| petir.io/ | 188.114.97.1 | | 167 B |
IP188.114.97.1:0
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
GET / HTTP/1.1
Host: petir.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Wed, 24 Apr 2024 18:49:03 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 24 Apr 2024 19:49:03 GMT
Location: https://petir.io/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Pl5ikgHVOspVfTg4UhJjk5d4E6sQ7rWMRWagWtu1HjBYt0EiQ1wLL2IkwxyYoK2AzxHK1LNSQmLNkdUQiFlQsTZICR3MmPB4iJ%2F2hDJYocA2OiXFOLQksOwXPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 87984565093456be-OSL
alt-svc: h2=":443"; ma=60
|
|
| | 174.138.23.118 | 200 OK | 9.3 kB |
URL User Request GET HTTP/1.1IP174.138.23.118:443 ASN#14061 DIGITALOCEAN-ASN
CertificateIssuerZeroSSL Subject174.138.23.118 Fingerprint38:72:3B:00:0C:C4:B0:8F:85:0A:A4:E9:17:82:8A:1F:74:4C:5D:80 ValidityWed, 10 Apr 2024 00:00:00 GMT - Tue, 09 Jul 2024 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text Hasha9f194961da4c8cbffca3e34f84fabcd f8971bf280251f9b1482e29c28459b6279a08eba 8707d42c72a2f7a8f286e4c98dae82ee6fe32b109cd9935f6f4ab182376eb67a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: 174.138.23.118
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 24 Apr 2024 18:49:04 GMT
Server: Apache/2.4.57 (Ubuntu)
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Last-Modified: Wed, 10 Apr 2024 12:09:44 GMT
ETag: "efbf-615bcea053781-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9293
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
|
|
| cdn.ampproject.org/v0/amp-carousel-0.1.mjs | 216.58.207.193 | 200 OK | 10 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-carousel-0.1.mjs IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint49:07:4A:21:AA:02:3C:78:A7:B4:D3:71:AA:98:EE:0F:2D:3F:5C:99 ValidityMon, 18 Mar 2024 19:42:57 GMT - Mon, 10 Jun 2024 19:42:56 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (33361) Hash3d0f0fcc61835f60755f2eedfb4ff6bc 59f87133d557776563a9fc3b756bc661d1f87395 beb80d686c7b9f10807a1bb1e16be3f4a76c141aada4ed7bda98deaa583e5e19
GET /v0/amp-carousel-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://174.138.23.118
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 10074
date: Wed, 24 Apr 2024 18:49:04 GMT
expires: Wed, 24 Apr 2024 18:49:04 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "968f18a63cf3dcf3"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0.mjs | 216.58.207.193 | 200 OK | 64 kB |
URL GET HTTP/2cdn.ampproject.org/v0.mjs IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint49:07:4A:21:AA:02:3C:78:A7:B4:D3:71:AA:98:EE:0F:2D:3F:5C:99 ValidityMon, 18 Mar 2024 19:42:57 GMT - Mon, 10 Jun 2024 19:42:56 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (64648) Hash62d6cdc7b6d15627bfc72c041945e9df 895d5c45fcd1819dff8338761cacd1f74f88ffc5 d5aa579595948d2493516802c44bd23767ebe6e554283f5c303b7b023e94ab13
GET /v0.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://174.138.23.118
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 63589
date: Wed, 24 Apr 2024 18:49:04 GMT
expires: Wed, 24 Apr 2024 18:49:04 GMT
cache-control: private, max-age=3000, stale-while-revalidate=1206600
etag: "d90f00ff03eb8b1d"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0/amp-install-serviceworker-0.1.mjs | 216.58.207.193 | 200 OK | 2.4 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-install-serviceworker-0.1.mjs IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint49:07:4A:21:AA:02:3C:78:A7:B4:D3:71:AA:98:EE:0F:2D:3F:5C:99 ValidityMon, 18 Mar 2024 19:42:57 GMT - Mon, 10 Jun 2024 19:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (6424) Hasheb34013b8503f8c94e38819156bbc8c6 287b8f501070b8581a9007741b9a1e1e62580a0c 829ca3cf0dd6d7b260509935aec4f11de0c982b92875d2a6c4dfc55b9cd000ad
