www.maleenhacement.best/11942-179-5670-59803059/jeisenman/tindex1.html
188.114.96.1 838 B URL www.maleenhacement.best/11942-179-5670-59803059/jeisenman/tindex1.html
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 99ecd6db9c6c23ea737af02aba9b6c58
872f6c1594a4783b666ab0e03ceeb7bdd54657aa
52519489c4a33fab22648bc3257c513290aa56c3ae8d176804ecf107e4488b81
Analyzer Verdict Alert fortinet Spam
GET /11942-179-5670-59803059/jeisenman/tindex1.html HTTP/1.1
Host: www.maleenhacement.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 13 Apr 2023 20:22:30 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.4
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UxsVNClDN%2FNYkt1MfH2CJj6wDFeIAjjtluupjYjwRbAu5KRIqqA3rb2OLWFyp%2Ff1RNjN2XxMwrU%2FarVrjCjopixFjhP7EpNCE1s8kQANX3lpegyVKi0E%2BrY9eSlasaCbaDoDEXYNxRp%2FlQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b766be58b37b50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f69556f96addf59393c63ef21818749b
789d0d9f1505ad2cecdf48a6c3c4c3fc393f0b6e
346892b415ce1392b9a8f898b417349886229bf9c81f62161f9fdc019f6e89aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 20:22:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js
142.250.74.170 33 kB URL ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32089)
Hash bf899cc5ba60c522341e4d712a5246bf
2c92c54c9919c8b81b4e77a97bfd4d8f202e1a6a
4f8b9bf1630c24cf17444ec093052451c370c9371212db74b4bf8b4fd71a2817
GET /ajax/libs/jquery/1.9.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.maleenhacement.best/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33018
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 17:48:42 GMT
expires: Fri, 12 Apr 2024 17:48:42 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 9228
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.maleenhacement.best/ajax/get_js/main/
188.114.96.1 721 B URL www.maleenhacement.best/ajax/get_js/main/
IP 188.114.96.1:0
File type ASCII text, with CRLF line terminators
Hash 68ff9b89e802e92d13aacc616e51a12c
e63ae02b454fbf8bc3f3e86997c5f0f1d779ad18
2e6b7ba3eec9a60b566cdd3f208eab34357c10fe75222f892dfebf13136eb534
Analyzer Verdict Alert fortinet Malware
GET /ajax/get_js/main/ HTTP/1.1
Host: www.maleenhacement.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.maleenhacement.best/11942-179-5670-59803059/jeisenman/tindex1.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 13 Apr 2023 20:22:30 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.4
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k8bNJ1gMWxKwcxIpcn0wiUPyeyuPMSju0fC8AGL7SpD8gB6Fm9rK4XciTeY22wt3xkwDzaKgt0CxQQsW3psSz5furN13RMHEh1z8gfD0DeDd%2FjhQShUWYjx5dcRja9OCdvkw7CE%2Fm2U0Ew%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b766be76edbb50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 81375129214a57d2dc6793c1f3ac675a
d123df1cd6676e813a0dc11b5226616449ba6ef1
c08b4485550568c320579d60318c5b1fea9220df17e490418a561b541f6f2441
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 20:22:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.maleenhacement.best/ajax/get_imgl/loading.gif/
188.114.97.1 8.3 kB URL www.maleenhacement.best/ajax/get_imgl/loading.gif/
IP 188.114.97.1:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 5ca630697891902c87111c0248617eb1
0eafb45eb48b02a558ed8bc0afe9306132234eb9
f5822f713ac663d495c62ecd1dfcdfb1ecc28d694166e8ecc7e6b466f025f154
Analyzer Verdict Alert fortinet Malware
GET /ajax/get_imgl/loading.gif/ HTTP/1.1
Host: www.maleenhacement.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.maleenhacement.best/11942-179-5670-59803059/jeisenman/tindex1.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 13 Apr 2023 20:22:30 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.4
