| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasha2104f935c638b4767ca5ae0d738ef23 85c6af15af749be0ceeae6de17c36925b750f166 5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6479
Expires: Mon, 30 Jan 2023 06:01:50 GMT
Date: Mon, 30 Jan 2023 04:13:51 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hasha53f88060f412c377262e83c56df5ad4 b3f9c4fa3af3fcd577584fa8ade7e11ee061e902 29bdb5d242ef08e4eccd210f50943062facba308efb76bc597c76cb282e8787c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "29BDB5D242EF08E4ECCD210F50943062FACBA308EFB76BC597C76CB282E8787C"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8233
Expires: Mon, 30 Jan 2023 06:31:04 GMT
Date: Mon, 30 Jan 2023 04:13:51 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash302c7548412192add063ad6c8b99cf3b e5d178931a27db036ce8daae302594d3ff7050b8 fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3979
Expires: Mon, 30 Jan 2023 05:20:10 GMT
Date: Mon, 30 Jan 2023 04:13:51 GMT
Connection: keep-alive
|
|
| getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 | 34.120.5.221 | 200 OK | 39 kB |
URL HTTP/2getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 IP34.120.5.221:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash464c58b623480944ff62b0ebc97ccda7 ad2a830dd3645bb4d7e2f75930dce04fd74e6819 b8fbedd04763bbd667d09cdf23aabbfa3108a24001548b399a7ea8bff407eed1
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: TzkdATZoK5tmELePJckB5K-jwvKKUoh1SPiei-lG11PEi9iHuQD96Q==
content-encoding: gzip
via: 1.1 f62c9ca47e35df5c65764381977823a6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 04:12:46 GMT
age: 117
content-type: application/json
content-length: 38879
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ap7+v+t6kZ9tX7We1PyL/6U4adxONMmYDStN5bM3grnSeIfdnQ0Vwq6c/9XZ+4vLu68tsxDKLFw=
x-amz-request-id: M06KGJWM3R8MEYPW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 03:50:35 GMT
age: 1396
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| book.dypics.com/tags/search/NTR-013/page/9 | 188.114.97.1 | 301 Moved Permanently | 185 B |
URL HTTP/1.1book.dypics.com/tags/search/NTR-013/page/9 IP188.114.97.1:0
File typeHTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text Hash2ea988434b56457cd825ea45522aec36 a75495f2d01537c82a4a4ab83c4a6830259f4bb9 6603b6edfb965cdd4f5ecb065ae3ce76c32c320c371ed0a44a549a8999eaa4d5
GET /tags/search/NTR-013/page/9 HTTP/1.1
Host: book.dypics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 30 Jan 2023 04:13:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.torrentkitty.lol/search/tags/search/NTR-013/page/9
X-Powered-By: ASP.NET
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2qahh%2BwVP9JlAoswFXUYBX0ZKdj4W2iwuazowbxtWFC75QruTC1XY9kVZ7U5xEGKhotI4Dr8xMI3H87aaM2qbjRmFelp4H8%2F3eZ60pQRv5Xib6NZ4oQjujkbfwpLIQ2RE3g%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 79176099d925b4fa-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash81dd5c5cc5b3278876cb44dcb520a60f c0511a59e9eccdcdda98717b87c89c5d59974808 41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11924
Expires: Mon, 30 Jan 2023 07:32:35 GMT
Date: Mon, 30 Jan 2023 04:13:51 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 03:35:40 GMT
content-type: application/json
age: 2291
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 04:13:51 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 03:41:41 GMT
age: 1930
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash22b9916fc1fafc9bdc9bb37f9eac8a9a 86f640e134a741a0f906a8e3a0f5c6659dd0e394 a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9720
Expires: Mon, 30 Jan 2023 06:55:51 GMT
Date: Mon, 30 Jan 2023 04:13:51 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 52.10.36.158 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.10.36.158:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ei0s+sKfqnlTnX+vggXyrQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: T8VhSnyVdXdNz9aSxWnZo2FXk8g=
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash979ebdd6e2b03ffbe4daf702ab1f45e7 22520f4f4f4448aaf582eeae468df0d9b2a228e8 54a8812011ce0ade42121536d1eb87875030a5f75ef44ce55ffd82969fdcbbbb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54A8812011CE0ADE42121536D1EB87875030A5F75EF44CE55FFD82969FDCBBBB"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2523
Expires: Mon, 30 Jan 2023 04:55:55 GMT
Date: Mon, 30 Jan 2023 04:13:52 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashd3277d75c55a45de2a52adcc0c46c9e6 7d63d72d998722daba8a0c7f93cc73130a41c22c 4f2a86e601511f2090be90470119dec80f9409d41e8b6775974277a6cb0a6fcf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4F2A86E601511F2090BE90470119DEC80F9409D41E8B6775974277A6CB0A6FCF"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2000
Expires: Mon, 30 Jan 2023 04:47:12 GMT
Date: Mon, 30 Jan 2023 04:13:52 GMT
Connection: keep-alive
|
|
| accentneglectporter.com/80497e49a2c17fe3a1aff4077eee1810/invoke.js | 173.233.137.52 | 200 OK | 10 kB |
URL HTTP/1.1accentneglectporter.com/80497e49a2c17fe3a1aff4077eee1810/invoke.js IP173.233.137.52:0
Hashb878cafe390386acee2495978a764dba 5917f2b093f44739516c1f2fb5c2522e0558f820 b37fcca116f71da5ccf5fe27eed6026523ec0adbacb6902af213feb71112fde7
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /80497e49a2c17fe3a1aff4077eee1810/invoke.js HTTP/1.1
Host: accentneglectporter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 30 Jan 2023 04:13:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 256a481425c2c36ca68ff7167443aefb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| charmshoist.com/26/ca/06/26ca065a5fb871c74739646a26f0622b.js | 192.243.59.12 | 200 OK | 13 kB |
URL HTTP/1.1charmshoist.com/26/ca/06/26ca065a5fb871c74739646a26f0622b.js IP192.243.59.12:0 ASN#39572 DataWeb Global Group B.V.
