1x-xredbet478860.top/
178.253.48.30301 Moved Permanently 162 B IP 178.253.48.30:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 1x-xredbet478860.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 20 Sep 2022 20:00:34 GMT
Content-Type: text/html
Content-Length: 162
Connection: close
Location: https://1x-xredbet478860.top/
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 20 Sep 2022 19:03:07 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0KLNkdaKNDciuDIsC0gInp_-gZscIroxTtFQQ0aL7S-BTaKPi4tSaA==
Age: 3448
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2359
Expires: Tue, 20 Sep 2022 20:39:54 GMT
Date: Tue, 20 Sep 2022 20:00:35 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ot7zLUP8N9PIPnI7g_8_TbVp9JISxWfbMz20-IcjYHuFZMRLkop-8A==
age: 55522
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ab3d13c5f5758ca09771bb74af30e7f0
3bc1997fff5c35fa1b182886853d87153358b097
3bbc00dd0436505bfacb4589dc3982eea8649ee9a835b78ee38f2f2f9413b5d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3BBC00DD0436505BFACB4589DC3982EEA8649EE9A835B78EE38F2F2F9413B5D0"
Last-Modified: Mon, 19 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3631
Expires: Tue, 20 Sep 2022 21:01:06 GMT
Date: Tue, 20 Sep 2022 20:00:35 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:35 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
1x-xredbet478860.top/
178.253.48.30307 Temporary Redirect 350 B IP 178.253.48.30:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 213458a7402c22ac955cfd00489c0b34
85ced592650435f62af1af536e6cd524db7563c4
132b18dd3ba2f1ea6563b2ec36d101b0794f7f0f2e7335f5c19c0b3e74896524
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 1x-xredbet478860.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 307 Temporary Redirect
server: nginx
date: Tue, 20 Sep 2022 20:00:35 GMT
content-type: text/html; charset=utf-8
content-length: 350
location: https://lite-1x283524.top/
x-frame-options: SAMEORIGIN
set-cookie: SESSION=2d3cf3db9e8460f075d1693adb79e9af; path=/; secure; HttpOnly; SameSite=Lax
lng=en; expires=Thu, 20-Oct-2022 20:00:35 GMT; Max-Age=2592000; path=/
ua=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
flaglng=en; expires=Thu, 20-Oct-2022 20:00:35 GMT; Max-Age=2592000; path=/
v3fr=1; expires=Fri, 23-Sep-2022 20:00:35 GMT; Max-Age=259200; path=/; httponly; samesite=lax
auid=sv0wHmMqG+M493OpEb+MAg==; expires=Wed, 20-Sep-23 20:00:35 GMT; path=/
x-reason: 1080,1078,1074,1026
cache-control: no-cache, private
server-timing: p;dur=77
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 08ceb83935dd3a2208a45d46c9591701
ae9796acdfc1dbfe06077bd1958650ced8fe1afc
7d3c583cd6e8408acfb1503852eba7fe476fd793a79aae608111e375f3f63c79
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D3C583CD6E8408ACFB1503852EBA7FE476FD793A79AAE608111E375F3F63C79"
Last-Modified: Mon, 19 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9355
Expires: Tue, 20 Sep 2022 22:36:30 GMT
Date: Tue, 20 Sep 2022 20:00:35 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 20 Sep 2022 19:03:22 GMT
Expires: Tue, 20 Sep 2022 19:31:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: orBPkdyl7BQD5DmWozNg-jJBhhfRDAWe1g3BKDDl-Pn_DCYb4kUDMw==
Age: 3433
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash edf07cd621f733b0eb50c632387ebf4f
61a082d26501c2c8d481b1676d0de2e585269613
e5c4324e4c55824b86f48bf0b9a1d317a82e7d3c19bdea7a91d78ce98d68a980
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3756
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:35 GMT
Last-Modified: Tue, 20 Sep 2022 18:57:59 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.77.40101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.77.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IvHcvVMX7LNRNLbVib4Hdg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aa093D6rpsGSLSjdjweGZFO7B9Q=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb61a4f6f0beed45a5f963bfba6e9d
a07136aeace7036e3b7427d63c60576adbdc388f
3a910cde9f8f65341f3422d28e35ca877558e136c99067b72daaeb56b3d9e76d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Righteous&family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
142.250.74.10200 OK 2.2 kB URL HTTP/2 fonts.googleapis.com/css2?family=Righteous&family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap
IP 142.250.74.10:0
Hash 4f1c922ae7f49bb29ff65eff7301c0a3
08be56078a901360cfb62d9168155798127879a6
3bf1fc8e306a32e1a666e6a7257c459e2b8f825f7921bb45175bf766669539c4
GET /css2?family=Righteous&family=Roboto+Condensed:ital,wght@0,300;0,400;0,700;1,300;1,400;1,700&family=Roboto:ital,wght@0,100;0,300;0,400;0,500;0,700;0,900;1,100;1,300;1,400;1,500;1,700;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Sep 2022 20:00:37 GMT
date: Tue, 20 Sep 2022 20:00:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c82ae5039f4b7177bbb567d86387d96d
95d927513f2a325bdc292607c56ebf017749e25b
31b20ea54fff546681c6b40b6f4ab185ad25625a26229a5da2b54c4cba93aabb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 20:00:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 14:31:56 GMT
Expires: Tue, 27 Sep 2022 14:31:55 GMT
Etag: "95d927513f2a325bdc292607c56ebf017749e25b"
Cache-Control: max-age=584477,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dd25f8fbb7b51d-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c82ae5039f4b7177bbb567d86387d96d
95d927513f2a325bdc292607c56ebf017749e25b
31b20ea54fff546681c6b40b6f4ab185ad25625a26229a5da2b54c4cba93aabb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 20:00:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 14:31:56 GMT
Expires: Tue, 27 Sep 2022 14:31:55 GMT
Etag: "95d927513f2a325bdc292607c56ebf017749e25b"
Cache-Control: max-age=584477,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dd25f8fbc3fac0-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c82ae5039f4b7177bbb567d86387d96d
95d927513f2a325bdc292607c56ebf017749e25b
31b20ea54fff546681c6b40b6f4ab185ad25625a26229a5da2b54c4cba93aabb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 20:00:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 14:31:56 GMT
Expires: Tue, 27 Sep 2022 14:31:55 GMT
Etag: "95d927513f2a325bdc292607c56ebf017749e25b"
Cache-Control: max-age=584477,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dd25f8fb78fab8-OSL
v3.cdnsfree.com/_nuxt/desktop/default/css/f4e98fb4.css
8.247.218.250200 OK 67 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/f4e98fb4.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b8aa25bdb278506c56e0b64605968077
4e52b8f725ce35f7bc5da2d1b46e50ae8a35acad
430a68e599a8d37ecac6c79ac8068fb7076bb4efacc378f6547297f18f98d678
GET /_nuxt/desktop/default/css/f4e98fb4.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:37 GMT
content-type: text/css
content-length: 66944
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-10580"
expires: Wed, 21 Sep 2022 12:46:30 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 26047
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg
8.247.218.250200 OK 705 B URL HTTP/2 v3.cdnsfree.com/genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg
IP 8.247.218.250:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (1224), with no line terminators
Hash bb246c88651f63256e658dccd79ba91f
560cf8f76dad56a5c10a0f66cc4a200df301265d
30e59f903e6fab358b7bfb110a8bf83aefaf5376f2c60293a20f58c9f9fc45e8
GET /genfiles/cms/pg/285/images/e2e1a81329ec0acf4e446b6fc70e4cf1.svg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:37 GMT
content-type: image/svg+xml
content-length: 705
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"7cca3986f7a5c4c164144ff11df71073"
expires: Tue, 20 Sep 2022 19:54:43 GMT
last-modified: Thu, 13 Jan 2022 14:28:56 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 477
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5612
Expires: Tue, 20 Sep 2022 21:34:09 GMT
Date: Tue, 20 Sep 2022 20:00:37 GMT
Connection: keep-alive
lite-1x283524.top/us
178.253.49.6200 OK 115 kB IP 178.253.49.6:0
Size 115 kB (114845 bytes)
Hash 267b1475c06e91ebb723c9e8e9facc55
4b11a4437801f3dbfd1f82547bf6ed9af9b7b998
9634f574fa8c872a5ab7c935595ac32845d46125bbfa9d6072d86b6c31d936a2
Analyzer Verdict Alert quad9 Sinkholed
GET /us HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:36 GMT
content-type: text/html; charset=utf-8
accept-ranges: none
content-encoding: gzip
server-timing: total;dur=865;desc="Nuxt Server Time", dt_285;dur=876
set-cookie: lng=us; Path=/
vary: User-Agent, Accept-Encoding
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/9b464ab8.modern.js
8.247.218.250200 OK 6.5 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/9b464ab8.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (16678), with no line terminators
Hash 7ad39eb9337398eb9b7e7f9b8a4c7d38
fd55bbc072825dbaab27e58dc3fd0a2e0deffbb5
66076b9a9ca66186bd92e6e8496e02cdbf7c9ccfa684614bd13c47f1603004c4
GET /_nuxt/desktop/default/9b464ab8.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 6454
cache-control: max-age=86400
content-encoding: gzip
etag: "63247837-1936"
expires: Wed, 21 Sep 2022 09:34:39 GMT
last-modified: Fri, 16 Sep 2022 13:20:55 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37561
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5612
Expires: Tue, 20 Sep 2022 21:34:09 GMT
Date: Tue, 20 Sep 2022 20:00:37 GMT
Connection: keep-alive
v3.cdnsfree.com/_nuxt/desktop/default/b4d8550c.modern.js
8.247.218.250200 OK 100 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/b4d8550c.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (65479)
Size 100 kB (100119 bytes)
Hash 067e1b15ca2f90d6fb8cf22fe43a484b
2f36d89fc40b4fb4c4d36af73e54d8cecc97b625
f8ab9e917ac76442e274ce66b067095292b8ab89123dfafddc8616f0c393a9b3
GET /_nuxt/desktop/default/b4d8550c.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 100119
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-18717"
expires: Wed, 21 Sep 2022 09:34:35 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37563
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/1bb0c6e5.modern.js
8.247.218.250200 OK 325 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/1bb0c6e5.modern.js
IP 8.247.218.250:0
File type Unicode text, UTF-8 text, with very long lines (65399)
Size 325 kB (324640 bytes)
Hash 759ea1b5a7f9d2f05ac95ef53ee17fa4
12d398bf72ddae18343c847bd433699b66e18c3d
8e13067d0a30d107836e2c86f9fff39137235b6a4d7922324697f241d1bb56d7
GET /_nuxt/desktop/default/1bb0c6e5.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 324640
cache-control: max-age=86400
content-encoding: gzip
etag: "63247837-4f420"
expires: Wed, 21 Sep 2022 09:34:35 GMT
last-modified: Fri, 16 Sep 2022 13:20:55 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37563
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe5ffc0bb967bf39c053d24cdfae521a
87bc50876b1600714e2c29608bf4af00fbfbd23e
ceaf52d90eaf692a8da9f6c353d09011e26d8e2b971ec4c17fcbcab8676c70c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEAF52D90EAF692A8DA9F6C353D09011E26D8E2B971EC4C17FCBCAB8676C70C3"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5612
Expires: Tue, 20 Sep 2022 21:34:09 GMT
Date: Tue, 20 Sep 2022 20:00:37 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3e70b2859ca89b353682d03f6b46b93
ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Sep 2022 10:06:02 GMT
age: 35675
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30fbdfee7ec4513a5ff3dfcb7282f816
a852edb64a7220532aa619ab2a440c3a7e11b97a
4adee59f97bea412c6a0a786d0a27e431a497198b9047a75841b0a530803bdfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc72c9eb8-103b-4d09-b405-97d1a7ae99a8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9543
x-amzn-requestid: 17be04c9-54f0-4988-82dd-f13911a2a629
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugINHN1IAMF8iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09a-35496b4c21c23dec75257964;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -VBFetQNkmIiWeJtW5IOheaPLdDHM9iKhiGPzVcA3_KQk7Qha5VrXg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:14:25 GMT
age: 78372
etag: "a852edb64a7220532aa619ab2a440c3a7e11b97a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ca0c1a7f205ad07f1cce80b26448873
0e14f5062e40ce94346494ff947bfcf74b5e88c1
ebc960279032671136749823c126ec807334d9eaf2b019abcc63b41bcdbf4a7f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1d1af9c9-23b5-42e1-b7c6-655c21db6627.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9873
x-amzn-requestid: 7171299f-e6e3-40ef-a292-33779346e1ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI-FDIIAMF-xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-31f9413434a6b00e77e7709b;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: evL3aL1ULo6B2a8Rp6iILKCX7F14O9HMSbEqkEY3XHFhmMptE8FaVw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:44 GMT
age: 78653
etag: "0e14f5062e40ce94346494ff947bfcf74b5e88c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c283017ec789693602177a2785177e21
ff8286c4d2cf87a1865d56d082bc5235dba60ad7
520db2567ad5529d35d2ac63b94d4186848382e9c86d0c4355ab979b34f0e0ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F28b8af49-2631-4a57-aeca-43e33f0f6d83.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11145
x-amzn-requestid: dcb726a6-2f43-4170-a53c-4f0d2883309e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yuh7yHfHIAMFu4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e37e-11bf06e96123e01c11854cbb;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:47:42 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oJyChyEdTbGx6oQCRy6IVMS8qU22LupFYn6FOii3p4BUVFyKnssQ7Q==
via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:05:54 GMT
age: 78883
etag: "ff8286c4d2cf87a1865d56d082bc5235dba60ad7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a7d863845e96c5927e812f325c08c16
b8484fb5443344b03e52dd56b1d6c5682eb6221a
fcb382029332a44deaf212298b618074a752d674d0c735a1b8b861ab4bb6ff0f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b9b6fcc-4a98-463a-8c9c-a60812d5b535.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9865
x-amzn-requestid: 7eeeff5b-cb13-4060-96a6-bf5a4be57331
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugokGQVoAMFXmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e169-4211dbbe1a22d0255a45aff0;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:38:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2kU9PLuzusMR04mNUdwbU6-120ESVhYJtNaIixERO68Vo9jEfP3JWg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:04:47 GMT
age: 78950
etag: "b8484fb5443344b03e52dd56b1d6c5682eb6221a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ed7323b395e757f7766ea0045efdaca
8b91bc3069a3217bc719c27959d578b353b5d9dc
8daf8cb1464daa5f72bc4f1049adb4aba00b2c2dec11cb3ade3454ec2ebbfb63
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c2e0de8-088f-449b-a3cb-bbb83e3883a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11832
x-amzn-requestid: 75065a71-5f2d-4987-915b-9bddc772c76a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugI_EsLIAMFdmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e09f-1248d25405209da3353d4a4a;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: gLh2EBTPdXvFtZuYKH1NVZebvnz4Rhs-f_rZPtfJpIWNemEk0upeOQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 22:09:43 GMT
etag: "8b91bc3069a3217bc719c27959d578b353b5d9dc"
content-type: image/jpeg
age: 78654
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c82ae5039f4b7177bbb567d86387d96d
95d927513f2a325bdc292607c56ebf017749e25b
31b20ea54fff546681c6b40b6f4ab185ad25625a26229a5da2b54c4cba93aabb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 20:00:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 14:31:56 GMT
Expires: Tue, 27 Sep 2022 14:31:55 GMT
Etag: "95d927513f2a325bdc292607c56ebf017749e25b"
Cache-Control: max-age=584477,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dd25f8fcf2b4ff-OSL
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash c82ae5039f4b7177bbb567d86387d96d
95d927513f2a325bdc292607c56ebf017749e25b
31b20ea54fff546681c6b40b6f4ab185ad25625a26229a5da2b54c4cba93aabb
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Sep 2022 20:00:37 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 14:31:56 GMT
Expires: Tue, 27 Sep 2022 14:31:55 GMT
Etag: "95d927513f2a325bdc292607c56ebf017749e25b"
Cache-Control: max-age=584477,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74dd25f8fc541c16-OSL
v3.cdnsfree.com/_nuxt/desktop/default/css/06b6b28a.css
8.247.218.250200 OK 27 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/06b6b28a.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 562a5361d28f6972340c04bc616e5a13
362601e7ad45873b395d6d69cee8781a18e8bc00
0c9072a112c3154b8cba45110231742b66beaee791313d6de92a0dfaf7f6f3e7
GET /_nuxt/desktop/default/css/06b6b28a.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:37 GMT
content-type: text/css
content-length: 27151
cache-control: max-age=86400
content-encoding: gzip
etag: "63247837-6a0f"
expires: Wed, 21 Sep 2022 18:15:26 GMT
last-modified: Fri, 16 Sep 2022 13:20:55 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 6311