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B1wxGIj3P85x5Bd3jJG%2BIoeblN2lNBAzPWorC37inD41oePPPbf5Qc6vgYOGL2e6ZOIJ9DstlBck74q8lK0SCIaSK%2BQb87TSu5B0wikBG6em68mTq66DdBscF%2By1ILRjg0%2BXagyJzlfaFA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b766be86fb7b511-OSL
alt-svc: h2=":443"; ma=60
www.maleenhacement.best/favicon.ico
188.114.97.1 182 B URL www.maleenhacement.best/favicon.ico
IP 188.114.97.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e26918a572d6566f76fa74f901c866cb
a5dcfbfb5b613f5c482a27f230d771d5d4e22d29
ac2206af41d4c590352b689e8c4a82a77fe82a1f27df3298b9fab1dd6572a5db
GET /favicon.ico HTTP/1.1
Host: www.maleenhacement.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.maleenhacement.best/11942-179-5670-59803059/jeisenman/tindex1.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Date: Thu, 13 Apr 2023 20:22:30 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 147
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QaTFlq1OwGmT3tk%2FQ4gT45xnXCeKyN1zQ3c%2Fy7FqwTV%2Fr5zTeY7K0p8EBsWpDLra%2BVshxk%2FvVm0oovYciQ5RMu%2F7Bf%2BF3yQkhf9k1V9iUu66QOu4iia%2B4sWD%2F9LMKEfh8%2FqBGASyuY%2FWoA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b766be94dadb52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.maleenhacement.best/ajax/get_imgl/loading.gif/
188.114.96.1 8.3 kB URL www.maleenhacement.best/ajax/get_imgl/loading.gif/
IP 188.114.96.1:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash 5ca630697891902c87111c0248617eb1
0eafb45eb48b02a558ed8bc0afe9306132234eb9
f5822f713ac663d495c62ecd1dfcdfb1ecc28d694166e8ecc7e6b466f025f154
Analyzer Verdict Alert fortinet Malware
GET /ajax/get_imgl/loading.gif/ HTTP/1.1
Host: www.maleenhacement.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 13 Apr 2023 20:22:30 GMT
Content-Type: image/gif
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.4
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j0m8yr%2B90vmIp9Nq1%2FrKEArOzCt8QT%2FrMxdo5fhJc39n%2BkmDLuxl9sEF35KjtAh4dg66D5P7VFTvP3o%2F0npO5kLIS6%2BrVW0%2Br3KodPD9SLZThOKRgnCsrnwGmABpUp28zhzwNyCiVfQqjA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b766be8a8a1b50c-OSL
alt-svc: h2=":443"; ma=60
www.maleenhacement.best/ajax_m/get_main_page/11942/1/0/59803059/11942-59803059-0-0/179/5670/
188.114.97.1 64 B URL www.maleenhacement.best/ajax_m/get_main_page/11942/1/0/59803059/11942-59803059-0-0/179/5670/
IP 188.114.97.1:0
File type ASCII text, with no line terminators
Hash a6b540fd73e428b789322bd050d157a0
65172e85b024a03c2d4fa094a5fa4c7c32dbf1b2
6bca9b58be96cce7d790c77b53bf2416abed1148c1ed4ff27ad37a4d787ecdb9
Analyzer Verdict Alert fortinet Spam
GET /ajax_m/get_main_page/11942/1/0/59803059/11942-59803059-0-0/179/5670/ HTTP/1.1
Host: www.maleenhacement.best
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.maleenhacement.best/11942-179-5670-59803059/jeisenman/tindex1.html
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 13 Apr 2023 20:22:31 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.4
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XceqjUfMXeUG7iRMn4CiD6ZeqnQ%2BAM7Um7yGtSPI9kNexoXfFpdwqWDyjQxOtZRyXkB6U6neck%2BUl8zdqpUSCJGuutOX33R18BVnO1hA81a2V5zNNQVwT4PCSyiWH%2FzSS0zTyCNIB8GNqg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7b766be94915b51e-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.websgreen.com/Ntpk/v8/gcfrt
188.114.96.1301 Moved Permanently 0 B URL User Request GET HTTP/2 www.websgreen.com/Ntpk/v8/gcfrt
IP 188.114.96.1:443
