urlquery - report: gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
gaminghelper.co (35)	0	2021-10-07 04:32:40 UTC	2022-12-11 09:47:53 UTC	91.223.82.61	Unknown ranking
r3.o.lencr.org (11)	344	2020-12-02 08:52:13 UTC	2022-12-11 17:12:58 UTC	95.101.11.115
ocsp.digicert.com (4)	86	2012-05-21 07:02:23 UTC	2022-12-11 22:47:41 UTC	93.184.220.29
push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-12-11 17:30:46 UTC	52.89.255.30
fonts.gstatic.com (1)	0	2014-04-02 10:51:04 UTC	2022-12-11 22:56:38 UTC	142.250.74.35	Domain (gstatic.com) ranked at: 540
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-12-11 04:09:05 UTC	34.120.237.76
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-12-11 17:21:04 UTC	34.160.144.191
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-12-11 17:12:27 UTC	34.117.237.239
ajax.googleapis.com (2)	12905	2012-05-22 10:38:03 UTC	2022-12-11 23:39:34 UTC	172.217.21.170
is1-ssl.mzstatic.com (1)	1597	2015-02-12 10:39:50 UTC	2022-12-11 09:13:40 UTC	23.38.200.24
maxcdn.bootstrapcdn.com (1)	724	2014-06-18 00:37:31 UTC	2022-12-11 20:44:13 UTC	188.114.98.234
firefox.settings.services.mozilla.com (1)	867	2020-05-25 20:06:39 UTC	2022-12-11 17:13:02 UTC	35.241.9.150
ocsp.pki.goog (8)	175	2017-06-14 07:23:31 UTC	2022-12-11 17:12:06 UTC	142.250.74.131
track.enigmacdn.com (2)	0	2021-07-17 01:36:30 UTC	2022-12-11 09:04:54 UTC	91.223.82.61	Unknown ranking
s4.histats.com (1)	12782	2012-05-21 17:14:14 UTC	2022-12-11 18:41:23 UTC	54.39.128.117
translate.google.com (1)	1156	2012-05-30 01:30:32 UTC	2022-12-11 17:15:04 UTC	216.58.211.14
fonts.googleapis.com (1)	8877	2012-05-23 12:41:44 UTC	2022-12-11 23:15:18 UTC	142.250.74.106
i0.wp.com (1)	3021	2013-09-17 06:14:42 UTC	2022-12-11 18:34:46 UTC	192.0.77.2
translate.googleapis.com (1)	1005	2012-05-31 07:21:21 UTC	2022-12-12 01:14:16 UTC	142.250.74.10
s10.histats.com (1)	15211	2012-05-21 17:14:14 UTC	2022-12-11 18:44:23 UTC	46.105.201.240
downloadlocked.com (1)	127304	2021-10-06 18:17:41 UTC	2022-12-11 09:04:54 UTC	23.22.126.183

Scan Date	Severity	Indicator	Comment
2022-12-12	2	gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack	Phishing
2022-12-12	2	gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack	Phishing
2022-12-12	2	gaminghelper.co/js/fancySelect.js	Phishing
2022-12-12	2	gaminghelper.co/js/jquery.countTo.js	Phishing
2022-12-12	2	gaminghelper.co/js/form-scripts.js	Phishing
2022-12-12	2	gaminghelper.co/js/validator.min.js	Phishing
2022-12-12	2	gaminghelper.co/js/sweetalert2.min.js	Phishing
2022-12-12	2	gaminghelper.co/js/jquery.magnific-popup.min.js	Phishing
2022-12-12	2	gaminghelper.co/js/sticky.js	Phishing
2022-12-12	2	gaminghelper.co/js/com.js	Phishing
2022-12-12	2	gaminghelper.co/js/main.js	Phishing
2022-12-12	2	gaminghelper.co/fonts/bebasneue_bold-webfont.html	Phishing
2022-12-12	2	gaminghelper.co/fonts/et-line.woff	Phishing
2022-12-12	2	gaminghelper.co/fonts/bebasneue_regular-webfont.html	Phishing

Scan Date	Severity	Indicator	Comment
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed
2022-12-12	2	gaminghelper.co	Sinkholed

Date	UQ / IDS / BL	URL	IP
2022-12-17 09:20:56 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/ninja-assassin- (...)	91.223.82.61
2022-12-17 06:18:11 +0000	0 - 0 - 49	gaminghelper.co/app/431946152/roblox-free-rob (...)	91.223.82.61
2022-12-16 09:03:55 +0000	0 - 0 - 48	gaminghelper.co/app/431946152/how-do-you-get- (...)	91.223.82.61
2022-12-16 08:11:44 +0000	0 - 0 - 48	netcdn.co/app/431946152/roblox-hack-tower-bat (...)	91.223.82.61
2022-12-16 07:12:35 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/roblox-maps-fre (...)	91.223.82.61

Date	UQ / IDS / BL	URL	IP
2023-03-24 17:28:27 +0000	0 - 2 - 0	modymain.us/realtek-high-definition-audio-dri (...)	185.7.33.56
2023-03-15 00:27:15 +0000	0 - 0 - 12	moviemediaz.com/sk/movie/47094/The%20Genesis% (...)	91.223.82.201
2023-03-08 14:10:43 +0000	0 - 7 - 7	hentaijl.com/hentai/55/yari-agari/episodio-1	185.7.33.56
2023-03-06 10:30:50 +0000	0 - 0 - 8	91.223.82.6/	91.223.82.6
2023-02-27 19:23:01 +0000	0 - 3 - 1	www.newbosspass.xyz/laptop/pt2.exe	91.223.82.124

Date	UQ / IDS / BL	URL	IP
2022-12-17 09:20:56 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/ninja-assassin- (...)	91.223.82.61
2022-12-17 06:18:11 +0000	0 - 0 - 49	gaminghelper.co/app/431946152/roblox-free-rob (...)	91.223.82.61
2022-12-16 09:03:55 +0000	0 - 0 - 48	gaminghelper.co/app/431946152/how-do-you-get- (...)	91.223.82.61
2022-12-16 07:12:35 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/roblox-maps-fre (...)	91.223.82.61
2022-12-16 06:21:12 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/roblox-login-ch (...)	91.223.82.61

Date	UQ / IDS / BL	URL	IP
2022-12-17 09:20:56 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/ninja-assassin- (...)	91.223.82.61
2022-12-17 06:18:11 +0000	0 - 0 - 49	gaminghelper.co/app/431946152/roblox-free-rob (...)	91.223.82.61
2022-12-16 08:11:44 +0000	0 - 0 - 48	netcdn.co/app/431946152/roblox-hack-tower-bat (...)	91.223.82.61
2022-12-16 06:23:00 +0000	0 - 0 - 46	netcdn.co/app/431946152/roblox-ninja-warrior- (...)	91.223.82.61
2022-12-16 06:21:12 +0000	0 - 0 - 50	gaminghelper.co/app/431946152/roblox-login-ch (...)	91.223.82.61

HTTP Transactions (82)

