r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4cbb89840b57466fcbc0b31305c9dc47
c2c08a7a243a3f7972e8068c448488cac6d2519f
5f871ffd142470f132fed1c93f5f1a7fe6a5ecc3b4311d3d47555fce1d9a35f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5F871FFD142470F132FED1C93F5F1A7FE6A5ECC3B4311D3D47555FCE1D9A35F1"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10291
Expires: Mon, 19 Dec 2022 10:53:20 GMT
Date: Mon, 19 Dec 2022 08:01:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2039a1dda99e075b82840608771d2326
e89713a35b312f3b87fbeaad98f03fddecbf77ce
aae78c754635e9833fa6c231d775bddc82add02f9ce3197a0b260a0806e708c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AAE78C754635E9833FA6C231D775BDDC82ADD02F9CE3197A0B260A0806E708C3"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9695
Expires: Mon, 19 Dec 2022 10:43:24 GMT
Date: Mon, 19 Dec 2022 08:01:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 19 Dec 2022 07:45:36 GMT
content-type: application/json
age: 973
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cf03270e3476f7482a2cc7ddc6a9e857
ab70d5ee87b01e0601f8e518bf36f97c8ceeba9a
43a4e796860a1481636dac103488cadc68c261d13cfe835d273efc368e569f97
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43A4E796860A1481636DAC103488CADC68C261D13CFE835D273EFC368E569F97"
Last-Modified: Sun, 18 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7804
Expires: Mon, 19 Dec 2022 10:11:53 GMT
Date: Mon, 19 Dec 2022 08:01:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kdnoAzj+ncIOeLDMWH5UGelgkzIiJwrHDDtlp8rA8mnBx74wdYbarKl5CyYy8O4BBzIV3Eozpyc=
x-amz-request-id: 2N9V1S7R1KF76GZC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 19 Dec 2022 07:28:56 GMT
age: 1973
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.subtitlist.com/subtitles/rick-and-morty-sixth-season/brazillian-portuguese/2882452
104.21.61.43301 Moved Permanently 694 B URL HTTP/1.1 www.subtitlist.com/subtitles/rick-and-morty-sixth-season/brazillian-portuguese/2882452
IP 104.21.61.43:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash c9e760b83a4d479f53877a4a9c81e1c6
c8fe2c0c0d61eb4ff3dba7799196b899c7359baa
75d9c9b24b6b7a51cddbd2b86a7b6571b69c1bd1ffa5b92d6da92f125f68e5d7
GET /subtitles/rick-and-morty-sixth-season/brazillian-portuguese/2882452 HTTP/1.1
Host: www.subtitlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 19 Dec 2022 08:01:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
location: https://www.subtitlist.com/subtitles/rick-and-morty-sixth-season/brazillian-portuguese/2882452
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LE%2BPDLlVxrltVyc9xL%2FJYkvy0z7IUpJF6hd9nCPHG%2FDnjgngoZQNQHwygId02gDFg1A9Kj1h90wzr696hUPIV%2FYRNp5XkIpLgb5Vkdknvy3QLy8hDxQFBXCZkV5yt%2BDVvCRQoh8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77be9ccd6866fab8-OSL
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Dec 2022 08:01:49 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 19 Dec 2022 07:08:01 GMT
age: 3229
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bc27cdcd6c42d7f8eece6c074bc452f
ff1234b58f7381f51f9082c1ef4894b1ac5700ff
672fc3b7ba7ee7a8b376c73a86a5bab00b1a1aead54c3ca64c0bff83d831348e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4740
Cache-Control: max-age=95041
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:50 GMT
Etag: "639ed82b-1d7"
Expires: Tue, 20 Dec 2022 10:25:51 GMT
Last-Modified: Sun, 18 Dec 2022 09:06:51 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.37.79.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.37.79.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NYTI6BzV5GzpRxIzoerPOA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sjxlQdnGR3nFTjxlp68SbpKyPWA=
ocsp.digicert.com/
93.184.220.29200 OK 4.2 kB IP 93.184.220.29:0
File type gzip compressed data, from Unix\012- data
Hash 265d56508244a0d1510b570f75c979e4
8473f663bade431015319d4fe36cff49ce178c34
2a1d6919f3517a964a55136fa189a78e167590c805a8015356f5a6ccd895c95e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2019
Cache-Control: max-age=133021
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:51 GMT
Etag: "639f7729-116"
Expires: Tue, 20 Dec 2022 20:58:52 GMT
Last-Modified: Sun, 18 Dec 2022 20:25:13 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 19c062c6d30e45380d5a9dd96609f21d
42a4003d6bdf854971b7d26312ed7c3cd4f63869
8c29a261cb097db25a3269289921d005549e68cee25656206f5ab9ba23e5b2b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2019
Cache-Control: max-age=133021
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:51 GMT
Etag: "639f7729-116"
Expires: Tue, 20 Dec 2022 20:58:52 GMT
Last-Modified: Sun, 18 Dec 2022 20:25:13 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 19c062c6d30e45380d5a9dd96609f21d
42a4003d6bdf854971b7d26312ed7c3cd4f63869
8c29a261cb097db25a3269289921d005549e68cee25656206f5ab9ba23e5b2b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6237
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:51 GMT
Last-Modified: Mon, 19 Dec 2022 06:17:54 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 278
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.24.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:51 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1678099
expires: Sat, 09 Dec 2023 08:01:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yH99u8gPIE8FgyAAxf8WxV0FDlnJtcVjlHypLBd1H3gtsvleL4WT9K05TtT9tZ134CYerAJQccMdS63bW5tmWChYSygEPx6ayQBIwB472J3LnGJDpH1mi5UMi%2F1cokBltkPoApx7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77be9cd6ed18b50c-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/bootstrap/5.1.3/css/bootstrap.min.css
104.17.24.14200 OK 17 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/bootstrap/5.1.3/css/bootstrap.min.css
IP 104.17.24.14:0
File type Unicode text, UTF-8 text, with very long lines (65306)
Hash bfb0b179d7474fe1862f205221748d4a
d2f0a9c646523a42acab0f6e634509f09f85d7cd
cbc8a84d23f28dde9f04419a9512b5523792b3d7c373a4deb4d766f7d66be56f
GET /ajax/libs/bootstrap/5.1.3/css/bootstrap.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:51 GMT
content-type: text/css; charset=utf-8
content-length: 17404
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6161dfe3-43fc"
last-modified: Sat, 09 Oct 2021 18:30:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2174497
expires: Sat, 09 Dec 2023 08:01:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=03b9%2Bt1bwYX0YkYic9QLxMNpDYC441VbFyY5JLdktiVBU1ABLgB9QRRATwikp7MV13JVqCy20yuUifHVl0QGwvfFAMn3FrNq2WhF0dr95s0bHig47IvUvn6KxwG8TJ66FhfmP3xO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77be9cd6ff3f0b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css
104.17.24.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (59119)
Hash 14e1692fd4263ccfea0b84299bdbf1f5
7783020a9ced5f32c8d38205357c7d10798be1fd
8ff0cd2d1e7f0b6203a762fb9811256d4445a3ad0d97f07102e038ba0eb3db72
GET /ajax/libs/font-awesome/5.15.4/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:51 GMT
content-type: text/css; charset=utf-8
content-length: 10462
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "613fa20b-28de"
last-modified: Mon, 13 Sep 2021 19:10:03 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 7012577
expires: Sat, 09 Dec 2023 08:01:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vf4M1NzRevayMTHdOW4s%2B46ubyz9u48EraugKUZHhUuNFLEmJBBNq61cDfI2GGeCkP2gxkBLkksCRDRzWD%2B9%2BDtDyB%2Bjd%2FEUIpC4sfFYQmOXio9MScJElumCkkrmNvLd5NV3hcW%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77be9cd6ff420b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 19c062c6d30e45380d5a9dd96609f21d
42a4003d6bdf854971b7d26312ed7c3cd4f63869
8c29a261cb097db25a3269289921d005549e68cee25656206f5ab9ba23e5b2b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2019
Cache-Control: max-age=133021
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:51 GMT
Etag: "639f7729-116"
Expires: Tue, 20 Dec 2022 20:58:52 GMT
Last-Modified: Sun, 18 Dec 2022 20:25:13 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 278
www.subtitlist.com/subtitles/rick-and-morty-sixth-season/brazillian-portuguese/2882452
104.21.61.43200 OK 84 kB URL HTTP/2 www.subtitlist.com/subtitles/rick-and-morty-sixth-season/brazillian-portuguese/2882452
IP 104.21.61.43:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1676)
Hash 52dbb66127e32ea5398942c11f74c2d1
c2e59f6942a0f956d0d3718ea592def4c09b6541
c4e9c60620ceb723e9e345081b03a72c069afdd83dbb7d23ae44158e2cd5c17d
GET /subtitles/rick-and-morty-sixth-season/brazillian-portuguese/2882452 HTTP/1.1
Host: www.subtitlist.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:51 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6ImpEQjVqamRlSVROTTVpTHVscVcrdkE9PSIsInZhbHVlIjoiTFM3clBjdDhJaTh3UDlwSGRmbmRCZ2ZjQXhkMDJLMnJuNHREOElBVW9DNnNtSTdIY0E3aGRvQ1hQR28xdUg2anVDV3FRQ3piQmhwNzZUS0ZzWERvam9KVWswN0xYTWR0ZFluVENycEc2TWU4aDRmRnFGVzIxUFNGa2VDblFGUXIiLCJtYWMiOiJmYjA4YWMzMWNlYjFkYTc4YmZjM2JlMjhhODk3ZDgwZWEzOTI4ZWUyZDFkYWI5YWFhN2JiMTUwZGZhZWExN2JmIiwidGFnIjoiIn0%3D; expires=Mon, 19-Dec-2022 10:01:50 GMT; Max-Age=7200; path=/; samesite=lax; secure
subtitlist_session=eyJpdiI6Inlpc2RXRVAvRjR1RWI2M0lqdWtYdmc9PSIsInZhbHVlIjoiTFpGSEpQOVRITnZvNDQvMXNEeDlUVXhyMjhUZG5iZzRVK3BKSjdtdmY2b2hxcE5iQWhDTTlwTmttamVLV3FQRnEzT0JEODRwcVZvSmt2ZStZd1pyY2xqQm9mcGQvMCtobUFiZC9MY2x0cWN6K2VxY2VXMTgyQXgzT3V0Uk5XUDIiLCJtYWMiOiI2MWExN2MxODI2NzdhMzdmY2Q5ZjkxMGY0OTEwZmJiMTk2MDg4OTk0Mjc3YzIyOTg0OWI2NDBjNDJhMjg4OGJhIiwidGFnIjoiIn0%3D; expires=Mon, 19-Dec-2022 10:01:50 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
vary: Accept-Encoding