Certificate IssuerGoogle Trust Services LLC
Subject*.websgreen.com
Fingerprint57:66:7F:63:05:FF:C7:4B:8C:8B:23:D3:11:FB:9E:37:DC:4D:4B:2B
ValiditySat, 18 Feb 2023 06:57:53 GMT - Fri, 19 May 2023 06:57:52 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Ntpk/v8/gcfrt HTTP/1.1
Host: www.websgreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.maleenhacement.best/
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 13 Apr 2023 20:22:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 13 Apr 2023 21:22:31 GMT
Location: https://www.websgreen.com/Ntpk/v8/gcfrt
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZosIdPMP6uP2vkzxLrKMqZVEwWSg9TqX4%2BO%2BmZ84nOKuYVXiowbsUDnhwiCBJ7ohS7lEavzlYf%2BKzNXHBkXjG92I0VLfbEgwBOsVDFxhxSKPtFHdjKQstjCauNPhwkjKZx62%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b766bec5ae9b4f1-OSL
alt-svc: h2=":443"; ma=60
www.websgreen.com/Ntpk/v8/gcfrt
188.114.96.1301 Moved Permanently 315 B URL User Request GET HTTP/2 www.websgreen.com/Ntpk/v8/gcfrt
IP 188.114.96.1:443
Certificate IssuerGoogle Trust Services LLC
Subject*.websgreen.com
Fingerprint57:66:7F:63:05:FF:C7:4B:8C:8B:23:D3:11:FB:9E:37:DC:4D:4B:2B
ValiditySat, 18 Feb 2023 06:57:53 GMT - Fri, 19 May 2023 06:57:52 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 60c379a034a6e0f9dc087ffd6a1e84d0
df660e93bdb9863a8cb5ec3d6f4a9ba622d8316b
d1e09819dff6fa5938b13565a4bd6691a0c2c7a60c659e5a473f986e935710b2
GET /Ntpk/v8/gcfrt HTTP/1.1
Host: www.websgreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.maleenhacement.best/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 13 Apr 2023 20:22:31 GMT
content-type: text/html; charset=iso-8859-1
location: http://www.websgreen.com/Ntpk/v8/gcfrt/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LD9SwLSDJ6Opy1RBHWXpXwqgZHwPrhiyFRnCvfGH8j16y1pphKbD%2FAuwRIO9%2B6Bxmoe4W37V4y0HyJ3bMfuZWIr5IGRdH3ZD20ecnYuINZ841gmYYzOqEn5L%2BEyCNFzTNMkayQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b766becab4ab52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash f69556f96addf59393c63ef21818749b
789d0d9f1505ad2cecdf48a6c3c4c3fc393f0b6e
346892b415ce1392b9a8f898b417349886229bf9c81f62161f9fdc019f6e89aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 20:22:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash dad36228a43ef75423b30f2a7187c8df
fc69f3caff127fe6fe7b6c85a2367586c9653ef8
dd752d5beff111653203c5b14038b720e38cb4bba3f3a753c72841e29ea4c40b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 20:22:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
142.250.74.170200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js
IP 142.250.74.170:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint77:43:87:91:D0:0A:64:BD:84:1C:9A:F5:10:86:8E:8E:04:F1:F9:A3
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File type ASCII text, with very long lines (65451)
Hash 0f83cadc148d2ad7e53c91f6c4ee05bb
90035c5fffedf4b0f099465f6b929a030b46c92b
3f59aa77bbbed7760a9968af27d3c19ffddda021c948edf0bf0c0f828dd308ae
GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.websgreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30399
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 09:52:36 GMT
expires: Fri, 12 Apr 2024 09:52:36 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 37795
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js
142.250.74.132200 OK 555 B URL GET HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.132:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint32:55:D3:30:01:87:C1:43:56:A2:49:7D:77:5F:E1:F2:3C:04:60:E7
ValidityMon, 20 Mar 2023 08:26:32 GMT - Mon, 12 Jun 2023 08:26:31 GMT