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/2e6d6485.modern.js
8.247.218.250200 OK 466 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/2e6d6485.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 466 kB (466333 bytes)
Hash a7e20f144d2812495f9ee6b578f8982e
b40386b7023a0b765fa13ee81d49df4d5ce083be
b1a1981766ddfb905f011378c2f0d264693e2099cea0d885e2ce6bd256a23d54
GET /_nuxt/desktop/default/2e6d6485.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:37 GMT
content-type: application/javascript; charset=utf-8
content-length: 466333
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-71d9d"
expires: Wed, 21 Sep 2022 09:34:35 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37562
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c683e61e63df92799aa274fdac42cd3b
191aeec95861fa8596a90a10c60b22434431c033
898c007bc0e7d5f4d3180c9fe28b88036102ba64912d0773c023e1f4f07d7beb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x283524.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 519989
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x283524.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:34:08 GMT
expires: Thu, 14 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 519989
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x283524.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 17 Sep 2022 02:02:22 GMT
expires: Sun, 17 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 323895
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f5180e6651455bc8443945fb5b6860c
01457b8648200c9d274b2790b95274b1dc855aaf
39301cccc2805993f794301cb01a70a954e7c8a8e5d6779acc4888f77d7282c0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lite-1x283524.top/genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png
178.253.49.6200 OK 352 B URL HTTP/2 lite-1x283524.top/genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png
IP 178.253.49.6:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 7dff72d4146e35a8262e6845d13a8df0
a291af970d3955b35c314e85712ceea3aca25d54
a467e6a3d8e443bbbade9f04324268de101625412c1135b4cec0864a55101a78
Analyzer Verdict Alert quad9 Sinkholed
GET /genfiles/cms/pg/default/images/c6805d21f8fccbfc75df5c556571fc74.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:37 GMT
content-type: image/png
content-length: 352
last-modified: Wed, 10 Aug 2022 11:26:08 GMT
x-rgw-object-type: Normal
etag: "7dff72d4146e35a8262e6845d13a8df0"
x-amz-storage-class: STANDARD
access-control-allow-origin: *
cache-control: max-age=86400
expires: Wed, 21 Sep 2022 20:00:37 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1663704038203
178.253.49.6200 OK 145 B URL HTTP/2 lite-1x283524.top/genfiles/cms/maintenance_mode/settings.json?timestamp=1663704038203
IP 178.253.49.6:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 81d90db48c09d6f764c4929c90eadfc1
6fe1a593e77cca8d9adff9fe5b5f40e19ccf7bd8
fa0a9c9d33937e1539ce6b9e44abf7ecd69f5032c6ba8b85308c6a388f8dc28c
Analyzer Verdict Alert quad9 Sinkholed
GET /genfiles/cms/maintenance_mode/settings.json?timestamp=1663704038203 HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:38 GMT
content-type: application/json
content-length: 145
last-modified: Thu, 21 Apr 2022 06:40:33 GMT
x-rgw-object-type: Normal
etag: "81d90db48c09d6f764c4929c90eadfc1"
cache-control: public,max-age=60,s-maxage=60
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/img/common.ca61e6bc.svg
8.247.218.250200 OK 42 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/img/common.ca61e6bc.svg
IP 8.247.218.250:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 41b1fc849f8c53c3369f71d6b593274e
5dfad2a78990dc2174380eb1178cbab9670651fe
6c8e1cdd67924e4198d7e3101357bcd99d804e3c173096b80652b98ed7ddf83b
GET /_nuxt/desktop/default/img/common.ca61e6bc.svg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lite-1x283524.top
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:38 GMT
content-type: image/svg+xml
content-length: 42495
cache-control: max-age=86400
content-encoding: gzip
etag: W/"63247836-18849"
expires: Wed, 21 Sep 2022 11:52:41 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 29277
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/f1f61e96.modern.js
8.247.218.250200 OK 1.0 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/f1f61e96.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (2404), with no line terminators
Hash 891bf76d0dd86f20e254a549eb515c31
c1360efa63869fb436916c1b9502ad3313f9e1cb
843332cc230c93b6ebcfa5b1a5868495b8060f201162a103d7e3ed6e3833c5be
GET /_nuxt/desktop/default/f1f61e96.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:38 GMT
content-type: application/javascript; charset=utf-8
content-length: 1030
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-406"
expires: Wed, 21 Sep 2022 09:34:40 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37558
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 26fcf8aea27805b4a6a29e3e2a4ba19b
f920fd6c5a79a4adb2f456edcee678757ff1602c
7aa63d03f514e4f51190e85f167f747563f980e0e6fdee6cce9393321dff1038
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 32638969085ea81bf8a8faf87fa0657b
43a9b651e7cb3244ee08eb36815cf4c4fd698827
fca6d6d542444ab35492d4eac951543c94c2eb707bf1f6af5aa7e46b8c23ab4a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2217
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:38 GMT
Last-Modified: Tue, 20 Sep 2022 19:23:41 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
www.googletagmanager.com/gtag/js?id=UA-178408567-1
142.250.74.72200 OK 43 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-178408567-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 7182d6a5f1a3be1bc6dd75c3b3ca706c
bc88a03c87570afb9affa44bf13a9ab4d187ff06
f483cf0978907061084c593b3938169ad7b39e92bbfb8c2109722104a62b13df
GET /gtag/js?id=UA-178408567-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Sep 2022 20:00:38 GMT
expires: Tue, 20 Sep 2022 20:00:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43303
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 26fcf8aea27805b4a6a29e3e2a4ba19b
f920fd6c5a79a4adb2f456edcee678757ff1602c
7aa63d03f514e4f51190e85f167f747563f980e0e6fdee6cce9393321dff1038
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 32638969085ea81bf8a8faf87fa0657b
43a9b651e7cb3244ee08eb36815cf4c4fd698827
fca6d6d542444ab35492d4eac951543c94c2eb707bf1f6af5aa7e46b8c23ab4a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2217
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:38 GMT
Last-Modified: Tue, 20 Sep 2022 19:23:41 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
lite-1x283524.top/version.json?timestamp=1663704038270
178.253.49.6200 OK 11 B URL HTTP/2 lite-1x283524.top/version.json?timestamp=1663704038270
IP 178.253.49.6:0
Hash 0d5e105661240d3eea2a0d91232b8e34
9b8208c92723c478e00a6a4f281aff28e26978cf
e147427915dad1e4d5339dd3f09c1fdcec97e93236ae7c92fb3ba9aaf847859c
Analyzer Verdict Alert quad9 Sinkholed
GET /version.json?timestamp=1663704038270 HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:38 GMT
content-type: application/json; charset=UTF-8
content-length: 11
etag: W/"b-m4IIyScjxHjgCmpPKBr/KOJpeM8"
server-timing: dt_285;dur=276
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/8b48ebb7.modern.js
8.247.218.250200 OK 799 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/8b48ebb7.modern.js
IP 8.247.218.250:0
File type Unicode text, UTF-8 text, with very long lines (1636), with no line terminators
Hash 3a648a72308084f6976091feb319cdc6
1c7b98380ffb8c5975f4d2af0aa2a76f66a1a2b9
78c08df358597a966b24b8bc517acf0e5fe5d7d9bd226b649b02d3272043ef13
GET /_nuxt/desktop/default/8b48ebb7.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: application/javascript; charset=utf-8
content-length: 799
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-31f"
expires: Wed, 21 Sep 2022 09:34:48 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37556
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/img/sports.95f1fc9f.svg
8.247.218.250200 OK 141 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/img/sports.95f1fc9f.svg
IP 8.247.218.250:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Size 141 kB (141320 bytes)
Hash 8b4562284b82d6d39b4068df671c0e93
fc797338369cd2225632957fbf49210848186bb4
9a3f1201dae16be8f0543f6247157214c27865b1617781dcd05d2f1fa09a55e3
GET /_nuxt/desktop/default/img/sports.95f1fc9f.svg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lite-1x283524.top
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/svg+xml
content-length: 141320
cache-control: max-age=86400
content-encoding: gzip
etag: W/"63247836-52bab"
expires: Wed, 21 Sep 2022 08:01:02 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 43179
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/img/country.c75dc37b.svg
8.247.218.250200 OK 52 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/img/country.c75dc37b.svg
IP 8.247.218.250:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65536), with no line terminators
Hash ebf5fd26e0f8a0fdf627acb3c6dc231c
b870a6da1a14957c3d61567702b2db5267f6e930
7b6b29a932b575d6227bda78ca716dcee68c14d389180420cff4a3bc418c8815
GET /_nuxt/desktop/default/img/country.c75dc37b.svg HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lite-1x283524.top
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/svg+xml
content-length: 52442
cache-control: max-age=86400
content-encoding: gzip
etag: W/"63247836-26132"
expires: Wed, 21 Sep 2022 09:00:30 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 39625
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/ce64dd95fde8cac41b19f81bd435dd50.png
178.253.49.6200 OK 14 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/ce64dd95fde8cac41b19f81bd435dd50.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b2aae1895fd43e6fe55052cfaebdc0aa
f37d69f776f641b2f75a1eae4982598b8d698824
c65c155d717df767d1b4cb5bf52337e4a014c52586ee558978159e0fc2873d1d
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/ce64dd95fde8cac41b19f81bd435dd50.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 14203
x-amz-id-2: KaEwwVSVIaVKoVEk0ZXvUhY8hxtbxtFh9z2li7Axkw4pnusQ99jB6HpS9X8JnBONORo0fbko8C7Tcome4cwomg==
x-amz-request-id: P31JVRY0GDHMPNNQ
last-modified: Mon, 21 Sep 2020 04:01:56 GMT
etag: "b2aae1895fd43e6fe55052cfaebdc0aa"
x-amz-version-id: w4FemYZpkvYI6wQJnFokZG2F_yX5us.Y
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/2baf8868411976207ceb75815662926b.png
178.253.49.6200 OK 13 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/2baf8868411976207ceb75815662926b.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1514131db9589811092b1c5671c72bcf
743a680e7f09109bef08418fbd7052cd74556336
e445ddd976b7e65904578573e0bb781c956c24a43ab2434e5cfae4faba22cda3
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2baf8868411976207ceb75815662926b.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 13214
x-amz-id-2: PDKv+cUdLNMbDFUALmGqrEN4XojEL7ofvIKF/oz8SU94a5CTFP58P7etgYidiNQUU+gmgl8z3ir4JAf4lM/Krg==
x-amz-request-id: P31M3TYPT1ZMRN8X
last-modified: Tue, 21 Jun 2022 11:56:15 GMT
etag: "1514131db9589811092b1c5671c72bcf"
x-amz-version-id: FeF.wr9hVsx3z8TgjQlXzRLI18F2A7RR
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/5212.png
178.253.49.6200 OK 9.4 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/5212.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 24fedda574a6cd4dde6a38795fcf3dab
da0d9c6674ad15edbe226ff3392af27a1d8eca33
998285d6d687f03bf49cb5ee3e259a8d6499c926e6645fe4d653da33e3076a7f
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/5212.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 9361
x-amz-id-2: 90hQUu+betKGI+wW9hZi63jYgDzZwgMiVl2ZOmXgf6V0rMpPIuB9gxraHB0W01u1LYk0ocuNtefJA5s3WsebHQ==
x-amz-request-id: JCYRTT4KGHKCZ45D
last-modified: Tue, 13 Aug 2019 15:08:05 GMT
etag: "24fedda574a6cd4dde6a38795fcf3dab"
x-amz-version-id: mfjOGVyLcVsDrv5DxXcF8uSvtxmzzP0J
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/8c11d56b6586cfc5203aeb371acac217.png
178.253.49.6200 OK 10 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/8c11d56b6586cfc5203aeb371acac217.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8c11d56b6586cfc5203aeb371acac217
4e80236587f4371dd545b0c7f43f5276fda92a75
6b84d0bf14cd3ae46cbcd16c513a3111c7f1e954700431958bf959c25f046aef
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8c11d56b6586cfc5203aeb371acac217.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 10445
x-amz-id-2: 2IVUkBkrXbNVosMzKK66tjSWhlbKtM+4bUAS/XqmQdIEkIxCMn0xFTJtHeJ3zvHdVaEmO4rT4yRS0C/tsnr7Xw==
x-amz-request-id: JCYGX1Y0H6DF0ERW
last-modified: Tue, 13 Aug 2019 15:12:28 GMT
etag: "8c11d56b6586cfc5203aeb371acac217"
x-amz-version-id: 7nVJXXyuFeq0YPuHPFTdQLn5Reur5D.C
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10523.png
178.253.49.6200 OK 8.6 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10523.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 496d56a142e3a63a306b8d7f52e45271
a5ff991e5f5e2ece751ca73c0fd0e5652f55895d
9992029c44d06b254b0d537ccdc1eca3bead8d55772a79d718c753caed7b18e8
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10523.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 8645
x-amz-id-2: 5Y1buf7WyNalq1kFPp/ujI5ZaZOHvQs7dbelEQ1QDsCE8vunHsvYOFtDCPdidDO0jyQsDFvlVXGsNlcj4jWEKQ==
x-amz-request-id: BVDRBYV8G0NV5K25
last-modified: Tue, 13 Aug 2019 14:51:10 GMT
etag: "496d56a142e3a63a306b8d7f52e45271"
x-amz-version-id: mNI9LSeaKPvjHakYNIgO5JLB402ot5pD
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/2ee19f2cd6f5ec9757f892d49264c031.png
178.253.49.6200 OK 22 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/2ee19f2cd6f5ec9757f892d49264c031.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 9f94f6110b27aefa7f931677d7706188
08dd62c7b686f469a3e2ffaab59d008e8786e32c
246667004478f2c7e837e081f58215ea7e93831f7a47620565414037fc3440c4
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2ee19f2cd6f5ec9757f892d49264c031.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 22328
x-amz-id-2: UTMW+m4l6zta5j/ZfSBygXTURxgK2ae+PwyM7rnJqiXjbpzxWINHcTYnyNIBunskdBcEeImpY13L2ORZmBOOAw==
x-amz-request-id: BVDQ96E1Y7HPJZGK
last-modified: Wed, 05 Aug 2020 20:21:13 GMT
etag: "9f94f6110b27aefa7f931677d7706188"
x-amz-version-id: c68yIYMnobENK01sUhXkIFJhvMsUsywc
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/92eab8e7e9a23c5bad5d3b1b468e2523.png
178.253.49.6200 OK 42 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/92eab8e7e9a23c5bad5d3b1b468e2523.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash afbf59d362b67a7e26bf75331825d85b
c13e727b2808c5830f222098adc5cf8ed633b4d9
09cfdd77348adceb1c241438d1bc0642c8bee397d64a767c77a3fd3a7c1d2d01
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/92eab8e7e9a23c5bad5d3b1b468e2523.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png, image/jpeg
content-length: 41904
x-amz-id-2: nfD+VtNGfLTZKk0U1XrfrnwKwPkixN/Q7YP+Jz/SawHJxf5QGpfcJz49p1UuDO4iBwj+/yKlBJiadmbGvt8/Kg==
x-amz-request-id: XZSECQTZ0QR6N5T7
last-modified: Sat, 11 Jan 2020 02:29:02 GMT
etag: "afbf59d362b67a7e26bf75331825d85b"
x-amz-version-id: 3NTgtTROePShk1Y.WxCh59hRPy0wery5
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/286189.png
178.253.49.6200 OK 7.0 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/286189.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 3cf65dd288334de7133f2eac86ef9c35
9b05f9b421fc5eea50448ff389cb9808526aa30e
0076f1cc01411acb9a745898b6b76d0c325e77e803781bbf6dad4c7dc104d001
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/286189.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 7035
x-amz-id-2: OYqnZivPH43T6t6E3fh4KCcjNhK6DBaA0UoRhhXCMzKuTGFtdjJ1i6hO2SX+pk6C5w0w4XSOZPw6dxvJX/kpyg==
x-amz-request-id: XZS1NF9AGNEPGY5G
last-modified: Tue, 13 Aug 2019 15:03:37 GMT
etag: "3cf65dd288334de7133f2eac86ef9c35"
x-amz-version-id: KJAxYhmzFRwCn0GX3h5Pb8_NpL627.1_
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/108463.png
178.253.49.6200 OK 12 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/108463.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 13cacbe92f51b3dbb5090b9030fc7ca2
49d84f174c44e336cfbca8421cc9b9e125a7aed3
d08f39931310400cd4d8588b536281a5957ad940f9d260f66bad354ba7363ce1
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/108463.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 11869
x-amz-id-2: k+cXWxswdXOOypShONAzdFBTwVLV6Pn88ScrNylp6pRnvQpkGZq02o/+n0XkJkctuvoY+VFPitk4nXnO6AwWxA==
x-amz-request-id: F6AGQF9Q7JFV6ZDV
last-modified: Tue, 13 Aug 2019 14:51:28 GMT
etag: "13cacbe92f51b3dbb5090b9030fc7ca2"
x-amz-version-id: LAwrRVTQwzr3HFlYKd9d7eaVc3pfFVeJ
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/4d87a4cae865363e151d7c5440944be6.png
178.253.49.6200 OK 10 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/4d87a4cae865363e151d7c5440944be6.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4d87a4cae865363e151d7c5440944be6
cf40aa14b902a5a7aa85b77d633778ba2e9bdc24
739af38b4ed55bd0e5877a4055a4f310bc7de9e1a16ecc330ba264a218b9dae5