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8rGAzIU9o7a6Q1Va%2FJsTa%2BdTrcD%2B6Dv1OlRffaxJiMgMpbz9EUfUHlVSEU8AWcKyy3tjrngotEY6sslfg38d5F7wOBEU8L2zEE0O32A%2FQfrpCNfkdIykFmbhY1PGcJldr69F9QE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77be9ccfe8a5b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 9b41fe16d75c54c5349c1575f01f0411
0654fd5cdb754ab783ffce062921e89e9a257951
3b1747fe418d17c4ebfea1672f151b37a45e9d3a2acfb43da876c7a19a2893a5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3896
Cache-Control: max-age=124425
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:51 GMT
Etag: "639f4e40-116"
Expires: Tue, 20 Dec 2022 18:35:36 GMT
Last-Modified: Sun, 18 Dec 2022 17:30:40 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d62c4eea8ea4b9e5545fc952781c3b1d
47ca338b2d6be9d8a22c052d0838bce364463dce
75f6054477e9c699a1ee189cc77b20c5696ec306db93af0396a98b3b5b49bbc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c76e2d1033fe19d491bcdb4e24faaeeb
9b3da75ba4ebf950d17ee9178c64c46afc363047
20590ac857bae294c81ad22c37bb5ec0aca36ad35ae4aa4ece7a5e5ea47ded63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/lazyload@2.0.0-rc.2/lazyload.min.js
104.16.86.20200 OK 1.2 kB URL HTTP/2 cdn.jsdelivr.net/npm/lazyload@2.0.0-rc.2/lazyload.min.js
IP 104.16.86.20:0
File type ASCII text, with very long lines (2133)
Hash aa7e1a9739ba4cb91943b8a1af2fe2c4
4fffc24556e9f3bcf0382e6c3753a97a65cc3642
a5d1676b64ba353ca89c150e066e8fd12f4a4b846004b3b2165981d79e4dd4aa
GET /npm/lazyload@2.0.0-rc.2/lazyload.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:51 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.0.0-rc.2
x-jsd-version-type: version
etag: W/"8a2-ngY/Y9MDkyf1oyGHRNHDqclx9cM"
x-served-by: cache-fra19161-FRA, cache-cdg20768-CDG
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: HIT
age: 16882839
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oD8ukyniigZLq4eDiJpDWivRBMpj%2BHUz6f%2BX%2FfLUu7pFouBuUDcfu2RzzELxL9awC%2B%2F1RY3%2BG7y7bfNvmDhkfG%2BtqbLlOdOfmF3%2BkNYcZKLKY%2Bk1moGUcOb%2FbLTVgAXx3sw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77be9cd7f923b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-76326125-26
142.250.74.40200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-76326125-26
IP 142.250.74.40:0
File type ASCII text, with very long lines (1921)
Hash f397e358ef3626913e867cb92e8b3f30
341ce1d53c91ad6de1259fff280e8a3dc4cc059a
f6c14112ac42970bc643ba0b07c67d29db7b6c660efd08eaeae60b0e8481d073
GET /gtag/js?id=UA-76326125-26 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 19 Dec 2022 08:01:51 GMT
expires: Mon, 19 Dec 2022 08:01:51 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44743
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2295842371224614
142.250.74.162200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2295842371224614
IP 142.250.74.162:0
File type ASCII text, with very long lines (4885)
Hash f0f09a156f8f2ed0ee05657042678e2b
2a2db4db43eb75eb405470aafe8829b52873072e
c0792a1a34acf5775e45677f584ee63467f7e604ef022f7dbd1bf5b45e63d2ec
GET /pagead/js/adsbygoogle.js?client=ca-pub-2295842371224614 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 19 Dec 2022 08:01:51 GMT
expires: Mon, 19 Dec 2022 08:01:51 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 11982514900413670767
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49327
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3737e5f54162b08ce21db317482a93b6
6da183820430ffd3c622d0b010cfe2e4a49aafe6
d9126f6a7a22cb1d408bf7f8e799eb34e338a6b4d7c4acb8cc6d5b5e6a9d7b0e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D9126F6A7A22CB1D408BF7F8E799EB34E338A6B4D7C4ACB8CC6D5B5E6A9D7B0E"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11361
Expires: Mon, 19 Dec 2022 11:11:12 GMT
Date: Mon, 19 Dec 2022 08:01:51 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d62c4eea8ea4b9e5545fc952781c3b1d
47ca338b2d6be9d8a22c052d0838bce364463dce
75f6054477e9c699a1ee189cc77b20c5696ec306db93af0396a98b3b5b49bbc4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c76e2d1033fe19d491bcdb4e24faaeeb
9b3da75ba4ebf950d17ee9178c64c46afc363047
20590ac857bae294c81ad22c37bb5ec0aca36ad35ae4aa4ece7a5e5ea47ded63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pl16151818.profitabletrustednetwork.com/b5b86c6f2b3f661e8cad3c7ca71e72cd/invoke.js
173.233.137.60200 OK 9.3 kB URL HTTP/1.1 pl16151818.profitabletrustednetwork.com/b5b86c6f2b3f661e8cad3c7ca71e72cd/invoke.js
IP 173.233.137.60:0
File type Unicode text, UTF-8 text, with very long lines (25129), with no line terminators
Hash c09327a810d123032ec9c35f1fc140d8
288d4523dc10c74c7ad707db5d061be3b0473f6f
1413bd5848cb7105b1ab6d7aee04e842cbfa79aec5c25ca87797e130959da6a9
GET /b5b86c6f2b3f661e8cad3c7ca71e72cd/invoke.js HTTP/1.1
Host: pl16151818.profitabletrustednetwork.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Dec 2022 08:01:51 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 72a0ee69591a9f0e5013e1d80cecf1bb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash ba07ca01954fbcfa04e49ce6520e80cb
c8c508e7cc20e0ec033d487e14e1618defcb88cf
f421e47834c212fdd65f1badb0c735cffc4266365c4a271416b8625cd6527718
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107409
Date: Mon, 19 Dec 2022 08:01:51 GMT
Etag: "639f1615-1d7"
Expires: Tue, 20 Dec 2022 13:52:00 GMT
Last-Modified: Sun, 18 Dec 2022 13:31:01 GMT
Server: ECS (bsa/EB18)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5Grm0qmJBo7eMKj6XjnRjoWA0KYVAjvn-rMuKIwZdgHH9JdUIsjR1A==
Age: 1259
simplewebanalysis.com/stats
18.195.193.92200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.195.193.92:0
File type ASCII text, with no line terminators
Hash 6c4212404ceb87af8772ca6ccb298435
148b1393781637508a89009957a4cae135529d31
301da1b9195583264bcc141233e81beb222c931f0128f1054c4590b1871bf5cd
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:51 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.subtitlist.com
access-control-allow-credentials: true
set-cookie: uid_id2=5d4438d5-63fb-4e66-8c7a-06f57bfabfc1:2:1; expires=Thu, 16 Dec 2032 08:01:51 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9654
Expires: Mon, 19 Dec 2022 10:42:45 GMT
Date: Mon, 19 Dec 2022 08:01:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9653
Expires: Mon, 19 Dec 2022 10:42:45 GMT
Date: Mon, 19 Dec 2022 08:01:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b52a05c34a7c3eaee8f5c1f73954364c
89c5023a0c43860efd362d0d2751a0ea9a204f54
94de3b3351ec8035986be412843212eebe4a3c9d6521b2a0c922870d5365adb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94DE3B3351EC8035986BE412843212EEBE4A3C9D6521B2A0C922870D5365ADB8"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9653
Expires: Mon, 19 Dec 2022 10:42:45 GMT
Date: Mon, 19 Dec 2022 08:01:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0414d31-0d1b-44bc-aca6-adbdb14d3177.png
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0414d31-0d1b-44bc-aca6-adbdb14d3177.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b737043cdf74af46852693d35fd7c297
1aabe2620cc5e80e141557fa891c20ae3385ecf4
534712b0605de5329ee5e9a0ce22b78de49a5d00f6544c4aa66c78f95e594540
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0414d31-0d1b-44bc-aca6-adbdb14d3177.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7625
x-amzn-requestid: 82e4192c-d409-42d9-8d96-e3f5892fd048
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dVJqlGCNIAMFsdA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ebca9-168389792f2e981943781c75;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 07:09:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dr8_HKrDAGEisD9XRkAFL8gf4EyMHCqSLJAQgFTnMOixMMG_jiF8Rg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 07:20:51 GMT
age: 2461
etag: "1aabe2620cc5e80e141557fa891c20ae3385ecf4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47778af6-2d49-4ee8-b5bf-2e8c1140cce5.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47778af6-2d49-4ee8-b5bf-2e8c1140cce5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6c714628a486b8d09101fe1115b4a25
a859bec81457e5b3511fb7612b65bcd4be790f21
41586527c64614c69c2833d2eb9a0e5e03906388a39ae16443b45dd6885329af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F47778af6-2d49-4ee8-b5bf-2e8c1140cce5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9058
x-amzn-requestid: 30f541b7-557c-45c6-a639-596ec624d6b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dVJtzFJPIAMFaow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ebcbe-221f45c41cc4ac943f78ce6c;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 07:09:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f_sUIMBle-AT5Od_IJdlhNc1razIfG8LYIi1tEsIyWtMRBs063gjwQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 07:18:00 GMT
age: 2632
etag: "a859bec81457e5b3511fb7612b65bcd4be790f21"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfd0e913579b4ff2f511223d70cb01fb
497e0ffef816e100e6ddc221ec17d5f389c1142a
bee68ae1a938a5111a32dab4ec4f6964994e6c39143eac9ab94d6c5e29999372
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3087af97-3f2d-4848-b297-eba8d84f10c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10YHv8oAMF2sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-7527022d4bd9c15518fe75cc;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KyEMrUTeuVTPJ3EIkrH1DLYqa4bHK7fe6dApTAFP4XY0G4airnflGA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 21:37:07 GMT
age: 37485
etag: "497e0ffef816e100e6ddc221ec17d5f389c1142a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F469f917b-9e91-486a-b711-ccb25e7bfae0.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F469f917b-9e91-486a-b711-ccb25e7bfae0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f8b260b0cc287f1b66c97f552b2a3c21
7efa342abc52a36cd3fa2dd4b3e85cec1def58c0
