nya.iss.one/static/img/icons/nyaa/2_1.png
200 OK 2.5 kB URL GET HTTP/3 nya.iss.one/static/img/icons/nyaa/2_1.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type PNG image data, 80 x 28, 8-bit/color RGB, non-interlaced\012- data
Hash 9364b1a513e3bafa1d35a8af0bce3043
ab610b95f9349d2bbd056c08e21aeb71c7646282
d65604cecd9d1e3df0f8b2bfa10f011e3cc850fdbba6e4e18ad21bf1879fd0d9
GET /static/img/icons/nyaa/2_1.png HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: image/png
content-length: 2499
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: "5fd83edc-9c3"
expires: Tue, 06 Dec 2022 23:54:21 GMT
cache-control: max-age=2592000
pragma: public
age: 363436
ddg-cache-status: HIT
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gKe2eW8Bcvn9QFLd8bvhxvgKB2lu1QByDYLzHV2uVtunTSemzONcoKkG5QxVMN8%2F15SSVjfJ5QNfJlTwK7si%2BcwpEKA%2BH9PSxNa7U9CdkwQncIDQC1WkmTFXGIrG9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb188fb4ee-OSL
alt-svc: h3=":443"; ma=86400
nya.iss.one/static/img/icons/nyaa/1_4.png
200 OK 3.4 kB URL GET HTTP/3 nya.iss.one/static/img/icons/nyaa/1_4.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type PNG image data, 80 x 28, 8-bit/color RGB, non-interlaced\012- data
Hash 1299ebe95e03bf457c899314b388c3d3
5ebc6e6301f44cb4fbd3f433ee2e17c25da945f2
43daeb5d5966f7b9f24f4f2942dee3b5f3779f46cac9282d499fbab37c7bccfd
GET /static/img/icons/nyaa/1_4.png HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: image/png
content-length: 3421
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: "5fd83edc-d5d"
expires: Wed, 07 Dec 2022 00:10:23 GMT
cache-control: max-age=2592000
pragma: public
age: 104365
ddg-cache-status: HIT
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MdjYLYKOTC9zkFaHwU%2F31BidAl%2BNuaKzsnAEnbCSr7w%2BwBMoytKGKPbwygRTcwa67pp44qa2vmBuXhPjAkJl85%2FeCLdt3gEi6GNaDabBeDV09tq2AjO%2FnmL%2FXEoaZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb188db4ee-OSL
alt-svc: h3=":443"; ma=86400
nya.iss.one/static/img/icons/nyaa/3_3.png
200 OK 4.2 kB URL GET HTTP/3 nya.iss.one/static/img/icons/nyaa/3_3.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type PNG image data, 80 x 28, 8-bit/color RGB, non-interlaced\012- data
Hash 5cb4323598d132170b50062e7db54c6c
5f2ff97665f0ecc1796dd8dc32de0225a42008be
1fd77969a0443b165a65d19a55ed98d16ada7991a195d929a6810521148f8155
GET /static/img/icons/nyaa/3_3.png HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: image/png
content-length: 4154
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: "5fd83edc-103a"
expires: Tue, 06 Dec 2022 23:45:39 GMT
cache-control: max-age=2592000
pragma: public
age: 35926
ddg-cache-status: HIT
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ilzooMmP6QQWfkrX7O%2FNobyGMxeL3wBkQ%2FjxGimZsaMTNGk1QJ96ZEtilNeioSx73CdFlp9%2FYYRSGo2yCSNqQ1vyRBYcs5kEfe1Y%2FQ7UbyiurZ1OXN0VWwbapu5lgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb289db4ee-OSL
alt-svc: h3=":443"; ma=86400
nya.iss.one/static/img/icons/nyaa/3_1.png
200 OK 2.3 kB URL GET HTTP/3 nya.iss.one/static/img/icons/nyaa/3_1.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type PNG image data, 80 x 28, 8-bit/color RGB, non-interlaced\012- data
Hash e81c291144d0d14f9b3d6382d3cbb2e7
7e1ffae2593c55adfd2d8deb078ca873731ccd4e
fe5c808b35a60fc4feffa0e8dfe96815dfcfd19652292b0ed6499b6caf0a7b7c
GET /static/img/icons/nyaa/3_1.png HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: image/png
content-length: 2349
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: "5fd83edc-92d"
expires: Wed, 05 Jul 2023 02:11:01 GMT
cache-control: max-age=2592000
pragma: public
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: HIT
age: 363436
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1qTQdy1J7MYutv28IuNmaRMqt307Xu7hnO6Xc3geLK9cYjCf1040zUVt3g%2Bb2bKf43esfHql6BXQdn1fJTN%2FbwPBAb0dQ0ejD3zxPnUx0Q7uFyaTIKWa9YRRMZ1DUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb28a2b4ee-OSL
alt-svc: h3=":443"; ma=86400
nya.iss.one/static/img/icons/nyaa/1_2.png
200 OK 2.7 kB URL GET HTTP/3 nya.iss.one/static/img/icons/nyaa/1_2.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type PNG image data, 80 x 28, 8-bit/color RGB, non-interlaced\012- data
Hash b9320e21fe9090c950178d88ef1c4032
6911592dd8f58c6eef637307bd0c5a3d01678a7d
d52412ef3ed548934b57024f62c6d34d221a3eb25504d515bb860caf2f6f9447
GET /static/img/icons/nyaa/1_2.png HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: image/png
content-length: 2740
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: "5fd83edc-ab4"
expires: Tue, 06 Dec 2022 23:51:34 GMT
cache-control: max-age=2592000
pragma: public
age: 283838
ddg-cache-status: HIT
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: HIT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VS2x7kAlmDyamn8uVJikBt7dcl5PGPzLFjNXcRvqwz%2Fj%2Frq4bO0X4oNo9vQ4okhYIaeakyqWupF8WV4QPS1XEll2PwFWXN%2Fx7GJjFZ7h5g4Kx4%2FiP54f7dj5LsqUQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb28a5b4ee-OSL
alt-svc: h3=":443"; ma=86400
nya.iss.one/static/img/icons/nyaa/1_3.png
200 OK 2.8 kB URL GET HTTP/3 nya.iss.one/static/img/icons/nyaa/1_3.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type PNG image data, 80 x 28, 8-bit/color RGB, non-interlaced\012- data
Hash 1f59227c7d26c8d0c8464e9e358eae98
42534ef08139eea9c0bd78e61c1789dbd4b4f930
f64c08307d6af440cfd47635752a29c800b0730d30ae96d6c73a2000635fcdb5
GET /static/img/icons/nyaa/1_3.png HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: image/png
content-length: 2784
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: "5fd83edc-ae0"
iss-server: MSK4
expires: Sat, 02 Dec 2023 07:22:22 GMT
cache-control: max-age=2592000
iss-mirror: HIT
cf-cache-status: HIT
age: 1628732
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JWlmBLszM10KLeCFqvPryInPw2flUHLnJXP2w%2BP%2BiQjtHxOg6%2FZnp8GnSbhm8Al8FBSP28YMKGnRzTCG7YRA2GLQTljbZnG5pf3ratRpKrdKqarIJ7%2FI6Fm2EYtbkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb68d5b4ee-OSL
alt-svc: h3=":443"; ma=86400
nya.iss.one/static/img/icons/nyaa/4_4.png
200 OK 3.1 kB URL GET HTTP/3 nya.iss.one/static/img/icons/nyaa/4_4.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type PNG image data, 80 x 28, 8-bit/color RGB, non-interlaced\012- data
Hash caaf42658794fe565c73afe36a7f764e
d8d132a9a09ac00e9452504e84b98ebc27f38c5b
f1eb89cf7fc2249460dfc4223f43bbf5f81f3fcc0cebe7ad0c19e279ef925e46
GET /static/img/icons/nyaa/4_4.png HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: image/png
content-length: 3138
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: "5fd83edc-c42"
iss-server: MSK4
expires: Sun, 03 Sep 2023 02:25:13 GMT
cache-control: max-age=2592000
iss-mirror: HIT
cf-cache-status: HIT
age: 363436
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FFgkAtU1wwFmbHuXjAjE8oJnGgnCfvcavK3FHA3yJACt7oIeVjyb6RVirFOVfPzlmBW3TjmGWvNWCXMOMArr9zhfL6iYXILaGrojOsBRSbHBLRmiOBFF80twtm7sPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb68d4b4ee-OSL
alt-svc: h3=":443"; ma=86400
nya.iss.one/static/img/icons/nyaa/4_3.png
200 OK 2.8 kB URL GET HTTP/3 nya.iss.one/static/img/icons/nyaa/4_3.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type PNG image data, 80 x 28, 8-bit/color RGB, non-interlaced\012- data
Hash aeff28608ee9c354565146d1b5551ded
be171f129605d0a501024bb13af1280d3f5149a1
bbfc1ea672c34917786e1f0fdb2f2795ff8cd078ae6429848d627f4c230084d9
GET /static/img/icons/nyaa/4_3.png HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: image/png
content-length: 2800
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: "5fd83edc-af0"
iss-server: MSK4
expires: Thu, 02 Nov 2023 06:29:59 GMT
cache-control: max-age=2592000
iss-mirror: HIT
cf-cache-status: HIT
age: 2523200
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KxgzskYV9urSyjIkrw0BRrDUY1Ouo4x2oC%2FhIgFfeWrdFkZzxB30rWdSLm%2BDlKbSDtakYu0S%2Bf3w7sSqN%2Boq7OY62pKeCpfzfEGFK7%2FnVNFHNC1QnN1dfB9a1MuF0Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb68d6b4ee-OSL
alt-svc: h3=":443"; ma=86400
cdnjs.cloudflare.com/ajax/libs/bootstrap-select/1.12.2/css/bootstrap-select.min.css
200 OK 1.3 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/bootstrap-select/1.12.2/css/bootstrap-select.min.css
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (6433), with CRLF line terminators
Hash 1ce4ee141eba24cc4fceb5f670d5e9cc
14f64928b6d935d22ed2dba1cb1c4e0400ca5020
6a7e2ea8b9d52767e5afbc3453be31885e0f2633b63790dff754760949822c20
GET /ajax/libs/bootstrap-select/1.12.2/css/bootstrap-select.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: text/css; charset=utf-8
content-length: 1316
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d8e-19ff"
last-modified: Mon, 04 May 2020 16:06:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 305835
expires: Fri, 15 Nov 2024 14:38:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SO9UQSOjvoNoHI88tTCW3jX%2BHf%2BnEEpjpTLXqdNcKjgNdpc9kqDhMImStmXMAIICJa9DRlB7qAlM7GZckxgJCkkbInKh1WbrAvfIwe8cpHxQ82d9BGhf48YgPvT8b6pcx%2B8fWfrA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82c2e0bb7e9db518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js
200 OK 27 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32058)
Hash c9f5aeeca3ad37bf2aa006139b935f0a
1055018c28ab41087ef9ccefe411606893dabea2
87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 27277
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15283"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 38725
expires: Fri, 15 Nov 2024 14:38:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DUQuXSRKNZvbgebwmu3716gqRPVD5dplxr06J82mfkw8YQLut00rrUD%2Bgpqz8RSvDJkaw%2F7BqG6QoGMr2KmYo4Q9r4t%2BGihneQT8Mr4ddDYvzilkhwXSpRFoR4oyjJh5uSCOK4an"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82c2e0bb8eaeb518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.3.7/js/bootstrap.min.js
200 OK 8.7 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.3.7/js/bootstrap.min.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
GET /ajax/libs/twitter-bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 8722
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb04010-90b5"
last-modified: Mon, 04 May 2020 16:17:20 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 113160
expires: Fri, 15 Nov 2024 14:38:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3Wy6i%2BKqmGUlQgYnnip%2BLtvcc0mCGLaPXgUEEyM23DHQpxP2tvBTqvrYwNMJLGyMHx4PzAm145MXVOYJOYoAPkpTwPWl3faQXXQ8iI4tYLFe2hihCBOj4agDEmxcC6p3ykJzGRRK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82c2e0bb8eb1b518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
arc.io/widget.min.js
3.0 kB IP
File type ASCII text, with very long lines (7592)
Hash 446822c137b9c384eb46da198c92e02d
9b8c863733b198da05b211e63641d41372d463e0
