firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 10 Sep 2022 17:06:45 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mv0ZK8bb_JzNCKHu_58z8yDuXURT8yNOhmYbN_qfZmM-OdMEopxQpA==
Age: 2343
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f55e483f32b3fd50b1a2414aaada9b61
9d6b22edb98866e002e3b1ace44dfb0f8d00935f
4b09e1d2b887ded061e4ec5f82ec70ce699eeed428acc6b4fd3ef10ed9233c89
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4B09E1D2B887DED061E4EC5F82EC70CE699EEED428ACC6B4FD3EF10ED9233C89"
Last-Modified: Thu, 08 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3620
Expires: Sat, 10 Sep 2022 18:46:08 GMT
Date: Sat, 10 Sep 2022 17:45:48 GMT
Connection: keep-alive
www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
64.235.54.28301 Moved Permanently 162 B URL HTTP/1.1 www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
IP 64.235.54.28:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET /roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 10 Sep 2022 17:45:48 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 10 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: gbcb_9m0JdzIuqY1IseGpOHxwhaHjlxV9uJ9FvpzZN9S5SB5DaSNAg==
age: 37716
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:49 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 10 Sep 2022 16:56:07 GMT
Expires: Sat, 10 Sep 2022 17:02:47 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Kp2Ck4K6Og-poRP50cgBd6UvrpmBcwn6Q_ZtPD9JHT3iYoCjZLJppw==
Age: 2982
ocsp.netsolssl.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 5903cfabe59d7a7bb17fabf8d9de8273
4878462c0ddd14c4d0b97d4ec82c04da3383347c
f0f3406d7da08de3d27cb9ac1fd4177fbef53294eb619dc20e4148dfb531bfec
POST / HTTP/1.1
Host: ocsp.netsolssl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:45:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 07 Sep 2022 18:55:45 GMT
Expires: Wed, 14 Sep 2022 18:55:44 GMT
Etag: "4878462c0ddd14c4d0b97d4ec82c04da3383347c"
Cache-Control: max-age=349194,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7489fac36dbf0b65-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 36fe04277220227ba5ecfe7d2ff1d9d9
2eb9f6560336248cc45c1cd66d87505b5ebdf5d4
94f8f2f8f3b67db18825ea48740ff0ce218d7156fe851d6b023ef43b6bee4f7f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2543
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:45:49 GMT
Last-Modified: Sat, 10 Sep 2022 17:03:26 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.86.38.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.86.38.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2F1ai0NdKDiXXizoX2d8Pw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 659/vjXeWPvKyFh2tfzA+QjAVJI=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a4ae55dbf8e22a357ee36e37fafa37af
18d33f606a8bc692802cfaa3a22ceb4a5eedca8c
8343a46c0a87b15be71cab0ae84912ed07d3104d4b621c55e3cd69367f58ebb6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-FH0L8EV0R0
142.250.74.72200 OK 75 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-FH0L8EV0R0
IP 142.250.74.72:0
File type ASCII text, with very long lines (20189)
Hash c5e1aa59945ba576a110133539d61467
88abbbf52cc609477e0f518d21a4157990495571
39c0aa96360edc286801497174cd5c1399bc93c473749b3536c781d5210e25bc
GET /gtag/js?id=G-FH0L8EV0R0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 10 Sep 2022 17:45:50 GMT
expires: Sat, 10 Sep 2022 17:45:50 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74783
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a4ae55dbf8e22a357ee36e37fafa37af
18d33f606a8bc692802cfaa3a22ceb4a5eedca8c
8343a46c0a87b15be71cab0ae84912ed07d3104d4b621c55e3cd69367f58ebb6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:45:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.freeroms.com/js/front-script.js
64.235.54.28200 OK 295 B URL HTTP/2 www.freeroms.com/js/front-script.js
IP 64.235.54.28:0
Hash a174c795cabe8885e66e5dd9b4cfc1d8
eb1b7d6a2f298c3245b3b2d4f399a85b09e4797b
35484d5bbcbe3298d6c046bf77a34aa128a4311d7c82c5566a8f0dbfc53c409b
GET /js/front-script.js HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: application/javascript
content-length: 295
x-accel-version: 0.01
last-modified: Mon, 09 Jan 2017 06:39:35 GMT
etag: "223-545a3a17f17c0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
64.235.54.28200 OK 62 kB URL HTTP/2 www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
IP 64.235.54.28:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ISO-8859 text, with very long lines (59113)
Hash 1a4175ce0e43064466ec12bfeb9d3148
27ca41792e1feecefd8d6ce8156b5164fccc828e
980d048e0e5f8ece04f38c0769bfbec55b6323adb9a0fbc234aa21aa7e0e900d
GET /roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: text/html
last-modified: Sat, 10 Sep 2022 07:58:01 GMT
etag: W/"631c4389-28c93"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c347b386d2bc54e6e22cebdf3c05c2bd
63f7731c6ec7b80a81a00beb0b9ed3973e459d8a
04e4a10e9fd04154c8b8fc67f9edd112a55e724b2e7294f96ae665de97496a28
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "04E4A10E9FD04154C8B8FC67F9EDD112A55E724B2E7294F96AE665DE97496A28"
Last-Modified: Thu, 08 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12673
Expires: Sat, 10 Sep 2022 21:17:03 GMT
Date: Sat, 10 Sep 2022 17:45:50 GMT
Connection: keep-alive
bindingguessingconfessed.com/c4/d5/3d/c4d53d21b4a90448b5012c00c5cfa5a2.js
192.243.61.225200 OK 13 kB URL HTTP/1.1 bindingguessingconfessed.com/c4/d5/3d/c4d53d21b4a90448b5012c00c5cfa5a2.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37120), with no line terminators
Hash 9b9a09f45b0292ebbf8c66e709b65c1e
11341e7a58c9065b58a75d76ede929f09bc1fbb5
b7d811ece7f6388970ae5113f6d5e2efd291cc6d226352708fe3d213fe7fd89e
GET /c4/d5/3d/c4d53d21b4a90448b5012c00c5cfa5a2.js HTTP/1.1
Host: bindingguessingconfessed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 17:45:50 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1178e42521789a13ede72576853e8a93
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 5ada5a3460ccb735aad6c923c1abfb02
105c3e13eac9750088629e1c200794b102c48e4d
503713d1d8dfca76a5efc81db761b240cee2fd8d832225be9f00efe6332dccc4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 10 Sep 2022 17:45:50 GMT
Last-Modified: Sat, 10 Sep 2022 16:14:44 GMT
Server: ECS (nyb/1D14)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ytF_0TMHY9dhH8r6x6YYl24XMiz_lxFEqgQLHVqVm6rRU6w6dihcuQ==
Age: 5466
www.freeroms.com/js/jquery.min.js
64.235.54.28200 OK 32 kB URL HTTP/2 www.freeroms.com/js/jquery.min.js
IP 64.235.54.28:0
File type ASCII text, with very long lines (32038)
Hash 81289ecb0a82fc678b99dbb4a45790fd
feb78734ba8a89a16d3925d4c1b984a0833b34b9
58d61b96ce87960b21682dde88961e7cf32a9a42fc3087100ca56da387775c6b
GET /js/jquery.min.js HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: application/javascript
last-modified: Tue, 28 Jul 2015 06:50:01 GMT
etag: W/"55b72619-176d5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
64.235.54.28200 OK 0 B URL HTTP/2 www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
IP 64.235.54.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: text/html
x-accel-version: 0.01
last-modified: Sat, 10 Sep 2022 07:58:01 GMT
etag: "28c93-5e84e0589fe6d-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.freeroms.com/images/circuit_main_top.gif
64.235.54.28200 OK 1.4 kB URL HTTP/2 www.freeroms.com/images/circuit_main_top.gif
IP 64.235.54.28:0
File type GIF image data, version 89a, 334 x 40\012- data
Hash 8ce66b9116fdb0a263fbbf0ec7299e1c
3f2868999529378d7e40c4acce440c0fdd0963bb
7ee186a06b35fc6499ca0fe10faa3f137fdee61cbfd4163aaba28414b8e65063
GET /images/circuit_main_top.gif HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: image/gif
content-length: 1366
last-modified: Tue, 14 Jul 2015 01:10:55 GMT
etag: "55a4619f-556"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.freeroms.com/images/circuit_left.gif
64.235.54.28200 OK 3.0 kB URL HTTP/2 www.freeroms.com/images/circuit_left.gif
IP 64.235.54.28:0
File type GIF image data, version 89a, 12 x 320\012- data
Hash f84caa56ec89113941ed4823aecea88a
dd608663197ad5cf505e06c8a16fbd42f3001153
7925efc9e31cb712e156e1b0663846dea73debe1200b125ed73dfea95efc06f6
GET /images/circuit_left.gif HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: image/gif
content-length: 3029
last-modified: Tue, 14 Jul 2015 01:10:52 GMT
etag: "55a4619c-bd5"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.freeroms.com/images/black.png
64.235.54.28200 OK 927 B URL HTTP/2 www.freeroms.com/images/black.png
IP 64.235.54.28:0
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 6f78a7c9048c4843d819c2ab39b33b6c
99e314e4b9325f41d0d42512cbf8a4a636871ac4
486e08b2d63e05464d757f1fbf3952a74bff6ff29f9ccace92c478fe8b4e4119
GET /images/black.png HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: image/png
content-length: 927
x-accel-version: 0.01
last-modified: Tue, 14 Jul 2015 01:10:48 GMT
etag: "39f-51acb82299600"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.freeroms.com/images/nav-strip.png
64.235.54.28200 OK 1.1 kB URL HTTP/2 www.freeroms.com/images/nav-strip.png
IP 64.235.54.28:0
File type PNG image data, 7 x 56, 8-bit/color RGB, non-interlaced\012- data
Hash 92f72da7215127fddf06584d40f1f67c
506dec643852f00b64b0a247d5ff68b1c3fe5c7e
d61ce2fb10db1c5814deedb8c6ca63ee220abba2ba29359cd053e28e84f22172
GET /images/nav-strip.png HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: image/png
content-length: 1094
last-modified: Tue, 14 Jul 2015 01:10:45 GMT
etag: "55a46195-446"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.freeroms.com/images/border.png
64.235.54.28200 OK 938 B URL HTTP/2 www.freeroms.com/images/border.png
IP 64.235.54.28:0
File type PNG image data, 2 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash a4de791940d86ff21226a978b905950e
bba1cc2559c7b67cb577f48118604b169a212239
c1ff6bcf530cc998882a66b1a1dafcff6869533caf5a6fea4e137497f0555269
GET /images/border.png HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: image/png
content-length: 938
x-accel-version: 0.01
last-modified: Tue, 14 Jul 2015 01:10:48 GMT
etag: "3aa-51acb82299600"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.freeroms.com/images/rom.png
64.235.54.28200 OK 1.4 kB URL HTTP/2 www.freeroms.com/images/rom.png
IP 64.235.54.28:0
File type PNG image data, 28 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash 213bc22990ce0324b563a2714b22749d
514c1c91577fd3fa56b081a73b419015fcb2baf9
0465cb562ac7a714e9e90eb55764b1bc210b3378c5c01a465f8cdaa386f65349
GET /images/rom.png HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: image/png
content-length: 1365
last-modified: Tue, 14 Jul 2015 01:10:46 GMT
etag: "55a46196-555"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.freeroms.com/images/nav-hover.jpg
64.235.54.28200 OK 1.4 kB URL HTTP/2 www.freeroms.com/images/nav-hover.jpg
IP 64.235.54.28:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2x27, components 3\012- data
Hash eb717b2848bfd323a7a56acb2000c30b
761b2d51d0ebd16d0fbec8c8bb9d3f9ec07cef1c
42b043aacc0907bd04c43941f5f809f38b932a2267465dd71560b52aadeba39c
GET /images/nav-hover.jpg HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: image/jpeg
content-length: 1368
last-modified: Tue, 14 Jul 2015 01:10:45 GMT
etag: "55a46195-558"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.freeroms.com/images/default-arr.png
64.235.54.28200 OK 978 B URL HTTP/2 www.freeroms.com/images/default-arr.png
IP 64.235.54.28:0
File type PNG image data, 3 x 7, 8-bit/color RGBA, non-interlaced\012- data
Hash 0edc018ca2c25a655a9eeed4b31eab51
dba5918c2b540f28d9365ad1db47d658c2dd8f66
d82b013cdd3a3efcde2e7403046e96555f5f7446efef3f2a6879af699f868218
GET /images/default-arr.png HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: image/png
content-length: 978
x-accel-version: 0.01