7263d7176d5879c550158fee5259605dc298a99902cb8a2c340ab2b92f92bc90
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F469f917b-9e91-486a-b711-ccb25e7bfae0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7432
x-amzn-requestid: 3254bdde-1e56-4423-a87b-5955c64f52ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dHbA6FUVIAMF2gQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63993ed2-09a330722c1eec79103d9b9e;Sampled=0
x-amzn-remapped-date: Wed, 14 Dec 2022 03:11:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: W2HZAazNTP-6o2Vyr2jrOTutIt4ed3Fs0L_TgUEH8dM9RtqBiBSdAw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 09:40:13 GMT
age: 80499
etag: "7efa342abc52a36cd3fa2dd4b3e85cec1def58c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbedc7d70-00c3-409b-9b46-11cbe9909f2b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbedc7d70-00c3-409b-9b46-11cbe9909f2b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 71e9a308430eff340bb55c56b64fcc63
63d49b26322a1dca8ed669c1abafc27ee7f7c4b2
e3c8917124f2d13de6d1c0a1f1539f035abef31bbbf2246e77db44d9a3e29b61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbedc7d70-00c3-409b-9b46-11cbe9909f2b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12161
x-amzn-requestid: 6ad8283c-3d3d-41f0-ada7-1b0d20568aa6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dXIZIGZFIAMFubg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639f876d-0bc6f28d582f63b35a494472;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gJgluMuS-cEZnEk8LNtVJk02T883tD8OZJy4BftXFGhJ6tHeLGrcqw==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Dec 2022 21:37:59 GMT
age: 37433
etag: "63d49b26322a1dca8ed669c1abafc27ee7f7c4b2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75ce95c2-1c3f-4d6c-ad18-90e8258c9a17.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75ce95c2-1c3f-4d6c-ad18-90e8258c9a17.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c9d50aad72b8daca282646dc709ea2ce
ed8e062f6911bf752b9c4fbea466e827385ad26d
9e49058f60a12311a2d2a0872ec29a268d7b4575b4de83364c606ffa37ae8655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75ce95c2-1c3f-4d6c-ad18-90e8258c9a17.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8709
x-amzn-requestid: b6a49df2-29df-4341-bb05-d9b704de011f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dR2EMHKXoAMFrMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639d6a1a-2b1b90bb6275bc9153987aa0;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 07:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ObpjD8D5oR5QTNmIkpg1PzN4UlG2dl_kbgIcPly_gBwlYjjG2IpZfA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 06:59:08 GMT
age: 3764
etag: "ed8e062f6911bf752b9c4fbea466e827385ad26d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d5aea0b796118f2e86ecb393dd87e25b
9dd0fc8714c88c28ef99aa9294b8a2b87b903f56
2119757d87361ed60a37683210ec2286f98bc65099b20b82a22ef03ed34a688b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2119757D87361ED60A37683210EC2286F98BC65099B20B82A22EF03ED34A688B"
Last-Modified: Sat, 17 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5149
Expires: Mon, 19 Dec 2022 09:27:41 GMT
Date: Mon, 19 Dec 2022 08:01:52 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4c27bb2ba2acc2b177746256595cd57c
ac37bba5f33eab2a3942b50472c852ad71c72e70
48dde36af83ae95b771ae8bba9655cc75a25d4a88a75291fedfbb796435ea853
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 18 Dec 2022 12:04:31 GMT
Expires: Sun, 25 Dec 2022 12:04:30 GMT
Etag: "ac37bba5f33eab2a3942b50472c852ad71c72e70"
Cache-Control: max-age=532357,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77be9cd94f251c0e-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 4c27bb2ba2acc2b177746256595cd57c
ac37bba5f33eab2a3942b50472c852ad71c72e70
48dde36af83ae95b771ae8bba9655cc75a25d4a88a75291fedfbb796435ea853
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sun, 18 Dec 2022 12:04:31 GMT
Expires: Sun, 25 Dec 2022 12:04:30 GMT
Etag: "ac37bba5f33eab2a3942b50472c852ad71c72e70"
Cache-Control: max-age=532357,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77be9cdd3a1d1c0e-OSL
6.adsco.re/
104.17.166.186200 OK 0 B IP 104.17.166.186:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:52 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://www.subtitlist.com
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 77be9cddef961c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
comprehendbighearted.com/f1/20/07/f120079e310facfd6a413bf35b8f939d.js
173.233.137.60200 OK 29 kB URL HTTP/1.1 comprehendbighearted.com/f1/20/07/f120079e310facfd6a413bf35b8f939d.js
IP 173.233.137.60:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash 495eb6fee047f5cf74e5ad8cd2918878
fd2cd6744ff25fa79643851dc7be30d64338de82
8657fe87dc4e0231166f8096a6bdf2ea7fbe752ddc4e0ba1f740b59cbbac0537
Analyzer Verdict Alert quad9 Sinkholed
GET /f1/20/07/f120079e310facfd6a413bf35b8f939d.js HTTP/1.1
Host: comprehendbighearted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d48724562f2d43479e1f75a30b226693
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
4.adsco.re/
162.252.214.5200 OK 62 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash adde5febc7b5b6c2c759ec735cce83a0
77ec17be8a9970ff04663294d41c590d0d24fde4
ce2b9f2e5005195de7add565505005be6f2ef0d37521771e15106d1e1b9260ff
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://www.subtitlist.com
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
comprehendbighearted.com/ntv.json?key=b5b86c6f2b3f661e8cad3c7ca71e72cd&vstc=4
173.233.137.60200 OK 17 kB URL HTTP/1.1 comprehendbighearted.com/ntv.json?key=b5b86c6f2b3f661e8cad3c7ca71e72cd&vstc=4
IP 173.233.137.60:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (17060), with no line terminators
Hash b4adefd6b6852ff24c0f1020d49c10fe
0f606a27aa7bd2fabb68cc3470f4c285a10c89c7
86aa5bdd4f359f60e9b28cc99d8544233a4276baaf3b8b258ba3760b614e2335
Analyzer Verdict Alert quad9 Sinkholed
GET /ntv.json?key=b5b86c6f2b3f661e8cad3c7ca71e72cd&vstc=4 HTTP/1.1
Host: comprehendbighearted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: application/json
Content-Length: 17062
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.subtitlist.com
Access-Control-Allow-Origin: https://www.subtitlist.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16051319; expires=Tue, 20 Dec 2022 08:01:52 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 20 Dec 2022 08:01:52 GMT; secure; SameSite=None
uncs=1; expires=Tue, 20 Dec 2022 08:01:52 GMT; secure; SameSite=None
pdhtkv49=true; expires=Tue, 20 Dec 2022 08:01:52 GMT; secure; SameSite=None
uncs49=1; expires=Tue, 20 Dec 2022 08:01:52 GMT; secure; SameSite=None
nlecb5b86c6f2b3f661e8cad3c7ca71e72cd=[3254335,3254354,3254334,3254345]; expires=Mon, 19 Dec 2022 08:01:57 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a1a84c4295c29653930bbad9e710b64a
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 97e0b0a87fee52ddf649f149ef723a10
19732de2c7a01971071622a2c7c0c79b49c191af
cfd38a2505ce26de58a841201570080b55fd35a43ebf6582aff81c52f46e41a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CFD38A2505CE26DE58A841201570080B55FD35A43EBF6582AFF81C52F46E41A1"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2120
Expires: Mon, 19 Dec 2022 08:37:12 GMT
Date: Mon, 19 Dec 2022 08:01:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b50485f5d0fb3a5e51f74e4ac296a475
9ef92bb309f24586b6a8fc27ed0ea49fe5b30221
9d22a96382508235e830c177c3dd0f7a62e5148cb3cb27b47f75b8992ac8d2fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D22A96382508235E830C177C3DD0F7A62E5148CB3CB27B47F75B8992AC8D2FD"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7543
Expires: Mon, 19 Dec 2022 10:07:35 GMT
Date: Mon, 19 Dec 2022 08:01:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b50485f5d0fb3a5e51f74e4ac296a475
9ef92bb309f24586b6a8fc27ed0ea49fe5b30221
9d22a96382508235e830c177c3dd0f7a62e5148cb3cb27b47f75b8992ac8d2fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9D22A96382508235E830C177C3DD0F7A62E5148CB3CB27B47F75B8992AC8D2FD"
Last-Modified: Sat, 17 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7543
Expires: Mon, 19 Dec 2022 10:07:35 GMT
Date: Mon, 19 Dec 2022 08:01:52 GMT
Connection: keep-alive
