firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 18:15:03 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pHuqY3mI76pfegCGyXPf5GExomkv-8soZsZMCrEsx6-tmX3lYSlAkw==
Age: 79
easyrobuxhacknohumanverification201.blogspot.pt/?m=1
142.250.74.161302 Moved Temporarily 201 B URL HTTP/1.1 easyrobuxhacknohumanverification201.blogspot.pt/?m=1
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 25700d82ddd27386131fad65641d61d0
30807967a68a4a9971e0648c7e11e84c1234af9f
c497def1b7bb0144cfe7ecb6871e845a09c4461d48d925bb62f3aba3b07dcab0
Analyzer Verdict Alert fortinet Phishing
GET /?m=1 HTTP/1.1
Host: easyrobuxhacknohumanverification201.blogspot.pt
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Location: http://easyrobuxhacknohumanverification201.blogspot.com/?m=1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 25 Sep 2022 18:16:22 GMT
Expires: Sun, 25 Sep 2022 18:16:22 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 201
Server: GSE
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15880
Expires: Sun, 25 Sep 2022 22:41:02 GMT
Date: Sun, 25 Sep 2022 18:16:22 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fsQPMZWTYRMP1t0Xej73-sq2Ea9xhyvfqbDGdT3HGGoolnR0lG2_Hg==
age: 49268
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 18:16:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
easyrobuxhacknohumanverification201.blogspot.com/?m=1
142.250.74.161301 Moved Permanently 200 B URL HTTP/1.1 easyrobuxhacknohumanverification201.blogspot.com/?m=1
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash ed328b994d167f27ad625ff4fa2959a3
83dc32dfb837eb5b6bfe6eb39be396a5d78f7ce5
b750181d85a4faf97772e194da6dc3944ed03972d79fd095bd5135934b7751dc
Analyzer Verdict Alert fortinet Phishing
GET /?m=1 HTTP/1.1
Host: easyrobuxhacknohumanverification201.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://easyrobuxhacknohumanverification201.blogspot.com/?m=1
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Sun, 25 Sep 2022 18:16:22 GMT
Expires: Sun, 25 Sep 2022 18:16:22 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 200
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash dde08ad6d0d33c288ad70cce74175fbb
de2d638241098268be6c8fc01b748fde38f1dd96
164fa18665323f6274da69ec244a59054ac277e17c5792a04eb2907758e0e586
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 25 Sep 2022 18:04:17 GMT
Expires: Sun, 25 Sep 2022 18:09:45 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: yjWFHo_joySeq0XjDqqfNvDdzWeoMZLv0PBoCzDWOOr3DRO6XDcBQg==
Age: 726
easyrobuxhacknohumanverification201.blogspot.com/?m=1
142.250.74.161200 OK 17 kB URL HTTP/2 easyrobuxhacknohumanverification201.blogspot.com/?m=1
IP 142.250.74.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14233)
Hash e857e5f4419cf02a3c023eadf757f184
bb13e789c7fc91d3c526c14cd7eefa1b86a96b3b
672102d1baf975cb55a1ee7222eaedcd050530be0f3e3ae74ebc58a0c2c26045
Analyzer Verdict Alert fortinet Phishing
GET /?m=1 HTTP/1.1
Host: easyrobuxhacknohumanverification201.blogspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Sun, 25 Sep 2022 18:16:23 GMT
date: Sun, 25 Sep 2022 18:16:23 GMT
cache-control: private, max-age=0
last-modified: Sun, 25 Sep 2022 01:06:00 GMT
etag: W/"1ea770f2081ebea42699467ae7079a858a15d23f339bda59064dbdfc957abfe7"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 17119
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash dde08ad6d0d33c288ad70cce74175fbb
de2d638241098268be6c8fc01b748fde38f1dd96
164fa18665323f6274da69ec244a59054ac277e17c5792a04eb2907758e0e586
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1cff4f56be1b217fd676fff4644d9673
5ba2a68749b8a9a9d8a3863b18e8f896400a7660
8984cd65d1108783e8a05574eafe5471cc98f807e314ef009d104b9739413946
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3168
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:23 GMT
Last-Modified: Sun, 25 Sep 2022 17:23:36 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8ad273d44e16b262dd13d7a735dee561
ef2815dd68f77b286afeda14269229abe16a76cd
e3edfaf05d066b5e786e19d9d860d197826abf7a08a9d89fe584631033ba0d39
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/1416043673-widgets.js
216.58.207.201200 OK 57 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1416043673-widgets.js
IP 216.58.207.201:0
File type ASCII text, with very long lines (2221)
Hash c6aef9cbd2abf926a23970b70f8a24c2
78972b4f41a7d2580c383da41e3a472c4cfc647a
111111066b8f3fddcd24cedce8c4e8b93a1d9e9b8e3f5f2959172da5adda14b6
GET /static/v1/widgets/1416043673-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://easyrobuxhacknohumanverification201.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56913