last-modified: Tue, 14 Jul 2015 01:10:55 GMT
etag: "3d2-51acb829465c0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.freeroms.com/images/white-arr.png
64.235.54.28200 OK 959 B URL HTTP/2 www.freeroms.com/images/white-arr.png
IP 64.235.54.28:0
File type PNG image data, 3 x 7, 8-bit/color RGBA, non-interlaced\012- data
Hash 903756d319facbf280d6218c8c0abd28
8e48f8a6e59a563309420d029a63d0bc94f52f71
f77ebade1d0c3b0e4b69b9a6156294ea756094286fe2ba171e78bd96b7b3bccb
GET /images/white-arr.png HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: image/png
content-length: 959
x-accel-version: 0.01
last-modified: Wed, 25 Jan 2017 04:37:29 GMT
etag: "3bf-546e3ca4b3440"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4b680b0b2523091baa7924c3e5ff1862
ebcfbd8ccf69b5d0764434dd0e7df6e678c841f3
c5b758ea5d07b482b9b5ba1edb527feafa173524eb64e68f3bdeb4266226dd3d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5B758EA5D07B482B9B5BA1EDB527FEAFA173524EB64E68F3BDEB4266226DD3D"
Last-Modified: Fri, 09 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19911
Expires: Sat, 10 Sep 2022 23:17:42 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3359
Expires: Sat, 10 Sep 2022 18:41:50 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3359
Expires: Sat, 10 Sep 2022 18:41:50 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c7c5434-1873-4130-a7ce-78209ce54bf0.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c7c5434-1873-4130-a7ce-78209ce54bf0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15249f3dafdd1690bc87ebb4fa6d518d
f930fcb22325e28592bc39b0b1974f5197c19afd
a0b9e88c78e85a037363e0b0e4e03478718f8715fe69e72bfd159922eca28301
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c7c5434-1873-4130-a7ce-78209ce54bf0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10950
x-amzn-requestid: 435fc2f4-fbcb-4eec-81d8-a23154dcec61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YFUwZEfvIAMFjCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63186802-2348a4000430702d4e9ea132;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 09:44:34 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ORlM8dFTc_iThvJghFakY86D3ToJ5TCmP8Ip2PcvXCCkSKKHpWQ0Zw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:12:29 GMT
age: 70402
etag: "f930fcb22325e28592bc39b0b1974f5197c19afd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1abac18a85802f38f08561ac64020b55
afbc7666fa0b2093ef0c5d9a955d54d139c09b30
eae7f28dd178293939ecd81082ab68ae6098bb3cb1f1fe9411c38314ddb0f944
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a798806-4378-4646-89ee-e50837809910.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9610
x-amzn-requestid: 34102145-abda-4987-a68d-9069496366ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNj0oF7loAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb350-52aee64214c814812c03262e;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 91AsC8-zVFCOPHFb2qnlTev2aXzdCEDYtc68JtYYsQSKS7OFF4QzgQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:59:50 GMT
age: 71161
etag: "afbc7666fa0b2093ef0c5d9a955d54d139c09b30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ade70e6dbcfb3ca1765f95112671e69
3768753be084c0e0fc268be5b192d02d769114b6
9670a3bf2476ba193cfeb3153c1254bdcfc980a28503dda0d9b398a3a59f53f4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0bedecf7-d9af-4aa7-88b0-94b2a33f9e1a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9766
x-amzn-requestid: 720a4111-91de-4672-88c8-f40db517c07d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YHsjRE13oAMFbCA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63195ae1-288f1f5456bf4d146dcf774c;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 03:00:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: HwwG0Hjf8uZn1AtbLU_wKs3w9lict3tRP31XQY6tIxDz9KDNaBMAqw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 04:00:05 GMT
age: 49546
etag: "3768753be084c0e0fc268be5b192d02d769114b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 362d0931425ffa11f3287246f0480cc8
cc0f8bf63d11aeb3ea780af092523833f3b1abd3
75619cdf413b35451f109180e084a3630d0665a24b29e45510fed938d381db75
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe535d149-d5c6-4543-8a5b-a5a98be48b9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6676
x-amzn-requestid: 97140273-f327-4ec8-b076-cea440ce1d29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNi34HNxoAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb1cb-6356b02944a048db1be05d1c;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:36:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2s35YFxVMMVFBVoSTyoCp0w0ivNRYerua-rmRWXdbvtP2UHafYwUmw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 22:10:25 GMT
age: 70526
etag: "cc0f8bf63d11aeb3ea780af092523833f3b1abd3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d21a3e07583d9fad4104b6457f7915e7
fdc9453562f993e2545ca99731a7741e748b6082
8ea38264c82c6b544447079cc92eae70d0968a070ba39022af0e18c498916338
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb150ddb5-18a6-405d-8041-cdea0c0e6a85.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8266
x-amzn-requestid: 3411ec4b-ac18-4b4e-8876-c99b94d3a4a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNitWEjhIAMFWpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb188-4d9e496e7ff141b46748d850;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:35:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: vyV1_onImxuLNGp4UI1W5grcuVW3LHJFJjvmO0VXU-OYorF6RVcoDw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 7d01bcfcfe27ce0b8979cf621dd081de.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:50:11 GMT
age: 71740
etag: "fdc9453562f993e2545ca99731a7741e748b6082"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde1c872-426a-4aec-b295-a2cac8b36edf.webp
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde1c872-426a-4aec-b295-a2cac8b36edf.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 71bafbee3867c04c3712ff98a123d52c
ccf471cd30f5aa96f4e5fdb9e0fbbcdbb475a0bf
58ff1700e0b125caefb73719e2b3d734b2fbcc5ed1aabe5a11bb73b43edab831
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdde1c872-426a-4aec-b295-a2cac8b36edf.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4477
x-amzn-requestid: bbdca46e-5628-4faf-a0fe-ea1b5b39ac2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YNjzaHrIoAMF-iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631bb348-567e946e7cf77f2e11c17c97;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 21:42:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: a0AyKhmYA7WPwciU2nTXwyChZV_riw1QsqI_giBIcdZhi3Nz4jM0Sw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Sep 2022 21:59:11 GMT
age: 71200
etag: "ccf471cd30f5aa96f4e5fdb9e0fbbcdbb475a0bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4b680b0b2523091baa7924c3e5ff1862
ebcfbd8ccf69b5d0764434dd0e7df6e678c841f3
c5b758ea5d07b482b9b5ba1edb527feafa173524eb64e68f3bdeb4266226dd3d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5B758EA5D07B482B9B5BA1EDB527FEAFA173524EB64E68F3BDEB4266226DD3D"
Last-Modified: Fri, 09 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 10 Sep 2022 23:45:51 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
www.freeroms.com/images/circuit_main_right.gif
64.235.54.28200 OK 1.8 kB URL HTTP/2 www.freeroms.com/images/circuit_main_right.gif
IP 64.235.54.28:0
File type GIF image data, version 89a, 12 x 415\012- data
Hash ca8a951bdcdf29ca49cf66f5e2a963d1
514cdcb098f3e0716f94c53a33cf2fc9f41d40bf
089c688ad07d47949987f81f182752199bb7329fd5d443fa084342f6f9dc2953
GET /images/circuit_main_right.gif HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: image/gif
content-length: 1849
last-modified: Tue, 14 Jul 2015 01:10:55 GMT
etag: "55a4619f-739"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.freeroms.com/images/circuit_main_bottom.gif
64.235.54.28200 OK 1.4 kB URL HTTP/2 www.freeroms.com/images/circuit_main_bottom.gif
IP 64.235.54.28:0
File type GIF image data, version 89a, 334 x 40\012- data
Hash 660833b77d6e64a7347b2536658f65d4
7ef5949aa50558090c53c9084bf4e01c8984f5c7
280a43318bfd40a4cf90a00f47e944e7c6ae6221aaed1e7fe23a1b39b79c3635
GET /images/circuit_main_bottom.gif HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: image/gif
content-length: 1352
last-modified: Tue, 14 Jul 2015 01:10:54 GMT
etag: "55a4619e-548"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.freeroms.com/images/download-ar.png
64.235.54.28200 OK 1.1 kB URL HTTP/2 www.freeroms.com/images/download-ar.png
IP 64.235.54.28:0
File type PNG image data, 11 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash 1f11769dabff5c8bab9b24e4aaf89b78
bbfa2c4db3bdc8efd7fd5f388e349d9de296f2df
4e4d8ee70a3d33d4d0d9e32dc90244f1b0f54b30f414e7a588adf9a7381e4c66
GET /images/download-ar.png HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: image/png
content-length: 1110
last-modified: Tue, 14 Jul 2015 01:10:56 GMT
etag: "55a461a0-456"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
dacmaiss.com/tag.min.js
139.45.197.237200 OK 23 kB IP 139.45.197.237:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6ab05fcba561130fa8b1e1804849562c
4e3a0f1ae58bdaa2e439f99fb0b295ea9b2439d0
befd4129d45f26ce3155b5aab8248420d5863dc69ec8207f1e0691ca62d9d469
Analyzer Verdict Alert quad9 Sinkholed
GET /tag.min.js HTTP/1.1
Host: dacmaiss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: text/javascript; charset=utf-8
content-length: 22987
content-encoding: br
x-trace-id: b00a57924a22a74ae4b1ac6106de5312
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Thu, 08 Sep 2022 14:33:36 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
bindingguessingconfessed.com/ea/2d/5d/ea2d5d802b867cf417198fc84113161f.json
192.243.61.225200 OK 383 B URL HTTP/1.1 bindingguessingconfessed.com/ea/2d/5d/ea2d5d802b867cf417198fc84113161f.json
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (383), with no line terminators
Hash 96322fa93bff9ab9bc8d0404c1a7ab3e
ef9c418806ba00cc498bdc2731b3745d9bf9e8d2
5a59a54854c26d1acb379d4cf24a6864164d09439a775fe72311ced2f1926db3
GET /ea/2d/5d/ea2d5d802b867cf417198fc84113161f.json HTTP/1.1
Host: bindingguessingconfessed.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 17:45:51 GMT
Content-Type: application/json
Content-Length: 383
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 02bf60a302d85ac91e5be4a50138d6b5
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e30bb058f4509f4d2cd82dc93be79fba
b85690da1b02e0e9648eac5006bf224a1160eec3
e130b306c2ce41e91439c173da8c0bb495bd5a9ce04e38f27bd6bf39d858fd90
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E130B306C2CE41E91439C173DA8C0BB495BD5A9CE04E38F27BD6BF39D858FD90"
Last-Modified: Thu, 08 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12762
Expires: Sat, 10 Sep 2022 21:18:33 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash f789ec2f115b0eea7d015fd5b8dc48b5
67b3062db0bce51f965e34673a270a614f92a561
7fadce366cd829219a6788dbadcd8b53e4256fd97b8cf2cbd5805442e4dae670
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7FADCE366CD829219A6788DBADCD8B53E4256FD97B8CF2CBD5805442E4DAE670"
Last-Modified: Fri, 09 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7923
Expires: Sat, 10 Sep 2022 19:57:54 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5b36f6508bf779a395d4b559b41d267d
a653f55ef7e337bd259cd76d14fe2adc91c11603
91e3696c53649e8d76b738dca29ed03b8b935f9fc230c735d2fd729428742605
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:45:51 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 18:25:21 GMT
Expires: Thu, 15 Sep 2022 18:25:20 GMT
Etag: "a653f55ef7e337bd259cd76d14fe2adc91c11603"
Cache-Control: max-age=433768,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7489facfdb55b524-OSL
my.rtmark.net/gid.js?userId=f23c3931aa4647e38e41a3933d9b2a78