comprehendbighearted.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2Btzn%2F%2BIHoyRCGeBrwoyGz3fI8BgzEmLMYkbiJ7E%2BqrZ8ut7mqruqdnx4OLEclxBA%2FqqffNbtaPsJi7gsx6CQvCDorswQXx6k3JWXoyMPqD%2Bn3U%2Bx3ee1Uf72SnxEdGT26%2BaUZKa7rSqvnVF9ZVLEzuqtdvVwO%2F5l%2Borqu43bxQHZbJDl4O%2FFbNf7F6VfJNs1L3A98P%2FKB6RVkZmuHKHIVK7veCWs%2BvNeu1oNXE0P53dpkHRz2IwSk5CyVm%2F994%2BACKTxFH316WbjM1yUuvR5mmqbEYiP23483Y5DGiZRtaD2G8v9iGcTNCPjsDE%2B8vFMAMdksFYGpGvF8DsHh%2FQRNssPeYKdOQMZh4CvlgCqmnUHQKbu5AiWMCcIHrNxBH964bm9Otxygt0RmpPPoLKp%2BRym%2FnEEcHl7QaVm8ZnaXKxA7DsIAaTqH6UyTZIdKRB5UfgqcfQomfyMqja4ij3RtOGyhRzNUrNYUKp9ByDOo8ZOVRHrLQQ5Z4iMRJlbZ6oe93QhY2Gt0m57zR4LzVbYuWaDS7oY%2BMl%2FTGSJMxuB6D220kdhub6pPj1lnY7Ae4jQJOeHDpjHhvbWMgCuSSIHcEOSXIFUGeEuSDYk9oV3fFPaFdxoJFrS9qo5iYtL9D90zalzHZSU7J03Nr%2Fv4zx6Y8qbIW67Z5O6yzRthuB7LLqWjwDqedQHbqXMCpAsqdmasdqRl59rvnkagZIb%2F8AUYP4fQhuHoGNAtA80mn7oNuTJpdH6P4wGUsValWLq1xE0GYAklaQbrl7ehTcn7OJPhyDZIfXfxo9PvVg3Pvg9sCiS3wrvqRoK%2FvTtZMTnbXTO7IgxtJqiI1ouUD3kppKv%2F39RtyKzdWrF52469e5SVQtvdvS5deo7FQcd%2BRby4pIaS9YiyX5PtVty7ZzcxtXMpsnCXXbr52ZTVKrHROmXgKqo7f2QNXM%2FLEez%2FPv%2Bb50QdQdgqbFYiyI7IIKHMInmzDJUv2zhBYvdxhyRnkWTGxdba81IpAy%2BVMWQH3r5kt%2Bx13F31bAU3vII4KDGyBgS5A9Rgue3KSJvbo4sPPy%2FgCTFcmTNvKLtNWf1pae3Hub5leKdMqnDqpylboh9KvSxb2WNihvuiFzR6jvUB2WIsGSN2MF88l%2FwAAAP%2F%2FAQAA%2F%2F9%2BODgdgQQAAA%3D%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 comprehendbighearted.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2Btzn%2F%2BIHoyRCGeBrwoyGz3fI8BgzEmLMYkbiJ7E%2BqrZ8ut7mqruqdnx4OLEclxBA%2FqqffNbtaPsJi7gsx6CQvCDorswQXx6k3JWXoyMPqD%2Bn3U%2Bx3ee1Uf72SnxEdGT26%2BaUZKa7rSqvnVF9ZVLEzuqtdvVwO%2F5l%2Borqu43bxQHZbJDl4O%2FFbNf7F6VfJNs1L3A98P%2FKB6RVkZmuHKHIVK7veCWs%2BvNeu1oNXE0P53dpkHRz2IwSk5CyVm%2F994%2BACKTxFH316WbjM1yUuvR5mmqbEYiP23483Y5DGiZRtaD2G8v9iGcTNCPjsDE%2B8vFMAMdksFYGpGvF8DsHh%2FQRNssPeYKdOQMZh4CvlgCqmnUHQKbu5AiWMCcIHrNxBH964bm9Otxygt0RmpPPoLKp%2BRym%2FnEEcHl7QaVm8ZnaXKxA7DsIAaTqH6UyTZIdKRB5UfgqcfQomfyMqja4ij3RtOGyhRzNUrNYUKp9ByDOo8ZOVRHrLQQ5Z4iMRJlbZ6oe93QhY2Gt0m57zR4LzVbYuWaDS7oY%2BMl%2FTGSJMxuB6D220kdhub6pPj1lnY7Ae4jQJOeHDpjHhvbWMgCuSSIHcEOSXIFUGeEuSDYk9oV3fFPaFdxoJFrS9qo5iYtL9D90zalzHZSU7J03Nr%2Fv4zx6Y8qbIW67Z5O6yzRthuB7LLqWjwDqedQHbqXMCpAsqdmasdqRl59rvnkagZIb%2F8AUYP4fQhuHoGNAtA80mn7oNuTJpdH6P4wGUsValWLq1xE0GYAklaQbrl7ehTcn7OJPhyDZIfXfxo9PvVg3Pvg9sCiS3wrvqRoK%2FvTtZMTnbXTO7IgxtJqiI1ouUD3kppKv%2F39RtyKzdWrF52469e5SVQtvdvS5deo7FQcd%2BRby4pIaS9YiyX5PtVty7ZzcxtXMpsnCXXbr52ZTVKrHROmXgKqo7f2QNXM%2FLEez%2FPv%2Bb50QdQdgqbFYiyI7IIKHMInmzDJUv2zhBYvdxhyRnkWTGxdba81IpAy%2BVMWQH3r5kt%2Bx13F31bAU3vII4KDGyBgS5A9Rgue3KSJvbo4sPPy%2FgCTFcmTNvKLtNWf1pae3Hub5leKdMqnDqpylboh9KvSxb2WNihvuiFzR6jvUB2WIsGSN2MF88l%2FwAAAP%2F%2FAQAA%2F%2F9%2BODgdgQQAAA%3D%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2Btzn%2F%2BIHoyRCGeBrwoyGz3fI8BgzEmLMYkbiJ7E%2BqrZ8ut7mqruqdnx4OLEclxBA%2FqqffNbtaPsJi7gsx6CQvCDorswQXx6k3JWXoyMPqD%2Bn3U%2Bx3ee1Uf72SnxEdGT26%2BaUZKa7rSqvnVF9ZVLEzuqtdvVwO%2F5l%2Borqu43bxQHZbJDl4O%2FFbNf7F6VfJNs1L3A98P%2FKB6RVkZmuHKHIVK7veCWs%2BvNeu1oNXE0P53dpkHRz2IwSk5CyVm%2F994%2BACKTxFH316WbjM1yUuvR5mmqbEYiP23483Y5DGiZRtaD2G8v9iGcTNCPjsDE%2B8vFMAMdksFYGpGvF8DsHh%2FQRNssPeYKdOQMZh4CvlgCqmnUHQKbu5AiWMCcIHrNxBH964bm9Otxygt0RmpPPoLKp%2BRym%2FnEEcHl7QaVm8ZnaXKxA7DsIAaTqH6UyTZIdKRB5UfgqcfQomfyMqja4ij3RtOGyhRzNUrNYUKp9ByDOo8ZOVRHrLQQ5Z4iMRJlbZ6oe93QhY2Gt0m57zR4LzVbYuWaDS7oY%2BMl%2FTGSJMxuB6D220kdhub6pPj1lnY7Ae4jQJOeHDpjHhvbWMgCuSSIHcEOSXIFUGeEuSDYk9oV3fFPaFdxoJFrS9qo5iYtL9D90zalzHZSU7J03Nr%2Fv4zx6Y8qbIW67Z5O6yzRthuB7LLqWjwDqedQHbqXMCpAsqdmasdqRl59rvnkagZIb%2F8AUYP4fQhuHoGNAtA80mn7oNuTJpdH6P4wGUsValWLq1xE0GYAklaQbrl7ehTcn7OJPhyDZIfXfxo9PvVg3Pvg9sCiS3wrvqRoK%2FvTtZMTnbXTO7IgxtJqiI1ouUD3kppKv%2F39RtyKzdWrF52469e5SVQtvdvS5deo7FQcd%2BRby4pIaS9YiyX5PtVty7ZzcxtXMpsnCXXbr52ZTVKrHROmXgKqo7f2QNXM%2FLEez%2FPv%2Bb50QdQdgqbFYiyI7IIKHMInmzDJUv2zhBYvdxhyRnkWTGxdba81IpAy%2BVMWQH3r5kt%2Bx13F31bAU3vII4KDGyBgS5A9Rgue3KSJvbo4sPPy%2FgCTFcmTNvKLtNWf1pae3Hub5leKdMqnDqpylboh9KvSxb2WNihvuiFzR6jvUB2WIsGSN2MF88l%2FwAAAP%2F%2FAQAA%2F%2F9%2BODgdgQQAAA%3D%3D HTTP/1.1
Host: comprehendbighearted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Cookie: u_pl=16051319; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecb5b86c6f2b3f661e8cad3c7ca71e72cd=[3254335,3254354,3254334,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d14e7a8a0581eb02c97d77c61aa2ba82
Strict-Transport-Security: max-age=0; includeSubdomains
comprehendbighearted.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSujiOIngxRiKcBLwoy2z3%2FY8BgjAmLMYmbyN6E%2BuvZcqu72qru6dnxshiRHEfwoJ56v9nN%2BhMWc1eQWS9xQdgBkT24IF69KTlLTwZGH9T33qvvHb7vVX2yk50SHxk9ufm2GSmt6Uqr5ldfWlexMLmrXr9dDfyaf6G6ruJ280J1WIIdvBr4rZr%2FcvWq5Jtmpe4Hvh%2F4QfWKsjI0w5U5C5Xc7wW1nl9r1mtBq4mh%2FX%2FvMg%2BOehCDU3IWSsye3Hj4AIpPEUffXZZuMzXJK29GmaapsRiI%2FXfjzdjkMaJlGVoPYby%2FmIZxM0I%2BPwMT7y8cwAx2Swdgaka83wKweH8hE2yw91gp05AxmHgG%2BWAKqadQdApu7kCJYwJwges3EEf3rhub063HLC3ZGak8%2Bhsqn5HK7%2BcQRweXtBpWbxmdpcrEDsOwgBpOofpTJNkh0pEHlR%2BCpx9BiV%2FIyqNriKPdG04bKFHM3Ss1hQqn0HIM6jxk5VEestBDlniIxEmVtnqh73dCFjYa3SbnvNHgvNVti5ZoNLuhj4yX8sZIkzG4HoPbbSR2G5vq0%2BPWWdjsR7iNAk54cOmMeO9sYyAK5JIgdwQ5JcgVQZ4S5INiT2hXd8U9oV3GgkWuL3KjmJi0v0P3TNqXMdlJTsmz89X881eOTXlSZS3WbfN2WGeNsN0OZJdT0eAdTjuB7NS5gFMFlDszdztSM%2FL89y8iUTNCfv0TjB7C6UNw9RxoFoDmk07dB92YNLs%2BRvGBy1iqUq1cWuMmgjAFkrSCdMvb0afk%2FFxJ8NVFSH508ePRH1cPzn0IbgsktsD76ieCvr47WTM52V0zuSMPbiSpitSIlg94K6WpfOKbt%2BRWbqxYvezGX7%2FOS6Is79%2BWLr1GY6HiviPfXlJCSHvFWC7JD6tuXbKbmdu4lNk4S67dfOPKapRY6Zwy8RRUHb%2B3B65m5KkPfp5%2FzfMjDWWnsFmBKDsii4Ayh%2BDJNlyyVO8MgdXLGZZ4yLNiYutseakVgZbLnrIC7j89W9Y77i76tgKa3kEcFRjYAgNdgOoxXPb0JE3s0cWHX5TxJZiuTJi2lV2mrf5svtoS1kp4rYRVOHVSla3QD6VflyzssbBDfdELmz1Ge4HssBYNkLoZL15I%2FgUAAP%2F%2FAQAA%2F%2F%2FYu9BngQQAAA%3D%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 comprehendbighearted.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSujiOIngxRiKcBLwoy2z3%2FY8BgjAmLMYmbyN6E%2BuvZcqu72qru6dnxshiRHEfwoJ56v9nN%2BhMWc1eQWS9xQdgBkT24IF69KTlLTwZGH9T33qvvHb7vVX2yk50SHxk9ufm2GSmt6Uqr5ldfWlexMLmrXr9dDfyaf6G6ruJ280J1WIIdvBr4rZr%2FcvWq5Jtmpe4Hvh%2F4QfWKsjI0w5U5C5Xc7wW1nl9r1mtBq4mh%2FX%2FvMg%2BOehCDU3IWSsye3Hj4AIpPEUffXZZuMzXJK29GmaapsRiI%2FXfjzdjkMaJlGVoPYby%2FmIZxM0I%2BPwMT7y8cwAx2Swdgaka83wKweH8hE2yw91gp05AxmHgG%2BWAKqadQdApu7kCJYwJwges3EEf3rhub063HLC3ZGak8%2Bhsqn5HK7%2BcQRweXtBpWbxmdpcrEDsOwgBpOofpTJNkh0pEHlR%2BCpx9BiV%2FIyqNriKPdG04bKFHM3Ss1hQqn0HIM6jxk5VEestBDlniIxEmVtnqh73dCFjYa3SbnvNHgvNVti5ZoNLuhj4yX8sZIkzG4HoPbbSR2G5vq0%2BPWWdjsR7iNAk54cOmMeO9sYyAK5JIgdwQ5JcgVQZ4S5INiT2hXd8U9oV3GgkWuL3KjmJi0v0P3TNqXMdlJTsmz89X881eOTXlSZS3WbfN2WGeNsN0OZJdT0eAdTjuB7NS5gFMFlDszdztSM%2FL89y8iUTNCfv0TjB7C6UNw9RxoFoDmk07dB92YNLs%2BRvGBy1iqUq1cWuMmgjAFkrSCdMvb0afk%2FFxJ8NVFSH508ePRH1cPzn0IbgsktsD76ieCvr47WTM52V0zuSMPbiSpitSIlg94K6WpfOKbt%2BRWbqxYvezGX7%2FOS6Is79%2BWLr1GY6HiviPfXlJCSHvFWC7JD6tuXbKbmdu4lNk4S67dfOPKapRY6Zwy8RRUHb%2B3B65m5KkPfp5%2FzfMjDWWnsFmBKDsii4Ayh%2BDJNlyyVO8MgdXLGZZ4yLNiYutseakVgZbLnrIC7j89W9Y77i76tgKa3kEcFRjYAgNdgOoxXPb0JE3s0cWHX5TxJZiuTJi2lV2mrf5svtoS1kp4rYRVOHVSla3QD6VflyzssbBDfdELmz1Ge4HssBYNkLoZL15I%2FgUAAP%2F%2FAQAA%2F%2F%2FYu9BngQQAAA%3D%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSujiOIngxRiKcBLwoy2z3%2FY8BgjAmLMYmbyN6E%2BuvZcqu72qru6dnxshiRHEfwoJ56v9nN%2BhMWc1eQWS9xQdgBkT24IF69KTlLTwZGH9T33qvvHb7vVX2yk50SHxk9ufm2GSmt6Uqr5ldfWlexMLmrXr9dDfyaf6G6ruJ280J1WIIdvBr4rZr%2FcvWq5Jtmpe4Hvh%2F4QfWKsjI0w5U5C5Xc7wW1nl9r1mtBq4mh%2FX%2FvMg%2BOehCDU3IWSsye3Hj4AIpPEUffXZZuMzXJK29GmaapsRiI%2FXfjzdjkMaJlGVoPYby%2FmIZxM0I%2BPwMT7y8cwAx2Swdgaka83wKweH8hE2yw91gp05AxmHgG%2BWAKqadQdApu7kCJYwJwges3EEf3rhub063HLC3ZGak8%2Bhsqn5HK7%2BcQRweXtBpWbxmdpcrEDsOwgBpOofpTJNkh0pEHlR%2BCpx9BiV%2FIyqNriKPdG04bKFHM3Ss1hQqn0HIM6jxk5VEestBDlniIxEmVtnqh73dCFjYa3SbnvNHgvNVti5ZoNLuhj4yX8sZIkzG4HoPbbSR2G5vq0%2BPWWdjsR7iNAk54cOmMeO9sYyAK5JIgdwQ5JcgVQZ4S5INiT2hXd8U9oV3GgkWuL3KjmJi0v0P3TNqXMdlJTsmz89X881eOTXlSZS3WbfN2WGeNsN0OZJdT0eAdTjuB7NS5gFMFlDszdztSM%2FL89y8iUTNCfv0TjB7C6UNw9RxoFoDmk07dB92YNLs%2BRvGBy1iqUq1cWuMmgjAFkrSCdMvb0afk%2FFxJ8NVFSH508ePRH1cPzn0IbgsktsD76ieCvr47WTM52V0zuSMPbiSpitSIlg94K6WpfOKbt%2BRWbqxYvezGX7%2FOS6Is79%2BWLr1GY6HiviPfXlJCSHvFWC7JD6tuXbKbmdu4lNk4S67dfOPKapRY6Zwy8RRUHb%2B3B65m5KkPfp5%2FzfMjDWWnsFmBKDsii4Ayh%2BDJNlyyVO8MgdXLGZZ4yLNiYutseakVgZbLnrIC7j89W9Y77i76tgKa3kEcFRjYAgNdgOoxXPb0JE3s0cWHX5TxJZiuTJi2lV2mrf5svtoS1kp4rYRVOHVSla3QD6VflyzssbBDfdELmz1Ge4HssBYNkLoZL15I%2FgUAAP%2F%2FAQAA%2F%2F%2FYu9BngQQAAA%3D%3D HTTP/1.1
Host: comprehendbighearted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Cookie: u_pl=16051319; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecb5b86c6f2b3f661e8cad3c7ca71e72cd=[3254335,3254354,3254334,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3c75a8065ff1af074967fcfe72744667
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/si/75/c9/28/75c92834ede96f2f4d3581e4d43e6e4f/1645978427.jpg
45.133.44.10200 OK 22 kB URL HTTP/2 cdn.cloudimagesb.com/si/75/c9/28/75c92834ede96f2f4d3581e4d43e6e4f/1645978427.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash 796d425c7dcd3be5c1cdc6cdd56c1dab
e8cc1589c53cccdd638d3a732fef9e97aa4a45bc
f73ea8486409b59615869827f5c1b1f322ee1374d506e7789019bb4967348437
GET /si/75/c9/28/75c92834ede96f2f4d3581e4d43e6e4f/1645978427.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:52 GMT
content-type: image/jpeg
content-length: 22212
server: nginx/1.17.6
last-modified: Sun, 27 Feb 2022 16:14:00 GMT
etag: "621ba348-56c4"
expires: Wed, 21 Dec 2022 08:01:52 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/49/30/49/4930498805b27e2ddd2e8b730324d990/1645978709.jpg
45.133.44.10200 OK 22 kB URL HTTP/2 cdn.cloudimagesb.com/si/49/30/49/4930498805b27e2ddd2e8b730324d990/1645978709.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash dea5f1ea2c9a47f7f4d05c62e70a2527
b88486270a197dd93dfc0ec3d6609c35dda8f928
638a55cc2116fa90536d6c306d288d9400921d7b3338ec9ff374eabc218f8b9c
GET /si/49/30/49/4930498805b27e2ddd2e8b730324d990/1645978709.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:52 GMT
content-type: image/jpeg
content-length: 21546
server: nginx/1.17.6
last-modified: Sun, 27 Feb 2022 16:18:35 GMT
etag: "621ba45b-542a"
expires: Wed, 21 Dec 2022 08:01:52 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/5d/19/5d/5d195d7de14d8e7d59a9c7b1330750de/1645978440.jpg
45.133.44.10200 OK 25 kB URL HTTP/2 cdn.cloudimagesb.com/si/5d/19/5d/5d195d7de14d8e7d59a9c7b1330750de/1645978440.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash f1a49a7d784361bbce9f7ed99c6fc6ec
bb1a5732dc954a89c85089d16d71a00ade1fe682
deb5daa6fcbf7a78b9361e5ac56f09b27986953f03977adbaf32d04a93996bdd
GET /si/5d/19/5d/5d195d7de14d8e7d59a9c7b1330750de/1645978440.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:52 GMT
content-type: image/jpeg
content-length: 25012
server: nginx/1.17.6
last-modified: Sun, 27 Feb 2022 16:14:05 GMT
etag: "621ba34d-61b4"
expires: Wed, 21 Dec 2022 08:01:52 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
c.adsco.re/
104.17.166.186200 OK 27 kB IP 104.17.166.186:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (689)
Hash 476958d21c89d299093d706f57c7fcca
00ab735508c308fcbb010ac8636bb181121ce1a9