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 04:10:30 GMT
expires: Mon, 25 Sep 2023 04:10:30 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 21 Sep 2022 02:52:11 GMT
content-type: text/javascript
age: 50753
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 4cdb6412ba8d6132d016fb85be767491
9bec9fb573bb45df9014f6a06ccef5486d890b48
cc2c42fa746aa6cbeaa05a8b47732c7ae6447feb86017269f9f1a9f2e127dcda
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 25 Sep 2022 18:16:23 GMT
Last-Modified: Sun, 25 Sep 2022 17:56:32 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JP9a32TBD3oMNFYonDM4JokwRSzcLONPPzwG5-1uRMkkkqDeloRuLg==
Age: 1192
www.urban-vpn.com/assets/roblox-ext-demo.png
143.204.55.123200 OK 25 kB URL HTTP/2 www.urban-vpn.com/assets/roblox-ext-demo.png
IP 143.204.55.123:0
File type PNG image data, 420 x 448, 8-bit colormap, non-interlaced\012- data
Hash 4ab909abe33ec05df061f566acdf8ee0
9c1ec9ae71b485fd6b921ead2b775fd69d851caa
a0858b79ea4cca46c2ab4b04fc4aab2a33f61911ef0fce73e2b95e37a2aa904d
GET /assets/roblox-ext-demo.png HTTP/1.1
Host: www.urban-vpn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://easyrobuxhacknohumanverification201.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 24923
server: nginx/1.23.1
last-modified: Wed, 14 Sep 2022 08:05:34 GMT
accept-ranges: bytes
date: Sun, 25 Sep 2022 18:09:44 GMT
etag: "63218b4e-615b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _qlJyr9lyVmkhpJc2_bk33qnk5pSZ6vdE84u6pgK1uSJEYPYjhziJQ==
age: 399
X-Firefox-Spdy: h2
cdn-prod.netnanny.com/assets/blogimages/Roblox-Desktop-Account-Info.png
54.230.111.117200 OK 44 kB URL HTTP/2 cdn-prod.netnanny.com/assets/blogimages/Roblox-Desktop-Account-Info.png
IP 54.230.111.117:0
File type PNG image data, 766 x 534, 8-bit/color RGB, non-interlaced\012- data
Hash ffc0e3fc8f55280f45d3cadfdc494882
931d161e0e35354dbcb176f4a9d8a69b1385d61f
d0cdc7f59c1beed933b408c32d2428ffb6d96bc54e0540b6450f51761028d3f4
GET /assets/blogimages/Roblox-Desktop-Account-Info.png HTTP/1.1
Host: cdn-prod.netnanny.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://easyrobuxhacknohumanverification201.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 44420
last-modified: Fri, 22 Nov 2019 17:37:15 GMT
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 02:20:49 GMT
expires: Thu, 01 Jan 2099 07:00:00 GMT
etag: "ffc0e3fc8f55280f45d3cadfdc494882"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cuEzcl45lhcfjbNGZ0I50TmZGIE7fRQgb9FrJKkirTT7J3AWduif2Q==
age: 57335
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1cff4f56be1b217fd676fff4644d9673
5ba2a68749b8a9a9d8a3863b18e8f896400a7660
8984cd65d1108783e8a05574eafe5471cc98f807e314ef009d104b9739413946
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
media.tenor.com/images/872266588f2bec3b66fed3cb93d16dd1/tenor.gif
142.250.74.42200 OK 61 kB URL HTTP/2 media.tenor.com/images/872266588f2bec3b66fed3cb93d16dd1/tenor.gif
IP 142.250.74.42:0
File type GIF image data, version 89a, 220 x 345\012- data
Hash 872266588f2bec3b66fed3cb93d16dd1
c699183552d6fb6d22a2a874bc2d56d23c3758dd
1a9c3b3a00a02d788464af6a23f75b939cc5d36fde8a4a20da59d620a03330f5
GET /images/872266588f2bec3b66fed3cb93d16dd1/tenor.gif HTTP/1.1
Host: media.tenor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://easyrobuxhacknohumanverification201.blogspot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-tenor-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="media-tenor-team"
report-to: {"group":"media-tenor-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-tenor-team"}]}
content-length: 61175
date: Sun, 25 Sep 2022 18:16:23 GMT
expires: Mon, 26 Sep 2022 18:16:23 GMT
cache-control: public, max-age=86400
last-modified: Tue, 13 Oct 2020 10:59:58 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 978ed1605aeee37508c3bbf8436c0bbc
9ced2eff2ae3243b600c95ad68b2e5139b4908d4
0d22fcb95043c5c127af0091521c6673158365ec17be0ea042a011ad18367bef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4eb388ba7e8bcf0424f47943fae71a8f
7d84595bb80e4195d24efe64d8d3863a3ecbb37b
b1b5f765333ba8dbb5c8a3d215621d5eec35c5b55ad4e52db30d442c27900857
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B1B5F765333BA8DBB5C8A3D215621D5EEC35C5B55AD4E52DB30D442C27900857"
Last-Modified: Fri, 23 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11056
Expires: Sun, 25 Sep 2022 21:20:39 GMT
Date: Sun, 25 Sep 2022 18:16:23 GMT
Connection: keep-alive
push.services.mozilla.com/
34.208.34.131101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.34.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Qe8jmmcpo9a36/IN3zSz7g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RtOB9m9n71hAXb8DJ7X2k5VzruY=