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=f23c3931aa4647e38e41a3933d9b2a78
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash fc1f66bfed1cca1f9fe8cd364a5b7680
d6c3e35aec8789f73c0c9aa6dd6687dc7853623f
5d103e7375ff6eebf7cf55247e564536a2cabe1ae5139d23c572c1b05b6c95b5
GET /gid.js?userId=f23c3931aa4647e38e41a3933d9b2a78 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.freeroms.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=f23c3931aa4647e38e41a3933d9b2a78; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 346 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b32a5e9b733c4d6d00fa0ae101956367
a584d7ac68cf4e1e8d897ef1b0ba8d4d3037e997
6d41a9ea960766d6c7a93e01b3da41b93b651a3e38b00ec9873794c4bbdbee5b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "6D41A9EA960766D6C7A93E01B3DA41B93B651A3E38B00EC9873794C4BBDBEE5B"
Last-Modified: Sat, 10 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4969
Expires: Sat, 10 Sep 2022 19:08:40 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
dacmaiss.com/5/2881944/?oo=1&aab=1
139.45.197.237200 OK 1.9 kB URL HTTP/2 dacmaiss.com/5/2881944/?oo=1&aab=1
IP 139.45.197.237:0
Hash e3bf56fe68e5c21ed03a1381d2ea1cc5
df72aa0c508800ffa1c704a35504ec3b269a494b
495d775a1b76d65450d5955329a5d2f6197e6cd06e1af7b2fb63dbb4806d2e8e
Analyzer Verdict Alert quad9 Sinkholed
GET /5/2881944/?oo=1&aab=1 HTTP/1.1
Host: dacmaiss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: application/json
x-trace-id: e3e3b6a083c025c370fa1e8f4c692f1b
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://www.freeroms.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=f23c3931aa4647e38e41a3933d9b2a78; expires=Sun, 10 Sep 2023 17:45:51 GMT; path=/; secure; SameSite=None
oaidts=1662831951; expires=Sun, 10 Sep 2023 17:45:51 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a07bc9cfe46da2cda55afc0339616fbc
9a77db7f25db26f1d88e4347da7f39e7e04c8d52
80141b54e32d2806ee51b069d8c61392299f9be81963098d7c78246737de86b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "80141B54E32D2806EE51B069D8C61392299F9BE81963098D7C78246737DE86B7"
Last-Modified: Thu, 08 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6055
Expires: Sat, 10 Sep 2022 19:26:46 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
tovanillitechan.com/42/38?z=3056520
139.45.197.239200 OK 0 B URL HTTP/2 tovanillitechan.com/42/38?z=3056520
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /42/38?z=3056520 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: scm=1; OAID=02bfe007f81349a4ad5d70f199e33e31; oaidts=1662831951
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: bcbe7a8c17129737d546325804581924
access-control-expose-headers: X-Sc
set-cookie: OAID=02bfe007f81349a4ad5d70f199e33e31; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
oaidts=1662831951; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-FH0L8EV0R0>m=2oe970&_p=2081283343&cid=1180470632.1662831941&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662831941&sct=1&seg=0&dl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&dt=Dai-2-Ji%20Super%20Robot%20Taisen%20Z%20Saisei-Hen%20(Japan)%20ISO%20ROM%20Download%20for%20PSP&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-FH0L8EV0R0>m=2oe970&_p=2081283343&cid=1180470632.1662831941&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662831941&sct=1&seg=0&dl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&dt=Dai-2-Ji%20Super%20Robot%20Taisen%20Z%20Saisei-Hen%20(Japan)%20ISO%20ROM%20Download%20for%20PSP&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-FH0L8EV0R0>m=2oe970&_p=2081283343&cid=1180470632.1662831941&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662831941&sct=1&seg=0&dl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&dt=Dai-2-Ji%20Super%20Robot%20Taisen%20Z%20Saisei-Hen%20(Japan)%20ISO%20ROM%20Download%20for%20PSP&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.freeroms.com
date: Sat, 10 Sep 2022 17:45:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 16900c80b76bb0c44b93c46ddb7c7aa4
bce76f6bf4a44e69017321a83bfd806254f658e5
23a9a6e2aac8825911b742cd98fc11f57d3b2d46e3a886220ba8281b06259aa8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "23A9A6E2AAC8825911B742CD98FC11F57D3B2D46E3A886220BA8281B06259AA8"
Last-Modified: Sat, 10 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9145
Expires: Sat, 10 Sep 2022 20:18:16 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash e882f2bf3b72890a1a24e46a0d0f1c14
f13a2211522f126532be5ad09af299cbd41bfdf4
e3d0aaff58faf19edb149dde906c56249532effec2d7ff4d0174b7bac96d696f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E3D0AAFF58FAF19EDB149DDE906C56249532EFFEC2D7FF4D0174B7BAC96D696F"
Last-Modified: Fri, 09 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3594
Expires: Sat, 10 Sep 2022 18:45:45 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 16900c80b76bb0c44b93c46ddb7c7aa4
bce76f6bf4a44e69017321a83bfd806254f658e5
23a9a6e2aac8825911b742cd98fc11f57d3b2d46e3a886220ba8281b06259aa8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "23A9A6E2AAC8825911B742CD98FC11F57D3B2D46E3A886220BA8281B06259AA8"
Last-Modified: Sat, 10 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 10 Sep 2022 23:45:51 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
upgulpinon.com/42/38?z=5030886
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/42/38?z=5030886
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /42/38?z=5030886 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: scm=1; OAID=e1969899e8cf47e2b554c682ed22d9d1; oaidts=1662831951
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 8e4067a6ef57410333327403a9c5cf8c
access-control-expose-headers: X-Sc
set-cookie: OAID=e1969899e8cf47e2b554c682ed22d9d1; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
oaidts=1662831951; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
tovanillitechan.com/9?z=3056520&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=f23c3931aa4647e38e41a3933d9b2a78
139.45.197.239204 No Content 0 B URL HTTP/2 tovanillitechan.com/9?z=3056520&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=f23c3931aa4647e38e41a3933d9b2a78
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /9?z=3056520&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=f23c3931aa4647e38e41a3933d9b2a78 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.freeroms.com/
Origin: https://www.freeroms.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.freeroms.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
mightylottrembling.com/pixel/pure
192.243.59.13204 No Content 0 B URL HTTP/1.1 mightylottrembling.com/pixel/pure
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /pixel/pure HTTP/1.1
Host: mightylottrembling.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.freeroms.com/
Origin: https://www.freeroms.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.17.6
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 1728000
Content-Type: text/plain; charset=utf-8
Content-Length: 0
clenchedyouthmatching.com/advertisers.js
142.0.197.108200 OK 0 B URL HTTP/1.1 clenchedyouthmatching.com/advertisers.js
IP 142.0.197.108:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /advertisers.js HTTP/1.1
Host: clenchedyouthmatching.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 10 Sep 2022 17:45:51 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
dozubatan.com/500/3601099?excludes=&oaid=f23c3931aa4647e38e41a3933d9b2a78&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 0 B URL HTTP/2 dozubatan.com/500/3601099?excludes=&oaid=f23c3931aa4647e38e41a3933d9b2a78&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/3601099?excludes=&oaid=f23c3931aa4647e38e41a3933d9b2a78&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.freeroms.com/
Origin: https://www.freeroms.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.freeroms.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 389c0d6068ca833cf36712da13002203
64fc73a020e4dc4c63181e9661920f0f5b0c85fb
cfda4df8127ad2da88538abc7c23c4cc6a82d2e3cc9dbd4d976689d5fc83f4cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFDA4DF8127AD2DA88538ABC7C23C4CC6A82D2E3CC9DBD4D976689D5FC83F4CB"
Last-Modified: Thu, 08 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3761
Expires: Sat, 10 Sep 2022 18:48:32 GMT
Date: Sat, 10 Sep 2022 17:45:51 GMT
Connection: keep-alive
upgulpinon.com/9?z=5030886&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=f23c3931aa4647e38e41a3933d9b2a78
139.45.197.242204 No Content 0 B URL HTTP/2 upgulpinon.com/9?z=5030886&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=f23c3931aa4647e38e41a3933d9b2a78
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /9?z=5030886&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=f23c3931aa4647e38e41a3933d9b2a78 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.freeroms.com/
Origin: https://www.freeroms.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.freeroms.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
mightylottrembling.com/pixel/pure
192.243.59.13200 OK 0 B URL HTTP/1.1 mightylottrembling.com/pixel/pure
IP 192.243.59.13:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pixel/pure HTTP/1.1
Host: mightylottrembling.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 74
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 10 Sep 2022 17:45:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
dozubatan.com/500/3601099?excludes=&oaid=f23c3931aa4647e38e41a3933d9b2a78&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.237200 OK 1.2 kB URL HTTP/2 dozubatan.com/500/3601099?excludes=&oaid=f23c3931aa4647e38e41a3933d9b2a78&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.237:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1427), with no line terminators
Hash 4429e6972dadb99879ec1790159ce1c8
991b71a5b27a4c316fd416c936ed9ce89b765723
bd575bdcf37c6f240e4d40d9ea67201245f6cba6e32557a40ec91cacf29192fc
GET /500/3601099?excludes=&oaid=f23c3931aa4647e38e41a3933d9b2a78&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: OAID=521e17532da34165b2c9e3034801da81
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: application/javascript
x-trace-id: 664363b2de508978fb6744e179dae82e
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: https://www.freeroms.com
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=f23c3931aa4647e38e41a3933d9b2a78; expires=Sun, 10 Sep 2023 17:45:51 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
obituaryfuneral.com/sbar.json?key=c4d53d21b4a90448b5012c00c5cfa5a2&uuid=0e54cc92-2ba5-420c-9c9f-9331f171225d%3A2%3A1
192.243.61.227200 OK 4.2 kB URL HTTP/1.1 obituaryfuneral.com/sbar.json?key=c4d53d21b4a90448b5012c00c5cfa5a2&uuid=0e54cc92-2ba5-420c-9c9f-9331f171225d%3A2%3A1
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (5764), with no line terminators
Hash 76a4459dbc8e845a7744d64f6c12cda1
c7e523f27eee72b5a75ee92d42c25921f254c441
ab7221fe8f5863cfd29ffea13b3e2e2c80f317f82324f8a203c5616d68f1b7ac
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=c4d53d21b4a90448b5012c00c5cfa5a2&uuid=0e54cc92-2ba5-420c-9c9f-9331f171225d%3A2%3A1 HTTP/1.1
Host: obituaryfuneral.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 17:45:52 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.freeroms.com
Access-Control-Allow-Origin: https://www.freeroms.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16560103; expires=Sun, 11 Sep 2022 17:45:51 GMT; secure; SameSite=None
uid_id2=0e54cc92-2ba5-420c-9c9f-9331f171225d:2:1; expires=Sat, 17 Sep 2022 17:45:51 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 11 Sep 2022 17:45:52 GMT; secure; SameSite=None
uncs=1; expires=Sun, 11 Sep 2022 17:45:52 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 11 Sep 2022 17:45:52 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 11 Sep 2022 17:45:52 GMT; secure; SameSite=None