Request	Response
GET /app/431946152/how-to-hack-roblox-no-download-2021-game-hack HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: gaminghelper.co/app/431946152/how-to-hack-roblox-no-dow (...) FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 40943308be9a414257c5e4ae912e7f8d8fd828d87f220c6bdf94dd243b4cdbe6 91.223.82.61 HTTP/1.1 301 Moved Permanently Content-Type: text/html; charset=iso-8859-1 Server: nginx Date: Mon, 12 Dec 2022 05:11:58 GMT Content-Length: 291 Connection: keep-alive Keep-Alive: timeout=60 Location: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 291 Md5: 82e15c6b35ddee1e2edf70ffb637f837 Sha1: 6fc40d2388ba275d1293cf78191976b789af1e3b Sha256: 40943308be9a414257c5e4ae912e7f8d8fd828d87f220c6bdf94dd243b4cdbe6 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "315D77A9956F34B1615E38F5F1971DD05146980F8A36B35A8108D47EBBA7E8E5" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14735 Expires: Mon, 12 Dec 2022 09:17:33 GMT Date: Mon, 12 Dec 2022 05:11:58 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 430f1651125c14bfa4924aa1f1a392e9 Sha1: 304141c5fe7ac8b370a67912b2592f9622de9600 Sha256: 315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7040 Expires: Mon, 12 Dec 2022 07:09:18 GMT Date: Mon, 12 Dec 2022 05:11:58 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 43ad67f241ee3692a9c9c1da080dae58 Sha1: 6a024f7d71eeee257edc91ba9273416f634aaae5 Sha256: 636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 35.241.9.150 HASH: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e 35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 12 Dec 2022 05:08:34 GMT age: 204 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 14cd9a0afb6ba9a763651d5112760d1e Sha1: 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa Sha256: 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 22da5e6e3f9507688fc8cb02183d52cf38f4adf8b2c6c52eaf5f88182471efeb 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "22DA5E6E3F9507688FC8CB02183D52CF38F4ADF8B2C6C52EAF5F88182471EFEB" Last-Modified: Sun, 11 Dec 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14356 Expires: Mon, 12 Dec 2022 09:11:14 GMT Date: Mon, 12 Dec 2022 05:11:58 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: dbd022fec0a71226daaf29b7563a8896 Sha1: c37d14dc7b3849a4bb815fa325fb5e70fae54039 Sha256: 22da5e6e3f9507688fc8cb02183d52cf38f4adf8b2c6c52eaf5f88182471efeb
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 34.160.144.191 HASH: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0 34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: tZBzBdK604ad77t1KAU5w6n8oA+9Owgb6ZfjnUEVtrmtkCWsEH2i7i2+f7Li2qYfaBcBtNIegKk= x-amz-request-id: 68GWE0SY6KGAATDN content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 12 Dec 2022 04:51:22 GMT age: 1236 last-modified: Wed, 30 Nov 2022 10:06:34 GMT etag: "53341dea33f4f3d9b4966f80589f429a" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 53341dea33f4f3d9b4966f80589f429a Sha1: 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d Sha256: 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Mon, 12 Dec 2022 05:11:59 GMT content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 7626c25133d0c433e8ed2f8df4b154af76bdfd40b8194930f63eeaad41314842 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "7626C25133D0C433E8ED2F8DF4B154AF76BDFD40B8194930F63EEAAD41314842" Last-Modified: Sat, 10 Dec 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21579 Expires: Mon, 12 Dec 2022 11:11:38 GMT Date: Mon, 12 Dec 2022 05:11:59 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 790e2ae1784d4a974d8f7092765ca850 Sha1: 1ae777208146b6a6c53d0f119c1252ff7a307361 Sha256: 7626c25133d0c433e8ed2f8df4b154af76bdfd40b8194930f63eeaad41314842
GET /app/431946152/how-to-hack-roblox-no-download-2021-game-hack HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: gaminghelper.co/app/431946152/how-to-hack-roblox-no-dow (...) FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/8.0.8RC1 Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14923) Size: 20003 Md5: 94d17b53e2271b5c8ee9d31c9c3a57d2 Sha1: 58af2bb33446f359b61abecf0e9260f58a1cfe6f Sha256: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /css/bootstrap.min.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/bootstrap.min.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3421e2383a7c02f24509d2f1294d3099b658d0773f97706b87b832b0b770c0b6 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:30:28 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c104-1d9bb" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (65371) Size: 19597 Md5: 3f142cfc2d7123b31a1e696e0591f27a Sha1: 834192dbadf2713cd2ff89f50d7ec2f1d4782e54 Sha256: 3421e2383a7c02f24509d2f1294d3099b658d0773f97706b87b832b0b770c0b6 Alerts: Blocklists: - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Dec 2022 05:11:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 0f3dad0d025c4b6b8abd5d698f00cfbd Sha1: 3a82ecac8709c7acd620316502a0e774ac3b1170 Sha256: 8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f
GET /js/fancySelect.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/fancySelect.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 5d19375a0386f8ea11115e3145c61105cfa1daca00d15ad54b49c84967f518d0 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b2-1a7a" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1661 Md5: a60791b5b353371813114e815d946494 Sha1: 69d1f371b0ed899641e640b2649c0914302812bd Sha256: 5d19375a0386f8ea11115e3145c61105cfa1daca00d15ad54b49c84967f518d0 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /css/sweetalert2.min.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/sweetalert2.min.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 53976df2ad3ce0c0f2632bb620bbb02d930a5eb943298170e97189f029a0d70d 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:30:30 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c106-36a3" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (13987), with no line terminators Size: 2737 Md5: 1cfac88a4a8e1bc20b811757fb028b40 Sha1: 10427c064f703342d031411a3310e2a5ef2083bc Sha256: 53976df2ad3ce0c0f2632bb620bbb02d930a5eb943298170e97189f029a0d70d Alerts: Blocklists: - quad9: Sinkholed
GET /css/animate.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/animate.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: b30b4d8565f9af6c8d2cb3839aa09dbccd60ca1a766465d542debade38f45741 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:30:28 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c104-10cbc" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 4026 Md5: 48bc9b81bca18c06ba937cbb880b4cb3 Sha1: 697313edfad185bcca5c7bde18da4a98f93e3adb Sha256: b30b4d8565f9af6c8d2cb3839aa09dbccd60ca1a766465d542debade38f45741 Alerts: Blocklists: - quad9: Sinkholed
GET /css/magnific-popup.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/magnific-popup.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 211b79363793093a7a2f1d342768844e938e88156b62293093185a6500ead1cf 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:30:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c105-1f0a" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1994 Md5: c0275239cb960b014d780d8105b44d72 Sha1: 8db83ac790988232549a3740ecf04fc199da1ce8 Sha256: 211b79363793093a7a2f1d342768844e938e88156b62293093185a6500ead1cf Alerts: Blocklists: - quad9: Sinkholed
GET /ajax/libs/jqueryui/1.8.13/jquery-ui.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ajax.googleapis.com/ajax/libs/jqueryui/1.8.13/jquery-ui (...) FQDN: ajax.googleapis.com IP: 172.217.21.170 HASH: 4ae100977cea8b9965e5d231f3ae655783b4f163c56ee703953aff937525ed37 172.217.21.170 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 51711 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 12 Dec 2022 04:06:37 GMT expires: Tue, 12 Dec 2023 04:06:37 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 3922 last-modified: Tue, 03 Mar 2020 19:15:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (563) Size: 51711 Md5: d3908721b39ebbeffaf1c917bbda06e8 Sha1: 0f9b6c6bdad9cfc057f3e85f52cc417370959fb9 Sha256: 4ae100977cea8b9965e5d231f3ae655783b4f163c56ee703953aff937525ed37