b4a75ef600e243ad56b72f639de859a993be41c3d7331615780f39715179757a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:52 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Thu, 19 Jan 2023 08:01:52 GMT
etag: W/"xkCBFtC0Wl/JiS60JFipuQ=="
cf-cache-status: HIT
age: 1260426
vary: Accept-Encoding
server: cloudflare
cf-ray: 77be9cdd1862b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg
45.133.44.10200 OK 21 kB URL HTTP/2 cdn.cloudimagesb.com/si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash e76141a73e3867caa30e71f21f24f019
7664dbf096108e45ad2d376514565d1a859bd169
98acf73ddbba7ea1c25ae6edf6ab6817ef442cf1c2343909083b2601ea8b62ca
GET /si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:52 GMT
content-type: image/jpeg
content-length: 21046
server: nginx/1.17.6
last-modified: Sun, 27 Feb 2022 16:15:46 GMT
etag: "621ba3b2-5236"
expires: Wed, 21 Dec 2022 08:01:52 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
comprehendbighearted.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjiOIngxRiKcBLwoy2z3%2FY8BgjAmLMYlJZG9C%2FfVsudVdbVX39Ox4WYxIjiN4UE%2B9b3az%2FoTF3BVk1ktYCOyAyB5cEK%2FelJylZwdGP6jvp953eO9VfbadnRAfGT2%2B%2Ba4ZKa3pSqvmV19ZU7Ewuatev1MN%2FJp%2Fobqm4nbzQnVYJjt4PfBbNf%2FV6lXJN8xK3Q98P%2FCD6hVlZWiGK3MUKnnQC2o9v9as14JWE0P7%2F9llHhz1IAYn5CyUmD29%2FughFJ8ijn64LN1GapLX3o4yTVNjMRB778cbscljRMs2tB7CeG%2BxDeNmhHx5BibeWyiAGeyUCsDUjHi%2FBWDx3oIm2GD3lCnTkDGYeA75YAqpp1B0Cm7uQokjAnCB6zcQR%2FevG5vTzVOUluiMVJ78DZXPSOX3c4ij%2FUtaDau3jc5SZWKHYVhADadQ%2FSmS7ADpyIPKD8DTT6DEY7Ly5BriaOeG0wZKFHP1Sk2hwim0HIM6D1l5lIcs9JAlHiJxXKWtXuj7nZCFjUa3yTlvNDhvdduiJRrNbugj4yW9MdJkDK7H4HYLid3Chvr8qHUWNvsZbr2AEx5cOiPee1sYiAK5JMgdQU4JckWQpwT5oNgV2tVdcV9ol7FgUeuL2igmJu1v012T9mVMtpMT8vzcmn%2F%2ByrEhj6usxbpt3g7rrBG224HscioavMNpJ5CdOhdwqoByZ%2BZqR2pGXvzxZSRqRsivf4LRAzh9AK5eAM0C0HzSqfug65Nm18co3ncZS1WqlUtr3EQQpkCSVpBuetv6hJyfMwm%2BWYXkhxc%2FHf1xdf%2Fcx%2BC2QGILfKh%2BIejre5NbJic7t0zuyMMbSaoiNaLlA95OaSqf%2Bu4duZkbK1Yvu%2FG3b%2FISKNsHd6RLr9FYqLjvyPeXlBDSXjGWS%2FLTqluT7Gbm1i9lNs6SazffurIaJVY6p0w8BVVHH%2ByCqxl55qPH8695fjSAslPYrECUHZJFQJkD8GQLLlmyd4bA6uUOSyrIs2Ji62x5qRWBlsuZsgLuPzNb9tvuHvq2ApreRRwVGNgCA12A6jFc9uwkTezhxUdflfE1mK5MmLaVHaat%2FqK09mKZbpXpjVOnnTquylboh9KvSxb2WNihvuiFzR6jvUB2WIsGSN2MFy8l%2FwIAAP%2F%2FAQAA%2F%2F%2BPG5nPgQQAAA%3D%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 comprehendbighearted.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjiOIngxRiKcBLwoy2z3%2FY8BgjAmLMYlJZG9C%2FfVsudVdbVX39Ox4WYxIjiN4UE%2B9b3az%2FoTF3BVk1ktYCOyAyB5cEK%2FelJylZwdGP6jvp953eO9VfbadnRAfGT2%2B%2Ba4ZKa3pSqvmV19ZU7Ewuatev1MN%2FJp%2Fobqm4nbzQnVYJjt4PfBbNf%2FV6lXJN8xK3Q98P%2FCD6hVlZWiGK3MUKnnQC2o9v9as14JWE0P7%2F9llHhz1IAYn5CyUmD29%2FughFJ8ijn64LN1GapLX3o4yTVNjMRB778cbscljRMs2tB7CeG%2BxDeNmhHx5BibeWyiAGeyUCsDUjHi%2FBWDx3oIm2GD3lCnTkDGYeA75YAqpp1B0Cm7uQokjAnCB6zcQR%2FevG5vTzVOUluiMVJ78DZXPSOX3c4ij%2FUtaDau3jc5SZWKHYVhADadQ%2FSmS7ADpyIPKD8DTT6DEY7Ly5BriaOeG0wZKFHP1Sk2hwim0HIM6D1l5lIcs9JAlHiJxXKWtXuj7nZCFjUa3yTlvNDhvdduiJRrNbugj4yW9MdJkDK7H4HYLid3Chvr8qHUWNvsZbr2AEx5cOiPee1sYiAK5JMgdQU4JckWQpwT5oNgV2tVdcV9ol7FgUeuL2igmJu1v012T9mVMtpMT8vzcmn%2F%2ByrEhj6usxbpt3g7rrBG224HscioavMNpJ5CdOhdwqoByZ%2BZqR2pGXvzxZSRqRsivf4LRAzh9AK5eAM0C0HzSqfug65Nm18co3ncZS1WqlUtr3EQQpkCSVpBuetv6hJyfMwm%2BWYXkhxc%2FHf1xdf%2Fcx%2BC2QGILfKh%2BIejre5NbJic7t0zuyMMbSaoiNaLlA95OaSqf%2Bu4duZkbK1Yvu%2FG3b%2FISKNsHd6RLr9FYqLjvyPeXlBDSXjGWS%2FLTqluT7Gbm1i9lNs6SazffurIaJVY6p0w8BVVHH%2ByCqxl55qPH8695fjSAslPYrECUHZJFQJkD8GQLLlmyd4bA6uUOSyrIs2Ji62x5qRWBlsuZsgLuPzNb9tvuHvq2ApreRRwVGNgCA12A6jFc9uwkTezhxUdflfE1mK5MmLaVHaat%2FqK09mKZbpXpjVOnnTquylboh9KvSxb2WNihvuiFzR6jvUB2WIsGSN2MFy8l%2FwIAAP%2F%2FAQAA%2F%2F%2BPG5nPgQQAAA%3D%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRitjiOIngxRiKcBLwoy2z3%2FY8BgjAmLMYlJZG9C%2FfVsudVdbVX39Ox4WYxIjiN4UE%2B9b3az%2FoTF3BVk1ktYCOyAyB5cEK%2FelJylZwdGP6jvp953eO9VfbadnRAfGT2%2B%2Ba4ZKa3pSqvmV19ZU7Ewuatev1MN%2FJp%2Fobqm4nbzQnVYJjt4PfBbNf%2FV6lXJN8xK3Q98P%2FCD6hVlZWiGK3MUKnnQC2o9v9as14JWE0P7%2F9llHhz1IAYn5CyUmD29%2FughFJ8ijn64LN1GapLX3o4yTVNjMRB778cbscljRMs2tB7CeG%2BxDeNmhHx5BibeWyiAGeyUCsDUjHi%2FBWDx3oIm2GD3lCnTkDGYeA75YAqpp1B0Cm7uQokjAnCB6zcQR%2FevG5vTzVOUluiMVJ78DZXPSOX3c4ij%2FUtaDau3jc5SZWKHYVhADadQ%2FSmS7ADpyIPKD8DTT6DEY7Ly5BriaOeG0wZKFHP1Sk2hwim0HIM6D1l5lIcs9JAlHiJxXKWtXuj7nZCFjUa3yTlvNDhvdduiJRrNbugj4yW9MdJkDK7H4HYLid3Chvr8qHUWNvsZbr2AEx5cOiPee1sYiAK5JMgdQU4JckWQpwT5oNgV2tVdcV9ol7FgUeuL2igmJu1v012T9mVMtpMT8vzcmn%2F%2ByrEhj6usxbpt3g7rrBG224HscioavMNpJ5CdOhdwqoByZ%2BZqR2pGXvzxZSRqRsivf4LRAzh9AK5eAM0C0HzSqfug65Nm18co3ncZS1WqlUtr3EQQpkCSVpBuetv6hJyfMwm%2BWYXkhxc%2FHf1xdf%2Fcx%2BC2QGILfKh%2BIejre5NbJic7t0zuyMMbSaoiNaLlA95OaSqf%2Bu4duZkbK1Yvu%2FG3b%2FISKNsHd6RLr9FYqLjvyPeXlBDSXjGWS%2FLTqluT7Gbm1i9lNs6SazffurIaJVY6p0w8BVVHH%2ByCqxl55qPH8695fjSAslPYrECUHZJFQJkD8GQLLlmyd4bA6uUOSyrIs2Ji62x5qRWBlsuZsgLuPzNb9tvuHvq2ApreRRwVGNgCA12A6jFc9uwkTezhxUdflfE1mK5MmLaVHaat%2FqK09mKZbpXpjVOnnTquylboh9KvSxb2WNihvuiFzR6jvUB2WIsGSN2MFy8l%2FwIAAP%2F%2FAQAA%2F%2F%2BPG5nPgQQAAA%3D%3D HTTP/1.1
Host: comprehendbighearted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Cookie: u_pl=16051319; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecb5b86c6f2b3f661e8cad3c7ca71e72cd=[3254335,3254354,3254334,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 429174615ed724005ee91a93ff5d5df7
Strict-Transport-Security: max-age=0; includeSubdomains
comprehendbighearted.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXkcQPbmswnpq8KIgk%2B75jwsuxjVLMCYxu5KbUF1VPSlT3dVWdU9PxktwRfY4ggf11Pkm2fizBPeuIBMva0DIgEgOBsSrN2XP0rMDow%2Fqe%2B%2FV9w7f96o%2B2c8uiIeMnm%2B8rQdSKbrQrHruS1sy5jq37tpt1%2Feq3jV3S8atxjW3X4Lpvep7zar3sntTsB29UPN8z%2FM9312WRoS6vzBlIZP7i3510as2alW%2F2UDf%2FL%2B3mQNLHfDeBbkMySdPbj98AMnGiKPvbgi7k%2BrklTejTNFUG%2FT40bvxTqzzGNG8DI2DMD6aTUPbCSGfX4KOj2YOoHsHpQMEckKc33wE8dFMJoLe4WOlgYKIEfBnkPfGEGoMScdg%2Bg4kPyMA41hbRxzdW9Mmp7uPWVqyE1J59DdkPiGV368gjo6XlOy7t7TKUqlji35YQPbHkN0xkuwE6cCBzE%2FA0o8g%2BS9k4dEq4uhg3SoNyYupeynHkOEYSgxBrYOsPNJBFjrIEgcRP3dpczH0vHYYhPV6p8EYq9cZa3ZavMnrjU7oIWOlvCHSZAimhmBmD4nZw4789Kx5GSb7EXa7gOUObDohzjt76PECuSDILUFOCXJJkKcEea845MrWbHGPK5sF%2FizXZrlejHTa3aeHOu2KmOwnF%2BTZ6Wr%2B%2BSvHjjh3g2bQabFWWAvqYavliw6jvM7ajLZ90a4xDisLSHtp6nYgJ%2BT5719EIieE%2FPonAnoCq07A5HOgmQ%2Baj9o1D3R71Oh4GMTHNgtSmSpp0yrTEbgukKQVpLvOvrogV6dK%2FK%2BuQ7DT6x8P%2Frh5fOVDMFMgMQXelz8RdNXd0abOycGmzi15sJ6kMpIDWj7grZSm4olv3hK7uTZ85YYdfv06K4myvH9b2HSVxlzGXUu%2BXZKcC7OsDRPkhxW7JYKNzG4vZSbOktWNN5ZXosQIa6WOx6Dy7L1DMDkhT33w8%2FRrXh0oSDOGyQpE2SmZBaQ%2BAUv2YJO5eqsJjJrPBImDPCtGphbML5UkUGLe06CA%2FU8fzOt9exddUwFN7yCOCvRMgZ4qQNUQNnt6lCbm9PrDL8r4EoGqjAJlKgeBMuqz6WpL2CzhtRJWYOW52%2FQbohN02ozzQDDut2v1Tt3zapw32ovCX0RqJ6x4IfkXAAD%2F%2FwEAAP%2F%2FzLNegYEEAAA%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 comprehendbighearted.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXkcQPbmswnpq8KIgk%2B75jwsuxjVLMCYxu5KbUF1VPSlT3dVWdU9PxktwRfY4ggf11Pkm2fizBPeuIBMva0DIgEgOBsSrN2XP0rMDow%2Fqe%2B%2FV9w7f96o%2B2c8uiIeMnm%2B8rQdSKbrQrHruS1sy5jq37tpt1%2Feq3jV3S8atxjW3X4Lpvep7zar3sntTsB29UPN8z%2FM9312WRoS6vzBlIZP7i3510as2alW%2F2UDf%2FL%2B3mQNLHfDeBbkMySdPbj98AMnGiKPvbgi7k%2BrklTejTNFUG%2FT40bvxTqzzGNG8DI2DMD6aTUPbCSGfX4KOj2YOoHsHpQMEckKc33wE8dFMJoLe4WOlgYKIEfBnkPfGEGoMScdg%2Bg4kPyMA41hbRxzdW9Mmp7uPWVqyE1J59DdkPiGV368gjo6XlOy7t7TKUqlji35YQPbHkN0xkuwE6cCBzE%2FA0o8g%2BS9k4dEq4uhg3SoNyYupeynHkOEYSgxBrYOsPNJBFjrIEgcRP3dpczH0vHYYhPV6p8EYq9cZa3ZavMnrjU7oIWOlvCHSZAimhmBmD4nZw4789Kx5GSb7EXa7gOUObDohzjt76PECuSDILUFOCXJJkKcEea845MrWbHGPK5sF%2FizXZrlejHTa3aeHOu2KmOwnF%2BTZ6Wr%2B%2BSvHjjh3g2bQabFWWAvqYavliw6jvM7ajLZ90a4xDisLSHtp6nYgJ%2BT5719EIieE%2FPonAnoCq07A5HOgmQ%2Baj9o1D3R71Oh4GMTHNgtSmSpp0yrTEbgukKQVpLvOvrogV6dK%2FK%2BuQ7DT6x8P%2Frh5fOVDMFMgMQXelz8RdNXd0abOycGmzi15sJ6kMpIDWj7grZSm4olv3hK7uTZ85YYdfv06K4myvH9b2HSVxlzGXUu%2BXZKcC7OsDRPkhxW7JYKNzG4vZSbOktWNN5ZXosQIa6WOx6Dy7L1DMDkhT33w8%2FRrXh0oSDOGyQpE2SmZBaQ%2BAUv2YJO5eqsJjJrPBImDPCtGphbML5UkUGLe06CA%2FU8fzOt9exddUwFN7yCOCvRMgZ4qQNUQNnt6lCbm9PrDL8r4EoGqjAJlKgeBMuqz6WpL2CzhtRJWYOW52%2FQbohN02ozzQDDut2v1Tt3zapw32ovCX0RqJ6x4IfkXAAD%2F%2FwEAAP%2F%2FzLNegYEEAAA%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkRRSuXkcQPbmswnpq8KIgk%2B75jwsuxjVLMCYxu5KbUF1VPSlT3dVWdU9PxktwRfY4ggf11Pkm2fizBPeuIBMva0DIgEgOBsSrN2XP0rMDow%2Fqe%2B%2FV9w7f96o%2B2c8uiIeMnm%2B8rQdSKbrQrHruS1sy5jq37tpt1%2Feq3jV3S8atxjW3X4Lpvep7zar3sntTsB29UPN8z%2FM9312WRoS6vzBlIZP7i3510as2alW%2F2UDf%2FL%2B3mQNLHfDeBbkMySdPbj98AMnGiKPvbgi7k%2BrklTejTNFUG%2FT40bvxTqzzGNG8DI2DMD6aTUPbCSGfX4KOj2YOoHsHpQMEckKc33wE8dFMJoLe4WOlgYKIEfBnkPfGEGoMScdg%2Bg4kPyMA41hbRxzdW9Mmp7uPWVqyE1J59DdkPiGV368gjo6XlOy7t7TKUqlji35YQPbHkN0xkuwE6cCBzE%2FA0o8g%2BS9k4dEq4uhg3SoNyYupeynHkOEYSgxBrYOsPNJBFjrIEgcRP3dpczH0vHYYhPV6p8EYq9cZa3ZavMnrjU7oIWOlvCHSZAimhmBmD4nZw4789Kx5GSb7EXa7gOUObDohzjt76PECuSDILUFOCXJJkKcEea845MrWbHGPK5sF%2FizXZrlejHTa3aeHOu2KmOwnF%2BTZ6Wr%2B%2BSvHjjh3g2bQabFWWAvqYavliw6jvM7ajLZ90a4xDisLSHtp6nYgJ%2BT5719EIieE%2FPonAnoCq07A5HOgmQ%2Baj9o1D3R71Oh4GMTHNgtSmSpp0yrTEbgukKQVpLvOvrogV6dK%2FK%2BuQ7DT6x8P%2Frh5fOVDMFMgMQXelz8RdNXd0abOycGmzi15sJ6kMpIDWj7grZSm4olv3hK7uTZ85YYdfv06K4myvH9b2HSVxlzGXUu%2BXZKcC7OsDRPkhxW7JYKNzG4vZSbOktWNN5ZXosQIa6WOx6Dy7L1DMDkhT33w8%2FRrXh0oSDOGyQpE2SmZBaQ%2BAUv2YJO5eqsJjJrPBImDPCtGphbML5UkUGLe06CA%2FU8fzOt9exddUwFN7yCOCvRMgZ4qQNUQNnt6lCbm9PrDL8r4EoGqjAJlKgeBMuqz6WpL2CzhtRJWYOW52%2FQbohN02ozzQDDut2v1Tt3zapw32ovCX0RqJ6x4IfkXAAD%2F%2FwEAAP%2F%2FzLNegYEEAAA%3D HTTP/1.1
Host: comprehendbighearted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Cookie: u_pl=16051319; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecb5b86c6f2b3f661e8cad3c7ca71e72cd=[3254335,3254354,3254334,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a9d4234d979816100068745644870824
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 56af66f8e67d41603a89d4691f86daad