ocsp.pki.goog/s/gts1p5/1EpVtZKsCXY
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/1EpVtZKsCXY
IP 142.250.74.3:0
Hash 6e5577f6d5d5f592b59c4a00beaaa2c3
6f441641619ac55ae79d38b21ec9eee0288fec1c
74d3098f6eb279ff7cdbc84fafdd7b6bcafb8b1c1072db50459b399e505c9709
POST /s/gts1p5/1EpVtZKsCXY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.robuxtip.org/images/gamebaglogo.png
172.67.220.56200 OK 3.3 kB URL HTTP/2 play.robuxtip.org/images/gamebaglogo.png
IP 172.67.220.56:0
File type PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Hash e84f0caa809a15b2aaa9cb93bbe6669a
22a330ad580aaa6b2232307a87b981adc7fbf38f
1f98c982fd0c9b5e6af138a4cb160f509bda9fcc7fa0a9463fa6cf11513c151f
GET /images/gamebaglogo.png HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: image/png
content-length: 3340
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: "5d9ca488-d0c"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U2CPJyOqnlV01YI6nG4e7%2Bzd0hFsTAbSlb7%2Ba8RUdQPZdcDFTU9SasFKaKIWGtQvHZg1PC6KwTxEAV9mafHg1Tj3iGX3LbAgR7Px%2BsvOcyBC4TPTLVUsa0Ro0AzHeNpEYgY8XA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d5fbdb4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/header.png
172.67.220.56200 OK 131 kB URL HTTP/2 play.robuxtip.org/images/header.png
IP 172.67.220.56:0
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 131 kB (131285 bytes)
Hash 35e93538f31d67876a2cb38bf94279d8
49bf97732e9bffb5371ad60d024901b09d83651b
95c1de9315834de2ff3608a2dc048a6aedc273e665f9b54eb956523a81fc91df
GET /images/header.png HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: image/png
content-length: 131285
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: "5d9ca488-200d5"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ij9Qe6CDoxsM%2FlVvmwcX7%2B%2F20ytcyzmZAt2ma214eJbSP4%2BdgmFELombSSsXQI1rniBE1ruzb3MWZB7h7AHwyPhobJJdTkRofGSfE5LOZPPFS6vqidCEUk9VJGXVHdBXqLoJuQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d5fc7b4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/1EpVtZKsCXY
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/1EpVtZKsCXY
IP 142.250.74.3:0
Hash 6e5577f6d5d5f592b59c4a00beaaa2c3
6f441641619ac55ae79d38b21ec9eee0288fec1c
74d3098f6eb279ff7cdbc84fafdd7b6bcafb8b1c1072db50459b399e505c9709
POST /s/gts1p5/1EpVtZKsCXY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:23 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.robuxtip.org/images/ft-1.png
172.67.220.56200 OK 3.3 kB URL HTTP/2 play.robuxtip.org/images/ft-1.png
IP 172.67.220.56:0
File type PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Hash e84f0caa809a15b2aaa9cb93bbe6669a
22a330ad580aaa6b2232307a87b981adc7fbf38f
1f98c982fd0c9b5e6af138a4cb160f509bda9fcc7fa0a9463fa6cf11513c151f
GET /images/ft-1.png HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: image/png
content-length: 3340
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: "5d9ca488-d0c"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f1Ghmgub117v59MWCP2cqpGYaeOM94BRwVVZme8xtSJK5tDwWsS%2FCALgtSWn%2FMwL24oDf8VUQ%2BgKlAgKZT1emIqCQO%2FtK2EvAOq4MspFGaXjFAzKLBMncBfvo%2BWe6AH%2FXSK69Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02dd86ab4fd-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css
104.17.24.14200 OK 1.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (3201), with no line terminators
Hash 8e09ceb5490863a66cd2e83ca3d7e524
35e3d074516ec70c508d748f7ae01827bc0c28ba
cccbb374fd4cb6dcbac9df64456b49cb11530e7bafdac6c6c7e67ff2ed350db9
GET /ajax/libs/jquery-modal/0.9.1/jquery.modal.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:24 GMT
content-type: text/css; charset=utf-8
content-length: 1541
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-c81"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9571154
expires: Fri, 15 Sep 2023 18:16:24 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hrh6Jv%2BuwtQ4OhYTloSsJsIo7HZ5gtwzvbJGO2w2nKcVtcMOdcrC01I%2BP3hw2CVFXObeDnSv2%2BAM7Kuiq7FGaZyLKgyd6Y5SV7%2F59Xvl9ayFe76t0gNdhlL%2BnCg1lLjdtWj95blO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7505c02e1d68b505-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/js-base64@3.7.2/base64.min.js
151.101.85.229200 OK 2.1 kB URL HTTP/2 cdn.jsdelivr.net/npm/js-base64@3.7.2/base64.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (4802)
Hash 18914b05d782cca37716837edf14fa8a
c563d127cf718dd86389fdd007b4c51b6bb58dc3
4bded663a5f9ccaa1eb7c1692c1c7df756a7d0e037d19466979fb90c56fbefdf
GET /npm/js-base64@3.7.2/base64.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.7.2
