascript
content-length: 4956
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"f4bdb191cb72a80ee173af8b52da41e1"
expires: Sat, 03 Dec 2022 09:21:12 GMT
last-modified: Thu, 01 Dec 2022 14:46:30 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 445
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 388c91a58c606964ca6323aa9917dd36
b660a689686ad234215b51e98605294e87257e2c
a5e5d71fc0fab23ed4020cddb500e5b950cb4a4b84faa27c2807694f87b29d6f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3837
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 09:26:37 GMT
Last-Modified: Sat, 03 Dec 2022 08:22:40 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 279
v3.traincdn.com/genfiles/cms/betstemplates/bets_model_short_ar_1.js
8.254.252.216200 OK 3.0 kB URL HTTP/2 v3.traincdn.com/genfiles/cms/betstemplates/bets_model_short_ar_1.js
IP 8.254.252.216:0
File type Unicode text, UTF-8 text, with very long lines (10546), with no line terminators
Hash 09da5ac3b60af1a8588d011cc8e9602d
4de10197fca0d15425737ef219cad2c340d2ceaa
33e2e0b17e3f6c4812cf6425895143f7214c9e433cbeb42539bb5cc1d10a1655
GET /genfiles/cms/betstemplates/bets_model_short_ar_1.js HTTP/1.1
Host: v3.traincdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: text/javascript
content-length: 2992
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"dc987650799522ed0f3b8a8372ae5fe6"
expires: Sat, 03 Dec 2022 09:27:52 GMT
last-modified: Thu, 01 Dec 2022 14:46:27 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 45
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/web-api/external-api/config/getVideoAccessConfig
178.253.14.166200 OK 49 kB URL HTTP/2 lite-1x36781678.top/web-api/external-api/config/getVideoAccessConfig
IP 178.253.14.166:0
Hash b11c5e94a6362bd5c991d43f56a87f30
71e65834ac40f3a19b6420ef6175f2b7eb9223f2
580ffd7a4e52f07dc3ac811c9fd898d61f5fd3965d9685065728fed3bedbc28f
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/external-api/config/getVideoAccessConfig HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=53, dt_285;dur=55
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 03 Dec 2022 08:41:08 GMT
expires: Sat, 03 Dec 2022 10:41:08 GMT
cache-control: public, max-age=7200
age: 2729
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/d48703c484ec89120559829ca0e95b41.png
178.253.14.166200 OK 29 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/d48703c484ec89120559829ca0e95b41.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d48703c484ec89120559829ca0e95b41
400ff071a1c6919e6bc721566978ea2d1acb1d8a
04b06e00a1980d34203b7f7b820bbd5bb4a89502b76ac0064e4f4f8a12e86838
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d48703c484ec89120559829ca0e95b41.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: image/png, image/jpeg
content-length: 29449
x-amz-id-2: JHr0iegKezl+g4gxKafgbIfOPX6Cgd5QwBwzvYmkGr36dm1hrkXVOkFjGTZK2m2sEcvpw9uik11y0Rj6dVvF+w==
x-amz-request-id: 6PMSX46VB3WJGGWE
last-modified: Thu, 02 Jan 2020 03:34:39 GMT
etag: "d48703c484ec89120559829ca0e95b41"
x-amz-version-id: FjKOJTtY3rMb4SwWwq7iX8f3SPMqnfdM
expires: Sun, 04 Dec 2022 09:26:37 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/86b51d95732ad1f3be1299f3c7f2cb4b.png
178.253.14.166200 OK 29 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/86b51d95732ad1f3be1299f3c7f2cb4b.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 71fc54920e915466851ac76a43bdd9e0
f34a59b84cb29396e6a0af06d4862fbc3bfceb7d
103af236e233fb4bb5d3d4be48779955b90a398fbe8ff29fdf046091f8ec87d1
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/86b51d95732ad1f3be1299f3c7f2cb4b.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: image/png
content-length: 29369
x-amz-id-2: P6eV/M/Q/rtZQBdHcIt4ykxe83+kjd78RaIm7eFOGMgmsao1vg0C+SKdQYPSxS+MuY0T/iTGC2zcv//yiVf+jQ==
x-amz-request-id: 6PMY088SCT4DAPES
last-modified: Thu, 08 Apr 2021 13:42:49 GMT
etag: "71fc54920e915466851ac76a43bdd9e0"
x-amz-version-id: o0SF_f0UKfHqSpxi.2VawVfkw5Ub22q8
expires: Sun, 04 Dec 2022 09:26:37 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/d73bb2c91f4afc3050b8cebafb8fb301.png
178.253.14.166200 OK 14 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/d73bb2c91f4afc3050b8cebafb8fb301.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 6b6025c7c1a4f84229e98050d8e6bba8
11d69be1aa3db1258449dd4c402de36b475c4ceb
de05d5956905ad2f2495aa5f91f04361b29dc5f3301d0b6cb3a98cef9b7c409c
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d73bb2c91f4afc3050b8cebafb8fb301.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: image/png
content-length: 14278
x-amz-id-2: Vrm52JwHs0XIvQGIGtsZNmaqkZHbEitmzKYQeUbvkM/wUBRA+dQbQwIYwef4wrAevxCLehLhxR8BAc1pv2dm6w==
x-amz-request-id: EAEQ2VCWQEQYJBYX
last-modified: Sat, 11 Dec 2021 08:27:24 GMT
etag: "6b6025c7c1a4f84229e98050d8e6bba8"
x-amz-version-id: 5h62hrpscbQPuAwHwG6ZD4ELOnten8zP
expires: Sun, 04 Dec 2022 09:26:37 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/66de663d2f13a4fb079ea90c04635bcb.png
