| r3.o.lencr.org/ |  23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hasha2104f935c638b4767ca5ae0d738ef23 85c6af15af749be0ceeae6de17c36925b750f166 5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4204
Expires: Sun, 29 Jan 2023 15:11:37 GMT
Date: Sun, 29 Jan 2023 14:01:33 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3eb88dea4fe00db1182370e72683c3ab ca520abf1e91bfd2aef40c6a1270a911071e8922 d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4136
Expires: Sun, 29 Jan 2023 15:10:29 GMT
Date: Sun, 29 Jan 2023 14:01:33 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 13:35:37 GMT
content-type: application/json
age: 1556
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash03092d1a1bc7ac91ee342a1a7ab2a562 52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a 03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5681
Expires: Sun, 29 Jan 2023 15:36:14 GMT
Date: Sun, 29 Jan 2023 14:01:33 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: FlRKnszp9gJgLSr0kqApEYgygMIOMTFbrr0Z664SjvwDGPZ6KrTurksqKWJlbf1Lhp//e7P6UYhGKKQFfpywFg==
x-amz-request-id: KWXYCJRMCQM2HJ33
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 13:21:24 GMT
age: 2409
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 14:01:33 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| book.dypics.com/tags/search/kmvr%20145/page/9 |  188.114.97.1 | 301 Moved Permanently | 186 B |
URL HTTP/1.1book.dypics.com/tags/search/kmvr%20145/page/9 IP188.114.97.1:0
File typeHTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text Hasha9112553abe0e83c8e97d8411292e798 63c29cc88c25d206961c1d14632625f227a23431 9f6ba775173fff64f9ff4df21404ea6e724c606c4810f942978ba88c42fcbca8
GET /tags/search/kmvr%20145/page/9 HTTP/1.1
Host: book.dypics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 14:01:33 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://www.torrentkitty.lol/search/tags/search/kmvr 145/page/9
X-Powered-By: ASP.NET
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ja7dJxxHSxouRF0ZDPv62qcO0Fl9hf9MXecUGaGOPPq4GPgaQItl8hZ%2Fh98jvBoi4pIOazC1RxZjjfWGx6W71eUJM1Czt5hla%2BqXBNMt8tai2AGeBqmeo7W1%2BBHxiHLGQ3Y%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7912801e2bddb4eb-OSL
alt-svc: h2=":443"; ma=60
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 13:41:41 GMT
age: 1192
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash16a7b6a7128312e2f985d30df18c4487 6017bff79ffb525d9c7f9f32b999b74b5dc69602 663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2578
Expires: Sun, 29 Jan 2023 14:44:32 GMT
Date: Sun, 29 Jan 2023 14:01:34 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 34.216.206.159 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.216.206.159:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Vcfg2+Ta9XGeTfNd1pgk4Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GGDwt7SVYwqb8zEdFFzrflYxDME=
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdfb84426fed94988d5c90372baff059c f1c4740830034ff8a5759d59ae3f657ea524d083 d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11892
Expires: Sun, 29 Jan 2023 17:19:47 GMT
Date: Sun, 29 Jan 2023 14:01:35 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdfb84426fed94988d5c90372baff059c f1c4740830034ff8a5759d59ae3f657ea524d083 d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11892
Expires: Sun, 29 Jan 2023 17:19:47 GMT
Date: Sun, 29 Jan 2023 14:01:35 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdfb84426fed94988d5c90372baff059c f1c4740830034ff8a5759d59ae3f657ea524d083 d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11892
Expires: Sun, 29 Jan 2023 17:19:47 GMT
Date: Sun, 29 Jan 2023 14:01:35 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg IP34.120.237.76:0
Hashe01c11ea393a2ba6b848f3292f08c83f 751f0ece00d3451fed30d6646cf8a8e53a66c0b4 3c0e3d9b8ae623a639af84a3548dc7b296c34091ed319012d939b9e61550df59
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4jPbm4WufkUKm7ljLvpHrJUFhr-JQ_nl3iYfI5S8nTqEszFdUtz9EQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 05:24:09 GMT
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
age: 31046
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg | 34.120.237.76 | 200 OK | 5.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash57ff6665d99a17d06b75c8fe64c90ab3 05648eed6830a794aa7e30ba4da526ed4c45b0ca 728b809756a0faff1a55bb03f13f33e31518f321e50dd944a0267d585c09264c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: 8117f45b-926a-4cbe-b152-dae983bc3526
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOYdlG6XIAMF_vA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf3abd-7ce531f65f66ac3a73970841;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 01:56:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9qRYwsM8g7XZPY2E-9puCMAp7VKUvdIiK8jA0wr0XSpnMScoQYCwGw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:46:47 GMT
age: 58488
etag: "05648eed6830a794aa7e30ba4da526ed4c45b0ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd5ed99a9aed6f367efc5c9498ce87ff1 3123eb6f550c51fe17fc62eff943b3739e239a9b 536f45bf2eb41f7056df8b34964538005d6a0a4c6157def3fbdd9487f8c79027
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10168
x-amzn-requestid: fe58fe3c-dd23-4614-b5a2-e91ef68c2ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFOD7H-NIAMFcxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb907f-687fc51741d7ff97182d1955;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:13:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GEghrk0LlbdfqVAHey-W84Zk9XHT2PD268Vfxf85HEvil0Ra27YgPA==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:43:37 GMT
age: 37078
etag: "3123eb6f550c51fe17fc62eff943b3739e239a9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash10a6491e2c1dfde68c7cd7297e70700f d0f195319825a6d3e5e50ad15b2fcab27cb65896 4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 23:12:28 GMT
age: 53347
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg | 34.120.237.76 | 200 OK | 9.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3be81f83687ddb6c93d3ff3c09a9dba2 50a48e737310d3f31840db4301b25927fbcc12c5 e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 17:35:56 GMT
age: 73539
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg | 34.120.237.76 | 200 OK | 5.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4c77437e3a7361861aed8bfecbfe6bd6 fefd238c13c0fdfb7d964c90fcc8a8cbbf953034 282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: D2ZAelkDgsd0wjoOSoPRwTzhozs84_aIcgwU-QmbDrTnHztVD0VL_A==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 14:57:16 GMT
age: 83059
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash979ebdd6e2b03ffbe4daf702ab1f45e7 22520f4f4f4448aaf582eeae468df0d9b2a228e8 54a8812011ce0ade42121536d1eb87875030a5f75ef44ce55ffd82969fdcbbbb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54A8812011CE0ADE42121536D1EB87875030A5F75EF44CE55FFD82969FDCBBBB"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9164
Expires: Sun, 29 Jan 2023 16:34:19 GMT
Date: Sun, 29 Jan 2023 14:01:35 GMT
Connection: keep-alive
|
|
| charmshoist.com/90/56/63/90566380a88c4f754ae2676c3e590ba1.js | 192.243.61.225 | 200 OK | 21 kB |
URL HTTP/1.1charmshoist.com/90/56/63/90566380a88c4f754ae2676c3e590ba1.js IP192.243.61.225:0 ASN#39572 DataWeb Global Group B.V.