x-jsd-version-type: version
etag: W/"1405-lMmxLE0z8/TnsipvbhQg5ckAA8Q"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 25 Sep 2022 18:16:24 GMT
age: 5322563
x-served-by: cache-fra19165-FRA, cache-bma1630-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2068
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash a0036bd311037c8d341007ac84536f14
539ac83cb40de9bc1dd18203939ae4b887f77e06
d85d38abd837e4370efef68bb853a3569333055a6a26aa5a87d7ad029b35c86e
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 18:16:24 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "1B20286FAB4155709E13C2A2E14A357942983441"
Expires: Mon, 26 Sep 2022 05:00:00 GMT
Last-Modified: Sun, 25 Sep 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1301
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7505c02e5ad91c0a-OSL
play.robuxtip.org/images/bootstrap.min.css
172.67.220.56200 OK 48 kB URL HTTP/2 play.robuxtip.org/images/bootstrap.min.css
IP 172.67.220.56:0
File type ASCII text, with very long lines (65371)
Hash af2ba040b381fe1dea5666d317643e1a
da9d9c8b0a59ceca8445fad50aa8b2b9cc18fa2f
1442bb9c36659881e147b16a21973e31cd2ac2fea074015e50bd5b64fba9aa06
GET /images/bootstrap.min.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: text/css
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-1d990"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w8X%2FXIkMwfi2hRzZo6p1PIhvxC9XIYqCoeiPGHSUB2LEI5i3xAgIJJ5UnHFjTQnWmWMnYQ84ENmj%2BGcad%2FiXtd6ENYcV1xNWTuw5KEkoOKiIc%2FrHtmp3G5MccPl3tJJRrmnA%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d4f9eb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/animate.css
172.67.220.56200 OK 59 kB URL HTTP/2 play.robuxtip.org/images/animate.css
IP 172.67.220.56:0
File type ASCII text, with very long lines (53418)
Hash 4d9af4aa6ebd3ec5d273689ca09d4201
46ae41157309b13420c0e49b5cc90987ddffb4be
15bc3746993e6ca074e66432c8a1fc4fe752a7d66f86d3a36206fed1fa61deb5
GET /images/animate.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=68796
etag: W/"5d9ca488-10cbc"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=obeHrGIpR8LyQL%2BMRDGRKYYvfosgdCmeK7cebl4NYz7kCaHtzvbTt3MsffzOpNyEsX8AEokV7fYAN60oGP%2BPV%2FWL1Z2OW6HG6DidWLHsrmAM0exRL6%2BXM%2BdnqCafMlZ9RKW10A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d4fa0b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 650b6e71248092b05b7f35e8703da4fb
a675c71ea7c50c6a3576eb9626630b0445016d32
122a0ec921f9b9a6b845d4f75df0a4d950f2ce3c34a79cecc67d80962255c1ca
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5607
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:24 GMT
Last-Modified: Sun, 25 Sep 2022 16:42:57 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.robuxtip.org/images/style.css
172.67.220.56200 OK 8.0 kB URL HTTP/2 play.robuxtip.org/images/style.css
IP 172.67.220.56:0
File type ASCII text, with very long lines (40387), with no line terminators
Hash 403a456649ccaebf2cb7de1758f5b01d
a08a05bb13c884812184eb0eb6c5e2e416e88c2a
91b9231ca1a722914e56a7b7ecce9319e610c4f2c138863cd363004e582c0427
GET /images/style.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=50839
etag: W/"5d9ca488-c697"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=02zWs%2BN9Jex%2BFt5c%2FasC7aLQL4NfEcIKQsf1hErqMAqbfAB4VYkbhKwifhhfjzXl4s80iLE496X4KvtQ%2FryYSscSNgJha9%2BCIfwx9s%2BYAQMrqG%2F3DfVBbT9YRCLxXsc%2F2JhD6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d5facb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
play.robuxtip.org/images/magnific-popup.css
172.67.220.56200 OK 20 kB URL HTTP/2 play.robuxtip.org/images/magnific-popup.css
IP 172.67.220.56:0
File type ASCII text, with very long lines (6066), with no line terminators
Hash 82757d0f9deb4ce360315c6bad4f586f
7335040748ffabfa2b433bf41dee0d8e3bcf62af
0d24324bdc36dd8b4ac93019fad759eb57fc5f10768a12d1383c25706bbabf67
GET /images/magnific-popup.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=7946
etag: W/"5d9ca488-1f0a"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PXEYE%2BgXc5lkQInTf%2F1TXDdfwjHwx8kLOP9djy5eLhvHEgWEiYN4F5B2VSHvdVubDuCRixALpVWBA3BvRDmzFLpC%2FdNtnZ%2FB5cICRduOdhbfk3T9QrOjx5ShQoFBoTKiIxWGlA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d5fa6b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/sweetalert2.min.css
172.67.220.56200 OK 20 kB URL HTTP/2 play.robuxtip.org/images/sweetalert2.min.css
IP 172.67.220.56:0
File type ASCII text, with very long lines (13988), with no line terminators
Hash b3198013d707db7f1ce68677d0fedeac
67335ef45249b5c2f98cca77938d6436053ecbef
8deaacfd0ba182bd36e6ba97814da800e9c7b4e5d5b82527dbbfeae179bc6596