5f4c3af23a0a470535add8e858b8d40a48558a88
cb6e90b75fab4929e214ba4b4ad1f95fa76f217036e9e2705f8bd823c7a95f75
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CB6E90B75FAB4929E214BA4B4AD1F95FA76F217036E9E2705F8BD823C7A95F75"
Last-Modified: Sun, 18 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8231
Expires: Mon, 19 Dec 2022 10:19:03 GMT
Date: Mon, 19 Dec 2022 08:01:52 GMT
Connection: keep-alive
comprehendbighearted.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2BtTuYPf%2FRkiEI8DXhRkNnu%2BR4DBmNMWIxJTCK5CfXVs%2BVUd7VV3dOz42UxIjmO4EE99b7ZzfoRFnNXkFkvcUHYAZE9uCBevSk5S08GRn9Qv496v8N7r%2Brj7eyE%2BMjo8Y23zFhpTddaNb%2F64h0VC5O76rXb1cCv%2Beerd1Tcbp6vjspkh68Efqvmv1S9IvnArNX9wPcDP6heVlaGZrS2QKGSB72g1vNrzXotaDUxsv%2BdXebBUQ9ieELOQIn5%2FzYePYTiM8TRt5ekG6QmefmNKNM0NRZDsfdOPIhNHiNataH1EMZ7y20YNyfks1Mw8d5SAcxwp1QApubE%2BzUAi%2FeWNMGGu0%2BYMg0Zg4mnkQ9nkHoGRWfg5i6UOCIAF7h2HXF0%2F5qxOd18gtISnZPK47%2Bg8jmp%2FHYWcbR%2FUatR9ZbRWapM7DAKC6jRDKo%2FQ5IdIB17UPkBePohlPiZrD2%2Bijjaue60gRLFQr1SM6hwBi0noM5DVh7lIQs9ZImHSBxXaasX%2Bn4nZGGj0W1yzhsNzlvdtmiJRrMb%2Bsh4SW%2BCNJmA6wm43UJitzBQnxy1zsBmP8BtFHDCg0vnxHt7C0NRIJcEuSPIKUGuCPKUIB8Wu0K7uivuC%2B0yFixrfVkbxdSk%2FW26a9K%2BjMl2ckKeWVjz9585BvK4ylqs2%2BbtsM4aYbsdyC6nosE7nHYC2alzAacKKHdqoXas5uS5715AouaE%2FPIHGD2A0wfg6lnQLADNp526D7oxbXZ9jON9l7FUpVq5tMZNBGEKJGkF6aa3rU%2FIuQWT4MtXIfnhhY%2FGv1%2FZP%2FsBuC2Q2ALvqR8J%2Bvre9KbJyc5Nkzvy8HqSqkiNafmAt1KaytNfvyk3c2PF%2BiU3%2Beo1XgJl%2B%2BC2dOlVGgsV9x355qISQtrLxnJJvl93dyS7kbmNi5mNs%2BTqjdcvr0eJlc4pE89A1dG7u%2BBqTv7%2F%2Fk%2BLr3luPICyM9isQJQdkmVAmQPwZAsuWbF3hsDq1Q5LTiPPiqmts9WlVgRarmbKCrh%2FzWzVb7t76NsKaHoXcVRgaAsMdQGqJ3DZU9M0sYcXHn1exhdgujJl2lZ2mLb609LaC2W6uTC5TOtw6rgqW6EfSr8uWdhjYYf6ohc2e4z2AtlhLRogdXNePJ%2F8AwAA%2F%2F8BAAD%2F%2F%2B2HOhiBBAAA
173.233.137.60200 OK 7 B URL HTTP/1.1 comprehendbighearted.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2BtTuYPf%2FRkiEI8DXhRkNnu%2BR4DBmNMWIxJTCK5CfXVs%2BVUd7VV3dOz42UxIjmO4EE99b7ZzfoRFnNXkFkvcUHYAZE9uCBevSk5S08GRn9Qv496v8N7r%2Brj7eyE%2BMjo8Y23zFhpTddaNb%2F64h0VC5O76rXb1cCv%2Beerd1Tcbp6vjspkh68Efqvmv1S9IvnArNX9wPcDP6heVlaGZrS2QKGSB72g1vNrzXotaDUxsv%2BdXebBUQ9ieELOQIn5%2FzYePYTiM8TRt5ekG6QmefmNKNM0NRZDsfdOPIhNHiNataH1EMZ7y20YNyfks1Mw8d5SAcxwp1QApubE%2BzUAi%2FeWNMGGu0%2BYMg0Zg4mnkQ9nkHoGRWfg5i6UOCIAF7h2HXF0%2F5qxOd18gtISnZPK47%2Bg8jmp%2FHYWcbR%2FUatR9ZbRWapM7DAKC6jRDKo%2FQ5IdIB17UPkBePohlPiZrD2%2Bijjaue60gRLFQr1SM6hwBi0noM5DVh7lIQs9ZImHSBxXaasX%2Bn4nZGGj0W1yzhsNzlvdtmiJRrMb%2Bsh4SW%2BCNJmA6wm43UJitzBQnxy1zsBmP8BtFHDCg0vnxHt7C0NRIJcEuSPIKUGuCPKUIB8Wu0K7uivuC%2B0yFixrfVkbxdSk%2FW26a9K%2BjMl2ckKeWVjz9585BvK4ylqs2%2BbtsM4aYbsdyC6nosE7nHYC2alzAacKKHdqoXas5uS5715AouaE%2FPIHGD2A0wfg6lnQLADNp526D7oxbXZ9jON9l7FUpVq5tMZNBGEKJGkF6aa3rU%2FIuQWT4MtXIfnhhY%2FGv1%2FZP%2FsBuC2Q2ALvqR8J%2Bvre9KbJyc5Nkzvy8HqSqkiNafmAt1KaytNfvyk3c2PF%2BiU3%2Beo1XgJl%2B%2BC2dOlVGgsV9x355qISQtrLxnJJvl93dyS7kbmNi5mNs%2BTqjdcvr0eJlc4pE89A1dG7u%2BBqTv7%2F%2Fk%2BLr3luPICyM9isQJQdkmVAmQPwZAsuWbF3hsDq1Q5LTiPPiqmts9WlVgRarmbKCrh%2FzWzVb7t76NsKaHoXcVRgaAsMdQGqJ3DZU9M0sYcXHn1exhdgujJl2lZ2mLb609LaC2W6uTC5TOtw6rgqW6EfSr8uWdhjYYf6ohc2e4z2AtlhLRogdXNePJ%2F8AwAA%2F%2F8BAAD%2F%2F%2B2HOhiBBAAA
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcxR%2BtTuYPf%2FRkiEI8DXhRkNnu%2BR4DBmNMWIxJTCK5CfXVs%2BVUd7VV3dOz42UxIjmO4EE99b7ZzfoRFnNXkFkvcUHYAZE9uCBevSk5S08GRn9Qv496v8N7r%2Brj7eyE%2BMjo8Y23zFhpTddaNb%2F64h0VC5O76rXb1cCv%2Beerd1Tcbp6vjspkh68Efqvmv1S9IvnArNX9wPcDP6heVlaGZrS2QKGSB72g1vNrzXotaDUxsv%2BdXebBUQ9ieELOQIn5%2FzYePYTiM8TRt5ekG6QmefmNKNM0NRZDsfdOPIhNHiNataH1EMZ7y20YNyfks1Mw8d5SAcxwp1QApubE%2BzUAi%2FeWNMGGu0%2BYMg0Zg4mnkQ9nkHoGRWfg5i6UOCIAF7h2HXF0%2F5qxOd18gtISnZPK47%2Bg8jmp%2FHYWcbR%2FUatR9ZbRWapM7DAKC6jRDKo%2FQ5IdIB17UPkBePohlPiZrD2%2Bijjaue60gRLFQr1SM6hwBi0noM5DVh7lIQs9ZImHSBxXaasX%2Bn4nZGGj0W1yzhsNzlvdtmiJRrMb%2Bsh4SW%2BCNJmA6wm43UJitzBQnxy1zsBmP8BtFHDCg0vnxHt7C0NRIJcEuSPIKUGuCPKUIB8Wu0K7uivuC%2B0yFixrfVkbxdSk%2FW26a9K%2BjMl2ckKeWVjz9585BvK4ylqs2%2BbtsM4aYbsdyC6nosE7nHYC2alzAacKKHdqoXas5uS5715AouaE%2FPIHGD2A0wfg6lnQLADNp526D7oxbXZ9jON9l7FUpVq5tMZNBGEKJGkF6aa3rU%2FIuQWT4MtXIfnhhY%2FGv1%2FZP%2FsBuC2Q2ALvqR8J%2Bvre9KbJyc5Nkzvy8HqSqkiNafmAt1KaytNfvyk3c2PF%2BiU3%2Beo1XgJl%2B%2BC2dOlVGgsV9x355qISQtrLxnJJvl93dyS7kbmNi5mNs%2BTqjdcvr0eJlc4pE89A1dG7u%2BBqTv7%2F%2Fk%2BLr3luPICyM9isQJQdkmVAmQPwZAsuWbF3hsDq1Q5LTiPPiqmts9WlVgRarmbKCrh%2FzWzVb7t76NsKaHoXcVRgaAsMdQGqJ3DZU9M0sYcXHn1exhdgujJl2lZ2mLb609LaC2W6uTC5TOtw6rgqW6EfSr8uWdhjYYf6ohc2e4z2AtlhLRogdXNePJ%2F8AwAA%2F%2F8BAAD%2F%2F%2B2HOhiBBAAA HTTP/1.1
Host: comprehendbighearted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Cookie: u_pl=16051319; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecb5b86c6f2b3f661e8cad3c7ca71e72cd=[3254335,3254354,3254334,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b7de94bbae38fccf051ce73a1972c986
Strict-Transport-Security: max-age=0; includeSubdomains
comprehendbighearted.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkxR%2Bt3v%2F8QfTksgrrqcGLgky65zsuuBjXLMGYxOxKbkJ1VfWkTHVXW9U9PRkPBldkjyN4UE%2BdN8nGjyW4dwWZeFkCQgZFcjAgXr0pe5aeHRj9Qf0%2B6v0O772qj%2FezC%2BIho%2Bcbb%2BqBVIouNKue%2B8KWjLnOrbt22%2FW9qnfN3ZJxq3HN7ZfJ9F72vWbVe9G9KdiOXqh5vuf5nu8uSyNC3V%2BYopDJ%2FUW%2FuuhVG7Wq32ygb%2F4728yBpQ5474JchuST%2F28%2FfADJxoijb28Iu5Pq5KXXo0zRVBv0%2BNHb8U6s8xjRvA2NgzA%2Bmm1D2wkhn12Cjo9mCqB7B6UCBHJCnF99BPHRjCaC3uFjpoGCiBHwp5D3xhBqDEnHYPoOJD8jAONYW0cc3VvTJqe7j1FaohNSefQXZD4hld%2BuII6Ol5Tsu7e0ylKpY4t%2BWED2x5DdMZLsBOnAgcxPwNIPIflPZOHRKuLoYN0qDcmLqXopx5DhGEoMQa2DrDzSQRY6yBIHET93aXMx9Lx2GIT1eqfBGKvXGWt2WrzJ641O6CFjJb0h0mQIpoZgZg%2BJ2cOO%2FOSseRkm%2BwF2u4DlDmw6Ic5be%2BjxArkgyC1BTglySZCnBHmvOOTK1mxxjyubBf6s1ma1Xox02t2nhzrtipjsJxfk6ak1f%2F%2BZY0ecu0Ez6LRYK6wF9bDV8kWHUV5nbUbbvmjXGIeVBaS9NFU7kBPy7HfPI5ETQn75AwE9gVUnYPIZ0MwHzUftmge6PWp0PAziY5sFqUyVtGmV6QhcF0jSCtJdZ19dkKtTJv6XmxDs9PpHg99vHl95H8wUSEyBd%2BWPBF11d7Spc3KwqXNLHqwnqYzkgJYPeCulqfjf12%2BI3VwbvnLDDr96lZVA2d6%2FLWy6SmMu464l3yxJzoVZ1oYJ8v2K3RLBRma3lzITZ8nqxmvLK1FihLVSx2NQefbOIZickCfe%2B3n6Na8OPoA0Y5isQJSdkllA6hOwZA82mbO3msCo%2BU6QXEKeFSNTC%2BaXShIoMZ9pUMD%2Baw7m%2Fb69i66pgKZ3EEcFeqZATxWgagibPTlKE3N6%2FeHnZXyBQFVGgTKVg0AZ9Wlp7fWpv2V6pUwrsPLcbfoN0Qk6bcZ5IBj327V6p%2B55Nc4b7UXhLyK1E1Y8l%2FwDAAD%2F%2FwEAAP%2F%2FajC2%2B4EEAAA%3D
173.233.137.60200 OK 7 B URL HTTP/1.1 comprehendbighearted.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkxR%2Bt3v%2F8QfTksgrrqcGLgky65zsuuBjXLMGYxOxKbkJ1VfWkTHVXW9U9PRkPBldkjyN4UE%2BdN8nGjyW4dwWZeFkCQgZFcjAgXr0pe5aeHRj9Qf0%2B6v0O772qj%2FezC%2BIho%2Bcbb%2BqBVIouNKue%2B8KWjLnOrbt22%2FW9qnfN3ZJxq3HN7ZfJ9F72vWbVe9G9KdiOXqh5vuf5nu8uSyNC3V%2BYopDJ%2FUW%2FuuhVG7Wq32ygb%2F4728yBpQ5474JchuST%2F28%2FfADJxoijb28Iu5Pq5KXXo0zRVBv0%2BNHb8U6s8xjRvA2NgzA%2Bmm1D2wkhn12Cjo9mCqB7B6UCBHJCnF99BPHRjCaC3uFjpoGCiBHwp5D3xhBqDEnHYPoOJD8jAONYW0cc3VvTJqe7j1FaohNSefQXZD4hld%2BuII6Ol5Tsu7e0ylKpY4t%2BWED2x5DdMZLsBOnAgcxPwNIPIflPZOHRKuLoYN0qDcmLqXopx5DhGEoMQa2DrDzSQRY6yBIHET93aXMx9Lx2GIT1eqfBGKvXGWt2WrzJ641O6CFjJb0h0mQIpoZgZg%2BJ2cOO%2FOSseRkm%2BwF2u4DlDmw6Ic5be%2BjxArkgyC1BTglySZCnBHmvOOTK1mxxjyubBf6s1ma1Xox02t2nhzrtipjsJxfk6ak1f%2F%2BZY0ecu0Ez6LRYK6wF9bDV8kWHUV5nbUbbvmjXGIeVBaS9NFU7kBPy7HfPI5ETQn75AwE9gVUnYPIZ0MwHzUftmge6PWp0PAziY5sFqUyVtGmV6QhcF0jSCtJdZ19dkKtTJv6XmxDs9PpHg99vHl95H8wUSEyBd%2BWPBF11d7Spc3KwqXNLHqwnqYzkgJYPeCulqfjf12%2BI3VwbvnLDDr96lZVA2d6%2FLWy6SmMu464l3yxJzoVZ1oYJ8v2K3RLBRma3lzITZ8nqxmvLK1FihLVSx2NQefbOIZickCfe%2B3n6Na8OPoA0Y5isQJSdkllA6hOwZA82mbO3msCo%2BU6QXEKeFSNTC%2BaXShIoMZ9pUMD%2Baw7m%2Fb69i66pgKZ3EEcFeqZATxWgagibPTlKE3N6%2FeHnZXyBQFVGgTKVg0AZ9Wlp7fWpv2V6pUwrsPLcbfoN0Qk6bcZ5IBj327V6p%2B55Nc4b7UXhLyK1E1Y8l%2FwDAAD%2F%2FwEAAP%2F%2FajC2%2B4EEAAA%3D
IP 173.233.137.60:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWgkxR%2Bt3v%2F8QfTksgrrqcGLgky65zsuuBjXLMGYxOxKbkJ1VfWkTHVXW9U9PRkPBldkjyN4UE%2BdN8nGjyW4dwWZeFkCQgZFcjAgXr0pe5aeHRj9Qf0%2B6v0O772qj%2FezC%2BIho%2Bcbb%2BqBVIouNKue%2B8KWjLnOrbt22%2FW9qnfN3ZJxq3HN7ZfJ9F72vWbVe9G9KdiOXqh5vuf5nu8uSyNC3V%2BYopDJ%2FUW%2FuuhVG7Wq32ygb%2F4728yBpQ5474JchuST%2F28%2FfADJxoijb28Iu5Pq5KXXo0zRVBv0%2BNHb8U6s8xjRvA2NgzA%2Bmm1D2wkhn12Cjo9mCqB7B6UCBHJCnF99BPHRjCaC3uFjpoGCiBHwp5D3xhBqDEnHYPoOJD8jAONYW0cc3VvTJqe7j1FaohNSefQXZD4hld%2BuII6Ol5Tsu7e0ylKpY4t%2BWED2x5DdMZLsBOnAgcxPwNIPIflPZOHRKuLoYN0qDcmLqXopx5DhGEoMQa2DrDzSQRY6yBIHET93aXMx9Lx2GIT1eqfBGKvXGWt2WrzJ641O6CFjJb0h0mQIpoZgZg%2BJ2cOO%2FOSseRkm%2BwF2u4DlDmw6Ic5be%2BjxArkgyC1BTglySZCnBHmvOOTK1mxxjyubBf6s1ma1Xox02t2nhzrtipjsJxfk6ak1f%2F%2BZY0ecu0Ez6LRYK6wF9bDV8kWHUV5nbUbbvmjXGIeVBaS9NFU7kBPy7HfPI5ETQn75AwE9gVUnYPIZ0MwHzUftmge6PWp0PAziY5sFqUyVtGmV6QhcF0jSCtJdZ19dkKtTJv6XmxDs9PpHg99vHl95H8wUSEyBd%2BWPBF11d7Spc3KwqXNLHqwnqYzkgJYPeCulqfjf12%2BI3VwbvnLDDr96lZVA2d6%2FLWy6SmMu464l3yxJzoVZ1oYJ8v2K3RLBRma3lzITZ8nqxmvLK1FihLVSx2NQefbOIZickCfe%2B3n6Na8OPoA0Y5isQJSdkllA6hOwZA82mbO3msCo%2BU6QXEKeFSNTC%2BaXShIoMZ9pUMD%2Baw7m%2Fb69i66pgKZ3EEcFeqZATxWgagibPTlKE3N6%2FeHnZXyBQFVGgTKVg0AZ9Wlp7fWpv2V6pUwrsPLcbfoN0Qk6bcZ5IBj327V6p%2B55Nc4b7UXhLyK1E1Y8l%2FwDAAD%2F%2FwEAAP%2F%2FajC2%2B4EEAAA%3D HTTP/1.1
Host: comprehendbighearted.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Cookie: u_pl=16051319; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecb5b86c6f2b3f661e8cad3c7ca71e72cd=[3254335,3254354,3254334,3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 85e5fb85585b39e91a17cfcc3053c99d
Strict-Transport-Security: max-age=0; includeSubdomains
adsco.re/p
162.252.214.5200 OK 169 B IP 162.252.214.5:0
File type ASCII text, with no line terminators
Hash ef07864711701950c2be7ad20a41121a
ed8bbace748aa36aa2bb5ea7254facea2a6f0420
6cb699fe9781de3b0edc6d8556956409e38478423f99feab7d52eabb4fab29b6
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1920
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Access-Control-Allow-Origin: https://www.subtitlist.com