slecc4d53d21b4a90448b5012c00c5cfa5a2=[3364901]; expires=Sat, 10 Sep 2022 17:45:57 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f81bfc9f937c3532c54dbb751f29c0ed
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 431bccffdaad5a26e75e6dd4f8b1abaa
e4b0ac57e7c2d6d00e508cd99231b0f8d58942af
d2b9c8db43c744d36bc73630962238d7fb9017730f8ef8df9b6af1913b08cf35
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 10 Sep 2022 17:45:52 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Sep 2022 12:52:23 GMT
Expires: Thu, 15 Sep 2022 12:52:22 GMT
Etag: "e4b0ac57e7c2d6d00e508cd99231b0f8d58942af"
Cache-Control: max-age=413789,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7489fad32833b524-OSL
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ba04a5ffb454c6515d31137d4aff0592
56514ad2632345f3a2ba65014fad4a4564fc53d5
5ead23c004fb06735a1fc4f6c6846a5cb43d28fc25788b74113ca59670f72154
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5EAD23C004FB06735A1FC4F6C6846A5CB43D28FC25788B74113CA59670F72154"
Last-Modified: Thu, 08 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3446
Expires: Sat, 10 Sep 2022 18:43:18 GMT
Date: Sat, 10 Sep 2022 17:45:52 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1fd0f189af3096d2c9c300b962c9a2c4
c5a3635caaf4bf151768a6fa06775409994ee38f
eb5326d0fe4abe4e361c685fc532c2013c1ece44c49f4fe1cf2d408702b7c260
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5030
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:45:52 GMT
Last-Modified: Sat, 10 Sep 2022 16:22:02 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
upgulpinon.com/9?z=5030886&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=f23c3931aa4647e38e41a3933d9b2a78
139.45.197.242200 OK 2.7 kB URL HTTP/2 upgulpinon.com/9?z=5030886&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=f23c3931aa4647e38e41a3933d9b2a78
IP 139.45.197.242:0
File type JSON data\012- , ASCII text, with very long lines (6512), with no line terminators
Hash 8962ffaee42eef8b090be4b1b739b48b
4279fa68413cb9ac87ae4bf8d445aff0bd22b136
b08affc6479d9e898f07469d3fd0d71990fbd8aba8eb64c61d94cff1962d3a31
POST /9?z=5030886&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&oaid=f23c3931aa4647e38e41a3933d9b2a78 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 470
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: scm=1; OAID=e1969899e8cf47e2b554c682ed22d9d1; oaidts=1662831951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://www.freeroms.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 23ad4182904f68fad4e65e147641f379
access-control-expose-headers: X-Sc
set-cookie: OAID=f23c3931aa4647e38e41a3933d9b2a78; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
oaidts=1662831951; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.254200 OK 12 B URL HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.254:0
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.freeroms.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.freeroms.com
Content-Length: 1571
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Sat, 10 Sep 2022 17:46:03 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.freeroms.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
offerimage.com/www/images/3d08aacb36c7474e0d13b60f8f4adc14.png
104.22.33.172200 OK 66 kB URL HTTP/2 offerimage.com/www/images/3d08aacb36c7474e0d13b60f8f4adc14.png
IP 104.22.33.172:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d08aacb36c7474e0d13b60f8f4adc14
e4af2de372b5e3a2211579a5973ef7ed160e7be4
54b0569cf052e12dd373e86031009d0a54a893275a21c2ef863277a9a978ab1c
GET /www/images/3d08aacb36c7474e0d13b60f8f4adc14.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: image/png
content-length: 66121
last-modified: Mon, 12 Oct 2020 05:50:58 GMT
etag: "5f83eec2-10249"
expires: Sun, 11 Sep 2022 12:30:54 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 18898
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489fad4b87f98ea-ARN
X-Firefox-Spdy: h2
dismantlepenantiterrorist.com/pxf.gif?uuid=0e54cc92-2ba5-420c-9c9f-9331f171225d&eb=f7f733e10dbfb66931f79b4d6cd2ec08&te=3a754cebd09bb2f7570f96954fbfd43e&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=c4d53d21b4a90448b5012c00c5cfa5a2&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17
192.243.59.12200 OK 1 B URL HTTP/1.1 dismantlepenantiterrorist.com/pxf.gif?uuid=0e54cc92-2ba5-420c-9c9f-9331f171225d&eb=f7f733e10dbfb66931f79b4d6cd2ec08&te=3a754cebd09bb2f7570f96954fbfd43e&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=c4d53d21b4a90448b5012c00c5cfa5a2&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=0e54cc92-2ba5-420c-9c9f-9331f171225d&eb=f7f733e10dbfb66931f79b4d6cd2ec08&te=3a754cebd09bb2f7570f96954fbfd43e&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=c4d53d21b4a90448b5012c00c5cfa5a2&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: dismantlepenantiterrorist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 10 Sep 2022 17:45:52 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a4a58aa8c77ba8f4340e4a124e2e7ea1
Strict-Transport-Security: max-age=0; includeSubdomains
dismantlepenantiterrorist.com/pxf.gif?uuid=0e54cc92-2ba5-420c-9c9f-9331f171225d&eb=f7f733e10dbfb66931f79b4d6cd2ec08&te=3a754cebd09bb2f7570f96954fbfd43e&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=ea2d5d802b867cf417198fc84113161f&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17
192.243.59.12200 OK 1 B URL HTTP/1.1 dismantlepenantiterrorist.com/pxf.gif?uuid=0e54cc92-2ba5-420c-9c9f-9331f171225d&eb=f7f733e10dbfb66931f79b4d6cd2ec08&te=3a754cebd09bb2f7570f96954fbfd43e&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=ea2d5d802b867cf417198fc84113161f&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=0e54cc92-2ba5-420c-9c9f-9331f171225d&eb=f7f733e10dbfb66931f79b4d6cd2ec08&te=3a754cebd09bb2f7570f96954fbfd43e&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=13.31&b_frame=0&pk=ea2d5d802b867cf417198fc84113161f&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: dismantlepenantiterrorist.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 10 Sep 2022 17:45:52 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8f8d81cf35529d18ed2472933ca82899
Strict-Transport-Security: max-age=0; includeSubdomains
obituaryfuneral.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRytTiIInlzWw4rKHFQUzKS7p%2BfLPSzGGAlmN2FXcW9aXVU9KVPd1VR1T09yCi4rCyLM%2FgedN8mG1eAHeHWRycIegkLGUw7m6lmEPe1BZjY47u%2Fye6%2FeO7x6VV%2Ft5mfERU5Pl67qbakUXahX3cpbNz3vcmVVJnmv0ms1PmsElyum%2B267UXXfrnwo2KZe8F3PdT3XqyxLIyLdWxiLkOlh26u23WrgV716gJ55ltvcgaUOePeMXIDko7mHzkVINkQS%2F7gk7Gam03c%2BiHNFM23Q5QefJJuJLhLEUxgZB1FycO6GtifLD6CT%2FUlc6O5%2FxlCOiPPoAcLk4Dwkwu7eJGeoIBKE%2FAUU3SGEGkLSIZi%2BBclPCMA4rq0hie9d06agW09VOlZHZO7xP5DFiMz9eRFJ%2FP2ikr3KDa3yTOrEoheVkL0hZGeIND9Ctj0DWRyBZV9C8t%2FJwuNVJPHemlUakp%2B%2B7op6wFjbn%2FdDWp8PfJfNt1k7mm%2FXal7kNT3fr%2FNJQVIOIaMhlOiD2hnk1kEuHeSRgzx1EPPTCvM8r%2BlyRt1Wm7Eab4qwwV2PNiOPem6jhZyN79BHlvbBVB%2FM7CA1O9iUd0%2FqF2DyX2E3SljuwGYEXV6iEASFJSgoQSEJioyg6Jb7XFnflve4snnonW%2F%2FfNfKgc46u3RfZx2RkN30jLw46e7JD39hU5xWWMDrNe57YUDbbhC0wrrr%2Bcx1WZ1FtE59WFlC2hlQ62BbjsilNyVSOSLPffM1QnoEq47A5Eug%2BaugxaDpu6Abg6DlYjs5jIwQRse2ynQMrkuk2RyyLWdXnZFLkxy1m29AsOMrn4dXR3%2FffwJmSqSmxBfyIUFH3Rlc1wXZu64LS35aSzMZy206ft8bGc3E7Lcfia1CG76yZPv332NjYQwPPxY2W6UJl0nHku8WJefCLGvDBPllxX4qwvXcbizmJsnT1fX3l1fi1AhrpU6GoHJEyKNjMDkiz%2F%2B8P%2Fm6L9%2B%2BDWmGMHmJOD8m5wOpj8DSHdh0mt%2FqWRg19YSpgyIvB8YPp4dKEigx5TQsYf%2FHwynetXfQMa%2BBZreQxCW6pkRXlaCqD5vPDrLUHF%2F5ozYZhMoZhMo4e6Ey6u7Tcq08rTRrNZc22nWv2aSiGQZ%2BK2p4nFI%2FaPiNBq0hsyP2ym%2Fr%2FwIAAP%2F%2FAQAA%2F%2F9iCE4WhQQAAA%3D%3D
192.243.61.227200 OK 7 B URL HTTP/1.1 obituaryfuneral.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRytTiIInlzWw4rKHFQUzKS7p%2BfLPSzGGAlmN2FXcW9aXVU9KVPd1VR1T09yCi4rCyLM%2FgedN8mG1eAHeHWRycIegkLGUw7m6lmEPe1BZjY47u%2Fye6%2FeO7x6VV%2Ft5mfERU5Pl67qbakUXahX3cpbNz3vcmVVJnmv0ms1PmsElyum%2B267UXXfrnwo2KZe8F3PdT3XqyxLIyLdWxiLkOlh26u23WrgV716gJ55ltvcgaUOePeMXIDko7mHzkVINkQS%2F7gk7Gam03c%2BiHNFM23Q5QefJJuJLhLEUxgZB1FycO6GtifLD6CT%2FUlc6O5%2FxlCOiPPoAcLk4Dwkwu7eJGeoIBKE%2FAUU3SGEGkLSIZi%2BBclPCMA4rq0hie9d06agW09VOlZHZO7xP5DFiMz9eRFJ%2FP2ikr3KDa3yTOrEoheVkL0hZGeIND9Ctj0DWRyBZV9C8t%2FJwuNVJPHemlUakp%2B%2B7op6wFjbn%2FdDWp8PfJfNt1k7mm%2FXal7kNT3fr%2FNJQVIOIaMhlOiD2hnk1kEuHeSRgzx1EPPTCvM8r%2BlyRt1Wm7Eab4qwwV2PNiOPem6jhZyN79BHlvbBVB%2FM7CA1O9iUd0%2FqF2DyX2E3SljuwGYEXV6iEASFJSgoQSEJioyg6Jb7XFnflve4snnonW%2F%2FfNfKgc46u3RfZx2RkN30jLw46e7JD39hU5xWWMDrNe57YUDbbhC0wrrr%2Bcx1WZ1FtE59WFlC2hlQ62BbjsilNyVSOSLPffM1QnoEq47A5Eug%2BaugxaDpu6Abg6DlYjs5jIwQRse2ynQMrkuk2RyyLWdXnZFLkxy1m29AsOMrn4dXR3%2FffwJmSqSmxBfyIUFH3Rlc1wXZu64LS35aSzMZy206ft8bGc3E7Lcfia1CG76yZPv332NjYQwPPxY2W6UJl0nHku8WJefCLGvDBPllxX4qwvXcbizmJsnT1fX3l1fi1AhrpU6GoHJEyKNjMDkiz%2F%2B8P%2Fm6L9%2B%2BDWmGMHmJOD8m5wOpj8DSHdh0mt%2FqWRg19YSpgyIvB8YPp4dKEigx5TQsYf%2FHwynetXfQMa%2BBZreQxCW6pkRXlaCqD5vPDrLUHF%2F5ozYZhMoZhMo4e6Ey6u7Tcq08rTRrNZc22nWv2aSiGQZ%2BK2p4nFI%2FaPiNBq0hsyP2ym%2Fr%2FwIAAP%2F%2FAQAA%2F%2F9iCE4WhQQAAA%3D%3D
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskRRytTiIInlzWw4rKHFQUzKS7p%2BfLPSzGGAlmN2FXcW9aXVU9KVPd1VR1T09yCi4rCyLM%2FgedN8mG1eAHeHWRycIegkLGUw7m6lmEPe1BZjY47u%2Fye6%2FeO7x6VV%2Ft5mfERU5Pl67qbakUXahX3cpbNz3vcmVVJnmv0ms1PmsElyum%2B267UXXfrnwo2KZe8F3PdT3XqyxLIyLdWxiLkOlh26u23WrgV716gJ55ltvcgaUOePeMXIDko7mHzkVINkQS%2F7gk7Gam03c%2BiHNFM23Q5QefJJuJLhLEUxgZB1FycO6GtifLD6CT%2FUlc6O5%2FxlCOiPPoAcLk4Dwkwu7eJGeoIBKE%2FAUU3SGEGkLSIZi%2BBclPCMA4rq0hie9d06agW09VOlZHZO7xP5DFiMz9eRFJ%2FP2ikr3KDa3yTOrEoheVkL0hZGeIND9Ctj0DWRyBZV9C8t%2FJwuNVJPHemlUakp%2B%2B7op6wFjbn%2FdDWp8PfJfNt1k7mm%2FXal7kNT3fr%2FNJQVIOIaMhlOiD2hnk1kEuHeSRgzx1EPPTCvM8r%2BlyRt1Wm7Eab4qwwV2PNiOPem6jhZyN79BHlvbBVB%2FM7CA1O9iUd0%2FqF2DyX2E3SljuwGYEXV6iEASFJSgoQSEJioyg6Jb7XFnflve4snnonW%2F%2FfNfKgc46u3RfZx2RkN30jLw46e7JD39hU5xWWMDrNe57YUDbbhC0wrrr%2Bcx1WZ1FtE59WFlC2hlQ62BbjsilNyVSOSLPffM1QnoEq47A5Eug%2BaugxaDpu6Abg6DlYjs5jIwQRse2ynQMrkuk2RyyLWdXnZFLkxy1m29AsOMrn4dXR3%2FffwJmSqSmxBfyIUFH3Rlc1wXZu64LS35aSzMZy206ft8bGc3E7Lcfia1CG76yZPv332NjYQwPPxY2W6UJl0nHku8WJefCLGvDBPllxX4qwvXcbizmJsnT1fX3l1fi1AhrpU6GoHJEyKNjMDkiz%2F%2B8P%2Fm6L9%2B%2BDWmGMHmJOD8m5wOpj8DSHdh0mt%2FqWRg19YSpgyIvB8YPp4dKEigx5TQsYf%2FHwynetXfQMa%2BBZreQxCW6pkRXlaCqD5vPDrLUHF%2F5ozYZhMoZhMo4e6Ey6u7Tcq08rTRrNZc22nWv2aSiGQZ%2BK2p4nFI%2FaPiNBq0hsyP2ym%2Fr%2FwIAAP%2F%2FAQAA%2F%2F9iCE4WhQQAAA%3D%3D HTTP/1.1
Host: obituaryfuneral.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: u_pl=16560103; uid_id2=0e54cc92-2ba5-420c-9c9f-9331f171225d:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc4d53d21b4a90448b5012c00c5cfa5a2=[3364901]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 17:45:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 812922b680780a4981e185a3c337812d
Strict-Transport-Security: max-age=0; includeSubdomains
interstitial-07.com/contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png
139.45.197.155200 OK 45 kB URL HTTP/2 interstitial-07.com/contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png
IP 139.45.197.155:0
File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data
Hash 36d8c29c866059b85b47752a6cc71b81
2d877eabf6710f66f5d7a3e265de997cf258ba32
0bbd2d8d16b4fd96c0a0dabecbd05ca573b30cd7079950d73b5dd68bde69a27b
GET /contents/s/36/d8/c2/9c866059b85b47752a6cc71b81/01636574006222.png HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=9b0delICK3pIjOt&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D2076546561%26z%3D3056520%26b%3D14148810%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3Dh0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Da427a05a-a0ec-4430-9d44-74ab2feeae5a%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freeroms.com%252Froms%252Fpsp%252Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: image/png
content-length: 45133
last-modified: Thu, 14 Jul 2022 23:23:43 GMT