GET /images/sweetalert2.min.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: text/css
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-36a4"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XL7o48C0q%2F8qoqy8bEOG7rKVUitWSiPSU3aYcLSO8V7SW7ecgSBgipvNN1tosBAqlvqCfobl6kyroyxWPEzkepfpOSo1ai963mL3ySu9FManlwMjj5Ynuu8Cgo4SHQJKj1HPWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d4fa2b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/jquery-3.2.1.js
172.67.220.56200 OK 60 kB URL HTTP/2 play.robuxtip.org/images/jquery-3.2.1.js
IP 172.67.220.56:0
File type ASCII text, with very long lines (1237)
Hash c45cfe17e1d7af01744fd153a71ea47c
e85cb1a7977eef641631396c80620d561d876948
6a435eb684072eb53535412fe4634a69e236e5d3b01e13a0e7cd7780e3b1d87a
Analyzer Verdict Alert fortinet Phishing
GET /images/jquery-3.2.1.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=268039
etag: W/"5d9ca488-41707"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=seTz7Wn4vVL4PqG0kuMe9erZDAkWRr8N%2BMrJ%2FGA2R7ShTR3xhd0GZ7Xh1ALR%2FRnKrXtw%2F4AFsavzAff2zuINZ5ljLOEJcwOw53RAcNeC4eXDrjv9GJeFN6UUwlDPt3t8WK0zXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02dd86bb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 18:16:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f038194067eb0a255d9b9a1a70503e3b
63f77e7ab6971b42bc28dc3aed1a783bc2993efe
299e978fbedd998983ca109f8f7998bce61d822803925aefa78e91d7d9987f73
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "299E978FBEDD998983CA109F8F7998BCE61D822803925AEFA78E91D7D9987F73"
Last-Modified: Fri, 23 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17765
Expires: Sun, 25 Sep 2022 23:12:29 GMT
Date: Sun, 25 Sep 2022 18:16:24 GMT
Connection: keep-alive
play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
172.67.220.56200 OK 24 kB URL HTTP/2 play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
IP 172.67.220.56:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators
Hash 74d5d521c12f6ace81efac992845cf4f
5b1f5498e7ff7c74e478adb983d53e86531b1894
23a3e33998d8a9c4073fee2dd26e569fdf081386dd981c84fec72a53989d3d76
Analyzer Verdict Alert fortinet Phishing
GET /index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://easyrobuxhacknohumanverification201.blogspot.com/
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: text/html
last-modified: Mon, 27 Jun 2022 12:44:26 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CphHvG2dIK7aT6zhJTyzLirX2PzOjKqMqobWSe0vghgqr1pakqtXPUiKYrRjmdQ9wq04G%2B5R7yupnj%2B%2B8s19KWt%2BLF5VfCtihJZ5HlS%2Bz4t28Vu2tzRo6RuyGZ%2BH0idDDYiiZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02c7e7ab4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
s4.histats.com/stats/0.php?4275781&@f16&@g1&@h1&@i3&@j1664129782906&@k5230202&@l8&@mRoblox%20Robux%20Generator%202022&@n0roblox-abs.js=anisacintia|template=Fastink.xml|anisacintia=easyrobuxhacknohumanverification201.blogspot.com|easyrobuxhacknohumanverification201.blogspot.com=direct|ref=direct|tags=roblox-abs.js&@ohttps%3A%2F%2Feasyrobuxhacknohumanverification201.blogspot.com%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-50489610&@b3:1664129783&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fplay.robuxtip.org%2Findex.html%3Ftrack%3DWyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd&@w
192.99.8.28200 OK 52 B URL HTTP/1.1 s4.histats.com/stats/0.php?4275781&@f16&@g1&@h1&@i3&@j1664129782906&@k5230202&@l8&@mRoblox%20Robux%20Generator%202022&@n0roblox-abs.js=anisacintia|template=Fastink.xml|anisacintia=easyrobuxhacknohumanverification201.blogspot.com|easyrobuxhacknohumanverification201.blogspot.com=direct|ref=direct|tags=roblox-abs.js&@ohttps%3A%2F%2Feasyrobuxhacknohumanverification201.blogspot.com%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-50489610&@b3:1664129783&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fplay.robuxtip.org%2Findex.html%3Ftrack%3DWyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd&@w
IP 192.99.8.28:0
File type ASCII text, with no line terminators
Hash 41c226596091f84b790b5822c054435f
cbde1e93b055b1f8c89b1c81d7f314706e93627e
2151dd5f81da260bbe8001fc3e93366832a0736e744b07278656d089088910e7
GET /stats/0.php?4275781&@f16&@g1&@h1&@i3&@j1664129782906&@k5230202&@l8&@mRoblox%20Robux%20Generator%202022&@n0roblox-abs.js=anisacintia|template=Fastink.xml|anisacintia=easyrobuxhacknohumanverification201.blogspot.com|easyrobuxhacknohumanverification201.blogspot.com=direct|ref=direct|tags=roblox-abs.js&@ohttps%3A%2F%2Feasyrobuxhacknohumanverification201.blogspot.com%2F&@q0&@r0&@s0&@ten-US&@u1280&@b1:-50489610&@b3:1664129783&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fplay.robuxtip.org%2Findex.html%3Ftrack%3DWyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd&@w HTTP/1.1