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/4d87a4cae865363e151d7c5440944be6.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png, image/jpeg
content-length: 10348
x-amz-id-2: 7wiBWLiyNKLQ5AXMehpaY6NMKAZTBeYF/AUxkFy0nWuPxiXuq/03Nh48gj2H6ggRIITjfRI8fdqOmdCUx/+hMQ==
x-amz-request-id: F6AQ4J3XGSBCB5PT
last-modified: Wed, 30 Oct 2019 19:03:40 GMT
etag: "4d87a4cae865363e151d7c5440944be6"
x-amz-version-id: 5Cih8s8N.IQByGyASoWRitLw5kI9zGZz
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/6438.png
178.253.49.6200 OK 8.2 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/6438.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash dc938a9d4aa965ad590a975bb501552a
a413a1e26ad32d7f1d69cf1bb50b502c6ddf14ed
3770727f7ddf26e330e272ed4d6c2187ad8e5e30346eede76ccaa44a70afe03a
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6438.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 8159
x-amz-id-2: 1aVQ8sFBc+nO1XnEzIpdZgti/6K0WArWLNg5fCQALQqPqmBaumzZpUdX/6FNPd6Fd9qnT04IciLMnXa7kxSBKg==
x-amz-request-id: HJJ21XRK7K0A4R2G
last-modified: Tue, 13 Aug 2019 15:09:46 GMT
etag: "dc938a9d4aa965ad590a975bb501552a"
x-amz-version-id: uTmcA3tUC8VPAALq3o.67CodQnPlMKAe
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/6434.png
178.253.49.6200 OK 19 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/6434.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2270d73020d58e2e318c8f803de1bd2e
5cf41ebb4d79be80365c5af49abe7d8eb754589b
4af12e679c5fefe715ebb57b3cb1e3af96b1d04650ab72cfb37f638f43f5878e
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6434.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 18948
x-amz-id-2: 1MfGg19zLG3owJ4y0i6FMyLELOiisBXd9r8KLiqubD6d+RdYM9xOkWN8BdDD7iBxawgEhXCYUwYBNSfroGluXA==
x-amz-request-id: HJJ28F43PW46KC7T
last-modified: Tue, 13 Aug 2019 15:09:46 GMT
etag: "2270d73020d58e2e318c8f803de1bd2e"
x-amz-version-id: eTsG_dyWROZumGHIY345ch17oWDFRl96
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/9d5319dea5add5c45c40e7bcee184beb.png
178.253.49.6200 OK 22 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/9d5319dea5add5c45c40e7bcee184beb.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4988f8619ca3d2690e136b55a626c365
9329e1300a7e874037089029d0ea11b8e26f705c
228bd7e38afca54ddbf7567219d893fc7d9351f5b4f06f5644e1f71c292b8e27
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/9d5319dea5add5c45c40e7bcee184beb.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 22368
x-amz-id-2: 9yE37ffCKSTKLp9ssNCIMDtft7UtQXZ8nmPaSkoOq0+txJJf8G1I8Yiqcz5jmAJ0vDJKTtd5z9xWxAaWs+mh3A==
x-amz-request-id: HJJ6R1NY2BRGAJNM
last-modified: Sat, 16 Apr 2022 15:15:24 GMT
etag: "4988f8619ca3d2690e136b55a626c365"
x-amz-version-id: 8Azr0n7ZX_xfPeBRU5WKbfi1xVDl8bzg
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/6416.png
178.253.49.6200 OK 7.9 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/6416.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ee8edc88f21fa67d6ec07a36f4b8550a
fdabe4a3965e6abcf37c35b936f72a936c933c6b
0b9f215863a95be7a0c5476a74f144b5f040a01c4c050d7db7ca295430d58339
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/6416.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 7915
x-amz-id-2: llHl0jVwIunbdLC9WrDD9boAhiN4cCl4I9GdG+VPlS+J0EQyyCrGwW3riC6g7hI8qH38ETZusK3vg3lMSACrUw==
x-amz-request-id: HJJEK228A4SAKJX5
last-modified: Tue, 13 Aug 2019 15:09:44 GMT
etag: "ee8edc88f21fa67d6ec07a36f4b8550a"
x-amz-version-id: AGlkLL2qM9pn3Ji3BQ63EUFOddH1SPeC
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/8f2a70275b4a2efb0daf8ba6880a43e8.png
178.253.49.6200 OK 13 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/8f2a70275b4a2efb0daf8ba6880a43e8.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1080acb18ea1850cacc7856313f877cc
44d1caf729feec380245a31175bab53829dcaefe
7bfbb0ee22e9d366961f3bfe9acdb3ff25338e75d8bedda8ff5adff3d48cd6af
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8f2a70275b4a2efb0daf8ba6880a43e8.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 13224
x-amz-id-2: huXeTH82eXL8T7/DYHYA9UeFut9C9XYoDqVfA7zk003VqUCQkmx7WpQvcGC03fVcPfmTQTV9AZcXq/34vwfx/g==
x-amz-request-id: ZHAGQVYP3CZ1ZBTQ
last-modified: Fri, 22 Jan 2021 20:38:17 GMT
etag: "1080acb18ea1850cacc7856313f877cc"
x-amz-version-id: 0yi19RqupJkFzNC2f40uaDptUdHr5lfy
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/a68313af727cf229b20891ca912f784f.png
178.253.49.6200 OK 17 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/a68313af727cf229b20891ca912f784f.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 099c41db035f4575f267b60659d514d4
0ac06d3122365e8b2c82dd9739ae85ee9be6701c
0a54d03eeed9e06af979d2adbdcb7558765923a25f59e63a05533cbe07494759
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/a68313af727cf229b20891ca912f784f.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 16701
x-amz-id-2: rxW57QhUf1yPCgcLcLLNz84Z7Hg8mIvdXeUAFwtyOsLZaUqFkIJcYgl/85rTFqnMWZC0nYLrT/8Z+C81iY+dng==
x-amz-request-id: ZHAK1VXYSF1NPGFZ
last-modified: Fri, 04 Sep 2020 18:22:54 GMT
etag: "099c41db035f4575f267b60659d514d4"
x-amz-version-id: wJ4azvDBZOBEJs70wkF3xM31yaSx862O
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/2036207.png
178.253.49.6200 OK 11 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/2036207.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b37e2e8170b8492d5ba5025ec23bb118
3f7b7713c94c66ba75d6ede2e2d1949b9fd2fb7d
1242b5fdc7d4d54c6791d72c1b62955377afae72a7930ad3b95a39037aeeba87
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2036207.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 11327
x-amz-id-2: yNzyzPNjAhYrhmTMIOjBUnL/tNvaxHYdTeFeEp0PfPqhxb4dFPIXTKD36Ej37kQtMgZWGl0+UIHhw+ZiCASMWA==
x-amz-request-id: AAABQXSBAX97F0FF
last-modified: Tue, 13 Aug 2019 14:58:02 GMT
etag: "b37e2e8170b8492d5ba5025ec23bb118"
x-amz-version-id: ydrNtnTR1AmupvMl7DRfG1xrflUuvXpZ
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/b8b7d95675db4d7360032cb7f411baef.png
178.253.49.6200 OK 18 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/b8b7d95675db4d7360032cb7f411baef.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b8b7d95675db4d7360032cb7f411baef
c703ea4ebd949bce6b68c38f986f1309b4d267a2
3e84ae32d8d45802f420c41e0ca8da794abed0bb4042796d91b4e5ee1031e0f6
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/b8b7d95675db4d7360032cb7f411baef.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 17553
x-amz-id-2: ikmlvgOaTo/toSU1RBeAXERDlrhS1xhVq8hSur+hKI+IIujSQMXWXqrQvYJWg+ifZTc6t0W+ua7djSu4epKZRw==
x-amz-request-id: AAA14DY4T2N16VE2
last-modified: Tue, 13 Aug 2019 15:13:26 GMT
etag: "b8b7d95675db4d7360032cb7f411baef"
x-amz-version-id: 14tQMjC1an3N8wK9Iv1BE6OOH2chlnN1
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/324e562363acfe55fc30dfddd3386ad4.png
178.253.49.6200 OK 13 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/324e562363acfe55fc30dfddd3386ad4.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 324e562363acfe55fc30dfddd3386ad4
3fb93e066f8815de9dcc38e5c3a896d0e6a390ad
9a6308675461a8b83dba06857a2d8f8d710bbe0ce60c56f78e901d8d43bb71f1
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/324e562363acfe55fc30dfddd3386ad4.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 12834
x-amz-id-2: bevjwpe8aOcclmry7k3QBH+OFDcK7ThDAtUKjJ9+6JyhD9cc92Sy1TAwuumTfHwvvGfx+Zf5SMZIdHC+EGT+Tw==
x-amz-request-id: 4JH31BPEXHZR6994
last-modified: Tue, 13 Aug 2019 15:04:22 GMT
etag: "324e562363acfe55fc30dfddd3386ad4"
x-amz-version-id: unnI4WsgfNAmMxDOVX.ZMK6ezJyLWciX
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/17adbe51f901e69e2e08112bdcdb40e8.png
178.253.49.6200 OK 47 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/17adbe51f901e69e2e08112bdcdb40e8.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 17adbe51f901e69e2e08112bdcdb40e8
0541e5bc2869bd123bf9539bc3786941c3866a35
7dfbbe21a84a27e71277d7a7e7433941f0d8685064d967cdc30c982856f53229
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/17adbe51f901e69e2e08112bdcdb40e8.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png, image/jpeg
content-length: 46618
x-amz-id-2: GZ9FmyYESKyOnivJKXu0FHLJzqKdrgUMaaK8ds94ohosjdg+Ulzaq9f2s49U7RBpPBXti5Y/xmOClsGCMn6jhw==
x-amz-request-id: 4JHCR91YTCZ99AGH
last-modified: Mon, 23 Dec 2019 19:49:26 GMT
etag: "17adbe51f901e69e2e08112bdcdb40e8"
x-amz-version-id: pH3SpgmCgd1jItRf3bE6tfcL5CMuoMfy
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/2aa1b05b6c59d0bca43a4983dd31d33a.png
178.253.49.6200 OK 23 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/2aa1b05b6c59d0bca43a4983dd31d33a.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 173148aca2eaffa45470f2565c07ed26
31ede13667fcbd0fc69b25de05572a82391f2971
f1847345b7d47e0091f61cdfeb4599e21727b3aaffe2f8ad78057cbd13963070
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2aa1b05b6c59d0bca43a4983dd31d33a.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 22934
x-amz-id-2: DT3BecKqMc1c7lyR8FylmOB1dsaaxFNj+/YIWMzd9cG5NIltku8CZa3iOrS1+9UQArQrRoFW7+k8BEV2vbGggA==
x-amz-request-id: Q56EXSV9D6S9PE6T
last-modified: Wed, 05 Aug 2020 20:07:14 GMT
etag: "173148aca2eaffa45470f2565c07ed26"
x-amz-version-id: 9EwS9OqzPnk0K6Zaxk8TZO6yE_0KrKOq
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10485.png
178.253.49.6200 OK 16 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10485.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 04419dc778de02f5046b3bbded65abec
a22a2381eb96225bfd5ad3bdf74a11b56bb9a126
cd65266507a62e9df88e01555a251f028bf1f1b408483400e7e5c78897a2b83f
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10485.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 16170
x-amz-id-2: KqGuNUENLNjHKRFWC2/is3S083rt9XurjNBrNmkHrr+wm1gHdlM2DzE4agAAntXhguVFgTYYHSl5LGyUXQUwuA==
x-amz-request-id: Q560BG2J8WP7MGG3
last-modified: Tue, 13 Aug 2019 14:51:07 GMT
etag: "04419dc778de02f5046b3bbded65abec"
x-amz-version-id: ZBZvfOn.4KVyX9WjBZgldB5qp.T7aPJA
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/d1a388459345ba7f328341bd4127c43a.png
178.253.49.6200 OK 11 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/d1a388459345ba7f328341bd4127c43a.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e3bdfbfbabc0ae91cb8bcc891cde146c
ea62b8afde6f6339fe300690a931dbe44872c204
d14f34371e28c03e0415067f5e2c28b429ac74fcbafe4e6205b683a8ba42c817
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d1a388459345ba7f328341bd4127c43a.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 10973
x-amz-id-2: ECqyfKxv5aXDTna+023qWB57FDBiEIb6u18UWaO6vd9Mlzg1GWodwjywxDO7VJkqkqg8WaAPLNQiTTr4c9W15w==
x-amz-request-id: Q567JJJZS92DYD8J
last-modified: Thu, 14 Jul 2022 07:25:44 GMT
etag: "e3bdfbfbabc0ae91cb8bcc891cde146c"
x-amz-version-id: NAiRsZYxKoUKDOwUnGzjHH13W29WL_rv
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10513.png
178.253.49.6200 OK 8.1 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10513.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c130646aa1e43699124cf60a957e2a21
7076948e97f6043eeef77380b25cc6109e0e8a07
c787c8ef290d69af865f2fc354d2fc566a45ee125b7fef7996585f024c2eff46
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10513.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 8134
x-amz-id-2: NUlfotPb/PZ0bdKfNV3hp1fI0MJWjiOpkmYmD4LWGecV6d7ztJSVp+hxcL4y8fku78ZdPiIQ9VW2Hk1HURzfHw==
x-amz-request-id: Q56AMA3HRBRDDA19
last-modified: Tue, 13 Aug 2019 14:51:09 GMT
etag: "c130646aa1e43699124cf60a957e2a21"
x-amz-version-id: s5.XTRBiQ72dGdKV4rR1v.zzx15wbW6D
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10489.png
178.253.49.6200 OK 6.4 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10489.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 32ab4d555ec95cb1e7b49ca67826fa4e
04d11e9523618f08387021686a4ac88ae438a984
65bffa28d437fac81808f6fb45925afb93a7404b4bf198bb9e165637a9ba83c0
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10489.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 6399
x-amz-id-2: YZVDUdSAcqe+KMhNONDYu3HWb1j9MWU/bAVmpFQz0eYVX5uzkZE9CMk6hZD+QhkmedJB21i8LeYj70oImG4Ssg==
x-amz-request-id: Q56DEPVHZ2FVDW45
last-modified: Tue, 13 Aug 2019 14:51:08 GMT
etag: "32ab4d555ec95cb1e7b49ca67826fa4e"
x-amz-version-id: qEsU2m.lfIDMAb77h_ZPX_ERlvJTa4LY
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/e9e3ef11b44737520339cae84813766e.png
178.253.49.6200 OK 15 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/e9e3ef11b44737520339cae84813766e.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e9e3ef11b44737520339cae84813766e
db55c7d5cb1cf37303821f1478cd8e4d04eea0d5
793bb970359df6d3328ceb72a8240c9889ab9f6968b96bb9db3662d274dbac01
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/e9e3ef11b44737520339cae84813766e.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 14777
x-amz-id-2: gCAQ3+l/0uzITQUd0PPTjZH3zP+5PqNjKgE28eI7MiRzSVg5ISH7ZbREcwXE1samBx/Yt3N8VHNtB1VGw+Fdjg==
x-amz-request-id: Q56A21E6GV54J6BM
last-modified: Tue, 13 Aug 2019 15:13:48 GMT
etag: "e9e3ef11b44737520339cae84813766e"
x-amz-version-id: AZUaTA6MceXjvgnd1lIIWsDld3OOfy4r
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10509.png
178.253.49.6200 OK 11 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10509.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 2db8363f894314d96d202037ae671233
8cbc70bc34e16355e956864f3c5e697fa3a6d3c4
ee39e6c44f0cf7ff2edcb7132a19a8689d8a978d9311dff9ec74906ceb8491fa
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10509.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 11090
x-amz-id-2: WrkFksF8hHS4tfeQ0JGI6SKlv1LLVtw+eqJpbxnFmDC3B8jmAJTc7cefecgo+HACjXo/JiMINpKti8E4ostVrw==
x-amz-request-id: 40GE2EKTH1A2458V
last-modified: Tue, 13 Aug 2019 14:51:09 GMT
etag: "2db8363f894314d96d202037ae671233"
x-amz-version-id: i_j1eCEvI7.zDa4cuNRc551PagNtqScH
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10491.png
178.253.49.6200 OK 13 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10491.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8816d10720a5da7726da0759c1aa8849
8986352d2f2c757b7b307bddd0e918904b2cd3d3
0016a9640fa6635b878fd37e3ac724d47bc24c310c27aa234c6e6d6ce58e8b6f
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10491.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 12750
x-amz-id-2: iZhDd4+lzCsQQ/XiYbeHRlEJNmYXTOAN0ngI2jokM891zis/XvugpfLNktOJ4RN0jm6wNQ7QjVl6ABRQoIRH6w==
x-amz-request-id: NCM7PKYFQVXQBXAJ
last-modified: Tue, 13 Aug 2019 14:51:08 GMT
etag: "8816d10720a5da7726da0759c1aa8849"
x-amz-version-id: AnaSni7GyhUFdQLcCqIvmXyX2tG.esI8
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10483.png
178.253.49.6200 OK 15 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10483.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a9f073d8587a8b256ebb929c219123a
ad561ed592d749695e377bca14932f12e50c3197
9210b53835f981a31d784e6acbaa066e40751d0d8075d3d95de8f9d4cb80f164
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10483.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 14977
x-amz-id-2: EcO/oLEoqK9cYRPKEuAVcl1beR1QEsJ2WQj/APR/omE+QuvGBrPgKdV01N51vrCk67B3N1UO6lEYqfeuk/Uo/A==
x-amz-request-id: GF19Q757TSCJ9C6K
last-modified: Tue, 13 Aug 2019 14:51:07 GMT
etag: "0a9f073d8587a8b256ebb929c219123a"
x-amz-version-id: AOrqi0D1780RpzBZQOoLGCEIyD1rPWCx
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/cf006d4adace88c8307119ebeafe4610.png
178.253.49.6200 OK 3.1 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/cf006d4adace88c8307119ebeafe4610.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1f5f7038b28625ee1371493d8954d5db
59326dae527fbd1a430e5bc954b1a3d00020f6be
051731609e801fb0fc54d6d56596760d2f0d08c3c41ba1045f87792730b28739
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/cf006d4adace88c8307119ebeafe4610.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 3079
x-amz-id-2: IsODONxP9K2nFpg8CDBrtQKbcy5FlG5Ag/wdL2Z6ysqE4Kx+tbH0Yt2BZc6Muq9unEI2QtTgIonhuEiMZ8OIGA==
x-amz-request-id: GF1C6E4NNSY8H6KZ
last-modified: Thu, 14 Jul 2022 07:33:13 GMT
etag: "1f5f7038b28625ee1371493d8954d5db"
x-amz-version-id: NiL4EyriwmO2IgkfHOlz1Qnq99ZbkjIR
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
radar.cedexis.com/1593429750/radar.js
35.241.57.45200 OK 22 kB URL HTTP/2 radar.cedexis.com/1593429750/radar.js
IP 35.241.57.45:0
Hash c848f93640b1765720373af202c4d92c
27185b0b2c96d5db65a1647a475ba6594abfde71
f2e5ab6e14cc4f2b143640f40627bef993acfc13e6d4dbef095c64e88b476ae3
GET /1593429750/radar.js HTTP/1.1
Host: radar.cedexis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:38 GMT
content-type: application/javascript
last-modified: Mon, 29 Jun 2020 11:30:29 GMT
vary: Accept-Encoding
etag: W/"5ef9d0d5-af5c"
expires: Tue, 04 Oct 2022 20:00:38 GMT
cache-control: max-age=1209600, public
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10519.png
178.253.49.6200 OK 4.3 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10519.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 07035a2ebbb9ee27c6dbacd97519b6a8
7ea70742b87e799cb59d9e2f49405f8b1bc4db1f
1d30f75b06c66103ec806944666815c779ad589b8228fe18085942d62c47d56b