GET /v0/amp-install-serviceworker-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://174.138.23.118
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 2375
date: Wed, 24 Apr 2024 18:49:05 GMT
expires: Wed, 24 Apr 2024 18:49:05 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "81267059e47ce690"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0/amp-youtube-0.1.mjs | 216.58.207.193 | 200 OK | 10 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-youtube-0.1.mjs IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint49:07:4A:21:AA:02:3C:78:A7:B4:D3:71:AA:98:EE:0F:2D:3F:5C:99 ValidityMon, 18 Mar 2024 19:42:57 GMT - Mon, 10 Jun 2024 19:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (31465) Hash1562533f0aeb79bd37f2e372173a3a11 55a9b68da68f5f8a76d2a2db7fa9b463988f32d0 9e655ef4b8fca3164384dae05082e52603a76699d4e67fd5f6c74f4c2de28426
GET /v0/amp-youtube-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://174.138.23.118
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 10329
date: Wed, 24 Apr 2024 18:49:05 GMT
expires: Wed, 24 Apr 2024 18:49:05 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "fa00b0beb4f87a15"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/v0/amp-accordion-0.1.mjs | 216.58.207.193 | 200 OK | 4.9 kB |
URL GET HTTP/2cdn.ampproject.org/v0/amp-accordion-0.1.mjs IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint49:07:4A:21:AA:02:3C:78:A7:B4:D3:71:AA:98:EE:0F:2D:3F:5C:99 ValidityMon, 18 Mar 2024 19:42:57 GMT - Mon, 10 Jun 2024 19:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (14003) Hash44a150bbc58b7fd6499b58337845b6c0 a090b5487aee5f55e31797a054feb32b385d7749 9614aa34c3ccd92f6b51eb62b8ea0f90449f0e1c19a7b563363cb53fcaac1ec8
GET /v0/amp-accordion-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://174.138.23.118
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 4853
date: Wed, 24 Apr 2024 18:49:05 GMT
expires: Wed, 24 Apr 2024 18:49:05 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "2e7bbfdcb71e092b"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/rtv/012404091947000/v0/amp-loader-0.1.mjs | 216.58.207.193 | 200 OK | 3.9 kB |
URL GET HTTP/2cdn.ampproject.org/rtv/012404091947000/v0/amp-loader-0.1.mjs IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint49:07:4A:21:AA:02:3C:78:A7:B4:D3:71:AA:98:EE:0F:2D:3F:5C:99 ValidityMon, 18 Mar 2024 19:42:57 GMT - Mon, 10 Jun 2024 19:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (12245) Hash103d2d2d7ff7a2b667327fb1be13cc68 9a5443bd3589f484eefa9a91a27a5a080250a3b7 1fa78e65fb9bf38e79a93dfe0f512925115cbae0a7e45a08d4b77a81a146c2f8
GET /rtv/012404091947000/v0/amp-loader-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://174.138.23.118
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 3912
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 18:03:58 GMT
expires: Thu, 24 Apr 2025 18:03:58 GMT
cache-control: public, max-age=31536000
etag: "5485204287e829d9"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 2708
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.ampproject.org/rtv/012404091947000/v0/amp-auto-lightbox-0.1.mjs | 216.58.207.193 | 200 OK | 2.8 kB |
URL GET HTTP/2cdn.ampproject.org/rtv/012404091947000/v0/amp-auto-lightbox-0.1.mjs IP216.58.207.193:443