Host: s4.histats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 18:16:24 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 52
Connection: close
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8166
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 18:16:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8166
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 18:16:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8166
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 18:16:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8166
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 18:16:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8166
Expires: Sun, 25 Sep 2022 20:32:31 GMT
Date: Sun, 25 Sep 2022 18:16:25 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfdacc8edea3c24dad020d7e9c11b3f4
2b6e37596e88b62f288dc8e8c937fd904fae28d5
338a44f3bcc01bdd197f037dd8f8bf58a18dea00127465488efe76fb72a6fdff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c48523c-250d-4030-8145-14c8967dc600.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8914
x-amzn-requestid: 8cfdc32e-f04a-4fd6-a1f1-632934a682fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EUHqJoAMF7MQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7881-14a6d8ef126409964607e0aa;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UP8Ktoa49M4gkA0AC8fe4ZXCxwdG141eTjWqJl1-r1LxUBWbF7VN3w==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 02:07:30 GMT
age: 58135
etag: "2b6e37596e88b62f288dc8e8c937fd904fae28d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714af732a9aa1db2b13ffb62810fd532
358e74de395352a9529ff1c17856daf8900888c5
1d2035cfcd283560ebe8494f9438e52f8d96cd092dd41cb0eb899a3f905c1e05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6199
x-amzn-requestid: d26f22d9-4e9b-4764-8c96-2e1c7ce36340
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--OKHowoAMFbQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7727-7adb7c4925e6e50e13889544;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -JaJ9jow4tE4glN4heN-Flr5hTc-RoOQPD_pqYGr7qOJmxlVqjZ_kw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 02:07:32 GMT
etag: "358e74de395352a9529ff1c17856daf8900888c5"
content-type: image/jpeg
age: 58133
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 09:27:50 GMT
age: 31715
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d59e1bbd58ff8c5fe5faecb58149601
ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd
c16a2adaeaabbe45801ab5d12ceaeab587b525b4959933f53a9c8dcdb12aec68
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b4f012b-e562-4fc6-aab8-ec2ffc328b6d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7757
x-amzn-requestid: 3092c81c-f703-403a-b718-e18f035f9464
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YpOJQFUWIAMF7Pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6326c3d4-565f665c7e34294079703141;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 07:08:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YlFbyfeDkfgOjobhVsNM5OZHDgorRGPiyHLrR4s6s4GeAsP9poz1UA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 06:52:03 GMT
age: 41062
etag: "ad7f5ed3a5f6923a0b1bb093bbc0f31a44fd0bcd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 00:52:19 GMT
age: 62646
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9773faaac4deac40b96cd0802e974f36
db601663fa6ee5564eddaf8d3d84c7b04bf3871c
40e7a573f510ff29db04b3fbfacde2ad6ecd67b4c0be30034e057654c86408a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5305
x-amzn-requestid: df7ba218-d20c-4389-8895-affd870ad15f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JqKGtHoAMFcJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d230d-1854a5420f7091316aa4f211;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: v37Rjs_OtmFd6UKau0Flv_J6GAWTe0UdA8hXaDmmn6SmLXQbEHeBVQ==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 05:19:29 GMT
age: 46616
etag: "db601663fa6ee5564eddaf8d3d84c7b04bf3871c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
play.robuxtip.org/images/main.js
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/main.js
IP 172.67.220.56:0
Analyzer Verdict Alert fortinet Phishing
GET /images/main.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=38451
etag: W/"5d9ca488-9633"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VM0zXHP9kMs4C0J1VmCSRE44rmv4wbFkkambRFN3XE3HXhQR1lwyKBoSdah6qAQ%2FX0r0qgu9BfzQkR252UgLrOZnusr19HuqsrAPVq3WUlDVEkQClJ2FTSHLeJ6VmiRtTubQMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02df89fb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