File typeHTML document, ASCII text, with very long lines (60129), with no line terminators Hash98c107f3ed31e6acfdc1e27b806df87f 157bba7bd5796929bd8792b30fe546af8d6101f1 8a8d90b9ce8ca8fdd6d859141d8e9ba790d1e4f27e7ef6968941fb9342fbd825
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /90/56/63/90566380a88c4f754ae2676c3e590ba1.js HTTP/1.1
Host: charmshoist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7246757b14c3100778ffe1709fb10902
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| charmshoist.com/26/ca/06/26ca065a5fb871c74739646a26f0622b.js | 192.243.61.225 | 200 OK | 13 kB |
URL HTTP/1.1charmshoist.com/26/ca/06/26ca065a5fb871c74739646a26f0622b.js IP192.243.61.225:0 ASN#39572 DataWeb Global Group B.V.
File typeASCII text, with very long lines (37111), with no line terminators Hash07977cc1c991e6f9eb5952d9519ad17e e9392ae42505d4a926880d6db422aa2cb2e5449d dcc1fed7b0bedbe03787874904f9357c86b7975317ec22b5b530d2cbc3ca36fe
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /26/ca/06/26ca065a5fb871c74739646a26f0622b.js HTTP/1.1
Host: charmshoist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 339ce307eac900d7a990c074d9463af2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashd3277d75c55a45de2a52adcc0c46c9e6 7d63d72d998722daba8a0c7f93cc73130a41c22c 4f2a86e601511f2090be90470119dec80f9409d41e8b6775974277a6cb0a6fcf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4F2A86E601511F2090BE90470119DEC80F9409D41E8B6775974277A6CB0A6FCF"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19467
Expires: Sun, 29 Jan 2023 19:26:03 GMT
Date: Sun, 29 Jan 2023 14:01:36 GMT
Connection: keep-alive
|
|
| accentneglectporter.com/80497e49a2c17fe3a1aff4077eee1810/invoke.js | 192.243.61.227 | 200 OK | 9.8 kB |
URL HTTP/1.1accentneglectporter.com/80497e49a2c17fe3a1aff4077eee1810/invoke.js IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
File typeexported SGML document, ASCII text, with very long lines (26941), with no line terminators Hash5225857acbdcfc73326eb8e926c69e0a db504a7d0474c8bad9f56f13f1044e734c2a0f57 7d9180066bbd850fdbdd2d9dd99f2d902df095bab511782f78cb19ce4ea7e7c9
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /80497e49a2c17fe3a1aff4077eee1810/invoke.js HTTP/1.1
Host: accentneglectporter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4d4f81950410d58d512fef0acc827bc9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| ocsp.sca1b.amazontrust.com/ | 54.230.245.110 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP54.230.245.110:0
Hash0e90c9d5521358d2754bbad686a2e9c1 013349b8f38535bae1e197d5d96d86d17d5a1ef0 47bb6aa901220aeab3800d1ea88eb456cfe3ea337f12c059d9549fa6bd8064ab
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 14:01:36 GMT
Last-Modified: Sun, 29 Jan 2023 13:42:32 GMT
Server: ECS (dcb/7F39)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XWxquNU6O27x8UFBVsd5E0dPg_EOOtLUSfLXyBB0Z82rL_XRHoTrCA==
Age: 1144
|
|
| simplewebanalysis.com/stats |  35.156.167.37 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP35.156.167.37:0
File typeASCII text, with no line terminators Hashef4eb28700023978bbf93c4c3ede6cbb 6a736d038b0c720ad2f83e094dd6d30afed06db5 39d43c1ca5d8d1898450c57fe5086bbb4d7f4a77dee1520c94c62283b85c429a
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:36 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.torrentkitty.lol
access-control-allow-credentials: true
set-cookie: uid_id2=51db644b-7516-4017-a52d-82e65946c955:1:1; expires=Wed, 26 Jan 2033 14:01:36 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ |  104.18.32.68 | 200 OK | 472 B |
IP104.18.32.68:0
Hashce143dfb1f16c1152ff16c28f9b9abbd 027f5562109f9d29ec9da37a536305236b1dbe0b 658ba2839035064f4c9a89cc05c10b33a1e3394cda6f23862d13a021e4363508
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:01:36 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 18:34:04 GMT
Expires: Fri, 03 Feb 2023 18:34:03 GMT
Etag: "027f5562109f9d29ec9da37a536305236b1dbe0b"
Cache-Control: max-age=447746,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 791280328b82b4f1-OSL
|
|
| simplewebanalysis.com/stats | 35.156.167.37 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP35.156.167.37:0
File typeASCII text, with no line terminators Hashef4eb28700023978bbf93c4c3ede6cbb 6a736d038b0c720ad2f83e094dd6d30afed06db5 39d43c1ca5d8d1898450c57fe5086bbb4d7f4a77dee1520c94c62283b85c429a
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: uid_id2=51db644b-7516-4017-a52d-82e65946c955:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:36 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.torrentkitty.lol
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| simplewebanalysis.com/stats | 35.156.167.37 | 200 OK | 40 B |
URL HTTP/2simplewebanalysis.com/stats IP35.156.167.37:0
File typeASCII text, with no line terminators Hashef4eb28700023978bbf93c4c3ede6cbb 6a736d038b0c720ad2f83e094dd6d30afed06db5 39d43c1ca5d8d1898450c57fe5086bbb4d7f4a77dee1520c94c62283b85c429a
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: uid_id2=51db644b-7516-4017-a52d-82e65946c955:1:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:36 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.torrentkitty.lol
access-control-allow-credentials: true
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hashda5465b0fe199e019dfd5e4ee9b1c6b1 f7f8496a831b27998145cd6fdde243fd2c4855f6 61a9655199c1204a3a0ba528a6ede66d866aaad74878f8cf735359b4c15a3103
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4020
Cache-Control: max-age=159519
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:01:36 GMT
Etag: "63d638ab-116"
Expires: Tue, 31 Jan 2023 10:20:15 GMT
Last-Modified: Sun, 29 Jan 2023 09:13:15 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 278