File type ASCII text, with very long lines (850), with no line terminators
Hash d171e7bc61a08afb0bf0473a731c4b04
8a60e9d2c25123bfc9842e199b0b938149b1404d
c02e7bc93fc705d6bd5dacc6aab41b7a8c6597efb0f73848f8a30642b91cf201
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.websgreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Thu, 13 Apr 2023 20:22:31 GMT
date: Thu, 13 Apr 2023 20:22:31 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 555
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
188.114.98.234200 OK 21 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
IP 188.114.98.234:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65371)
Hash 034a2409714ef20237a733c94b6ca2f3
21326e99c411904b54ba378763864c1373d1dbef
8993f50fb6f69e979acefb13c1754d1eb10b46029da730db1f4c4bcafc87062b
GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.websgreen.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 13 Apr 2023 20:22:31 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 632, 617, 617, 617
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 2021-06-08 21:21:23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: f3a3007506374a305b1a96efe5ee1490
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 88563
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7b766bf099d8b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.websgreen.com/Ntpk/v8/gcfrt/bg.jpg
188.114.96.1200 OK 64 kB URL GET HTTP/3 www.websgreen.com/Ntpk/v8/gcfrt/bg.jpg
IP 188.114.96.1:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subject*.websgreen.com
Fingerprint57:66:7F:63:05:FF:C7:4B:8C:8B:23:D3:11:FB:9E:37:DC:4D:4B:2B
ValiditySat, 18 Feb 2023 06:57:53 GMT - Fri, 19 May 2023 06:57:52 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1349x653, components 3\012- data
Hash 433d0145ec0045aabcb036bb7b3ad827
94c88f8cd96629bdb5d6801efbe2d246cc4346ae
f252db1d2be9774219e091425dfd7c284a181ce4e1804710885d7c408344971c
GET /Ntpk/v8/gcfrt/bg.jpg HTTP/1.1
Host: www.websgreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.websgreen.com
Connection: keep-alive
Referer: https://www.websgreen.com/Ntpk/v8/gcfrt/
Cookie: PHPSESSID=ue419rnf0iifv3vtmsli9rfqv0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 13 Apr 2023 20:22:31 GMT
content-type: image/jpeg
content-length: 63990
last-modified: Thu, 13 Apr 2023 08:46:15 GMT
etag: "f9f6-5f933c1e1c3c0"
cache-control: max-age=14400
cf-cache-status: HIT
age: 11
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zC1AGQYFjA8luvLqTRDDLnjk3piJ%2Br%2B3VY4KIV9kupEVzSQWQH1v4%2FyvFQjepwNHBfAdjqCRhvK8srbqO13Kpu1H4VuXg4z4nG7a883%2BFQKnpGQKNNSDBVHPbpmBu866EtmU5Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b766bf19d0e0b41-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 0643034ab43fe83d85a590124af08587
920ae732b3a3b1a95081451dcf91ab9e85e35155
ef609fa9ecb60a2afac7fc0e6cff8e68182a1b78a0066541df5cb2b0b038c910
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 20:22:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js
142.250.74.35200 OK 167 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File type ASCII text, with very long lines (697)
Size 167 kB (166600 bytes)
Hash fdfdaf63d56b4a9cd6641d79f7159fdc
18b413d8b6b9f3bec32026b7e9d9f4e5e366922f
f4dba3e15f08cf0686e6d89370ed42e8a5dafc38973501f0aa6baa9b93c720f3
GET /recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.websgreen.com
Connection: keep-alive
Referer: https://www.websgreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 14:23:58 GMT