mtevor.com/cluster-v2/roblox-abs.js
172.96.187.226200 OK 0 B URL HTTP/2 mtevor.com/cluster-v2/roblox-abs.js
IP 172.96.187.226:0
GET /cluster-v2/roblox-abs.js HTTP/1.1
Host: mtevor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://easyrobuxhacknohumanverification201.blogspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-powered-by: PHP/5.6.40
content-type: application/javascript
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
content-encoding: br
vary: Accept-Encoding
date: Sun, 25 Sep 2022 18:16:23 GMT
server: LiteSpeed
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
play.robuxtip.org/images/font-awesome.min.css
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/font-awesome.min.css
IP 172.67.220.56:0
GET /images/font-awesome.min.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: text/css
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-6c3d"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ECsuLHaUY6zQ%2BG3MLY9WUAS20%2Bqz%2FX%2Fg6boafjkvoQB5EF8o%2FPD0ni2VF8ihRyOHrbWYUeiPfFoEyBhUdz5Nv1h3dGwUSldEBGgT8zvmcB6tpP7H1SyI8P54vSdOUOhgoOFVGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d4f92b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/jquery.countto.js
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/jquery.countto.js
IP 172.67.220.56:0
Analyzer Verdict Alert fortinet Phishing
GET /images/jquery.countto.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3761
etag: W/"5d9ca488-eb1"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ah60bOxBt4BGC7XgSYya1t6MzmL4l%2BurvU7%2Bmsf6KnNDQ8iPc%2FS8dxY9H4zXhLB9JKkOdf3eCQAF0Ztq8Tf5ii2S8PNtppSf5fFAmL%2FPi0vizl2CbmEAgZwL11eNcR1Lg1u6SA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02dd870b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/com.js
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/com.js
IP 172.67.220.56:0
Analyzer Verdict Alert fortinet Phishing
GET /images/com.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=17963
etag: W/"5d9ca488-462b"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1pjDAzChNGyFNqfBaiw4pMDz%2FVWhbLsK%2F5K3aa1xGpnVS0AmqnURLsje8CzqTtRPaEvf5fyF%2Bt1kLf8AbWykgSAkRAcK0LWZOY4UYXJ0c7zDinSkTiUCeQ0qacoI70NyzC457Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02dd874b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/custom-css.css
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/custom-css.css
IP 172.67.220.56:0
GET /images/custom-css.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=1790
etag: W/"5d9ca488-6fe"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F%2FoaMqmMyari1%2Fape9p96xqGZ6J9r%2FdhA5ZxwnjtWKr309ivFNV4WpwsQsQyVKbJr%2BOHxy9lSeELjWElu6C6VTeVT4lYvlnuB%2F00jRCjfvxfjzbebulPpZusBlsQiNw4%2BKLx8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d5fafb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/jquery-ui.min.js
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/jquery-ui.min.js
IP 172.67.220.56:0
Analyzer Verdict Alert fortinet Phishing
GET /images/jquery-ui.min.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: application/javascript
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-30da8"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ecyyijsEKR1lC0lRhS6Fd9ZZxsaJWjBX5P1tO7LCIqIP67eqWgK9MJjob0%2FiacjZECqaBiJLTUKVweam2J1lG2nMnIm%2BDWxVDFP750gV5AnjeAXZbE24XwSam1SPrbA3%2B6vNUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02dd86db4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/sweetalert2.min.js
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/sweetalert2.min.js
IP 172.67.220.56:0
Analyzer Verdict Alert fortinet Phishing
GET /images/sweetalert2.min.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: application/javascript
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-4f51"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N0RFqzkP7P6EXvxLCXFRgg2RToUht5Xp86IfLdEIIK%2B1AswnSr%2Bx4qvY%2BlwzL%2BlaKZGGlIhA6Mr%2F9IV1cEeOqRX49Wcmtd6cd4RcsWFA7OMhTSr%2B7HayMvCJ6vJd5CvKyf7RRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02dd872b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/scripts.js
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/scripts.js
IP 172.67.220.56:0
Analyzer Verdict Alert fortinet Phishing
GET /images/scripts.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:24 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=225
etag: W/"5d9ca488-e1"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 240776