File typeASCII text, with very long lines (37111), with no line terminators Hash71bf9fecf25aa44826719cc767364f18 3abf4d1e201c8fa2a971fa645235d1a6044ab119 50de5e5149143c048d6ad79d1a80137c1d30f798b44aa5da22435b659030dcbe
GET /26/ca/06/26ca065a5fb871c74739646a26f0622b.js HTTP/1.1
Host: charmshoist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 30 Jan 2023 04:13:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1f9424849c998b97a1fdb2998a385bb4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 472 B |
IP104.18.32.68:0
Hashce143dfb1f16c1152ff16c28f9b9abbd 027f5562109f9d29ec9da37a536305236b1dbe0b 658ba2839035064f4c9a89cc05c10b33a1e3394cda6f23862d13a021e4363508
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:13:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:34:04 GMT
Expires: Fri, 03 Feb 2023 18:34:03 GMT
Etag: "027f5562109f9d29ec9da37a536305236b1dbe0b"
Cache-Control: max-age=396609,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791760a6ca5eb4eb-OSL
|
|
| ocsp.sca1b.amazontrust.com/ | 54.230.245.100 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP54.230.245.100:0
Hash0e90c9d5521358d2754bbad686a2e9c1 013349b8f38535bae1e197d5d96d86d17d5a1ef0 47bb6aa901220aeab3800d1ea88eb456cfe3ea337f12c059d9549fa6bd8064ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 04:13:53 GMT
Last-Modified: Mon, 30 Jan 2023 02:48:50 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: _k9C4e9a7xel6FhlqSycpyIbNDomVSVwohLYbdKztTUkG2doUWut1Q==
Age: 5103
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 15 kB |
IP93.184.220.29:0
Hashac7e94addede8028f12904fc4e967d13 10564e78d98e18377fbe61f38c6dc442438da0ba 073758b96276f106144a740e047dad52ac4157de01e575774329793de377bb74
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1434
Cache-Control: max-age=105796
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:13:53 GMT
Etag: "63d638ab-116"
Expires: Tue, 31 Jan 2023 09:37:09 GMT
Last-Modified: Sun, 29 Jan 2023 09:13:15 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 278
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash89231e8fe1afd89090e6a09d61430e11 11b471e4821cade1ea075b8835c892d455bfdaa2 8c78cce8f98a69e9c1c2bf45d12879b40c784288b4e79dabb296c24f94025c12
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "8C78CCE8F98A69E9C1C2BF45D12879B40C784288B4E79DABB296C24F94025C12"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7597
Expires: Mon, 30 Jan 2023 06:20:30 GMT
Date: Mon, 30 Jan 2023 04:13:53 GMT
Connection: keep-alive
|
|
| simplewebanalysis.com/stats | 35.156.167.37 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP35.156.167.37:0
File typeASCII text, with no line terminators Hash24746f309abbc5faaa13a0ddfba5d999 e019eb106f8411a761c5252b2119623b9ee8ef27 0cba98a765876f36c92487ede6ca1e2727449195f777b0acecc1f83cdff29779
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.torrentkitty.lol
access-control-allow-credentials: true
set-cookie: uid_id2=ab115146-f30e-458d-b78e-128f2e04407e:3:1; expires=Thu, 27 Jan 2033 04:13:53 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| simplewebanalysis.com/stats | 35.156.167.37 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP35.156.167.37:0
File typeASCII text, with no line terminators Hashd624e87299fad323fc1f757cd1c87301 f5e51fc92081b3fe056f3e21153a38c8ee68bf0a 4954a73c76db23aa22affe15be9812669d884a1cb65f459b2bab9daf932977ae
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.torrentkitty.lol
access-control-allow-credentials: true
set-cookie: uid_id2=35e1d71c-cea1-45c3-a7a4-0e3127a2c236:1:1; expires=Thu, 27 Jan 2033 04:13:53 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6225
Expires: Mon, 30 Jan 2023 05:57:38 GMT
Date: Mon, 30 Jan 2023 04:13:53 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 34 kB |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashba560f728070b76ffbe4792cbe39b067 29edc18dffbb49314f6944ad834df16ad5d125cd be7e53f6a8a5f75a1ef2c18a571f4ec6f32f2622eb503c08cf77ee266050098a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6225
Expires: Mon, 30 Jan 2023 05:57:38 GMT
Date: Mon, 30 Jan 2023 04:13:53 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash89231e8fe1afd89090e6a09d61430e11 11b471e4821cade1ea075b8835c892d455bfdaa2 8c78cce8f98a69e9c1c2bf45d12879b40c784288b4e79dabb296c24f94025c12
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "8C78CCE8F98A69E9C1C2BF45D12879B40C784288B4E79DABB296C24F94025C12"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7597
Expires: Mon, 30 Jan 2023 06:20:30 GMT
Date: Mon, 30 Jan 2023 04:13:53 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6225
Expires: Mon, 30 Jan 2023 05:57:38 GMT
Date: Mon, 30 Jan 2023 04:13:53 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg | 34.120.237.76 | 200 OK | 3.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe8d680cbaee5ef3e7b8e09b174ed6ecf 6651a0d3041920798240ea67e827c3d458769fa9 4c74e8ebff95e67da678248d3dc1d3f42d98c8a0d33d54d9d2bde36314c9f952
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3678
x-amzn-requestid: 21cd1ae3-b769-418a-b7f8-5efa486db859
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEvE-RIAMFpmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-6998009c289996563d78616a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XbMeLjDaYoPiw42pUbszzOEqWeUdx01NI6zVLJFgp0r3B_2dHHxX-w==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:11:45 GMT
age: 21728
etag: "6651a0d3041920798240ea67e827c3d458769fa9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.intellipopup.com/split.min.js | 185.76.9.23 | 200 OK | 17 kB |
URL HTTP/2www.intellipopup.com/split.min.js IP185.76.9.23:0 ASN#60068 Datacamp Limited
Hashdbc2404234bb17beb2433c9614ae3e97 9a7ccaf54a8134d0acfcb93efb8788b40f6d40e0 8044dd396488de4aa4a891889baa6500a25a2e64cd33cdd9f00de65801093488
GET /split.min.js HTTP/1.1
Host: www.intellipopup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:53 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
expires: Thu, 02 Feb 2023 01:12:20 GMT
access-control-allow-origin: *
link: <https://intellipopup.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1675300340
server: CDN77-Turbo
x-77-nzt: AblMCRTUSNv/jXAFAA
x-77-nzt-ray: af585630e411927f0144d763397be211
x-cache: HIT
x-age: 356493
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9a2197-1d4c-4aad-a76e-04d2a1f77b60.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9a2197-1d4c-4aad-a76e-04d2a1f77b60.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc400859d7b0e7bf4d60b6b72da0d3b5a edcc70016fce38a4ad14c3737712685ae1d282f2 45f69c6dcc83120058b731e39103cb1a2a40414eed2da633b43bdccc021665cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9a2197-1d4c-4aad-a76e-04d2a1f77b60.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12991
x-amzn-requestid: a5b71869-0509-443a-ada0-2f7a7cfb8166