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10519.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 4334
x-amz-id-2: INQdJBQH5KIZ1Sbm9xWS0DrVcBlX8V1xmR5nBTVT/35o13gLbu56/Dz1Xyvn6eVJBc+j5MMfVffO4Z8lsehfDA==
x-amz-request-id: BAXJFCMM738QYRRK
last-modified: Tue, 13 Aug 2019 14:51:10 GMT
etag: "07035a2ebbb9ee27c6dbacd97519b6a8"
x-amz-version-id: mlYGXY2T2mKJx6HPxjv.XMbcqEyflVCO
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/3fbd4144dcace71d0894b8b0717c887e.png
178.253.49.6200 OK 8.1 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/3fbd4144dcace71d0894b8b0717c887e.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d2a7c09bb1c0861efb18f54c4c432a3
e01a0d4de1adde595c963ab3e6e62ab1c3366191
f7febb9ee4421ebb49d2b3541b30195af9004efc58c7ee635a4befb85b60cbbe
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3fbd4144dcace71d0894b8b0717c887e.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 8075
x-amz-id-2: Oclh43Gi/LZWbHphTewBd7Qx9lKOnqDFOEaRs1/daW2J4BievNJ41nVWGz5iD5qhQeosSrz0A42rYzRJ+xkH/w==
x-amz-request-id: E8RAXYV8NYV7SM3P
last-modified: Thu, 14 Jul 2022 07:29:31 GMT
etag: "6d2a7c09bb1c0861efb18f54c4c432a3"
x-amz-version-id: 6Kr4t037EW4Sg.QDNMBcxyET6oQnNS5O
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/5da0e161227a6721713cb46490f5274b.png
178.253.49.6200 OK 3.8 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/5da0e161227a6721713cb46490f5274b.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 96de5d7b889cb5b933d18839dd7e829b
f111d1b238f0951e0e302693d718c89e4261e7af
542ea86d4d4cc8eb01b071b0e4e9fee9d0d2065729e35bfb57056d2b7579d462
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/5da0e161227a6721713cb46490f5274b.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:39 GMT
content-type: image/png
content-length: 3796
x-amz-id-2: spEKLxnT3vRv2rtMdvvpJVqk1i0ZqCHRToHisoFta0iIFhur9mYkxWb07/hcaDuMMNpvbUbpGlzuA4osFQzrxg==
x-amz-request-id: E8RD0EN8STTDPSBA
last-modified: Thu, 14 Jul 2022 07:28:04 GMT
etag: "96de5d7b889cb5b933d18839dd7e829b"
x-amz-version-id: Ufr9odC58o_1_6UE4jFVdgggCxamxQy1
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10517.png
178.253.49.6200 OK 14 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10517.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 9cd8f33f06b73449d0b12d442c92c29c
54cfe638c9eda7e12c1d9617082dde1d84d415c1
289e061ff86bdc38b29151dee484f12ea763401466b1f63d1c5cb8296629adb9
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10517.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: image/png
content-length: 13693
x-amz-id-2: kHhz4jcfBXrE9iT1/9h7iK0WGjELmQ7fQL15OMZRb3E1F03I6X01FGHdL0q+3v8lEcHFysAMbwIA9+E5oM8KpQ==
x-amz-request-id: 3XGKZEJEGVG2GZS1
last-modified: Tue, 13 Aug 2019 14:51:09 GMT
etag: "9cd8f33f06b73449d0b12d442c92c29c"
x-amz-version-id: 6Kx5HWDnqkwTh3v.1kWCkjWSn3yoWfrK
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/c5e1ef97cf5319d0dd10dddb05deaca2.png
178.253.49.6200 OK 13 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/c5e1ef97cf5319d0dd10dddb05deaca2.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c4a9d8127f9519d251d75c87130d415
6383c0bbc14bb1802582319c38ae2c47f100c246
75f3956824c0c70ae2577681c8341b946b00b4814458095e3c0fef30247a664c
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/c5e1ef97cf5319d0dd10dddb05deaca2.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: image/png
content-length: 13304
x-amz-id-2: mNL5Vlc0vHuYsi8Kow+qGm+VUbHV5zXTLcJ+1nHyoJ0K0f8FK7zHAEq3MlQMM2SHmSNjCXNtdk5pUdRpa/9YFg==
x-amz-request-id: VZET0JY8THHJ716S
last-modified: Thu, 30 Jul 2020 02:51:37 GMT
etag: "9c4a9d8127f9519d251d75c87130d415"
x-amz-version-id: nPzZ1WtHERW_AdUEWl8ziBLDVx6YptRi
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/9fb7f9de5a12bf88624578eaa9e3b85f.png
178.253.49.6200 OK 36 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/9fb7f9de5a12bf88624578eaa9e3b85f.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b57102433a76a013b408d573ece1702b
bccc385dec7bc0aca3e473091ad09b86a45d9fce
3ece519cc3d38217b169cf15c22c8fef09f158cf592ed6d3e73a85c76c76d27b
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/9fb7f9de5a12bf88624578eaa9e3b85f.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: image/png
content-length: 35883
x-amz-id-2: vXvgU8LXlOpBCscloxTTR0MOqPNs4U1xw7ynMj4Db8VIcA49amxtNSGE+Un63YTwGeBvhJBN9cMS81OmU6bpdw==
x-amz-request-id: GF145T37DME0WYMG
last-modified: Wed, 05 Aug 2020 20:18:39 GMT
etag: "b57102433a76a013b408d573ece1702b"
x-amz-version-id: kYPkeMuDOf86VW3n4HSdWeTkInHhuXF5
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10493.png
178.253.49.6200 OK 6.7 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10493.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash ec249a1b7ac4dc3bb1d27373efaf0d69
c1de31221dd703b39ed12d40a6b24b852247dbb1
e46c40b685bf074869c3fc9ddf65fbb77fe83766ae913d454aff5d7d61f2cc7a
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10493.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: image/png
content-length: 6712
x-amz-id-2: cs3dmsFgfrHW19LVTwF3qHPG8UkYwyVm1BzgbFPPDrPh6BDg/Pdc2WWPY3dv35b0m935xpfMbW8Gg6jjjn7CwA==
x-amz-request-id: GF19HK8MR37R8FKW
last-modified: Tue, 13 Aug 2019 14:51:08 GMT
etag: "ec249a1b7ac4dc3bb1d27373efaf0d69"
x-amz-version-id: PUhMl.LIXYSLf1zACZVSR_Fn4ouID2nw
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10481.png
178.253.49.6200 OK 7.8 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10481.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 73f54eb598cb1a24531439413f0d851c
133247b2e03a8ad3d2a1b87b23780a1b09617fa6
dab27485895766edf9803d2fa1673f3228a4d32a84085beeea24e19e35284cf8
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10481.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: image/png
content-length: 7789
x-amz-id-2: Yi4irmQP2y06QHB4jMNQMymwh5oZ2d1P+D/sYSSPms5XccfayqjRYu1CkqU/zuR5bQiNGxYHk9SmHX+QAa5P2g==
x-amz-request-id: ZHAP3VF8X69SH5QY
last-modified: Tue, 13 Aug 2019 14:51:07 GMT
etag: "73f54eb598cb1a24531439413f0d851c"
x-amz-version-id: svYYIXS0Z.hyL.Hfi4_ohTDVOtgNeXeo
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/4eb0ba6049c1f8e8e89dc6837d91a962.png
178.253.49.6200 OK 4.7 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/4eb0ba6049c1f8e8e89dc6837d91a962.png
IP 178.253.49.6:0
File type PNG image data, 100 x 99, 8-bit/color RGBA, non-interlaced\012- data
Hash b2d5e3d580160e9ed7bb837cf5ef9ae6
c6b8d9e36b57135031542396ca3d601161329875
25aa642851194352ecd03aeea2129a3e9b9876a30c33e68136d10b0984b88e56
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/4eb0ba6049c1f8e8e89dc6837d91a962.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: image/png
content-length: 4712
x-amz-id-2: v1HG4bk7bIGLxb2fTU4gZuL5XaJKpeUuIit5qRosPmtZI8MlYB0ddGwHilynZf9T8msds80v/pF/92xPUKRh4w==
x-amz-request-id: ZHAS9WX8V7474ZNC
last-modified: Thu, 14 Jul 2022 07:24:06 GMT
etag: "b2d5e3d580160e9ed7bb837cf5ef9ae6"
x-amz-version-id: CpR9AcwL8IKpjrDxRDHtuzD7I9u5Jfzy
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/4eab3ec6.css
8.247.218.250200 OK 1.1 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/4eab3ec6.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (6523), with no line terminators
Hash 20ba23f99417040af8caa56546d04e11
047e511d5de221aaa7e543344eb50a138aa7d543
7ae90aa06409f7d131498bbcb3041baac174b7da426ecef93ed7500cd505f82d
GET /_nuxt/desktop/default/css/4eab3ec6.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 1113
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-459"
expires: Wed, 21 Sep 2022 13:10:34 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 24611
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/051645f8.modern.js
8.247.218.250200 OK 8.3 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/051645f8.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (34454), with no line terminators
Hash e51f39160e7c73c7f833cf9cd908b355
d6b4f02dc923138363f000ba26ceac60e6b5ea8d
fe6a08f75d35cbd7eb10dccf210ddb2c108959a66aa3021953f95a3dde976060
GET /_nuxt/desktop/default/051645f8.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 8348
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-209c"
expires: Wed, 21 Sep 2022 09:34:52 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37551
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/ab11b227.css
8.247.218.250200 OK 1.2 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/ab11b227.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (4658), with no line terminators
Hash be298a2848cc3502a453c4dde63bdd07
f26daab139c27eca56cf52f64bb8efb9a7807015
ef57d8ed5c76818214092e9ea79ec502f59d252e6e4e0207840cbb32ef8c98d8
GET /_nuxt/desktop/default/css/ab11b227.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 1193
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-4a9"
expires: Wed, 21 Sep 2022 08:59:42 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 39664
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/9f146789.modern.js
8.247.218.250200 OK 4.7 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/9f146789.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (16310), with no line terminators
Hash e747c8fdb5ed338e024959c29a5ac630
976876ade464303ea71424544e8d41249fc4461b
f2fee95499b635f3ddbdf707f0ffab66ef24019c8623a1dce0b33f2a87d9c9dd
GET /_nuxt/desktop/default/9f146789.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 4691
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-1253"
expires: Wed, 21 Sep 2022 09:35:06 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37534
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/f6d4779e.css
8.247.218.250200 OK 548 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/f6d4779e.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (2155), with no line terminators
Hash e9b81358839371f1d169b13f600ee79f
c8670698f49773cc65ffecb3d934df4cf051869f
b240d51d019c8cef1712a31057fe7dc1321554ac25dc44468b5861339ef76c31
GET /_nuxt/desktop/default/css/f6d4779e.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 548
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-224"
expires: Wed, 21 Sep 2022 08:59:42 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 39664
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/109435a2.modern.js
8.247.218.250200 OK 1.7 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/109435a2.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (4683), with no line terminators
Hash aa5cb82029b8e70ee63dd4779fd6060a
c4ee94bf2c927c6295b2e4a23a00436cfccd81c5
e2ddc8fd8f44d796a4fd63dcdc6968c0876f125ae6f33d40c2b7390e53b716af
GET /_nuxt/desktop/default/109435a2.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 1734
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-6c6"
expires: Wed, 21 Sep 2022 09:34:53 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37548
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/b5b1805a.css
8.247.218.250200 OK 858 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/b5b1805a.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (3243), with no line terminators
Hash 236b9ac99364b735b4af107e524dd399
8b5553557d98385116a5e596156f77d89839aacc
f6e821354ff4228bc094517af66934c74a4d1e8c56b2ee61ecc238a1003694ec
GET /_nuxt/desktop/default/css/b5b1805a.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 858
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-35a"
expires: Wed, 21 Sep 2022 13:10:47 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 24599
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/5e084573.modern.js
8.247.218.250200 OK 7.2 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/5e084573.modern.js
IP 8.247.218.250:0
File type Unicode text, UTF-8 text, with very long lines (26451), with no line terminators
Hash ea5987f886f0765fc0f680ad600d10f0
92ba4eb14113a08b631efa2383ddc4f90b584865
f272f0a139fee8751bf577dc8efc0adda94ad358a92cf0beb2f7820c7b658667
GET /_nuxt/desktop/default/5e084573.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 7242
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-1c4a"
expires: Wed, 21 Sep 2022 09:35:06 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37540
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/4080d1bf.css
8.247.218.250200 OK 454 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/4080d1bf.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (1429), with no line terminators
Hash db74c178d022c6a63a9367631ded494a
ff913d541c341139dccc53a6c4967c37eda72bc9
bdc5e02abccd0ec2e5223c002d93577d65bcb91d563491dd649f333c585a1453
GET /_nuxt/desktop/default/css/4080d1bf.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 454
cache-control: max-age=86400
content-encoding: gzip
etag: "63247837-1c6"
expires: Wed, 21 Sep 2022 08:59:28 GMT
last-modified: Fri, 16 Sep 2022 13:20:55 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 39676
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/34b86c8f.modern.js
8.247.218.250200 OK 17 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/34b86c8f.modern.js
IP 8.247.218.250:0
File type Unicode text, UTF-8 text, with very long lines (41008), with NEL line terminators
Hash 2e329169f4f9db7ca6a5675049c92ad9
8b60abf42428c8ca6029d6a46dc48e527dab273a
a995ba2f4938e5a112800950ff9bf700f66ed529288173134d1a7311776e36b5
GET /_nuxt/desktop/default/34b86c8f.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 16801
cache-control: max-age=86400
content-encoding: gzip
etag: "63247837-41a1"
expires: Wed, 21 Sep 2022 09:34:53 GMT
last-modified: Fri, 16 Sep 2022 13:20:55 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37551
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/4bb91c95.css
8.247.218.250200 OK 889 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/4bb91c95.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (2814), with no line terminators
Hash dbe00d6e07840913eaf1caf83fa2ed3e
987c3d8c17ef09b855aafc42e81685c8309b98e8
121091aa4aa044b268723ad0d606833f8282a6425f2c05659d47d091ceb99343
GET /_nuxt/desktop/default/css/4bb91c95.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 889
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-379"
expires: Wed, 21 Sep 2022 08:59:28 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 39675
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/0b3e081e.modern.js
8.247.218.250200 OK 3.6 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/0b3e081e.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (14179), with no line terminators
Hash d8e34807a83146891d589adcf4a2404e
5dcc89e678d77f340f009ef40754e0c718a3b455
9b3707b83763e6d14c394c66674b47f4a7114f19214a818dab77f3b3151f2a76
GET /_nuxt/desktop/default/0b3e081e.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 3582
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-dfe"
expires: Wed, 21 Sep 2022 09:34:45 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37557
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/d7b0fdb3.css
8.247.218.250200 OK 478 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/d7b0fdb3.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (1754), with no line terminators
Hash 38bd18dd7bc7c608f3870576b481d95f
1c3f04547dfebca0dd2916c63bc217bdd0c16ac8
56f7175291b3a5fa61404c79558f22cebf26a394e5ea2d948a924233a66774f4
GET /_nuxt/desktop/default/css/d7b0fdb3.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 478
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-1de"
expires: Wed, 21 Sep 2022 08:59:42 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 39664
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/fc226152.modern.js
8.247.218.250200 OK 8.0 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/fc226152.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (24819), with no line terminators
Hash 77781a65a6cf96feb67c305bdfdf235a
0eb99994cb2e60fdcef4af115681e1a8d30d7fc6
a228606cb7f614cd25c4f154c1b1884715dc0c7b9339e2bb8723e5762f9a10f2
GET /_nuxt/desktop/default/fc226152.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 8033
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-1f61"
expires: Wed, 21 Sep 2022 09:34:55 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37551
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/5abba48d.css
8.247.218.250200 OK 853 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/5abba48d.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (3499), with no line terminators
Hash 5f52344c06190fd8b59cdcf8410491fd
6a6f54b9975a7329ce00b35fc7d2ad4b05bb6fce
23960e570709c11e682b1849d17cd08a30c09260ee9604b3fa8fecbe9387fe87
GET /_nuxt/desktop/default/css/5abba48d.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 853
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-355"
expires: Wed, 21 Sep 2022 12:46:39 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 26042
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/494d73b5.modern.js
8.247.218.250200 OK 3.8 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/494d73b5.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (12470), with no line terminators
Hash dbf928ad21cdaca41c3d6f08ea142915
9c73e147f0b2df517e017096d47fa5fa6dff4221