178.253.14.166200 OK 12 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/66de663d2f13a4fb079ea90c04635bcb.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a23efe565c782225a8936f233d5651c8
3c4a79f986a24d70757ec564143349786cf3fed1
d9b11e8206af656b06d62129e8d0221519a769e8eb8e99bcf266140c00c2d54f
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/66de663d2f13a4fb079ea90c04635bcb.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: image/png
content-length: 12201
x-amz-id-2: jCO0jgToJHqGlVJ/PwnUVVz8L51SPvq8AU2W/ISwbCtkAT6rZHCvSlCVMUfOudwmdS2m/45uE9MdWhiNkZMHuQ==
x-amz-request-id: ZBEVPM4FRGK3M0X0
last-modified: Thu, 08 Apr 2021 13:44:52 GMT
etag: "a23efe565c782225a8936f233d5651c8"
x-amz-version-id: Tsb4ozQ4cJ7TJfMwsX408UG9FqSbjvjD
expires: Sun, 04 Dec 2022 09:26:37 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/d1b6719dbf662ca4757b5d5645f56216.png
178.253.14.166200 OK 15 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/d1b6719dbf662ca4757b5d5645f56216.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d1b6719dbf662ca4757b5d5645f56216
8c2446514eb0350f81ee49a692b66ff940487f5c
35ce6ebdee7d073f42cb209ef3d95c0659a76408f4da887e518f9cac7417e20d
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d1b6719dbf662ca4757b5d5645f56216.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: image/png, image/jpeg
content-length: 15397
x-amz-id-2: AycXHeNcjMpqYcVDCufMr95mymm/L2UXiQq6lD7ek04UnQ2Iaf7LrHcrwvpFuAb4EHHTW07MJOiN+oSLwdwGAQ==
x-amz-request-id: J9Z7917DCQZH8231
last-modified: Fri, 03 Jan 2020 00:21:36 GMT
etag: "d1b6719dbf662ca4757b5d5645f56216"
x-amz-version-id: KSkU2djHyjH7xp6SegQd6hlzP7wpzqgi
expires: Sun, 04 Dec 2022 09:26:37 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/c7d994c95a409a8785990adef72e9f5e.png
178.253.14.166200 OK 8.4 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/c7d994c95a409a8785990adef72e9f5e.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c7d994c95a409a8785990adef72e9f5e
d1fc99b3388bbe63fac33aed0351bc7873a44ffb
9515044c1b9299ddf518cdaa91885c61bc3519332077a744830414031aecc748
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/c7d994c95a409a8785990adef72e9f5e.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:37 GMT
content-type: image/png, image/jpeg
content-length: 8435
x-amz-id-2: AwVCdCvoaVRUF5qelnUExfM4BLuElrNNx8ECd5aThER5jwzL3Mt27thYJ231vmb9Qo+txzr+wWGZsHSbWpzDwA==
x-amz-request-id: J9ZE15K4TZ151MKZ
last-modified: Sat, 09 Nov 2019 08:18:22 GMT
etag: "c7d994c95a409a8785990adef72e9f5e"
x-amz-version-id: LGfd6NSYF1KL0bQ0NJ0pXnVvtYPP56an
expires: Sun, 04 Dec 2022 09:26:37 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
216.58.207.227200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x36781678.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:09:46 GMT
expires: Fri, 01 Dec 2023 08:09:46 GMT
cache-control: public, max-age=31536000
age: 177411
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 249aec334460c66dc88b9e8def4e48df
f86d1d278ba5b24587b10519b1b30d75044efd97
b083151804ced0533a5b33302ef110b50ddc4bf653de0fb8f6c7711f4bc29fe2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e545217-31b4-442a-abef-bcaaffcd0407.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9449
x-amzn-requestid: c21c52f9-d971-46d9-b632-0439a0e23da4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZkxHKbIAMFxkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6fb7-2b8cc0982af568626f4a4bbf;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:35:51 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XFIpOllaPcRJOsgZI2EVDyFv-Doz62OcY6gxFlejoXxdeVGya-PNFg==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:53:26 GMT
age: 41592
etag: "f86d1d278ba5b24587b10519b1b30d75044efd97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcdb77a21f91a4a280ac9a8efbc48bbd
74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d
5ee7c45f21b38c653d03a24b10a190a9e9266226d221b006e787cd3719088d7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e765102-d7b9-4765-a166-db04ae6113bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11233
x-amzn-requestid: 89afb72e-6967-47d0-a0ad-48cad8cd08e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIpgOEi0oAMFstg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638022ce-1e8087e734e71d611df75830;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 02:05:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d9wLy3xAxK6RiYf25v_GFT1gdezT8IzMxaFyGRuGm2nxOBh6uEOg3w==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 22:01:29 GMT
age: 41110
etag: "74c974eaf1cbdf6c5ae11793e42caf4c4e4cb25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9b77186d0d93f7ccfe729edd9d184af3
458aa485b9abef3b72427d308a172d1c24eceabd
8bed5a8e56e8c43fcbdc807245c2b651d014a06368574e57a25b718399a4a701
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20049904-a818-4d1c-9585-79edf76dcc61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6966