expires: Fri, 12 Apr 2024 14:23:58 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Apr 2023 18:01:18 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 21514
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 0b2b5b556190d0a01c8eeb19d631f315
aead55272da30418fc45d3d3efb690361cd33cee
e5365fa2375a844bd9800ba61ce41ddf8dcd76c5f58f42bde1f6f8703a5a60d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 13 Apr 2023 20:22:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/anchor?ar=1&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T&co=aHR0cHM6Ly93d3cud2Vic2dyZWVuLmNvbTo0NDM.&hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&size=normal&cb=x124mdbr72jw
142.250.74.132200 OK 28 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T&co=aHR0cHM6Ly93d3cud2Vic2dyZWVuLmNvbTo0NDM.&hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&size=normal&cb=x124mdbr72jw
IP 142.250.74.132:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBC:12:A9:4C:44:2A:9A:A2:F3:90:FC:9B:BD:52:91:4C:61:A4:7C:CD
ValidityMon, 20 Mar 2023 08:22:16 GMT - Mon, 12 Jun 2023 08:22:15 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (43187)
Hash e7880dbfd3de702316f2b67574a4e73b
4edfd34f00a9bec109f224073dc2bb7927f3440e
6f39ac86de18758a8410be2c59212a2ab69bfd0df7fcac96740f46d80627c3c4
GET /recaptcha/api2/anchor?ar=1&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T&co=aHR0cHM6Ly93d3cud2Vic2dyZWVuLmNvbTo0NDM.&hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&size=normal&cb=x124mdbr72jw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: https://www.websgreen.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 13 Apr 2023 20:22:32 GMT
content-security-policy: script-src 'nonce-nq16v5Reu15LDWbRJOdUig' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 28230
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash a42c6333a13e5376af95f46fd9c7b627
57a98e519a44915e39a0cb6f23812adfa6611e67
62bff9dd0379da44f9d7f739af671bb6b243c016b49c7146b431ae9e6b9cb41b
GET /recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Apr 2023 18:10:59 GMT
expires: Thu, 11 Apr 2024 18:10:59 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Apr 2023 18:01:18 GMT
content-type: text/css
vary: Accept-Encoding
age: 94293
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js
142.250.74.35200 OK 167 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File type ASCII text, with very long lines (697)
Size 167 kB (166600 bytes)
Hash fdfdaf63d56b4a9cd6641d79f7159fdc
18b413d8b6b9f3bec32026b7e9d9f4e5e366922f
f4dba3e15f08cf0686e6d89370ed42e8a5dafc38973501f0aa6baa9b93c720f3
GET /recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 14:23:58 GMT
expires: Fri, 12 Apr 2024 14:23:58 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Apr 2023 18:01:18 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 21514
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/webworker.js?hl=en&v=6MY32oPwFCn9SUKWt8czDsDw
142.250.74.132200 OK 112 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=6MY32oPwFCn9SUKWt8czDsDw
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T&co=aHR0cHM6Ly93d3cud2Vic2dyZWVuLmNvbTo0NDM.&hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&size=normal&cb=x124mdbr72jw
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBC:12:A9:4C:44:2A:9A:A2:F3:90:FC:9B:BD:52:91:4C:61:A4:7C:CD
ValidityMon, 20 Mar 2023 08:22:16 GMT - Mon, 12 Jun 2023 08:22:15 GMT
File type ASCII text, with no line terminators
Hash 8771b78bf8540cb0f0abd565803ec778
47cd6a15b47404961c8d0f5a1e11fe2125b46c1c
ea56675b25b1314bc82952ca08e0590788909f502ff612b300cf54cc2eea54ad