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 345 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashfe9f043829a5e5d593356b06e2ccd32d 5e77c92839918ba4506feedc700daf144976d62e d68aa5c4b46df86722d0cb059c7379b7ee7bf7a34d97351959032444d6830446
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D68AA5C4B46DF86722D0CB059C7379B7EE7BF7A34D97351959032444D6830446"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19742
Expires: Sun, 29 Jan 2023 19:30:38 GMT
Date: Sun, 29 Jan 2023 14:01:36 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashab7c061327e6055c81b5adb4534503e3 e7881809f7bc9e808ebaffb0bf5d74515d3c4798 cace1a6a8ec55404139c82ce8310c6df4f59d6363738167f4e49fe4910086875
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACE1A6A8EC55404139C82CE8310C6DF4F59D6363738167F4E49FE4910086875"
Last-Modified: Sun, 29 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11251
Expires: Sun, 29 Jan 2023 17:09:07 GMT
Date: Sun, 29 Jan 2023 14:01:36 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashcb05fe72cd5bb1f041e10afad86f98d3 c8a06f10b1c2e41a3bfb20037ee9535cc385c4d4 1b2bf7915ff10a3294887f50f050ef0125fa3e90d3e932322e5bba01c26d03c1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1B2BF7915FF10A3294887F50F050EF0125FA3E90D3E932322E5BBA01C26D03C1"
Last-Modified: Sun, 29 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11210
Expires: Sun, 29 Jan 2023 17:08:26 GMT
Date: Sun, 29 Jan 2023 14:01:36 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 345 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashfe9f043829a5e5d593356b06e2ccd32d 5e77c92839918ba4506feedc700daf144976d62e d68aa5c4b46df86722d0cb059c7379b7ee7bf7a34d97351959032444d6830446
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "D68AA5C4B46DF86722D0CB059C7379B7EE7BF7A34D97351959032444D6830446"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19741
Expires: Sun, 29 Jan 2023 19:30:38 GMT
Date: Sun, 29 Jan 2023 14:01:37 GMT
Connection: keep-alive
|
|
| solemnvine.com/pixel/purst?dl=0&th=0&sc=0&rs=3015&rd=3015&fd=1003&bv=22.10.v.9&tmpl=70 | 173.233.139.164 | 200 OK | 0 B |
URL HTTP/1.1solemnvine.com/pixel/purst?dl=0&th=0&sc=0&rs=3015&rd=3015&fd=1003&bv=22.10.v.9&tmpl=70 IP173.233.139.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /pixel/purst?dl=0&th=0&sc=0&rs=3015&rd=3015&fd=1003&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: solemnvine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:37 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| tragicbeyond.com/watch.260357079319.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2Fkmvr%2520145%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=51db644b-7516-4017-a52d-82e65946c955%3A1%3A1 | 173.233.137.36 | 307 Temporary Redirect | 0 B |
URL HTTP/1.1tragicbeyond.com/watch.260357079319.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2Fkmvr%2520145%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=51db644b-7516-4017-a52d-82e65946c955%3A1%3A1 IP173.233.137.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /watch.260357079319.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2Fkmvr%2520145%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=51db644b-7516-4017-a52d-82e65946c955%3A1%3A1 HTTP/1.1
Host: tragicbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:37 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.torrentkitty.lol
Access-Control-Allow-Origin: https://www.torrentkitty.lol
Access-Control-Allow-Credentials: true
Location: https://tragicbeyond.com/watch.260357079319.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2Fkmvr%2520145%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=51db644b-7516-4017-a52d-82e65946c955%3A1%3A1&shu=9ef48a2e9f09d063be8433319dc278df873b9aaf71f003d370636256d46082fd24724a62df0792e89fcd5ea9670c716b126ee1fb8082e756f0840348e03ba59ce1fe86fe989245c1009bcd9ac798a152c9f8c9902f0fefe276c62758b5881e23&pst=1675000957&rmtc=t
Set-Cookie: u_pl=17298897; expires=Mon, 30 Jan 2023 14:01:37 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.yrNaVbADocsr0--rWdwHifTUUfk4mLVz0FudA-B1VK0; expires=Sun, 29 Jan 2023 14:02:37 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9041feb8f72223cf34454f4ed1ab9cd6
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| tragicbeyond.com/watch.260357079319.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2Fkmvr%2520145%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=51db644b-7516-4017-a52d-82e65946c955%3A1%3A1&shu=9ef48a2e9f09d063be8433319dc278df873b9aaf71f003d370636256d46082fd24724a62df0792e89fcd5ea9670c716b126ee1fb8082e756f0840348e03ba59ce1fe86fe989245c1009bcd9ac798a152c9f8c9902f0fefe276c62758b5881e23&pst=1675000957&rmtc=t | 173.233.137.36 | 200 OK | 2.1 kB |
URL HTTP/1.1tragicbeyond.com/watch.260357079319.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2Fkmvr%2520145%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=51db644b-7516-4017-a52d-82e65946c955%3A1%3A1&shu=9ef48a2e9f09d063be8433319dc278df873b9aaf71f003d370636256d46082fd24724a62df0792e89fcd5ea9670c716b126ee1fb8082e756f0840348e03ba59ce1fe86fe989245c1009bcd9ac798a152c9f8c9902f0fefe276c62758b5881e23&pst=1675000957&rmtc=t IP173.233.137.36:0
File typeHTML document text\012- HTML document, ASCII text, with very long lines (2601) Hash548bf0dd623e91e001eaedbcc7358680 d58b9faf1ba39f6ed01a18578694571488e48ad9 ffe46e7192513657987fcae43cbb453a30116a65d8d25e42b0a0d2e8258cf411
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /watch.260357079319.js?key=80497e49a2c17fe3a1aff4077eee1810&kw=%5B%22tags%22%2C%22-%22%2C%22torrent%22%2C%22kitty%22%5D&refer=https%3A%2F%2Fwww.torrentkitty.lol%2Fsearch%2Ftags%2Fsearch%2Fkmvr%2520145%2Fpage%2F9&tz=0&dev=e&res=12.1055&uuid=51db644b-7516-4017-a52d-82e65946c955%3A1%3A1&shu=9ef48a2e9f09d063be8433319dc278df873b9aaf71f003d370636256d46082fd24724a62df0792e89fcd5ea9670c716b126ee1fb8082e756f0840348e03ba59ce1fe86fe989245c1009bcd9ac798a152c9f8c9902f0fefe276c62758b5881e23&pst=1675000957&rmtc=t HTTP/1.1