x-amzn-requestid: 2b40c185-e050-4bfd-9b08-bb70e6f89824
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfAb7Ev3oAMFnrQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6389144c-65301ace20da6f580ed77e82;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 20:53:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xBRZ6xulfveO7b5ZY8ApNbQJ1Sz8LbzEAb3YqxOEaZGYem-ZRaar_Q==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:56:31 GMT
age: 12609
etag: "458aa485b9abef3b72427d308a172d1c24eceabd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/99b7312fc9fe6f4bf947ec17473d0414.png
178.253.14.166200 OK 18 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/99b7312fc9fe6f4bf947ec17473d0414.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 99b7312fc9fe6f4bf947ec17473d0414
d75dd7da6c39add6b9e1055b226c920170d94374
8102fb62d4dfbb63141fc69e384a848be92b6ac5ba3f815bb116c6f2a62b868c
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/99b7312fc9fe6f4bf947ec17473d0414.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png, image/jpeg
content-length: 17597
x-amz-id-2: CKB1mXN+vn2w3CyIYKriGohr0aSibci/uOZCoTqBXxVWpLkTzOZHxjVgrHWK0fx27nX7GzrsoPTASKNAET6BvQ==
x-amz-request-id: WSVBCHG3KW7XNEJJ
last-modified: Tue, 26 Nov 2019 12:34:45 GMT
etag: "99b7312fc9fe6f4bf947ec17473d0414"
x-amz-version-id: cv3D5CpcX41y2UOZrJYMtYU_RbSLk1ov
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/24b5f38b7855d38e6d995c65d25ab1bb.png
178.253.14.166200 OK 15 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/24b5f38b7855d38e6d995c65d25ab1bb.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e5d193c02fffcd66898c33370d083dbe
2ac1afa984b22e7acc404d888ecc7c0175b54878
769b223e7e21d7943ffa31604860757a9d5ecf1ea64270713e61efb99d58a38a
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/24b5f38b7855d38e6d995c65d25ab1bb.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 15022
x-amz-id-2: IFIS5SGLkOgnI3nYxCDNOmmDFM2KBoP79kSkmr1EDGE14eGQtXYGmP6HGB89Q8gmyIdGccZWt19FhInB+q5Tdw==
x-amz-request-id: WSVBXE01E0NW22TF
last-modified: Wed, 08 Dec 2021 07:17:24 GMT
etag: "e5d193c02fffcd66898c33370d083dbe"
x-amz-version-id: cZfAz_SyAGnVJrCO1j1C4sIV7iS2grZ_
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/10361c18d633ee5f6a04541b2b77f100.png
178.253.14.166200 OK 16 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/10361c18d633ee5f6a04541b2b77f100.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c3b02e2a9f9afc55009a1d80d842919c
26a3c6cc94a65e720be64c30c359ff6c7a3046f5
a7e2896cb1279d769d786dd82d5bfc97ecdc13dfc0e8ec416e85217ba0f70ca0
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10361c18d633ee5f6a04541b2b77f100.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 15983
x-amz-id-2: bLS4xYI2uve61YV3iJM96U5z3NY5sz84mzIqNdbHZ48lDKZzIClg08fPLphUkFaMkH09KE4ylEcRK/7L89Ax6w==
x-amz-request-id: WSVFV5AA875VMR4B
last-modified: Sat, 20 Mar 2021 06:58:42 GMT
etag: "c3b02e2a9f9afc55009a1d80d842919c"
x-amz-version-id: aag3cUsU_Vnl6PheW3KAfm6LUn8JcHHm
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/47673.png
178.253.14.166200 OK 15 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/47673.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b57f9e089d46bf3be921ae34b77d91b4
2f4acd4c93eb03fa339cdc7d57b952879533bf46
18f6e5dd0ce41e14100eeffea56dd3a6fb6aa3e1d490f1bba4df43b14d314af8
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/47673.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 14561
x-amz-id-2: kVAnM1wXgxbNnDQEG0R3wA1kQVd6VhVvLg+H9Ivewdd303orh9Cp8Or/cUITwCjrKZ0y0xoMmyZhU8AvCvJ6PA==
x-amz-request-id: WSV416MPW502Q841
last-modified: Tue, 13 Aug 2019 15:07:06 GMT
etag: "b57f9e089d46bf3be921ae34b77d91b4"
x-amz-version-id: 6ZwVs70ZPh6.5YWiM5iprZ0mAC4Ga0Pu
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/41919.png
178.253.14.166200 OK 8.0 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/41919.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0c5b2c22abd69eca2167eafd2a8e5831
357d41c86d2be97cd880a25196dbb7d1b81364c9
d7746d8d93a917936d5c248538b22f9e1272e5e8678bafcbf4df915b8b153ef3
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/41919.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 7964
x-amz-id-2: UzhL5ZrWNeZSbET9fgTXpOpZUroLj6Khq48PC88hyfcAG6CAU232ZD9+h+tQTktl4ULcqnZDrgeLva0EZ8+XNA==
x-amz-request-id: WSVBXVMQWCYX5SBR
last-modified: Tue, 13 Aug 2019 15:06:08 GMT
etag: "0c5b2c22abd69eca2167eafd2a8e5831"
x-amz-version-id: rgIrwSMZFvlhmq35AKXi3oU6Vy8wDykB
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/30751.png
178.253.14.166200 OK 8.2 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/30751.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d9084ae63b55eac6bf033719edca6e2
a4675a3fcae72f2bdd39f47b49323394ca30d5bd
173d6f67cb43c8e4a405448536902af5a239368964b3835f4bf187adc96acd82
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/30751.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 8175