1cdce83d5f5ba6a21c4693b129481d9e8f995d4f35fbb85875dcdb8021394f67
GET /_nuxt/desktop/default/494d73b5.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 3823
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-eef"
expires: Wed, 21 Sep 2022 09:34:54 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37549
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/ce14e9b2.css
8.247.218.250200 OK 2.1 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/ce14e9b2.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (14437), with no line terminators
Hash 9d944629f7c05935b842c9e537785f68
f817de134e72733b815bacdf58fa91bfcd45927a
b53f9d36fd372f73b2cf8c4e5fbe24e60ddcb1798592863e6e9a4441cde39cdb
GET /_nuxt/desktop/default/css/ce14e9b2.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 2118
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-846"
expires: Wed, 21 Sep 2022 12:24:12 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 27389
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/e3499c5f.modern.js
8.247.218.250200 OK 1.4 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/e3499c5f.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (5810), with no line terminators
Hash 501de8c098381241e180973eb50b15e4
bb00849e96e1ed9fb7d975c3e8ff5ffb78c193a1
6f5dc1c38625c03b6688ec38a5830b20868258e4d84156fa371098f3eee55b5c
GET /_nuxt/desktop/default/e3499c5f.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 1434
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-59a"
expires: Wed, 21 Sep 2022 09:35:07 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37544
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/0fe95723.css
8.247.218.250200 OK 3.4 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/0fe95723.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (17389), with no line terminators
Hash 24b135fd61d7da41a8087712988d6411
226b130a8baad33b26a8aa23b086d76a4aa3cb19
c2adae913f19ce75df823b2d4ca9414b6e9e22cfb6420751f89e82cde7a14cfd
GET /_nuxt/desktop/default/css/0fe95723.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 3360
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-d20"
expires: Wed, 21 Sep 2022 12:46:46 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 26036
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/2d73a45d.modern.js
8.247.218.250200 OK 320 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/2d73a45d.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (370), with no line terminators
Hash 2eac958c1f46c09a7fb79f20993175a9
0dd933c7170cf7ea99b47e7d1c9e9bbc5e65885e
69e08b26ca153752de8c860ee20dcc43aedaeff0fa363b0f8136f914fee709a2
GET /_nuxt/desktop/default/2d73a45d.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 320
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-140"
expires: Wed, 21 Sep 2022 09:34:55 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37546
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/372182bc.css
8.247.218.250200 OK 2.8 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/372182bc.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (16523), with no line terminators
Hash f7b45f326f4857e5b808c56cfd2df61a
94846514629761ce55e063f3ec7690cc700db90e
aebcd59e46ed0bf667054d46b362e0cd7746963bcd056716da29cfa9ea97b01f
GET /_nuxt/desktop/default/css/372182bc.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: text/css
content-length: 2760
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-ac8"
expires: Wed, 21 Sep 2022 12:47:00 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 26034
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/4403666a.modern.js
8.247.218.250200 OK 12 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/4403666a.modern.js
IP 8.247.218.250:0
File type Unicode text, UTF-8 text, with very long lines (60894), with no line terminators
Hash e97cf8b6440beb5e8ea7b11b0eee2f7d
b3e9cc2d49a86f9a83d7d4e557ea651e9b71312e
3ccb27d53bcedb6b7e5379baa7c25c3acc5eeb469c7a7ac11f53fe62b2d9dc4c
GET /_nuxt/desktop/default/4403666a.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 12437
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-3095"
expires: Wed, 21 Sep 2022 09:34:55 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37548
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/e6a14b61.modern.js
8.247.218.250200 OK 17 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/e6a14b61.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (63879), with no line terminators
Hash 004646e4a1aef97cd770f03ab3b57584
ad52af97d919ab0408d8b76fe674b45037ef564f
0774a0c274886e07874905d44a88562189c4564f8d1e231955b413d5cdbca845
GET /_nuxt/desktop/default/e6a14b61.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 17246
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-435e"
expires: Wed, 21 Sep 2022 09:34:55 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37549
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
142.250.74.163200 OK 9.6 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 9628, version 1.0\012- data
Hash d9ac47c7e500fb7083b8d595eaf6fe12
112a2fc5f4ff9b85ee3a706fa9b8c47f79b05933
495d38d4b9741e8aa4204002414069e2d8db9f3c60b60e195e4d74381462dee9
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu5mxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://lite-1x283524.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 06:19:49 GMT
expires: Fri, 15 Sep 2023 06:19:49 GMT
cache-control: public, max-age=31536000
age: 481251
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/d06d7d55.modern.js
8.247.218.250200 OK 1.1 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/d06d7d55.modern.js
IP 8.247.218.250:0
File type Unicode text, UTF-8 text, with very long lines (2450), with no line terminators
Hash 9e1e991dfdb09cb3569b842c744854c5
a82afe8c03e416941c352c78d074d89b66b9127c
f6fac5da71037d64f046972e4b3dfd6b8e1472f19f1a8296a122ef580c3364bd
GET /_nuxt/desktop/default/d06d7d55.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 1061
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-425"
expires: Wed, 21 Sep 2022 09:35:11 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37551
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=us
178.253.49.6200 OK 706 B URL HTTP/2 lite-1x283524.top/service-api/LineFeed/GetExpressDayExtendedZip?lng=us
IP 178.253.49.6:0
File type JSON data\012- , ASCII text, with very long lines (1528), with no line terminators
Hash dce7f77dbb3561d736a29028082c73aa
8a9fd92d9f58291cce4e97b77fbcd18ad44a3b88
7f71ec7ed0317d8bcbb7d1cbf7bb5b522e9f4af6a84bf2a189fd6fb4abf8c2cb
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/GetExpressDayExtendedZip?lng=us HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/json; charset=utf-8
content-length: 706
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x283524.top/service-api/LiveFeed/GetLiveExpressExtendedZip?lng=us
178.253.49.6200 OK 619 B URL HTTP/2 lite-1x283524.top/service-api/LiveFeed/GetLiveExpressExtendedZip?lng=us
IP 178.253.49.6:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (1171), with no line terminators
Hash 69de9c63b5fa6fe0abc656f66fca35a5
69002257127f56ca88ff02a66e17ab7190a8db21
7940df1fef69ca83bbddd9d79b5859b382d7354516dd7d9fa77ae3359ad8033c
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/GetLiveExpressExtendedZip?lng=us HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/json; charset=utf-8
content-length: 619
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x283524.top/service-api/LiveFeed/GetTopGamesStatZip?lng=us
178.253.49.6200 OK 1.3 kB URL HTTP/2 lite-1x283524.top/service-api/LiveFeed/GetTopGamesStatZip?lng=us
IP 178.253.49.6:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (4881), with no line terminators
Hash 721f2f3e5726ef0f352c43fd1b7452d1
4b4e0746edab30e77e92cdf6936abc8b954cdf49
77d8bc0b92c7db853d6762c12908cfd99fc07d33aaaecf53b07fde363ae4f4ed
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/GetTopGamesStatZip?lng=us HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/json; charset=utf-8
content-length: 1298
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x283524.top/domain-api/api/v1/domains/lite-1x283524.top
178.253.49.6200 OK 84 B URL HTTP/2 lite-1x283524.top/domain-api/api/v1/domains/lite-1x283524.top
IP 178.253.49.6:0
File type JSON data\012- , ASCII text, with no line terminators
Hash ae7ae3657f4d1822dea8b11fa6a19fe7
a387d096d56f71d0550a5274062dd4e8968e3ed3
ba18e7be1644e594bc323298d0921d457f707950a4e3ba63a473195f60367361
Analyzer Verdict Alert quad9 Sinkholed
GET /domain-api/api/v1/domains/lite-1x283524.top HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/vnd.api+json
content-length: 84
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x283524.top/web-api/api/internal/v1/sessions/user
178.253.49.6200 OK 16 B URL HTTP/2 lite-1x283524.top/web-api/api/internal/v1/sessions/user
IP 178.253.49.6:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 646b2e82b65602d35f7aa6283c387e3a
b163a70c5df8e4b0861a23a04f8a6f78393747f4
b68bf12405ee2cb5b76764df21dbc2df0953ddff4072ddc5281d1aab05e8c4ab
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/api/internal/v1/sessions/user HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/json
content-length: 16
cache-control: no-cache, private
server-timing: p;dur=25, dt_285;dur=28
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x283524.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=us&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
178.253.49.6200 OK 8.9 kB URL HTTP/2 lite-1x283524.top/service-api/LiveFeed/Get1x2_VZip?count=20&lng=us&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true
IP 178.253.49.6:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (41018), with no line terminators
Hash 13916d6bed0cdc02aeae9722c0d9c7b0
00ad48608866a509ae939fd59ccc640e36ba3dd9
39f1e61b435c7498566bba1fcd51b2271fd266357a2d0619353ee99513538893
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/Get1x2_VZip?count=20&lng=us&mode=4&country=137&virtualSports=true&noFilterBlockEvent=true HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/json; charset=utf-8
content-length: 8885
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x283524.top/web-api/user/secure
178.253.49.6200 OK 59 B URL HTTP/2 lite-1x283524.top/web-api/user/secure
IP 178.253.49.6:0
File type JSON data\012- , ASCII text, with no line terminators
Hash a63e28ac1d4ebc6edbf0280519e5b5f9
a9abaa3ccba4e5506ad96604b5dddf5865534834
c11fc4575af86d81c34811149a7dfe66c10bb2e0a1e94521d6cce1e613e98978
Analyzer Verdict Alert quad9 Sinkholed
POST /web-api/user/secure HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Origin: https://lite-1x283524.top
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/json; charset=utf-8
content-length: 59
server-timing: dt_285;dur=73
set-cookie: is_rtl=1; expires=Wed, 20-Sep-2023 20:00:40 GMT; Max-Age=31536000; path=/; HttpOnly
disallow_sport=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; HttpOnly
fast_coupon=true; expires=Tue, 27-Sep-2022 20:00:40 GMT; Max-Age=604800; path=/
v3fr=1; expires=Fri, 23-Sep-2022 20:00:40 GMT; Max-Age=259200; path=/; HttpOnly; SameSite=lax
_glhf=1663721816; expires=Tue, 20-Sep-2022 21:00:40 GMT; Max-Age=3600; path=/
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x283524.top/service-api/LineFeed/Get1x2_VZip?count=20&lng=us&tz=3&mode=4&country=137&virtualSports=true
178.253.49.6200 OK 7.4 kB URL HTTP/2 lite-1x283524.top/service-api/LineFeed/Get1x2_VZip?count=20&lng=us&tz=3&mode=4&country=137&virtualSports=true
IP 178.253.49.6:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (40209), with no line terminators
Hash 6c9ae3155c7c9f47fbd825a9d9504f44
0e2f7c56ae13c4c02cfc63a1f756664cbaa3460a
fb83d617027f498889813c6f089cb4c6da1a06c292065033e6b68d81a06fa73a
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/Get1x2_VZip?count=20&lng=us&tz=3&mode=4&country=137&virtualSports=true HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/json; charset=utf-8
content-length: 7355
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/d8fe55e1.modern.js
8.247.218.250200 OK 5.4 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/d8fe55e1.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (13514), with no line terminators
Hash d09287b045ee86c9ec07f7ccee1be538
286ddfedb1de4ecb009a14954dc51e84cdc17d4c
1a5afbf0b42e76ebb4c769d3c1499e138c32899efa237538d0e1da5ed6db0257
GET /_nuxt/desktop/default/d8fe55e1.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 5401
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-1519"
expires: Wed, 21 Sep 2022 09:35:19 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37537
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/93e2760c.modern.js
8.247.218.250200 OK 26 kB URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/93e2760c.modern.js
IP 8.247.218.250:0
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 8ee1250e346dbd713e5d0cef55bd0e18
7544dc6006d1e093049072ddc405bcad3faac75f
16c8ace732bbd39ae411b751db07d8a86d838f4604b9d8a28f478cc451aa715e
GET /_nuxt/desktop/default/93e2760c.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/javascript; charset=utf-8
content-length: 26110
cache-control: max-age=86400
content-encoding: gzip
etag: "63247837-65fe"
expires: Wed, 21 Sep 2022 09:35:06 GMT
last-modified: Fri, 16 Sep 2022 13:20:55 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37537
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/checker/redirect/stat/run/
178.253.49.6200 OK 49 B URL HTTP/2 lite-1x283524.top/checker/redirect/stat/run/
IP 178.253.49.6:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b7a9075de81cdb1a9fa74fa71b5126dd
9d651f649e1c5eab95d3b0ca7cc9b02dec41df61
86877f86c7d18d59e54d73c43e6709a91a7f0a6a86980cada7f4b7e69c13cf20
Analyzer Verdict Alert quad9 Sinkholed
GET /checker/redirect/stat/run/ HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/json; charset=utf-8
content-length: 49
cache-control: private
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_map_short_us.js
8.247.218.250200 OK 535 B URL HTTP/2 v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_map_short_us.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (1140), with no line terminators
Hash c22e52b6c5cb447fbd165a5b78eb52f1
4db4f404a75ef59ac2d68907f31297834064cc9b
8ef6ac707fb3bf6d8707fd78c86459b887e07c7adbc34dfbb2f0c0ce503ac1a9
GET /genfiles/cms/betstemplates/bets_model_map_short_us.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: application/javascript; charset=utf-8
content-length: 535
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"29effdf894f2f420065fe276fcc9c64d"
expires: Tue, 20 Sep 2022 19:54:14 GMT
last-modified: Tue, 20 Sep 2022 11:28:22 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 571
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_short_us_0.js
8.247.218.250200 OK 3.3 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_short_us_0.js
IP 8.247.218.250:0
File type Unicode text, UTF-8 text, with very long lines (11962), with no line terminators
Hash c579876c3b69752d42a9c79a4e6ad277
590fe435d11470c799c3578fc47fb5461ef50f1e
e0915752d12c8713f518765160c3193635cfb6d528210b063bc8eea5aff37ffc
GET /genfiles/cms/betstemplates/bets_model_short_us_0.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: application/javascript; charset=utf-8
content-length: 3340
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"3c6b88c2096b205e50274e51121ebae4"
expires: Tue, 20 Sep 2022 20:00:53 GMT
last-modified: Tue, 20 Sep 2022 11:28:21 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 123
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/33605.png
178.253.49.6200 OK 12 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/33605.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a10bd7851e1822e6969e0964245c876
f7f8501269e399bb617c582a8a495017d32ba2b9
2f3c28abdca3932a8070cfdc6c324adeff8a27cc217a47a75d22938314ede6b4
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/33605.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: image/png
content-length: 12514
x-amz-id-2: NH/P4vKYN0B+lQjJUkgbocFecgx2Lm5nH0BRsPj5h8xb+zGeGRX11NZBbpRgf71ldwP8+Rw1/hBZk+dRFgMX5g==
x-amz-request-id: 403779PSP9NPBV9G
last-modified: Tue, 13 Aug 2019 15:04:38 GMT
etag: "5a10bd7851e1822e6969e0964245c876"
x-amz-version-id: bAp3dtX9EGccBZd_nwda23Yx9ff9lKWg
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/19947.png
178.253.49.6200 OK 8.8 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/19947.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash dc9aaec4071dcd322aca724923f2e28b
74867cf69cd59bb945079a150e35befdbee2d8a5
c28e58e2bfd4733e298dcfbff4e30bb05b8ea6337cbba0820621a9dbcb6cbf1d
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/19947.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: image/png
content-length: 8762
x-amz-id-2: oEnGOSi+DO1NhTR/DPoNtSg5hGx6VQz9KTkJR6fr3JWxX9fIbGPRNbJEb1Az2hzCUheNwE9juLC+hyHbBTBsxA==
x-amz-request-id: 40333HSK3JJ9859T
last-modified: Tue, 13 Aug 2019 14:57:40 GMT