GET /recaptcha/api2/webworker.js?hl=en&v=6MY32oPwFCn9SUKWt8czDsDw HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T&co=aHR0cHM6Ly93d3cud2Vic2dyZWVuLmNvbTo0NDM.&hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&size=normal&cb=x124mdbr72jw
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Thu, 13 Apr 2023 20:22:32 GMT
date: Thu, 13 Apr 2023 20:22:32 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T&co=aHR0cHM6Ly93d3cud2Vic2dyZWVuLmNvbTo0NDM.&hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&size=normal&cb=x124mdbr72jw
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Apr 2023 13:07:04 GMT
expires: Thu, 11 Apr 2024 13:07:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 112528
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js
142.250.74.35200 OK 167 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File type ASCII text, with very long lines (697)
Size 167 kB (166600 bytes)
Hash fdfdaf63d56b4a9cd6641d79f7159fdc
18b413d8b6b9f3bec32026b7e9d9f4e5e366922f
f4dba3e15f08cf0686e6d89370ed42e8a5dafc38973501f0aa6baa9b93c720f3
GET /recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 14:23:58 GMT
expires: Fri, 12 Apr 2024 14:23:58 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Apr 2023 18:01:18 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 21514
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.35200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T&co=aHR0cHM6Ly93d3cud2Vic2dyZWVuLmNvbTo0NDM.&hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&size=normal&cb=x124mdbr72jw
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 02:07:56 GMT
expires: Thu, 20 Apr 2023 02:07:56 GMT
cache-control: public, max-age=604800
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
age: 65676
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/bframe?hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T
142.250.74.132200 OK 1.1 kB URL GET HTTP/3 www.google.com/recaptcha/api2/bframe?hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T
IP 142.250.74.132:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
FingerprintBC:12:A9:4C:44:2A:9A:A2:F3:90:FC:9B:BD:52:91:4C:61:A4:7C:CD
ValidityMon, 20 Mar 2023 08:22:16 GMT - Mon, 12 Jun 2023 08:22:15 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2f57caeef64a99f3977141d89c79e7c8
42fcbb6e75aa9d58781346312f70c63406f66350
a75f2d72457ba6925ce7932d942797af774dd4d6721f7ec504eb63cf65214917
GET /recaptcha/api2/bframe?hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.google.com
Connection: keep-alive
Referer: https://www.websgreen.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 13 Apr 2023 20:22:32 GMT
content-security-policy: script-src 'nonce-kB45kQ3v2WtvyQ9sqSHCKw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1118
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/bframe?hl=en&v=6MY32oPwFCn9SUKWt8czDsDw&k=6LdFPHAUAAAAAGwH1PWzjto1S36pZrq0c0VlSd1T
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash a42c6333a13e5376af95f46fd9c7b627
57a98e519a44915e39a0cb6f23812adfa6611e67
62bff9dd0379da44f9d7f739af671bb6b243c016b49c7146b431ae9e6b9cb41b
GET /recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Apr 2023 18:10:59 GMT
expires: Thu, 11 Apr 2024 18:10:59 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Apr 2023 18:01:18 GMT
content-type: text/css
vary: Accept-Encoding
age: 94293
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js
142.250.74.35200 OK 167 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint76:06:6A:AA:FB:72:F8:BA:90:67:2F:91:97:14:FB:68:D0:65:E9:22
ValidityMon, 20 Mar 2023 08:25:51 GMT - Mon, 12 Jun 2023 08:25:50 GMT
File type ASCII text, with very long lines (697)