x-amz-id-2: 6z8qFNBEdEfu0fovlpEYSc4kKnojwJnHMSWR0RddSiqB/BJpkCor6aLsy+9SPqTzHclpE5F8KtHFlc0wQtCelg==
x-amz-request-id: WSVDV0TKGCVVMKCK
last-modified: Tue, 13 Aug 2019 15:04:07 GMT
etag: "8d9084ae63b55eac6bf033719edca6e2"
x-amz-version-id: 0DTHlqEZxssOXQ1BTHtObjysyk0P_KWv
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/23a2748671cdb51bdd71ce517a61ee83.png
178.253.14.166200 OK 25 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/23a2748671cdb51bdd71ce517a61ee83.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 6867f60ef7f78dd99ef8d35074d737c7
2c6e89c393eb5b7eb258e1ab0177ee7c22c346a6
259bf3adc73a453633d3a9578569083b55e9d991e1bb10d6e632f62d959f9a40
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/23a2748671cdb51bdd71ce517a61ee83.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 24768
x-amz-id-2: KF2i6HYfY4sfuaBpxlsv1mndB5nmAg+uUtbz5m2xDq5XdVKEv7CWhLvDJxVlcfYCyT5Me1Kesxmc3Li05XMJRw==
x-amz-request-id: C0ZEA9573BT344YK
last-modified: Mon, 09 Nov 2020 20:09:50 GMT
etag: "6867f60ef7f78dd99ef8d35074d737c7"
x-amz-version-id: swGnBpNJo_gilEmHa0NSldQ_GkzBTSeB
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/4828.png
178.253.14.166200 OK 8.0 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/4828.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4bd809a17fc0a602d5936dc40cf39f26
c1d30d3511fc764b5a9c19cbc82f90efaa402b49
ae1819c4abd7392052a821d8d2f9ad69b64367ad9f510a962d11e2a48e9681f9
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/4828.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 8014
x-amz-id-2: RmolP0yfzu3GXOu6IupDAVciMzk2Km0bKnRKriR/vCGIZh4huTj5PnPQSYVLAs4Uh0BR0gswAskZN+mBV1rZbg==
x-amz-request-id: C0Z2EVFF9ZBBFEZP
last-modified: Tue, 13 Aug 2019 15:07:12 GMT
etag: "4bd809a17fc0a602d5936dc40cf39f26"
x-amz-version-id: BN27ais8oIWWh8I8DxrAWg2STCiGpFAP
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/d2f3aa6a16b261d70c3da3e50c293fd9.png
178.253.14.166200 OK 11 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/d2f3aa6a16b261d70c3da3e50c293fd9.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 93fa2015f1ef3ed3df7e2c49e2f46be1
c973545cd78ba39cef0a33b94211daf6b7604dc0
d5d2f9c76bfdcad7962f2cde5aa9c226ca7ed9321ff1f2e2e43824902a352aed
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d2f3aa6a16b261d70c3da3e50c293fd9.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 11336
x-amz-id-2: H1Ch/D8NGXqFfbrEdhTcFFzLiox/DVyco0+eIVkwC/OFtp6vkrIeKB1nLG9YyiPnJIXPFa9bhT/S+bo26ZlHRg==
x-amz-request-id: XQ6034A3AWJF3Z6H
last-modified: Sun, 03 Oct 2021 17:46:26 GMT
etag: "93fa2015f1ef3ed3df7e2c49e2f46be1"
x-amz-version-id: hfBvkRn0_fZYkS0_77ztldReQfu9WL3f
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/d280bf71aa8d174f6b5247f633d48213.png
178.253.14.166200 OK 15 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/d280bf71aa8d174f6b5247f633d48213.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b198599b90a26607c30ae77efe8b672d
7897a7c1b3be8bc0d43fbe7750bd03213270cbad
ea215df9d4b75460c567dc596748528f1de17927b8922a1636a2accaa26734b7
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d280bf71aa8d174f6b5247f633d48213.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 14662
x-amz-id-2: w4ZbymNfWbtzDhD/i535fYvVrqJtzv2Z+k9IfBIxnsqTDlqmTVewZL4sZYQwXzeYSlboz/fGpMKQT7lAZnTRRA==
x-amz-request-id: 289XBZPDK2F0F717
last-modified: Fri, 04 Nov 2022 10:10:00 GMT
etag: "b198599b90a26607c30ae77efe8b672d"
x-amz-version-id: hisimGuRu08k8f_plUBP.3ldOUMa2wfw
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/415599.png
178.253.14.166200 OK 17 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/415599.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ad0df00b327c2529568d582593533afd
5aa7375248e4548d153b5964f5788a4c829911db
ce066caf6c1dbc03550819a0dd1b351dcc30aa8ca316d91130f47c5f339f6b7f
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/415599.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 16786
x-amz-id-2: i79mJxLRUruNz4tzKOutyocIEYoAE2uknuxD2OSYn0YYhcEPBpn2VUYteq/wQ3BT0CCyGB9LY0vOHYpG84xEgQ==
x-amz-request-id: W0BTFN5RCJTDZS08
last-modified: Tue, 13 Aug 2019 15:06:05 GMT
etag: "ad0df00b327c2529568d582593533afd"
x-amz-version-id: pegML40jbXtaEyL35deKQQDFzDfv00OW
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/267805d9e52f3bc174ff3cfab6318d32.png
178.253.14.166200 OK 14 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/267805d9e52f3bc174ff3cfab6318d32.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash cc94194249076d1ab393e021b3211aeb
f0ddc88defc7e6e0da44ab62bbe15602014887a7
e73423d20e0f040741a0b30fa21551dde4e41721c156addd3f4f99032aac71d9
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/267805d9e52f3bc174ff3cfab6318d32.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png, image/jpeg
content-length: 14088
x-amz-id-2: tNDA3mKRVcFlOgSkxrAc+HNfNQrR2g8iWJsiVVQt4Jowj1xPYWUoDdL+6m+kR82+cqIoreBnZq07XvfMIeZnJQ==
x-amz-request-id: W0BJAJ10S3WH16J0