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: a0495e2ab6ed55134a4bf56eb85252977c6978eb965b14724d47e3c979f25ab4 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Dec 2022 05:11:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: a41c1c2a6aad29835a33369555bbe359 Sha1: 4e104748d3d8c3237d58e03b6f7493fcc9182142 Sha256: a0495e2ab6ed55134a4bf56eb85252977c6978eb965b14724d47e3c979f25ab4
GET /js/jquery.countTo.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/jquery.countTo.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 67880d8532d95db3e74b7da985ca2fe7c9d9660e3dd125202cebcda96a2007e2 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:33:23 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b3-eb1" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1125 Md5: 547f5246e091d19af521dee35588e468 Sha1: 4772f3c1e62865ccbbab04abd39e69510c8f5843 Sha256: 67880d8532d95db3e74b7da985ca2fe7c9d9660e3dd125202cebcda96a2007e2 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /css/style.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/style.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 08bb84420272831b8755bc5bd2858bf8a486006a9367b670d826ee516262a2c8 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:30:30 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c106-bd7b" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (1512) Size: 8520 Md5: 4d36bdeba8bb00f4ee280771fddfa689 Sha1: 8dfbed7251f5bb010d5fe8f64e0d60abc3e9fd54 Sha256: 08bb84420272831b8755bc5bd2858bf8a486006a9367b670d826ee516262a2c8 Alerts: Blocklists: - quad9: Sinkholed
GET /css/fancySelect.css HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/css/fancySelect.css FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3f41176d4616a36f4325865bb3c0ea652f3616dec60b31bd923df91f600506b2 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/css Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:30:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c105-109d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 1023 Md5: 458a1a06f282aa4c457a8b613d6a38e6 Sha1: b524e1cb32722230e18bc85f414b9a10e43a7e2d Sha256: 3f41176d4616a36f4325865bb3c0ea652f3616dec60b31bd923df91f600506b2 Alerts: Blocklists: - quad9: Sinkholed
GET /js/form-scripts.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/form-scripts.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3dd0f5e5567c73519dc3eeb98ba6fef9d2b2982af24544ba3d7bbc684d6bae6c 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b2-5bd" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text Size: 609 Md5: 4fb85eb3b2f0dd8b8f5953c58236da3e Sha1: 1c9f6c7a15a3248147e056672ffbf4fdbaed6718 Sha256: 3dd0f5e5567c73519dc3eeb98ba6fef9d2b2982af24544ba3d7bbc684d6bae6c Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/validator.min.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/validator.min.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 56b8d7fb44f86809b49d416022455ac170fb0b79d1ab4b6e5192a046e660f667 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:33:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b9-17a7" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (5862) Size: 2094 Md5: 1ab13fa2eeca5d16de99a1cad839416c Sha1: 0d0a95bd88d04b02d89e1162dd3ebb20b5543dd8 Sha256: 56b8d7fb44f86809b49d416022455ac170fb0b79d1ab4b6e5192a046e660f667 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/sweetalert2.min.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/sweetalert2.min.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: aeafa1e7bb6a973eac2b4f5462844b1c2d64d53eb2e09e75f265e646320f7080 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:33:29 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b9-4f51" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (20305), with no line terminators Size: 6538 Md5: b238ef007e57c4c8f9447cba68fdb3a2 Sha1: 2d4ca455aca3fcd8ee7ac2e2883cfa89c87bd532 Sha256: aeafa1e7bb6a973eac2b4f5462844b1c2d64d53eb2e09e75f265e646320f7080 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/jquery.magnific-popup.min.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/jquery.magnific-popup.min.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: f2e1cd5f2953925591288bd1cc3f167bbd392497476119083458e33e9ab87079 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:33:26 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b6-5297" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (21014) Size: 7685 Md5: 12a9a563724e70a895de0fbd5f7b4ee5 Sha1: a14c616f532deb9ca2d5fa0de6124d47ea60ab57 Sha256: f2e1cd5f2953925591288bd1cc3f167bbd392497476119083458e33e9ab87079 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/sticky.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/sticky.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 0 Last-Modified: Fri, 03 Sep 2021 06:33:28 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c1b8-0" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /js/com.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/com.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 28babf5e232e3dc0985bab21a28eea25b17bc078bafc92a6ba049eefb1e45720 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:33:22 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b2-461a" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: C source, Unicode text, UTF-8 text, with very long lines (2456) Size: 3265 Md5: ecf323c878106fa274f5e9f3b3a82437 Sha1: 86b15826e8a83c81da7ef264dd8e3ff59ef5c1bf Sha256: 28babf5e232e3dc0985bab21a28eea25b17bc078bafc92a6ba049eefb1e45720 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Dec 2022 05:11:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 0f3dad0d025c4b6b8abd5d698f00cfbd Sha1: 3a82ecac8709c7acd620316502a0e774ac3b1170 Sha256: 8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Dec 2022 05:11:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 0f3dad0d025c4b6b8abd5d698f00cfbd Sha1: 3a82ecac8709c7acd620316502a0e774ac3b1170 Sha256: 8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 6194f5b1d16f6746bce736b1b4b37d35d7005751c73112569794cbd92f9d68e7 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3112 Cache-Control: max-age=96077 Date: Mon, 12 Dec 2022 05:11:59 GMT Etag: "63958044-116" Expires: Tue, 13 Dec 2022 07:53:16 GMT Last-Modified: Sun, 11 Dec 2022 07:01:24 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 278 --- Additional Info --- Magic: data Size: 278 Md5: 2cae2070bb9150b3133d0096cbc0d2ad Sha1: f213a505828354b57cc5334d8b9063045f1dc4f9 Sha256: 6194f5b1d16f6746bce736b1b4b37d35d7005751c73112569794cbd92f9d68e7
GET /js/main.js HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/js/main.js FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 745ecf708bc71ba73f7071b8a35c3f639ec7f3e05ceb826458a1b6a8fb4fe782 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Fri, 03 Sep 2021 06:33:27 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"6131c1b7-a08b" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (16162) Size: 15195 Md5: 562dc83f2f14b713905fe69a0994e11d Sha1: 43cd616f9ea8c8c1eb0edccd54a29e2490fcf90a Sha256: 745ecf708bc71ba73f7071b8a35c3f639ec7f3e05ceb826458a1b6a8fb4fe782 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Dec 2022 05:11:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 0f3dad0d025c4b6b8abd5d698f00cfbd Sha1: 3a82ecac8709c7acd620316502a0e774ac3b1170 Sha256: 8d98454c05e1bfb1e534913e69fe76f4b0cb619c02626bcdc163f7be48b1621f
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 2c25ba0d1c806de98d5489934acd8e2f17487e4f7e40c7f0d39094ce49f91b8d 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3565 Cache-Control: max-age=104062 Date: Mon, 12 Dec 2022 05:11:59 GMT Etag: "63959db0-1d7" Expires: Tue, 13 Dec 2022 10:06:21 GMT Last-Modified: Sun, 11 Dec 2022 09:06:56 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: e12bb655426d080117693ba116f398cf Sha1: 8fe1f7f8d0b191baed2decba3523656da97077f5 Sha256: 2c25ba0d1c806de98d5489934acd8e2f17487e4f7e40c7f0d39094ce49f91b8d