3452322e2d0ec6baaacd880191a3cce53f75df82965dff9cc9350d9c1395f7c5
GET /widget.min.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 2950
date: Sun, 26 Nov 2023 14:13:09 GMT
last-modified: Fri, 03 Nov 2023 02:18:44 GMT
content-encoding: br
cache-control: public, max-age=3600, stale-while-revalidate=864000
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
etag: "65445884-b86"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a30105057fbcc8761b99df13f333a9ea.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: 0DiF34bKU95sqOppJfoLzVHNJC-d_LPPmtm7TSlTlaNNdhQCo4amLQ==
age: 1546
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/markdown-it/8.3.1/markdown-it.min.js
200 OK 29 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/markdown-it/8.3.1/markdown-it.min.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type exported SGML document, ASCII text, with very long lines (31988)
Hash 042c7d66511fa7b5d549c5e5340891a3
8c034bdf05505d9722fed03914e26081acd248e0
dd667265039efaa977a4ba3dd25ae446d00bae59e219d9dffff811a56d14424b
GET /ajax/libs/markdown-it/8.3.1/markdown-it.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 29311
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ed9-1a0a5"
last-modified: Mon, 04 May 2020 16:12:09 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1648125
expires: Fri, 15 Nov 2024 14:38:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TYW10WcRp%2B6fyYRm8d8am%2BGdEbdWlz6I4V6C%2FBN%2By3eJeQPi%2Bu2YlL1Q2g3rvIQSD0VAQfEXnrhbRimtzESZ17xNq%2BSjDA0JPIzLHN5f3KypXpvX8J6IMZIBR4rWFK%2Fuc5eJxPEE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82c2e0bb9eceb518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 5.6 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 38723
expires: Fri, 15 Nov 2024 14:38:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QtMUZvbKzFp%2BTp5%2F5Wo9Xbl3w3qZrITgvh6GQC%2FgH7uUoWaOx1WBmsXv%2Fz0cGHvjzugdkKNXtjqtOA2KW%2BIyUlv27nlH7cC3tXyq1oiqoF8go4WsNVg3nwCI4%2BQNmzzy7YOEuduP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82c2e0bbaed9b518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-121491107-4
200 OK 51 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-121491107-4
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (2213)
Hash 33eb2244c9f95e164391ea38da0376fb
514424b543b77e824f1aefb78ef12c928811ac59
4e171504edea6479889c91458992730ca7873e4e7e53ad02fd00d0a260639a9c
GET /gtag/js?id=UA-121491107-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 26 Nov 2023 14:38:55 GMT
expires: Sun, 26 Nov 2023 14:38:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 51441
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
nya.iss.one/static/js/bootstrap-select.min.js?t=1623304983
200 OK 12 kB URL GET HTTP/3 nya.iss.one/static/js/bootstrap-select.min.js?t=1623304983
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type ASCII text, with very long lines (2373)
Hash 124b169ff613632748725447796e94cf
6b5ddf2fda6ebd53dcbe04114b8fcc0d4509908b
ba20a8174b6d6769aba73f1a12261f31e66d121dd4450bfb4d0e9751a9d80a99
GET /static/js/bootstrap-select.min.js?t=1623304983 HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: application/javascript; charset=utf-8
last-modified: Thu, 10 Jun 2021 06:03:03 GMT
etag: W/"60c1ab17-ad8a"
expires: Tue, 06 Dec 2022 23:42:25 GMT
cache-control: max-age=2592000
pragma: public
age: 35926
ddg-cache-status: HIT
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: HIT
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DEK%2FkHKBfyNAGyiV%2FJP6aV8ePxgK9iW7y%2FOct4onnUYjVIDFgbdnFj1QNil0WQG6OVTC8sABtrMnX82Esn0ZW8Q5OKT0npLUiKObrXI7fJXw86OSbaoVp34myV%2Bxgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb1885b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
pl15361503.highwaycpmrevenue.com/06/44/85/0644850c2d3936796b9073aa979c8e13.js
200 OK 18 kB URL GET HTTP/1.1 pl15361503.highwaycpmrevenue.com/06/44/85/0644850c2d3936796b9073aa979c8e13.js
IP
Certificate IssuerLet's Encrypt
Subjecthighwaycpmrevenue.com
Fingerprint9D:FF:42:EE:4A:D3:B9:0D:98:3C:04:D2:D0:E8:5C:AC:00:A5:3A:0B
ValiditySat, 04 Nov 2023 13:43:20 GMT - Fri, 02 Feb 2024 13:43:19 GMT
File type ASCII text, with very long lines (43603), with no line terminators
Hash e1422fa662192ea94cfba429effdcfcb
de29b6a1e4bbd1aef9f3f2c8048e6475b1d59786
9f3255899b20df2654ba08271d7d6e66a35bb047165d9da17c55807c5adba1ca
GET /06/44/85/0644850c2d3936796b9073aa979c8e13.js HTTP/1.1
Host: pl15361503.highwaycpmrevenue.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:55 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7d8be799a493e406c130f4d54d5c9f14
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.r2m03.amazontrust.com/
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash 202e8c2fbcaca36c4320ef15b80456f4
e4d2370c6fc247f93ca68e5718618ddcf0a0ddb9
0638ce23f7fa1305977a402e0e8d8f612d002194da3efaa47c9d4e1a984144cb
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Sun, 26 Nov 2023 14:38:56 GMT
Last-Modified: Sun, 26 Nov 2023 13:50:15 GMT
Server: ECAcc (ska/F69C)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: f9-oW0Xjn9imGYgI8LTxAaRACJe3WRJSOymCDlSfVlMTOBpMiKI2Pw==
Age: 2922
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 417886
expires: Fri, 15 Nov 2024 14:38:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XnKpngq8TSivm2drOcowwgd9gOd26WtzGN66FoG2n0vHk0PlFTzc7Y5flWhEKV6JWb1Kt3x6jgYno9VMEUwnvujRjE5ZStMTdzvx98vcVQtTXKD%2BQYLhSYY9TzSiw3lfkgWKYq9s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82c2e0c1ad1cb518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 4cd01ec7e674f2863a497fa498c8bddd
20bc70ae0d3cddd3259be8bacd8b2f586ce50360
4f1ccd6fe29608045e8ba4e7c8d33697ab881d2578e947a0ffa970632b5f2eaa
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://nya.iss.one
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=eba6f61f-9329-428c-a1e7-fb69fe243efc:1:1; expires=Wed, 23 Nov 2033 14:38:56 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
analytics.iss.one/matomo.php?action_name=Browse%20%3A%3A%20Nyaa%20ISS&idsite=1&rec=1&r=845047&h=14&m=38&s=59&url=https%3A%2F%2Fnya.iss.one%2F&_id=6c6db07e9fd7be46&_idn=1&_refts=0&send_image=0&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=8GVeHC&pf_net=29&pf_srv=107&pf_tfr=43
204 No Content 0 B URL POST HTTP/3 analytics.iss.one/matomo.php?action_name=Browse%20%3A%3A%20Nyaa%20ISS&idsite=1&rec=1&r=845047&h=14&m=38&s=59&url=https%3A%2F%2Fnya.iss.one%2F&_id=6c6db07e9fd7be46&_idn=1&_refts=0&send_image=0&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=8GVeHC&pf_net=29&pf_srv=107&pf_tfr=43
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /matomo.php?action_name=Browse%20%3A%3A%20Nyaa%20ISS&idsite=1&rec=1&r=845047&h=14&m=38&s=59&url=https%3A%2F%2Fnya.iss.one%2F&_id=6c6db07e9fd7be46&_idn=1&_refts=0&send_image=0&pdf=1&qt=0&realp=0&wma=0&fla=0&java=0&ag=0&cookie=1&res=1280x1024&pv_id=8GVeHC&pf_net=29&pf_srv=107&pf_tfr=43 HTTP/1.1
Host: analytics.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/3 204 No Content
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.16
tk: N
access-control-allow-origin: null
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uLWdR0jm1fKP%2FEebKydq8vun9u0wFbC3w4f6JUHCQDZLGMlHlImS%2Fe7jFkIlbFwwUhp%2Fe3fjxzVAqioLW53IN%2BvBQLd83VG5KNuMji59jbiJojPF%2B3n%2F0UvaeXR0%2Fvye%2Fie8IQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c2e0c33a18b4ee-OSL
alt-svc: h3=":443"; ma=86400
static.arc.io/widget/js/widget-ui.js?99fec15f
200 OK 104 kB URL GET HTTP/2 static.arc.io/widget/js/widget-ui.js?99fec15f
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type Unicode text, UTF-8 text, with very long lines (41498)
Size 104 kB (104061 bytes)
Hash 23a99d65011e95c5785b5ccaf5678ff0
8ab90300c20f439f3beb520c4c53edca8c96cfe9
88d0bc2c0ac956732fe9678b69f58ad9fa588e106c5423b31640528fc357fe20
GET /widget/js/widget-ui.js?99fec15f HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"23a99d65011e95c5785b5ccaf5678ff0"
last-modified: Fri, 03 Nov 2023 02:19:09 GMT
x-amz-id-2: DQYqwS13WJABIsLQjSyJK5A+JoQ0ma7duOoj8vKUG/MHgNzm8/XxLhxoDlfU/hMm3PvwRxbXmZg=
x-amz-request-id: KH85MHXM60KZKJRJ
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2023 03:03:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7f62949e37ae13995ff46d6853755614
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.profitabledisplayformat.com/f0d0fb079869483c4c80e41c569f8fee/invoke.js
200 OK 11 kB URL GET HTTP/1.1 www.profitabledisplayformat.com/f0d0fb079869483c4c80e41c569f8fee/invoke.js
IP
Certificate IssuerLet's Encrypt
Subjectprofitabledisplayformat.com
Fingerprint5B:A6:07:BE:E3:18:84:64:F9:F4:E9:2D:E5:3E:B9:65:1E:32:63:42
ValiditySat, 28 Oct 2023 06:49:46 GMT - Fri, 26 Jan 2024 06:49:45 GMT
File type exported SGML document, ASCII text, with very long lines (29613), with no line terminators
Hash c10bd1ebb306adde5d0013d27ce5791f
d6c268fab1767382f0700983304ed24acbd96b86
5b75b46d3cba67275e1272ea1e2cd956e80eb5b373c004c8840650602b398bfc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /f0d0fb079869483c4c80e41c569f8fee/invoke.js HTTP/1.1
Host: www.profitabledisplayformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dbf571939878455fca1819f1d6caa6fa
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.profitabledisplayformat.com/ed9f816a8960244e6e0d6164b4a623c4/invoke.js
200 OK 11 kB URL GET HTTP/1.1 www.profitabledisplayformat.com/ed9f816a8960244e6e0d6164b4a623c4/invoke.js
IP
Certificate IssuerLet's Encrypt
Subjectprofitabledisplayformat.com
Fingerprint5B:A6:07:BE:E3:18:84:64:F9:F4:E9:2D:E5:3E:B9:65:1E:32:63:42
ValiditySat, 28 Oct 2023 06:49:46 GMT - Fri, 26 Jan 2024 06:49:45 GMT
File type exported SGML document, ASCII text, with very long lines (29595), with no line terminators
Hash 614d6b1a80c73b0f673a4b24c0dac212
b6ccacec3ce186d11de5c8877f7f74eb17d95bba
fe8fc5823946eb509b3910abea3ac58a1f9004486a5aa02cb440e0d06e3cbc6d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ed9f816a8960244e6e0d6164b4a623c4/invoke.js HTTP/1.1
Host: www.profitabledisplayformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: de69f7c049feda28b7d48f9b740dc6f1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
region1.analytics.google.com/g/collect?v=2&tid=G-L4Y7LNB70W>m=45je3b81v872355397&_p=1701009539478&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=371115631.1701009540&ul=en-us&sr=1280x1024&_eu=AAAI&_s=1&sid=1701009540&sct=1&seg=0&dl=https%3A%2F%2Fnya.iss.one%2F&dt=Browse%20%3A%3A%20Nyaa%20ISS&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2489