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj4AEncoAMF_LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e699-24b0a146699561100a8d592f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pQQVkmOF6_GLV-2WHa9jleOYns0XIg1C5o6OBsq5NK90IhuUpJyfdw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:30:54 GMT
age: 20579
etag: "edcc70016fce38a4ad14c3737712685ae1d282f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg | 34.120.237.76 | 200 OK | 9.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3be81f83687ddb6c93d3ff3c09a9dba2 50a48e737310d3f31840db4301b25927fbcc12c5 e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 38277
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb138c2a-a013-4652-92e0-920b0ab6d6fa.jpeg | 34.120.237.76 | 200 OK | 5.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb138c2a-a013-4652-92e0-920b0ab6d6fa.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8fce79ef35b4c943c2b60d5092d17b6f d29ce982633d0cc50b2a968ea22893d92b9663e3 297e951e4ab09c3465deb222cbe8f66579f9154d4e8806eec3a52350e577fded
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb138c2a-a013-4652-92e0-920b0ab6d6fa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5934
x-amzn-requestid: 75aeb64a-1ba1-4349-84f3-b94aabeccc9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFUMIAMF3nA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-56d6fb7b337769986c5c567b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MFuKQ8m9sOQ2Cc0kXzMaJzUBbB5hEUQ8gpr7rYT4vwh8CYs5oqZQfA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:30:54 GMT
age: 20579
etag: "d29ce982633d0cc50b2a968ea22893d92b9663e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf294e5c-6457-4bdc-b8e4-6cde89bb64f8.jpeg | 34.120.237.76 | 200 OK | 6.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf294e5c-6457-4bdc-b8e4-6cde89bb64f8.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash029e272400d7190359cd2eabbf418188 6300f72a4e44444fc9e4027fb47a85122650b0f2 ef353caae33db21140027a07d1bf3956c2476baaa69c12c1de3c369ac69b13dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf294e5c-6457-4bdc-b8e4-6cde89bb64f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6927
x-amzn-requestid: 6749dadd-1cbd-4e35-9dae-20337098eccf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGjtGWwoAMF87Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf847d-3c470030501c0e572e9f2560;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:10:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EogN6efNByyhDbY4zvYa5Z4ZiFJfmcphq1TO7EdIxFZAG3vQZfjpJA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 05:46:05 GMT
age: 80868
etag: "6300f72a4e44444fc9e4027fb47a85122650b0f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| simplewebanalysis.com/stats | 35.156.167.37 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP35.156.167.37:0
File typeASCII text, with no line terminators Hashd624e87299fad323fc1f757cd1c87301 f5e51fc92081b3fe056f3e21153a38c8ee68bf0a 4954a73c76db23aa22affe15be9812669d884a1cb65f459b2bab9daf932977ae
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: uid_id2=35e1d71c-cea1-45c3-a7a4-0e3127a2c236:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:53 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.torrentkitty.lol
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash7cbe935014bf273caf7a25de8734dcfd 4ed11324709feb9cee39c53082039cfdadd9078c 8c52f15bed473733d4ca98b470d5ec2c33fef24410d05d45e97614e76c1f1eaf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8C52F15BED473733D4CA98B470D5EC2C33FEF24410D05D45E97614E76C1F1EAF"
Last-Modified: Sat, 28 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18323
Expires: Mon, 30 Jan 2023 09:19:16 GMT
Date: Mon, 30 Jan 2023 04:13:53 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashbb1e6c5692e583df480f1a84a53b7573 cda12127c0ea5b3bcb01bfc534404c0ca8e4b819 3ae36a64c1afb6a24c6678d69c2bc626bfa73466ed52b7fcb76d74a001e4220c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3AE36A64C1AFB6A24C6678D69C2BC626BFA73466ED52B7FCB76D74A001E4220C"
Last-Modified: Fri, 27 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1211
Expires: Mon, 30 Jan 2023 04:34:04 GMT
Date: Mon, 30 Jan 2023 04:13:53 GMT
Connection: keep-alive
|
|
| experimentalconcerningsuck.com/watch.457786060190.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2FNTR-013%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=ab115146-f30e-458d-b78e-128f2e04407e%3A3%3A1 | 173.233.137.52 | 307 Temporary Redirect | 6 B |
URL HTTP/1.1experimentalconcerningsuck.com/watch.457786060190.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2FNTR-013%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=ab115146-f30e-458d-b78e-128f2e04407e%3A3%3A1 IP173.233.137.52:0
Hash7d14c6d06a6075d413d43d381c992eba 49bdfc1145f7c7a7bf870f069b9d23a97966cb30 f48bd14f1f30b485d99a2904d06cbd9fa03ccaa5779105a3d3cf963edb2ac385
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /watch.457786060190.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2FNTR-013%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=ab115146-f30e-458d-b78e-128f2e04407e%3A3%3A1 HTTP/1.1
Host: experimentalconcerningsuck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Mon, 30 Jan 2023 04:13:54 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.torrentkitty.lol
Access-Control-Allow-Origin: https://www.torrentkitty.lol
Access-Control-Allow-Credentials: true
Location: https://experimentalconcerningsuck.com/watch.457786060190.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2FNTR-013%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=ab115146-f30e-458d-b78e-128f2e04407e%3A3%3A1&shu=2213ad73b26434f6aed49d3b8ba35ed0da8153712abc8d7ccc15b029b4715311309260ab29d71a0c5acb9119b4a0fab20df2ebc988d91a77ff010ceab08abf553338968d3340f2db8cd3889b610dd88230e47c46a04ba16344c1b887a89192815f&pst=1675052094&rmtc=t
Set-Cookie: u_pl=17298897; expires=Tue, 31 Jan 2023 04:13:54 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.QQVtigindFBNKtugXhbrukmxfauDixVxeCcRrCBkckw; expires=Mon, 30 Jan 2023 04:14:54 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 71b97020e908eaca4c1b281455720f7e
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashba712b809d1107138674cd304e041068 cb7ed5692720084e2b66e724712685d1d56dbe94 1624708856cbcf339b6acc2d31268b693af742aa1b0c699391dddbb09c493347
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1624708856CBCF339B6ACC2D31268B693AF742AA1B0C699391DDDBB09C493347"
Last-Modified: Sat, 28 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3076
Expires: Mon, 30 Jan 2023 05:05:10 GMT
Date: Mon, 30 Jan 2023 04:13:54 GMT
Connection: keep-alive
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hash7491ea880e45d2db5ff616c55f8a51a9 3d59e03fe3cf39eb032e8cc704218f4545460761 194fcd2798cba30c51e6aa8eb14def8b3c4a2e361e973a16e0148115e9fadbb0