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
hurricaneadvantagecomplication.com/pixel/purst?dl=0&th=0&sc=0&rs=2816&rd=2816&fd=847&bv=22.10.v.10&tmpl=136
173.233.137.52200 OK 0 B URL HTTP/1.1 hurricaneadvantagecomplication.com/pixel/purst?dl=0&th=0&sc=0&rs=2816&rd=2816&fd=847&bv=22.10.v.10&tmpl=136
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=2816&rd=2816&fd=847&bv=22.10.v.10&tmpl=136 HTTP/1.1
Host: hurricaneadvantagecomplication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Mon, 19 Dec 2022 08:01:52 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fe0299451380cb3f5ed65815f2641489
a7bdf757ccce5ec15fdb3097f3c7f61fd1b53064
8c979b157b5fac40e363c39abe233f531b84319e2221a31d185b922b2a210ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8C979B157B5FAC40E363C39ABE233F531B84319E2221A31D185B922B2A210FFD"
Last-Modified: Sat, 17 Dec 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2016
Expires: Mon, 19 Dec 2022 08:35:29 GMT
Date: Mon, 19 Dec 2022 08:01:53 GMT
Connection: keep-alive
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 97e484480972d62486edce22dc314988
248fb981c2b2a17f53fc9bc62189aa4199f859da
723e38b34965c721dd4f6466b40151eeebff27cc5410a730d918fc30ac38624a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 08:01:53 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 13:12:44 GMT
Expires: Sat, 24 Dec 2022 13:12:43 GMT
Etag: "248fb981c2b2a17f53fc9bc62189aa4199f859da"
Cache-Control: max-age=450049,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77be9ce35e6f1c0e-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7c4b64a4c1f2c4fcc94cbc14750af827
278056c9918136970c1dd350e18394cbcf901233
abd58c0850215104c59b9b74a425383676da55469d94eeb36b31d39269558302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "ABD58C0850215104C59B9B74A425383676DA55469D94EEB36B31D39269558302"
Last-Modified: Sat, 17 Dec 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18666
Expires: Mon, 19 Dec 2022 13:12:59 GMT
Date: Mon, 19 Dec 2022 08:01:53 GMT
Connection: keep-alive
blockadsnot.com/BbIU.html?_=BAYAY6AacAFjoBpwgAGBAsAAIEi_hHcraEt1K2-GBpnkB0kFJKRaVzpd2h5fQ70Lve5GwQBHMEUCIQDJWwhQ2t_m-qakwbzWyTAkB_HGK15pZVPRRmKqUxyQRQIgNutIv5ZEANGgqrrCzlj3NmGLPwaKakqy-MZDxEW56b0&v=4&dTJROofZ=4439273&minBid=&LEIUSDqM=0:1,0&sVvgkcwA=&CUHAvfMX=&s=1280,1024,1,1280,1024,0
208.95.112.254200 OK 44 B URL HTTP/2 blockadsnot.com/BbIU.html?_=BAYAY6AacAFjoBpwgAGBAsAAIEi_hHcraEt1K2-GBpnkB0kFJKRaVzpd2h5fQ70Lve5GwQBHMEUCIQDJWwhQ2t_m-qakwbzWyTAkB_HGK15pZVPRRmKqUxyQRQIgNutIv5ZEANGgqrrCzlj3NmGLPwaKakqy-MZDxEW56b0&v=4&dTJROofZ=4439273&minBid=&LEIUSDqM=0:1,0&sVvgkcwA=&CUHAvfMX=&s=1280,1024,1,1280,1024,0
IP 208.95.112.254:0
File type ASCII text, with no line terminators
Hash d5f0a25e4d3522d56d48ce7bc3e518fb
86794caff58f7fee6e684c2ba7195f970a8d6f4c
9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /BbIU.html?_=BAYAY6AacAFjoBpwgAGBAsAAIEi_hHcraEt1K2-GBpnkB0kFJKRaVzpd2h5fQ70Lve5GwQBHMEUCIQDJWwhQ2t_m-qakwbzWyTAkB_HGK15pZVPRRmKqUxyQRQIgNutIv5ZEANGgqrrCzlj3NmGLPwaKakqy-MZDxEW56b0&v=4&dTJROofZ=4439273&minBid=&LEIUSDqM=0:1,0&sVvgkcwA=&CUHAvfMX=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: blockadsnot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
asf: 9
popads-ec: ASB
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Mon, 19 Dec 2022 08:01:53 GMT
X-Firefox-Spdy: h2
ltm6lrlzvpo4.s4.adsco.re/
185.200.116.90200 OK 0 B URL HTTP/1.1 ltm6lrlzvpo4.s4.adsco.re/
IP 185.200.116.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: ltm6lrlzvpo4.s4.adsco.re
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2022 08:01:53 GMT
Content-Type: text/html
Content-Length: 0
Last-Modified: Mon, 30 Jul 2018 15:38:01 GMT
Connection: close
ETag: "5b5f30d9-0"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7b18428df832332e2f89ca51203de4ba
8272451b056b54992cfa05e70c53adde8b744299
c9bdf42b2f8b0cf614cd4821bce48a719d284c836eb98959dce1802dea20e617
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7067973a30c54b2897aeeb5e204f014
7b0711fd3909e48347441e4edc9c429af69595a9
b224be5e7ec78abaa46ab333f0adee535cb24e5bc4b2b721c441e4061043a467
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=www.subtitlist.com
172.217.21.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.subtitlist.com
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.subtitlist.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Dec 2022 08:01:53 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.subtitlist.com
216.58.207.194200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.subtitlist.com
IP 216.58.207.194:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.subtitlist.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Dec 2022 08:01:53 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1a82a639c3461dfaacbfd676a0cd54ff
b3f8860c023af1d9f68935a0c1dacecc19f3f9d2
f90b6056dc553d946852185e89a3adf85a53ed75787f688a2adaabaa818623d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1674
Cache-Control: max-age=162198
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:53 GMT
Etag: "639fea7d-116"
Expires: Wed, 21 Dec 2022 05:05:11 GMT
Last-Modified: Mon, 19 Dec 2022 04:37:17 GMT
Server: ECS (amb/6B9A)
X-Cache: HIT
Content-Length: 278
i.jeded.com/i/rick-and-morty-sixth-season.154-245079.jpg
188.114.97.1200 OK 19 kB URL HTTP/2 i.jeded.com/i/rick-and-morty-sixth-season.154-245079.jpg
IP 188.114.97.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 154x228, components 3\012- data
Hash 7efa9f3ec77955fc75864ae4df42ae3a
59801bf555825817204da5f70eba1583eae8f90a
ba617c1f0de63af87af7b434ef727982f16b0db26f9a2ed9b7ca92e12df2da85
GET /i/rick-and-morty-sixth-season.154-245079.jpg HTTP/1.1
Host: i.jeded.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:53 GMT
content-type: image/jpeg
content-length: 19373
cache-control: public, max-age=14400
last-modified: Mon, 05 Sep 2022 08:23:59 GMT
etag: "4062d90c1d81:0"
x-powered-by: ASP.NET
cf-cache-status: HIT
age: 110
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YdzqkmmpWGLEkfQ%2FCnuQ2RlPDyjO6l%2F8jpBObYG%2Fj7r6MpwyAK79LrG1t%2F4yly8T328lQtoRXD8a%2FT02r90FoNOS3BgqDuqXYLWb0uySOmgX5HbTgrzjlDBk7wibaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77be9ce7094cb50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7b18428df832332e2f89ca51203de4ba
8272451b056b54992cfa05e70c53adde8b744299
c9bdf42b2f8b0cf614cd4821bce48a719d284c836eb98959dce1802dea20e617
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c7067973a30c54b2897aeeb5e204f014
7b0711fd3909e48347441e4edc9c429af69595a9
b224be5e7ec78abaa46ab333f0adee535cb24e5bc4b2b721c441e4061043a467
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dde4451c6b4b4ad7fd1917cd5cef47a6
150e5c6249857986438af067e1447cd8f5cb62c7
272f53c52141deb8035570e29c56aa6715281e9d7e28fedd36142407d16607f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "272F53C52141DEB8035570E29C56AA6715281E9D7E28FEDD36142407D16607F3"
Last-Modified: Sat, 17 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8556
Expires: Mon, 19 Dec 2022 10:24:29 GMT
Date: Mon, 19 Dec 2022 08:01:53 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1a82a639c3461dfaacbfd676a0cd54ff
b3f8860c023af1d9f68935a0c1dacecc19f3f9d2
f90b6056dc553d946852185e89a3adf85a53ed75787f688a2adaabaa818623d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1674
Cache-Control: max-age=162198
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:53 GMT
Etag: "639fea7d-116"
Expires: Wed, 21 Dec 2022 05:05:11 GMT
Last-Modified: Mon, 19 Dec 2022 04:37:17 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a629ae1225bc14881cd190ba5b7a62a
f524f2c5446ad5e5299001cef5721fbda6ea6e96
259562cb753ef25574c4345ba8eba508b8d1f38e08121f2adf1bbfe2115e230b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.subtitlist.com&callback=_gfp_s_&client=ca-pub-2295842371224614&gpid_exp=1
216.58.207.226200 OK 254 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.subtitlist.com&callback=_gfp_s_&client=ca-pub-2295842371224614&gpid_exp=1
IP 216.58.207.226:0
File type ASCII text, with very long lines (395), with no line terminators
Hash 3c59307437cdbd429fcfd18d869c534b
a653263ab4184af1bce35721395dc2631fb7791c
53d331d8a7fbbba8085911fa34b397f45b389ea327cbfdbed3aaae26f0e89dc0
GET /gampad/cookie.js?domain=www.subtitlist.com&callback=_gfp_s_&client=ca-pub-2295842371224614&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 19 Dec 2022 08:01:53 GMT
server: cafe
cache-control: private
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0a629ae1225bc14881cd190ba5b7a62a
f524f2c5446ad5e5299001cef5721fbda6ea6e96
259562cb753ef25574c4345ba8eba508b8d1f38e08121f2adf1bbfe2115e230b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
temperrunnersdale.com/watch.853396517409.js?key=bdd0c19147074acfd3311a86ff93ac04&kw=%5B%22download%22%2C%22brazillian-portuguese%22%2C%22subtitle%22%2C%22for%22%2C%22rick%22%2C%22and%22%2C%22morty%22%2C%22-%22%2C%22season%22%2C%226%22%2C%22-%22%2C%22subtitlist%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=5d4438d5-63fb-4e66-8c7a-06f57bfabfc1%3A2%3A1
192.243.59.12307 Temporary Redirect 0 B URL HTTP/1.1 temperrunnersdale.com/watch.853396517409.js?key=bdd0c19147074acfd3311a86ff93ac04&kw=%5B%22download%22%2C%22brazillian-portuguese%22%2C%22subtitle%22%2C%22for%22%2C%22rick%22%2C%22and%22%2C%22morty%22%2C%22-%22%2C%22season%22%2C%226%22%2C%22-%22%2C%22subtitlist%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=5d4438d5-63fb-4e66-8c7a-06f57bfabfc1%3A2%3A1