204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-L4Y7LNB70W>m=45je3b81v872355397&_p=1701009539478&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=371115631.1701009540&ul=en-us&sr=1280x1024&_eu=AAAI&_s=1&sid=1701009540&sct=1&seg=0&dl=https%3A%2F%2Fnya.iss.one%2F&dt=Browse%20%3A%3A%20Nyaa%20ISS&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2489
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-L4Y7LNB70W>m=45je3b81v872355397&_p=1701009539478&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=371115631.1701009540&ul=en-us&sr=1280x1024&_eu=AAAI&_s=1&sid=1701009540&sct=1&seg=0&dl=https%3A%2F%2Fnya.iss.one%2F&dt=Browse%20%3A%3A%20Nyaa%20ISS&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2489 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: null
date: Sun, 26 Nov 2023 14:38:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
punctuationceiling.com/watch.200124165232.js?key=f0d0fb079869483c4c80e41c569f8fee&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 punctuationceiling.com/watch.200124165232.js?key=f0d0fb079869483c4c80e41c569f8fee&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectpunctuationceiling.com
Fingerprint7C:35:2F:A1:EB:78:A9:21:91:06:A1:BB:DB:6E:61:CE:36:15:3E:A3
ValidityFri, 03 Nov 2023 10:11:23 GMT - Thu, 01 Feb 2024 10:11:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.200124165232.js?key=f0d0fb079869483c4c80e41c569f8fee&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1 HTTP/1.1
Host: punctuationceiling.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 26 Nov 2023 14:38:57 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nya.iss.one
Access-Control-Allow-Origin: https://nya.iss.one
Access-Control-Allow-Credentials: true
Location: https://punctuationceiling.com/watch.200124165232.js?key=f0d0fb079869483c4c80e41c569f8fee&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=469733747533c6a9a7f011eca7ff7ad851c32061105699a96f69086f7836ad6b24e82db18db507eaaed551b42921e0386985f97d9c218b587938ce3bf8ac783bfd8ddf1dc994d22ac8706aa115b9e3fd41768d8e2ec3e3ada5cbfc8d24507f&pst=1701009597&rmtc=t
Set-Cookie: u_pl=16071640; expires=Mon, 27 Nov 2023 14:38:57 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.WwyJpFIWUFe6p2_8aTh4pylABBcFjTqMyBvRESZDjEw; expires=Sun, 26 Nov 2023 14:39:57 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c4fc99c6eb575b4e58ba7b6804043afd
Strict-Transport-Security: max-age=0; includeSubdomains
partsfroveil.com/watch.1247525649179.js?key=ed9f816a8960244e6e0d6164b4a623c4&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 partsfroveil.com/watch.1247525649179.js?key=ed9f816a8960244e6e0d6164b4a623c4&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1
IP
Certificate IssuerLet's Encrypt
Subjectpartsfroveil.com
Fingerprint1A:0F:65:70:9A:78:CB:DC:43:DB:A5:39:56:3C:5D:04:F7:F6:1C:B0
ValidityFri, 03 Nov 2023 10:37:44 GMT - Thu, 01 Feb 2024 10:37:43 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1247525649179.js?key=ed9f816a8960244e6e0d6164b4a623c4&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1 HTTP/1.1
Host: partsfroveil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:57 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nya.iss.one
Access-Control-Allow-Origin: https://nya.iss.one
Access-Control-Allow-Credentials: true
Location: https://partsfroveil.com/watch.1247525649179.js?key=ed9f816a8960244e6e0d6164b4a623c4&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=e49a86d8c41a054c80dfb4edbf2e7c595acd83ef65412a1e7d7ef814315b953a1e802ef603c2499e6fbe26ef618a95774d529d4889f534c6cf767b2cab3dbf07ad4c293f8bea0ff86f6be8475087910faf63535dfc0a4c5bde06dfa260143241c5&pst=1701009597&rmtc=t
Set-Cookie: u_pl=15761530; expires=Mon, 27 Nov 2023 14:38:57 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.Z6aGPsHgwAzdFI41j0NK_nvNMYF1xGsjrrlqzOQQoMk; expires=Sun, 26 Nov 2023 14:39:57 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6d4affa76af164d44c302474e3fedc54
Strict-Transport-Security: max-age=0; includeSubdomains
punctuationceiling.com/watch.200124165232.js?key=f0d0fb079869483c4c80e41c569f8fee&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=469733747533c6a9a7f011eca7ff7ad851c32061105699a96f69086f7836ad6b24e82db18db507eaaed551b42921e0386985f97d9c218b587938ce3bf8ac783bfd8ddf1dc994d22ac8706aa115b9e3fd41768d8e2ec3e3ada5cbfc8d24507f&pst=1701009597&rmtc=t
200 OK 2.1 kB URL GET HTTP/1.1 punctuationceiling.com/watch.200124165232.js?key=f0d0fb079869483c4c80e41c569f8fee&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=469733747533c6a9a7f011eca7ff7ad851c32061105699a96f69086f7836ad6b24e82db18db507eaaed551b42921e0386985f97d9c218b587938ce3bf8ac783bfd8ddf1dc994d22ac8706aa115b9e3fd41768d8e2ec3e3ada5cbfc8d24507f&pst=1701009597&rmtc=t
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectpunctuationceiling.com
Fingerprint7C:35:2F:A1:EB:78:A9:21:91:06:A1:BB:DB:6E:61:CE:36:15:3E:A3
ValidityFri, 03 Nov 2023 10:11:23 GMT - Thu, 01 Feb 2024 10:11:22 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (2642)
Hash e52d053844402c952af05c530330ebeb
19059c398a33055aaffaa6a3983963d019fc221c
aae8170f9847575cec9f497976251c7a3e7e29a877f2011ba833fb6d175a1c59
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.200124165232.js?key=f0d0fb079869483c4c80e41c569f8fee&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=469733747533c6a9a7f011eca7ff7ad851c32061105699a96f69086f7836ad6b24e82db18db507eaaed551b42921e0386985f97d9c218b587938ce3bf8ac783bfd8ddf1dc994d22ac8706aa115b9e3fd41768d8e2ec3e3ada5cbfc8d24507f&pst=1701009597&rmtc=t HTTP/1.1
Host: punctuationceiling.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Cookie: u_pl=16071640; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNjA3MTY0MCwiayI6ImYwZDBmYjA3OTg2OTQ4M2M0YzgwZTQxYzU2OWY4ZmVlIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNDk0NjM2LCJwaWQiOjE3MDM5NSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMSwiYWlkIjoyMywicHQiOjQsInBrIjoidmN1cGVhdHIiLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly9ueWEuaXNzLm9uZS8ifX0.WwyJpFIWUFe6p2_8aTh4pylABBcFjTqMyBvRESZDjEw
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 26 Nov 2023 14:38:57 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nya.iss.one
Access-Control-Allow-Origin: https://nya.iss.one
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=eba6f61f-9329-428c-a1e7-fb69fe243efc:1:1; expires=Sun, 03 Dec 2023 14:38:57 GMT; secure; SameSite=None
iprcdaeb0e6dd83d18cd9ecb2fcb398c62bc=3569808; expires=Sun, 26 Nov 2023 18:38:57 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 27 Nov 2023 14:38:57 GMT; secure; SameSite=None
uncs=1; expires=Mon, 27 Nov 2023 14:38:57 GMT; secure; SameSite=None
pdhtkv23=true; expires=Mon, 27 Nov 2023 14:38:57 GMT; secure; SameSite=None
uncs23=1; expires=Mon, 27 Nov 2023 14:38:57 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 08ce43e6eea22f9454c40982050ba007
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
partsfroveil.com/watch.1247525649179.js?key=ed9f816a8960244e6e0d6164b4a623c4&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=e49a86d8c41a054c80dfb4edbf2e7c595acd83ef65412a1e7d7ef814315b953a1e802ef603c2499e6fbe26ef618a95774d529d4889f534c6cf767b2cab3dbf07ad4c293f8bea0ff86f6be8475087910faf63535dfc0a4c5bde06dfa260143241c5&pst=1701009597&rmtc=t
200 OK 2.0 kB URL GET HTTP/1.1 partsfroveil.com/watch.1247525649179.js?key=ed9f816a8960244e6e0d6164b4a623c4&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=e49a86d8c41a054c80dfb4edbf2e7c595acd83ef65412a1e7d7ef814315b953a1e802ef603c2499e6fbe26ef618a95774d529d4889f534c6cf767b2cab3dbf07ad4c293f8bea0ff86f6be8475087910faf63535dfc0a4c5bde06dfa260143241c5&pst=1701009597&rmtc=t
IP
Certificate IssuerLet's Encrypt
Subjectpartsfroveil.com
Fingerprint1A:0F:65:70:9A:78:CB:DC:43:DB:A5:39:56:3C:5D:04:F7:F6:1C:B0
ValidityFri, 03 Nov 2023 10:37:44 GMT - Thu, 01 Feb 2024 10:37:43 GMT
File type HTML document, ASCII text, with very long lines (2522)
Hash 2debfc89f97ea3449f98188177a41463
7f929dcfb59d3be3d7d5153f36cbfca5733bd1c9
f182da6f9428a0104c455c6579ffac445fbd83533c3cc79aef711454295dac88
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1247525649179.js?key=ed9f816a8960244e6e0d6164b4a623c4&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=e49a86d8c41a054c80dfb4edbf2e7c595acd83ef65412a1e7d7ef814315b953a1e802ef603c2499e6fbe26ef618a95774d529d4889f534c6cf767b2cab3dbf07ad4c293f8bea0ff86f6be8475087910faf63535dfc0a4c5bde06dfa260143241c5&pst=1701009597&rmtc=t HTTP/1.1
Host: partsfroveil.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Cookie: u_pl=15761530; ain=eyJhbGciOiJIUzI1NiJ9.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.Z6aGPsHgwAzdFI41j0NK_nvNMYF1xGsjrrlqzOQQoMk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:58 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nya.iss.one
Access-Control-Allow-Origin: https://nya.iss.one
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=eba6f61f-9329-428c-a1e7-fb69fe243efc:1:1; expires=Sun, 03 Dec 2023 14:38:58 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 27 Nov 2023 14:38:58 GMT; secure; SameSite=None
uncs=1; expires=Mon, 27 Nov 2023 14:38:58 GMT; secure; SameSite=None
pdhtkv27=true; expires=Mon, 27 Nov 2023 14:38:58 GMT; secure; SameSite=None
uncs27=1; expires=Mon, 27 Nov 2023 14:38:58 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8f3166aadf070acbaadca9a6b2cc7cce
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
200 OK 106 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (105910 bytes)
Hash a36b92bb68d9b579458560ba9b94862a
782d2932ccd3a56e5aad1cca7e6e7fb4a3cf23d6
9de12cf85ad80cae34d8bdaeb59169d75e3bd4f8b931ec90ea2c3be166647c0e
GET /cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:58 GMT
content-type: image/png
content-length: 105910
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:08:06 GMT
etag: "62e11c96-19db6"
expires: Tue, 28 Nov 2023 14:38:58 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/39/49/1b/39491b29d3a379ff93fe0eb35b8de717/1676972055.jpg
200 OK 62 kB URL GET HTTP/2 cdn.cloudimagesb.com/bi/39/49/1b/39491b29d3a379ff93fe0eb35b8de717/1676972055.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2023:02:16 21:07:30], baseline, precision 8, 468x60, components 3\012- data
Hash 9a846be3e13ffe5621204d95d4488cd7
f5d771dbcb76a7e2cef1c3a5a77389eab5810a0c
11688538abbe144733b0acc7786b13564cdc9e18a610fc79dbcc3f91227fe717
GET /bi/39/49/1b/39491b29d3a379ff93fe0eb35b8de717/1676972055.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:58 GMT
content-type: image/jpeg
content-length: 62469
server: nginx/1.21.6
last-modified: Tue, 21 Feb 2023 09:34:23 GMT
etag: "63f4901f-f405"
expires: Tue, 28 Nov 2023 14:38:58 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.profitabledisplayformat.com/d5e2ff9b1b45ca193627dbe252564f5e/invoke.js