last-modified: Sun, 01 Mar 2020 03:56:40 GMT
etag: "cc94194249076d1ab393e021b3211aeb"
x-amz-version-id: qqV5v.duvlfiXWeWsg_ApI1q2K4ZO.An
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/ba922e068d401bede48d1aeb2a07c8c9.png
178.253.14.166200 OK 17 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/ba922e068d401bede48d1aeb2a07c8c9.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2453b4ffb16ce866a3e192d3c1f45095
da3c35bcdf444dc73acd397e22a78d8117438e05
acc50082711f9eb334738be2872fdb340a49c7806eb281bf6ffdef61fee080fe
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/ba922e068d401bede48d1aeb2a07c8c9.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 16939
x-amz-id-2: OSleNIsiFdwWRHFeToX0UPSXw9KzZ79YgYT+rkxbTf55X31D+I9sXVGkLq+78aZsmbTPE9d0oznn3ra/A0kK5g==
x-amz-request-id: DBY1328BPXAVVN4P
last-modified: Fri, 23 Jul 2021 06:07:03 GMT
etag: "2453b4ffb16ce866a3e192d3c1f45095"
x-amz-version-id: Dl4v.ca8JIELhqfmDr6Nl.6I9ushoZ1y
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/2e0ac68517698a3f7d429d0aa1d69d7f.png
178.253.14.166200 OK 35 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/2e0ac68517698a3f7d429d0aa1d69d7f.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash efb9a1f4359e3d35a9464b8aca894a1c
878345866b5bc763a942206b47472fa4527b3c06
95041fdd1dcf7a82573a6e7030c31bdc4e7708ae1f52d972dd540ab45099786c
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2e0ac68517698a3f7d429d0aa1d69d7f.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 35376
x-amz-id-2: C32habU4SpbwsMERhIZnYPClCAkgjLSOKWu7CW0z+qkVM9i6n4s225wpyNXHSzWJurs/TlaNq5RMRVg8dKPr+A==
x-amz-request-id: DBY8EXS71KVBDH5P
last-modified: Mon, 06 Jul 2020 23:28:42 GMT
etag: "efb9a1f4359e3d35a9464b8aca894a1c"
x-amz-version-id: IlUKaF8xtb3sgs9Jb38cst6SjCp4AS.p
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/a7af947a96b5d69d537e25fb05b7b2ad.jpg
178.253.14.166200 OK 15 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/a7af947a96b5d69d537e25fb05b7b2ad.jpg
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a7af947a96b5d69d537e25fb05b7b2ad
e845dff47839c35210156b6bf5d5dd49c4b2be61
f228e621f30b6e896e6df6ac28c63dbd8390d54418c028bd8992600c0ee0b3f4
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/a7af947a96b5d69d537e25fb05b7b2ad.jpg HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png, image/jpeg, image/tiff
content-length: 14614
x-amz-id-2: zXQIgp3QPFtYU0Ta3PUSZRbk2l/EitZt3xLrjzDVj3SMQpGe7yhg3S2KT6PJe0FLpESkc22bvvrA8pMLqilnEQ==
x-amz-request-id: 8JE7PD82SJGA8EKY
last-modified: Sat, 17 Aug 2019 08:20:49 GMT
etag: "a7af947a96b5d69d537e25fb05b7b2ad"
x-amz-version-id: UBdj65k.nceY3qf7t0yZmE4WpQEFg6Ui
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/392339.png
178.253.14.166200 OK 11 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/392339.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 402eab3d1c7ad5b7217664ab50e9f15b
998db55a775ce60c7b25f706d5fbd553f082aed9
db6242e04ebe27f64df2569d6282c9f0835838dfddaaca6862aa736f4e008916
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/392339.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 11295
x-amz-id-2: X6G7ipNCS+LvRy2wKZtU7uwsJ5jh8Mx1pvjjFDNeb19cMSwY69vYw7CZWLtDiUuoFcaS/4XxvIUOMFZ4hUffXw==
x-amz-request-id: 8JEEFMDSB0HQRB6V
last-modified: Tue, 13 Aug 2019 15:05:37 GMT
etag: "402eab3d1c7ad5b7217664ab50e9f15b"
x-amz-version-id: mv0p_jUMvaAgwmFkHCWec3xjKRiWGa0P
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/5dfe3638021cbf8bbd7176f8c1752c2b.png
178.253.14.166200 OK 6.4 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/5dfe3638021cbf8bbd7176f8c1752c2b.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ffd7af21a6239c25a7d1f836d1b46c65
e6eb45929f54ae97e906c974325bd3e29e0eb880
cd3fa2bb6c83b7f6a0328bc2b8e17c3040fcff3180e1ba34d8462d37ab1bfb42
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/5dfe3638021cbf8bbd7176f8c1752c2b.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 6426
x-amz-id-2: 5MxNYqqdXnxh+fKMCSPOpZIMjA6u25Wb+GiCBALRsU/Qnq2jOqUrbgfsCoxOCxmmDS4hUV3f09i+O48w9FyYUg==
x-amz-request-id: 5TY5PB4HJYH4YQST
last-modified: Fri, 22 Apr 2022 05:20:03 GMT
etag: "ffd7af21a6239c25a7d1f836d1b46c65"
x-amz-version-id: XWTkzFZOcQr9zJuOijOnInoE0j9xIrBX
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/70b3ccbdcd3f05df66dc03f6c9179aa9.png
178.253.14.166200 OK 6.5 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/70b3ccbdcd3f05df66dc03f6c9179aa9.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash fd0b6cccfd0dbd23d1d10d5d3ffe097b
2ced49f224ae7f2ca7e0c6ab23447e4b24e7d72d
5dc567dd6839ef7977cfa9f597b3a9026c8ea3a0971f1bb2003be6499471eb4e
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/70b3ccbdcd3f05df66dc03f6c9179aa9.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 6522
x-amz-id-2: i6L6DUiYcup4cR/glEKuLNnqRlrWn5+S8J8ZQQHndUwGvNRGBQnG0J44NgKG4jCq1t6w7jPAFJanh+KQhgI22w==
x-amz-request-id: P7YD1FV5DWZJ4XE2
last-modified: Fri, 07 Oct 2022 12:31:47 GMT