etag: "62d0a57f-b04d"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6196248d34769fa746f3ce857cca25e3
7056a0fdc2a1f06e809165462c11e90cce742e3b
f0a10f2f7961a948de7f64b7530139b1a8abf691fd981f1b5a7c1afff2229c75
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F0A10F2F7961A948DE7F64B7530139B1A8ABF691FD981F1B5A7C1AFFF2229C75"
Last-Modified: Thu, 08 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6507
Expires: Sat, 10 Sep 2022 19:34:19 GMT
Date: Sat, 10 Sep 2022 17:45:52 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 6196248d34769fa746f3ce857cca25e3
7056a0fdc2a1f06e809165462c11e90cce742e3b
f0a10f2f7961a948de7f64b7530139b1a8abf691fd981f1b5a7c1afff2229c75
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F0A10F2F7961A948DE7F64B7530139B1A8ABF691FD981F1B5A7C1AFFF2229C75"
Last-Modified: Thu, 08 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6507
Expires: Sat, 10 Sep 2022 19:34:19 GMT
Date: Sat, 10 Sep 2022 17:45:52 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 346 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash b32a5e9b733c4d6d00fa0ae101956367
a584d7ac68cf4e1e8d897ef1b0ba8d4d3037e997
6d41a9ea960766d6c7a93e01b3da41b93b651a3e38b00ec9873794c4bbdbee5b
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "6D41A9EA960766D6C7A93E01B3DA41B93B651A3E38B00EC9873794C4BBDBEE5B"
Last-Modified: Sat, 10 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4968
Expires: Sat, 10 Sep 2022 19:08:40 GMT
Date: Sat, 10 Sep 2022 17:45:52 GMT
Connection: keep-alive
unphionetor.com/vctx?t=72747
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vctx?t=72747
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /vctx?t=72747 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 10 Sep 2022 17:45:52 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 8847aafc7025276d1a34aeff24a8e4db
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
interstitial-07.com/contents/s/f6/42/a0/a7dfa1c2b54dd324dabe983a69/0941665778820.jpeg
139.45.197.155200 OK 196 kB URL HTTP/2 interstitial-07.com/contents/s/f6/42/a0/a7dfa1c2b54dd324dabe983a69/0941665778820.jpeg
IP 139.45.197.155:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 900x600, components 3\012- data
Size 196 kB (196257 bytes)
Hash f642a0a7dfa1c2b54dd324dabe983a69
07293aaaf4d80d86731e48f8d796bd042e87c85d
c79db46a4fea8db0e6f978046d7ba8bd03acb19bef0d1e48ae992a951811e5ed
GET /contents/s/f6/42/a0/a7dfa1c2b54dd324dabe983a69/0941665778820.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=9b0delICK3pIjOt&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D2076546561%26z%3D3056520%26b%3D14148810%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3Dh0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Da427a05a-a0ec-4430-9d44-74ab2feeae5a%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freeroms.com%252Froms%252Fpsp%252Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: image/jpeg
content-length: 196257
last-modified: Mon, 25 Jul 2022 23:09:25 GMT
etag: "62df22a5-2fea1"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
tovanillitechan.com/1?z=3056520
139.45.197.239200 OK 3.6 kB URL HTTP/2 tovanillitechan.com/1?z=3056520
IP 139.45.197.239:0
File type ASCII text, with very long lines (7767)
Hash 1f75982a1fd19e6a9234a2d85eeea7a0
6106f3642b1dc4e8a316ab94e066963f2e58f50d
1934cd9734f40eb693e53dd62825738cd929b0369eab59b5e481e522f539c847
Analyzer Verdict Alert quad9 Sinkholed
GET /1?z=3056520 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 8f650fbda7a421afdba87e406d281823
access-control-expose-headers: X-Sc
x-sc: RZSdfCHIsc3avZHPIFEPPlQ1xzAgbGxmKLJZuyWqc6N8rTlc2iL6CExx7iMZNapKXYtbXYuOBYI-ZM2Hx1rJqX515yY=
set-cookie: scm=1; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
OAID=02bfe007f81349a4ad5d70f199e33e31; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
oaidts=1662831951; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
interstitial-07.com/contents/s/75/94/a0/f996d4ddcb875efcd052a96194/0975695614572.jpeg
139.45.197.155200 OK 169 kB URL HTTP/2 interstitial-07.com/contents/s/75/94/a0/f996d4ddcb875efcd052a96194/0975695614572.jpeg
IP 139.45.197.155:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 900x600, components 3\012- data
Size 169 kB (169047 bytes)
Hash 7594a0f996d4ddcb875efcd052a96194
3ffba69a4639d1923f3db965d0208cdf90e964e2
89d6557a0c191c7109ce6649e4112bf96eaf848b52d2c20cba65c0afbf549cc3
GET /contents/s/75/94/a0/f996d4ddcb875efcd052a96194/0975695614572.jpeg HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/?l=nYoUsXe6mMfSnop&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D752072947%26z%3D5030886%26b%3D14082266%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DQvdgdgH_oyBlVq-0zXfRTXpXPg8jOmBjXrg-BUR2qKXAbC1YZGuTy_eZOtgY_oS06R9bxXiNSr8xrEIuQSdR9EIvqC5smBWFhNY70Hh6wsztMbBaVTpXhKiu2mdiYqJ48Q3xRsoSTh4mgL5lpENX9KUerN7VI61igfA5xLf9TkrD4CZlc-ZfqoHbLVBVCv8mWAZlWSpUGuU5tsVO8doaW0hX9NkY17Mg9AF_Rzne8zJ5xPPo7zARjF8B3KezM5A_Vx1a8TO4P8k6qNFHvSJGMEcb-MYnd72XwODYr12JDk2HJn-RzGpQrZMPXZu3PRUdw0fCcd8MpEANlyLk0J17cuIjwA_O0461UWF3Wzy7gCnIuzPwxcvyxMpNyGgMyOPXWNV2gNh42-3kNnEa9NXXy07711sLl3dKN37VruJnCy9nWyU7I47nCAlaSJVcYUByUNKXKj6tFfjCY-UUTTpNWmkpvsblXDCDKpdhspoZ-oWv5_XWTBaWTBOEgt5NggAC1dE52FzJPmpEcGRIs2yF9BA6L37m8mOF9D5qi4k25YbCEwcM9kLjLcl2ECggRBB_5RI3zLWuSJkQAPaDnJzOxC8sYD2zwZa3doql2RND3eJGFFjpzMl3jW6hSGCbc6SKSxBlN158NRGkrTYO%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dae5f139b-6113-4ed5-81c9-da07270acc44%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freeroms.com%252Froms%252Fpsp%252Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: image/jpeg
content-length: 169047
last-modified: Mon, 18 Jul 2022 20:55:09 GMT
etag: "62d5c8ad-29457"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 10 Sep 2022 17:45:52 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 4742d2480b48a7d908fc628e12a8b96d
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
139.45.197.236204 No Content 0 B URL HTTP/2 unphionetor.com/vbl?t=72747&bid=undefined&aid=undefined
IP 139.45.197.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
POST /vbl?t=72747&bid=undefined&aid=undefined HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://interstitial-07.com
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 10 Sep 2022 17:45:52 GMT
access-control-allow-origin: https://interstitial-07.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 2c799e65b0155d2b3cabe1e1a860b0ec
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
unphionetor.com/fv.js?t=72747&cb=1043767154
139.45.197.236200 OK 3.3 kB URL HTTP/2 unphionetor.com/fv.js?t=72747&cb=1043767154
IP 139.45.197.236:0
Hash 172458409f1ddbdc1524338cbe498ded
1590570088693cfee184f2f6c1ce57362d8dc404
775cc9f762725a4b0ce643a310423090aaecf4ef044497ca56b344548dda3e5b
Analyzer Verdict Alert quad9 Sinkholed
GET /fv.js?t=72747&cb=1043767154 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 1e0abba9945cb4b407ff456fb47132fe
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 11a62de4541037ab66a1ee3a198916bd
767beb0fd7d3ef086d2dff0a984f54f6b6f9d0e4
1f6a4b80a80691e041057bf8a0a5beb9440df1a1a9af8d2447af252055850d1a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1F6A4B80A80691E041057BF8A0A5BEB9440DF1A1A9AF8D2447AF252055850D1A"
Last-Modified: Sat, 10 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3916
Expires: Sat, 10 Sep 2022 18:51:08 GMT
Date: Sat, 10 Sep 2022 17:45:52 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 11a62de4541037ab66a1ee3a198916bd
767beb0fd7d3ef086d2dff0a984f54f6b6f9d0e4
1f6a4b80a80691e041057bf8a0a5beb9440df1a1a9af8d2447af252055850d1a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1F6A4B80A80691E041057BF8A0A5BEB9440DF1A1A9AF8D2447AF252055850D1A"
Last-Modified: Sat, 10 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3916
Expires: Sat, 10 Sep 2022 18:51:08 GMT
Date: Sat, 10 Sep 2022 17:45:52 GMT
Connection: keep-alive
obituaryfuneral.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F16%2Findex.html&l=2211&fd=616
192.243.61.227200 OK 0 B URL HTTP/1.1 obituaryfuneral.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F16%2Findex.html&l=2211&fd=616
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F16%2Findex.html&l=2211&fd=616 HTTP/1.1
Host: obituaryfuneral.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: u_pl=16560103; uid_id2=0e54cc92-2ba5-420c-9c9f-9331f171225d:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc4d53d21b4a90448b5012c00c5cfa5a2=[3364901]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 17:45:52 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/img/close.png
172.67.183.56200 OK 6.0 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/img/close.png
IP 172.67.183.56:0
File type PNG image data, 522 x 391, 8-bit/color RGBA, non-interlaced\012- data
Hash c489ce2c491a22ee37a55e26a92dfd73
2fa588ab09e94dd902e5bd24b48f98ad1949c9d6
1eed147c7d5de6291c25fbc5274830c12d5549262fb144271576d4e15966e5bd
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/img/close.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: image/png
content-length: 5982
last-modified: Fri, 21 May 2021 10:10:48 GMT
etag: "60a78728-175e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3310891
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7otYmL7EORCfEnIUQxYe1h9bSuLr3NT9P5TctLK2k22t9v7Vn%2FRWn0vgJ2nttO9YEnQJtjshZZ6z29zEf4O6yNnenJHpijJp6QIq6o9%2F4oNbd6OFs%2B0PpdaZIo%2BT687tqJ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489fad9cab5fabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
addresseepaper.com/sfp.js
104.21.235.2200 OK 25 kB URL HTTP/2 addresseepaper.com/sfp.js
IP 104.21.235.2:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 37028a64e1d5b291ba49a7c61d2c5fcc
49de79f1dad7d2fb3994869bb2255559d4e75eae
be68675d8a4dbefcdc3dc7df7b4d0cec4bcdb16cde56d7edc9b5c6eef5883159
GET /sfp.js HTTP/1.1
Host: addresseepaper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: df9c1da44ed7c4c4e0d46eb6f1b0e7d4
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 10 Sep 2022 17:45:51 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1RE7PVa5q1ObtyjRqPO%2FPQq0wHWc306fKAZ4hgO%2BRE0J4CSXcjtUKtoIOuDc1FfVjcoGeIetbpO78Q0MXVWB97UfXLbmyfMjWYtmy1yaPwwEg0f62fXD0VhXG43Z0PHPOcWZMCs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489fad08993f3f3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/img/icon.png
172.67.183.56200 OK 107 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/img/icon.png
IP 172.67.183.56:0
File type PNG image data, 340 x 340, 8-bit/color RGB, non-interlaced\012- data
Size 107 kB (106874 bytes)
Hash c1f6eb397e4025eb9b9f152caf975d28
0fef898a70d937ab0982906947fcb2826a7fde3c
be6b906095a91adeb37fdb83b3567252be9406419a8c7a65e9d62332a3415e99
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/img/icon.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: image/png
content-length: 106874
last-modified: Tue, 08 Feb 2022 14:16:16 GMT
etag: "62027b30-1a17a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3310891
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tAh%2FnVw0hR54BeRbXi96NiH1f9JQK7R12Xa99SFU4TmfMo2vrvWqqysPmi4sCyPgy%2BWzIj6gFvYDw9Mp7FWzwbrW3i5UOnL65g8%2BB2dvUuo1nBwwjnX%2BSSd9q%2FwaxUQmUe4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489fad9cac2fabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/img/number.png
172.67.183.56200 OK 1.1 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/img/number.png
IP 172.67.183.56:0
File type PNG image data, 43 x 43, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e4414e85c588bf7db195e49c02ab2bb
09254e79b255f1b2dfe45adbbe44583a4b433782
0b977ec6e7cf5d35df03cd3a8041f5f523f5d4059ac67c152c0a7b613e20b762
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/img/number.png HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: image/png
content-length: 1138