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:13:54 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 12:04:34 GMT
Expires: Sun, 05 Feb 2023 12:04:33 GMT
Etag: "3d59e03fe3cf39eb032e8cc704218f4545460761"
Cache-Control: max-age=546038,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791760ab2bfcb4eb-OSL
|
|
| experimentalconcerningsuck.com/watch.457786060190.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2FNTR-013%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=ab115146-f30e-458d-b78e-128f2e04407e%3A3%3A1&shu=2213ad73b26434f6aed49d3b8ba35ed0da8153712abc8d7ccc15b029b4715311309260ab29d71a0c5acb9119b4a0fab20df2ebc988d91a77ff010ceab08abf553338968d3340f2db8cd3889b610dd88230e47c46a04ba16344c1b887a89192815f&pst=1675052094&rmtc=t | 173.233.137.52 | 200 OK | 2.1 kB |
URL HTTP/1.1experimentalconcerningsuck.com/watch.457786060190.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2FNTR-013%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=ab115146-f30e-458d-b78e-128f2e04407e%3A3%3A1&shu=2213ad73b26434f6aed49d3b8ba35ed0da8153712abc8d7ccc15b029b4715311309260ab29d71a0c5acb9119b4a0fab20df2ebc988d91a77ff010ceab08abf553338968d3340f2db8cd3889b610dd88230e47c46a04ba16344c1b887a89192815f&pst=1675052094&rmtc=t IP173.233.137.52:0
File typeHTML document text\012- HTML document, ASCII text, with very long lines (2635) Hashef1a251a0b1f9953d5814baec27d04c2 d9563b6f082e1e72e81e69e2f5f0b45b4ba28c14 0eb36da2e697d7d01c273968b43e8d50700f78ce3eb1489e74d3403209b687df
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /watch.457786060190.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2FNTR-013%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=ab115146-f30e-458d-b78e-128f2e04407e%3A3%3A1&shu=2213ad73b26434f6aed49d3b8ba35ed0da8153712abc8d7ccc15b029b4715311309260ab29d71a0c5acb9119b4a0fab20df2ebc988d91a77ff010ceab08abf553338968d3340f2db8cd3889b610dd88230e47c46a04ba16344c1b887a89192815f&pst=1675052094&rmtc=t HTTP/1.1
Host: experimentalconcerningsuck.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Referer: https://www.torrentkitty.lol/
Connection: keep-alive
Cookie: u_pl=17298897; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzI5ODg5NywiayI6IjgwNDk3ZTQ5YTJjMTdmZTNhMWFmZjQwNzdlZWUxODEwIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjo4MTA0MSwicGlkIjozOTExLCJhbiI6dHJ1ZSwibGFuIjp0cnVlLCJjaWQiOjE4LCJhaWQiOjMyLCJwdCI6NCwicGsiOiJ0MzhhMGF3a3oiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly93d3cudG9ycmVudGtpdHR5LmxvbC9zZWFyY2gvdGFncy9zZWFyY2gvTlRSLTAxMy9wYWdlLzkifX0.QQVtigindFBNKtugXhbrukmxfauDixVxeCcRrCBkckw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 30 Jan 2023 04:13:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.torrentkitty.lol
Access-Control-Allow-Origin: https://www.torrentkitty.lol
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=ab115146-f30e-458d-b78e-128f2e04407e:3:1; expires=Mon, 06 Feb 2023 04:13:54 GMT; secure; SameSite=None
iprcd1e95c6731558acb220485e0effd6fda=3570421; expires=Mon, 30 Jan 2023 08:13:54 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 31 Jan 2023 04:13:54 GMT; secure; SameSite=None
uncs=1; expires=Tue, 31 Jan 2023 04:13:54 GMT; secure; SameSite=None
pdhtkv32=true; expires=Tue, 31 Jan 2023 04:13:54 GMT; secure; SameSite=None
uncs32=1; expires=Tue, 31 Jan 2023 04:13:54 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a5a63166d1100db73de902adbbdc2efb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| c.adsco.re/ | 104.17.167.186 | 200 OK | 27 kB |
IP104.17.167.186:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689) Hash80db0e9043b2d6facad8d37b9286ef23 16232d6d38ab150dcf1435172ee18da92ba54347 0cc72369ecf0a97a86b19fc517675c9f245414b2bb885a5eb6815517c71d4873
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:54 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Thu, 02 Mar 2023 04:13:54 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 2441995
vary: Accept-Encoding
server: cloudflare
cf-ray: 791760ad1cc41c12-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 6.adsco.re/ | 104.17.166.186 | 200 OK | 0 B |
IP104.17.166.186:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:54 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.torrentkitty.lol
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 791760ae3db9b4f4-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nudgeworry.com/sbar.json?key=26ca065a5fb871c74739646a26f0622b&uuid=35e1d71c-cea1-45c3-a7a4-0e3127a2c236%3A1%3A1 | 173.233.137.44 | 200 OK | 4.4 kB |
URL HTTP/1.1nudgeworry.com/sbar.json?key=26ca065a5fb871c74739646a26f0622b&uuid=35e1d71c-cea1-45c3-a7a4-0e3127a2c236%3A1%3A1 IP173.233.137.44:0
File typeJSON data\012- , ASCII text, with very long lines (6140), with no line terminators Hasha2473d3f2af33f826f8a31336d44d637 f0e44cba6bc2da3810b070486bb5a00e7b3ed19a 850bf0fcbe0276e4bff82bdc119a430594865d4fc3ecb2e1820fca5a7c2c290f
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /sbar.json?key=26ca065a5fb871c74739646a26f0622b&uuid=35e1d71c-cea1-45c3-a7a4-0e3127a2c236%3A1%3A1 HTTP/1.1
Host: nudgeworry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 30 Jan 2023 04:13:54 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.torrentkitty.lol
Access-Control-Allow-Origin: https://www.torrentkitty.lol
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17550729; expires=Tue, 31 Jan 2023 04:13:54 GMT; secure; SameSite=None
uid_id2=35e1d71c-cea1-45c3-a7a4-0e3127a2c236:1:1; expires=Mon, 06 Feb 2023 04:13:54 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 31 Jan 2023 04:13:54 GMT; secure; SameSite=None
uncs=1; expires=Tue, 31 Jan 2023 04:13:54 GMT; secure; SameSite=None
pdhtkv29=true; expires=Tue, 31 Jan 2023 04:13:54 GMT; secure; SameSite=None
uncs29=1; expires=Tue, 31 Jan 2023 04:13:54 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2b1226b907f19e488bc013a244c3bde0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| unseenreport.com/pxf.gif?uuid=35e1d71c-cea1-45c3-a7a4-0e3127a2c236&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=26ca065a5fb871c74739646a26f0622b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4 | 192.243.59.12 | 200 OK | 1 B |
URL HTTP/1.1unseenreport.com/pxf.gif?uuid=35e1d71c-cea1-45c3-a7a4-0e3127a2c236&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=26ca065a5fb871c74739646a26f0622b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4 IP192.243.59.12:0 ASN#39572 DataWeb Global Group B.V.
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pxf.gif?uuid=35e1d71c-cea1-45c3-a7a4-0e3127a2c236&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=26ca065a5fb871c74739646a26f0622b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=4 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 30 Jan 2023 04:13:54 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 53b0001d465157bb0c0d819f5eb84144