etag: "fd0b6cccfd0dbd23d1d10d5d3ffe097b"
x-amz-version-id: sf29JmZ8wHzDXsfx2K3pDTnHXJQ1MmQk
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/72e0fd71efa06231900f7a18d42fc5b1.png
178.253.14.166200 OK 6.1 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/72e0fd71efa06231900f7a18d42fc5b1.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a3ab226cdea87c8cabfaec0edc77c8d
423c93b17627c3b62a32a6eb319d70d014380276
dabef6a121cb35c8a44f988711cd352969072941c1385f80c72a3e5147cdd53a
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/72e0fd71efa06231900f7a18d42fc5b1.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 6114
x-amz-id-2: 8PI2yLXopmZw7DfNxeZFDlRpfjegsumKV7jDkZrEczK8Wmnp2ZzClgR8JQMdMDkdmyu5+XootKeKURMvWaCf5g==
x-amz-request-id: P7Y21E0CWN0A98KV
last-modified: Tue, 29 Nov 2022 09:51:43 GMT
etag: "4a3ab226cdea87c8cabfaec0edc77c8d"
x-amz-version-id: YZFiEWKkMA_IPU4paRKek30cMLUlGTbN
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/3590.png
178.253.14.166200 OK 13 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/3590.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e9ef1c40db5ff4bdfe5a89c9d5891ff5
de4f6c44696c5175e142e6d1fb3a36d5b662bf56
df284d9049bbf787cf59dd501077c3d853bcd0257267952640c5e6e0599ddcec
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3590.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 12871
x-amz-id-2: tJ7fa8ydnLFm1lcoepVA+NeAma9u1sOEUXBwDSDc+y7pUk7zi+1vCgTCV2mKVDyHm5ufrAfPeb2A/oFL3wILmQ==
x-amz-request-id: A3MYZ5QTRJ8KKN0B
last-modified: Tue, 13 Aug 2019 15:05:04 GMT
etag: "e9ef1c40db5ff4bdfe5a89c9d5891ff5"
x-amz-version-id: 9biseEguzoID0rCEFG3QWbnnQuKgiTQs
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/3546.png
178.253.14.166200 OK 16 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/3546.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash bfa384380676326533085e6284d3daf7
7782a30c5e380c283300eb634147c3056e4303fa
3e64abafa2f1247b6ed38cfb91414255c64d9d71d7e18b5667a6255958677ac2
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3546.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 16089
x-amz-id-2: zhN0wDVo8HtvvQdTQ0wbsnqGkLc/5gSn1ZP1cY7j53m7LgyTG+oCwRjVHzHQoF7WyqDXu8DlVdr7l2Rs36RlpQ==
x-amz-request-id: 8JE9NQGQPEH221QM
last-modified: Tue, 13 Aug 2019 15:04:59 GMT
etag: "bfa384380676326533085e6284d3daf7"
x-amz-version-id: yET8b28KXar6KSntfureaLdvE46L8yB0
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/cacdab3a27eb1a7fd7d7ef873ae5e00b.png
178.253.14.166200 OK 6.8 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/cacdab3a27eb1a7fd7d7ef873ae5e00b.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash cacdab3a27eb1a7fd7d7ef873ae5e00b
33dd52d0fe70e248b570c49e2800ae8d058ce98a
e5bd1a57f0f178c6ff0a5cdb139823148183ad5157c763b77dff0bc58e9800d2
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/cacdab3a27eb1a7fd7d7ef873ae5e00b.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png, image/jpeg
content-length: 6810
x-amz-id-2: fDfSo1q0db05RBy+WhylLwBlyVXnblntbu/hnr9SKV6G4jx15dAI0bGwiSd5phwtTuLhJPed2NwU/dM6BS7F+g==
x-amz-request-id: 86GPGN17DBD94M01
last-modified: Sun, 03 Nov 2019 07:38:01 GMT
etag: "cacdab3a27eb1a7fd7d7ef873ae5e00b"
x-amz-version-id: U7x_2.J63wQifvuz0mYRXnd6rYy1G0Oq
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo-champ/246a944858d7a07393dd4f6739f94bf9.png
178.253.14.166200 OK 19 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo-champ/246a944858d7a07393dd4f6739f94bf9.png
IP 178.253.14.166:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 9daf8b58d38593afa8f0d1956f5f8b3d
c9a27c3c80c611a3e51964ae104db70602f2c608
d7e4042b1e80a2c83c4d71eaba92918821b514511356eb608bd6e2af8e0d61ff
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo-champ/246a944858d7a07393dd4f6739f94bf9.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 18874
x-amz-id-2: Pd/kVOFfvYoZUN6bmLUvkDUCzqJv4C/5pFgzfKZmCtr2tSnwlLxwqSgwjsk5Vz4WSMefNbRWusDk5Ro7h/vdMQ==
x-amz-request-id: G26SQ0J8729747BK
last-modified: Thu, 26 Aug 2021 08:40:25 GMT
etag: "9daf8b58d38593afa8f0d1956f5f8b3d"
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/8514.png
178.253.14.166200 OK 8.1 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/8514.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a92e01990179fe6803936d9ef572146
4a87082ccd2bfc021ef69b903eef88abe5c8a26a
54aa0d41eb6a01b1bada4d1b7c8bf18e94936e3813d319c70c64e8891affbc37
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8514.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 8093
x-amz-id-2: 2IZSLSMTldbXvhO4NDUhPSXQvDaOtOQciX95yyR4CZAQFFUip4LcJxKodcjy5LVwoQ9Vc0FH9SjItUW/De/HmQ==
x-amz-request-id: B5VHZT153NBW25DQ
last-modified: Tue, 13 Aug 2019 15:12:05 GMT
etag: "0a92e01990179fe6803936d9ef572146"
x-amz-version-id: CRBSYoyCP.ii6DHBmT1KA8f.zoIoyM2N
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/8518.png
178.253.14.166200 OK 6.9 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/8518.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e0502a079111a4b09f3105e8f0bf0442