GET /ajax/libs/jquery/2.1.4/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js FQDN: ajax.googleapis.com IP: 172.217.21.170 HASH: 675fa88b39008a09994460a93b310a7d4593735009a9b24b6f176c347ad12421 172.217.21.170 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 29725 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 10 Dec 2022 16:58:49 GMT expires: Sun, 10 Dec 2023 16:58:49 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 130390 last-modified: Tue, 03 Mar 2020 19:15:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (32025) Size: 29725 Md5: 83b3b5729cdff3976db52c51831e96b8 Sha1: d23dc823e37f58e5366340be755730f3fa9a850d Sha256: 675fa88b39008a09994460a93b310a7d4593735009a9b24b6f176c347ad12421
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: a0495e2ab6ed55134a4bf56eb85252977c6978eb965b14724d47e3c979f25ab4 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Dec 2022 05:11:59 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: a41c1c2a6aad29835a33369555bbe359 Sha1: 4e104748d3d8c3237d58e03b6f7493fcc9182142 Sha256: a0495e2ab6ed55134a4bf56eb85252977c6978eb965b14724d47e3c979f25ab4
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 6194f5b1d16f6746bce736b1b4b37d35d7005751c73112569794cbd92f9d68e7 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 3112 Cache-Control: max-age=96077 Date: Mon, 12 Dec 2022 05:11:59 GMT Etag: "63958044-116" Expires: Tue, 13 Dec 2022 07:53:16 GMT Last-Modified: Sun, 11 Dec 2022 07:01:24 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 278 --- Additional Info --- Magic: data Size: 278 Md5: 2cae2070bb9150b3133d0096cbc0d2ad Sha1: f213a505828354b57cc5334d8b9063045f1dc4f9 Sha256: 6194f5b1d16f6746bce736b1b4b37d35d7005751c73112569794cbd92f9d68e7
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 005f55737b8e0c9ff6c6e4b47ea5ab59fb8532e605d1543b8b76f234dda3433b 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "005F55737B8E0C9FF6C6E4B47EA5AB59FB8532E605D1543B8B76F234DDA3433B" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21600 Expires: Mon, 12 Dec 2022 11:11:59 GMT Date: Mon, 12 Dec 2022 05:11:59 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 525d3e8f19840bd1f3e0528b3dafcc87 Sha1: aba05a2762327806ca8892b43059fa7aa13005c4 Sha256: 005f55737b8e0c9ff6c6e4b47ea5ab59fb8532e605d1543b8b76f234dda3433b
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: K4GIuTk4xUaHakrzv3caEA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 52.89.255.30 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 52.89.255.30 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 3uT+t3vWk5Ne1A4lxvnY9XCLu60= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: e2bd0efe1858062e21b06290d55995a7850cec7cced71af0ac3bf3cc57cd5fea 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 6104 Cache-Control: 'max-age=158059' Date: Mon, 12 Dec 2022 05:11:59 GMT Last-Modified: Mon, 12 Dec 2022 03:30:15 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: b3ed11df41acb5b32a28632c818324a5 Sha1: 5e2f3b7949a8307402c5c0ca915846a43b0e50e8 Sha256: e2bd0efe1858062e21b06290d55995a7850cec7cced71af0ac3bf3cc57cd5fea
GET /img/robux.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/robux.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 44e5a0923e6a0c2157435f215db9d3c2edf95408dfb3d87fa553830f582e24fd 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 14564 Last-Modified: Fri, 03 Sep 2021 06:31:43 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c14f-38e4" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 220 x 220, 8-bit/color RGBA, non-interlaced\012- data Size: 14564 Md5: 9c5420a8f8c55be36294fce245595dba Sha1: 4b9a024b51a475b1b7514a7650ff684ec9323572 Sha256: 44e5a0923e6a0c2157435f215db9d3c2edf95408dfb3d87fa553830f582e24fd Alerts: Blocklists: - quad9: Sinkholed
GET /image/thumb/Purple122/v4/9b/ac/11/9bac11ba-0ca7-a097-9c52-b47dcaf27748/AppIcon-1x_U007emarketing-0-7-0-0-85-220.png/150x150bb.jpg HTTP/1.1 Host: is1-ssl.mzstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: is1-ssl.mzstatic.com/image/thumb/Purple122/v4/9b/ac/11/ (...) FQDN: is1-ssl.mzstatic.com IP: 23.38.200.24 HASH: 2ad1acfa41c0453140b8739505564112b5c255f6b1eca9a6338310db44061f26 23.38.200.24 HTTP/2 200 OK content-type: image/jpeg server: daiquiri/3.0.0 content-length: 12213 x-apple-jingle-correlation-key: OOCNGUETKYYAYBWWGPU42467XM x-apple-request-uuid: 7384d350-9356-300c-06d6-33e9cd73dfbb b3: 7384d3509356300c06d633e9cd73dfbb-aa58e7e80c2524bd x-b3-traceid: 7384d3509356300c06d633e9cd73dfbb x-b3-spanid: aa58e7e80c2524bd apple-seq: 0.0 apple-tk: false apple-originating-system: UnknownOriginatingSystem last-modified: Thu, 08 Dec 2022 22:54:33 GMT etag: "MSwxLjI4LTIySCxWZXJzaW9uIDEyLjEgKEJ1aWxkIDIxQzUyKSwxNjcwNTQwMDczMTIxLGlzQnVpbGRWZXJzaW9uTm90U2V0LDUwMjg0LG5vRWZmZWN0" access-control-allow-origin: * access-control-expose-headers: Content-Length,Content-Type,ETag,Cache-Control,Expires,Last-Modified timing-allow-origin: * strict-transport-security: max-age=31536000; includeSubDomains x-daiquiri-instance: daiquiri:13624002:mr85p00it-hyhk03094901:7987:22RELEASE175:daiquiri-amp-processing-shared-int-001-mr cdnuuid: db1ce18a-00fc-451a-9389-ab5a87cb7b33-3886458766 cache-control: no-transform, max-age=15157900 date: Mon, 12 Dec 2022 05:12:00 GMT x-cache: TCP_MEM_HIT from a23-36-79-4.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-) X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 150x150, components 3\012- data Size: 12213 Md5: eaa6067e2c9d149e326fbcfbc7d2367b Sha1: e2bb57b2028e5a3f04e59db618d87b0fb4818230 Sha256: 2ad1acfa41c0453140b8739505564112b5c255f6b1eca9a6338310db44061f26
GET /enigmanetwork.net/dmca.png HTTP/1.1 Host: i0.wp.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: i0.wp.com/enigmanetwork.net/dmca.png FQDN: i0.wp.com IP: 192.0.77.2 HASH: 0cbddd5e01b49d35d16b15fc54a481a17a0f2803c2da6807800428139dd50f7f 192.0.77.2 HTTP/2 200 OK content-type: image/webp server: nginx date: Mon, 12 Dec 2022 05:12:00 GMT content-length: 668 last-modified: Thu, 04 Aug 2022 17:20:08 GMT expires: Sun, 04 Aug 2024 05:20:08 GMT cache-control: public, max-age=63115200 link: <http://enigmanetwork.net/dmca.png>; rel="canonical" x-content-type-options: nosniff etag: "a264775a6858f15f" vary: Accept x-nc: HIT arn 5 access-control-allow-origin: * access-control-allow-methods: GET, HEAD timing-allow-origin: * X-Firefox-Spdy: h2 --- Additional Info --- Magic: RIFF (little-endian) data, Web/P image\012- data Size: 668 Md5: fa302d465f15a34e8264bc761a6902aa Sha1: 2c73911e3cfcf82860d1d59a0ccd2625ae98fffb Sha256: 0cbddd5e01b49d35d16b15fc54a481a17a0f2803c2da6807800428139dd50f7f
GET /img/main-bg.jpg HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/main-bg.jpg FQDN: gaminghelper.co IP: 91.223.82.61 HASH: efbff382982bb66a918e5412741a23a309c6f4ca4e9820e65e67f659767765d6 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/jpeg Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 9365 Last-Modified: Fri, 03 Sep 2021 06:31:31 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c143-2495" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data Size: 9365 Md5: d93b1723b2a2723d48696c5a6cae3b7e Sha1: 6f69bdc7079dd114f6fc816c5098f80b58c7b794 Sha256: efbff382982bb66a918e5412741a23a309c6f4ca4e9820e65e67f659767765d6 Alerts: Blocklists: - quad9: Sinkholed
GET /img/pr-l.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/pr-l.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 37e1b903b1a3b99f70dd9b463948bbaed162d7f3cc957dbc5084f0c523b9ec0d 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 7453 Last-Modified: Fri, 03 Sep 2021 06:31:41 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c14d-1d1d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 960 x 1080, 8-bit colormap, non-interlaced\012- data Size: 7453 Md5: 91d0b1f8f5b7685478ff0d1f461fa658 Sha1: 7e457376b687add741a5d6cea2713dc4ef37efbc Sha256: 37e1b903b1a3b99f70dd9b463948bbaed162d7f3cc957dbc5084f0c523b9ec0d Alerts: Blocklists: - quad9: Sinkholed