etag: "dc9aaec4071dcd322aca724923f2e28b"
x-amz-version-id: REQzxmvQFR4sDTVbiktfGne_YVElxy.U
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_full_us_0.js
8.247.218.250200 OK 4.0 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_full_us_0.js
IP 8.247.218.250:0
File type Unicode text, UTF-8 text, with very long lines (19254), with no line terminators
Hash 983fd592aba0a2f405e798f50718aec1
00661bae337379ef26882857fbb8177c9971617b
e17f59aec839f301e535a0fa7ddb1f72b0ee6d8b6b7c7343a2e562bca1b2bc14
GET /genfiles/cms/betstemplates/bets_model_full_us_0.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: application/javascript; charset=utf-8
content-length: 4036
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"bdd02e137fd072ac98e08c873a33ae56"
expires: Tue, 20 Sep 2022 20:00:51 GMT
last-modified: Tue, 20 Sep 2022 11:28:22 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 248
accept-ranges: bytes
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 20 Sep 2022 18:41:12 GMT
expires: Tue, 20 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 4769
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/1691419.png
178.253.49.6200 OK 23 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/1691419.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d35cc910325b9e406d4f8161cb65be9
31bc1e521ae3a1ae6f5e58dc3bfacbe4c2b14b66
42e9788e04ecdfaf3968b64b29d99438fb424bc395b989ecce418ea10d7fce69
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/1691419.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: image/png
content-length: 23059
x-amz-id-2: 7l5GyKN4TMjiTISeqxSpJrpJuXkv9wNTpHw4xk6SVfLY9TDXXXy3qc5DjdhR+iHkbycPySnGDwE8+unCKRnCDw==
x-amz-request-id: 60TWM00ARF6V5H52
last-modified: Tue, 13 Aug 2019 14:55:26 GMT
etag: "7d35cc910325b9e406d4f8161cb65be9"
x-amz-version-id: hOzT_RKvQN47LzB8kbA4aKjEphW_vT3_
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/679149.png
178.253.49.6200 OK 21 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/679149.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash aa6e8469fef34e2b64d7829cebb02111
ce9abf602c139be5d1acb07cb7c1dc53a1f40d09
1794df16d318821f081806baf1a1539b2e7bfa50b351d98bfb523011433c4037
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/679149.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: image/png
content-length: 21210
x-amz-id-2: j3nOMWRcdGW5dd+Fn4ucBq1UnyYOM4EZYU2HTqREc9VpuxNiSeRMPfU8lNR2W3r12wyWS1v8KsF/F8Xdcd49mQ==
x-amz-request-id: 60TX53T6J34TEA7G
last-modified: Tue, 13 Aug 2019 15:10:15 GMT
etag: "aa6e8469fef34e2b64d7829cebb02111"
x-amz-version-id: E5mtpUu3vLSKOme6hLh4aMdqHKmtmnOQ
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/104951.png
178.253.49.6200 OK 11 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/104951.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c622c99f198a5da938c289956b3bccfa
e00e568caf4234bdc3d870f8134631dd814ae44e
79bf89e20f71a54d6930e7f7fb2dfe91696606ab1948c98b655ed81b843ec1c9
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/104951.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: image/png
content-length: 10575
x-amz-id-2: tG8JGdBjMWVWtftJoX5rKpUycH2AnQI2lpqc5mkMrjjUKxHNtPTKykzNxUlRerQ8+BI316wYA7TdaJ+VBProqA==
x-amz-request-id: F6P39BWJD22SNW0J
last-modified: Tue, 13 Aug 2019 14:51:08 GMT
etag: "c622c99f198a5da938c289956b3bccfa"
x-amz-version-id: i7h95IfQczRta_m5tks_TEUNgffWgfZh
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/0ed5f76fd1c28a8be4990b5eb1460111.png
178.253.49.6200 OK 16 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/0ed5f76fd1c28a8be4990b5eb1460111.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7660becb0895fd9ce27f50b7c1e9abcc
5db701d1cb47e97ba1645998b6d69b362001cefa
992fad901924819da8f0279aa161d0ae001ea5a5a96142b1ff7aa9dfbef69b2c
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/0ed5f76fd1c28a8be4990b5eb1460111.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: image/png
content-length: 15972
x-amz-id-2: zBZaJqEPfAjUejNrvDOQDciLQGnHOhlm27nmCDd6tXfkx7m/jpWUxOGHFgjlWfl1L1/PFDTuvgm/dRvjVyId2Q==
x-amz-request-id: 1SP9WZFRECJHGMNY
last-modified: Wed, 14 Sep 2022 06:40:05 GMT
etag: "7660becb0895fd9ce27f50b7c1e9abcc"
x-amz-version-id: AEyv.z5IK2rOxbz9yIEjM36E.11I_7L0
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/419855.png
178.253.49.6200 OK 22 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/419855.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 30e9d1daefb8376b3e16b5ec48079caf
cbe4f51b490cf620446b595bf0936d1f6439ba66
720e20d3f35c2a1bdf7e46a6831f387a0b31e8d5fdb7727c1d6a641c3d66c317
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/419855.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: image/png
content-length: 22004
x-amz-id-2: K6tnNFfUu3xQiSFwQJfo+F6iIyHlHK/WSP8NLkVeXid11idKglSnlWZL41SUzxVIyVg/iMN0d/W2CGm5MCOQOA==
x-amz-request-id: NRDHCD91XNRY6K0A
last-modified: Tue, 13 Aug 2019 15:06:09 GMT
etag: "30e9d1daefb8376b3e16b5ec48079caf"
x-amz-version-id: Lj7Wom5E4l8xqvuSxcnb.Dr6NYF.uGNz
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/521825.png
178.253.49.6200 OK 13 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/521825.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e3b495d8c6a2bd296c1f2340cfba309b
3c8b5589a7b1f733b626c0215bf9855045e2a72e
ad8952fbacaad46449ce6192ab83828b8c3bbb03894c70a07035b2ef1c34dfbe
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/521825.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: image/png
content-length: 12637
x-amz-id-2: ik6IsTcYI6yzPlMxwNtIEl8YmqArNEA/4AlzOfVeZ5Lnx8uO3e8OthxztBdSjSee7sQzf0zP8jWp87eTLTN6jQ==
x-amz-request-id: NRDZD0KNHDQH5V4H
last-modified: Tue, 13 Aug 2019 15:08:05 GMT
etag: "e3b495d8c6a2bd296c1f2340cfba309b"
x-amz-version-id: CF9A7eVWavLPPYSzgsiwkhgHs3xnCpEX
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_short_us_1.js
8.247.218.250200 OK 2.6 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/betstemplates/bets_model_short_us_1.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (10098), with no line terminators
Hash 3bb6894364bf6a459afbfaf2b6d730e1
964e11a7d2b912c657cd07f87684f6f3f5875aa0
a77c2cc7420e215a7c6f64b2efc5e9efca70b95de4c8fce4c621d3a39a937cc3
GET /genfiles/cms/betstemplates/bets_model_short_us_1.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:41 GMT
content-type: application/javascript; charset=utf-8
content-length: 2583
cache-control: public, max-age=120, s-maxage=600
content-encoding: gzip
etag: W/"f9f18ba9c9be3c1a92f049dfd8271bda"
expires: Tue, 20 Sep 2022 20:02:41 GMT
last-modified: Tue, 20 Sep 2022 11:28:21 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 28
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/4b45c82e8035285c0f7497a955bcaf5b.png
178.253.49.6200 OK 10 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/4b45c82e8035285c0f7497a955bcaf5b.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f4992d09ea3fffe295eb767ae2a6430d
dfe5f9023102146a4a208c507bea7916dc22e508
8b3227f76db8fb383d8ab8f2014fc1a0bcf59e312d46bfcf2c753bf3012c7d44
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/4b45c82e8035285c0f7497a955bcaf5b.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:42 GMT
content-type: image/png
content-length: 10193
x-amz-id-2: 1EZWKdZUiiiU+fvIJ5RgziyUChmRuc4K+pSzLMYvD6IZeRXlgECh6yDCI8nQwgaWHYmEokJH8+MQC9mfmWVv7Q==
x-amz-request-id: D0BTW243BS99V3H1
last-modified: Wed, 08 Sep 2021 10:49:00 GMT
etag: "f4992d09ea3fffe295eb767ae2a6430d"
x-amz-version-id: PYGSCPLgLTyYj_uO5Fu_Te.KpTG0uZ0Z
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/f45976d4772add2b2ca71875ca1ca798.png
178.253.49.6200 OK 6.4 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/f45976d4772add2b2ca71875ca1ca798.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d7bd682abc2945b61a03b2355b8d6b3f
a6f0dea9069f22c81d6ec9dbb456c996e48d7314
5e7e409bc46bb5256582108c1b1c2c1afb240d812a95da911a43966887a858be
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/f45976d4772add2b2ca71875ca1ca798.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:42 GMT
content-type: image/png
content-length: 6445
x-amz-id-2: UpnvbFZDBBpr1Z/gK6EOtJrUh3zi2EglX00S5K+BpwMS0vh68/t6Z/C9zKpqVST5b6yfmZNzJP+NdOc7nQUTmA==
x-amz-request-id: D0BQRDA02BA4MFFG
last-modified: Thu, 02 Sep 2021 20:00:08 GMT
etag: "d7bd682abc2945b61a03b2355b8d6b3f"
x-amz-version-id: 1osprIryB8jL5KVhAuYh1F38bveuD0wV
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/2161795.png
178.253.49.6200 OK 14 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/2161795.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0eb99fd2b7d4efdc65074a18a22de40e
78d6fb10bb8ff2eeb7867443e8a4778d6b9d86bd
4c98c602a249d3f57aeb17369de3e2512337c34355a9e60607ab431d6af4331e
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2161795.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:42 GMT
content-type: image/png
content-length: 14476
x-amz-id-2: iQWErH+o0U4jg9+QIxC5fEyJTjcm9I3E2/4aobQxEYfIcj8c6hXErEqlrbsQEParmDJtjkOr3JfsFD/Jg4Yv4w==
x-amz-request-id: 3EAK4BN2BGRP46TM
last-modified: Tue, 13 Aug 2019 14:58:59 GMT
etag: "0eb99fd2b7d4efdc65074a18a22de40e"
x-amz-version-id: iafkBpnHxbO4bo9Nzlwf1IK1zvIMXfkS
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/5df6893b50f8df8a3a3f381886262d1f.png
178.253.49.6200 OK 12 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/5df6893b50f8df8a3a3f381886262d1f.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 409e4ca09a5bba79364e45473180cd6e
4a3e21b30c1d592d52623b3c036aed555550346c
169216ecdb9859610019f733c116a26c95a46fdf1b592802b86876eae459c658
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/5df6893b50f8df8a3a3f381886262d1f.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:42 GMT
content-type: image/png
content-length: 12304
x-amz-id-2: BgLGYdng2BPBX+VM7XMeG/Nr+5C5s8F5XsiuJG0ew4MaRAbXz2VsJ8pSmvTklN4BmDRSSM4u2FWlksR5tvmA4g==
x-amz-request-id: 3EAXY75MV55H02FM
last-modified: Fri, 05 Nov 2021 16:17:33 GMT
etag: "409e4ca09a5bba79364e45473180cd6e"
x-amz-version-id: v8Z_Pv6oNldrwvN67xSwqF_wdoMDczyB
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/235437.png
178.253.49.6200 OK 6.9 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/235437.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e7ed577810dc8aeab3ed4ad5f61e9b5f
e9e636227102ecc2cf265b7654b44c074bb73140
eaf0055c0a407724c7d2b3c6e367148f11e1277ac9f12de1d423a7b23456b73e
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/235437.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:42 GMT
content-type: image/png
content-length: 6873
x-amz-id-2: DPhMKrzccRzoHW45LECDMZGgaZnVtIUOb1POff2GBYaK9jAUGJUUR6eMF/U6YbHEKDvX2mS8DNHcoMi6rFH4UQ==
x-amz-request-id: R6432CAQVSABZ1R8
last-modified: Tue, 13 Aug 2019 15:00:07 GMT
etag: "e7ed577810dc8aeab3ed4ad5f61e9b5f"
x-amz-version-id: RKxAq6WrfWqvOZIpd.GGXxAWIs7xZney
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/8a42f6d585101ee1e5e1daf06f06e5bb.png
178.253.49.6200 OK 21 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/8a42f6d585101ee1e5e1daf06f06e5bb.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d8a167a4746415b3826d0a4a6bce134f
03095eaa1cf607d2dbbfaa618f1b1d549bd7aa41
ce54018915f55a9871394d3a2e75dc3ebd500a6f084b28b5b332f3d0c81d614a
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8a42f6d585101ee1e5e1daf06f06e5bb.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:42 GMT
content-type: image/png
content-length: 20842
x-amz-id-2: +6qHEqu3SA8wTzKyZs5Gp/m3DIvARM8XJQHTPo9nz5BV8ps+whtsMMJpkLPdeJ/oLFlIxMwNrO8oUtTntL4gzA==
x-amz-request-id: R649A3JK4C599FZJ
last-modified: Thu, 01 Apr 2021 19:30:19 GMT
etag: "d8a167a4746415b3826d0a4a6bce134f"
x-amz-version-id: z8ZMtfSs1J1r2T_g0PRAjUfDErolt9do
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/9307d5ebf1cfc919d9dd256a4bd7ddbf.png
178.253.49.6200 OK 6.8 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/9307d5ebf1cfc919d9dd256a4bd7ddbf.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a3827931660c1b2f0699ceb47b830c
7f4970b520b64313ed95afd5c082bee424a4bee1
765d3d74b73556b97ad78953a7df6055504f495edc3f9203515494f78a141548
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/9307d5ebf1cfc919d9dd256a4bd7ddbf.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:42 GMT
content-type: image/png
content-length: 6758
x-amz-id-2: WFLo+qYixNMqCLgX09dsDJ5bMHclYXBwZF8vnoriVeWX88TJvlLrBUTfeOgzPVNe1eDfS85QrKp5SnSFnCUK/w==
x-amz-request-id: AV6YQM9CEEMV10B9
last-modified: Tue, 20 Sep 2022 17:07:32 GMT
etag: "c4a3827931660c1b2f0699ceb47b830c"
x-amz-version-id: MeVnumkozlvz0M902H6kUzJ.0504xU_8
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/59241d9224853ee2f7172cf17baad2d2.png
178.253.49.6200 OK 13 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/59241d9224853ee2f7172cf17baad2d2.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1915c72ae8c6cff57f6ec1b842c5d06c
6095680712e4a79c6b1ca484ec9ca8802551dac9
471a532495fa0315e93313e23582e4e544604131b9751f0f849c06c5f1ff7ed4
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/59241d9224853ee2f7172cf17baad2d2.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 13443
x-amz-id-2: sOqKiKsRVY74P0qMrLs16Qpq3UHvE9OL2CxymRXer1YHj3jlMN/bBVJZyQ6kM1B9mwxHEyyVw8DZcgSgv/vqCQ==
x-amz-request-id: AV6WV2JEV39C1P8F
last-modified: Tue, 20 Sep 2022 17:10:31 GMT
etag: "1915c72ae8c6cff57f6ec1b842c5d06c"
x-amz-version-id: WeGlvWxJyHn1MKmzDv6d0E0Wenp9Znbn
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/3c2d2a656d2ed669c68fcb1a50e5cbf5.png
178.253.49.6200 OK 3.9 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/3c2d2a656d2ed669c68fcb1a50e5cbf5.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d868c1ad1539d72286026ee2a06c3d80
25f92424a596b808d51c4fbdda799977bada1bd3
8c7549d5350c8493f7872d1298575997d6af9d33db06ac12866a7261eea6a344
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/3c2d2a656d2ed669c68fcb1a50e5cbf5.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 3934
x-amz-id-2: 0HoC4SOlt9oqN+mzLVeXcx7NkrD4ER8ly3co7iv1tvUiCTGVCydPjoahvEdQ7H7XliJYxossFtICGqCtcESWhw==
x-amz-request-id: N4GW0A4MHZ61APZB
last-modified: Tue, 12 Oct 2021 14:48:17 GMT
etag: "d868c1ad1539d72286026ee2a06c3d80"
x-amz-version-id: 8TmDtQDJl2tDP6i8nAyq1ISAgDFlcuUT
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/35864c41fdb8e4b838a311a64ac89e65.png
178.253.49.6200 OK 14 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/35864c41fdb8e4b838a311a64ac89e65.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c2c1170cc19ee33279aa943f8f88ea6
bb160d9a76e331bd007b3165ea76702699e0eee3
39d9137f0327184c70eeb5aebe6198d7f4bed47e17e97c8fbeda4cf59b9a6350
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/35864c41fdb8e4b838a311a64ac89e65.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 13990
x-amz-id-2: dYyuWMU1WT91k76fKV8v3hJIK70RTfEE3kwQC6pAvEWUffKTVXYYiMONxbfG+OnKxFLtemCpOlKyZMXmSzXxuA==
x-amz-request-id: N4GT7Z1KP1JH6JTD
last-modified: Fri, 02 Sep 2022 21:01:35 GMT
etag: "9c2c1170cc19ee33279aa943f8f88ea6"
x-amz-version-id: bqH8SznAmyfeQiJ2_.yfDmbxwbWRp8pN
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/034ca39fd7fe6121e8f203677560a90c.png
178.253.49.6200 OK 11 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/034ca39fd7fe6121e8f203677560a90c.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 71bb4d51065b6f2fcc47b1fe2b9a9359
eab5441b1bdd833ada521b9a87b8a0c1100010a7
474479628f3e00ab15c29bebea8e722287938303ed74fc0c50227e9780d98dfe
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/034ca39fd7fe6121e8f203677560a90c.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 11322
x-amz-id-2: OTrQl4XGUU5OjzNC8E5pHw589xN6x/MhZeB0caZgeFaxZjc4zyGXPcFSntcAZxhuKwEAAGc9AeDrNIUjLs7jCg==
x-amz-request-id: 442GWCNDDAR634AR
last-modified: Tue, 28 Sep 2021 08:13:30 GMT
etag: "71bb4d51065b6f2fcc47b1fe2b9a9359"
x-amz-version-id: YTXaWP2DbpkqTpYpcC9VAaRH9.lcgBGu
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/d0c8b253f45d8f664a894ea3032d3b0d.png
178.253.49.6200 OK 10 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/d0c8b253f45d8f664a894ea3032d3b0d.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 277484fad0f0598af64d8db2ce60e7b7
3af32c22a8661907905d6058fa1aefd4b7e97bc3
dc13c4ce0f4975c65fcf52c330dc632200c3265f490b267d34bea5949ddf4625
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d0c8b253f45d8f664a894ea3032d3b0d.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 10348
x-amz-id-2: FUOxzUq2AUT0yyuirM1VEQ/OIHBGUvqxY8If6t8OIV6mlKNzQb1Be6vplIEy3UBa7TxQB+35kNklZhhjFgxS0w==
x-amz-request-id: 442WSA8ZANFTT6DB
last-modified: Sat, 09 Oct 2021 19:57:31 GMT
etag: "277484fad0f0598af64d8db2ce60e7b7"
x-amz-version-id: gzvMCjdIQIoU5IlvJLjHYA4VW12wxCnf
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/d63c3ef0382c185e8f56fa73e2f03488.png
178.253.49.6200 OK 6.6 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/d63c3ef0382c185e8f56fa73e2f03488.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d63c3ef0382c185e8f56fa73e2f03488
e02125ff7113703710f2fc99c2f47697205cd439
5621b4cbceb58606ddafb4ee0e7d0345cc0b4c80530ac5c4690995428550b38e