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashad0c23321c6aec660045199c11819cf3 e571f00cb5724f0941a612540d7a88e30ad2760a 38c692386f94f7830306c702e304d7be3fc7f705d02d589ad36dbc92757d32e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "38C692386F94F7830306C702E304D7BE3FC7F705D02D589AD36DBC92757D32E9"
Last-Modified: Sun, 29 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7823
Expires: Mon, 30 Jan 2023 06:24:17 GMT
Date: Mon, 30 Jan 2023 04:13:54 GMT
Connection: keep-alive
|
|
| 4.adsco.re/ | 162.252.214.5 | 200 OK | 62 B |
IP162.252.214.5:0
File typeASCII text, with no line terminators Hashadde5febc7b5b6c2c759ec735cce83a0 77ec17be8a9970ff04663294d41c590d0d24fde4 ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:13:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://www.torrentkitty.lol
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
|
|
| 5zl0vdkw4mdl.l4.adsco.re/ | 185.200.118.90 | 200 OK | 0 B |
URL HTTP/1.15zl0vdkw4mdl.l4.adsco.re/ IP185.200.118.90:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 5zl0vdkw4mdl.l4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:13:54 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Tue, 31 Jul 2018 22:16:15 GMT
Connection: close
ETag: "5b60dfaf-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash62452129bb8dec065bf82af1cd2325a0 9b32f067ac26364f2cd578bcdd40c50d18fd03d7 0d2f762553a22b9679301179d107a4a8f2e01efd82c6f432a806d4810481a08c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0D2F762553A22B9679301179D107A4A8F2E01EFD82C6F432A806D4810481A08C"
Last-Modified: Sun, 29 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21104
Expires: Mon, 30 Jan 2023 10:05:38 GMT
Date: Mon, 30 Jan 2023 04:13:54 GMT
Connection: keep-alive
|
|
| nudgeworry.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST28b1Rd90%2Fa3%2BXWBqNiwQHjBAiTizB%2BPHTdIFSGkiihJ1BYisUFv3nvjPDyeN3rvjceJuoiohMoCyVnBcnKcNALKn34AJDRlgyIWMYsqC8KHQGKN7FgyXGnm3vvOXZx7zv3sML8gLnJ6vvW%2B2pNJQhfDult7fVumXBWmtnG%2F5rl1d7m2LdNmY7k2mPx0%2F6bnhnX3jdptwbpq0Xc91%2FVcr7YmtYjVYHGKQmZP2l697dYbft0LGxjo%2F%2FYmd2CoA96%2FIDcg%2Bfh%2FO78%2BhWQV0t6Pq8J0rcrefLeXJ9QqjT4%2F%2BSDtpqpI0ZuXsXYQpyezaSgzJuSrK1DpyWwDqP7RZANEckyc5x6i9GRGE1H%2F%2BJJplECkiPh1FP0KIqkgaQWmHkLyMwIwjo1NpL3HG0oXdPcSpRN0TK79%2FRdkMSbX%2FngJae%2F7lUQOavdUklupUoNBXEIOKshOhSx%2FBrvnQBbPwOynkJwg7ZWQ%2FPy1IBQeb3lsgQnqLTRCFizQFm0suCLw%2FBb1mR80p9JIWUHGFRIxBDUO8sknHeSxgzxz0OPnNRq2Y9dtxVEcBEsNxlgQMBYuNXnIg8ZS7CJnE%2B5D2GwIlgzB9D4yvY%2BuPDgLb0DnP8PslDDcgbEEfV6iEASFISgoQSEJCktQ9MtjnhjflI95YvLIm2V%2FloNypGznkB4r2xEpOcwuyIsTzZzrv32Orjiv%2BU1G3WZIwzhaanms1WgF7WajSf1m7DZ9P4KRJaS5Mt10b2LgWwfI5NkLtxHRCiapwOQN0PwV0GLU8l3QnVFjycVe%2BoNVWovUdqW1u3XbB1clMnsNdtc5TC7Iy1Pzbl5vQrDTW19%2BsfnnMv8ITJfIdIlP5C8EneTR6K4qyNFdVRjydDOzsif36MTYe5ZacfWb98RuoTRfXzXDr99mE2BSPrkvjL1DUy7TjiHfrkjOhV5Tmgny07rZFtFWbnZWcp3m2Z2td9bWe5kWxkiVVqDy7MMHYHJM%2Fv%2Fg4%2BnJvup8B6kr6LxELz8ls4BUFVi2D5PN2RtFoJP5TJQ5KPJypP1o%2FphIgkTMexqVMP%2Fqo3l9aB6hox1Q%2B3B6qH1dop%2BUoMkQJr86spk%2BvfV7MA1EiTOKEu0cRYlODi6lNfK8JsLYjYXriyhuR3GLurwdN9oRbXuiFYXUgzVj9nz1yj8AAAD%2F%2FwEAAP%2F%2FGbRb4ooEAAA%3D | 173.233.137.44 | 200 OK | 7 B |
URL HTTP/1.1nudgeworry.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST28b1Rd90%2Fa3%2BXWBqNiwQHjBAiTizB%2BPHTdIFSGkiihJ1BYisUFv3nvjPDyeN3rvjceJuoiohMoCyVnBcnKcNALKn34AJDRlgyIWMYsqC8KHQGKN7FgyXGnm3vvOXZx7zv3sML8gLnJ6vvW%2B2pNJQhfDult7fVumXBWmtnG%2F5rl1d7m2LdNmY7k2mPx0%2F6bnhnX3jdptwbpq0Xc91%2FVcr7YmtYjVYHGKQmZP2l697dYbft0LGxjo%2F%2FYmd2CoA96%2FIDcg%2Bfh%2FO78%2BhWQV0t6Pq8J0rcrefLeXJ9QqjT4%2F%2BSDtpqpI0ZuXsXYQpyezaSgzJuSrK1DpyWwDqP7RZANEckyc5x6i9GRGE1H%2F%2BJJplECkiPh1FP0KIqkgaQWmHkLyMwIwjo1NpL3HG0oXdPcSpRN0TK79%2FRdkMSbX%2FngJae%2F7lUQOavdUklupUoNBXEIOKshOhSx%2FBrvnQBbPwOynkJwg7ZWQ%2FPy1IBQeb3lsgQnqLTRCFizQFm0suCLw%2FBb1mR80p9JIWUHGFRIxBDUO8sknHeSxgzxz0OPnNRq2Y9dtxVEcBEsNxlgQMBYuNXnIg8ZS7CJnE%2B5D2GwIlgzB9D4yvY%2BuPDgLb0DnP8PslDDcgbEEfV6iEASFISgoQSEJCktQ9MtjnhjflI95YvLIm2V%2FloNypGznkB4r2xEpOcwuyIsTzZzrv32Orjiv%2BU1G3WZIwzhaanms1WgF7WajSf1m7DZ9P4KRJaS5Mt10b2LgWwfI5NkLtxHRCiapwOQN0PwV0GLU8l3QnVFjycVe%2BoNVWovUdqW1u3XbB1clMnsNdtc5TC7Iy1Pzbl5vQrDTW19%2BsfnnMv8ITJfIdIlP5C8EneTR6K4qyNFdVRjydDOzsif36MTYe5ZacfWb98RuoTRfXzXDr99mE2BSPrkvjL1DUy7TjiHfrkjOhV5Tmgny07rZFtFWbnZWcp3m2Z2td9bWe5kWxkiVVqDy7MMHYHJM%2Fv%2Fg4%2BnJvup8B6kr6LxELz8ls4BUFVi2D5PN2RtFoJP5TJQ5KPJypP1o%2FphIgkTMexqVMP%2Fqo3l9aB6hox1Q%2B3B6qH1dop%2BUoMkQJr86spk%2BvfV7MA1EiTOKEu0cRYlODi6lNfK8JsLYjYXriyhuR3GLurwdN9oRbXuiFYXUgzVj9nz1yj8AAAD%2F%2FwEAAP%2F%2FGbRb4ooEAAA%3D IP173.233.137.44:0
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST28b1Rd90%2Fa3%2BXWBqNiwQHjBAiTizB%2BPHTdIFSGkiihJ1BYisUFv3nvjPDyeN3rvjceJuoiohMoCyVnBcnKcNALKn34AJDRlgyIWMYsqC8KHQGKN7FgyXGnm3vvOXZx7zv3sML8gLnJ6vvW%2B2pNJQhfDult7fVumXBWmtnG%2F5rl1d7m2LdNmY7k2mPx0%2F6bnhnX3jdptwbpq0Xc91%2FVcr7YmtYjVYHGKQmZP2l697dYbft0LGxjo%2F%2FYmd2CoA96%2FIDcg%2Bfh%2FO78%2BhWQV0t6Pq8J0rcrefLeXJ9QqjT4%2F%2BSDtpqpI0ZuXsXYQpyezaSgzJuSrK1DpyWwDqP7RZANEckyc5x6i9GRGE1H%2F%2BJJplECkiPh1FP0KIqkgaQWmHkLyMwIwjo1NpL3HG0oXdPcSpRN0TK79%2FRdkMSbX%2FngJae%2F7lUQOavdUklupUoNBXEIOKshOhSx%2FBrvnQBbPwOynkJwg7ZWQ%2FPy1IBQeb3lsgQnqLTRCFizQFm0suCLw%2FBb1mR80p9JIWUHGFRIxBDUO8sknHeSxgzxz0OPnNRq2Y9dtxVEcBEsNxlgQMBYuNXnIg8ZS7CJnE%2B5D2GwIlgzB9D4yvY%2BuPDgLb0DnP8PslDDcgbEEfV6iEASFISgoQSEJCktQ9MtjnhjflI95YvLIm2V%2FloNypGznkB4r2xEpOcwuyIsTzZzrv32Orjiv%2BU1G3WZIwzhaanms1WgF7WajSf1m7DZ9P4KRJaS5Mt10b2LgWwfI5NkLtxHRCiapwOQN0PwV0GLU8l3QnVFjycVe%2BoNVWovUdqW1u3XbB1clMnsNdtc5TC7Iy1Pzbl5vQrDTW19%2BsfnnMv8ITJfIdIlP5C8EneTR6K4qyNFdVRjydDOzsif36MTYe5ZacfWb98RuoTRfXzXDr99mE2BSPrkvjL1DUy7TjiHfrkjOhV5Tmgny07rZFtFWbnZWcp3m2Z2td9bWe5kWxkiVVqDy7MMHYHJM%2Fv%2Fg4%2BnJvup8B6kr6LxELz8ls4BUFVi2D5PN2RtFoJP5TJQ5KPJypP1o%2FphIgkTMexqVMP%2Fqo3l9aB6hox1Q%2B3B6qH1dop%2BUoMkQJr86spk%2BvfV7MA1EiTOKEu0cRYlODi6lNfK8JsLYjYXriyhuR3GLurwdN9oRbXuiFYXUgzVj9nz1yj8AAAD%2F%2FwEAAP%2F%2FGbRb4ooEAAA%3D HTTP/1.1
Host: nudgeworry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=35e1d71c-cea1-45c3-a7a4-0e3127a2c236:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 30 Jan 2023 04:13:54 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4a00003d63ee2e138f80a2df4df3cd55
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash5a8c7d643345c758c0a3783247673240 1e1a992fd5791306b0c08c374c1183f1dd4bc014 b39ebd5c6d18a8c27756a62119d34ed6f0269751c89ed7a9ba9069ed11f10b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B39EBD5C6D18A8C27756A62119D34ED6F0269751C89ED7A9BA9069ED11F10B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9011
Expires: Mon, 30 Jan 2023 06:44:05 GMT
Date: Mon, 30 Jan 2023 04:13:54 GMT
Connection: keep-alive
|
|
| cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg | 45.133.44.10 | 200 OK | 25 kB |
URL HTTP/2cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg IP45.133.44.10:0 ASN#39572 DataWeb Global Group B.V.