Host: tragicbeyond.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Referer: https://www.torrentkitty.lol/
Connection: keep-alive
Cookie: u_pl=17298897; ain=eyJhbGciOiJIUzI1NiJ9.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.yrNaVbADocsr0--rWdwHifTUUfk4mLVz0FudA-B1VK0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:37 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.torrentkitty.lol
Access-Control-Allow-Origin: https://www.torrentkitty.lol
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=51db644b-7516-4017-a52d-82e65946c955:1:1; expires=Sun, 05 Feb 2023 14:01:37 GMT; secure; SameSite=None
iprc99d257bcb572d3c1521d82928b1eb3a3=3570421; expires=Sun, 29 Jan 2023 18:01:37 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 30 Jan 2023 14:01:37 GMT; secure; SameSite=None
uncs=1; expires=Mon, 30 Jan 2023 14:01:37 GMT; secure; SameSite=None
pdhtkv32=true; expires=Mon, 30 Jan 2023 14:01:37 GMT; secure; SameSite=None
uncs32=1; expires=Mon, 30 Jan 2023 14:01:37 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3799f92ef065b6b36bbb40daaba2a855
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| secure.statcounter.com/counter/counter.js | 104.20.219.77 | 200 OK | 15 kB |
URL HTTP/2secure.statcounter.com/counter/counter.js IP104.20.219.77:0
File typeASCII text, with very long lines (43632), with no line terminators Hash7c3370918a440e7a5954deb0a641a957 527b6d595d59bb244c0af4ad147f4064bfef0cc1 2ab57a4bceafe9c148f4bf76271dccdce97db11c32ba7a95fcbdffc0e01a4ec1
GET /counter/counter.js HTTP/1.1
Host: secure.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:36 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 27 Jan 2023 16:43:55 GMT
etag: W/"63d3ff4b-aa70"
expires: Sun, 29 Jan 2023 18:37:00 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 26676
server: cloudflare
cf-ray: 79128033dd34b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashba712b809d1107138674cd304e041068 cb7ed5692720084e2b66e724712685d1d56dbe94 1624708856cbcf339b6acc2d31268b693af742aa1b0c699391dddbb09c493347
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1624708856CBCF339B6ACC2D31268B693AF742AA1B0C699391DDDBB09C493347"
Last-Modified: Sat, 28 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15163
Expires: Sun, 29 Jan 2023 18:14:20 GMT
Date: Sun, 29 Jan 2023 14:01:37 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashba712b809d1107138674cd304e041068 cb7ed5692720084e2b66e724712685d1d56dbe94 1624708856cbcf339b6acc2d31268b693af742aa1b0c699391dddbb09c493347
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1624708856CBCF339B6ACC2D31268B693AF742AA1B0C699391DDDBB09C493347"
Last-Modified: Sat, 28 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15163
Expires: Sun, 29 Jan 2023 18:14:20 GMT
Date: Sun, 29 Jan 2023 14:01:37 GMT
Connection: keep-alive
|
|
| solemnvine.com/sbar.json?key=26ca065a5fb871c74739646a26f0622b&uuid=51db644b-7516-4017-a52d-82e65946c955%3A1%3A1 | 173.233.139.164 | 200 OK | 3.6 kB |
URL HTTP/1.1solemnvine.com/sbar.json?key=26ca065a5fb871c74739646a26f0622b&uuid=51db644b-7516-4017-a52d-82e65946c955%3A1%3A1 IP173.233.139.164:0
File typeJSON data\012- , ASCII text, with very long lines (6129), with no line terminators Hashc4ea0aa42ff43c613ec428f5e49ab6ba 7b63e02e02b64d0f4649c630db1ab38f71b5ce8a a4cf377feab2ddc35bdcfc2d070f9857e81b7482d15561bc159842dab0bc64fd
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /sbar.json?key=26ca065a5fb871c74739646a26f0622b&uuid=51db644b-7516-4017-a52d-82e65946c955%3A1%3A1 HTTP/1.1
Host: solemnvine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:37 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.torrentkitty.lol
Access-Control-Allow-Origin: https://www.torrentkitty.lol
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17550729; expires=Mon, 30 Jan 2023 14:01:37 GMT; secure; SameSite=None
uid_id2=51db644b-7516-4017-a52d-82e65946c955:1:1; expires=Sun, 05 Feb 2023 14:01:37 GMT; secure; SameSite=None
pdhtkv=true; expires=Mon, 30 Jan 2023 14:01:37 GMT; secure; SameSite=None
uncs=1; expires=Mon, 30 Jan 2023 14:01:37 GMT; secure; SameSite=None
pdhtkv29=true; expires=Mon, 30 Jan 2023 14:01:37 GMT; secure; SameSite=None
uncs29=1; expires=Mon, 30 Jan 2023 14:01:37 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 886fc4ce25bd2366088cd3e031c2fa16
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg | 45.133.44.10 | 200 OK | 25 kB |
URL HTTP/2cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg IP45.133.44.10:0 ASN#39572 DataWeb Global Group B.V.
File typeJPEG image data, baseline, precision 8, 320x50, components 3\012- data Hashd465d02b90e928dfd9d9846e102a9dac 22f7333777bec813bd9a7b870913a2b79b6d2fe4 e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd
GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:37 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Tue, 31 Jan 2023 14:01:37 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashb9ca371a18b1afacc82e035f41dc2b86 8b4a87be43183e4f89e19ecac344915d60574950 8ac3da2f8ce052a3d27fee0dccc5712a55e917f9de8daff8db891d50249aba90
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8AC3DA2F8CE052A3D27FEE0DCCC5712A55E917F9DE8DAFF8DB891D50249ABA90"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8004
Expires: Sun, 29 Jan 2023 16:15:01 GMT
Date: Sun, 29 Jan 2023 14:01:37 GMT
Connection: keep-alive
|
|