Size 167 kB (166600 bytes)
Hash fdfdaf63d56b4a9cd6641d79f7159fdc
18b413d8b6b9f3bec32026b7e9d9f4e5e366922f
f4dba3e15f08cf0686e6d89370ed42e8a5dafc38973501f0aa6baa9b93c720f3
GET /recaptcha/releases/6MY32oPwFCn9SUKWt8czDsDw/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.gstatic.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Apr 2023 14:23:58 GMT
expires: Fri, 12 Apr 2024 14:23:58 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 02 Apr 2023 18:01:18 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 21514
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.websgreen.com/Ntpk/v8/gcfrt/
188.114.96.1200 OK 3.4 kB URL User Request GET HTTP/3 www.websgreen.com/Ntpk/v8/gcfrt/
IP 188.114.96.1:443
Certificate IssuerGoogle Trust Services LLC
Subject*.websgreen.com
Fingerprint57:66:7F:63:05:FF:C7:4B:8C:8B:23:D3:11:FB:9E:37:DC:4D:4B:2B
ValiditySat, 18 Feb 2023 06:57:53 GMT - Fri, 19 May 2023 06:57:52 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (3674), with no line terminators
Hash 1705c82bd6d9a1fed3a067214d9106b4
799cb32c3f9d655a4c799016493bef8aeda22734
3520c512779f1772c176e2fd02e94437b0ba8ff2617110a1680ba927dc336d5b
GET /Ntpk/v8/gcfrt/ HTTP/1.1
Host: www.websgreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.maleenhacement.best/
Alt-Used: www.websgreen.com
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 13 Apr 2023 20:22:31 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=ue419rnf0iifv3vtmsli9rfqv0; path=/
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mmfOfv5oLcXCh%2F3%2FbFOzW1fy0VFoE63dn693NciNnupGmzf1Ib%2BX1yyXxRulEhuHryCO0tl6%2BLoERULkLdbBGa3j5xMfZRuwmDuFFIXCsGzRT7EtZ0tpAmAtYjaQbTy0SOSDBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7b766bee08000b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.websgreen.com/Ntpk/v8/gcfrt/jquery.min.js
188.114.96.1404 Not Found 263 B URL GET HTTP/3 www.websgreen.com/Ntpk/v8/gcfrt/jquery.min.js
IP 188.114.96.1:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subject*.websgreen.com
Fingerprint57:66:7F:63:05:FF:C7:4B:8C:8B:23:D3:11:FB:9E:37:DC:4D:4B:2B
ValiditySat, 18 Feb 2023 06:57:53 GMT - Fri, 19 May 2023 06:57:52 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4b3a608b38f311ed6077b304a833a713
7f180da10e7c4a5d75983d3e8c33666d7fda6f9c
00030c39042b5cc4ce2529d4a349f4a1e1ab98d52a235d2bebf39773bd6f9b42
GET /Ntpk/v8/gcfrt/jquery.min.js HTTP/1.1
Host: www.websgreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.websgreen.com
Connection: keep-alive
Referer: https://www.websgreen.com/Ntpk/v8/gcfrt/
Cookie: PHPSESSID=ue419rnf0iifv3vtmsli9rfqv0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 13 Apr 2023 20:22:31 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 11
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lzb984DzVvARnNZGxdrBQzOyG1SH%2FaR6oUdELnIz0Lbs5sKvmg44uS2BGh0svzqT3Hw87cZUN3Co6GlkL7v32giECaj0g%2FeTp2FYwlslW9AiVhzoQMttT51%2FaHElwpCmtAyozw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b766bf17ced0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.websgreen.com/Ntpk/v8/gcfrt/survey.png
188.114.96.1404 Not Found 263 B URL GET HTTP/3 www.websgreen.com/Ntpk/v8/gcfrt/survey.png
IP 188.114.96.1:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subject*.websgreen.com
Fingerprint57:66:7F:63:05:FF:C7:4B:8C:8B:23:D3:11:FB:9E:37:DC:4D:4B:2B
ValiditySat, 18 Feb 2023 06:57:53 GMT - Fri, 19 May 2023 06:57:52 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4b3a608b38f311ed6077b304a833a713
7f180da10e7c4a5d75983d3e8c33666d7fda6f9c
00030c39042b5cc4ce2529d4a349f4a1e1ab98d52a235d2bebf39773bd6f9b42