File typeJPEG image data, baseline, precision 8, 320x50, components 3\012- data Hashd465d02b90e928dfd9d9846e102a9dac 22f7333777bec813bd9a7b870913a2b79b6d2fe4 e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd
GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:54 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Wed, 01 Feb 2023 04:13:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash0a9c125ef0e28bf4751b00ca93aa28ad f7384adf25808b86900fdd5b33444d55eb729ce1 4803bb0ce4643c2f8b4e2d0375143ec17c670053e2b019d4de38da87a2723f5a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4803BB0CE4643C2F8B4E2D0375143EC17C670053E2B019D4DE38DA87A2723F5A"
Last-Modified: Sun, 29 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7668
Expires: Mon, 30 Jan 2023 06:21:42 GMT
Date: Mon, 30 Jan 2023 04:13:54 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe3b8a8bc98172e8a530326f7d16570cd 4555b6600b5d18b4e5850a756fb47ead0e5c486e 12061f433c479a860c65363d2243aba95ad34ac6664e84c5c5ed9a2d8c343f8c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12061F433C479A860C65363D2243ABA95AD34AC6664E84C5C5ED9A2D8C343F8C"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10384
Expires: Mon, 30 Jan 2023 07:06:58 GMT
Date: Mon, 30 Jan 2023 04:13:54 GMT
Connection: keep-alive
|
|
| cdn.creative-bars1.com/sb/ssp/sweep/social-box/white-small/img/close.png | 172.64.166.9 | 200 OK | 6.0 kB |
URL HTTP/2cdn.creative-bars1.com/sb/ssp/sweep/social-box/white-small/img/close.png IP172.64.166.9:0
File typePNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data Hashc489ce2c491a22ee37a55e26a92dfd73 2fa588ab09e94dd902e5bd24b48f98ad1949c9d6 1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/ssp/sweep/social-box/white-small/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:54 GMT
content-type: image/png
content-length: 5982
last-modified: Tue, 21 Sep 2021 12:02:03 GMT
etag: "6149c9bb-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6531762
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MoyN0pZ%2Fi0bctxQOpZwGvjbzohfFvIvu1bY8X2ZGssNrIb8SYyD59yKgPTEVNHFFu8a%2Bsux3HApOf8rzWjKoZZuphGzZlBAHcrihltmKA5ZWSNzP5Yx%2BuNggcdwcIyJP2UG%2Fr4tZo49D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791760b0e898772f-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| friendshipmale.com/sfp.js | 172.64.202.23 | 200 OK | 60 kB |
URL HTTP/2friendshipmale.com/sfp.js IP172.64.202.23:0
File typeUnicode text, UTF-8 text, with very long lines (65529), with no line terminators Hash21272aa4e3b9b310da84ebfc24df9854 14878be453532f4891a933073ed6fb21ad4a0f4e a764527a0dd6ec5371978e961eb1a701b57c31705047e414eed716838f3b822e
Analyzer | Verdict | Alert | fortinet | Malware | |
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:53 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 05e6f3289f1bda9a2a30d3e97ec55293
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Mon, 30 Jan 2023 04:13:53 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GPJ4Tlg93Jv8X%2B5KL0RBCe70ZvQwq%2FrJBWSKHdu6w3ia3PkQCKa8aGuxqDt8nIkRAmAAbayaNMjDfH2ZJFj7ZHHyNMQASl49K6P%2FIyrwSkLPT84iXNoZqvsuRX%2BI2ddYFlNqr%2BA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791760a7ca7f8891-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.76.226 | 200 OK | 345 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe3b8a8bc98172e8a530326f7d16570cd 4555b6600b5d18b4e5850a756fb47ead0e5c486e 12061f433c479a860c65363d2243aba95ad34ac6664e84c5c5ed9a2d8c343f8c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12061F433C479A860C65363D2243ABA95AD34AC6664E84C5C5ED9A2D8C343F8C"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10384
Expires: Mon, 30 Jan 2023 07:06:58 GMT
Date: Mon, 30 Jan 2023 04:13:54 GMT
Connection: keep-alive
|
|
| 5zl0vdkw4mdl.n4.adsco.re/ | 38.132.109.186 | 200 OK | 0 B |
URL HTTP/1.15zl0vdkw4mdl.n4.adsco.re/ IP38.132.109.186:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 5zl0vdkw4mdl.n4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:13:54 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:32:42 GMT
Connection: close
ETag: "5b5f2f9a-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash75bf326700e29b1b06e57fb96ee2b064 4f979f28905b65637a058cd44be6c25bb51a42e4 385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:13:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash75bf326700e29b1b06e57fb96ee2b064 4f979f28905b65637a058cd44be6c25bb51a42e4 385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:13:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdn.creative-bars1.com/sb/ssp/sweep/social-box/white-small/css/animate.css | 172.64.166.9 | 200 OK | 5.3 kB |
URL HTTP/2cdn.creative-bars1.com/sb/ssp/sweep/social-box/white-small/css/animate.css IP172.64.166.9:0
Hashec374f7b9a67d0bcf4aff4311d794b1d 6e1987e3691ec35f52a6e9ea106b6e2f9e6d0135 a3c2fac9cd208fa8e4d07f8e3feb8fb6545b3fca6d17d3f5f418d276b3f89e53
GET /sb/ssp/sweep/social-box/white-small/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:54 GMT
content-type: text/css
last-modified: Tue, 21 Sep 2021 12:02:02 GMT
etag: W/"6149c9ba-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 258347
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OFCFcpulUeOYjPogLzMNg9KF%2B0UXnF10WCFVLKgHHfP6Rorc0hTaaP%2FR%2Fp04iSHJtTdzzXojxKbC2gJ5qKXohAsNKtGJ8lEao9fJrLqQrWA0b39o3DVHzUwCRGrK06PMK1vzfWuG2up%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791760b0c884772f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 1.2 kB |
URL HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:0
Hashd75f2169c6cb283b21fbe23b36126ee4 192fdf8aafccd8a59b3d79e9ed6c2869e6e2aa60 9fa59701ed1829fc2f2c17ca796fba887c9a90f939c3313b3833adbfab748f87
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 04:13:54 GMT