| solemnvine.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSv6scVRS%2Bk8TGFGKwsVC2sFDwbWZmZ2Z3jRDyw4RgTEISDdjdX7PvurNzh3vv7Ox7pAgGJBbCptJy3rdJHmpQ8wcIMrGRYPFWUF7hsxN7wVp238LqgZlzzv1O8Z3vO5%2FslAfER0n3r72nt1WW0ZNx22%2B9fkvlQle2deVmK%2FDb%2FqnWLZUn0anWZPEz47cCP277b7QuSj7UJ0M%2F8P3AD1oXlJGpnpxcolDF437Q7vvtKGwHcYSJ%2BX9vSw%2BWehDjA3ICSsyf2%2FzpCRRvkI%2B%2BOy%2Ft0OnizXdGZUadNhiL3ffzYa6rHKN1mRoPab67moa2c0K%2BOAKd7642gB4%2FWGwApubE%2By0Ay3dXNMHGDw%2BZsgwyBxPHUY0byKyBog24vgsl9gjABa5cRT56dEWbim4donSBzsmxf%2F6Gqubk2O8vIR99czZTk9YNnZVO6dxiktZQkwZq0KAon8Jte1DVU3D3MZQgyEc1lNh%2FLQ4ES6KIbXTjINmI%2FKC7QeNQbPRCmcT9KOH9OF5Ko1QDlTbI5BTUeigXn%2FJQph7KwsNI7Ldo3E99v5uytNPpRZzzTofzuJeIWHSiXuqj5AvuU7hiCp5Nwc0dFOYOhur%2BXnwCpvwBdrOGFR6sIxiLGpUkqCxBRQkqRVA5gmpcPxSZDW39SGS2ZMEqh6vcqWfaDXboQ%2B0GMic7xQF5caGZd%2FznTzGU%2B60w4dRPYhqnrNcNeDfqdvpJlNAwSf0kDBmsqqHskeWm2wsD376PQu29cBGMNrBZA65OgJavgFazbuiDbs6ino%2Ft%2FFunjZG5GyrnttpuDKFrFO4Y3Ja3kx2Ql5fm9f88Csmfnf78s6t%2FnBIfgpsahanxkfqRYJDdm13XFXlwXVeWPLlaODVS23Rh7A1HnTz61btyq9JGXDpvp1%2Be4QtgUT6%2BKa27THOh8oElX59VQkhzQRsuyfeX7C3JrpV282xp8rK4fO3chUujwkhrlc4bULX3wW1wNSfPm%2BHyZF%2F96xyUaWDKGqPyGVkFlG7AizuwxZq91QQmW8%2BwwkNV1jMTsvVjpggyue4pq2H%2F07N1vWPvYWA8UHd3eahjU2Oc1aDZFLY8OnOFeXb6l84ywDJvxjLjPWCZye4fSmvVfkvGqZ9KP5Qs7bO0S33RT6M%2Bo%2F1AdllMAzg757%2FePvMvAAAA%2F%2F8BAAD%2F%2F3e3aBmKBAAA | 173.233.139.164 | 200 OK | 7 B |
URL HTTP/1.1solemnvine.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSv6scVRS%2Bk8TGFGKwsVC2sFDwbWZmZ2Z3jRDyw4RgTEISDdjdX7PvurNzh3vv7Ox7pAgGJBbCptJy3rdJHmpQ8wcIMrGRYPFWUF7hsxN7wVp238LqgZlzzv1O8Z3vO5%2FslAfER0n3r72nt1WW0ZNx22%2B9fkvlQle2deVmK%2FDb%2FqnWLZUn0anWZPEz47cCP277b7QuSj7UJ0M%2F8P3AD1oXlJGpnpxcolDF437Q7vvtKGwHcYSJ%2BX9vSw%2BWehDjA3ICSsyf2%2FzpCRRvkI%2B%2BOy%2Ft0OnizXdGZUadNhiL3ffzYa6rHKN1mRoPab67moa2c0K%2BOAKd7642gB4%2FWGwApubE%2By0Ay3dXNMHGDw%2BZsgwyBxPHUY0byKyBog24vgsl9gjABa5cRT56dEWbim4donSBzsmxf%2F6Gqubk2O8vIR99czZTk9YNnZVO6dxiktZQkwZq0KAon8Jte1DVU3D3MZQgyEc1lNh%2FLQ4ES6KIbXTjINmI%2FKC7QeNQbPRCmcT9KOH9OF5Ko1QDlTbI5BTUeigXn%2FJQph7KwsNI7Ldo3E99v5uytNPpRZzzTofzuJeIWHSiXuqj5AvuU7hiCp5Nwc0dFOYOhur%2BXnwCpvwBdrOGFR6sIxiLGpUkqCxBRQkqRVA5gmpcPxSZDW39SGS2ZMEqh6vcqWfaDXboQ%2B0GMic7xQF5caGZd%2FznTzGU%2B60w4dRPYhqnrNcNeDfqdvpJlNAwSf0kDBmsqqHskeWm2wsD376PQu29cBGMNrBZA65OgJavgFazbuiDbs6ino%2Ft%2FFunjZG5GyrnttpuDKFrFO4Y3Ja3kx2Ql5fm9f88Csmfnf78s6t%2FnBIfgpsahanxkfqRYJDdm13XFXlwXVeWPLlaODVS23Rh7A1HnTz61btyq9JGXDpvp1%2Be4QtgUT6%2BKa27THOh8oElX59VQkhzQRsuyfeX7C3JrpV282xp8rK4fO3chUujwkhrlc4bULX3wW1wNSfPm%2BHyZF%2F96xyUaWDKGqPyGVkFlG7AizuwxZq91QQmW8%2BwwkNV1jMTsvVjpggyue4pq2H%2F07N1vWPvYWA8UHd3eahjU2Oc1aDZFLY8OnOFeXb6l84ywDJvxjLjPWCZye4fSmvVfkvGqZ9KP5Qs7bO0S33RT6M%2Bo%2F1AdllMAzg757%2FePvMvAAAA%2F%2F8BAAD%2F%2F3e3aBmKBAAA IP173.233.139.164:0
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSv6scVRS%2Bk8TGFGKwsVC2sFDwbWZmZ2Z3jRDyw4RgTEISDdjdX7PvurNzh3vv7Ox7pAgGJBbCptJy3rdJHmpQ8wcIMrGRYPFWUF7hsxN7wVp238LqgZlzzv1O8Z3vO5%2FslAfER0n3r72nt1WW0ZNx22%2B9fkvlQle2deVmK%2FDb%2FqnWLZUn0anWZPEz47cCP277b7QuSj7UJ0M%2F8P3AD1oXlJGpnpxcolDF437Q7vvtKGwHcYSJ%2BX9vSw%2BWehDjA3ICSsyf2%2FzpCRRvkI%2B%2BOy%2Ft0OnizXdGZUadNhiL3ffzYa6rHKN1mRoPab67moa2c0K%2BOAKd7642gB4%2FWGwApubE%2By0Ay3dXNMHGDw%2BZsgwyBxPHUY0byKyBog24vgsl9gjABa5cRT56dEWbim4donSBzsmxf%2F6Gqubk2O8vIR99czZTk9YNnZVO6dxiktZQkwZq0KAon8Jte1DVU3D3MZQgyEc1lNh%2FLQ4ES6KIbXTjINmI%2FKC7QeNQbPRCmcT9KOH9OF5Ko1QDlTbI5BTUeigXn%2FJQph7KwsNI7Ldo3E99v5uytNPpRZzzTofzuJeIWHSiXuqj5AvuU7hiCp5Nwc0dFOYOhur%2BXnwCpvwBdrOGFR6sIxiLGpUkqCxBRQkqRVA5gmpcPxSZDW39SGS2ZMEqh6vcqWfaDXboQ%2B0GMic7xQF5caGZd%2FznTzGU%2B60w4dRPYhqnrNcNeDfqdvpJlNAwSf0kDBmsqqHskeWm2wsD376PQu29cBGMNrBZA65OgJavgFazbuiDbs6ino%2Ft%2FFunjZG5GyrnttpuDKFrFO4Y3Ja3kx2Ql5fm9f88Csmfnf78s6t%2FnBIfgpsahanxkfqRYJDdm13XFXlwXVeWPLlaODVS23Rh7A1HnTz61btyq9JGXDpvp1%2Be4QtgUT6%2BKa27THOh8oElX59VQkhzQRsuyfeX7C3JrpV282xp8rK4fO3chUujwkhrlc4bULX3wW1wNSfPm%2BHyZF%2F96xyUaWDKGqPyGVkFlG7AizuwxZq91QQmW8%2BwwkNV1jMTsvVjpggyue4pq2H%2F07N1vWPvYWA8UHd3eahjU2Oc1aDZFLY8OnOFeXb6l84ywDJvxjLjPWCZye4fSmvVfkvGqZ9KP5Qs7bO0S33RT6M%2Bo%2F1AdllMAzg757%2FePvMvAAAA%2F%2F8BAAD%2F%2F3e3aBmKBAAA HTTP/1.1
Host: solemnvine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=51db644b-7516-4017-a52d-82e65946c955:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:37 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e1d48230d15ff68f7be3182991f6ae27
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash5a8c7d643345c758c0a3783247673240 1e1a992fd5791306b0c08c374c1183f1dd4bc014 b39ebd5c6d18a8c27756a62119d34ed6f0269751c89ed7a9ba9069ed11f10b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B39EBD5C6D18A8C27756A62119D34ED6F0269751C89ED7A9BA9069ED11F10B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1624
Expires: Sun, 29 Jan 2023 14:28:41 GMT
Date: Sun, 29 Jan 2023 14:01:37 GMT
Connection: keep-alive
|
|
| unseenreport.com/pxf.gif?uuid=51db644b-7516-4017-a52d-82e65946c955&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=90566380a88c4f754ae2676c3e590ba1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14 | 192.243.61.227 | 200 OK | 1 B |
URL HTTP/1.1unseenreport.com/pxf.gif?uuid=51db644b-7516-4017-a52d-82e65946c955&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=90566380a88c4f754ae2676c3e590ba1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14 IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /pxf.gif?uuid=51db644b-7516-4017-a52d-82e65946c955&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=90566380a88c4f754ae2676c3e590ba1&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:37 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: df4167b381192d967e85fefd4b192b5c
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| unseenreport.com/pxf.gif?uuid=51db644b-7516-4017-a52d-82e65946c955&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=26ca065a5fb871c74739646a26f0622b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14 | 192.243.61.227 | 200 OK | 1 B |
URL HTTP/1.1unseenreport.com/pxf.gif?uuid=51db644b-7516-4017-a52d-82e65946c955&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=26ca065a5fb871c74739646a26f0622b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14 IP192.243.61.227:0 ASN#39572 DataWeb Global Group B.V.