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d63c3ef0382c185e8f56fa73e2f03488.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 6636
x-amz-id-2: fZGlY8625Sl6DlTAZjeyXqeh+JnfDS+DCkNRGxXgGHLE58kqy3L95UHwefkCWB8/a7DdeGH5NyUu0Gq2+U4s/Q==
x-amz-request-id: JE7W7NJGRFREWF68
last-modified: Tue, 13 Aug 2019 15:13:39 GMT
etag: "d63c3ef0382c185e8f56fa73e2f03488"
x-amz-version-id: 4wKDGxC8_OZUPBuKssjQVpBQmZxfSX6I
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/ee0871b7cd610827573f619e1d71f07a.png
178.253.49.6200 OK 36 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/ee0871b7cd610827573f619e1d71f07a.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e2b98531b5c42964f5720658a64b3811
b2504759feb4599b289ee992f445eee8458d4ed2
f527c3c7b2a2c3411861f18680b2ce56559746d09bc444343c0638ce5383550a
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/ee0871b7cd610827573f619e1d71f07a.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png, image/jpeg
content-length: 36531
x-amz-id-2: rMy07lqLuaDiT9Uh+mrRwU4C0fpCEz+vLDLSXP7EG7Cza/cc6pfmWP8fKQ19mmSdMc8BR/p+vvFYEnD7uGWzsw==
x-amz-request-id: JE7M9SF6MAHK1YQR
last-modified: Sun, 09 Feb 2020 13:38:01 GMT
etag: "e2b98531b5c42964f5720658a64b3811"
x-amz-version-id: HZw_M5jZ6QFNDeDCO1amjD3arKDCtgHd
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/d70e2eb9f032997ca7d052768273ea47.png
178.253.49.6200 OK 14 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/d70e2eb9f032997ca7d052768273ea47.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d70e2eb9f032997ca7d052768273ea47
fc92a73324aeae8a2c64776a27abacb5976cf5fb
bc8324a9abd0338e33d96e7d88c643563e3613cd5ef7e6ec497ec9609180ef19
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/d70e2eb9f032997ca7d052768273ea47.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 14121
x-amz-id-2: g3Vo1k9tKDDb74FZzfN4PKreiimCAe0udYuSf62Jp9vV5Mqkam3+z0aI6zQXHgomrXJOj4MQAGNidvEWGVkNfw==
x-amz-request-id: HMAVKEXJGJ16V2XF
last-modified: Tue, 13 Aug 2019 15:13:40 GMT
etag: "d70e2eb9f032997ca7d052768273ea47"
x-amz-version-id: 39Wu4uDH7oH9uY3rAihU.YydubC.ivnJ
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/11731.png
178.253.49.6200 OK 21 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/11731.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1938f1a6e2ba34dfa3bcab6469b03c0e
0387e684dc8b71497da5125810a92bab0aea0f8e
7b128b94889adfb29f2bdd08dfd634b57430014cf8f759ba3c8425db3a0bf50e
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/11731.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 21013
x-amz-id-2: TQadjXid1zr5DhhsfuE74BZ8hsR1BAWniJfNONTLCNq7+EQcBJF8lySWQLk/HQoG03bGMhjXiABWyjI0o2Le9Q==
x-amz-request-id: HMARKRRFVVKXGFW3
last-modified: Tue, 13 Aug 2019 14:52:09 GMT
etag: "1938f1a6e2ba34dfa3bcab6469b03c0e"
x-amz-version-id: fls0nxNM5zMGP7csTuY4Al.QVVA2ekxK
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/bcf1ac919834723f704fd3d762fe67fa.png
178.253.49.6200 OK 16 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/bcf1ac919834723f704fd3d762fe67fa.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0226c3ff325e2752050ab3d7565d2330
f0a43ed77778c34b126f4a82af68a5300c64f299
821549179bcc130c580340361205daa612f2755a63f5c2b6f4823e15d2ca8a3c
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/bcf1ac919834723f704fd3d762fe67fa.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 15720
x-amz-id-2: mpe3c/tnPZ2KoUSNrP63t230HJcUwhv+ZLaBIJQK4YfTeNp59VZBd20ZzSmOUHyF6XUFh0WRI7ANZUIBW9ugLw==
x-amz-request-id: HM7ZEAMWTPP6S44C
last-modified: Thu, 01 Jul 2021 17:14:38 GMT
etag: "0226c3ff325e2752050ab3d7565d2330"
x-amz-version-id: OgOzPqeqzG1WeNsCptigotGJ4X5XUr4o
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/bfce80da34f6d6ff019e14bbe13d17c9.png
178.253.49.6200 OK 16 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/bfce80da34f6d6ff019e14bbe13d17c9.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a0be2ad76e95abdac3485182902ba90b
2c777aeedddfb88ad80e6b9ab3ba7fae9efe2b7e
b6d64088d9b2e0f437aed681d8bcfab54b6866896a5f1b48f70eb8bb7cb1dbc8
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/bfce80da34f6d6ff019e14bbe13d17c9.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png, image/jpeg
content-length: 15737
x-amz-id-2: fe0DaFX3BtaKR+HYR6iIaQsRbrla1TPP9/wbgekFgkR1A35mZR40omzAHrawOLMk++r9IjKdzPTVkfVeH9DYoA==
x-amz-request-id: HM7RETZEDTT096DJ
last-modified: Thu, 23 Jan 2020 13:44:55 GMT
etag: "a0be2ad76e95abdac3485182902ba90b"
x-amz-version-id: RJe_0mzu86S.v9NV7woDhKnYrQMEPjln
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/718cf20738e8329b2b0332f802d2ea78.png
178.253.49.6200 OK 19 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/718cf20738e8329b2b0332f802d2ea78.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash b378d4d38d9e1f0038e639b9d12739a0
80439e772610d520f2e1916ded357e22eea287c7
c13b3e97cd7c3ce320eecfafcb3b47229bc0383d41fa0f3a2e1cf2efa7a75fc3
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/718cf20738e8329b2b0332f802d2ea78.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 18585
x-amz-id-2: itUxj2JlIM5h3BvCgDhtQ+DCeAV/vKpMr/hFEfqmDDkthRbv2x1i5XBjYZsT2cpcjh2SfQuwIpNrbDUlKhPuAQ==
x-amz-request-id: 403DZEWHBRV1HVFS
last-modified: Wed, 12 May 2021 05:44:04 GMT
etag: "b378d4d38d9e1f0038e639b9d12739a0"
x-amz-version-id: X29pMqhWJrhhhfHhgeMnvxk1VHUkJlcT
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/1981511.png
178.253.49.6200 OK 25 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/1981511.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f143a3a649259f6ad243d6bfa49a26b2
1b3982ff12c31b4c9ac2fc97e5c87a4e36e6f5aa
749dde9202dd7c58dea4f8b240ccf28e798dc12e03d6cfbab1cded068be09a02
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/1981511.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 25139
x-amz-id-2: sgYqYAZKDecP7fjBm1yiWnleApt0cGxb9Yy0iUi3IJY2yTwCPtpdebb8Vflzpw4gpamBHuyBUFlf9mKytV02uA==
x-amz-request-id: 4036PPCXMHN8GRTS
last-modified: Tue, 13 Aug 2019 14:57:34 GMT
etag: "f143a3a649259f6ad243d6bfa49a26b2"
x-amz-version-id: yBupXY_6pJBiRh5mVdlZ..4JdOaYq6xW
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/1aa65e2dbbd2ad8db0bfad0953f915fe.png
178.253.49.6200 OK 15 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/1aa65e2dbbd2ad8db0bfad0953f915fe.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash df7dadf2d8bfc04689b609418af0d764
49b77ed2595753a22ec52e18447920f6cbc90e10
972b676642ef3b9373cf4bac0c6a8cf3e2407727077ef78749e6f33f23dc83a0
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/1aa65e2dbbd2ad8db0bfad0953f915fe.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 15047
x-amz-id-2: mcZGJSLyIjosslQLPb/uV1SrYKYk1F9pd1IEsOpISUkw/+jyLk4KI5XadajN3EPYus1rc8O2vzn8LerPSj1GSQ==
x-amz-request-id: M7J42QDYDDSB1WB9
last-modified: Tue, 21 Jun 2022 11:59:51 GMT
etag: "df7dadf2d8bfc04689b609418af0d764"
x-amz-version-id: IG_ss.zShNGeXcjvG0cDcJwo3DRxW8KB
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/7b39c899d8ef1e3fcb1d54e089dc832d.png
178.253.49.6200 OK 12 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/7b39c899d8ef1e3fcb1d54e089dc832d.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 62906c410358e79eef17bfefe5e0f642
1ba6ebddec61e4dd6038f7f45dae7b135ad172b8
003ce55d269c3433cd121683b3632175dc2ab9fa94b781e216f786ea5b356ace
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/7b39c899d8ef1e3fcb1d54e089dc832d.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png, image/jpeg
content-length: 11921
x-amz-id-2: raMrALbJGVhG7c90P4kiLnwOSqxmB9mZrXUGuMSAiv/mZKTagbjCLoy96Gi4rC+2KukwtlJykqmLkT5209lJcA==
x-amz-request-id: G371ACZHBW3YZBDF
last-modified: Thu, 23 Jan 2020 14:45:50 GMT
etag: "62906c410358e79eef17bfefe5e0f642"
x-amz-version-id: sb79UDj5qCxYv2FRO2T0qsNLYVYatv8I
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/315e1c5f737fec320feaf8826620fdbb.png
178.253.49.6200 OK 12 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/315e1c5f737fec320feaf8826620fdbb.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 752a9083f6987fa62fe50b6da5a8372f
f9c342ad0b0157bfbed016303ae596d71b90dd1a
c5c739a381e1b9df58038c8e08a533f8b9871346ade6542e973aee24bf383e86
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/315e1c5f737fec320feaf8826620fdbb.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png, image/jpeg
content-length: 12390
x-amz-id-2: i9nTNe2EqNFJli+yYVPKnRq5HkYSvxwbLAk7c+qQ2LZbxCuJSvr7E5i19SuXyOVSAAXmXbmlN/cHzvFYTVMlHw==
x-amz-request-id: STFFQSVRZQ1G4SJR
last-modified: Thu, 23 Jan 2020 12:47:31 GMT
etag: "752a9083f6987fa62fe50b6da5a8372f"
x-amz-version-id: 5518RxajndefuYJYp2OAY_T7FJ3oz4zD
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/2d6cf07dc262e12401fbc669b4479e58.png
178.253.49.6200 OK 11 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/2d6cf07dc262e12401fbc669b4479e58.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash f07a74cd019ea3c909e783aebea7e4c4
094284145da8a2069bd8871c9fec968abbc9fbc9
5ecfffd318b97e499e09f262a6f64a3a433340987e171a1922148875fb7f9a9b
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/2d6cf07dc262e12401fbc669b4479e58.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 10981
x-amz-id-2: QTV9L1H90f/dh8Q7Yz6Ez26ovq1V5DU7GsefuTVFbhwELgVDbaOihp7MCVwAal5HKegESkJ3xz0m1c6rhdNC4Q==
x-amz-request-id: STFF9CS4B1Q8T6CS
last-modified: Thu, 01 Oct 2020 08:06:11 GMT
etag: "f07a74cd019ea3c909e783aebea7e4c4"
x-amz-version-id: 2rYnjptRKOTrG5qBC.cnvoofeoA_7ZFT
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10475.png
178.253.49.6200 OK 16 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10475.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d05e67abadc05bee76dd204087a812e3
bbcb4f9532032291d571f3babc795b4aa47962c0
877c2492538193904611e8b9d96fd671a4820a58b1f7fc43447b9b2bfccf0bab
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10475.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 16395
x-amz-id-2: z0u6EZuitM9FQX1m91kD3Zrp4gTlvpiNCCUnhZOVn+dye9/HRXNi8Ff7VX+g1Ej7E3y092LMuS2QnzjKo9D/IQ==
x-amz-request-id: T6ZRRFHP34CNFQ1F
last-modified: Tue, 13 Aug 2019 14:51:06 GMT
etag: "d05e67abadc05bee76dd204087a812e3"
x-amz-version-id: qKHKWnOXSFR7iHR.4XUd7r3VJXdD_Mom
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10479.png
178.253.49.6200 OK 21 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10479.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash dbbb42a5f17ba753c2c7da1f757ff2e8
a78138104c6ee7f33ce758d62339afeb50e2cac9
014292fe430daa6561a9b80c7df17db3220bb1df34b9d28ccc6eca19ee5509d8
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10479.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 20978
x-amz-id-2: Pg7/f72yUCXXIz7wXznOBuusMsvexdh3iB4LoCAG0IIE62+4iXieNNFQASLuJNaEReq7HCTqY5baRhN+wrgXuw==
x-amz-request-id: T6ZKRC6R7HK1TQQW
last-modified: Tue, 13 Aug 2019 14:51:07 GMT
etag: "dbbb42a5f17ba753c2c7da1f757ff2e8"
x-amz-version-id: 7cg1SPGygOP.xuLL4KmwnvVlvKQszbi7
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/7030ba7d17d33119ffafdf0b391ae82b.PNG
178.253.49.6200 OK 8.4 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/7030ba7d17d33119ffafdf0b391ae82b.PNG
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7030ba7d17d33119ffafdf0b391ae82b
88886229cd9cc26d301cf2948ed7319ab1b7937f
c6a9f0d83036009e95f1ad865cc8c6a269c449ba1f12c335730a104db1da8a20
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/7030ba7d17d33119ffafdf0b391ae82b.PNG HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png, image/jpeg, image/tiff
content-length: 8395
x-amz-id-2: R0q415OimfhMDAZpzBm6GBD8B+Z1rzTxGenUtrqNvS4/u+mBHQHlRVOtAvenYmIqXn4atuDLIxXDRLPm4kHebg==
x-amz-request-id: RDAHJDMBFETFS5MN
last-modified: Fri, 09 Aug 2019 05:21:55 GMT
etag: "7030ba7d17d33119ffafdf0b391ae82b"
x-amz-version-id: Vp_KtJnZTJLQHNH.E81kWVs6MGF1FhYJ
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10531.png
178.253.49.6200 OK 10 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10531.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 51c68bca19686e933a673728885cb2f6
3402272229ef2c4fd7d94965147ab6d7201fd571
db6016ebb9b67e4e36760b2927e776879976107b84f7b3ae6f376a1b4eedf6ae
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10531.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 9964
x-amz-id-2: c9fquh94R6k+/Hpscuu7c6csmG/CEWlF1o4dJCCyrtKxVxYqjG0cm/xvKp+YIa7y/V+hfwNYPhdg7fAIy0iDsg==
x-amz-request-id: RDAGF1FRZJSKE39N
last-modified: Tue, 13 Aug 2019 14:51:10 GMT
etag: "51c68bca19686e933a673728885cb2f6"
x-amz-version-id: PqlHQ9BcD_hIAyxntuTg18agjh3_JJ7O
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/67ed857590f4194454d21d2001d513b0.png
178.253.49.6200 OK 37 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/67ed857590f4194454d21d2001d513b0.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e02dea29744bd0d6bf0029df06f48f16
4047f976b22d0f894423e8e8bb5e60ed6f24c06c
a28fedf85db25230e9a2ee4d4b47a6c6571d3d7e74523469c9b46d5ddd1df346
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/67ed857590f4194454d21d2001d513b0.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 36935
x-amz-id-2: jMuxnCkgU6LzENrS8ARE2mlsvgH5mpxZgRyHfAo3Cf1BqqKGAO4KTWmm4eZPY1aPqRnzGmHUchlZ/n1hNPVP8Q==
x-amz-request-id: 1KXAT8VD8ZR4GRMC
last-modified: Wed, 05 Aug 2020 20:17:21 GMT
etag: "e02dea29744bd0d6bf0029df06f48f16"
x-amz-version-id: rEUvsKYAJuI7pjlyi.29YqsOBuWu1o3c
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/f7a3e3de1e948672ec2b9ba10cce104d.png
178.253.49.6200 OK 15 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/f7a3e3de1e948672ec2b9ba10cce104d.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d1e4945126b02e4484911e20a54e434
b2912578a59f2556a896cceabc16c1c7edacb6a3
1e6aa8b7ce53a8546cc8dd7b907153aa0eded15033b23e05759ffab6ae826700
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/f7a3e3de1e948672ec2b9ba10cce104d.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 15196
x-amz-id-2: dhufpPo3stFXjWgaxu+MpP55POMSaLPReppKa5B5u0YtWQNriju9/fmyA/BNU1n5ymdRnRgcwq6Utw1636+oSA==
x-amz-request-id: 1KX0DA4C80NWC3KN
last-modified: Thu, 30 Jul 2020 02:50:18 GMT
etag: "8d1e4945126b02e4484911e20a54e434"
x-amz-version-id: PZ9s4Mfw9X3mI75EoL1qDTztvFL52gXv
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/be7ceee2130563820e4038814915ddd9.png
178.253.49.6200 OK 9.9 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/be7ceee2130563820e4038814915ddd9.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 14b9f445aa23f3ee0a7cc2362cf2393f
b5e1e57d793a85aa72c0f67500515fd2b18d8b4e
a9532b19bb0bcbbf8722a18e9b195bce666f49e45671c27e707ece672b2cc932
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/be7ceee2130563820e4038814915ddd9.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 9917
x-amz-id-2: eZa/4uvORpmGSsOG3yAxIY+bhly5y+IXZT1jBK0IIEdXY6HShF41pyBXD4laOCR8Ka6NFIYnNJn1YzacQh1WXQ==
x-amz-request-id: 1KX613VC2A7C9ZFZ
last-modified: Wed, 05 Aug 2020 20:20:10 GMT
etag: "14b9f445aa23f3ee0a7cc2362cf2393f"
x-amz-version-id: ao0yYWm0WA5cIY6T.Ueq661AMCihJecA
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/10521.png
178.253.49.6200 OK 9.8 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/10521.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 7e6ba5bfe02ad8ed5534e7035019c48e
fa8d257bf6273b5063457a126e9d6753edd5193b
29484cbe29c38abb2642d69f0bfa7e4afd0ba72a697fa3d4ddd7eea37da36603
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/10521.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: image/png
content-length: 9795
x-amz-id-2: SqouOU9wLj9E3KvNaVVrBWh5gkQ8adKMgH1o8FgWTpXi6CamUa/VCvWsIin07aeBynk3izPDlVGNuI5VYsokQQ==
x-amz-request-id: 1KX075ZC7GFV4023
last-modified: Tue, 13 Aug 2019 14:51:10 GMT
etag: "7e6ba5bfe02ad8ed5534e7035019c48e"
x-amz-version-id: RsAIqFwO3syDb3yE5fJe2lZEEwxJ9bTC
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3463c46d2b7a87a91ff1a701a438d80e
92c78b27f4e31609c1b78670b26e68b4f991a8ed
b95b290832f12f97c7da51382fe92feba2fa93a5ec0470d48a533a58a13dc474
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe763d5d6-1a5c-4160-9667-8ed7c6b1e265.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5985
x-amzn-requestid: 6797727b-78c7-470f-bee8-7b55e64d36ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugzxH6qoAMF67w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e1b1-0d574a815d19636b21376c91;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RIRyR6BXSZrTZq2joFYjssEpZAqxuWYgdoU5um35md0Yt_m0UzZpiw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:51:37 GMT
age: 79747
etag: "92c78b27f4e31609c1b78670b26e68b4f991a8ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/8f4bd72c07e2546c433cb894b25ccedf.png
178.253.49.6200 OK 16 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/8f4bd72c07e2546c433cb894b25ccedf.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 8f4bd72c07e2546c433cb894b25ccedf
d52880f965ac9acae56ac1c30bfb060c072cf1b4
fcc9e1189acecbb61cbd126fe43fcd98b36d1ba5cef321e99c31242a3bb85483
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8f4bd72c07e2546c433cb894b25ccedf.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: image/png, image/jpeg
content-length: 15807