200 OK 11 kB URL GET HTTP/1.1 www.profitabledisplayformat.com/d5e2ff9b1b45ca193627dbe252564f5e/invoke.js
IP
Certificate IssuerLet's Encrypt
Subjectprofitabledisplayformat.com
Fingerprint5B:A6:07:BE:E3:18:84:64:F9:F4:E9:2D:E5:3E:B9:65:1E:32:63:42
ValiditySat, 28 Oct 2023 06:49:46 GMT - Fri, 26 Jan 2024 06:49:45 GMT
File type exported SGML document, ASCII text, with very long lines (29601), with no line terminators
Hash b5fdeadd7bf2a1f53732969e923a7c7e
548746f2b065c4744c94a29309a06ff85cfda0fc
8fbeeb643684c34430cf989bc6e03b0a544e757efdb6a5a2917d1d8d0fab5e72
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /d5e2ff9b1b45ca193627dbe252564f5e/invoke.js HTTP/1.1
Host: www.profitabledisplayformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:57 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 889871d7c1503f23c45846659f1152b5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.profitabledisplayformat.com/e2006ad3947d0d10625d22360f69d48f/invoke.js
200 OK 11 kB URL GET HTTP/1.1 www.profitabledisplayformat.com/e2006ad3947d0d10625d22360f69d48f/invoke.js
IP
Certificate IssuerLet's Encrypt
Subjectprofitabledisplayformat.com
Fingerprint5B:A6:07:BE:E3:18:84:64:F9:F4:E9:2D:E5:3E:B9:65:1E:32:63:42
ValiditySat, 28 Oct 2023 06:49:46 GMT - Fri, 26 Jan 2024 06:49:45 GMT
File type exported SGML document, ASCII text, with very long lines (29628), with no line terminators
Hash 15e79a2a7afe6af6c343ba7f69c1e037
7d9de09f73373bd49a1b6effa9b80fd2165a6a90
32cd606193724d797294286610200603b89609b60a1ac50b5f0c0fddac6ff736
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /e2006ad3947d0d10625d22360f69d48f/invoke.js HTTP/1.1
Host: www.profitabledisplayformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:58 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bd04030ed8999a93191975bd198dcdc2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.profitabledisplayformat.com/f80c278835ba0ab2d2dd6c9554163fe2/invoke.js
200 OK 11 kB URL GET HTTP/1.1 www.profitabledisplayformat.com/f80c278835ba0ab2d2dd6c9554163fe2/invoke.js
IP
Certificate IssuerLet's Encrypt
Subjectprofitabledisplayformat.com
Fingerprint5B:A6:07:BE:E3:18:84:64:F9:F4:E9:2D:E5:3E:B9:65:1E:32:63:42
ValiditySat, 28 Oct 2023 06:49:46 GMT - Fri, 26 Jan 2024 06:49:45 GMT
File type exported SGML document, ASCII text, with very long lines (29628), with no line terminators
Hash 96b5c1a1f1964bae97aeb03f2691ca57
d88eea3fbbf91ef11d22c63241304a4394612859
2db1f7acc3084d2c5ab43b35339c31456921f79138cfd86a1e2128b4113b4ae4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /f80c278835ba0ab2d2dd6c9554163fe2/invoke.js HTTP/1.1
Host: www.profitabledisplayformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:58 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5919721727cc4aa924bf0d3805c49dbe
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
refershaunting.com/watch.866893544234.js?key=d5e2ff9b1b45ca193627dbe252564f5e&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 refershaunting.com/watch.866893544234.js?key=d5e2ff9b1b45ca193627dbe252564f5e&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectrefershaunting.com
Fingerprint46:8F:A5:9A:A5:85:8B:7E:1D:FB:BE:21:A7:93:50:8B:D8:E2:CF:4E
ValiditySun, 26 Nov 2023 07:16:33 GMT - Sat, 24 Feb 2024 07:16:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.866893544234.js?key=d5e2ff9b1b45ca193627dbe252564f5e&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1 HTTP/1.1
Host: refershaunting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:59 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nya.iss.one
Access-Control-Allow-Origin: https://nya.iss.one
Access-Control-Allow-Credentials: true
Location: https://refershaunting.com/watch.866893544234.js?key=d5e2ff9b1b45ca193627dbe252564f5e&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=90078194a9c3dc87a1fea3df377f949686a12558738441f8c5e00c3ac31ea7ab4d7b29d7a138095ef0ef180a0be18377d85a769a7871f16b9b91d9f040790764f35c79eaed41b07e621a923d88c2d2fe65873b7f4702380dbf8ff60ea2d865&pst=1701009599&rmtc=t
Set-Cookie: u_pl=16897446; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.PsqHKCLsu9R5H7yL_J6TbovIu7QxfGp8SSADZOceAY4; expires=Sun, 26 Nov 2023 14:39:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f997b5291382bf748c5ec180498718b0
Strict-Transport-Security: max-age=0; includeSubdomains
lemondependedadminister.com/watch.1325106077180.js?key=e2006ad3947d0d10625d22360f69d48f&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 lemondependedadminister.com/watch.1325106077180.js?key=e2006ad3947d0d10625d22360f69d48f&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1
IP
Certificate IssuerLet's Encrypt
Subjectlemondependedadminister.com
Fingerprint9A:0F:AD:E3:03:43:6D:74:75:71:85:24:3C:4E:7C:38:52:C9:E6:7F
ValidityMon, 09 Oct 2023 12:36:30 GMT - Sun, 07 Jan 2024 12:36:29 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1325106077180.js?key=e2006ad3947d0d10625d22360f69d48f&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1 HTTP/1.1
Host: lemondependedadminister.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:59 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nya.iss.one
Access-Control-Allow-Origin: https://nya.iss.one
Access-Control-Allow-Credentials: true
Location: https://lemondependedadminister.com/watch.1325106077180.js?key=e2006ad3947d0d10625d22360f69d48f&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=1807885eefbec615337fdd679d4f9228267d04166734c11576bd591cb0cf25cf7fa7ccc3953c850d39271873665406beeec97f02037a7d735de62b5bc3f0558c79054ef071e6879ef928e7a22eb4ab356bab7d5d3c287ea75e2d9161e9fc&pst=1701009599&rmtc=t
Set-Cookie: u_pl=17148246; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzE0ODI0NiwiayI6ImUyMDA2YWQzOTQ3ZDBkMTA2MjVkMjIzNjBmNjlkNDhmIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNDk0NjM2LCJwaWQiOjE3MDM5NSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyMSwiYWlkIjozMiwicHQiOjQsInBrIjoibXo3YmhjeXptIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjkwNzUzNDU3LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6Mzg5MTQsIm9uIjoiV2luZG93cyIsIm92IjoiMTAuMCIsImJpZCI6MTIwNjI1LCJibiI6IkZpcmVmb3giLCJidiI6IjEwNS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vbnlhLmlzcy5vbmUvIn19.R94e5gWd7eDWUAV9IK-TyTdQr9jqM4Y0Pot13Na6qr0; expires=Sun, 26 Nov 2023 14:39:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5ca5a4b7f634eb04dd17d6f64b30996f
Strict-Transport-Security: max-age=0; includeSubdomains
refershaunting.com/watch.866893544234.js?key=d5e2ff9b1b45ca193627dbe252564f5e&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=90078194a9c3dc87a1fea3df377f949686a12558738441f8c5e00c3ac31ea7ab4d7b29d7a138095ef0ef180a0be18377d85a769a7871f16b9b91d9f040790764f35c79eaed41b07e621a923d88c2d2fe65873b7f4702380dbf8ff60ea2d865&pst=1701009599&rmtc=t
200 OK 2.1 kB URL GET HTTP/1.1 refershaunting.com/watch.866893544234.js?key=d5e2ff9b1b45ca193627dbe252564f5e&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=90078194a9c3dc87a1fea3df377f949686a12558738441f8c5e00c3ac31ea7ab4d7b29d7a138095ef0ef180a0be18377d85a769a7871f16b9b91d9f040790764f35c79eaed41b07e621a923d88c2d2fe65873b7f4702380dbf8ff60ea2d865&pst=1701009599&rmtc=t
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectrefershaunting.com
Fingerprint46:8F:A5:9A:A5:85:8B:7E:1D:FB:BE:21:A7:93:50:8B:D8:E2:CF:4E
ValiditySun, 26 Nov 2023 07:16:33 GMT - Sat, 24 Feb 2024 07:16:32 GMT
File type HTML document, ASCII text, with very long lines (2536)
Hash 44ff7f96a961a80437ec76cff8a3c5af
2d02d7dabfea0dbea9fc566f562564e1d2d735d2
b953569ecd9935949ceefaada9e8bc318194705d04821abe3d763be5005ddbc2
GET /watch.866893544234.js?key=d5e2ff9b1b45ca193627dbe252564f5e&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=90078194a9c3dc87a1fea3df377f949686a12558738441f8c5e00c3ac31ea7ab4d7b29d7a138095ef0ef180a0be18377d85a769a7871f16b9b91d9f040790764f35c79eaed41b07e621a923d88c2d2fe65873b7f4702380dbf8ff60ea2d865&pst=1701009599&rmtc=t HTTP/1.1
Host: refershaunting.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Cookie: u_pl=16897446; ain=eyJhbGciOiJIUzI1NiJ9.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.PsqHKCLsu9R5H7yL_J6TbovIu7QxfGp8SSADZOceAY4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:59 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nya.iss.one
Access-Control-Allow-Origin: https://nya.iss.one
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=eba6f61f-9329-428c-a1e7-fb69fe243efc:1:1; expires=Sun, 03 Dec 2023 14:38:59 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
uncs=1; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
pdhtkv5=true; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
uncs5=1; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 597ff81b4c2e4a3d52c6248f1a9a6af3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL GET HTTP/2 banquetunarmedgrater.com/advertisers.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:59 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: 286cc9eb61967ff3bec07e940a8b7e52
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 26 Nov 2023 14:38:58 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vJz0Scf14t8DE%2BDKMRZARbvmMp7aojopFKre9OTUy%2FY9VjTu%2FgP9aV%2BMd0g9ZafuQjbmvHh7U3SR4OWo4Z6PQmDDFuOHRocZeDwTc3%2F2rGADSkXK7PuSzRy4FcYvp5a1%2F9VHcWNeB%2FzzjYE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0d3c8d3b51e-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
lemondependedadminister.com/watch.1325106077180.js?key=e2006ad3947d0d10625d22360f69d48f&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=1807885eefbec615337fdd679d4f9228267d04166734c11576bd591cb0cf25cf7fa7ccc3953c850d39271873665406beeec97f02037a7d735de62b5bc3f0558c79054ef071e6879ef928e7a22eb4ab356bab7d5d3c287ea75e2d9161e9fc&pst=1701009599&rmtc=t
200 OK 2.1 kB URL GET HTTP/1.1 lemondependedadminister.com/watch.1325106077180.js?key=e2006ad3947d0d10625d22360f69d48f&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=1807885eefbec615337fdd679d4f9228267d04166734c11576bd591cb0cf25cf7fa7ccc3953c850d39271873665406beeec97f02037a7d735de62b5bc3f0558c79054ef071e6879ef928e7a22eb4ab356bab7d5d3c287ea75e2d9161e9fc&pst=1701009599&rmtc=t
IP
Certificate IssuerLet's Encrypt
Subjectlemondependedadminister.com
Fingerprint9A:0F:AD:E3:03:43:6D:74:75:71:85:24:3C:4E:7C:38:52:C9:E6:7F
ValidityMon, 09 Oct 2023 12:36:30 GMT - Sun, 07 Jan 2024 12:36:29 GMT
File type HTML document, ASCII text, with very long lines (2540)
Hash 0081ccabae573ebd5105639ca5803ffc
044c2e23fbc0bbc9d21ae0666fc47e81d44eb64e