date: Mon, 30 Jan 2023 04:13:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashdb3290a85d0ba4da27406ae9636aa618 4c69da45eddd66a1e26fce5562fc45eda7005309 19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:13:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdn.creative-bars1.com/sb/ssp/sweep/social-box/white-small/js/script.js | 172.64.166.9 | 200 OK | 784 B |
URL HTTP/2cdn.creative-bars1.com/sb/ssp/sweep/social-box/white-small/js/script.js IP172.64.166.9:0
Hashd36b6ecf2f764ab5835c38e521b5b8a3 d9b72c433168632fb8413eb7ff3d086807bfeb76 ffe5a1ccfdb30967cdc77cb4f36af66433628d76e48f4b811179aa6722bc78d8
GET /sb/ssp/sweep/social-box/white-small/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:54 GMT
content-type: application/javascript
last-modified: Tue, 21 Sep 2021 12:02:04 GMT
etag: W/"6149c9bc-306"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 258346
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xltfKDFG5dCbFjiRMyHPcSlkq4EvcfXVmMdc6ULDJ4v22aDBdSa8b6slE2Oa0jWoA%2Bo%2F4VTHc3b7SyojnUdh4dCKyXlv7QfEBj5ePi4hJrvGPWbk33mkkn4hipDtbERvHZKC7bLi2cq1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791760b158da772f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 13:09:06 GMT
expires: Wed, 24 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 486289
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashdb3290a85d0ba4da27406ae9636aa618 4c69da45eddd66a1e26fce5562fc45eda7005309 19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:13:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashdb3290a85d0ba4da27406ae9636aa618 4c69da45eddd66a1e26fce5562fc45eda7005309 19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:13:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 22315
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| nudgeworry.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzW8cxRPtSfK7%2FHJARFw4IPbAASS8mc%2F9SJAiQkgUEWwrCVjignq6e9bNzk6Punt21lYOFpFQOCCtT3Acv7VjAeEjfwASmnBBFgcvh8gHzB%2BBxBnteqWFkmaqql8dXr1Xn%2B0Vp8RFQU%2FW31fbMk3p5ajpNl7fkBlXpWms3m94btO92tiQWSu82hjNfnp4xXOjpvtG45ZgfXXZdz3X9VyvcVNqkajR5TkKmT%2Fpes2u2wz9pheFGOn%2F9qZwYKgDPjwllyD59H%2Bbvz6FZDWywY83hOlblb%2F57qBIqVUaQ374QdbPVJlhsCwT7SDJDhfTUGZKyFfnoLLDxQZQw%2F3ZBojllDjPPcTZ4YIm4uHBGdM4hcgQ84sohzVEWkPSGkw9hOTHBGAcq2vIBo9XlS7p1hlKZ%2BiUXPj7L8hySi788RKywffXUzlq3FNpYaXKDEZJBTmqIXs18uIZ7LYDWT4Ds59CcoJsUEHyk9eCSHi87bEVJqi3EkYsWKFtGq64IvD8NvWZH7Tm0khZQyY1UjEGNQ6K2ScdFImDIncw4CcNGnUT120ncRIEnZAxFgSMRZ0Wj3gQdhIXBZtxH8PmY7B0DKZ3kOsd9OXucXQJuvgZZrOC4Q6MJRjyCqUgKA1BSQlKSVBagnJYHfDU%2BKZ6zFNTxN4i%2B4scVBNle3v0QNmeyMhefkpenGnmXPztc%2FTFScNvMeq2IholcaftsXbYDrqtsEX9VuK2fD%2BGkRWkOTffdHtm4Fu7yOXxC7cQ0xomrcHkJdDiFdBy0vZd0M1J2HGxnf1gldYis31p7VbTDsFVhdxegN1y9tJT8vLcvCsXWxDs6NqXX6z9eZV%2FBKYr5LrCJ%2FIXgl76aHJXlWT%2FrioNebqWWzmQ23Rm7D1LrTj%2FzXtiq1Sa375hxl%2B%2FzWbArHxyXxh7h2ZcZj1Dvr0uORf6ptJMkJ9umw0Rrxdm83qhsyK%2Fs%2F7OzduDXAtjpMpqUHn84QMwOSX%2Ff%2FDx%2FGRfdb6D1DV0UWFQHJFFQKoaLN%2BByZfsjSLQ6XImzh2URTXRfrx8TCVBKpY9jSuYf%2FXxst4zj9DTDqh9OD%2FUoa4wTCvQdAxTnJ%2FYXB9d%2Bz2YB%2BLUmcSpdvbjVKe7Z9IaedKIvFB04k6bcR4Lxr22H3QC1%2FU5D9td4XVhzZQ9v3HuHwAAAP%2F%2FAQAA%2F%2F8NvNUEigQAAA%3D%3D | 173.233.137.44 | 200 OK | 7 B |
URL HTTP/1.1nudgeworry.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSzW8cxRPtSfK7%2FHJARFw4IPbAASS8mc%2F9SJAiQkgUEWwrCVjignq6e9bNzk6Punt21lYOFpFQOCCtT3Acv7VjAeEjfwASmnBBFgcvh8gHzB%2BBxBnteqWFkmaqql8dXr1Xn%2B0Vp8RFQU%2FW31fbMk3p5ajpNl7fkBlXpWms3m94btO92tiQWSu82hjNfnp4xXOjpvtG45ZgfXXZdz3X9VyvcVNqkajR5TkKmT%2Fpes2u2wz9pheFGOn%2F9qZwYKgDPjwllyD59H%2Bbvz6FZDWywY83hOlblb%2F57qBIqVUaQ374QdbPVJlhsCwT7SDJDhfTUGZKyFfnoLLDxQZQw%2F3ZBojllDjPPcTZ4YIm4uHBGdM4hcgQ84sohzVEWkPSGkw9hOTHBGAcq2vIBo9XlS7p1hlKZ%2BiUXPj7L8hySi788RKywffXUzlq3FNpYaXKDEZJBTmqIXs18uIZ7LYDWT4Ds59CcoJsUEHyk9eCSHi87bEVJqi3EkYsWKFtGq64IvD8NvWZH7Tm0khZQyY1UjEGNQ6K2ScdFImDIncw4CcNGnUT120ncRIEnZAxFgSMRZ0Wj3gQdhIXBZtxH8PmY7B0DKZ3kOsd9OXucXQJuvgZZrOC4Q6MJRjyCqUgKA1BSQlKSVBagnJYHfDU%2BKZ6zFNTxN4i%2B4scVBNle3v0QNmeyMhefkpenGnmXPztc%2FTFScNvMeq2IholcaftsXbYDrqtsEX9VuK2fD%2BGkRWkOTffdHtm4Fu7yOXxC7cQ0xomrcHkJdDiFdBy0vZd0M1J2HGxnf1gldYis31p7VbTDsFVhdxegN1y9tJT8vLcvCsXWxDs6NqXX6z9eZV%2FBKYr5LrCJ%2FIXgl76aHJXlWT%2FrioNebqWWzmQ23Rm7D1LrTj%2FzXtiq1Sa375hxl%2B%2FzWbArHxyXxh7h2ZcZj1Dvr0uORf6ptJMkJ9umw0Rrxdm83qhsyK%2Fs%2F7OzduDXAtjpMpqUHn84QMwOSX%2Ff%2FDx%2FGRfdb6D1DV0UWFQHJFFQKoaLN%2BByZfsjSLQ6XImzh2URTXRfrx8TCVBKpY9jSuYf%2FXxst4zj9DTDqh9OD%2FUoa4wTCvQdAxTnJ%2FYXB9d%2Bz2YB%2BLUmcSpdvbjVKe7Z9IaedKIvFB04k6bcR4Lxr22H3QC1%2FU5D9td4XVhzZQ9v3HuHwAAAP%2F%2FAQAA%2F%2F8NvNUEigQAAA%3D%3D IP173.233.137.44:0
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSzW8cxRPtSfK7%2FHJARFw4IPbAASS8mc%2F9SJAiQkgUEWwrCVjignq6e9bNzk6Punt21lYOFpFQOCCtT3Acv7VjAeEjfwASmnBBFgcvh8gHzB%2BBxBnteqWFkmaqql8dXr1Xn%2B0Vp8RFQU%2FW31fbMk3p5ajpNl7fkBlXpWms3m94btO92tiQWSu82hjNfnp4xXOjpvtG45ZgfXXZdz3X9VyvcVNqkajR5TkKmT%2Fpes2u2wz9pheFGOn%2F9qZwYKgDPjwllyD59H%2Bbvz6FZDWywY83hOlblb%2F57qBIqVUaQ374QdbPVJlhsCwT7SDJDhfTUGZKyFfnoLLDxQZQw%2F3ZBojllDjPPcTZ4YIm4uHBGdM4hcgQ84sohzVEWkPSGkw9hOTHBGAcq2vIBo9XlS7p1hlKZ%2BiUXPj7L8hySi788RKywffXUzlq3FNpYaXKDEZJBTmqIXs18uIZ7LYDWT4Ds59CcoJsUEHyk9eCSHi87bEVJqi3EkYsWKFtGq64IvD8NvWZH7Tm0khZQyY1UjEGNQ6K2ScdFImDIncw4CcNGnUT120ncRIEnZAxFgSMRZ0Wj3gQdhIXBZtxH8PmY7B0DKZ3kOsd9OXucXQJuvgZZrOC4Q6MJRjyCqUgKA1BSQlKSVBagnJYHfDU%2BKZ6zFNTxN4i%2B4scVBNle3v0QNmeyMhefkpenGnmXPztc%2FTFScNvMeq2IholcaftsXbYDrqtsEX9VuK2fD%2BGkRWkOTffdHtm4Fu7yOXxC7cQ0xomrcHkJdDiFdBy0vZd0M1J2HGxnf1gldYis31p7VbTDsFVhdxegN1y9tJT8vLcvCsXWxDs6NqXX6z9eZV%2FBKYr5LrCJ%2FIXgl76aHJXlWT%2FrioNebqWWzmQ23Rm7D1LrTj%2FzXtiq1Sa375hxl%2B%2FzWbArHxyXxh7h2ZcZj1Dvr0uORf6ptJMkJ9umw0Rrxdm83qhsyK%2Fs%2F7OzduDXAtjpMpqUHn84QMwOSX%2Ff%2FDx%2FGRfdb6D1DV0UWFQHJFFQKoaLN%2BByZfsjSLQ6XImzh2URTXRfrx8TCVBKpY9jSuYf%2FXxst4zj9DTDqh9OD%2FUoa4wTCvQdAxTnJ%2FYXB9d%2Bz2YB%2BLUmcSpdvbjVKe7Z9IaedKIvFB04k6bcR4Lxr22H3QC1%2FU5D9td4XVhzZQ9v3HuHwAAAP%2F%2FAQAA%2F%2F8NvNUEigQAAA%3D%3D HTTP/1.1