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /pxf.gif?uuid=51db644b-7516-4017-a52d-82e65946c955&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=26ca065a5fb871c74739646a26f0622b&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=14 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:37 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9a409f0068655698d0522060ee9c0c75
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| banquetunarmedgrater.com/advertisers.js | 173.233.137.60 | 200 OK | 0 B |
URL HTTP/1.1banquetunarmedgrater.com/advertisers.js IP173.233.137.60:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:37 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dc6c2fe4a7383d6102c3e333baafb6b9
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 345 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe3b8a8bc98172e8a530326f7d16570cd 4555b6600b5d18b4e5850a756fb47ead0e5c486e 12061f433c479a860c65363d2243aba95ad34ac6664e84c5c5ed9a2d8c343f8c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12061F433C479A860C65363D2243ABA95AD34AC6664E84C5C5ED9A2D8C343F8C"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2989
Expires: Sun, 29 Jan 2023 14:51:26 GMT
Date: Sun, 29 Jan 2023 14:01:37 GMT
Connection: keep-alive
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 345 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe3b8a8bc98172e8a530326f7d16570cd 4555b6600b5d18b4e5850a756fb47ead0e5c486e 12061f433c479a860c65363d2243aba95ad34ac6664e84c5c5ed9a2d8c343f8c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12061F433C479A860C65363D2243ABA95AD34AC6664E84C5C5ED9A2D8C343F8C"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2989
Expires: Sun, 29 Jan 2023 14:51:26 GMT
Date: Sun, 29 Jan 2023 14:01:37 GMT
Connection: keep-alive
|
|
| cdn.cloudimagesb.com/si/62/99/91/6299919f2727e6f79b6f7ad60ebd36aa/1667590484.png | 45.133.44.10 | 200 OK | 33 kB |
URL HTTP/2cdn.cloudimagesb.com/si/62/99/91/6299919f2727e6f79b6f7ad60ebd36aa/1667590484.png IP45.133.44.10:0 ASN#39572 DataWeb Global Group B.V.
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Hash2cb2500acb00f247ef19403c3a0f89e1 7c57e8b84b2bb0003810ffae7a14e24869155464 7efcd5082673b787603d2a0b8d768fb26807cf2ab79771a69886a916d0cda3ce
GET /si/62/99/91/6299919f2727e6f79b6f7ad60ebd36aa/1667590484.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:37 GMT
content-type: image/png
content-length: 32763
server: nginx/1.17.6
last-modified: Fri, 04 Nov 2022 19:34:52 GMT
etag: "6365695c-7ffb"
expires: Tue, 31 Jan 2023 14:01:37 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash8c630e9bbc930d1c367efa81b67be3f7 ec536695531d40a813d99a06271c7c2d698d51d3 39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:01:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash8c630e9bbc930d1c367efa81b67be3f7 ec536695531d40a813d99a06271c7c2d698d51d3 39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:01:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 345 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashe3b8a8bc98172e8a530326f7d16570cd 4555b6600b5d18b4e5850a756fb47ead0e5c486e 12061f433c479a860c65363d2243aba95ad34ac6664e84c5c5ed9a2d8c343f8c
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "12061F433C479A860C65363D2243ABA95AD34AC6664E84C5C5ED9A2D8C343F8C"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2989
Expires: Sun, 29 Jan 2023 14:51:26 GMT
Date: Sun, 29 Jan 2023 14:01:37 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/style.css | 172.64.166.9 | 200 OK | 2.4 kB |
URL HTTP/2cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/style.css IP172.64.166.9:0
Hash031257d17be871c95918dbc736e9c519 a3b06f646a9cb955aef5813271fd312de156309e e39777c94d1ec1aca5246b563bc52e5c8729ec1141e68d891ff9e9c2d7808294
GET /sb/ssp/utility/social-media/instagram/new/4/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:38 GMT
content-type: text/css
last-modified: Fri, 30 Sep 2022 09:41:34 GMT
etag: W/"6336b9ce-1dda"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bk9SPoJxrb5KzYF1dByCao%2BUOjtP6tVoVJDxV8JmjCkvc%2BU0cTlMs0WxK%2BWSYH0cgu2poCNQTfEDKr9HsejL%2FJvwil9XT%2BFa6dJ1TGUHnmhE5emf8Ba8AZrriQ6uXCztNFFEPMd8%2FygX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7912803b8cb47200-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 19:33:54 GMT
expires: Thu, 25 Jan 2024 19:33:54 GMT
cache-control: public, max-age=31536000
age: 325664
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Hashe9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 13:09:06 GMT
expires: Wed, 24 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 435152
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| solemnvine.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSu3o0X9yAGLx6UOXhQMJPunu6eGSMsm12zBNck7K4GvFVXdU%2FK6elqqqqnJ2EPwQVZD8LkpMfON8kGdVH3BwjS60WCh4yg5GC8iXfBs8xkYPRB93uvvnf43ve9Tw7zC2Ijp%2Bdb78k9kSR02a%2Fbtde3RcploWsb92uOXbdXatsiDbyV2mDyU%2F23HNuv22%2FUbkesK5dd27Ftx3Zqa0JFsRwsT1GI7EnbqbftuufWHd%2FDQP2%2F17kFTS3w%2FgVZhODj53Z%2BegrBKqS9725Fumtk9uY7vTyhRir0%2Bcn7aTeVRYrevIyVhTg9mU1D6jEhX1yBTE9mG0D2jyYbIBRjYv3mIExPZjQR9o8vmYYJohQhv4aiXyFKKghagcmHEPyMAIxjYxNp7%2FGGVAXdvUTpBB2ThX%2F%2BhijGZOH3l5D2vllNxKB2Tya5ETLVGMQlxKCC6FTI8mcwexZE8QzMfAzBCdJeCcHPX%2FMdHgaeFy41fSdY8mynuUR9ly%2B13Cjw217A2r4%2FlUaICiKukERDUG0hn3zCQh5byDMLPX5eo347tu1mHMaNRstjjDUajPmtgPu84bViGzmbcB%2FCZEOwZAim9pGpfXTFwZm%2FCJX%2FAL1TQnML2hD0eYkiIig0QUEJCkFQGIKiXx7zRLu6fMwTnYfOLLuz3ChH0nQO6bE0nSglh9kFeXGimXXt50%2FRjc5rbsCoHfjUj8NW02FNr9loB15A3SC2A9cNoUUJoa9MN92bGPj2ATJx9sJthLSCTiowsQiavwJajJquDboz8lo29tJvjVQqSk1XGLNbN31wWSIzCzC71mFyQV6emtf%2B8yoidnr98882%2F1jhH4KpEpkq8ZH4kaCTPBrdlQU5uisLTZ5uZkb0xB6dGHvPUBNd%2FerdaLeQiq%2Ff0sMvb7AJMCmf3I%2B0uUNTLtKOJl%2BvCs4jtSYVi8j363o7CrdyvbOaqzTP7mzdXFvvZSrSWsi0AhVnHzwAE2PyvOpOT%2FbVv25CqAoqL9HLT8ksIGQFlu1DZ3P2WhKoZD4TZhaKvBwpN5w%2FJoIgieY9DUvo%2F%2FThvD7Uj9BRFqh5OD3UvirRT0rQZAidXx2ZTJ1e%2F6UxDYSJNQoTZR2FiUoOLqXV4rzmO17UCltNxnkYMe403UarYdsu516zHTltGD1mvz648S8AAAD%2F%2FwEAAP%2F%2FY7%2Fm%2F4oEAAA%3D | 173.233.139.164 | 200 OK | 7 B |