GET /img/pr-r.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/pr-r.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: e88b54e0aa65055cb25657c0ed283b4d768a79770980c27f424886a48fa046ef 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 11003 Last-Modified: Fri, 03 Sep 2021 06:31:41 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c14d-2afb" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 960 x 1080, 8-bit colormap, non-interlaced\012- data Size: 11003 Md5: 284e10ee335890399e8f772c430570a9 Sha1: 188bf895905cee7d579aad2b6b5cdf795741f9cd Sha256: e88b54e0aa65055cb25657c0ed283b4d768a79770980c27f424886a48fa046ef Alerts: Blocklists: - quad9: Sinkholed
GET /img/panel-overlay.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/panel-overlay.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: b7a5d35c1c7be1953002244f054a14f38ed11912ad52d25a8e963774f7f52e0e 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 3116 Last-Modified: Fri, 03 Sep 2021 06:31:34 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c146-c2c" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 960 x 661, 4-bit colormap, non-interlaced\012- data Size: 3116 Md5: 2b026d93f79b384005e4252c80701791 Sha1: 87804a0d83d2e745b31526c8b60d026abecbe73a Sha256: b7a5d35c1c7be1953002244f054a14f38ed11912ad52d25a8e963774f7f52e0e Alerts: Blocklists: - quad9: Sinkholed
GET /img/smallbtnbg-r.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/smallbtnbg-r.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 0f61dff49d41fddbcc21de3dd4f1a62006f366083361d725bfd92ccf87212067 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 1393 Last-Modified: Fri, 03 Sep 2021 06:31:48 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c154-571" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 100 x 150, 8-bit colormap, non-interlaced\012- data Size: 1393 Md5: bdfffd47e30bf7d045d45f0125a33164 Sha1: 5834aea23f79a1ddccea3825bd51249307435c5f Sha256: 0f61dff49d41fddbcc21de3dd4f1a62006f366083361d725bfd92ccf87212067 Alerts: Blocklists: - quad9: Sinkholed
GET /img/smallbtnbg.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/smallbtnbg.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: dcf687cc9a059bc7a036faf3a86c50103d04e1fdca867deb7553ec9136719f0d 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 1405 Last-Modified: Fri, 03 Sep 2021 06:31:48 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c154-57d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 100 x 150, 8-bit colormap, non-interlaced\012- data Size: 1405 Md5: 92b84c143879abe85792a3408ae4845d Sha1: 1f8e983f7514d582e81cfee98ad8bb40ced26972 Sha256: dcf687cc9a059bc7a036faf3a86c50103d04e1fdca867deb7553ec9136719f0d Alerts: Blocklists: - quad9: Sinkholed
GET /font-awesome/4.5.0/css/font-awesome.min.css HTTP/1.1 Host: maxcdn.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: maxcdn.bootstrapcdn.com/font-awesome/4.5.0/css/font-awe (...) FQDN: maxcdn.bootstrapcdn.com IP: 188.114.98.234 HASH: 3579b0959999dba0a88e7d6989dbdb94de59a726908003ed76f628e7c016d2b6 188.114.98.234 HTTP/2 200 OK content-type: text/css; charset=utf-8 date: Mon, 12 Dec 2022 05:11:59 GMT vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE cdn-edgestorageid: 565, 617, 617 last-modified: Mon, 25 Jan 2021 22:04:54 GMT cdn-cachedat: 2021-06-08 19:04:20 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cache-control: public, max-age=31919000 timing-allow-origin: * cross-origin-resource-policy: cross-origin access-control-allow-origin: * x-content-type-options: nosniff cdn-requestid: e9a84d03a1f7c6aa17012c712a6e5dd5 cdn-status: 200 cdn-cache: HIT cf-cache-status: HIT age: 16266167 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7783f665bd8e1bfa-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (27303) Size: 6839 Md5: 567cfe01ece2fd12dbfa121a2c4dd82c Sha1: 40bebdc6bb238a42ec0391d7e0da7715b630195e Sha256: 3579b0959999dba0a88e7d6989dbdb94de59a726908003ed76f628e7c016d2b6
GET /fonts/bebasneue_bold-webfont.html HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/fonts/bebasneue_bold-webfont.html FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 13c03e5c6b49e447770ba4d0aee22d4aedbeed87e94f54fdcaf990934c109830 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 15216 Last-Modified: Fri, 03 Sep 2021 06:30:48 GMT Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: "6131c118-3b70" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15216, version 1.197\012- data Size: 15216 Md5: 772fc6a0795e2498a1715526dd95ac22 Sha1: d410a8da10385a0ef11a74e69644493b99315fc3 Sha256: 13c03e5c6b49e447770ba4d0aee22d4aedbeed87e94f54fdcaf990934c109830 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /img/btn-img.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/btn-img.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: e7e359cb00b793c60c192fb1dbffa401806d99267e9b55d8bc9ce3c8260568ae 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 1335 Last-Modified: Fri, 03 Sep 2021 06:31:13 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c131-537" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 150 x 100, 8-bit colormap, non-interlaced\012- data Size: 1335 Md5: 817cb08a965fe5bf8debba11091e94c0 Sha1: 214d58c18bcbcfebd1606554929e9bc5f65755c6 Sha256: e7e359cb00b793c60c192fb1dbffa401806d99267e9b55d8bc9ce3c8260568ae Alerts: Blocklists: - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 7371baa9980618773809e1f238fb57f8ec6eef6bdc37d127bead092b7fde990c 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Dec 2022 05:12:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 6d462d3e6bc6168ee30040355f8b96ee Sha1: 7578100cefe27a95fc25fa11481d78353185a9f0 Sha256: 7371baa9980618773809e1f238fb57f8ec6eef6bdc37d127bead092b7fde990c
GET /fonts/et-line.woff HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/fonts/et-line.woff FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 19d2f43d546ada73dd083f7778aa4a5cac1a8e7a3af56efccae580fce07a5e1c 91.223.82.61 HTTP/1.1 200 OK Content-Type: font/woff Server: nginx Date: Mon, 12 Dec 2022 05:11:59 GMT Content-Length: 55220 Last-Modified: Fri, 03 Sep 2021 06:30:56 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c120-d7b4" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Web Open Font Format, CFF, length 55220, version 1.0\012- data Size: 55220 Md5: b01ff252761958325faab1535c90c87f Sha1: d33413e7bc42acc8837cc9030ca45d29c1ccf0c6 Sha256: 19d2f43d546ada73dd083f7778aa4a5cac1a8e7a3af56efccae580fce07a5e1c Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://gaminghelper.co Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWb (...) FQDN: fonts.gstatic.com IP: 142.250.74.35 HASH: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db 142.250.74.35 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44856 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 05 Dec 2022 18:52:41 GMT expires: Tue, 05 Dec 2023 18:52:41 GMT cache-control: public, max-age=31536000 age: 555559 last-modified: Mon, 15 Aug 2022 18:20:18 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Size: 44856 Md5: 565ce506190ad3af920b40baf1794cec Sha1: ad3cba5d06100e09449a864d3b5e58403b478b3d Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /fonts/bebasneue_regular-webfont.html HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://gaminghelper.co/css/style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/fonts/bebasneue_regular-webfont.html FQDN: gaminghelper.co IP: 91.223.82.61 HASH: bee0bcc11701aea746fd8b734379ba5e003a034460bfd71d88dc364b4d939be6 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html Server: nginx Date: Mon, 12 Dec 2022 05:12:00 GMT Content-Length: 15948 Last-Modified: Fri, 03 Sep 2021 06:30:51 GMT Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: "6131c11b-3e4c" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15948, version 1.197\012- data Size: 15948 Md5: af83f1b88fb4654673e9c841bd22a8c7 Sha1: 61e5a340ea87431211d732024f2703dca5b80cbc Sha256: bee0bcc11701aea746fd8b734379ba5e003a034460bfd71d88dc364b4d939be6 Alerts: Blocklists: - fortinet: Phishing - quad9: Sinkholed
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.131 HASH: 7371baa9980618773809e1f238fb57f8ec6eef6bdc37d127bead092b7fde990c 142.250.74.131 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Dec 2022 05:12:00 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 6d462d3e6bc6168ee30040355f8b96ee Sha1: 7578100cefe27a95fc25fa11481d78353185a9f0 Sha256: 7371baa9980618773809e1f238fb57f8ec6eef6bdc37d127bead092b7fde990c