Host: nudgeworry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=35e1d71c-cea1-45c3-a7a4-0e3127a2c236:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 30 Jan 2023 04:13:55 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7c8de280851852f53dd2953dfc602d16
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.creative-bars1.com/sb/ssp/sweep/social-box/white-small/css/style.css | 172.64.166.9 | 200 OK | 1.2 kB |
URL HTTP/2cdn.creative-bars1.com/sb/ssp/sweep/social-box/white-small/css/style.css IP172.64.166.9:0
Hash1bed82ebdb05730c31638e0c1499e840 2692d51c58a5316d5d20dcfac3f75ea7abc241ca 3844f52ea7c4f8b7419bbeb52704cfbbf7b4bbbf3514578f3c7f0090e2a50cca
GET /sb/ssp/sweep/social-box/white-small/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:54 GMT
content-type: text/css
last-modified: Mon, 24 Jan 2022 10:39:40 GMT
etag: W/"61ee81ec-123b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vnvb7Q4RbMCWBbG%2BLw1oPhvrcZL31j3r0z3okwP4wsvEMU57m6VATYeu8i%2BKVU5cnBmwzlMXAZTSraGEca5C7E6ZkVxG8e%2F%2B9UDwV3Xc3miVRHa1YiuojNEc3GyLNTsj7nlyv1YiXg8w"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791760b0d885772f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| nudgeworry.com/pixel/sbs?c=1 | 173.233.137.44 | 200 OK | 0 B |
URL HTTP/1.1nudgeworry.com/pixel/sbs?c=1 IP173.233.137.44:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /pixel/sbs?c=1 HTTP/1.1
Host: nudgeworry.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=35e1d71c-cea1-45c3-a7a4-0e3127a2c236:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 30 Jan 2023 04:13:55 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| 5zl0vdkw4mdl.s4.adsco.re/ | 185.200.116.90 | 200 OK | 0 B |
URL HTTP/1.15zl0vdkw4mdl.s4.adsco.re/ IP185.200.116.90:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: 5zl0vdkw4mdl.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:13:55 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
|
|
| get.geojs.io/v1/ip/geo.js | 104.26.1.100 | 200 OK | 0 B |
URL HTTP/2get.geojs.io/v1/ip/geo.js IP104.26.1.100:0
GET /v1/ip/geo.js HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:52 GMT
content-type: application/javascript; charset=utf-8
x-request-id: 7aad5e12a84e401d99c7721a1526fde7-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=19JFrkd3YWdKZf%2Bb5jjsqc7bcBzJPm3b%2BoGmgZ4RfUCMQILV8IRPzVfoDqKVRTMmiatv7YhnlNKpZwVrl6kj3VBYej0AAUwiSFoINgTmsDkfSRrjHUGO4ql2LmsZzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791760a36986b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.cloudflare.com/cdn-cgi/trace | 104.16.124.96 | 200 OK | 0 B |
URL HTTP/2www.cloudflare.com/cdn-cgi/trace IP104.16.124.96:0
GET /cdn-cgi/trace HTTP/1.1
Host: www.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:53 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 791760a7aaf2b4f4-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.barscreative1.com/sb/au/29/a4/96/29a4965e1015f036b834d9da1d4a5e6c/1632399618.html | 45.133.44.3 | 200 OK | 0 B |
URL HTTP/2cdn.barscreative1.com/sb/au/29/a4/96/29a4965e1015f036b834d9da1d4a5e6c/1632399618.html IP45.133.44.3:0 ASN#39572 DataWeb Global Group B.V.
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /sb/au/29/a4/96/29a4965e1015f036b834d9da1d4a5e6c/1632399618.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:54 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Thu, 23 Sep 2021 12:20:22 GMT
etag: W/"614c7106-563"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Mon, 30 Jan 2023 05:13:54 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/ssp/sweep/social-box/white-small/js/jquery.min.js | 172.64.166.9 | 200 OK | 0 B |
URL HTTP/2cdn.creative-bars1.com/sb/ssp/sweep/social-box/white-small/js/jquery.min.js IP172.64.166.9:0
GET /sb/ssp/sweep/social-box/white-small/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:54 GMT
content-type: application/javascript
last-modified: Tue, 21 Sep 2021 12:02:04 GMT
etag: W/"6149c9bc-1499c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6531762
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ffd6nVsne4jtw05WzK3dC5CfFUYb31mAVyx5nFuEBfNxojKA%2F1TdyRDEvxF3xaBYW1ZI3zX%2B%2Bg3OixOPSGw4z2uITi58RfNkGcwIoWJwLIkGsi2NsVTO3BIWaDWfJVD9Mdco4RuWQub6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791760b0f89a772f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.torrentkitty.lol/search/tags/search/NTR-013/page/9 | 188.114.96.1 | 200 OK | 0 B |
URL HTTP/2www.torrentkitty.lol/search/tags/search/NTR-013/page/9 IP188.114.96.1:0
GET /search/tags/search/NTR-013/page/9 HTTP/1.1
Host: www.torrentkitty.lol
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:52 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: max-age=14400, must-revalidate
pragma: no-cache
cf-cache-status: MISS
last-modified: Mon, 30 Jan 2023 04:13:52 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8fGHaBjp%2FdDXEmoQuGuJr8XLxfkDX9A3KZWKMKuKEeNaYUKGSTaVbxKuFxuDNskqhRM%2BJGlejD22cqIfH%2FeXCbmWQCGqvuXcvr60jUxb9jVYn20kyAhT%2BPCgGbkn3UZKr2gUL4nJ3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7917609c6e7bb50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| secure.statcounter.com/counter/counter.js | 104.20.218.77 | 200 OK | 0 B |
URL HTTP/2secure.statcounter.com/counter/counter.js IP104.20.218.77:0
GET /counter/counter.js HTTP/1.1
Host: secure.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:13:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 27 Jan 2023 16:43:55 GMT
etag: W/"63d3ff4b-aa70"
expires: Mon, 30 Jan 2023 06:37:02 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 34611
server: cloudflare
cf-ray: 791760a7199bb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|