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.853396517409.js?key=bdd0c19147074acfd3311a86ff93ac04&kw=%5B%22download%22%2C%22brazillian-portuguese%22%2C%22subtitle%22%2C%22for%22%2C%22rick%22%2C%22and%22%2C%22morty%22%2C%22-%22%2C%22season%22%2C%226%22%2C%22-%22%2C%22subtitlist%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=5d4438d5-63fb-4e66-8c7a-06f57bfabfc1%3A2%3A1 HTTP/1.1
Host: temperrunnersdale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.6
Date: Mon, 19 Dec 2022 08:01:53 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.subtitlist.com
Access-Control-Allow-Origin: https://www.subtitlist.com
Access-Control-Allow-Credentials: true
Location: https://temperrunnersdale.com/watch.853396517409.js?key=bdd0c19147074acfd3311a86ff93ac04&kw=%5B%22download%22%2C%22brazillian-portuguese%22%2C%22subtitle%22%2C%22for%22%2C%22rick%22%2C%22and%22%2C%22morty%22%2C%22-%22%2C%22season%22%2C%226%22%2C%22-%22%2C%22subtitlist%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=5d4438d5-63fb-4e66-8c7a-06f57bfabfc1%3A2%3A1&shu=6cd71831d4762b8c4d743c6f8154244ede3579134c9a6f8665fda10a85f13a7020e1b5eeaef24e6732d7da2e472283444eca642f8413aeafed49451e1d44624db019e4a949d1c1886857e3b1bc59c4780519c5135734ac945e1f32801bbe00&pst=1671436973&rmtc=t
Set-Cookie: u_pl=16069445; expires=Tue, 20 Dec 2022 08:01:53 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.zcG6ppuDszlKJyeRRNHEE4zZSg0fYulzVYkUJ3zC3e8; expires=Mon, 19 Dec 2022 08:02:53 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 021388899ed10149c1b7fb14bd6abdbd
Strict-Transport-Security: max-age=0; includeSubdomains
temperrunnersdale.com/watch.853396517409.js?key=bdd0c19147074acfd3311a86ff93ac04&kw=%5B%22download%22%2C%22brazillian-portuguese%22%2C%22subtitle%22%2C%22for%22%2C%22rick%22%2C%22and%22%2C%22morty%22%2C%22-%22%2C%22season%22%2C%226%22%2C%22-%22%2C%22subtitlist%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=5d4438d5-63fb-4e66-8c7a-06f57bfabfc1%3A2%3A1&shu=6cd71831d4762b8c4d743c6f8154244ede3579134c9a6f8665fda10a85f13a7020e1b5eeaef24e6732d7da2e472283444eca642f8413aeafed49451e1d44624db019e4a949d1c1886857e3b1bc59c4780519c5135734ac945e1f32801bbe00&pst=1671436973&rmtc=t
192.243.59.12200 OK 2.1 kB URL HTTP/1.1 temperrunnersdale.com/watch.853396517409.js?key=bdd0c19147074acfd3311a86ff93ac04&kw=%5B%22download%22%2C%22brazillian-portuguese%22%2C%22subtitle%22%2C%22for%22%2C%22rick%22%2C%22and%22%2C%22morty%22%2C%22-%22%2C%22season%22%2C%226%22%2C%22-%22%2C%22subtitlist%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=5d4438d5-63fb-4e66-8c7a-06f57bfabfc1%3A2%3A1&shu=6cd71831d4762b8c4d743c6f8154244ede3579134c9a6f8665fda10a85f13a7020e1b5eeaef24e6732d7da2e472283444eca642f8413aeafed49451e1d44624db019e4a949d1c1886857e3b1bc59c4780519c5135734ac945e1f32801bbe00&pst=1671436973&rmtc=t
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash ac9ce0b0cf1fc8bc33a066070543f05b
05553226351d734d6ee9eb72b075767a6a25ca08
064ade721aacc1881b156e4d3a291ae4dbe7b330a6e664fb33f2c174e4a2e9de
Analyzer Verdict Alert quad9 Sinkholed
GET /watch.853396517409.js?key=bdd0c19147074acfd3311a86ff93ac04&kw=%5B%22download%22%2C%22brazillian-portuguese%22%2C%22subtitle%22%2C%22for%22%2C%22rick%22%2C%22and%22%2C%22morty%22%2C%22-%22%2C%22season%22%2C%226%22%2C%22-%22%2C%22subtitlist%22%5D&refer=&tz=0&dev=e&res=12.1055&uuid=5d4438d5-63fb-4e66-8c7a-06f57bfabfc1%3A2%3A1&shu=6cd71831d4762b8c4d743c6f8154244ede3579134c9a6f8665fda10a85f13a7020e1b5eeaef24e6732d7da2e472283444eca642f8413aeafed49451e1d44624db019e4a949d1c1886857e3b1bc59c4780519c5135734ac945e1f32801bbe00&pst=1671436973&rmtc=t HTTP/1.1
Host: temperrunnersdale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Referer: https://www.subtitlist.com/
Connection: keep-alive
Cookie: u_pl=16069445; ain=eyJhbGciOiJIUzI1NiJ9.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.zcG6ppuDszlKJyeRRNHEE4zZSg0fYulzVYkUJ3zC3e8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 19 Dec 2022 08:01:54 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.subtitlist.com
Access-Control-Allow-Origin: https://www.subtitlist.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=5d4438d5-63fb-4e66-8c7a-06f57bfabfc1:2:1; expires=Mon, 26 Dec 2022 08:01:54 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 20 Dec 2022 08:01:54 GMT; secure; SameSite=None
uncs=1; expires=Tue, 20 Dec 2022 08:01:54 GMT; secure; SameSite=None
pdhtkv23=true; expires=Tue, 20 Dec 2022 08:01:54 GMT; secure; SameSite=None
uncs23=1; expires=Tue, 20 Dec 2022 08:01:54 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7f6f9da664086b7b6abe007b52f24a51
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 19 Dec 2022 06:41:08 GMT
expires: Mon, 19 Dec 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 4846
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2458f74b77e58363938c46672acd8c03
00d3566d5d6fccccf70ef3bcba11f85bc0ee33c8
58b235aa8df4c7d8b3e2a1032f96512e93ec33bbd246ee8a295f9215381223ea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cloudimagesb.com/bi/48/97/ed/4897ed85f2769f50ce06d89f6f9cc34d/1671018367.jpg
45.133.44.10200 OK 54 kB URL HTTP/2 cdn.cloudimagesb.com/bi/48/97/ed/4897ed85f2769f50ce06d89f6f9cc34d/1671018367.jpg
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:11:30 18:54:22], progressive, precision 8, 728x90, components 3\012- data
Hash 8845f9be2a7a21c1fda82713e9f33534
70e34cb9a661131bea2c6ccc043d4dbdc1588ad3
869165749f1c8ab2a563034a9ccc212f033ca13a5fbe6c4302944ced88079391
GET /bi/48/97/ed/4897ed85f2769f50ce06d89f6f9cc34d/1671018367.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:54 GMT
content-type: image/jpeg
content-length: 53862
server: nginx/1.17.6
last-modified: Wed, 14 Dec 2022 11:46:15 GMT
etag: "6399b787-d266"
expires: Wed, 21 Dec 2022 08:01:54 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2.js
172.217.21.161200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Mon, 19 Dec 2022 08:01:54 GMT
expires: Mon, 19 Dec 2022 08:01:54 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
172.217.21.161200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 17:31:48 GMT
expires: Sat, 16 Dec 2023 17:31:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 225006
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-76326125-26&cid=1540036179.1671436914&jid=195074777&gjid=1589629364&_gid=129158336.1671436914&_u=YADAAUAAAAAAACAAI~&z=1737944141
209.85.233.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-76326125-26&cid=1540036179.1671436914&jid=195074777&gjid=1589629364&_gid=129158336.1671436914&_u=YADAAUAAAAAAACAAI~&z=1737944141
IP 209.85.233.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-76326125-26&cid=1540036179.1671436914&jid=195074777&gjid=1589629364&_gid=129158336.1671436914&_u=YADAAUAAAAAAACAAI~&z=1737944141 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.subtitlist.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 19 Dec 2022 08:01:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 03c8258e1c16364384a10c746732e080
24f121ea76ab812448228b238fadc421f5c4d6c8
9dfb03f619014cd8683030fb68b00b8a0befd9ad9755fcd77c69a2a4e163d397
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Dec 2022 08:01:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.132200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash b4741012715135f7198462923d8f9a4f
1d763e51055a30e75079ac707ae400142069ba6f
f8c96d954578aef720ec4ba777adbf285c446d26c5f11707d89151c1f5a94485
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.subtitlist.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Mon, 19 Dec 2022 08:01:54 GMT
date: Mon, 19 Dec 2022 08:01:54 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-if9p1VUe5782eociS3Z08A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-V89VYGQ4BR>m=2oebu0&_p=972392990&cid=1540036179.1671436914&ul=en-us&sr=1280x1024&_s=1&sid=1671436914&sct=1&seg=0&dl=https%3A%2F%2Fwww.subtitlist.com%2Fsubtitles%2Frick-and-morty-sixth-season%2Fbrazillian-portuguese%2F2882452&dt=Download%20Brazillian-portuguese%20Subtitle%20for%20Rick%20and%20Morty%20-%20Season%206%20-%20Subtitlist&en=page_view&_fv=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-V89VYGQ4BR>m=2oebu0&_p=972392990&cid=1540036179.1671436914&ul=en-us&sr=1280x1024&_s=1&sid=1671436914&sct=1&seg=0&dl=https%3A%2F%2Fwww.subtitlist.com%2Fsubtitles%2Frick-and-morty-sixth-season%2Fbrazillian-portuguese%2F2882452&dt=Download%20Brazillian-portuguese%20Subtitle%20for%20Rick%20and%20Morty%20-%20Season%206%20-%20Subtitlist&en=page_view&_fv=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-V89VYGQ4BR>m=2oebu0&_p=972392990&cid=1540036179.1671436914&ul=en-us&sr=1280x1024&_s=1&sid=1671436914&sct=1&seg=0&dl=https%3A%2F%2Fwww.subtitlist.com%2Fsubtitles%2Frick-and-morty-sixth-season%2Fbrazillian-portuguese%2F2882452&dt=Download%20Brazillian-portuguese%20Subtitle%20for%20Rick%20and%20Morty%20-%20Season%206%20-%20Subtitlist&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.subtitlist.com
date: Mon, 19 Dec 2022 08:01:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blockadsnot.com/glide.min.js
185.76.9.16200 OK 0 B URL HTTP/2 www.blockadsnot.com/glide.min.js
IP 185.76.9.16:0
ASN #60068 Datacamp Limited
GET /glide.min.js HTTP/1.1
Host: www.blockadsnot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.subtitlist.com
Connection: keep-alive
Referer: https://www.subtitlist.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 19 Dec 2022 08:01:51 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
expires: Sat, 24 Dec 2022 00:48:24 GMT
access-control-allow-origin: *
link: <https://blockadsnot.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-accel-expires: @1671842905
server: CDN77-Turbo
x-77-nzt: AblMCQ3SWYv/lggDAA
x-77-nzt-ray: c0a4cc28b937d4fa6f1aa063294ab515
x-cache: HIT
x-age: 198806
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2