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SO2q9VRQNXvv%2FK4Lv88GfAy%2F%2BTQb7AD%2BuIdcahi8HlPi0FXRixb440FnGJFAZ65YRFX0JcnYYY7E9iew%2FR7plP5N2uMr1FC3oDDRk2KbtgJF96gz6Ohte8isH8%2Fe8vr54Ni3dA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02e08bbb4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/css8a7c8a7c8a7c.css?family=Open+Sans:300,400,700
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/css8a7c8a7c8a7c.css?family=Open+Sans:300,400,700
IP 172.67.220.56:0
GET /images/css8a7c8a7c8a7c.css?family=Open+Sans:300,400,700 HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=773
etag: W/"5d9ca488-305"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s5rniVrqSvKltWdX2an%2FDRd%2BAy%2FF1w4UjtMOXxA2S%2FVADl%2FWFEcyfZXNeJ23VLM%2FMXgkv%2FApuyW6ttSP7jg1YLHtJRipvBjwU6r9%2Fd9EHFQbmbz42HWtLM99wYzB8c50kNlScg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d4f91b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/fancyselect.css
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/fancyselect.css
IP 172.67.220.56:0
GET /images/fancyselect.css HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=4253
etag: W/"5d9ca488-109d"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tjimlm0gpHZ5D8M6lLojtfdNYmzXAENTYfsKww%2FnDmi7XtMouq2u5RxzFmHf8BkQdsmsEhl90X3EzoifQk8ZNik%2Bgy8Xpwj9JbUcIAIAT3RK6DZjUtmSvQhlTEYzG3LE9nBj0A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02d5fa9b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/validator.min.js
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/validator.min.js
IP 172.67.220.56:0
Analyzer Verdict Alert fortinet Phishing
GET /images/validator.min.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: application/javascript
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-17a7"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VxWPe24WzLasdP8ABiKTGPVaq7CbUqGWzaKOwadfYMJNabJVknS3JdH6WCEFtTmzU7GxvmfUSKxaAYXSZLsJiEAFGDxHK5rzZs8sqbVn3mUqHX4PQbHWmDM9ZYHUELc41u3mCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02dd873b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/form-scripts.js
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/form-scripts.js
IP 172.67.220.56:0
Analyzer Verdict Alert fortinet Phishing
GET /images/form-scripts.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1469
etag: W/"5d9ca488-5bd"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7IrVrfKZdjup1QhfEixm3NnQnu5PrCQBF69XJ18iTPHf8IR0L07Qb7bn2Hap0CJvM9N9WjB%2BK04cb8ePpMxEHBfHXqPijxnlnOXTFScfIjzfAJoRabZ2%2Bvq9PBcpMA%2FL4PPv1Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02dd876b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/jquery.magnific-popup.min.js
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/jquery.magnific-popup.min.js
IP 172.67.220.56:0
Analyzer Verdict Alert fortinet Phishing
GET /images/jquery.magnific-popup.min.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: application/javascript
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
etag: W/"5d9ca488-5297"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1hZZzA70MxfSLO8ngGocdyHCAqLu3kmxZJ%2B1LmOeasw%2Bm39p7OR7s60%2Fq0gVAR%2BotF4pd5n2qEWa8J%2FN%2BjzAph2%2F373yLz0EnJ2XicDg89NnBRrIYEQNdIsF788XGKdnsu1P%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02de885b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
play.robuxtip.org/images/sticky.js
172.67.220.56200 OK 0 B URL HTTP/2 play.robuxtip.org/images/sticky.js
IP 172.67.220.56:0
Analyzer Verdict Alert fortinet Phishing
GET /images/sticky.js HTTP/1.1
Host: play.robuxtip.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://play.robuxtip.org/index.html?track=WyJyb2Jsb3gtYWJzLmpzIiwiYW5pc2FjaW50aWEiLCJ0ZW1wbGF0ZSIsIkZhc3RpbmsueG1sIiwiYW5pc2FjaW50aWEiLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJlYXN5cm9idXhoYWNrbm9odW1hbnZlcmlmaWNhdGlvbjIwMS5ibG9nc3BvdC5jb20iLCJkaXJlY3QiLCJyZWYiLCJkaXJlY3QiLCJ0YWdzIiwicm9ibG94LWFicy5qcyJd
Cookie: HstCfa4275781=1664119545049; HstCla4275781=1664124552704; HstCmu4275781=1664119545049; HstPn4275781=1; HstPt4275781=7; HstCnv4275781=2; HstCns4275781=3; c_ref_4275781=https%3A%2F%2Ffreerobuxhacknohumanverificationyo3.blogspot.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 25 Sep 2022 18:16:23 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=20845
etag: W/"5d9ca488-516d"
last-modified: Tue, 08 Oct 2019 15:00:24 GMT
cache-control: max-age=31536000
cf-cache-status: HIT
age: 727175
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XQ84Nsi2oM0VNv3sk2Yhr5cgxnFmpzdPRhYZRLMaeLDjxoDHgKfiubzQi7MBxyi2QJzHPZF910bLN0RRW4V3K53XULvZZnzWknd3xHwhm1rGLonrYg36nwo%2FYUMONx%2FD%2BJ7GlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7505c02de891b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2