GET /translate_static/css/translateelement.css HTTP/1.1 Host: translate.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: translate.googleapis.com/translate_static/css/translate (...) FQDN: translate.googleapis.com IP: 142.250.74.10 HASH: 696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0 142.250.74.10 HTTP/2 200 OK content-type: text/css accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="rosetta" report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]} content-length: 3619 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 12 Dec 2022 04:28:24 GMT expires: Mon, 12 Dec 2022 05:28:24 GMT cache-control: public, max-age=3600 age: 2616 last-modified: Wed, 17 Aug 2022 23:38:00 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (18670) Size: 3619 Md5: 897ba9a21d9625286674da769dacc2e2 Sha1: 84b4923ab7dee562395160824d53496314499b77 Sha256: 696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /img/cf/Poland.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Cookie: username1Cookie=Mafalda; username2Cookie=Adelia Conti; username3Cookie=Calvin; comment1Cookie=AWESOME!!.. thanks =D; comment2Cookie=wow; comment3Cookie=this website is giving some real stuff ! thank you Concordio! :D Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Poland.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 1cc510cc544d64ebf21e8c11b4defa4e668994616be54684f61e946285599f21 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:12:00 GMT Content-Length: 1165 Last-Modified: Fri, 03 Sep 2021 06:32:53 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c195-48d" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 1165 Md5: 49e730e61305c12664ba071bab1f84a7 Sha1: 68e6a04ea58034c1316ddd8a1b54365a7eb0fce3 Sha256: 1cc510cc544d64ebf21e8c11b4defa4e668994616be54684f61e946285599f21 Alerts: Blocklists: - quad9: Sinkholed
GET /close.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Cookie: username1Cookie=Mafalda; username2Cookie=Adelia Conti; username3Cookie=Calvin; comment1Cookie=AWESOME!!.. thanks =D; comment2Cookie=wow; comment3Cookie=this website is giving some real stuff ! thank you Concordio! :D Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/close.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: a967335d601fb662b5723f1181b3d07f25811d2ca26131598c48482b9935217b 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:12:00 GMT Content-Length: 4878 Last-Modified: Fri, 03 Sep 2021 06:30:21 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c0fd-130e" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data Size: 4878 Md5: fb5d414fccc35f19fde0f30a8c98139b Sha1: 4b4a030923039e56efdad2c2d97f0a74d2c74657 Sha256: a967335d601fb662b5723f1181b3d07f25811d2ca26131598c48482b9935217b Alerts: Blocklists: - quad9: Sinkholed
GET /app/431946152/img/favicon-16x16.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Cookie: username1Cookie=Mafalda; username2Cookie=Adelia Conti; username3Cookie=Calvin; comment1Cookie=AWESOME!!.. thanks =D; comment2Cookie=wow; comment3Cookie=this website is giving some real stuff ! thank you Concordio! :D Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/app/431946152/img/favicon-16x16.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d 91.223.82.61 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Server: nginx Date: Mon, 12 Dec 2022 05:12:00 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding X-Powered-By: PHP/8.0.8RC1 Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (14923) Size: 20003 Md5: 94d17b53e2271b5c8ee9d31c9c3a57d2 Sha1: 58af2bb33446f359b61abecf0e9260f58a1cfe6f Sha256: 2332bf48b3f4bed1d741a0ad0a77dee6ce0ab4d1fc1b929ebe8a3c69df1e230d Alerts: Blocklists: - quad9: Sinkholed
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: a35e53b0a234bc0073c60157245bcac2e5f4f0bc0f08c57428b6a7e488e46f97 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A35E53B0A234BC0073C60157245BCAC2E5F4F0BC0F08C57428B6A7E488E46F97" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=1778 Expires: Mon, 12 Dec 2022 05:41:38 GMT Date: Mon, 12 Dec 2022 05:12:00 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: a2da865741e6e2a09b5698eae1cdb3ff Sha1: 40911ac1e9efb14d6f007fc3f286740ed58974a3 Sha256: a35e53b0a234bc0073c60157245bcac2e5f4f0bc0f08c57428b6a7e488e46f97
GET /js15_as.js HTTP/1.1 Host: s10.histats.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s10.histats.com/js15_as.js FQDN: s10.histats.com IP: 46.105.201.240 HASH: 998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1 46.105.201.240 HTTP/2 200 OK content-type: text/javascript date: Mon, 12 Dec 2022 05:11:11 GMT etag: "-375139978" last-modified: Thu, 16 Apr 2020 10:44:16 GMT x-request-id: 1002701948 content-encoding: br x-cdn-pop: sbg x-cdn-pop-ip: 137.74.120.0/27 x-cacheable: Matched cache accept-ranges: bytes content-length: 4364 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (11440), with no line terminators Size: 4364 Md5: ed192092c129db6123a3397855f42619 Sha1: 067e9b8e26cf6246eb84c6b9cf3da0c192ce7b3e Sha256: 998fff486a7fb38b6ed445edc36c9b317b70950cd39efcf4012ca641312fcee1
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: eb3a44283245d890cbda386d87eb4f429e57d6892a65e92a45056de7e54a5c83 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "EB3A44283245D890CBDA386D87EB4F429E57D6892A65E92A45056DE7E54A5C83" Last-Modified: Sat, 10 Dec 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21551 Expires: Mon, 12 Dec 2022 11:11:11 GMT Date: Mon, 12 Dec 2022 05:12:00 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d1aff01089d0c3d07e64ead4b8bb747a Sha1: 492e4b8dc0cf0e46fa7f35e3b4bdbb9df25859c8 Sha256: eb3a44283245d890cbda386d87eb4f429e57d6892a65e92a45056de7e54a5c83
GET /matomo.js HTTP/1.1 Host: track.enigmacdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: track.enigmacdn.com/matomo.js FQDN: track.enigmacdn.com IP: 91.223.82.61 HASH: f7a1fe5cff057b3d4c769d456085425932f39e43050ba4ff77fd9e0a66b57881 91.223.82.61 HTTP/1.1 200 OK Content-Type: application/javascript Server: nginx Date: Mon, 12 Dec 2022 05:12:00 GMT Last-Modified: Wed, 26 May 2021 02:21:35 GMT Transfer-Encoding: chunked Connection: keep-alive Keep-Alive: timeout=60 Vary: Accept-Encoding ETag: W/"60adb0af-f330" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with very long lines (1404) Size: 20210 Md5: 8cd72e4f9c8225acdd40bf7dc2406e19 Sha1: 0cd39b8143536dfb54d1224e502ccc6567081204 Sha256: f7a1fe5cff057b3d4c769d456085425932f39e43050ba4ff77fd9e0a66b57881
GET /stats/0.php?4515739&@f16&@g1&@h1&@i1&@j1670821918731&@k0&@l1&@mRobux%20Generator%20Online&@n0&@o1000&@q0&@r0&@s0&@ten-US&@u1280&@b1:91573807&@b3:1670821919&@b4:js15_as.js&@b5:0&@a-_0.2.1&@vhttps%3A%2F%2Fgaminghelper.co%2Fapp%2F431946152%2Fhow-to-hack-roblox-no-download-2021-game-hack&@w HTTP/1.1 Host: s4.histats.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: s4.histats.com/stats/0.php?4515739&@f16&@g1&@h1&@i1&@j1 (...) FQDN: s4.histats.com IP: 54.39.128.117 HASH: 0e376f29e85023cc36367a34ab6ee7241b226c39beb34beea0f34683ae58068e 54.39.128.117 HTTP/1.1 200 OK Content-Type: text/html;charset=UTF-8 Date: Mon, 12 Dec 2022 05:12:00 GMT Content-Length: 51 Connection: close --- Additional Info --- Magic: ASCII text, with no line terminators Size: 51 Md5: 47853c10a0910b11d310f74bed181795 Sha1: e7a1918c8c55050f628dca78f033152db8a886b0 Sha256: 0e376f29e85023cc36367a34ab6ee7241b226c39beb34beea0f34683ae58068e