CertificateIssuerGoogle Trust Services LLC Subjectmisc-sni.google.com Fingerprint49:07:4A:21:AA:02:3C:78:A7:B4:D3:71:AA:98:EE:0F:2D:3F:5C:99 ValidityMon, 18 Mar 2024 19:42:57 GMT - Mon, 10 Jun 2024 19:42:56 GMT
File typeJavaScript source, ASCII text, with very long lines (6972) Hash7e87ca68f0620ba5314f49ebdb2b55b0 1e5e6b8235d0bd154995df7f18cc66a5a2a6e49a f8c4fb246250d2bc887f10fad5c4c62e881b63e3262a208af18f32e3387878af
GET /rtv/012404091947000/v0/amp-auto-lightbox-0.1.mjs HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://174.138.23.118
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cdnjs.cloudflare.com/ajax/libs/font-awesome/ https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 2818
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 Apr 2024 18:03:52 GMT
expires: Thu, 24 Apr 2025 18:03:52 GMT
cache-control: public, max-age=31536000
etag: "a3a4da7f3117a7f7"
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 2714
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| kilat.digital/images/2023/12/13/bc15350c829a62c61497621dba509d1d.gif | 188.114.97.1 | 200 OK | 381 kB |
URL GET HTTP/2kilat.digital/images/2023/12/13/bc15350c829a62c61497621dba509d1d.gif IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectkilat.digital Fingerprint71:56:AC:43:F6:D9:0E:08:A9:5E:B1:75:DB:31:20:3F:64:9E:B4:62 ValiditySat, 30 Mar 2024 15:47:11 GMT - Fri, 28 Jun 2024 15:47:10 GMT
File typeGIF image data, version 89a, 600 x 189 Size381 kB (380743 bytes) Hashca547b2dbeffcf8cb5f91f84c8951e19 539a2e61cb025fca688de403265f72bd7fa0d81c 309ca97bd94b559ddb8d5f847eb979aaf7e44ecf33c0e36ba526bee76c513974
GET /images/2023/12/13/bc15350c829a62c61497621dba509d1d.gif HTTP/1.1
Host: kilat.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 18:49:05 GMT
content-type: image/gif
content-length: 380743
last-modified: Wed, 13 Dec 2023 04:51:39 GMT
etag: "5cf47-60c5cec3728a5"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3OHLThdqpVfXgmWrsbwdnGF6hSV1bxeF3GoVQsKxB%2FV6cbyTIf8KjFTh%2B02lhlj5LV6MAfyJlKtyiFdtFiAv10Vw7OJZFWckNYkrVjqjOlztke2rP1VSF0O3PM%2FjofvV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8798456dcc72568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| kilat.digital/images/2023/12/13/067a6dbaedf867ecca980a732729ed54.png | 188.114.97.1 | 200 OK | 27 kB |
URL GET HTTP/3kilat.digital/images/2023/12/13/067a6dbaedf867ecca980a732729ed54.png IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectkilat.digital Fingerprint71:56:AC:43:F6:D9:0E:08:A9:5E:B1:75:DB:31:20:3F:64:9E:B4:62 ValiditySat, 30 Mar 2024 15:47:11 GMT - Fri, 28 Jun 2024 15:47:10 GMT
File typePNG image data, 257 x 257, 8-bit/color RGBA, non-interlaced Hashdbd674ce5c7943a0251a1fe8b6109862 c405c92b16202f9dd515a6630ac6ce8b14921110 4ab0b1dd0deba659091fc147d6d1364f8ad1e4a94d53029a02b1c3151d207df8
GET /images/2023/12/13/067a6dbaedf867ecca980a732729ed54.png HTTP/1.1
Host: kilat.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 18:49:06 GMT
content-type: image/png
content-length: 27102
last-modified: Wed, 13 Dec 2023 11:37:21 GMT
etag: "69de-60c62971beccd"
cache-control: max-age=14400
cf-cache-status: HIT
age: 309
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uvybki2PJQf7zcGNqwaOCSjlnCIqxIE7b1Jb%2FMV6w7etV3zvLes7SxEIiOb6UkYpON0rGC8zx85Vvi1LJf%2B03omFQUHMX9YOFDOqeS6gWN%2FNKUbLwAnYFyML5XJheWu%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87984577384e568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| kilat.digital/images/2023/12/13/178ffa46ddcf6be570216c6ef62e7501.png | 188.114.97.1 | 200 OK | 3.1 MB |