GET /Ntpk/v8/gcfrt/survey.png HTTP/1.1
Host: www.websgreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.websgreen.com
Connection: keep-alive
Referer: https://www.websgreen.com/Ntpk/v8/gcfrt/
Cookie: PHPSESSID=ue419rnf0iifv3vtmsli9rfqv0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 13 Apr 2023 20:22:32 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b13DchaH99rnrU2ELibB9jsYXI23h2u7h4r12rF4jsivl6d5Y2SFquSGhe%2F0cjdEWU%2FJKCiGmjL2HUZw0F4XqcMOAqBp1I%2FvHjEHPn5EvsPHxJlPzL3Q1q5Q9sSSKsfk4lIDoA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b766bf1bd300b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.websgreen.com/Ntpk/v8/gcfrt/
188.114.96.1301 Moved Permanently 3.4 kB URL User Request GET HTTP/1.1 www.websgreen.com/Ntpk/v8/gcfrt/
IP 188.114.96.1:80
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Ntpk/v8/gcfrt/ HTTP/1.1
Host: www.websgreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.maleenhacement.best/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 13 Apr 2023 20:22:31 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 13 Apr 2023 21:22:31 GMT
Location: https://www.websgreen.com/Ntpk/v8/gcfrt/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DGbdkG3LbDomt07MlCpyR5gkbUp7U%2FZTEp%2FjWE%2F2aiu44WbLbRe2fmU7O76s2%2FEzIrW%2FsVtK6vhDpaWe8B3aFn2RrqsJRXzFM3B6sI8xPkbZFUKEEMrzM4vHUBOXz4E%2BX2orlg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7b766beded9ab4f1-OSL
alt-svc: h2=":443"; ma=60
www.websgreen.com/Ntpk/v8/gcfrt/jquery.min.js
188.114.96.1404 Not Found 263 B URL GET HTTP/3 www.websgreen.com/Ntpk/v8/gcfrt/jquery.min.js
IP 188.114.96.1:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerGoogle Trust Services LLC
Subject*.websgreen.com
Fingerprint57:66:7F:63:05:FF:C7:4B:8C:8B:23:D3:11:FB:9E:37:DC:4D:4B:2B
ValiditySat, 18 Feb 2023 06:57:53 GMT - Fri, 19 May 2023 06:57:52 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 4b3a608b38f311ed6077b304a833a713
7f180da10e7c4a5d75983d3e8c33666d7fda6f9c
00030c39042b5cc4ce2529d4a349f4a1e1ab98d52a235d2bebf39773bd6f9b42
GET /Ntpk/v8/gcfrt/jquery.min.js HTTP/1.1
Host: www.websgreen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: www.websgreen.com
Connection: keep-alive
Referer: https://www.websgreen.com/Ntpk/v8/gcfrt/
Cookie: PHPSESSID=ue419rnf0iifv3vtmsli9rfqv0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 404 Not Found
date: Thu, 13 Apr 2023 20:22:31 GMT
content-type: text/html; charset=iso-8859-1
cache-control: max-age=14400
cf-cache-status: HIT
age: 11
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZP2dT1QENca1Fd6EzgngzUWwkfP9Pd8lh3Zhq10%2FLt86A5VTSrM3krhtkBw%2BPB36owS6L7gQzc3U%2FJSEOigecNOi9KySmIisfnIbSZ9zN96O4xPNFbRsPAOVcYvUCydMmrwNqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7b766bf04afa0b41-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
188.114.98.234200 OK 37 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP 188.114.98.234:443
Requested by https://www.websgreen.com/Ntpk/v8/gcfrt/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (32033)
Hash 5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef
GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.websgreen.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 13 Apr 2023 20:22:31 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 12/13/2021 20:18:53
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.02
cdn-requestid: 48135f30fbfcba704628453df5764d8f
cdn-cache: HIT
cf-cache-status: HIT
age: 26866836
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7b766bf099deb529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2