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11802 Expires: Mon, 12 Dec 2022 08:28:43 GMT Date: Mon, 12 Dec 2022 05:12:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d35fcd5d7e74c530535b18d57ed5f587 Sha1: 3b9bf9e02593b63108515f4df7cae57ce62145e7 Sha256: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11802 Expires: Mon, 12 Dec 2022 08:28:43 GMT Date: Mon, 12 Dec 2022 05:12:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d35fcd5d7e74c530535b18d57ed5f587 Sha1: 3b9bf9e02593b63108515f4df7cae57ce62145e7 Sha256: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11802 Expires: Mon, 12 Dec 2022 08:28:43 GMT Date: Mon, 12 Dec 2022 05:12:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d35fcd5d7e74c530535b18d57ed5f587 Sha1: 3b9bf9e02593b63108515f4df7cae57ce62145e7 Sha256: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0" Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11802 Expires: Mon, 12 Dec 2022 08:28:43 GMT Date: Mon, 12 Dec 2022 05:12:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: d35fcd5d7e74c530535b18d57ed5f587 Sha1: 3b9bf9e02593b63108515f4df7cae57ce62145e7 Sha256: 4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F874871c4-8926-4b04-bfff-02394b99d57d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: f3f072fa84b0e96c26772102d5dee8ae40b47930b97cc73f8b7f8d094eddfe5f 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7754 x-amzn-requestid: 85ecd9d3-7346-4825-a240-e6591d533b1d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dAEYIFwqIAMF5rg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63964dcd-6d066d18484856637b9e9e68;Sampled=0 x-amzn-remapped-date: Sun, 11 Dec 2022 21:38:21 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: X9WRKWbJuNm6i_t7q3lSE66T8kwxYm8sKFlIF6BUQjACfjI6GkLwcA== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Dec 2022 22:29:49 GMT etag: "b3e23cc5afdb89523f2d7a2442adb44c7f113235" age: 24132 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7754 Md5: 5db1ee2967dafa917caa26ae9b09962f Sha1: b3e23cc5afdb89523f2d7a2442adb44c7f113235 Sha256: f3f072fa84b0e96c26772102d5dee8ae40b47930b97cc73f8b7f8d094eddfe5f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28ca8584-4fe3-46fd-a7dd-89fcbfcdc140.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 1fe7c0060b334829d474ab050904cae368e94e34087fe215420e1bc8812c68fa 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7107 x-amzn-requestid: 2f14eedb-67e0-4aed-992d-ebc7a3ee8c22 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dAD7cEM2oAMFSow= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63964d15-3ee19e1b4aa879b61d74f9b8;Sampled=0 x-amzn-remapped-date: Sun, 11 Dec 2022 21:35:17 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: -wxHR5WiwP3GSp3w-P5oQNlg9FxeoGZws2vnKDB327IW1jf87DC-0Q== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Dec 2022 21:35:18 GMT etag: "4eb023b077b57899bd8a982ca914a984b35c7b69" age: 27403 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7107 Md5: b58c5d54fb6c539a25104dd38b9d5a33 Sha1: 4eb023b077b57899bd8a982ca914a984b35c7b69 Sha256: 1fe7c0060b334829d474ab050904cae368e94e34087fe215420e1bc8812c68fa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31846d25-a332-413d-b165-920d614e4459.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: b7c94aa74cbb7477541aee3382a8754b2ece20f647366aab6743fddac2cfbb8d 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6907 x-amzn-requestid: 6fe7f356-3243-4bd0-b3b4-6a372b0b50be x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dAD7RGx2IAMFk8g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63964d14-0313b6d539d75742114dab10;Sampled=0 x-amzn-remapped-date: Sun, 11 Dec 2022 21:35:16 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: xVD9tE77stQz0W8-59L1GvXaziDHQce7zswS48xfDK9P5m0AXXSjZA== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Dec 2022 21:35:17 GMT etag: "e82afaa50d42a9f4f90681c20dfa4b6b0fbf0203" age: 27404 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6907 Md5: e259f6cfee2d6c0e6ed8f96667e49d29 Sha1: e82afaa50d42a9f4f90681c20dfa4b6b0fbf0203 Sha256: b7c94aa74cbb7477541aee3382a8754b2ece20f647366aab6743fddac2cfbb8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d9c5ff-aaa2-4c2a-ab2b-661f84126bf7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 9e23bc16cd1402d9124ebb9e625a5580f677ca9e008d3e04dc95080072fd1df4 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7104 x-amzn-requestid: b1117224-be51-4e21-8b3b-01e5485f0af0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dAD2yH4loAMFuWQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63964cf8-1382e1a6710239ec629eedb8;Sampled=0 x-amzn-remapped-date: Sun, 11 Dec 2022 21:34:48 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: A--8wjYJWCj_JD6eaj3FoD0dLarj6gvH2uQrmsEDLgPwZdQgtUmaoA== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Dec 2022 21:34:48 GMT age: 27433 etag: "f11e21b6ad97e07b1d7103ad40a2e158e06fda73" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7104 Md5: 86bce3d677c0dd541440ebf38920020d Sha1: f11e21b6ad97e07b1d7103ad40a2e158e06fda73 Sha256: 9e23bc16cd1402d9124ebb9e625a5580f677ca9e008d3e04dc95080072fd1df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb38d4a88-9422-41e0-90f0-cc19c2816f8a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 0855d5b41708252c6bdb88382c64c6ed89721523d430333a5816b85f9e901b4b 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 6789 x-amzn-requestid: 692cfc2b-ef1e-432b-adc6-cbe71b948ad0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dAD7HFCOIAMFk1Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63964d13-6e956e071331a1560d4f6f3f;Sampled=0 x-amzn-remapped-date: Sun, 11 Dec 2022 21:35:15 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: _oHlFqzoduZMveEpKAjhlrpdCQqdAOU-UrcM8DWwXR70K1e7xYA2Qw== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Dec 2022 21:35:15 GMT etag: "646216151e3c1aa66f30c323f0ad19b713dc6b90" age: 27406 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6789 Md5: ccb6f5a22e2436f35e44eb111ecba475 Sha1: 646216151e3c1aa66f30c323f0ad19b713dc6b90 Sha256: 0855d5b41708252c6bdb88382c64c6ed89721523d430333a5816b85f9e901b4b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a765cd8-d4ff-441c-a948-f6a223fa2b0b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: a0747f29eb6084eef42d3c247594973b02c619c7ec56b6137e24b6d0362557a0 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4720 x-amzn-requestid: dd990fe1-8447-403e-b276-40889af5baa0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dAENuF6SoAMF7oQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63964d8a-59b5a8f92ef6111e64e16079;Sampled=0 x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:14 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: kwweq9Tz-UmF0uP_LKgkPlXwvak8U55ZoBW37FyytkDV0peSujBf5Q== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Dec 2022 22:16:48 GMT age: 24913 etag: "d43cd03d5eb3e7618b6fb70c935010c2ac92ad32" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4720 Md5: 38876d760ef06c8471468c474c1e28a7 Sha1: d43cd03d5eb3e7618b6fb70c935010c2ac92ad32 Sha256: a0747f29eb6084eef42d3c247594973b02c619c7ec56b6137e24b6d0362557a0
POST /matomo.php?action_name=Robux%20Generator%20Online&idsite=1&rec=1&r=025474&h=5&m=11&s=58&url=https%3A%2F%2Fgaminghelper.co%2Fapp%2F431946152%2Fhow-to-hack-roblox-no-download-2021-game-hack&_id=e7e22b82472dcbee&_idn=1&_refts=0&send_image=0&cookie=1&res=1280x1024&pv_id=EZ129P&pf_net=264&pf_srv=59&pf_tfr=31&pf_dm1=800 HTTP/1.1 Host: track.enigmacdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=utf-8 Content-Length: 0 Origin: https://gaminghelper.co Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: track.enigmacdn.com/matomo.php?action_name=Robux%20Gene (...) FQDN: track.enigmacdn.com IP: 91.223.82.61 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 91.223.82.61 HTTP/1.1 204 No Response Content-Type: text/html; charset=UTF-8 Server: nginx Date: Mon, 12 Dec 2022 05:12:01 GMT Content-Length: 0 Connection: keep-alive Keep-Alive: timeout=60 X-Powered-By: PHP/8.0.8RC1 Access-Control-Allow-Origin: https://gaminghelper.co Access-Control-Allow-Credentials: true --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/cf/Sweden.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Cookie: username1Cookie=Mafalda; username2Cookie=Adelia Conti; username3Cookie=Calvin; comment1Cookie=AWESOME!!.. thanks =D; comment2Cookie=wow; comment3Cookie=this website is giving some real stuff ! thank you Concordio! :D; HstCfa4515739=1670821918731; HstCla4515739=1670821918731; HstCmu4515739=1670821918731; HstPn4515739=1; HstPt4515739=1; HstCnv4515739=1; HstCns4515739=1; _pk_id.1.166e=e7e22b82472dcbee.1670821919.; _pk_ses.1.166e=1; timePosted11Cookie=52601; timePosted22Cookie=42978; timePosted33Cookie=20094 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Sweden.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: f577b1bb05cbd810b2a0b040113f68b568f12a1649ed6321c7762d4898820279 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:12:02 GMT Content-Length: 1211 Last-Modified: Fri, 03 Sep 2021 06:33:05 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c1a1-4bb" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 1211 Md5: 7feabb1881584be6eebec51635c660a3 Sha1: a59a164705c5a80894fad514257abe660d4dc5fb Sha256: f577b1bb05cbd810b2a0b040113f68b568f12a1649ed6321c7762d4898820279 Alerts: Blocklists: - quad9: Sinkholed