45fe41f78eebcf2a4f727c4cab63112e5750763a55a66ffa11145b0d9a7029a4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.1325106077180.js?key=e2006ad3947d0d10625d22360f69d48f&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=1807885eefbec615337fdd679d4f9228267d04166734c11576bd591cb0cf25cf7fa7ccc3953c850d39271873665406beeec97f02037a7d735de62b5bc3f0558c79054ef071e6879ef928e7a22eb4ab356bab7d5d3c287ea75e2d9161e9fc&pst=1701009599&rmtc=t HTTP/1.1
Host: lemondependedadminister.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Cookie: u_pl=17148246; ain=eyJhbGciOiJIUzI1NiJ9.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.R94e5gWd7eDWUAV9IK-TyTdQr9jqM4Y0Pot13Na6qr0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:59 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nya.iss.one
Access-Control-Allow-Origin: https://nya.iss.one
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=eba6f61f-9329-428c-a1e7-fb69fe243efc:1:1; expires=Sun, 03 Dec 2023 14:38:59 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
uncs=1; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
pdhtkv32=true; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
uncs32=1; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 32c0876a2b91ffa39c79c086027e131a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
majordistinguishedguide.com/watch.449076777100.js?key=f80c278835ba0ab2d2dd6c9554163fe2&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1
307 Temporary Redirect 0 B URL GET HTTP/1.1 majordistinguishedguide.com/watch.449076777100.js?key=f80c278835ba0ab2d2dd6c9554163fe2&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1
IP
Certificate IssuerLet's Encrypt
Subjectmajordistinguishedguide.com
Fingerprint6F:10:5E:58:E2:E9:B6:12:9D:50:8E:F2:66:9B:72:CE:5A:61:46:59
ValidityMon, 09 Oct 2023 12:21:15 GMT - Sun, 07 Jan 2024 12:21:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.449076777100.js?key=f80c278835ba0ab2d2dd6c9554163fe2&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1 HTTP/1.1
Host: majordistinguishedguide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:59 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nya.iss.one
Access-Control-Allow-Origin: https://nya.iss.one
Access-Control-Allow-Credentials: true
Location: https://majordistinguishedguide.com/watch.449076777100.js?key=f80c278835ba0ab2d2dd6c9554163fe2&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=230092a5a8fc803de3eb1195445bf4410b5a0ccf83c589dc4d946ed7e984f3c286b37a9ede3184b164c929b6943b462061d478f4fed16590d043252bfbaa8315872adb7733a3c46c19b5f83dcb0df0622bae820f18772a458f28d529509fded7fc&pst=1701009599&rmtc=t
Set-Cookie: u_pl=17352266; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.lV6iDgqY9SuRmN4kcxK30QEDwYd66A1oupWf5aL-AUQ; expires=Sun, 26 Nov 2023 14:39:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ebcef2cc05cc65365f67a9952d00832c
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/bi/4a/9f/8d/4a9f8d369af2aa0c286655af472d47ff/1671199173.jpg
200 OK 80 kB URL GET HTTP/2 cdn.cloudimagesb.com/bi/4a/9f/8d/4a9f8d369af2aa0c286655af472d47ff/1671199173.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:12:01 14:42:13 DIY-Thermocam raw data\012- (Lepton 2.x), scale 30828-16466, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 4232810003725729923072.000000, slope 969.741455], baseline, precision 8, 300x250, components 3\012- data
Hash d2e4219f4cd8a2675f67667c7922f624
150052512ba079e3d651819fe91004dc047dedb9
5617012aeb811b0ba5028bbcbddb7caa4154da7f741aa69699c78e084bfd4c66
GET /bi/4a/9f/8d/4a9f8d369af2aa0c286655af472d47ff/1671199173.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:59 GMT
content-type: image/jpeg
content-length: 79610
server: nginx/1.21.6
last-modified: Fri, 16 Dec 2022 13:59:41 GMT
etag: "639c79cd-136fa"
expires: Tue, 28 Nov 2023 14:38:59 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
nya.iss.one/static/favicon.png
200 OK 2.0 kB URL GET HTTP/3 nya.iss.one/static/favicon.png
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash aa61391a2f19f8428edbeda7a3af849a
411e0ee67aabae2d1569b3064e91e8278d988b78
060ae2a0896cbc1f69aa9c5bda097767ccd22085193b81226bc82099fd29343f
GET /static/favicon.png HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Cookie: _pk_id.1.00ef=6c6db07e9fd7be46.1701009540.; _pk_ses.1.00ef=1; ppu_main_0644850c2d3936796b9073aa979c8e13=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1; _ga_L4Y7LNB70W=GS1.1.1701009540.1.0.1701009540.60.0.0; _ga=GA1.1.371115631.1701009540
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:59 GMT
content-type: image/png
content-length: 2001
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: "5fd83edc-7d1"
expires: Tue, 06 Dec 2022 23:50:23 GMT
cache-control: max-age=2592000
pragma: public
age: 1565038
ddg-cache-status: HIT
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: HIT
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Vc%2BPw%2F7jYBGxp7gVCcU8lgGdAQHH9%2FSHdHaFGaPdQU%2B5dgw1YHqUx2aLe%2FTVUJg0QlW2lZn%2FpcwQ%2BtjggrEZ9E9ALjEQ4SHotRTTvBv0dT94oBAcmuyTQ1U0wKHWWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0d5cee9b4ee-OSL
alt-svc: h3=":443"; ma=86400
majordistinguishedguide.com/watch.449076777100.js?key=f80c278835ba0ab2d2dd6c9554163fe2&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=230092a5a8fc803de3eb1195445bf4410b5a0ccf83c589dc4d946ed7e984f3c286b37a9ede3184b164c929b6943b462061d478f4fed16590d043252bfbaa8315872adb7733a3c46c19b5f83dcb0df0622bae820f18772a458f28d529509fded7fc&pst=1701009599&rmtc=t
200 OK 2.1 kB URL GET HTTP/1.1 majordistinguishedguide.com/watch.449076777100.js?key=f80c278835ba0ab2d2dd6c9554163fe2&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=230092a5a8fc803de3eb1195445bf4410b5a0ccf83c589dc4d946ed7e984f3c286b37a9ede3184b164c929b6943b462061d478f4fed16590d043252bfbaa8315872adb7733a3c46c19b5f83dcb0df0622bae820f18772a458f28d529509fded7fc&pst=1701009599&rmtc=t
IP
Certificate IssuerLet's Encrypt
Subjectmajordistinguishedguide.com
Fingerprint6F:10:5E:58:E2:E9:B6:12:9D:50:8E:F2:66:9B:72:CE:5A:61:46:59
ValidityMon, 09 Oct 2023 12:21:15 GMT - Sun, 07 Jan 2024 12:21:14 GMT
File type HTML document, ASCII text, with very long lines (2542)
Hash 8840dedcefc2330b939e8a8ffc2a3146
53bc62c96a252ca2b072c04d9a2e43e650a32ae4
aebe81ca7a54a9d6c22853f5f764514c019cca06d5100cb88b695f3a51610850
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /watch.449076777100.js?key=f80c278835ba0ab2d2dd6c9554163fe2&kw=%5B%22browse%22%2C%22nyaa%22%2C%22iss%22%5D&refer=https%3A%2F%2Fnya.iss.one%2F&tz=0&dev=e&res=14.3095&uuid=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1&shu=230092a5a8fc803de3eb1195445bf4410b5a0ccf83c589dc4d946ed7e984f3c286b37a9ede3184b164c929b6943b462061d478f4fed16590d043252bfbaa8315872adb7733a3c46c19b5f83dcb0df0622bae820f18772a458f28d529509fded7fc&pst=1701009599&rmtc=t HTTP/1.1
Host: majordistinguishedguide.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Cookie: u_pl=17352266; ain=eyJhbGciOiJIUzI1NiJ9.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.lV6iDgqY9SuRmN4kcxK30QEDwYd66A1oupWf5aL-AUQ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Sun, 26 Nov 2023 14:38:59 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://nya.iss.one
Access-Control-Allow-Origin: https://nya.iss.one
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=eba6f61f-9329-428c-a1e7-fb69fe243efc:1:1; expires=Sun, 03 Dec 2023 14:38:59 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
uncs=1; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
pdhtkv25=true; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
uncs25=1; expires=Mon, 27 Nov 2023 14:38:59 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f8c8cfd2dfdde7df32a6f1fcb4d8aab2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/bi/5f/51/a1/5f51a11c755e0d77cf76814914ae3d2f/1632783496.jpg
200 OK 36 kB URL GET HTTP/2 cdn.cloudimagesb.com/bi/5f/51/a1/5f51a11c755e0d77cf76814914ae3d2f/1632783496.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 22.5 (Windows), datetime=2021:09:24 13:02:27], baseline, precision 8, 320x50, components 3\012- data
Hash a03c34ae75f1b7cc818ef592b944c213
32ac96f009dc518193b5c75945c7a83346e997be
e7d9e0de7f4db4aafd3dca00c54c34578739861a07147ef37cb98ebda26212b0
GET /bi/5f/51/a1/5f51a11c755e0d77cf76814914ae3d2f/1632783496.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:59 GMT
content-type: image/jpeg
content-length: 35925
server: nginx/1.21.6
last-modified: Mon, 27 Sep 2021 22:58:26 GMT
etag: "61524c92-8c55"
expires: Tue, 28 Nov 2023 14:38:59 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-L4Y7LNB70W&cid=371115631.1701009540>m=45je3b81v872355397&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1521988975
200 OK 42 B URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-L4Y7LNB70W&cid=371115631.1701009540>m=45je3b81v872355397&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1521988975
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-L4Y7LNB70W&cid=371115631.1701009540>m=45je3b81v872355397&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=1521988975 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 26 Nov 2023 14:38:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/67/09/5a/67095a7de53552b19ebd41ae9e9588f3/1671016019.jpg
200 OK 50 kB URL GET HTTP/2 cdn.cloudimagesb.com/bi/67/09/5a/67095a7de53552b19ebd41ae9e9588f3/1671016019.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:11:30 14:00:50], progressive, precision 8, 160x600, components 3\012- data
Hash 8ef4f58ba43c93381b9f89c630167bef
79f4e32893b7d4d2a65e5da25615922eb0faacc8
cbedd3d1c6e87e66dd040b12532ec745910f3ee088284cd04e8dde0d8417316e
GET /bi/67/09/5a/67095a7de53552b19ebd41ae9e9588f3/1671016019.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:59 GMT
content-type: image/jpeg
content-length: 49712
server: nginx/1.21.6
last-modified: Wed, 14 Dec 2022 11:07:07 GMT
etag: "6399ae5b-c230"
expires: Tue, 28 Nov 2023 14:38:59 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
browser.sentry-cdn.com/6.2.2/bundle.min.js
200 OK 21 kB URL GET HTTP/2 browser.sentry-cdn.com/6.2.2/bundle.min.js
IP
Certificate IssuerGlobalSign nv-sa
Subject*.sentry-cdn.com
FingerprintF4:BF:96:D1:20:5D:BA:52:63:EB:1F:F7:56:39:FA:81:01:A3:64:DE
ValidityTue, 01 Aug 2023 14:42:24 GMT - Sun, 01 Sep 2024 14:42:23 GMT
File type ASCII text, with very long lines (65448)
Hash 1112a55739f24ef7add32867ae13bc72
62b95d703a81e23f0c37e504c2dca4a341cb467f
e593e95cfe0f3335088d5643951e90c8b4b3a4dfbe773614bb0070d544edb02e
GET /6.2.2/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Wed, 08 May 2024 12:32:02 GMT
last-modified: Thu, 11 Mar 2021 09:25:54 GMT
etag: "a948fc086ec14683f3f2270913c7f702"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Sun, 26 Nov 2023 14:38:59 GMT
age: 17374016
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20633
X-Firefox-Spdy: h2
nya.iss.one/cdn-cgi/rum?