URL HTTP/1.1solemnvine.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSu3o0X9yAGLx6UOXhQMJPunu6eGSMsm12zBNck7K4GvFVXdU%2FK6elqqqqnJ2EPwQVZD8LkpMfON8kGdVH3BwjS60WCh4yg5GC8iXfBs8xkYPRB93uvvnf43ve9Tw7zC2Ijp%2Bdb78k9kSR02a%2Fbtde3RcploWsb92uOXbdXatsiDbyV2mDyU%2F23HNuv22%2FUbkesK5dd27Ftx3Zqa0JFsRwsT1GI7EnbqbftuufWHd%2FDQP2%2F17kFTS3w%2FgVZhODj53Z%2BegrBKqS9725Fumtk9uY7vTyhRir0%2Bcn7aTeVRYrevIyVhTg9mU1D6jEhX1yBTE9mG0D2jyYbIBRjYv3mIExPZjQR9o8vmYYJohQhv4aiXyFKKghagcmHEPyMAIxjYxNp7%2FGGVAXdvUTpBB2ThX%2F%2BhijGZOH3l5D2vllNxKB2Tya5ETLVGMQlxKCC6FTI8mcwexZE8QzMfAzBCdJeCcHPX%2FMdHgaeFy41fSdY8mynuUR9ly%2B13Cjw217A2r4%2FlUaICiKukERDUG0hn3zCQh5byDMLPX5eo347tu1mHMaNRstjjDUajPmtgPu84bViGzmbcB%2FCZEOwZAim9pGpfXTFwZm%2FCJX%2FAL1TQnML2hD0eYkiIig0QUEJCkFQGIKiXx7zRLu6fMwTnYfOLLuz3ChH0nQO6bE0nSglh9kFeXGimXXt50%2FRjc5rbsCoHfjUj8NW02FNr9loB15A3SC2A9cNoUUJoa9MN92bGPj2ATJx9sJthLSCTiowsQiavwJajJquDboz8lo29tJvjVQqSk1XGLNbN31wWSIzCzC71mFyQV6emtf%2B8yoidnr98882%2F1jhH4KpEpkq8ZH4kaCTPBrdlQU5uisLTZ5uZkb0xB6dGHvPUBNd%2FerdaLeQiq%2Ff0sMvb7AJMCmf3I%2B0uUNTLtKOJl%2BvCs4jtSYVi8j363o7CrdyvbOaqzTP7mzdXFvvZSrSWsi0AhVnHzwAE2PyvOpOT%2FbVv25CqAoqL9HLT8ksIGQFlu1DZ3P2WhKoZD4TZhaKvBwpN5w%2FJoIgieY9DUvo%2F%2FThvD7Uj9BRFqh5OD3UvirRT0rQZAidXx2ZTJ1e%2F6UxDYSJNQoTZR2FiUoOLqXV4rzmO17UCltNxnkYMe403UarYdsu516zHTltGD1mvz648S8AAAD%2F%2FwEAAP%2F%2FY7%2Fm%2F4oEAAA%3D IP173.233.139.164:0
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSQWskRRSu3o0X9yAGLx6UOXhQMJPunu6eGSMsm12zBNck7K4GvFVXdU%2FK6elqqqqnJ2EPwQVZD8LkpMfON8kGdVH3BwjS60WCh4yg5GC8iXfBs8xkYPRB93uvvnf43ve9Tw7zC2Ijp%2Bdb78k9kSR02a%2Fbtde3RcploWsb92uOXbdXatsiDbyV2mDyU%2F23HNuv22%2FUbkesK5dd27Ftx3Zqa0JFsRwsT1GI7EnbqbftuufWHd%2FDQP2%2F17kFTS3w%2FgVZhODj53Z%2BegrBKqS9725Fumtk9uY7vTyhRir0%2Bcn7aTeVRYrevIyVhTg9mU1D6jEhX1yBTE9mG0D2jyYbIBRjYv3mIExPZjQR9o8vmYYJohQhv4aiXyFKKghagcmHEPyMAIxjYxNp7%2FGGVAXdvUTpBB2ThX%2F%2BhijGZOH3l5D2vllNxKB2Tya5ETLVGMQlxKCC6FTI8mcwexZE8QzMfAzBCdJeCcHPX%2FMdHgaeFy41fSdY8mynuUR9ly%2B13Cjw217A2r4%2FlUaICiKukERDUG0hn3zCQh5byDMLPX5eo347tu1mHMaNRstjjDUajPmtgPu84bViGzmbcB%2FCZEOwZAim9pGpfXTFwZm%2FCJX%2FAL1TQnML2hD0eYkiIig0QUEJCkFQGIKiXx7zRLu6fMwTnYfOLLuz3ChH0nQO6bE0nSglh9kFeXGimXXt50%2FRjc5rbsCoHfjUj8NW02FNr9loB15A3SC2A9cNoUUJoa9MN92bGPj2ATJx9sJthLSCTiowsQiavwJajJquDboz8lo29tJvjVQqSk1XGLNbN31wWSIzCzC71mFyQV6emtf%2B8yoidnr98882%2F1jhH4KpEpkq8ZH4kaCTPBrdlQU5uisLTZ5uZkb0xB6dGHvPUBNd%2FerdaLeQiq%2Ff0sMvb7AJMCmf3I%2B0uUNTLtKOJl%2BvCs4jtSYVi8j363o7CrdyvbOaqzTP7mzdXFvvZSrSWsi0AhVnHzwAE2PyvOpOT%2FbVv25CqAoqL9HLT8ksIGQFlu1DZ3P2WhKoZD4TZhaKvBwpN5w%2FJoIgieY9DUvo%2F%2FThvD7Uj9BRFqh5OD3UvirRT0rQZAidXx2ZTJ1e%2F6UxDYSJNQoTZR2FiUoOLqXV4rzmO17UCltNxnkYMe403UarYdsu516zHTltGD1mvz648S8AAAD%2F%2FwEAAP%2F%2FY7%2Fm%2F4oEAAA%3D HTTP/1.1
Host: solemnvine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=51db644b-7516-4017-a52d-82e65946c955:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:38 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 27726eb85eea3763d35c6feede6ba977
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash8cf65fcdafa84b63cf7005fe57927fcb 3f7d163a96e7f00eb2de9828624ec46e22b4b40a dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:01:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| solemnvine.com/pixel/sbs?c=1 | 173.233.139.164 | 200 OK | 0 B |
URL HTTP/1.1solemnvine.com/pixel/sbs?c=1 IP173.233.139.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| quad9 | Sinkholed | |
GET /pixel/sbs?c=1 HTTP/1.1
Host: solemnvine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Cookie: u_pl=17550729; uid_id2=51db644b-7516-4017-a52d-82e65946c955:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sun, 29 Jan 2023 14:01:38 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/img/close.svg | 172.64.166.9 | 200 OK | 0 B |
URL HTTP/2cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/img/close.svg IP172.64.166.9:0
GET /sb/ssp/utility/social-media/instagram/new/4/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:37 GMT
content-type: image/svg+xml
last-modified: Wed, 28 Sep 2022 21:49:43 GMT
etag: W/"6334c177-52a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 6480644
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z1CX1gD3jsyah%2Fpo3AX11VL1GOc%2B1cTOD6tRFv2qTU6NyDidiGKO3C1AhaAA5UcnGQB25FUrFn2c%2FxboBUFeDnLcPAOQhzrebCXRSZusXrtR8hBVFvqCnBQBv3iphmZb7Y4PGlVCgv68"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7912803bdb1073f3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/js/script.js | 172.64.166.9 | 200 OK | 0 B |
URL HTTP/2cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/js/script.js IP172.64.166.9:0
GET /sb/ssp/utility/social-media/instagram/new/4/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:38 GMT
content-type: application/javascript
last-modified: Mon, 26 Sep 2022 10:05:24 GMT
etag: W/"63317964-1bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zoD5SZYAW1PnCitZlsGHMWA2EbRbq9ONXiade0xMxSEryGxx1dqc%2FqNQ1LnpxJjhhnVokpyKUZm2vI6E1zYUgUaZmdsrmn3MTBa8C9MB%2F1BL%2Bi2eLRvkG4u8kOUcgPOgc4yT5pcg3kEj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7912803b8cab7200-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/animate.css | 172.64.166.9 | 200 OK | 0 B |