last-modified: Fri, 21 May 2021 10:10:48 GMT
etag: "60a78728-472"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3310891
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g%2BT9b5tRo920rHP7vJqty0K9ojRcUg1uyg%2BRWBitLflPB4YASzJhURp895BrvojsbZSU1U%2B5b5ZhzepyTInAvoJdXLPF%2BQMjevTW0TRMBpkZ3%2FZ0W%2BHbDsmNqE7Es7TzmPA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489fad9cabdfabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 11a62de4541037ab66a1ee3a198916bd
767beb0fd7d3ef086d2dff0a984f54f6b6f9d0e4
1f6a4b80a80691e041057bf8a0a5beb9440df1a1a9af8d2447af252055850d1a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "1F6A4B80A80691E041057BF8A0A5BEB9440DF1A1A9AF8D2447AF252055850D1A"
Last-Modified: Sat, 10 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3916
Expires: Sat, 10 Sep 2022 18:51:08 GMT
Date: Sat, 10 Sep 2022 17:45:52 GMT
Connection: keep-alive
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/js/jquery.min.js
172.67.183.56200 OK 32 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/js/jquery.min.js
IP 172.67.183.56:0
File type ASCII text, with very long lines (65451)
Hash 431a24c8d785eb6b4eab988d740f115c
e780f6ef20c417f8a1dbe8d1c4097b00522bc198
b701dd25511759f8f02c47bf238361bb11ef5163170d58e02ac3310a666dbb3c
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/js/jquery.min.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: application/javascript
last-modified: Fri, 21 May 2021 10:10:50 GMT
etag: W/"60a7872a-15d94"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 3310890
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IlV%2FzcZ07NH7pErmRG0N%2Bi5OwWt5kLuJyMPDvTdXuJORPtpwP9%2Bn%2BR91U7GYvqWn58m1ATiOtxV%2BgKdfiKtqZih5tar91Qe8YgVWsgfsc9f0kWERWsogkuIH57v6NzJZ%2Bs8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489fad9cac4fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.10:0
Hash c36088d025160ab9be5081aa3f197ead
5db8b180e79a5ee395d31d6c8399a5626beef882
d197d4c272a53eb5400e04094a7f35857a40ed05c1c61bd1b0cf9c61f3a0659b
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 10 Sep 2022 17:45:52 GMT
date: Sat, 10 Sep 2022 17:45:52 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tovanillitechan.com/15?rnd=759087748&z=3056520&var=&rb=h0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ&ruid=a427a05a-a0ec-4430-9d44-74ab2feeae5a&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A1.235%2C%22location%22%3A%22https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A0%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D
139.45.197.239204 No Content 0 B URL HTTP/2 tovanillitechan.com/15?rnd=759087748&z=3056520&var=&rb=h0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ&ruid=a427a05a-a0ec-4430-9d44-74ab2feeae5a&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A1.235%2C%22location%22%3A%22https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A0%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /15?rnd=759087748&z=3056520&var=&rb=h0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ&ruid=a427a05a-a0ec-4430-9d44-74ab2feeae5a&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A1.235%2C%22location%22%3A%22https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A0%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: scm=1; OAID=f23c3931aa4647e38e41a3933d9b2a78; oaidts=1662831951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 10 Sep 2022 17:45:53 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.freeroms.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 83a50638ad1395da3272b7b5104c09cc
access-control-expose-headers: X-Sc
set-cookie: OAID=f23c3931aa4647e38e41a3933d9b2a78; expires=Sun, 10 Sep 2023 17:45:53 GMT; secure; SameSite=None
oaidts=1662831951; expires=Sun, 10 Sep 2023 17:45:53 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/css/animate.css
172.67.183.56200 OK 4.8 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/css/animate.css
IP 172.67.183.56:0
Hash c91016401e0a0b7b3d7572de48c76597
12fb634abb5e708b4f55d1489055b4f626d3cdd1
2472e286e0bf6f54cef9d99e9c63301c873fa02bc4e3979e1a18587a6d973120
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/css/animate.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:53 GMT
content-type: text/css
last-modified: Fri, 21 May 2021 10:10:46 GMT
etag: W/"60a78726-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WN69vdOvqvUwSLDxg9bqS2x29nlkit0ggZ20vyjjPwSqyL9j%2BsPX%2FrHyMQdx2mVQa4y4Ya%2FU4INPv7FtWosYDeIbjCx5zWmBE8HTOjldep7x6GAINYo3s2kYXKtfJuXqtB4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489fad94a74fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
obituaryfuneral.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F16%2Fjs%2Fscript.js&l=711&fd=294
192.243.61.227200 OK 0 B URL HTTP/1.1 obituaryfuneral.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F16%2Fjs%2Fscript.js&l=711&fd=294
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fsimple_bubbleicon%2F16%2Fjs%2Fscript.js&l=711&fd=294 HTTP/1.1
Host: obituaryfuneral.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: u_pl=16560103; uid_id2=0e54cc92-2ba5-420c-9c9f-9331f171225d:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc4d53d21b4a90448b5012c00c5cfa5a2=[3364901]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 17:45:53 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/css/style.css
172.67.183.56200 OK 2.3 kB URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/css/style.css
IP 172.67.183.56:0
Hash 9e6a3139b133de29072d71c14963a1ac
074519fd7d10afb7ddd5133fd66fd0c503618976
089d7f1a16fd6ebbd1b9cc479cb07fe452b6a28ce5696c94102aaf52736a7ce4
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:53 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 14:46:40 GMT
etag: W/"61f7f650-2516"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RoJfOtvYupgeZv2LIEfbNfAn4qEDdyoJfz%2BC6SZcWUd5zV80divCKOH8bTAenLZoI%2B1x4Beaxs2BHAyX2reBLuM%2B2%2BPeFppJUPWXVuATS66iGHq0zin97PS5K9qDngekxuM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489fad94a70fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 19abc4dff49acc47250608758f851fcf
ac1716c3e767cd77f3e228cc5414c8f4e6473d8c
ba3868df01a9e7ba2ee41b191a9cf800d1189b78bebc3c12dacf379294e1f712
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 288
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:45:53 GMT
Last-Modified: Sat, 10 Sep 2022 17:41:05 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
secure.quantserve.com/quant.js
91.228.74.159200 OK 10 kB URL HTTP/2 secure.quantserve.com/quant.js
IP 91.228.74.159:0
Hash ce5e9794a39d297c09e43298fffb47f9
e573f4238281bb224ce3d2c29a7078bb49b63ab9
d1af3251c5f7c7f2b0745e2094cd3a69071fa82b78729dd84ff3290e49fa88d0
GET /quant.js HTTP/1.1
Host: secure.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:53 GMT
content-type: application/javascript
accept-ranges: bytes
cache-control: private, max-age=604800
content-encoding: gzip
etag: "3K3nn1ChiYCKxJYFUmbsHw=="
expires: Sat, 17 Sep 2022 17:45:53 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.freeroms.com/images/logo.png?qc-size=215,40
64.235.54.28200 OK 9.8 kB URL HTTP/2 www.freeroms.com/images/logo.png?qc-size=215,40
IP 64.235.54.28:0
File type PNG image data, 215 x 40, 8-bit/color RGB, non-interlaced\012- data
Hash 14cd0a179797ca4b75eafccd97c8bb29
3b28b50481b500440e2d20df8acfba80d752a090
e94da94c103e98f78880e5458d6cd022cc20d1d6412b985ef8c0b3eeafd40f5c
GET /images/logo.png?qc-size=215,40 HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
Cookie: _ga_FH0L8EV0R0=GS1.1.1662831941.1.0.1662831941.0.0.0; _ga=GA1.1.1180470632.1662831941; dom3ic8zudi28v8lr6fgphwffqoz0j6c=0e54cc92-2ba5-420c-9c9f-9331f171225d%3A2%3A1; sb_main_c4d53d21b4a90448b5012c00c5cfa5a2=1; sb_count_c4d53d21b4a90448b5012c00c5cfa5a2=1; prefetchAd_2881944=true; ppu_main_ea2d5d802b867cf417198fc84113161f=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=obituaryfuneral.com; qcSxc=1662831943726
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:53 GMT
content-type: image/png
content-length: 9831
last-modified: Tue, 14 Jul 2015 01:10:45 GMT
etag: "55a46195-2667"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:45:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:45:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 252705
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 19:34:08 GMT
expires: Thu, 07 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 252705
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
obituaryfuneral.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2BtTvYLX%2FBkiIeIyhxUFNzZ7p7unRlzCMa4Etz8IFHMTetXT8qt7mqquqcne1oMkYAIk%2F%2Bg981ulujiD%2FBqkNlADovCjqc9uFfPIuSUg8xkcfRz%2BbxX7x1evaovNssj4qOkhxcumXWlNV2Km37jjRtBcLaxqrJy0Bh0lj9Zjs42bP%2Ft7nLTf7PxvuRrZin0A98P%2FKCxoqxMzGBpKkLlu92g2fWbUdgM4ggD%2B1%2FuSg%2BOehD9I3IKSkwWHnmnofgYWfr9BenWCpO%2F9V5aaloYi77Y%2BShby0yVIZ3DxHpIsp1jN4w7WHkIk23P4sL0%2FzEyNSHe44dg2c5xSLD%2B1iwn05AZmHgOVX8MqcdQdAxubkOJAwJwgctXkKX3Lxtb0VvPVDpVJ2ThyV9Q1YQs%2FH4aWfrtea0GjetGl4UymcMgqaEGY6jeGHm5h2L9BFS1B158DiV%2BJUtPVpGlW1ecNlDi8FVfxhHn3XAxZDRejEKfL3Z5N1nstlpBErSDMIzFrCClxlDJGFoOQd0JlM5DqTyUiYcy95CKwwYPgqDtC079TpfzlmhLtiz8gLaTgAb%2Bcgcln95hiCIfgushuN1Abjewpu4dxKdgy5%2FhbtZwwoMrCPqiRiUJKkdQUYJKEVQFQdWvt4V2oavvC%2B1KFhzv8Hi36pEpept02xQ9mZHN%2FIg8P%2Bvu6Xd%2FYE0eNngk4pYIAxbRrh9FHRb7Qch9n8c8oTEN4VQN5U6AOg%2FrakLOvK6Qqwn531dfgtE9OL0Hrl4ALV8GrUbt0Ae9OYo6Ptaz3cRKaU3qmtykEKZGXiyguOVt6iNyZpajdeM1SL5%2F7lN2afLng6fgtkZua3ymHhH09N3RNVORrWumcuSHK3mhUrVOp%2B97vaCFPPn1B%2FJWZay4eMENH7zDp8IU7n4oXbFKM6GyniPfnFdCSLtiLJfkp4vuY8mulu7m%2BdJmZb569d2Vi2lupXPKZGNQNSHk8T64mpD%2F%2F7g9%2B7ov3rkDZcewZY203CfHA2X2wPMNuHye35mTsHruYbmHqqxHNmTzQ60ItJxzymq4f3E2x5vuLnr2FdDiNrK0Rt%2FW6OsaVA%2FhypOjIrf7535rzQZMeyOmrbfFtNX3npXr1GGj5Ys2k4lsMxnFUSK5YHHMfJ5w1hKdDkfhJvylX67%2BDQAA%2F%2F8BAAD%2F%2F%2BLcm%2F6FBAAA
192.243.61.227200 OK 7 B URL HTTP/1.1 obituaryfuneral.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2BtTvYLX%2FBkiIeIyhxUFNzZ7p7unRlzCMa4Etz8IFHMTetXT8qt7mqquqcne1oMkYAIk%2F%2Bg981ulujiD%2FBqkNlADovCjqc9uFfPIuSUg8xkcfRz%2BbxX7x1evaovNssj4qOkhxcumXWlNV2Km37jjRtBcLaxqrJy0Bh0lj9Zjs42bP%2Ft7nLTf7PxvuRrZin0A98P%2FKCxoqxMzGBpKkLlu92g2fWbUdgM4ggD%2B1%2FuSg%2BOehD9I3IKSkwWHnmnofgYWfr9BenWCpO%2F9V5aaloYi77Y%2BShby0yVIZ3DxHpIsp1jN4w7WHkIk23P4sL0%2FzEyNSHe44dg2c5xSLD%2B1iwn05AZmHgOVX8MqcdQdAxubkOJAwJwgctXkKX3Lxtb0VvPVDpVJ2ThyV9Q1YQs%2FH4aWfrtea0GjetGl4UymcMgqaEGY6jeGHm5h2L9BFS1B158DiV%2BJUtPVpGlW1ecNlDi8FVfxhHn3XAxZDRejEKfL3Z5N1nstlpBErSDMIzFrCClxlDJGFoOQd0JlM5DqTyUiYcy95CKwwYPgqDtC079TpfzlmhLtiz8gLaTgAb%2Bcgcln95hiCIfgushuN1Abjewpu4dxKdgy5%2FhbtZwwoMrCPqiRiUJKkdQUYJKEVQFQdWvt4V2oavvC%2B1KFhzv8Hi36pEpept02xQ9mZHN%2FIg8P%2Bvu6Xd%2FYE0eNngk4pYIAxbRrh9FHRb7Qch9n8c8oTEN4VQN5U6AOg%2FrakLOvK6Qqwn531dfgtE9OL0Hrl4ALV8GrUbt0Ae9OYo6Ptaz3cRKaU3qmtykEKZGXiyguOVt6iNyZpajdeM1SL5%2F7lN2afLng6fgtkZua3ymHhH09N3RNVORrWumcuSHK3mhUrVOp%2B97vaCFPPn1B%2FJWZay4eMENH7zDp8IU7n4oXbFKM6GyniPfnFdCSLtiLJfkp4vuY8mulu7m%2BdJmZb569d2Vi2lupXPKZGNQNSHk8T64mpD%2F%2F7g9%2B7ov3rkDZcewZY203CfHA2X2wPMNuHye35mTsHruYbmHqqxHNmTzQ60ItJxzymq4f3E2x5vuLnr2FdDiNrK0Rt%2FW6OsaVA%2FhypOjIrf7535rzQZMeyOmrbfFtNX3npXr1GGj5Ys2k4lsMxnFUSK5YHHMfJ5w1hKdDkfhJvylX67%2BDQAA%2F%2F8BAAD%2F%2F%2BLcm%2F6FBAAA