204 No Content 0 B IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
content-type: application/json
Content-Length: 1015
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Cookie: _pk_id.1.00ef=6c6db07e9fd7be46.1701009540.; _pk_ses.1.00ef=1; ppu_main_0644850c2d3936796b9073aa979c8e13=1; dom3ic8zudi28v8lr6fgphwffqoz0j6c=eba6f61f-9329-428c-a1e7-fb69fe243efc%3A1%3A1; _ga_L4Y7LNB70W=GS1.1.1701009540.1.0.1701009540.60.0.0; _ga=GA1.1.371115631.1701009540
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
date: Sun, 26 Nov 2023 14:38:59 GMT
access-control-allow-origin: https://nya.iss.one
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 82c2e0d7b98fb4ee-OSL
x-frame-options: DENY
x-content-type-options: nosniff
cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
200 OK 631 B URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (1796)
Hash 877f174ba71fcbb4bd316accf30ab613
0efbe27a5658c93f3e2ae08b57204ba7fe5e3900
a12ac29d1617bc71b7d520627ea3f63ccd6e8deed2254c97d274f03b6449579e
GET /ajax/libs/normalize/8.0.0/normalize.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:59 GMT
content-type: text/css; charset=utf-8
content-length: 631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2b-732"
last-modified: Mon, 04 May 2020 16:13:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1640581
expires: Fri, 15 Nov 2024 14:38:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2ByqR7U8l1Ed9aHVGVbpmdiEL4kBNQhMKHNFUL5dRzb%2Bvf5ULA3cupob7xyrsN0tPZw6cyXdn%2BweCOOcwRI%2FrtxtWWBVUZV6bxB4me1y4dtGFjZeQvaye1onD7jts%2B1zb4lk6IY2I"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 82c2e0d7bc8b0b41-OSL
alt-svc: h3=":443"; ma=86400
static.arc.io/widget/css/widget.css?247af0e
200 OK 9.5 kB URL GET HTTP/2 static.arc.io/widget/css/widget.css?247af0e
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (13320)
Hash 405eed512b209011413b47927df7a925
8988c2b1de57337cf8afc91bf5236cfcfadb4937
7983059442405e24502ec2c784dc9944f9cba6a7b2ce3b297dd5e1ee3d383eeb
GET /widget/css/widget.css?247af0e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:59 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"405eed512b209011413b47927df7a925"
last-modified: Fri, 03 Nov 2023 02:19:08 GMT
x-amz-id-2: if9TBztNDUcMux6d6zzx/AQ6eN1KtfvEptnxzZUFGpED3Va27A4PbUek1yvrciffFe2rd8pRjo0=
x-amz-request-id: WZWMVNY04639F78Z
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2023 03:03:41
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c1c503a396f39670dd256a95bc0b2ca7
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
warden.arc.io/mailbox/nodes/QinaAkQaGFprqYwvJXViS6
204 No Content 0 B URL POST HTTP/2 warden.arc.io/mailbox/nodes/QinaAkQaGFprqYwvJXViS6
IP
Certificate IssuerLet's Encrypt
Subjectarc.io
Fingerprint65:9E:E7:9A:61:A1:B0:0A:38:E4:48:15:D0:45:68:D3:30:5D:12:CA
ValidityWed, 04 Oct 2023 00:54:55 GMT - Tue, 02 Jan 2024 00:54:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mailbox/nodes/QinaAkQaGFprqYwvJXViS6 HTTP/1.1
Host: warden.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 285
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sun, 26 Nov 2023 14:39:00 GMT
access-control-allow-origin: *
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=1205a0fe-142c-40a2-a830-8bbaf6382c3f
200 OK 358 B URL GET HTTP/1.1 su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws/?clientKey=1205a0fe-142c-40a2-a830-8bbaf6382c3f
IP
Certificate IssuerAmazon
Subject*.lambda-url.us-west-2.on.aws
Fingerprint55:BD:28:32:33:D1:C0:F5:60:B5:F9:0C:89:78:17:E5:A4:73:4A:A7
ValidityWed, 25 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (358), with no line terminators
Hash 06e6d9dab0a82b59b3c471e423973dbc
66f511a8d3a3f0bd2ffb28e3378a0a8cd77662df
0c1c3f442008e0d801e4ef833d627ea246133407cf94de884fb87ac122ed17f3
GET /?clientKey=1205a0fe-142c-40a2-a830-8bbaf6382c3f HTTP/1.1
Host: su4hesnyinnwvtk3h2rkauh5ja0qrisq.lambda-url.us-west-2.on.aws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 14:39:02 GMT
Content-Type: application/json
Content-Length: 358
Connection: keep-alive
x-amzn-RequestId: cd858196-d51c-4c70-89de-791a0a473c38
Access-Control-Allow-Origin: https://nya.iss.one
Vary: Origin
cache-control: no-cache, no-store, must-revalidate
X-Amzn-Trace-Id: root=1-65635886-1135743d003d8f916757babb;sampled=0;lineage=b81009d1:0
Access-Control-Allow-Credentials: true
zerossl.ocsp.sectigo.com/
315 B URL zerossl.ocsp.sectigo.com/
IP
Hash 45317cb5c980459346cdccc6dac9beeb
422c8e62d53c56b1c1e9b714f9357c23e02fb8d1
7bc04c59f04d0582204b31f94a93f59deb91e7d850079da14391acaaee21f4df
POST / HTTP/1.1
Host: zerossl.ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 26 Nov 2023 14:39:04 GMT
Content-Type: application/ocsp-response
Content-Length: 315
Connection: keep-alive
Last-Modified: Thu, 23 Nov 2023 11:59:42 GMT
Expires: Thu, 30 Nov 2023 11:59:41 GMT
Etag: "422c8e62d53c56b1c1e9b714f9357c23e02fb8d1"
Cache-Control: max-age=335436,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 82c2e0e87d311c12-OSL
cids.arc.io/top-cids
200 OK 24 kB IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectcids.arc.io
FingerprintC4:44:71:7D:EB:22:87:3F:E0:A0:9F:87:B5:F5:45:88:5E:CE:CD:B0
ValidityWed, 01 Nov 2023 03:09:17 GMT - Tue, 30 Jan 2024 03:09:16 GMT
File type JSON data\012- , ASCII text, with very long lines (6572), with no line terminators
Hash 866812d316c952491f51fb7f06f3997c
38d4d854bb98ca0d971de2c53c82a27944d983e0
ae7435b5bb6e126ff14cdaf94eeb4d93e113ca008790850ba0bdcd50fa23f131
GET /top-cids HTTP/1.1
Host: cids.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:39:04 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 1392871
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=3600
etag: W/"19ac-ONTYVLuYyg2XHeLFPIKieUTZg+A"
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/26/2023 14:15:09
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d5cdb42f136d72bdc35fbdfee08f6997
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
twb3qukm2i654i3tnvx36char40aymqq.lambda-url.us-west-2.on.aws/
201 Created 0 B URL POST HTTP/1.1 twb3qukm2i654i3tnvx36char40aymqq.lambda-url.us-west-2.on.aws/
IP
Certificate IssuerAmazon
Subject*.lambda-url.us-west-2.on.aws
Fingerprint55:BD:28:32:33:D1:C0:F5:60:B5:F9:0C:89:78:17:E5:A4:73:4A:A7
ValidityWed, 25 Jan 2023 00:00:00 GMT - Sat, 24 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: twb3qukm2i654i3tnvx36char40aymqq.lambda-url.us-west-2.on.aws
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 811
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 201 Created
Date: Sun, 26 Nov 2023 14:39:07 GMT
Content-Type: application/json
Content-Length: 0
Connection: keep-alive
x-amzn-RequestId: 8786608c-23ab-452f-b37c-8a5e3df0089d
Access-Control-Allow-Origin: https://nya.iss.one
Vary: Origin
X-Amzn-Trace-Id: root=1-6563588b-57c19d61634b24eb68ab747e;sampled=0;lineage=93f9df3c:0
Access-Control-Allow-Credentials: true
static.arc.io/widget/js/lazy-modules.js?fe421cd5
200 OK 435 B URL GET HTTP/2 static.arc.io/widget/js/lazy-modules.js?fe421cd5
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (464), with no line terminators
Hash 43bd3c4c0ccb5712a30713ec4c159d21
0db4d1c3354c909fb76985739c2aacae3ca9bb07
8f0be6e8c7ee8b92e8474bbb0d8bc872ae0575e25f3d4a0b39ce2ca1b07d41eb
GET /widget/js/lazy-modules.js?fe421cd5 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:59 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"bf3693cfb405887329f70b7d8af75778"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: gX5ujdodPrYTNi/gfDG6+YITEYvPNDNrMw1XObyaZbggzoTC9G2QnPHGDb2a6xTvUOVGEhSTIXM=
x-amz-request-id: CP664Q14H71BB0T2
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:25:29
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 15be0ffeed9c4eceb15fe0f9de7f55da
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
core.arc.io/broker.html?247af0e
200 OK 1.6 kB URL GET HTTP/2 core.arc.io/broker.html?247af0e
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectcore.arc.io
Fingerprint26:65:EB:38:E0:CA:35:09:1E:A3:06:53:ED:96:2A:DA:90:A7:21:CB
ValidityTue, 24 Oct 2023 01:09:08 GMT - Mon, 22 Jan 2024 01:09:07 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1611), with no line terminators
Hash 8b787bf68da3ff9a0ab1d643bd02cfa0
68f81c614cb4b0abb97549f9964396a255ea8683
6ddd4ed26e852e373728682d14d2f815548f1d47e0af5c8a0e483b36f40c31b6
GET /broker.html?247af0e HTTP/1.1
Host: core.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 786568
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
etag: W/"64331d06-612"
expires: Sun, 03 Dec 2023 03:03:38 GMT
last-modified: Sun, 09 Apr 2023 20:16:06 GMT
strict-transport-security: max-age=15724800; includeSubDomains
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2023 03:03:39
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0f033025ada0c40b69aaac069ea97d28
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-L4Y7LNB70W&l=dataLayer&cx=c
200 OK 266 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-L4Y7LNB70W&l=dataLayer&cx=c
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Size 266 kB (266524 bytes)
Hash 8aa251ad328bd6c064ec5de85b35dd22
386c696c8332c2f3c63474a322a49a8e3c4cbc07
8c9cb3d80490201e8038ecc58de977bf607797229877ffbcfb4ab74e0325ae8a
GET /gtag/js?id=G-L4Y7LNB70W&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 26 Nov 2023 14:38:56 GMT
expires: Sun, 26 Nov 2023 14:38:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89994
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
200 OK 96 kB URL GET HTTP/2 static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (63194)
Hash de8ab4879bd77ebe629c721339d42f65
fdb117223b56b52fc13256fa0288723785631d2a
7a4a51ab0b9301083e145526762d065e622a0ec8cfb5a866cd6b20c87087ff08
GET /widget/js/vendors~widget-ui.js?c9b0de53 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"de8ab4879bd77ebe629c721339d42f65"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: riK/3ctSFIGOyIA3dzAveZ99ExDSDOKZx7ERd98X89Jx0EEGCu94uhCobwfZVX7uNl7IEjI3+jA=
x-amz-request-id: BDV2A2K6BGQDME16
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:20
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: e780117ae1f0e47335c41f050e303269
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/lazy-iwc.9b430e25.js
200 OK 14 kB URL GET HTTP/2 static.arc.io/broker/js/lazy-iwc.9b430e25.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?247af0e
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (14147)
Hash 1343454a1c763177d59f06c307b3a5a2
82626af192e064ca2eb37deb3cf49c5d306c1a0a
170fc28046efe0a2310c72af9f6d88c39458c227d4b9d7f77738f78cf1c3a11f
GET /broker/js/lazy-iwc.9b430e25.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"1343454a1c763177d59f06c307b3a5a2"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: oYQ4NuvzeDTkrdA9QIcMph1mERvWNml7p/Q5vWE8ZP+GeQRQXN37UpoUPsUv3qf3J2dbFQJsVvM=
x-amz-request-id: Y0KPCKVRN03TA0Z3
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:15:10
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4edc80c5b90587a4437e71a220295df2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