672b2ea2ce2017c625b4f0a124344a01bdf45ed2
51e60907053fcae64ae693591cf331911d3b5c79abfafa371594deebbff23022
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8518.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 6863
x-amz-id-2: VGoIGhhoqdc6nXVKVteKmq3fqBKharJKXszQl4W44od4XUdr30XsAG27eh0KUGPqPKtdsc1UNAC4mmDx56peAg==
x-amz-request-id: KD1Q87DRK4SPY4JW
last-modified: Tue, 13 Aug 2019 15:12:05 GMT
etag: "e0502a079111a4b09f3105e8f0bf0442"
x-amz-version-id: lK6r6WTdtu056qL3R8KsQ2JTLRqEDCC_
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo-champ/9af23e42915f10afd2be47b9ca3db017.png
178.253.14.166200 OK 8.3 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo-champ/9af23e42915f10afd2be47b9ca3db017.png
IP 178.253.14.166:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 9af23e42915f10afd2be47b9ca3db017
56afc9db0c826e232b365aa21c60e70412673704
0332637f5419c56213f0bdebd54c2340a90f3c0f47bda8c5ddf742b7b4a5396d
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo-champ/9af23e42915f10afd2be47b9ca3db017.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png, image/jpeg
content-length: 8279
x-amz-id-2: xASlYMJJRbqzmW7RrhnI980FV7aI/821TzK/utDgm3Of8xuUz2AD03eAZZ4/iRMa8M4s8xWcuzV4AgG75+RURA==
x-amz-request-id: 6E2643N5AZ92WYEG
last-modified: Wed, 18 Dec 2019 11:39:02 GMT
etag: "9af23e42915f10afd2be47b9ca3db017"
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/8252.png
178.253.14.166200 OK 15 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/8252.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c79ed33b441366357cbb7b86c76138ae
4b425b21bb818a7ba60e147d946a77adeca58f9e
91803084d9ded61349eed417af107f25946ff82cd51eb8d8418a364c133df133
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8252.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 15002
x-amz-id-2: N0ryQDlgQmbR4iX9ScgDT9NN3xMsM7Sh7I3DN/bAhNuSNLnas8LX7eVqPb49jZ3mZftEEjruwLdEYQnbd+lfJQ==
x-amz-request-id: 86GKN49TGGVZCF3V
last-modified: Tue, 13 Aug 2019 15:11:52 GMT
etag: "c79ed33b441366357cbb7b86c76138ae"
x-amz-version-id: 93aXrCOiVkDKK2iFOOGDe8OEypsPSmTV
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/4fb2910ef6d4f8ad984f2aa4bc28b610.png
178.253.14.166200 OK 4.5 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/4fb2910ef6d4f8ad984f2aa4bc28b610.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f988271bc96127f9b3d88e497a36f659
e8b95eeb19f378cdb46404cb1f1487d049f7cda0
4b92c8a1d55693ebe407159d479ac304a937148297688f5e1fb1a0fcf0a30f11
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/4fb2910ef6d4f8ad984f2aa4bc28b610.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 4453
x-amz-id-2: uSF2qT4Qj0HxZ3W7ZrIGKGU8eWbUPTPq2FA3hefYUTIExiQT6lxj+ctvVya53i6WgNB/UzPKMgZqbFTFErefBA==
x-amz-request-id: 86GV76C3AQK4CP3T
last-modified: Fri, 20 Nov 2020 07:12:06 GMT
etag: "f988271bc96127f9b3d88e497a36f659"
x-amz-version-id: sXXI9fYJFn9.uV43OD2m4Tlu3BCVNrey
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo-champ/9adffbc80a8d207de772719c1fd5c56d.png
178.253.14.166200 OK 11 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo-champ/9adffbc80a8d207de772719c1fd5c56d.png
IP 178.253.14.166:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 9adffbc80a8d207de772719c1fd5c56d
15040286d90d2f6aa7781b2e21ba860aa88752e9
a9e1ff151cd68dd773872cd25c8497850247cedee9bd91f3c172fe5415bd1f82
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo-champ/9adffbc80a8d207de772719c1fd5c56d.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png, image/jpeg
content-length: 10864
x-amz-id-2: zYeRxyKdP2GNJUoA5p02yYR5rxusliyN6cVVfm6FuVSo0VJxlboydrN0N8OiVlbCuHGe1V2nQkiuur45Yf2nog==
x-amz-request-id: 6E2DNHD617MFDHP5
last-modified: Mon, 07 Oct 2019 07:09:56 GMT
etag: "9adffbc80a8d207de772719c1fd5c56d"
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/6850.png
178.253.14.166200 OK 15 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/6850.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d53de6b55255baa381574e190da823e7
f43a96efb64ee4611cad70cfbd65f6fc15a09047
0162552197989ead11601dc5205a421e05de19474a21705a2871331b99db4be1
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6850.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 14620
x-amz-id-2: i/z7FkXZkDhlprfOJnarP8h3c33BWJaMkx1c37jtxz2NPbDcvUucrAOqRn+tN6EA0GJ4/BB2kA5XBF0a1ZCtbA==
x-amz-request-id: 86GZZAEFN86ZK2ZE
last-modified: Tue, 13 Aug 2019 15:10:21 GMT
etag: "d53de6b55255baa381574e190da823e7"
x-amz-version-id: bHzB0rmPfYRMKCwlQF10UX5VCk7ldo6J
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/6900.png
178.253.14.166200 OK 14 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/6900.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ee083ae525cfe5b27ef66189306a13e0
f0236b568b70fe43ca360fc21cfd553a89692684
eb496d5e7135a09dcd3d0443082ff51c00f6eb31df45522d7e0c8070b7a2c42e