URL HTTP/2cdn.creative-bars1.com/sb/ssp/utility/social-media/instagram/new/4/css/animate.css IP172.64.166.9:0
GET /sb/ssp/utility/social-media/instagram/new/4/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:38 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 10:05:22 GMT
etag: W/"63317962-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B%2BipaePbw0%2F6G7j7m%2B9flJJZjOsqI4AjZJk%2BXympPzsOu2KIc9fS9FJb6AxFq55ztdCN%2Bsx%2FrqQ76rfYVTqMaTT5%2FrAQMCkoxcGVrRucQYlnJfJ99qR6Ke6h7D18%2BrsuaWKY%2BkpcvYHb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7912803b8cba7200-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.torrentkitty.lol/search/tags/search/kmvr%20145/page/9 | 188.114.97.1 | 200 OK | 0 B |
URL HTTP/2www.torrentkitty.lol/search/tags/search/kmvr%20145/page/9 IP188.114.97.1:0
GET /search/tags/search/kmvr%20145/page/9 HTTP/1.1
Host: www.torrentkitty.lol
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:35 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: max-age=14400, must-revalidate
pragma: no-cache
cf-cache-status: MISS
last-modified: Sun, 29 Jan 2023 14:01:35 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7hjjpdkLuFqqrFLN25hn5qHxmKsbptUOZVzBBn5lJtE10EHvupUOIs12L3Oc7KHthVdQP8zy%2FYjMLmYi2mh7Icsy4D%2FjZTSRkTmVZQZwqp5wSZUO01r6Hb4dXRyu7%2BdL8ap1IkJI1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79128022ece9b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.barscreative1.com/sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html | 45.133.44.4 | 200 OK | 0 B |
URL HTTP/2cdn.barscreative1.com/sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html IP45.133.44.4:0 ASN#39572 DataWeb Global Group B.V.
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /sb/au/d3/55/fb/d355fb06fa4f4907609b7d285fa07f7a/1664530003.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:37 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Fri, 30 Sep 2022 09:26:48 GMT
etag: W/"6336b658-497"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Sun, 29 Jan 2023 15:01:37 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| www.cloudflare.com/cdn-cgi/trace | 104.16.124.96 | 200 OK | 0 B |
URL HTTP/2www.cloudflare.com/cdn-cgi/trace IP104.16.124.96:0
GET /cdn-cgi/trace HTTP/1.1
Host: www.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:36 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 791280346eccb50f-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| friendshipmale.com/sfp.js | 104.21.234.92 | 200 OK | 0 B |
URL HTTP/2friendshipmale.com/sfp.js IP104.21.234.92:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:36 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: fc2dbd01ad9324716f941c61755089a8
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sun, 29 Jan 2023 14:01:36 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gJoGghqY8Om%2BLEWSARz7uqspplZ8huNRH38ab7IiKeyaslXvfOD4QVkWA3ES8F%2F7EHkMhQhbt74ArrprP59hkJw%2BzjT85Nm9q96UdaTQdzFXY9cu4vvqck%2FjV98Tg%2FObsEYBZXU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79128034edc6f40f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:0
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 14:01:37 GMT
date: Sun, 29 Jan 2023 14:01:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| c.statcounter.com/t.php?sc_project=10571718&u1=CA6FEC1432264F35C02AC9DBD08BE91E&java=1&security=6b4a9073&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.torrentkitty.lol/search/tags/search/kmvr%2520145/page/9&t=tags%20-%20Torrent%20Kitty&invisible=1&sc_rum_e_s=3575&sc_rum_e_e=3581&sc_rum_f_s=0&sc_rum_f_e=3567&get_config=true | 104.20.219.77 | 200 OK | 0 B |
URL HTTP/2c.statcounter.com/t.php?sc_project=10571718&u1=CA6FEC1432264F35C02AC9DBD08BE91E&java=1&security=6b4a9073&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.torrentkitty.lol/search/tags/search/kmvr%2520145/page/9&t=tags%20-%20Torrent%20Kitty&invisible=1&sc_rum_e_s=3575&sc_rum_e_e=3581&sc_rum_f_s=0&sc_rum_f_e=3567&get_config=true IP104.20.219.77:0
GET /t.php?sc_project=10571718&u1=CA6FEC1432264F35C02AC9DBD08BE91E&java=1&security=6b4a9073&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.torrentkitty.lol/search/tags/search/kmvr%2520145/page/9&t=tags%20-%20Torrent%20Kitty&invisible=1&sc_rum_e_s=3575&sc_rum_e_e=3581&sc_rum_f_s=0&sc_rum_f_e=3567&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.torrentkitty.lol
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:38 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc10571718.1675000898.0; SameSite=None; Secure; Expires=Friday, 28-Jan-2028 22:01:38 HKT; Path=/; Domain=.statcounter.com
is_visitor_unique=1675000898879980617; SameSite=None; Secure; Expires=Tuesday, 28-Jan-2025 22:01:38 HKT; Path=/; Domain=.statcounter.com
access-control-allow-origin: https://www.torrentkitty.lol
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7912803cda1db4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| get.geojs.io/v1/ip/geo.js | 172.67.70.233 | 200 OK | 0 B |
URL HTTP/2get.geojs.io/v1/ip/geo.js IP172.67.70.233:0
GET /v1/ip/geo.js HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.torrentkitty.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 14:01:35 GMT
content-type: application/javascript; charset=utf-8
x-request-id: 22fae25c7dad6045f306cc5f1db42ae1-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4gS37xAhXGrCTF3e1Zn%2B8FiwEC%2F1Oy%2FHuCGNvfGJpvTtk9hphAvwX9SMMmKDacQbiv5g9X8jyxPGqn0TMnXOctIakCRB7IJu8sawF7AN6R%2BSjOqHfv%2B661W8cV43fA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7912802ab9abb51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|