l1s.saturn.ms/ipfs/bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe/6199.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJlN2FlMmQxNi1jMjMyLTRhMWMtOWZkMC03MWU1MDlhN2E0NTkiLCJzdWIiOiIxMjA1YTBmZS0xNDJjLTQwYTItYTgzMC04YmJhZjYzODJjM2YiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyIqIl0sImlhdCI6MTcwMTAwOTU0MiwiZXhwIjoxNzAxMDEzMTQyfQ.u-xQlLSKCTPrzmkshxjOOoR-ykF4xwf3P87PeM5TvglLbjL6Z8_ADWwL3r6HUuWoa9U3OunOlLv8tKhGE0n3Xw
200 OK 16 kB URL GET HTTP/2 l1s.saturn.ms/ipfs/bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe/6199.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJlN2FlMmQxNi1jMjMyLTRhMWMtOWZkMC03MWU1MDlhN2E0NTkiLCJzdWIiOiIxMjA1YTBmZS0xNDJjLTQwYTItYTgzMC04YmJhZjYzODJjM2YiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyIqIl0sImlhdCI6MTcwMTAwOTU0MiwiZXhwIjoxNzAxMDEzMTQyfQ.u-xQlLSKCTPrzmkshxjOOoR-ykF4xwf3P87PeM5TvglLbjL6Z8_ADWwL3r6HUuWoa9U3OunOlLv8tKhGE0n3Xw
IP
Certificate IssuerZeroSSL
Subjectl1s.saturn.ms
FingerprintF7:BF:39:25:25:44:02:A8:2C:FF:1B:1E:22:C5:A6:D3:15:88:55:7A
ValidityMon, 16 Oct 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT
Hash 1187b677098ccfd7a7022ea79715a4f6
2fb3a4a6bd9618c9a84d8c682b93fceea6d8ee96
48c830b95f1215d1551d4bdb8a2d8bd9533daafe56052acf5dc532976481348c
GET /ipfs/bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe/6199.json?format=car&dag-scope=entity&jwt=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCJ9.eyJqdGkiOiJlN2FlMmQxNi1jMjMyLTRhMWMtOWZkMC03MWU1MDlhN2E0NTkiLCJzdWIiOiIxMjA1YTBmZS0xNDJjLTQwYTItYTgzMC04YmJhZjYzODJjM2YiLCJzdWJUeXBlIjoiY2xpZW50S2V5IiwiYWxsb3dfbGlzdCI6WyIqIl0sImlhdCI6MTcwMTAwOTU0MiwiZXhwIjoxNzAxMDEzMTQyfQ.u-xQlLSKCTPrzmkshxjOOoR-ykF4xwf3P87PeM5TvglLbjL6Z8_ADWwL3r6HUuWoa9U3OunOlLv8tKhGE0n3Xw HTTP/1.1
Host: l1s.saturn.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Sun, 26 Nov 2023 14:39:03 GMT
content-type: application/vnd.ipld.car; version=1
server-timing: fetch;dur=0.169713,indexer;dur=0.000365;candidates-found=7634062;candidates-filtered=7754145,retrieval;dur=7.941454;first-byte-received=125928642;connected=8025387;started=7985396, shim; dur=61.420812999999995, shim_lassie; dur=61.155431, shim_lassie_headers; dur=61.097770999999995, shim_lassie_body; dur=0.318191, nginx;dur=0, nginx_uct;dur=, nginx_uht;dur=, nginx_urt;dur=
x-ipfs-path: /ipfs/bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe/6199.json
cache-control: public, max-age=29030400, immutable
content-disposition: attachment; filename="bafybeiboavax4ykayf6p4myu6drdvhuqzrchzs6aumg4rtma6lbjc5s3oe_6199.json.car"
saturn-node-id: b3f7917b-f60e-47a3-bd67-d502b3bee626
saturn-node-version: 1095_62e6d14
saturn-transfer-id: c671c6ea31c3682348dfbf4be42682d3
saturn-cache-status: HIT
timing-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Traceparent
access-control-expose-headers: *
accept-ranges: none
X-Firefox-Spdy: h2
nya.iss.one/static/css/bootstrap-xl-mod.css?t=1608007388
200 OK 3.5 kB URL GET HTTP/3 nya.iss.one/static/css/bootstrap-xl-mod.css?t=1608007388
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type ASCII text, with very long lines (4053), with no line terminators
Hash b99f0119cc56be93b76d8200c1c7dca5
23db20d7b5d56c8f1be6f9c90246c80e5a7d3030
84a592537d0cffdd9a67ec2147c25a57d8580e23e5f9b30464343961f0617902
GET /static/css/bootstrap-xl-mod.css?t=1608007388 HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: text/css
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: W/"5fd83edc-db9"
expires: Tue, 06 Dec 2022 23:45:34 GMT
cache-control: max-age=2592000
pragma: public
age: 7269
ddg-cache-status: HIT
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: HIT
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BgGSMo%2BDgb7sUGjcX4V%2Ftvp%2FGRkNdJ20FQE7R7BV5npd1S57e3kG7mcvPg7%2FYco6xoqiuvZ8LXCgmnogeP4rRMFPXyiOiYg5iMbvbmbNiRbp0xOyUiueGy1EkfvzlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0baf84bb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
200 OK 122 kB URL User Request GET HTTP/2 IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
Size 122 kB (121701 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:54 GMT
content-type: text/html; charset=utf-8
x-proxy-cache: HIT
referrer-policy: same-origin
x-robots-tag: noarchive
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4%2BeA9dpylDdI0%2FzLTJd2%2B3wVUuBCyN2q%2FqoysOPSmImxj4bcQnm3zD%2F1fdup0Is8UjogTCkHpsUR3QZ61YFO03LH3jDkEBwh64hdCRpAbmAZYod6DbosOwIAUUbv%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 82c2e0b6e9197129-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
nya.iss.one/static/css/main.css?t=1683696976
200 OK 13 kB URL GET HTTP/3 nya.iss.one/static/css/main.css?t=1683696976
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type assembler source, ASCII text, with very long lines (408)
Hash 5cb414f5cdc6d8532147e0b47679ce1d
033bce65006e3fe87614392af97048ed5a7599ef
8fc1a1ef45498d1cf9a7ac3db558dacd2fc12d328ee04d89685786ab36687bf0
GET /static/css/main.css?t=1683696976 HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: text/css
last-modified: Wed, 10 May 2023 05:36:16 GMT
etag: W/"645b2d50-3354"
expires: Fri, 09 Jun 2023 05:49:25 GMT
cache-control: max-age=2592000
pragma: public
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: HIT
age: 389098
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rsKlwWgSN%2F1KObf7%2BMy%2FprT0JUuO1HkVj9Bm2c9Ck1C8%2BT4xtlmmNMUGM7ElDXUrp18ph%2FnhJGLpddGWYCaQFYjvcFlnaX17wx1Q3aqyG30MNdzdcA1vO3IKUR%2FoPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb1867b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
addresseepaper.com/sfp.js
0 B URL GET addresseepaper.com/sfp.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
analytics.iss.one/matomo.js
200 OK 64 kB URL GET HTTP/3 analytics.iss.one/matomo.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type ASCII text, with very long lines (1601)
Hash b11d4cca785a54e3e6e062072b35463e
7280b49e1ff669f3d61520c22139bb60f887465b
14e54752e486d20c20300f8b219f4ddd18bb52fcec98fa938362df5ca93e0f08
GET /matomo.js HTTP/1.1
Host: analytics.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: application/javascript
last-modified: Thu, 03 Feb 2022 08:09:48 GMT
etag: W/"61fb8dcc-f9bf"
cache-control: max-age=43200
cf-cache-status: HIT
age: 5457
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bGqc41AmNm3HUIhYcc3P4SIZz%2FDD2OThy227CWDA2nPtGOVpk%2FI19vWKREWXd%2BM6SKwc8CY170cBz0dfAB2C6sZrbto8hc2dko8IGj0LAgY7HUg%2F6MeRSc4QB2V1XgVwDJ115Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0c0cf20b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
static.arc.io/widget/js/core.js?247af0e
200 OK 318 kB URL GET HTTP/2 static.arc.io/widget/js/core.js?247af0e
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
Size 318 kB (317541 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/js/core.js?247af0e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"88429be70320a7c5ccbc84e339ded3d0"
last-modified: Fri, 03 Nov 2023 02:19:09 GMT
x-amz-id-2: pjS2txAwvRvy5AsTKp8Nt6Ulidp8tPyU3OUdWT6OhyWW+wkKtjAdDI9lAYEm/wkZ9+itiwrJTMo=
x-amz-request-id: 0VYTMG9H0DS6AJXW
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2023 03:03:39
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 34a1dcd8d14712a1da62b7221b09904a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/broker.9e6bf337.js
200 OK 24 kB URL GET HTTP/2 static.arc.io/broker/js/broker.9e6bf337.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?247af0e
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (24359)
Hash 0f4be176d7381439a060ff326b994fd2
a2157b6419a02054e10fd69cad0df08ee46c85a8
15dd17bc017fd6b5c5874bf0c0f127131b09f9f8a4a5f596aa846269f4bad7c9
GET /broker/js/broker.9e6bf337.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"0f4be176d7381439a060ff326b994fd2"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: MdYC/fgm5vp0bxrSAhuwjbuHWu4Y35WwaG5fDD00zX/bYsfNAiIsVuiQGXM11aZqKKqNac9K1FM=
x-amz-request-id: QRX3S5ERTYB3DPA2
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:11:06
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f58f59a623bee7d6bd12b86a9c9401fe
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-sc-client.js?197dbd2e
200 OK 3.2 kB URL GET HTTP/2 static.arc.io/widget/js/widget-sc-client.js?197dbd2e
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (3296), with no line terminators
Hash b99f617367312fb9a38e9ad42beafe19
641b3bc44b86c4025b926f445b498d8a1bbc3361
2651ce033e5908306643263171c004c20652eecb9b6242d146cd21346658a1d7
GET /widget/js/widget-sc-client.js?197dbd2e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:39:01 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"00fc1f9530439ec3d2415f9420e814d7"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: DV3XNbmokfaLyFzHSWMHySmQ/Z+xyiURqNhPGbHTNGsdCdkBumcJ6DTmoMAYJGlOovwsc45CAno=
x-amz-request-id: A0ZYJA68RFE5W55N
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:32
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f04b059753ffa2acb6ea39c0863e92e8
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317
200 OK 20 kB URL GET HTTP/2 static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8
ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (19986), with no line terminators
Hash dd1d068fdb5fe90b6c05a5b3940e088c
0d96f9df8772633a9df4c81cf323a4ef8998ba59
6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101
GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://nya.iss.one
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.10.0"
last-modified: Tue, 10 Oct 2023 21:38:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bbbe20712f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.arc.io/widget/js/vendors~widget-sc-client.js?35fccb86
200 OK 61 kB URL GET HTTP/2 static.arc.io/widget/js/vendors~widget-sc-client.js?35fccb86
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (34291)
Hash 1bfa017c8b068bd2857ce731fa38ab1d
583885e7d50ef1e7ee5499c98263e43c70c5b6bb
31501078b411835882c834ed620bebe77a2b8ff3664514358cda957fba8c247d
GET /widget/js/vendors~widget-sc-client.js?35fccb86 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:39:01 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"1bfa017c8b068bd2857ce731fa38ab1d"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: NynoFA7d6ekyTzFhRlqIPmQNoN7y0aqYhQEGXmWRYTlZqJcUJf+ZSzosKObgrIBitLt4gzRqis8=
x-amz-request-id: A0ZMGPMCDV8DAE40
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:32
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 83796fd5a90f9ad839e87d730c948d72
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/chunk-0565ec8a.js?b700a1f2
200 OK 74 kB URL GET HTTP/2 static.arc.io/widget/js/chunk-0565ec8a.js?b700a1f2
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (61647)
Hash bd854e6cf1e882e434759642c0d83d16
e256b2b8ce6265ad4f69c2eb2134173eb86f7b3b
e8687c25d2fe0845b8da95f13642a1877c4c9e35eb174b3829be2244213e9a26
GET /widget/js/chunk-0565ec8a.js?b700a1f2 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:39:01 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"bd854e6cf1e882e434759642c0d83d16"
last-modified: Fri, 03 Nov 2023 02:19:08 GMT
x-amz-id-2: wAKJi67xOOEF2qWSb8F7QPM3+uTaTIBqbr/fSJW2AEHwGyMSOo82SR1mFszcF5lBLNnS10Xei4o=
x-amz-request-id: ZMXWYMEA03V5XNXV
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/03/2023 03:08:43