GET /img/cf/Argentina.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Cookie: username1Cookie=Mafalda; username2Cookie=Adelia Conti; username3Cookie=Calvin; comment1Cookie=AWESOME!!.. thanks =D; comment2Cookie=wow; comment3Cookie=this website is giving some real stuff ! thank you Concordio! :D; HstCfa4515739=1670821918731; HstCla4515739=1670821918731; HstCmu4515739=1670821918731; HstPn4515739=1; HstPt4515739=1; HstCnv4515739=1; HstCns4515739=1; _pk_id.1.166e=e7e22b82472dcbee.1670821919.; _pk_ses.1.166e=1; timePosted11Cookie=55601; timePosted22Cookie=45978; timePosted33Cookie=23094 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Argentina.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3c4841637af6518e2ddc94b9500c493bb87c19b6b7935d2dc3452ed67138259e 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:12:05 GMT Content-Length: 1406 Last-Modified: Fri, 03 Sep 2021 06:32:00 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c160-57e" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 1406 Md5: 4d0394056d284ce1a88c384397bb0c1d Sha1: 9956c837da581610e6b1d66052165776fa31fabb Sha256: 3c4841637af6518e2ddc94b9500c493bb87c19b6b7935d2dc3452ed67138259e Alerts: Blocklists: - quad9: Sinkholed
GET /img/cf/Australia.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Cookie: username1Cookie=Mafalda; username2Cookie=Adelia Conti; username3Cookie=Calvin; comment1Cookie=AWESOME!!.. thanks =D; comment2Cookie=wow; comment3Cookie=this website is giving some real stuff ! thank you Concordio! :D; HstCfa4515739=1670821918731; HstCla4515739=1670821918731; HstCmu4515739=1670821918731; HstPn4515739=1; HstPt4515739=1; HstCnv4515739=1; HstCns4515739=1; _pk_id.1.166e=e7e22b82472dcbee.1670821919.; _pk_ses.1.166e=1; timePosted11Cookie=56601; timePosted22Cookie=46978; timePosted33Cookie=24094 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Australia.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: fd95fecd771de335148c8bfa9ae7623d432bf6ec237c61cc42b03203c7752736 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:12:06 GMT Content-Length: 2236 Last-Modified: Fri, 03 Sep 2021 06:32:01 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c161-8bc" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 2236 Md5: 6e02b268dd832cf821f5a979231df494 Sha1: 303ccd6186acd8a641d1ab745e12028f75d1cd8e Sha256: fd95fecd771de335148c8bfa9ae7623d432bf6ec237c61cc42b03203c7752736 Alerts: Blocklists: - quad9: Sinkholed
GET /img/cf/Czech-Republic.png HTTP/1.1 Host: gaminghelper.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack Cookie: username1Cookie=Mafalda; username2Cookie=Adelia Conti; username3Cookie=Calvin; comment1Cookie=AWESOME!!.. thanks =D; comment2Cookie=wow; comment3Cookie=this website is giving some real stuff ! thank you Concordio! :D; HstCfa4515739=1670821918731; HstCla4515739=1670821918731; HstCmu4515739=1670821918731; HstPn4515739=1; HstPt4515739=1; HstCnv4515739=1; HstCns4515739=1; _pk_id.1.166e=e7e22b82472dcbee.1670821919.; _pk_ses.1.166e=1; timePosted11Cookie=57601; timePosted22Cookie=47978; timePosted33Cookie=25094 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	URL: gaminghelper.co/img/cf/Czech-Republic.png FQDN: gaminghelper.co IP: 91.223.82.61 HASH: 3fb0821137e44562ed77147e2da4137738c64120a859438baea07c8e71b2da98 91.223.82.61 HTTP/1.1 200 OK Content-Type: image/png Server: nginx Date: Mon, 12 Dec 2022 05:12:07 GMT Content-Length: 1716 Last-Modified: Fri, 03 Sep 2021 06:32:16 GMT Connection: keep-alive Keep-Alive: timeout=60 ETag: "6131c170-6b4" Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 70 x 47, 8-bit/color RGBA, non-interlaced\012- data Size: 1716 Md5: a42f43abb39ae89c6d8fc4e32d82c9db Sha1: bd6199e8baf1886592d04b85d35e9455e6bb20fd Sha256: 3fb0821137e44562ed77147e2da4137738c64120a859438baea07c8e71b2da98 Alerts: Blocklists: - quad9: Sinkholed
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1 Host: translate.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: translate.google.com/translate_a/element.js?cb=googleTr (...) FQDN: translate.google.com IP: 216.58.211.14 216.58.211.14 HTTP/2 200 OK content-type: text/javascript; charset=utf-8 cache-control: no-cache, no-store, max-age=0, must-revalidate pragma: no-cache expires: Mon, 01 Jan 1990 00:00:00 GMT date: Mon, 12 Dec 2022 05:11:59 GMT cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff set-cookie: CONSENT=PENDING+160; expires=Wed, 11-Dec-2024 05:11:59 GMT; path=/; domain=.google.com; Secure p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info." alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /css?family=Open+Sans:300,400,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Open+Sans:300,400,700 FQDN: fonts.googleapis.com IP: 142.250.74.106 142.250.74.106 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 12 Dec 2022 05:11:59 GMT date: Mon, 12 Dec 2022 05:11:59 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /cl/js/114v1 HTTP/1.1 Host: downloadlocked.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://gaminghelper.co/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: downloadlocked.com/cl/js/114v1 FQDN: downloadlocked.com IP: 23.22.126.183 23.22.126.183 HTTP/2 200 OK content-type: text/javascript; charset=UTF-8 server: nginx date: Mon, 12 Dec 2022 05:11:59 GMT cache-control: no-cache, private access-control-allow-origin: * strict-transport-security: max-age=31536000; includeSubDomains x-robots-tag: none set-cookie: XSRF-TOKEN=eyJpdiI6Ik5GOERFMW5HODlMaG1VUzR2M2RrUnc9PSIsInZhbHVlIjoiODRPYmpkQmZIdXlmYjZSRWZTdjREMGVTdXh1MnAwQzcvNW1zcmladDR5SlZLK0ozcTNPa0lTbnNvMUQzclhxOS9DOEpjVkRVbDQrWmlrUmExeEdHNDRBamN6T2hoaWhBbUZEeVl6N0ZzN3JLZ3BrK3Ayc3VhN0RpYTNSL09uNjUiLCJtYWMiOiI2MTBlNzEyNjE5ZTE3ZDM3MGMwYzdjNGY2NzZlYWU0YTZlNTgwM2Q4Mzg3NmNiMjg0NzEyNDU4ZDRjOTM1ODI0IiwidGFnIjoiIn0%3D; expires=Tue, 13 Dec 2022 01:11:59 GMT; Max-Age=72000; path=/; secure; samesite=none ogads_session=eyJpdiI6Ik04Q1lMNDRzaFErZ3FGdVArRXJualE9PSIsInZhbHVlIjoibGJ6MC92THEyckNEbUNZQVk4VDdtMi8yNzNqY1FNMmRsNFBhNHhvNTF4bTVYaEpESlhESHhnUWI3YTZPVENObGg5ZTRpbVdyWStKM1VXNkRXSDgyWnI5ZVZvQ1N5UHg4eHFVVWZuMXV6Vi9kQzhXdE15ekMydVkxZDI1UnB1SXgiLCJtYWMiOiJkNzFjZWIzNTI3ODhkYjMwZGM4ZGM3OGRiNmQ1NzY5Y2QzMjRiY2Q3NzM1OTgwNmY1OTgxZjU0YTc1ZmJiMzE3IiwidGFnIjoiIn0%3D; expires=Tue, 13 Dec 2022 01:11:59 GMT; Max-Age=72000; path=/; secure; httponly; samesite=none x-xss-protection: 1; mode=block, 1; mode=block x-content-type-options: DENY, nosniff X-Firefox-Spdy: h2 --- Additional Info ---

URL	gaminghelper.co/app/431946152/how-to-hack-roblox-no-download-2021-game-hack
IP	91.223.82.61 (Netherlands)
ASN	#199968 Iws Networks LLC
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-12-12 05:12:09 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	49
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (21)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 91.223.82.61

Last 5 reports on ASN: Iws Networks LLC

Last 5 reports on domain: gaminghelper.co

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (20)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (82)

Overview

Domain Summary (21)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 91.223.82.61

Last 5 reports on ASN: Iws Networks LLC

Last 5 reports on domain: gaminghelper.co

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (20)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (82)

Network Intrusion Detection Systems