URL GET HTTP/2kilat.digital/images/2023/12/13/178ffa46ddcf6be570216c6ef62e7501.png IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectkilat.digital Fingerprint71:56:AC:43:F6:D9:0E:08:A9:5E:B1:75:DB:31:20:3F:64:9E:B4:62 ValiditySat, 30 Mar 2024 15:47:11 GMT - Fri, 28 Jun 2024 15:47:10 GMT
File typePNG image data, 2334 x 1167, 8-bit/color RGB, non-interlaced Size3.1 MB (3101088 bytes) Hash92c226c818392a94bc122fe0c870ebb6 56ba53cb1ebc1ff7f9f73fad2993fcf0223d743b 60e99bfbb3f523a1752ca91e34dad7b58181c6fe611165e72e03e1d86f500502
GET /images/2023/12/13/178ffa46ddcf6be570216c6ef62e7501.png HTTP/1.1
Host: kilat.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 24 Apr 2024 18:49:05 GMT
content-type: image/png
content-length: 3101088
last-modified: Wed, 13 Dec 2023 04:54:50 GMT
etag: "2f51a0-60c5cf7973a55"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jJjrHHu12wUMd7LXWaXyivGDgNGe3S7kHPEcmCHgddujXNj62wWlqT6DrpXb95K6ezcKuv3Hyf7wX%2Fd2QbLrkwi0dWY7F9rtR3AXGCMTRD7gveigRtMPOTCCVY1Nwmmb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8798456dcc74568d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| kilat.digital/images/2023/12/13/97f83d5ef7728cc53284c0af59b61ef1.gif | 188.114.97.1 | 200 OK | 552 kB |
URL GET HTTP/3kilat.digital/images/2023/12/13/97f83d5ef7728cc53284c0af59b61ef1.gif IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectkilat.digital Fingerprint71:56:AC:43:F6:D9:0E:08:A9:5E:B1:75:DB:31:20:3F:64:9E:B4:62 ValiditySat, 30 Mar 2024 15:47:11 GMT - Fri, 28 Jun 2024 15:47:10 GMT
File typeGIF image data, version 89a, 728 x 90 Size552 kB (551564 bytes) Hashfffe39028494110348364ef8946a8834 052325f10ef62b775b612c0961cf612d2a39f711 3181ba65dffb997d017307e6526da8e521ea654e0accaabc66b9d9d192a1a6b9
GET /images/2023/12/13/97f83d5ef7728cc53284c0af59b61ef1.gif HTTP/1.1
Host: kilat.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://174.138.23.118/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Wed, 24 Apr 2024 18:49:06 GMT
content-type: image/gif
content-length: 551564
last-modified: Wed, 13 Dec 2023 04:47:30 GMT
etag: "86a8c-60c5cdd599928"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cVL1YLzbdoU75eRM7nCHjnPIv8q2anBFx5d16xVMA6G%2FF1JE1IBgUxR5L2ywqMYF%2B03MwjCX7F2uhYiwTSp2djzqYdDOlSmawol9JfcgrRc9aHImld5BptDz8x0lnYYN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879845747d6c568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| | 188.114.96.1 | 302 Found | 61 kB |
URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectpetir.io Fingerprint52:85:F0:D3:BB:7E:90:9B:14:E3:23:41:4D:22:BA:B8:4D:A7:C5:42 ValiditySun, 24 Mar 2024 14:12:09 GMT - Sat, 22 Jun 2024 14:12:08 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b2T7HS HTTP/1.1
Host: petir.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Wed, 24 Apr 2024 18:49:00 GMT
content-type: text/html; charset=utf-8
location: https://174.138.23.118/
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
x-dns-prefetch-control: off
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=15552000; includeSubDomains
x-download-options: noopen
x-content-type-options: nosniff
origin-agent-cluster: ?1
x-permitted-cross-domain-policies: none
referrer-policy: no-referrer
x-xss-protection: 0
vary: Accept
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2ZFlPPADQWXka2757Y71igFUCQdvujYz3XsrZxqcH%2B3ZmtpWoBc%2Ft14Q1tcbe3CWNjk3pL0hXRob2i7A2HW4IzXErnq90TqNszsswVpzPHn3VigNrpBGuDr5cA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879845528a8a0b59-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|