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz4scxR%2BtTvYLX%2FBkiIeIyhxUFNzZ7p7unRlzCMa4Etz8IFHMTetXT8qt7mqquqcne1oMkYAIk%2F%2Bg981ulujiD%2FBqkNlADovCjqc9uFfPIuSUg8xkcfRz%2BbxX7x1evaovNssj4qOkhxcumXWlNV2Km37jjRtBcLaxqrJy0Bh0lj9Zjs42bP%2Ft7nLTf7PxvuRrZin0A98P%2FKCxoqxMzGBpKkLlu92g2fWbUdgM4ggD%2B1%2FuSg%2BOehD9I3IKSkwWHnmnofgYWfr9BenWCpO%2F9V5aaloYi77Y%2BShby0yVIZ3DxHpIsp1jN4w7WHkIk23P4sL0%2FzEyNSHe44dg2c5xSLD%2B1iwn05AZmHgOVX8MqcdQdAxubkOJAwJwgctXkKX3Lxtb0VvPVDpVJ2ThyV9Q1YQs%2FH4aWfrtea0GjetGl4UymcMgqaEGY6jeGHm5h2L9BFS1B158DiV%2BJUtPVpGlW1ecNlDi8FVfxhHn3XAxZDRejEKfL3Z5N1nstlpBErSDMIzFrCClxlDJGFoOQd0JlM5DqTyUiYcy95CKwwYPgqDtC079TpfzlmhLtiz8gLaTgAb%2Bcgcln95hiCIfgushuN1Abjewpu4dxKdgy5%2FhbtZwwoMrCPqiRiUJKkdQUYJKEVQFQdWvt4V2oavvC%2B1KFhzv8Hi36pEpept02xQ9mZHN%2FIg8P%2Bvu6Xd%2FYE0eNngk4pYIAxbRrh9FHRb7Qch9n8c8oTEN4VQN5U6AOg%2FrakLOvK6Qqwn531dfgtE9OL0Hrl4ALV8GrUbt0Ae9OYo6Ptaz3cRKaU3qmtykEKZGXiyguOVt6iNyZpajdeM1SL5%2F7lN2afLng6fgtkZua3ymHhH09N3RNVORrWumcuSHK3mhUrVOp%2B97vaCFPPn1B%2FJWZay4eMENH7zDp8IU7n4oXbFKM6GyniPfnFdCSLtiLJfkp4vuY8mulu7m%2BdJmZb569d2Vi2lupXPKZGNQNSHk8T64mpD%2F%2F7g9%2B7ov3rkDZcewZY203CfHA2X2wPMNuHye35mTsHruYbmHqqxHNmTzQ60ItJxzymq4f3E2x5vuLnr2FdDiNrK0Rt%2FW6OsaVA%2FhypOjIrf7535rzQZMeyOmrbfFtNX3npXr1GGj5Ys2k4lsMxnFUSK5YHHMfJ5w1hKdDkfhJvylX67%2BDQAA%2F%2F8BAAD%2F%2F%2BLcm%2F6FBAAA HTTP/1.1
Host: obituaryfuneral.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: u_pl=16560103; uid_id2=0e54cc92-2ba5-420c-9c9f-9331f171225d:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc4d53d21b4a90448b5012c00c5cfa5a2=[3364901]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 17:45:53 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3bd2adebefac973ec5b80085eb7e2467
Strict-Transport-Security: max-age=0; includeSubdomains
obituaryfuneral.com/pixel/sbs?c=1
192.243.61.227200 OK 0 B URL HTTP/1.1 obituaryfuneral.com/pixel/sbs?c=1
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: obituaryfuneral.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: u_pl=16560103; uid_id2=0e54cc92-2ba5-420c-9c9f-9331f171225d:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc4d53d21b4a90448b5012c00c5cfa5a2=[3364901]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Sat, 10 Sep 2022 17:45:53 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ebc205cf750164c31d1fce2318d1636b
9309949107d69193b1c5156d45fbcc91e20a0fe4
4ab7f53d17c5d642e17a3e78aa93dc133c4713e44ccccb849f04fdcca62be8b6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 10 Sep 2022 17:45:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226JvC9xkUEfXYY%22%2C%22domain%22%3A%22www.freeroms.com%22%2C%22publisher%22%3A%22FreeROMS%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.43%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22SflKcnZjT32PEJo7sVOMXg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1662831943775%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-8xhpgouc4q9ajg7m2wut%22%7D
18.196.221.202200 OK 2 B URL HTTP/2 audit-tcfv2.cmp.quantcast.com/?log=%7B%22accountId%22%3A%226JvC9xkUEfXYY%22%2C%22domain%22%3A%22www.freeroms.com%22%2C%22publisher%22%3A%22FreeROMS%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.43%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22SflKcnZjT32PEJo7sVOMXg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1662831943775%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-8xhpgouc4q9ajg7m2wut%22%7D
IP 18.196.221.202:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
GET /?log=%7B%22accountId%22%3A%226JvC9xkUEfXYY%22%2C%22domain%22%3A%22www.freeroms.com%22%2C%22publisher%22%3A%22FreeROMS%22%2C%22cmpId%22%3A10%2C%22cmpVersion%22%3A%222.43%22%2C%22displayType%22%3A%22tcfui%3Amandatory%22%2C%22configurationHashCode%22%3A%22SflKcnZjT32PEJo7sVOMXg%22%2C%22tagVersion%22%3A%22V2%22%2C%22clientTimestamp%22%3A1662831943775%2C%22operationType%22%3A%22init%22%2C%22sessionId%22%3A%22GDPR-8xhpgouc4q9ajg7m2wut%22%7D HTTP/1.1
Host: audit-tcfv2.cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:54 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
tovanillitechan.com/15?rnd=759087748&z=3056520&var=&rb=h0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ&ruid=a427a05a-a0ec-4430-9d44-74ab2feeae5a&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A3.236%2C%22location%22%3A%22https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A0%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D
139.45.197.239204 No Content 0 B URL HTTP/2 tovanillitechan.com/15?rnd=759087748&z=3056520&var=&rb=h0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ&ruid=a427a05a-a0ec-4430-9d44-74ab2feeae5a&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A3.236%2C%22location%22%3A%22https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A0%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /15?rnd=759087748&z=3056520&var=&rb=h0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ&ruid=a427a05a-a0ec-4430-9d44-74ab2feeae5a&uci=%7B%22path%22%3A%7B%22count%22%3A0%2C%22totalLength%22%3A0%2C%22pathHistogram%22%3A%7B%224%22%3A0%2C%228%22%3A0%2C%2216%22%3A0%2C%2232%22%3A0%2C%2264%22%3A0%2C%22128%22%3A0%2C%22256%22%3A0%2C%22512%22%3A0%2C%221024%22%3A0%7D%7D%2C%22durationOnCreate%22%3A3.236%2C%22location%22%3A%22https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%22%2C%22isSelenium%22%3Afalse%2C%22isPhantom%22%3Afalse%2C%22isTouch%22%3Afalse%2C%22pluginCount%22%3A0%2C%22wdov%22%3A0%2C%22isIONS%22%3Atrue%7D HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: scm=1; OAID=f23c3931aa4647e38e41a3933d9b2a78; oaidts=1662831951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Sat, 10 Sep 2022 17:45:55 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.freeroms.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 3724eccdf90ffeda55135519e4738cbb
access-control-expose-headers: X-Sc
set-cookie: OAID=f23c3931aa4647e38e41a3933d9b2a78; expires=Sun, 10 Sep 2023 17:45:55 GMT; secure; SameSite=None
oaidts=1662831951; expires=Sun, 10 Sep 2023 17:45:55 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
tovanillitechan.com/11?rnd=932799256&z=3056520&b=14148810&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=h0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ&ruid=a427a05a-a0ec-4430-9d44-74ab2feeae5a&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
139.45.197.239200 OK 0 B URL HTTP/2 tovanillitechan.com/11?rnd=932799256&z=3056520&b=14148810&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=h0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ&ruid=a427a05a-a0ec-4430-9d44-74ab2feeae5a&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP 139.45.197.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /11?rnd=932799256&z=3056520&b=14148810&var=&rqtdbc=0&rcvdbc=0&btp=7&rb=h0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ&ruid=a427a05a-a0ec-4430-9d44-74ab2feeae5a&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&sah=1002&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: tovanillitechan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Cookie: scm=1; OAID=f23c3931aa4647e38e41a3933d9b2a78; oaidts=1662831951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:57 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.freeroms.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: de4cb004c57df8e8d3060e91c5f79edd
access-control-expose-headers: X-Sc
set-cookie: OAID=f23c3931aa4647e38e41a3933d9b2a78; expires=Sun, 10 Sep 2023 17:45:56 GMT; secure; SameSite=None
oaidts=1662831951; expires=Sun, 10 Sep 2023 17:45:56 GMT; secure; SameSite=None
oaidvc=1; expires=Sun, 10 Sep 2023 17:45:57 GMT; secure; SameSite=None
CNT=1_v1_yuTXAAEAAAAtS3Bv; expires=Sat, 10 Sep 2022 18:45:57 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b83fa95ed30533299bc754adaced672
27eda8377e1c00c53fb66b4e2fa4f0dd6c7020af
bc59e5ba6abafd8e7b10d6f8ae2269cbf739a4b28f9cbbf3adfc29a9195e6985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4e8861b-4d5e-4f2e-8b1c-e85d23f02c52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8626
x-amzn-requestid: af5e61ab-4f7b-4b03-8413-5d750b17e0df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YLj9TH7vIAMFVMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631ae6bb-309144fb6e02564c4fcdb966;Sampled=0
x-amzn-remapped-date: Fri, 09 Sep 2022 07:09:47 GMT
x-amz-cf-pop: SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: 3gzR4efCGz9QsLoxAMuTUgBAwEc5WdyHBhw_wRPGmfnS9SWm-0vE7w==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 07:27:32 GMT
age: 37105
etag: "27eda8377e1c00c53fb66b4e2fa4f0dd6c7020af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.freeroms.com/images/bg-gredient.png
64.235.54.28200 OK 977 B URL HTTP/2 www.freeroms.com/images/bg-gredient.png
IP 64.235.54.28:0
File type PNG image data, 1 x 30, 8-bit/color RGB, non-interlaced\012- data
Hash 0f7b68eb840d4bf25b729a043992ffb0
59bdf7375e1912edc2349af5004a48409f28f3e8
8396a05bded4668001d0aebbdafc6e5575a2a627ed3a0abee2dbd8510ccf2459
GET /images/bg-gredient.png HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/css/style.css
Cookie: _ga_FH0L8EV0R0=GS1.1.1662831941.1.0.1662831941.0.0.0; _ga=GA1.1.1180470632.1662831941; dom3ic8zudi28v8lr6fgphwffqoz0j6c=0e54cc92-2ba5-420c-9c9f-9331f171225d%3A2%3A1; sb_main_c4d53d21b4a90448b5012c00c5cfa5a2=1; sb_count_c4d53d21b4a90448b5012c00c5cfa5a2=1; prefetchAd_2881944=true; ppu_main_ea2d5d802b867cf417198fc84113161f=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=obituaryfuneral.com; qcSxc=1662831943726
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:57 GMT
content-type: image/png
content-length: 977
x-accel-version: 0.01
last-modified: Tue, 14 Jul 2015 01:10:47 GMT
etag: "3d1-51acb821a53c0"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
cmp.quantcast.com/choice/6JvC9xkUEfXYY/www.freeroms.com/choice.js?tag_version=V2
99.86.63.78200 OK 0 B URL HTTP/2 cmp.quantcast.com/choice/6JvC9xkUEfXYY/www.freeroms.com/choice.js?tag_version=V2
IP 99.86.63.78:0
GET /choice/6JvC9xkUEfXYY/www.freeroms.com/choice.js?tag_version=V2 HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 07 Mar 2022 13:38:13 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Sat, 10 Sep 2022 17:45:52 GMT
cache-control: max-age=900
etag: W/"8903112fe1b05cb89d49d106b04c0b73"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 18fd94ee5727c0289c44a35bea3c16ba.cloudfront.net (CloudFront)
x-amz-cf-pop: YTO50-C1
x-amz-cf-id: 5zJBuz3s3EBsu_9_qXX_kE-Trm5WmWCHbp3qFtFwhQpfS_Ffw-7UDA==
age: 40
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/js/script.js
172.67.183.56200 OK 0 B URL HTTP/2 cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/js/script.js
IP 172.67.183.56:0
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:53 GMT
content-type: application/javascript
last-modified: Fri, 21 May 2021 10:10:50 GMT
etag: W/"60a7872a-2c7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g%2BeTx8oiRQR%2FsufpgB1KCwkfl1EaQPnCLKwieyK0qpSNbo46TkJaANbu34I3IDwnwCgxZ%2Fx%2FFr%2FCPnh%2Bi3hrtS2czPRMPjGUT6esMr8sQ7pX3DgJtzXY%2B%2FErUfbaqVwfL1w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489fada2b10fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
creepingbrings.com/sfp.js
104.21.234.233200 OK 0 B URL HTTP/2 creepingbrings.com/sfp.js
IP 104.21.234.233:0
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: d0175c6d71e51150fc9ee364f5551779
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 10 Sep 2022 17:45:50 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D06dQJnOr%2B%2FI3sOwmSMVS0VqnsbdJAbt35ycpFPsiVRghhk4E0StadWcSRhbmmCzbZZN%2BrLRUfS%2F%2BrEUu2zyIb27%2B9jNKYWnIDBH8YrSrn%2Bgb8HEvr%2BJGk7LOJriE9%2FqLnC1g6c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489facd0c477566-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dacmaiss.com/?rb=PLASd1zN-niZoVX_rYrjCR-khMhnGUch4CPFl5a0Jm_0O-thSMo1vuBfgjKPrGXRo2v0miKlwYv_R3TB4Q5QpGV7S2FM3H29XJ8XCxxrLN6xeq_f9uJQbhTKty_C7ceL6JoFwInCpQd6UAdr3wv9a3EWrZ6GcTJaTRI99HxRuJfxotrQ0CRlp9wNPV9mrU_LayV2DrS3-E1aQRgWPT6T5FU91ZM%3D&request_ab2=0&zoneid=2881944&js_build=iclick-v1.425.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.425.0&bs=3f8c90d5-e7f4-4e1c-ad95-896acc2ba044&userId=f23c3931aa4647e38e41a3933d9b2a78&m=link
139.45.197.237200 OK 0 B URL HTTP/2 dacmaiss.com/?rb=PLASd1zN-niZoVX_rYrjCR-khMhnGUch4CPFl5a0Jm_0O-thSMo1vuBfgjKPrGXRo2v0miKlwYv_R3TB4Q5QpGV7S2FM3H29XJ8XCxxrLN6xeq_f9uJQbhTKty_C7ceL6JoFwInCpQd6UAdr3wv9a3EWrZ6GcTJaTRI99HxRuJfxotrQ0CRlp9wNPV9mrU_LayV2DrS3-E1aQRgWPT6T5FU91ZM%3D&request_ab2=0&zoneid=2881944&js_build=iclick-v1.425.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.425.0&bs=3f8c90d5-e7f4-4e1c-ad95-896acc2ba044&userId=f23c3931aa4647e38e41a3933d9b2a78&m=link