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 33b9a0101091d04dff8c814f582b979c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/chunk-2d2088b3.js?b1893620
200 OK 7.3 kB URL GET HTTP/2 static.arc.io/widget/js/chunk-2d2088b3.js?b1893620
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (7512), with no line terminators
Hash 9c3e6a744a568649147cc7bd0c677673
5e914a737283e714958b4b278381db9bfeb164f2
2a64f6e6302c2163513c5a27eb21c3f99cf2ab643dfd965fd1c3a9498e59f386
GET /widget/js/chunk-2d2088b3.js?b1893620 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:39:01 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"5af9d758accc16915c751a446f90832b"
last-modified: Fri, 03 Nov 2023 02:19:09 GMT
x-amz-id-2: IqPXYRF4uM6hNuX7jfq7t/TzRxk8ISRBd1F+pGO22RXdeJjAsDGWY9t2QGi0fCZR8QsQmj7DChk=
x-amz-request-id: H9R2FSANE1R107DY
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/09/2023 10:47:07
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7124490c28b959907361d2e7a1716846
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
arc.io/widget.min.js
200 OK 7.6 kB IP
Certificate IssuerAmazon
Subjectarc.io
FingerprintF6:AE:3C:13:39:4E:15:7E:83:F8:01:A2:BB:B7:E6:6B:BC:09:D0:19
ValidityTue, 21 Feb 2023 00:00:00 GMT - Thu, 21 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (7892), with no line terminators
Hash b2c9dddfb4d212845d0b3d8ad367b894
32492887744bbf5ce3eaae431e5e0ee0c5d7090c
89b32772ff4f845e9207cdf9a11c5ab34b352816efad39beb1efdf4db128417f
GET /widget.min.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 2950
date: Sun, 26 Nov 2023 14:13:09 GMT
last-modified: Fri, 03 Nov 2023 02:18:44 GMT
content-encoding: br
cache-control: public, max-age=3600, stale-while-revalidate=864000
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
etag: "65445884-b86"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a30105057fbcc8761b99df13f333a9ea.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: 0DiF34bKU95sqOppJfoLzVHNJC-d_LPPmtm7TSlTlaNNdhQCo4amLQ==
age: 1546
X-Firefox-Spdy: h2
nya.iss.one/static/js/main.min.js?t=1683696976
200 OK 8.9 kB URL GET HTTP/3 nya.iss.one/static/js/main.min.js?t=1683696976
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type ASCII text, with very long lines (9008), with no line terminators
Hash 7f19c65a817031af96e3f34134870413
59542d7e53cc2941d5b4c4662c20b32b96005e64
7291ef8a7a114342064f7b793d17872a6fa9eb348d6c15c867b78a7e41e9deb8
GET /static/js/main.min.js?t=1683696976 HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 10 May 2023 05:36:16 GMT
etag: W/"645b2d50-22d1"
iss-server: MSK4
expires: Mon, 06 Nov 2023 07:37:46 GMT
cache-control: max-age=2592000
iss-mirror: HIT
cf-cache-status: HIT
age: 24190
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uQI17t%2FrD9PDORuYUcJOc%2FPiq%2FsjKwPUd2CwIKXucChXz4e04NiyL%2FkpFN3GUhe6y%2FRpXHiujx1nNFgr%2FeYZ6Pwb1iStBPakoOc0SkpK9kLSP4AZ6SeJ2SU7X8HP%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0bb188ab4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
static.arc.io/broker/js/chunk-vendors.5e1d8045.js
200 OK 50 kB URL GET HTTP/2 static.arc.io/broker/js/chunk-vendors.5e1d8045.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?247af0e
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /broker/js/chunk-vendors.5e1d8045.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"c78a505ea0c6b4622562567efbbeb847"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: UCogdse4COEr8OBIY1Uc2chIBc0c21N0ifyc3Svvpnv+nnf9GB6EF4owVk8ZIGjBjM9sUrtO4v4=
x-amz-request-id: QRX6PAFFJ6E0XJWF
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:11:06
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 94c7af0db9d66eca189dcf6a22cd6ed4
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
nya.iss.one/static/css/bootstrap.min.css?t=1608007388
200 OK 122 kB URL GET HTTP/3 nya.iss.one/static/css/bootstrap.min.css?t=1608007388
IP
Certificate IssuerGoogle Trust Services LLC
Subjectiss.one
FingerprintB0:91:10:85:D6:52:AA:9D:6C:A6:22:4D:38:3B:66:40:AF:46:6B:3C
ValidityWed, 04 Oct 2023 12:30:01 GMT - Tue, 02 Jan 2024 12:30:00 GMT
File type ASCII text, with very long lines (64985)
Size 122 kB (122231 bytes)
Hash ccab6005bec84e126e928be95e45106f
4dcab28fbda83051fd7f05b846497cecd05f1af3
77bdb114a47876daba6c12d7a795c7f7a79f0130e6bf9e7288cf7ccd06be9f6a
GET /static/css/bootstrap.min.css?t=1608007388 HTTP/1.1
Host: nya.iss.one
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://nya.iss.one/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 26 Nov 2023 14:38:55 GMT
content-type: text/css
last-modified: Tue, 15 Dec 2020 04:43:08 GMT
etag: W/"5fd83edc-1dd77"
expires: Tue, 06 Dec 2022 23:44:58 GMT
cache-control: max-age=2592000
pragma: public
age: 24190
ddg-cache-status: HIT
iss-server: MSK4
iss-mirror: HIT
cf-cache-status: HIT
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Yw6y0TmsywufIgs6%2FdvOo%2FnciA%2B6gy1XgLd0LQPBY2h5uu2P87IaYQ0sgreSGmhxUm277Ep24tOFQRQYec0IIs6r2nYIaDkMOBejyMCLtLF1ar6LaUW7fWOn5yxE4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82c2e0baf849b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
socket.arc.io/socketcluster/?nodeId=QinaAkQaGFprqYwvJXViS6
0 B URL GET socket.arc.io/socketcluster/?nodeId=QinaAkQaGFprqYwvJXViS6
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socketcluster/?nodeId=QinaAkQaGFprqYwvJXViS6 HTTP/1.1
Host: socket.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://nya.iss.one
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZTTWJk1KhfqjFd4P0ut6+Q==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
unpkg.com/@filecoin-saturn/js-client@0.3.4/dist/strn.min.js
200 OK 234 kB URL GET HTTP/2 unpkg.com/@filecoin-saturn/js-client@0.3.4/dist/strn.min.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintF7:B6:41:CA:15:FD:D1:0C:27:39:55:5D:C5:CE:3F:1C:A6:BB:9D:6F
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
Size 234 kB (233601 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /@filecoin-saturn/js-client@0.3.4/dist/strn.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:39:01 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"39081-4Zu4dDjFlij9Tn48JpClIbVuvaI"
via: 1.1 fly.io
fly-request-id: 01HG044SZDYX8HZB6SQSDPHV98-arn
cf-cache-status: HIT
age: 198137
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 82c2e0dfdc5956c3-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/brokers.js?cfaaa772
200 OK 23 kB URL GET HTTP/2 static.arc.io/widget/js/brokers.js?cfaaa772
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (21470)
Hash e1f31a1f2266b21d5986026408c6b7ae
16583ba6436fb94cf4d05cb8ec6cb5d601d83926
58936974bff4521fdc89cd5eb181ec9187a06458235ddab4a1c36486bf3150a8
GET /widget/js/brokers.js?cfaaa772 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:59 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"e1f31a1f2266b21d5986026408c6b7ae"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: 6I1+nX728/K2CMcrIwuct2vJxb8s64G7tmAh1volqACmT6JPBsIl7bGUESxACPt9cUFsu6xM7Ws=
x-amz-request-id: T9MBZ2F1DD7SM1N9
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:25:28
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 8f50da1ae063b8a8d13193250d781c6a
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/lazy-modules.a169b1ec.js
200 OK 47 kB URL GET HTTP/2 static.arc.io/broker/js/lazy-modules.a169b1ec.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?247af0e
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (25027)
Hash d03c11be3537746519138d1fe06bd033
c915eed8fafdd69b7c2d6f28c5cb0d3f031888f7
2d69a91e3b105d9ced4a5c0244a9dc3905f8eb061e72cb5518db5ef6d0d0635d
GET /broker/js/lazy-modules.a169b1ec.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"d03c11be3537746519138d1fe06bd033"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: N9CT1u01vg8Gz+YWCkqhdKV9DidnehcEK0xCHVm3J3d4OngXjpcLCLHWEA+lKp6LaMLGd5IfFC0=
x-amz-request-id: Y0KJ8WRY6JAWFSSK
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:15:10
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 151e2944ab0f3bc4682086954f92f7b0
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/lazy-modules.a169b1ec.js
200 OK 47 kB URL GET HTTP/2 static.arc.io/broker/js/lazy-modules.a169b1ec.js
IP
ASN #34989 ServeTheWorld AS
Requested by https://core.arc.io/broker.html?247af0e
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (25027)
Hash d03c11be3537746519138d1fe06bd033
c915eed8fafdd69b7c2d6f28c5cb0d3f031888f7
2d69a91e3b105d9ced4a5c0244a9dc3905f8eb061e72cb5518db5ef6d0d0635d
GET /broker/js/lazy-modules.a169b1ec.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:38:56 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"d03c11be3537746519138d1fe06bd033"
last-modified: Sun, 09 Apr 2023 20:16:26 GMT
x-amz-id-2: N9CT1u01vg8Gz+YWCkqhdKV9DidnehcEK0xCHVm3J3d4OngXjpcLCLHWEA+lKp6LaMLGd5IfFC0=
x-amz-request-id: Y0KJ8WRY6JAWFSSK
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:15:10
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 37edbaa1201ed54362961962b89b428f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/chunk-2d0cf2b3.js?d98d2542
200 OK 3.1 MB URL GET HTTP/2 static.arc.io/widget/js/chunk-2d0cf2b3.js?d98d2542
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
Size 3.1 MB (3059686 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/js/chunk-2d0cf2b3.js?d98d2542 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:39:01 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"3e9a577ca6bcba5cdf18d0dafd192870"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: AEs3iGFShofXUUJYWfkJupfc6Y/xEtoIHyKcM9tZQl8s2c0xbXz11sJXSMMnzDQ9XsTInwnNHYw=
x-amz-request-id: N9HE7JAHP0P6ZR19
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:12:34
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d9fe53ab6c6c173671e703860b550103
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/lazy-iwc.js?8aedfc26
200 OK 14 kB URL GET HTTP/2 static.arc.io/widget/js/lazy-iwc.js?8aedfc26
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjectstatic.arc.io
Fingerprint0A:EE:08:BA:9E:30:42:FF:7D:74:C2:7B:D9:B3:BE:1E:D1:4F:C0:26
ValidityTue, 24 Oct 2023 01:09:06 GMT - Mon, 22 Jan 2024 01:09:05 GMT
File type ASCII text, with very long lines (14151)
Hash 79f87bf000461a78e70050f0b33e54bd
c9d31fe64b37cfee9161518de01368a25101d159
a10e7cded87daa4318d9448308e6e87e15e1da89d2d7f585da84ef0420f20690
GET /widget/js/lazy-iwc.js?8aedfc26 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 26 Nov 2023 14:39:01 GMT
content-type: text/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"79f87bf000461a78e70050f0b33e54bd"
last-modified: Tue, 31 Oct 2023 18:10:04 GMT
x-amz-id-2: hBsAYRm24bgq4d91tJ87F8wFS/X38hCD2jvFX9BxczgoUTq9oXwS1kToV6F1CTXFXthoIQMROTg=
x-amz-request-id: A3DB95P7VY2THP6Q
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 19:42:09
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5e0971833d671c81199e20f34e27046c
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
tkr.arc.io/announce
0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /announce HTTP/1.1
Host: tkr.arc.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://nya.iss.one
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: ZadbMrzXgGU62X9bgkoPbw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
104.21.46.226
54.230.218.11
194.242.11.186
18.157.203.0
0.0.0.0