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6900.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 14213
x-amz-id-2: NcVCw8tIczKRwXKL2l7OpBdC/9q1uC/1O4y1t8TU0G1n6fH6xKy8Nb/fAsC/pTt23HjiE93Jz3KZACe/jxeYlA==
x-amz-request-id: 86GK664R6PGMCNPV
last-modified: Tue, 13 Aug 2019 15:10:25 GMT
etag: "ee083ae525cfe5b27ef66189306a13e0"
x-amz-version-id: UJ9fHxG8xLLdZ3WlYgnjAhZOt6WvPG6X
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/fad63d98dbd2f6d48b2f66940a47167f.png
178.253.14.166200 OK 16 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/fad63d98dbd2f6d48b2f66940a47167f.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e20b46033ead3200429130555ca95f3f
22cfb79982b2708e9806426574ff52031c343c77
abafd011bf0d132d0623d19f0f800a4a0e53487ffed3d39ae07482f08a7fe765
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/fad63d98dbd2f6d48b2f66940a47167f.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 16504
x-amz-id-2: XkpavJVx2e2wwnaDArLlUE0D/5FAyXmzAyrEJh1f0KzuD/TOdhliQs7WBhuvztFcl+BEDcEnCTuvz9GHqU+CIA==
x-amz-request-id: 86GY4KCT5PSYD174
last-modified: Tue, 26 Jan 2021 23:24:09 GMT
etag: "e20b46033ead3200429130555ca95f3f"
x-amz-version-id: TOd1wr.tIYZEEXiPP.yv1FxJmq_g2T0i
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x36781678.top/sfiles/logo_teams/6896.png
178.253.14.166200 OK 6.9 kB URL HTTP/2 lite-1x36781678.top/sfiles/logo_teams/6896.png
IP 178.253.14.166:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d4c46a89fb287b2f0a361d105b6bcf89
681a2b1bf575c1e3a3c07c35698e72c0213cc6b5
146044c3df755d86704829deb02fa57f45a825bd2edf4d9f48ce51a5deb04f6a
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6896.png HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280; is_rtl=2; tzo=3; fast_coupon=true; v3fr=1; _glhf=1670077372; che_g=318118fc-6dd3-30ce-2639-01eaf945c3c6; ggru=167
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:40 GMT
content-type: image/png
content-length: 6914
x-amz-id-2: 7+eP4Eczy19mcsVc9CNHeX8Rlh8a/4Cl4Awqh0Cvxsn67PoucUZq/NpD4qjr17m3H4YaOr6FJKGHJSJ2FWV3cg==
x-amz-request-id: 86GTAP0VKF0Q5XGE
last-modified: Tue, 13 Aug 2019 15:10:24 GMT
etag: "d4c46a89fb287b2f0a361d105b6bcf89"
x-amz-version-id: h6y8zngLe85qevoIBayEqSaWlq7PuJuk
expires: Sun, 04 Dec 2022 09:26:40 GMT
cache-control: max-age=86400, public,max-age=120,s-maxage=600
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -AurmlKwF0QgfsWBsV3ZN9ZyDhw1Zo82zUqrpkBbvbCfh0j7evV2Tg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 11:01:04 GMT
age: 80737
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lite-1x36781678.top/web-api/external-api/getFirstDepositBonus
178.253.14.166200 OK 0 B URL HTTP/2 lite-1x36781678.top/web-api/external-api/getFirstDepositBonus
IP 178.253.14.166:0
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/external-api/getFirstDepositBonus HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=37, dt_285;dur=38
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/web-api/external-api/games/banner?whence=55&ref=1&gr=285&lng=ar&fCountry=137
178.253.14.166200 OK 0 B URL HTTP/2 lite-1x36781678.top/web-api/external-api/games/banner?whence=55&ref=1&gr=285&lng=ar&fCountry=137
IP 178.253.14.166:0
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/external-api/games/banner?whence=55&ref=1&gr=285&lng=ar&fCountry=137 HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:36 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=87, dt_285;dur=91
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/ar
178.253.14.166200 OK 0 B IP 178.253.14.166:0
Analyzer Verdict Alert quad9 Sinkholed
GET /ar HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:32 GMT
content-type: text/html; charset=utf-8
accept-ranges: none
content-encoding: gzip
server-timing: total;dur=3195;desc="Nuxt Server Time", dt_285;dur=3205
set-cookie: platform_type=desktop; Path=/; Expires=Tue, 06 Dec 2022 09:26:29 GMT
SESSION=eb0bb214ca1caf0b10126a0f4df01806; Path=/; HttpOnly; Secure; SameSite=Lax
lng=ar; Path=/
auid=sv0OpmOLFki3mCI+A/t6Ag==; expires=Sun, 03-Dec-23 09:26:32 GMT; path=/
vary: User-Agent, Accept-Encoding
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x36781678.top/_nuxt/Desktop/Default/svg-sprites/qatar-200061.svg
178.253.14.166200 OK 0 B URL HTTP/2 lite-1x36781678.top/_nuxt/Desktop/Default/svg-sprites/qatar-200061.svg
IP 178.253.14.166:0
Analyzer Verdict Alert quad9 Sinkholed
GET /_nuxt/Desktop/Default/svg-sprites/qatar-200061.svg HTTP/1.1
Host: lite-1x36781678.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x36781678.top/ar
Cookie: platform_type=desktop; SESSION=eb0bb214ca1caf0b10126a0f4df01806; lng=ar; auid=sv0OpmOLFki3mCI+A/t6Ag==; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 09:26:34 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Fri, 02 Dec 2022 21:04:02 GMT
etag: W/"638a6842-4873"
expires: Sat, 03 Dec 2022 23:50:41 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: br
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2