IP 139.45.197.237:0
Analyzer Verdict Alert quad9 Sinkholed
GET /?rb=PLASd1zN-niZoVX_rYrjCR-khMhnGUch4CPFl5a0Jm_0O-thSMo1vuBfgjKPrGXRo2v0miKlwYv_R3TB4Q5QpGV7S2FM3H29XJ8XCxxrLN6xeq_f9uJQbhTKty_C7ceL6JoFwInCpQd6UAdr3wv9a3EWrZ6GcTJaTRI99HxRuJfxotrQ0CRlp9wNPV9mrU_LayV2DrS3-E1aQRgWPT6T5FU91ZM%3D&request_ab2=0&zoneid=2881944&js_build=iclick-v1.425.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=2&pl=https%3A%2F%2Fwww.freeroms.com%2Froms%2Fpsp%2Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.425.0&bs=3f8c90d5-e7f4-4e1c-ad95-896acc2ba044&userId=f23c3931aa4647e38e41a3933d9b2a78&m=link HTTP/1.1
Host: dacmaiss.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.freeroms.com/
Origin: https://www.freeroms.com
Connection: keep-alive
Cookie: OAID=f23c3931aa4647e38e41a3933d9b2a78; oaidts=1662831951
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: application/json
x-trace-id: d73dbd2163a325eeac7ce6fd74a86607
access-control-allow-origin: https://www.freeroms.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=f23c3931aa4647e38e41a3933d9b2a78; expires=Sun, 10 Sep 2023 17:45:51 GMT; path=/; secure; SameSite=None
oaidts=1662831951; expires=Sun, 10 Sep 2023 17:45:51 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Sat, 17 Sep 2022 17:45:51 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
interstitial-07.com/?l=nYoUsXe6mMfSnop&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D752072947%26z%3D5030886%26b%3D14082266%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DQvdgdgH_oyBlVq-0zXfRTXpXPg8jOmBjXrg-BUR2qKXAbC1YZGuTy_eZOtgY_oS06R9bxXiNSr8xrEIuQSdR9EIvqC5smBWFhNY70Hh6wsztMbBaVTpXhKiu2mdiYqJ48Q3xRsoSTh4mgL5lpENX9KUerN7VI61igfA5xLf9TkrD4CZlc-ZfqoHbLVBVCv8mWAZlWSpUGuU5tsVO8doaW0hX9NkY17Mg9AF_Rzne8zJ5xPPo7zARjF8B3KezM5A_Vx1a8TO4P8k6qNFHvSJGMEcb-MYnd72XwODYr12JDk2HJn-RzGpQrZMPXZu3PRUdw0fCcd8MpEANlyLk0J17cuIjwA_O0461UWF3Wzy7gCnIuzPwxcvyxMpNyGgMyOPXWNV2gNh42-3kNnEa9NXXy07711sLl3dKN37VruJnCy9nWyU7I47nCAlaSJVcYUByUNKXKj6tFfjCY-UUTTpNWmkpvsblXDCDKpdhspoZ-oWv5_XWTBaWTBOEgt5NggAC1dE52FzJPmpEcGRIs2yF9BA6L37m8mOF9D5qi4k25YbCEwcM9kLjLcl2ECggRBB_5RI3zLWuSJkQAPaDnJzOxC8sYD2zwZa3doql2RND3eJGFFjpzMl3jW6hSGCbc6SKSxBlN158NRGkrTYO%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dae5f139b-6113-4ed5-81c9-da07270acc44%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freeroms.com%252Froms%252Fpsp%252Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
139.45.197.155200 OK 0 B URL HTTP/2 interstitial-07.com/?l=nYoUsXe6mMfSnop&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D752072947%26z%3D5030886%26b%3D14082266%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DQvdgdgH_oyBlVq-0zXfRTXpXPg8jOmBjXrg-BUR2qKXAbC1YZGuTy_eZOtgY_oS06R9bxXiNSr8xrEIuQSdR9EIvqC5smBWFhNY70Hh6wsztMbBaVTpXhKiu2mdiYqJ48Q3xRsoSTh4mgL5lpENX9KUerN7VI61igfA5xLf9TkrD4CZlc-ZfqoHbLVBVCv8mWAZlWSpUGuU5tsVO8doaW0hX9NkY17Mg9AF_Rzne8zJ5xPPo7zARjF8B3KezM5A_Vx1a8TO4P8k6qNFHvSJGMEcb-MYnd72XwODYr12JDk2HJn-RzGpQrZMPXZu3PRUdw0fCcd8MpEANlyLk0J17cuIjwA_O0461UWF3Wzy7gCnIuzPwxcvyxMpNyGgMyOPXWNV2gNh42-3kNnEa9NXXy07711sLl3dKN37VruJnCy9nWyU7I47nCAlaSJVcYUByUNKXKj6tFfjCY-UUTTpNWmkpvsblXDCDKpdhspoZ-oWv5_XWTBaWTBOEgt5NggAC1dE52FzJPmpEcGRIs2yF9BA6L37m8mOF9D5qi4k25YbCEwcM9kLjLcl2ECggRBB_5RI3zLWuSJkQAPaDnJzOxC8sYD2zwZa3doql2RND3eJGFFjpzMl3jW6hSGCbc6SKSxBlN158NRGkrTYO%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dae5f139b-6113-4ed5-81c9-da07270acc44%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freeroms.com%252Froms%252Fpsp%252Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP 139.45.197.155:0
GET /?l=nYoUsXe6mMfSnop&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Fupgulpinon.com%2F12%3Frnd%3D752072947%26z%3D5030886%26b%3D14082266%26c%3D5881775%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62febf30c58abd0001fff58e%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3DQvdgdgH_oyBlVq-0zXfRTXpXPg8jOmBjXrg-BUR2qKXAbC1YZGuTy_eZOtgY_oS06R9bxXiNSr8xrEIuQSdR9EIvqC5smBWFhNY70Hh6wsztMbBaVTpXhKiu2mdiYqJ48Q3xRsoSTh4mgL5lpENX9KUerN7VI61igfA5xLf9TkrD4CZlc-ZfqoHbLVBVCv8mWAZlWSpUGuU5tsVO8doaW0hX9NkY17Mg9AF_Rzne8zJ5xPPo7zARjF8B3KezM5A_Vx1a8TO4P8k6qNFHvSJGMEcb-MYnd72XwODYr12JDk2HJn-RzGpQrZMPXZu3PRUdw0fCcd8MpEANlyLk0J17cuIjwA_O0461UWF3Wzy7gCnIuzPwxcvyxMpNyGgMyOPXWNV2gNh42-3kNnEa9NXXy07711sLl3dKN37VruJnCy9nWyU7I47nCAlaSJVcYUByUNKXKj6tFfjCY-UUTTpNWmkpvsblXDCDKpdhspoZ-oWv5_XWTBaWTBOEgt5NggAC1dE52FzJPmpEcGRIs2yF9BA6L37m8mOF9D5qi4k25YbCEwcM9kLjLcl2ECggRBB_5RI3zLWuSJkQAPaDnJzOxC8sYD2zwZa3doql2RND3eJGFFjpzMl3jW6hSGCbc6SKSxBlN158NRGkrTYO%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Dae5f139b-6113-4ed5-81c9-da07270acc44%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freeroms.com%252Froms%252Fpsp%252Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.25
set-cookie: reverse=hto-Vh57NzovGpyjchoshmGNtABC3aaTVIH8zJ-AcCg; expires=Sat, 10-Sep-2022 18:45:52 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/index.html
172.67.74.218200 OK 0 B URL HTTP/2 cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/index.html
IP 172.67.74.218:0
GET /sb/notifications/utility/default/us/blog/Progamerage/simple_bubbleicon/16/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.freeroms.com
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: text/html
last-modified: Wed, 09 Feb 2022 14:15:28 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MfaJQ903bsuOLsAquLW%2BMEhmsRW1pUaEr%2FBt%2BiMiU%2BcNJwKgdizuQxtGZcCf5PP2wYQt95NkQ5XN%2F%2FkiuT8mThV5Qf61%2BGrlrwjauCCZc7TUsytrYlTQzabyM7TOY5f%2BlAPWXm0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7489fad4ff7fb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
unphionetor.com/fv.js?t=72747&cb=124965989
139.45.197.236200 OK 0 B URL HTTP/2 unphionetor.com/fv.js?t=72747&cb=124965989
IP 139.45.197.236:0
Analyzer Verdict Alert quad9 Sinkholed
GET /fv.js?t=72747&cb=124965989 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://interstitial-07.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: d7b963bb19a1b5fd04c94b3b27041250
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
64.235.54.28200 OK 0 B URL HTTP/2 www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
IP 64.235.54.28:0
GET /roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:49 GMT
content-type: text/html
last-modified: Sat, 10 Sep 2022 07:58:01 GMT
etag: W/"631c4389-28c93"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
upgulpinon.com/1?z=5030886
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/1?z=5030886
IP 139.45.197.242:0
Analyzer Verdict Alert fortinet Malware
GET /1?z=5030886 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 856ee4dfd8368ae64fcc105012435c28
access-control-expose-headers: X-Sc
x-sc: HJLQ93pPxkrcc0UYjmqrDmJwMKLh_tn3SwO6tSFkx8XcNUJUgKI5xKuJmbHRseuGmTVIcGf9H1v6Hiaieb9BJc28eBQ=
set-cookie: scm=1; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
OAID=e1969899e8cf47e2b554c682ed22d9d1; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
oaidts=1662831951; expires=Sun, 10 Sep 2023 17:45:51 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
dozubatan.com/400/3601099
139.45.197.237200 OK 0 B URL HTTP/2 dozubatan.com/400/3601099
IP 139.45.197.237:0
GET /400/3601099 HTTP/1.1
Host: dozubatan.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:51 GMT
content-type: application/javascript
x-trace-id: 789def6731983d447cd92f4149f228df
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=521e17532da34165b2c9e3034801da81; expires=Sun, 10 Sep 2023 17:45:51 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
interstitial-07.com/?l=9b0delICK3pIjOt&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D2076546561%26z%3D3056520%26b%3D14148810%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3Dh0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Da427a05a-a0ec-4430-9d44-74ab2feeae5a%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freeroms.com%252Froms%252Fpsp%252Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
139.45.197.155200 OK 0 B URL HTTP/2 interstitial-07.com/?l=9b0delICK3pIjOt&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D2076546561%26z%3D3056520%26b%3D14148810%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3Dh0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Da427a05a-a0ec-4430-9d44-74ab2feeae5a%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freeroms.com%252Froms%252Fpsp%252Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP 139.45.197.155:0
GET /?l=9b0delICK3pIjOt&cd_meta_crid=50538&trkintimp&target_url=https%3A%2F%2Ftovanillitechan.com%2F12%3Frnd%3D2076546561%26z%3D3056520%26b%3D14148810%26c%3D5901940%26var%3D%26d%3Dhttps%253A%252F%252Fred.forexpeacearmy.com%252F62cddf3c85e2d000019d78f1%253Fsub1%253D%257Bzoneid%257D%2526sub2%253D%257Bcampaignid%257D%2526sub3%253D%257Bconnection.type%257D%2526sub4%253D%257Bbrowser%257D%2526sub5%253D%257Bos%257D%2526sub6%253D%257Bcountry%257D%2526sub7%253D%257Bbannerid%257D%2526sub8%253D%257Bisp%257D%2526sub9%253D%257Bdevice%257D%2526ref_id%253D%2524%257BSUBID%257D%2526cost%253D%257Bcost%257D%26cln%3D1%26btp%3D7%26rb%3Dh0zRn_rcthl5vNDPq2mrMr-giOc2PDeVDtCikcVuFOihmOraKqvt7D8RmMp8hvP7rKTb9LzE8WT4ZodM72a1nQEdT_PLwfYkiM89P8fYSKgBJLl2BH-8aSqiZR9fJVjRbwFgOuFf2PARW-t00UTxAPKtJJ732j07duTKwVLULnBR3igluSlnLduGQScN1tlghYHfovgmmByXbf-Zw9My8W83v36f6W7hwX0lZyG8HQ3GJpGKafIT87cg0drpwgVp0P8Ce4_6C2cFAG5ITlOZZC1ZpI8w--1kRp78XdFmDEo399P7gcBnKIUFHbij7vdC2aykaUyLO5ftF3dB-EiVbeA3TVk4qcKZXzn0SKZ98SDntZ6wEwm0isG1lCgwmtDGXSXrsJBRig5TbX9N8XqijskAcuPud3DOE6C5GcyFbEZtc73TaZ2kQXggxQQMlRpkhRVBHFQwrNJ2x8-ovEqj2aeHWbVInN0sUeubz2PCk7yQWAPHsLoqj_AK0NSIdlcIDRr1wApQXCYbyVYQoKTJdrmdK4CSCzP7Aoa59njtG39rZLVZ7syrB2VwJZ6UdKhzAv16snCeSZVd11ipe58qXk7LFqagDJj3HOoABEzpLuqJMFyICgOZPr2I7QBG2Y8d-HIuzROPJc5jYVhGQAG5HItVxGb-F4ucqcSH-M6iEf8TOeUJ%26bag%3De5WiNa3QjVf4u1jVtO_1dw%3D%3D%26ruid%3Da427a05a-a0ec-4430-9d44-74ab2feeae5a%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D1%26gp%3D-1%26bp%3D-1%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.freeroms.com%252Froms%252Fpsp%252Fdai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1268%26wiw%3D1280%26wih%3D939%26wfc%3D2%26sah%3D1002%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interstitial-07.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:52 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.25
set-cookie: reverse=Sfemkt2-GpSl_QXMS0KL7cnbcMonNPmKy31ZRAES5q4; expires=Sat, 10-Sep-2022 18:45:52 GMT; Max-Age=3600; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: gzip
X-Firefox-Spdy: h2
www.freeroms.com/css/style.css
64.235.54.28200 OK 0 B URL HTTP/2 www.freeroms.com/css/style.css
IP 64.235.54.28:0
GET /css/style.css HTTP/1.1
Host: www.freeroms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/roms/psp/dai-2-ji_super_robot_taisen_z_saisei-hen_japan.htm
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 10 Sep 2022 17:45:50 GMT
content-type: text/css
last-modified: Mon, 28 Mar 2022 13:57:56 GMT
etag: W/"6241bee4-6b2f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/43/cmp2ui-en.js
99.86.63.78200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/43/cmp2ui-en.js
IP 99.86.63.78:0
GET /tcfv2/43/cmp2ui-en.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freeroms.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Tue, 02 Aug 2022 14:10:37 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: br
cache-control: max-age=172800
date: Fri, 09 Sep 2022 21:52:41 GMT
etag: W/"cdd513c37d4fc734e0fb03e5d9e813a7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 18fd94ee5727c0289c44a35bea3c16ba.cloudfront.net (CloudFront)
x-amz-cf-pop: YTO50-C1
x-amz-cf-id: xh0_qDG-Wk6NgI9VcZfGktivWB4fCQVXiCiwIH_Y3xQdPvURh3A_iA==
age: 71593
X-Firefox-Spdy: h2