x-amz-id-2: uxg75EM6aFefv/Qz9OX46x3Gfz+UmV75GCtWqev7SgYTdy/eX4hBkO25pFMjobvhgdWJgrtHMSUdd8phvuvtgw==
x-amz-request-id: 1CKPVTAKJJBPY4VQ
last-modified: Thu, 02 Jan 2020 06:37:02 GMT
etag: "8f4bd72c07e2546c433cb894b25ccedf"
x-amz-version-id: TDStjo2vLM4yPX2DJ40K6j1rWqQstFGy
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/23529.png
178.253.49.6200 OK 8.9 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/23529.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash b77ce7839ee8339d4195afb5ac834bf4
2c8302502f9fbedfbbaf61512ff407d961d16479
38a7067aa62b5ed9fa0e427124971b6c47c1a668e3eb1c51ac840fc14fd99cd2
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/23529.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: image/png
content-length: 8854
x-amz-id-2: p/hbUvXwl+lbgvziy4PlF5YhzNxYbbM73oxvhPz+wDWQd/165uOvxjAedJJAi0rEicf8hNUXVxDx12+blIdblA==
x-amz-request-id: 1CKZBEHNGYNZZ3AR
last-modified: Tue, 13 Aug 2019 15:00:07 GMT
etag: "b77ce7839ee8339d4195afb5ac834bf4"
x-amz-version-id: z0F_Zd6K__1PgS6x61mhsOgDZX3x4whP
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/8294.png
178.253.49.6200 OK 14 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/8294.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4678a53059a69a8377a62299a46c8424
ca243551bc4d1383e4f06823ad08bd60b6aecb8e
b781ddf404d3851c35ccd3f10ba824f07e6ca36ccb67f7030c561c9737e398b6
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/8294.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: image/png
content-length: 14452
x-amz-id-2: 0R6Dn///XktT/puHB5qcmaRz7Nr04FRM4NNeFyG7eGxWXeWIsQlH4iLemHn7SLOrDHppyDnM/tMwcog+toWTNw==
x-amz-request-id: 1CKG93QQ1HAKVZ1Y
last-modified: Tue, 13 Aug 2019 15:11:54 GMT
etag: "4678a53059a69a8377a62299a46c8424"
x-amz-version-id: uhbl_aGuf2vstuM1i3xk2WOMFNN21DwU
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/sfiles/logo_teams/ab2d8adc9d8a6c3cbd2a83f0e3fd8986.png
178.253.49.6200 OK 9.3 kB URL HTTP/2 lite-1x283524.top/sfiles/logo_teams/ab2d8adc9d8a6c3cbd2a83f0e3fd8986.png
IP 178.253.49.6:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash d807e942245e343a176f6085bf630796
974a476fe22e4169f2ebfbf4c105d49dbceecbd3
8e8431f7fd991b3f89b6448c3898dc817243f4fc15c85c121c160e29acbac0fa
Analyzer Verdict Alert quad9 Sinkholed
GET /sfiles/logo_teams/ab2d8adc9d8a6c3cbd2a83f0e3fd8986.png HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: image/png
content-length: 9288
x-amz-id-2: GrceSXWdylusHU72WNZYrsKHX/R6z8/L7E12R3mg3JAdXzKBUmpvLWVkz3HXP+yNkUzU8iRcYIdm9Ra6GjyK2Q==
x-amz-request-id: 1CKYB0SD8W9VBDRC
last-modified: Fri, 20 Nov 2020 07:15:56 GMT
etag: "d807e942245e343a176f6085bf630796"
x-amz-version-id: 2.hCUmWtv1QWIC4F8ROSxnFG8BFh7NJK
strict-transport-security: max-age=63072000; includeSubDomains; preload
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/css/95255ae7.css
8.247.218.250200 OK 419 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/css/95255ae7.css
IP 8.247.218.250:0
File type ASCII text, with very long lines (907), with no line terminators
Hash 21e2791ed44569b23551a5bb419ba05b
8f3bc089a07b7e054a82a05bc1bcdb64ef43c1dd
8e4e0ad2550d369f8ac55acfdcf00b963717fe99c4e905d221e71630f1d3d11f
GET /_nuxt/desktop/default/css/95255ae7.css HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: text/css
content-length: 419
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-1a3"
expires: Wed, 21 Sep 2022 09:02:37 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 39488
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/_nuxt/desktop/default/936348ee.modern.js
8.247.218.250200 OK 630 B URL HTTP/2 v3.cdnsfree.com/_nuxt/desktop/default/936348ee.modern.js
IP 8.247.218.250:0
File type ASCII text, with very long lines (1322), with no line terminators
Hash ab860edbd57cb57e495306bcf71276fa
8bdc85bdabed3ecf6fbe5b049cc3716998f13018
5f40694f6c603ff0530d64c65401ea821b2451ab044e275750b62e875315894d
GET /_nuxt/desktop/default/936348ee.modern.js HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: application/javascript; charset=utf-8
content-length: 630
cache-control: max-age=86400
content-encoding: gzip
etag: "63247836-276"
expires: Wed, 21 Sep 2022 09:35:11 GMT
last-modified: Fri, 16 Sep 2022 13:20:54 GMT
server: nginx
vary: Accept-Encoding
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
age: 37542
accept-ranges: bytes
X-Firefox-Spdy: h2
lite-1x283524.top/service-api/LiveFeed/GetSportsShortZip?lng=us&gr=285&country=137&virtualSports=true&groupChamps=true
178.253.49.6200 OK 2.6 kB URL HTTP/2 lite-1x283524.top/service-api/LiveFeed/GetSportsShortZip?lng=us&gr=285&country=137&virtualSports=true&groupChamps=true
IP 178.253.49.6:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (10058), with no line terminators
Hash d57b0b6c0585503a7c234accdd257038
10ba4b15072ab39b5a2060208fa02b6e8e0511e9
68f819191f4c25f786c2b3ca0d98dbd4f9034d6ec788a3f04796ec45cc766f03
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LiveFeed/GetSportsShortZip?lng=us&gr=285&country=137&virtualSports=true&groupChamps=true HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181; _ga=GA1.1.1091304829.1663704044; _gid=GA1.2.937527816.1663704044; _ga_7JGWL9SV66=GS1.1.1663704044.1.0.1663704044.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: application/json; charset=utf-8
content-length: 2585
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1-285/desktop/tmp/slider/slider-21.webp
8.247.218.250200 OK 25 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1-285/desktop/tmp/slider/slider-21.webp
IP 8.247.218.250:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1380x248, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d2e4d3fc22f9bb544c616349833d1b8c
7f36a6f0216db29dbdaf82bbe498c06c7e7aeee2
53250ab6baea5585abb21ed0066e94ff83e2bd713f178348a393a97bd6ad968a
GET /genfiles/cms/1-285/desktop/tmp/slider/slider-21.webp HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: application/octet-stream
content-length: 25308
cache-control: public, max-age=120, s-maxage=600
etag: "d2e4d3fc22f9bb544c616349833d1b8c"
expires: Tue, 20 Sep 2022 19:55:50 GMT
last-modified: Fri, 16 Sep 2022 15:33:51 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 414
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1-285/desktop/tmp/slider/slider-4.webp
8.247.218.250200 OK 36 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1-285/desktop/tmp/slider/slider-4.webp
IP 8.247.218.250:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1380x248, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 96582a08339b29c377e3310313428469
31e9a98270b29fc41a57206529659874d22d3fb1
2aacf877eafe12ba70a2769b762cd4d252a88f36bdb5104b5e335d87258b047d
GET /genfiles/cms/1-285/desktop/tmp/slider/slider-4.webp HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: application/octet-stream
content-length: 35616
cache-control: public, max-age=120, s-maxage=600
etag: "96582a08339b29c377e3310313428469"
expires: Tue, 20 Sep 2022 20:01:46 GMT
last-modified: Tue, 08 Dec 2020 09:30:49 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 61
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1-285/desktop/tmp/slider/slider-22.webp
8.247.218.250200 OK 44 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1-285/desktop/tmp/slider/slider-22.webp
IP 8.247.218.250:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1380x248, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 134468fb48856da840c0c06a3f1f6acc
9dcb1d4d5ce7e195e0027e08a67ca5d0083c6395
0bf6610f66498501ded3b27c882cd9573e0f8b965ed3612ee954cc4d94776bdf
GET /genfiles/cms/1-285/desktop/tmp/slider/slider-22.webp HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: application/octet-stream
content-length: 44384
cache-control: public, max-age=120, s-maxage=600
etag: "134468fb48856da840c0c06a3f1f6acc"
expires: Tue, 20 Sep 2022 20:01:06 GMT
last-modified: Mon, 18 Jul 2022 12:57:25 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 106
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1-285/desktop/tmp/slider/slider-19.webp
8.247.218.250200 OK 38 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1-285/desktop/tmp/slider/slider-19.webp
IP 8.247.218.250:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1380x248, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 1879af35f949e45c5eb405cf572022f6
447dd3f237dbd80f828bfb952b80fad3a4730ce6
8e75b4106ed29a4a231c13733c01d4322ca477de9b321a3da610ec42ab22cab5
GET /genfiles/cms/1-285/desktop/tmp/slider/slider-19.webp HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: application/octet-stream
content-length: 38370
cache-control: public, max-age=120, s-maxage=600
etag: "1879af35f949e45c5eb405cf572022f6"
expires: Tue, 20 Sep 2022 19:56:08 GMT
last-modified: Fri, 16 Sep 2022 13:20:58 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 421
accept-ranges: bytes
X-Firefox-Spdy: h2
v3.cdnsfree.com/genfiles/cms/1-285/desktop/tmp/slider/slider-20.webp
8.247.218.250200 OK 22 kB URL HTTP/2 v3.cdnsfree.com/genfiles/cms/1-285/desktop/tmp/slider/slider-20.webp
IP 8.247.218.250:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1380x248, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a83ae675c6c495d72d1122729e3a619b
5c295dcbe39a18179e3e2b33d1fc763c92d01f20
c8a43cf67bc10570f5f848a816f7373a2e8ba15e2d0fb7097b7d2dc0b75f7378
GET /genfiles/cms/1-285/desktop/tmp/slider/slider-20.webp HTTP/1.1
Host: v3.cdnsfree.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:44 GMT
content-type: application/octet-stream
content-length: 21464
cache-control: public, max-age=120, s-maxage=600
etag: "a83ae675c6c495d72d1122729e3a619b"
expires: Tue, 20 Sep 2022 19:56:07 GMT
last-modified: Thu, 02 Jun 2022 09:07:51 GMT
server: nginx
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-rgw-object-type: Normal
age: 401
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4653898fc83ae1b62d9b975658cc7fe9
adc6def18885ff49efd6b61c47d4b36eaca057b4
642a2e27f6635db0f9670cce2cba91f24f881db8f19d3f9b00e439f746fbc225
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a6c4141-897e-4893-81f2-a7382686ab37.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6961
x-amzn-requestid: 3177a5d3-6be5-426f-84ff-c044443c8627
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YugHuHGZoAMFuwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6328e097-00d08a4e1c0ebd3f62716843;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 21:35:19 GMT
x-amz-cf-pop: SEA73-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _dXQRIghNGF2FVKY8rbWdykpQd225TT_e645hfVwkq8SMhT5O16lFg==
via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 21:53:49 GMT
age: 79616
etag: "adc6def18885ff49efd6b61c47d4b36eaca057b4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-7JGWL9SV66>m=2oe9j0&_p=893910642&cid=1091304829.1663704044&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663704044&sct=1&seg=0&dl=https%3A%2F%2Flite-1x283524.top%2Fus&dt=Online%20sports%20betting%20at%201xBet.%20%E1%90%89%20lite-1x283524.top&en=page_view&_fv=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7JGWL9SV66>m=2oe9j0&_p=893910642&cid=1091304829.1663704044&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663704044&sct=1&seg=0&dl=https%3A%2F%2Flite-1x283524.top%2Fus&dt=Online%20sports%20betting%20at%201xBet.%20%E1%90%89%20lite-1x283524.top&en=page_view&_fv=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7JGWL9SV66>m=2oe9j0&_p=893910642&cid=1091304829.1663704044&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663704044&sct=1&seg=0&dl=https%3A%2F%2Flite-1x283524.top%2Fus&dt=Online%20sports%20betting%20at%201xBet.%20%E1%90%89%20lite-1x283524.top&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://lite-1x283524.top
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://lite-1x283524.top
date: Tue, 20 Sep 2022 20:00:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 41e846547f0f50fdb95b88115fa3ca38
89f769bd67a3ae27d423839829f2b64a817a9b39
0939ad5ebecfeb7c2e2420d42491f045bb4b154b2c89f43971f9452858317037
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Sep 2022 20:00:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lite-1x283524.top/service-api/LineFeed/GetSportsShortZip?lng=us&tz=3&country=137&virtualSports=true&groupChamps=true
178.253.49.6200 OK 1.8 kB URL HTTP/2 lite-1x283524.top/service-api/LineFeed/GetSportsShortZip?lng=us&tz=3&country=137&virtualSports=true&groupChamps=true
IP 178.253.49.6:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (5722), with no line terminators
Hash 75629dfa662cf3aa918450475855f7fc
b50d96fd1a949021d52a3dc7c0faa4c7886019dd
13c1e786bf8063fe818720757d530d020293ebd27ff4155a7c312d6c8d794ae2
Analyzer Verdict Alert quad9 Sinkholed
GET /service-api/LineFeed/GetSportsShortZip?lng=us&tz=3&country=137&virtualSports=true&groupChamps=true HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd; ggru=181; _ga=GA1.1.1091304829.1663704044; _gid=GA1.2.937527816.1663704044; _ga_7JGWL9SV66=GS1.1.1663704044.1.0.1663704044.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:45 GMT
content-type: application/json; charset=utf-8
content-length: 1824
cache-control: public,max-age=5
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x283524.top/
178.253.49.6302 Found 0 B IP 178.253.49.6:0
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Tue, 20 Sep 2022 20:00:35 GMT
location: /US
server-timing: total;dur=0;desc="Nuxt Server Time", dt_285;dur=2
x-frame-options: SAMEORIGIN
x-reason: empty_lang
strict-transport-security: max-age=63072000; includeSubDomains; preload
set-cookie: platform_type=desktop; Path=/; Expires=Fri, 23 Sep 2022 20:00:35 GMT
auid=sv0xBmMqG+O+twJlCajiAg==; expires=Wed, 20-Sep-23 20:00:35 GMT; path=/
X-Firefox-Spdy: h2
lite-1x283524.top/US
178.253.49.6301 Moved Permanently 0 B IP 178.253.49.6:0
Analyzer Verdict Alert quad9 Sinkholed
GET /US HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 20 Sep 2022 20:00:36 GMT
location: /us
server-timing: total;dur=302;desc="Nuxt Server Time", dt_285;dur=412
set-cookie: SESSION=e5c3586ac6548a554796cc65620ef5c0; Path=/; HttpOnly; Secure; SameSite=Lax
lng=us; Path=/
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x283524.top/web-api/api/converslon/load
178.253.49.6200 OK 0 B URL HTTP/2 lite-1x283524.top/web-api/api/converslon/load
IP 178.253.49.6:0
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/api/converslon/load HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1920
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:38 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=28, dt_285;dur=35
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
lite-1x283524.top/web-api/external-api/config/getVideoAccessConfig
178.253.49.6200 OK 0 B URL HTTP/2 lite-1x283524.top/web-api/external-api/config/getVideoAccessConfig
IP 178.253.49.6:0
Analyzer Verdict Alert quad9 Sinkholed
GET /web-api/external-api/config/getVideoAccessConfig HTTP/1.1
Host: lite-1x283524.top
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Is-srv: false
Connection: keep-alive
Referer: https://lite-1x283524.top/us
Cookie: platform_type=desktop; auid=sv0xBmMqG+O+twJlCajiAg==; SESSION=e5c3586ac6548a554796cc65620ef5c0; lng=us; tzo=0; window_width=1280; is_rtl=1; fast_coupon=true; v3fr=1; _glhf=1663721816; che_g=d1957f3d-72fc-0ce7-72a5-00b37aa4fcdd
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Sep 2022 20:00:40 GMT
content-type: application/json
cache-control: no-cache, private
content-encoding: gzip
server-timing: p;dur=52, dt_285;dur=53
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
suphelper.com/widget/injector.js
104.16.43.72200 OK 0 B URL HTTP/2 suphelper.com/widget/injector.js
IP 104.16.43.72:0
GET /widget/injector.js HTTP/1.1
Host: suphelper.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://lite-1x283524.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Sep 2022 20:00:43 GMT
content-type: application/javascript; charset=UTF-8
x-dns-prefetch-control: off
strict-transport-security: max-age=15724800; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'strict-dynamic' 'nonce-c23ebb3e-55ba-4a53-bad2-fcf25491af5e' https://www.googletagmanager.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com; img-src 'self' https: data:; font-src 'self' https://fonts.gstatic.com data:; connect-src 'self' ws://localhost:8085 https://www.google-analytics.com https://www.googletagmanager.com https://stats.g.doubleclick.net https://mc.yandex.ru https://api.github.com http://192.168.208.23:11999 https://suphelper.com wss://suphelper.com *.suphelper.com https://suphelper.ru wss://suphelper.ru *.suphelper.ru https://cons.insystem.su wss://cons.insystem.su *.cons.insystem.su wss://chat.insystem.su https://chat.insystem.su *.chat.insystem.su; frame-src 'self' https://www.google.com https://www.google.com/recaptcha/; report-uri /widget/api/report-csp/
cache-control: public, max-age=300
last-modified: Fri, 09 Sep 2022 16:12:09 GMT
etag: W/"28d83-1832305d7a8"
vary: Accept-Encoding
cf-cache-status: HIT
age: 206
server: cloudflare
cf-ray: 74dd2621bc72990f-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2